last executing test programs:

2m51.664142235s ago: executing program 2 (id=14941):
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESOCT, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',g'])
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c0000005e00010026bd7000ffdbdf2500000000", @ANYRES32], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)

2m51.574668583s ago: executing program 2 (id=14943):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200407fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f00000010c0)=[{{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f00000011c0)="93bffce623851797a8dc79018d7716840ffc6949c667f6d345b18bc896d8f016f5f206bb2b0eb2fe32d2f0048678cd35ef833c3522fff95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041afc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b", 0x8d}, {&(0x7f00000007c0)="02999344565d9c61d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247d0822475", 0x23}, {&(0x7f0000000f00)="ec75d081fcb70000000000000000bb6a38b0c57cc7", 0x15}], 0x3}}], 0x1, 0x20008000)
r1 = socket(0xa, 0x3, 0xff)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x4e21, 0x20000000, @mcast2, 0x4}, 0x1c)
write$nbd(r1, 0x0, 0xfdef)
shutdown(r0, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r2=>0x0})
sendmsg(r0, &(0x7f00000005c0)={&(0x7f00000000c0)=@can={0x1d, r2}, 0x80, &(0x7f0000000540)=[{&(0x7f0000001280)="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", 0x1000}, {&(0x7f0000000180)="c812b6ece8c83ab8afc6d149f33b025a2df0b8d31181ba5a8ecb4d4c501837f0ff0bb1c819198ca54bb158cf5a11264f2dc8c1a9287880b7e1947ea2b91587ae37e121040dbec46f29c1a13467277f136542b1f11d7da2b5a32368732fdb6b02093e899eac3c7a433e7b68e05126987a5b4cdbf2623d013a1c8a73fdac912adbc82822500908db62e56603a7acb27b522b85967ec3bfc119263e75e10e3708b9515cd8069fc7f1fc9c9b42d545ba1a47d40cf50019ce2f038c6532d9ca", 0xbd}, {&(0x7f00000002c0)="d4411f3b832d548a45b2ba4d4583da3986e79c119b2af3b84aab8545be3c1207787408b61d90fda93dcb68bb4a43372a7316bace68f2aa70720e9a17c18eaa4416fbf74faff07cf4a4fcf2d6b6936f9e7719dc12", 0x54}, {&(0x7f0000000340)="efbddb002cb81fec4297ee949f9b604fa54a565166b6c863d439890f0cf8c1f1ee40177b7db7dcb5a51588108df758e621d9e6d03a9259536a13c1fb03ab8348ea61577b57f0de0f74b23cb91d8a5d1e8c51f28e6a983944bab421becec2c0c1d13d6bb3228ee01d7fb15da02ec19aed47744acd569320a00c9e95d8e8e8913bed8894f9d504c86594584480ac8e02f171f19fdec78ef45044f6d2d974b9ae7f9fbad5014e9b0229d9f275a87098f86b065ff890d9359cfac8116669391fc0e32843103bee6289166879644693c2", 0xce}, {&(0x7f0000000040)="4d29dc5efe3d906fe6120d986bdd2524e1baa89803aabe32f210f54105508a4920ec3a7e543806969dd6a1e2f3376acc90", 0x31}, {&(0x7f0000000440)="6f8f0605deb46fea06db87348f4d6403764491fc50b369c5ca26efdf30944f24a527554a6c2687052e262837cc59621a8315d1097d423ac0d9041f0170bec152b39f161b7ccaade4cce63cf8b032a16e92f3393c656b10ca9e45b7ad579e3ede82cf2944c666e9d8e84f660c82963b0e34b4", 0x72}, {&(0x7f00000004c0)="7207c8a64152cedcf3ec876b1bcfd7eec09ae5a6ac0164ae29c961fd83dbcad60a359d2a30b794955a130ea2f9f759827f7186b034f2be1a23b65375337d8425cd670aae9a328891", 0x48}, {&(0x7f0000000240)}], 0x8}, 0x20000014)

2m51.574501386s ago: executing program 2 (id=14944):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x3810050, &(0x7f0000000180)={{}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x454}}]}})

2m51.510758631s ago: executing program 2 (id=14945):
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x0, 0x2172, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00')
pread64(r0, &(0x7f000001a240)=""/102400, 0x19000, 0x1000000000) (async)
mprotect(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x1000001) (async)
r1 = socket$inet(0x2, 0x2, 0x1)
shutdown(r1, 0x0) (async)
writev(r1, &(0x7f0000000500)=[{&(0x7f0000000000)="dc43f4ee0c0486c9bab37f361ca4ffec632ea513cf3b06c8ee0bbeb59953d4ffeee99091ae01f126cd11c45290aa18a62c1e4682483602c353d03745dce407e73b6f168e7ad203737b3e46469a1310d0bdc88d1f4522ba8f2721b438a7b8f2ac9f4cdeae9c22efff67f89469954782d0fbdc46a941ce10dba3b3b124e35c10beaedfaaaccfeda733442790d9f757f6f0ace1b51d902435c0de8d60891f21c75ea4a1aece96667eb0f6", 0xa9}, {&(0x7f00000000c0)="b4c9e47e817546b3032652479a033a6ed2fd19eb255fa5cee112a233733531d1d3ec891a84fac7012c018b4c83", 0x2d}, {&(0x7f0000000100)="276ed788b83a528f6738a302664ac9bea5ea3bf41814c337f5070e3fbee28e83569d4c03186b14ccfbef9799702319217837d928a33a572619359f1c3d481080c746ef84684a9709a3dd7b3ba16ffd9b5d23b4767fc805a2e00077ac3b5704d58baf63a200e045", 0x67}, {&(0x7f0000000180)="f5892b44ebf9ea40450dd471176595c5362b739a39cc73d3c8347676e73c0a9bbef8e329b6501c270ce552133acf6b42ae465789", 0x34}, {&(0x7f00000001c0)}, {&(0x7f0000000200)="773d3a8f43e59df591a220b21460ec49f18756cb6a0a8f76f8223b8c1ceefbcc79f4520d25065a734e1fa0da00a822a178cfec810fcaa76d0204142f3428e28dd209ec2e7f308b10d536bbc809336a7c8a41592d3e3d4c4658471355aef1fb658efbb1000fea98d848278227bad3b060b12beffffb459d4f70f62aa100f58d4e93075cb68a81dc5c2a32098fb9878ebf6b1a8a4e70bf63445a20552c2c51080ae273edb9b0c3188b74c1a13156de7207c6bf6de2ec35d6ae5664d8db980120114a91654fb60db9381a9d4a62b681955115b11b1e9982d58ddd3588332182ea2151c86023691b", 0xe6}, {&(0x7f0000000300)="f2d1557173c02b631b8ab7781164ad04a1de4fa3f027facfe2a5e9d15d697c581cdce3ae181a2004bdbf83c646a8f0c5c8e8fc971b4728b80715d19d6d7e0bb43f68d5a02cbfb89507139730e096819403584892f254c2ed577d89a3ffc90e65976ea976b6f9dd6a19b22dfc8f0c2ec3875a9f251af1195c34ed281ae571916ee9210bada5e1a8464419412545ab7766a9b0a2498131550160fa85667af5947ad223de6ae4740ec3daba5fdcddc9766064a1db8dd272b41e10e86b6113f3d6798cf22819b56b8c04a97519bb3b0f9c0d8629c89f2d672a41184fd41b90383c", 0xdf}, {&(0x7f0000000400)="7ec6d4f539260dc85a56c54d781aa920a1000285aebd297e170d301c45b0f657006b", 0x22}, {&(0x7f0000000440)="5ca8ee79590937cd39ef72999b60f72975fb252d94f34d051d023c3c725867a6c3d48585e94809a5d35df1689212ba1a014986c9b7bccfd334b1c2d23ddc291b99d06caa96d499f1a6ee0cdca96860352e7d441e33efd979aa4a5474709ed8a6d62827e9cb52462198b89b6e1d6a9c701aa5a9f61399849dd1e4396f001264e2a0b2005833aa5c6ab4a9763df9a8", 0x8e}], 0x9) (async)
recvmmsg(r1, &(0x7f00000066c0), 0xa0d, 0x0, 0x0)

2m51.510645694s ago: executing program 2 (id=14946):
pipe(&(0x7f0000000380)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x14, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r1, &(0x7f0000000300)={0x2, 0x0, @remote}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="e1", 0xfea8, 0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0xfea8, 0xa)

2m51.456559259s ago: executing program 2 (id=14948):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f00000001c0), 0x12)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-serpent-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000100), 0xd79, 0x0)
syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000140)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmmsg$inet(r4, 0x0, 0x0, 0x0)
ioctl$sock_SIOCINQ(r4, 0x541b, &(0x7f00000006c0))
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, &(0x7f0000001300)={0x44, &(0x7f0000001080)={0x0, 0xe, 0x3, "7102e8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$UHID_INPUT(r5, &(0x7f00000010c0)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$LOOP_CONFIGURE(r3, 0x1260, &(0x7f00000002c0)={r5, 0x0, {0x2a00, 0x80010000, 0x0, 0x1fe, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fcffffffffffffff2000b8785d960000000000000000000000000f00000000000100000000000000000000000000000200", "2809e897bdb2128bfc82525edd665240f45f819e01982861ac0000000000000000001100", "90be8b1c551265406c7f306003d8a0f4bd00", [0x20, 0xfffffffffffffffc]}})

2m35.237242222s ago: executing program 32 (id=14948):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f00000001c0), 0x12)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-serpent-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000100), 0xd79, 0x0)
syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000140)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmmsg$inet(r4, 0x0, 0x0, 0x0)
ioctl$sock_SIOCINQ(r4, 0x541b, &(0x7f00000006c0))
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, &(0x7f0000001300)={0x44, &(0x7f0000001080)={0x0, 0xe, 0x3, "7102e8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$UHID_INPUT(r5, &(0x7f00000010c0)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$LOOP_CONFIGURE(r3, 0x1260, &(0x7f00000002c0)={r5, 0x0, {0x2a00, 0x80010000, 0x0, 0x1fe, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fcffffffffffffff2000b8785d960000000000000000000000000f00000000000100000000000000000000000000000200", "2809e897bdb2128bfc82525edd665240f45f819e01982861ac0000000000000000001100", "90be8b1c551265406c7f306003d8a0f4bd00", [0x20, 0xfffffffffffffffc]}})

7.054126591s ago: executing program 0 (id=16531):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000040)='\xc0\a\xb0\xfd\xa3\x1c\n\x17\x1b\xfa\x81 \xdd!\xd9\xeb\x1d\nW\xc1\x81p\x92\nH\xb0i\x03\xbdv\xb4<\xb3\x7f/E+\x12\xf9\x1c\xf3\xad\x80\x9dxa\xbf\xa2\t\xee\xdc\xae\x19d\xa9\xb5\x8f\xb1\xfa\xb6)\v\xb8\xa7\xb1\xf0\xb7ysd\xe15\b\xe9\x91\xb6\xec\x8f\x922]\xe3\x0ez\xcd\x04\r\xb0\xe8\xff\xcd\xf8\xb6>\xe2\xa5\x04\xa9\v\x0f\xf2A\xf2\xf5\xf2\xd2\x1a\t\xf9R\xc6\xddO')
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000240)={0xf, 0xfffffffffffffffb, 0x5, 0x7, 0x4, 0x0, [{0x9, 0x81, 0x8f, '\x00', 0x4}, {0x4c9104bd, 0x6, 0x1, '\x00', 0x41}, {0x28604135, 0x0, 0x800, '\x00', 0x2502}, {0x3, 0x2, 0x2, '\x00', 0x307}]})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000480)={'#! ', './file0', [{0x20, '+\'-\\(-'}, {}, {0x20, '['}, {0x20, '.'}, {0x20, ':'}, {0x20, 'mptcp_pm\x00'}, {0x20, '\xc0\a\xb0\xfd\xa3\x1c\n\x17\x1b\xfa\x81 \xdd!\xd9\xeb\x1d\nW\xc1\x81p\x92\nH\xb0i\x03\xbdv\xb4<\xb3\x7f/E+\x12\xf9\x1c\xf3\xad\x80\x9dxa\xbf\xa2\t\xee\xdc\xae\x19d\xa9\xb5\x8f\xb1\xfa\xb6)\v\xb8\xa7\xb1\xf0\xb7ysd\xe15\b\xe9\x91\xb6\xec\x8f\x922]\xe3\x0ez\xcd\x04\r\xb0\xe8\xff\xcd\xf8\xb6>\xe2\xa5\x04\xa9\v\x0f\xf2A\xf2\xf5\xf2\xd2\x1a\t\xf9R\xc6\xddO'}, {0x20, '/dev/kvm\x00'}, {0x20, '[})'}], 0xa, "7b9e4c44e10148a44a414e34cf9557dc30715a83dc3fe64f53582c429cfdf495c292db37a17933548bcfea1d161e64402ba7a2dd6b68a3b0ea0f5953163ab0a88fa147acdd3a27a52994d7b8473b15076920e265352d5524f172e9f3755fde1d268e0a650455fd"}, 0x10a)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000100)={0x0, r4}, 0x8)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r4, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x4000)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000340)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000010000070000002800018008000700", @ANYRES32=0x0, @ANYBLOB="14000400fe80000000000000000000000000001b060001000a"], 0x3c}, 0x1, 0x0, 0x0, 0xc00c4}, 0x14)

6.893889759s ago: executing program 0 (id=16532):
prctl$PR_SET_TSC(0x1a, 0x1)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x122)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000440)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000540)='./file0/../file0\x00')
writev(r0, &(0x7f0000001a00), 0x0)
r1 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_TSC(0x1a, 0x2)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080)={0x0, 0x13, "cdfeae1c44438dc83d73a58b8a779b02fb0dc4"}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01f71800000000000000240000002400000002000000000000000000000400000003000000000000000000000000000000000000000d0200000000000006"], 0xffffffffffffffff, 0x3e, 0x0, 0xa}, 0x28)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newtaction={0x48, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x34, 0x1, [@m_sample={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x4, {0x3}}}}]}]}, 0x48}}, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000000)={0x1f, 0x0, @none}, 0xe)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="180000000000000000000000000000007919b800000010009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x80)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000000040), 0x4)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="680000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000400012800c0001006d6163766c616e0030000280080006"], 0x68}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeed, 0x8031, 0xffffffffffffffff, 0xf6d0d000)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mremap(&(0x7f0000000000/0x9000)=nil, 0xa00000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003f000b05d25a806c8c6394f90324fc60100002000a000300053582c137153e3704020180fc0b09000c00", 0x33fe0}], 0x1}, 0x0)
ioctl$CDROM_DEBUG(r1, 0x5330, 0x0)
sendmsg$kcm(r1, &(0x7f00000019c0)={&(0x7f0000000140)=@llc={0x1a, 0xfffe, 0x4, 0xf, 0x4, 0xf, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xd}}, 0x80, &(0x7f0000001740)=[{&(0x7f0000000240)="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", 0x1000}, {&(0x7f0000001240)="ef6d88585710e80b83501f80f18542cae5561703a9817c342f422aad17195f13ffc5c64bd91d414a688ea66cf0e2839220595b3aa28a972c527cfef1c288b08bb31df58bd5af4b1907971ee4ff3b102f91e75977269727c739da82ee9ddfdf1f9fc885bed6de5b274c338c", 0x6b}, {&(0x7f0000000000)="1489d91b9c8dac3e223796776681188733dfaa4e9e40", 0x16}, {&(0x7f00000001c0)="30c73e2e6a175a77a021840ae68b215077caa933800fa1b6fc81329df4bb9522406cac5ebd23edf695b7ecd2aa5948", 0x2f}, {&(0x7f00000012c0)="c2ec10c8e0ca7da1fa5ea393b66cdefadbb12bd75f6bc423467fb55a6c3e0ce3d4ba541e7b9a0539d05cda9c9545c8c65b19c31736e4d25119879f0213bb9cc3e588d04c0b1392e0ee13eb619998f92d3f68e46db029b42b6d8c20548066791a2c93472a87e6373fc039663126e52cd726ad0207e30acc2db5e4f1814b11d147f3b6457aadf87ac3d85ba6e47873584e61e86ce6efdc9fef4b78", 0x9a}, {&(0x7f0000001380)="21d0179f19fe7207d2f85ded4c9196c2af262fb5b7603a6971ead379de32321a47b5feadfa6722a012b009afdd0a2476322d996d23d3ec630966102db25cf2a94e90980938db53b87ace8949f130dc78ff1a26651d44df0865e60d2c7f327c9406d0d6d9472e399e86795e0839a533d4db1d775f6a2a84b746e458d1ccd51246a5c96b5506d5349b80bbb4087d854e0018df6c8fe266983d66efd066150a7119bc8c9cb473290575fb7684e920b8a5a0f5bc5ded10295cc38d1176fdd1baec1d1867274c784918b9e0357323d5fae6a79d5a9819ce3ca32dcf4eb90bbaff159b6222a9442b1aba2569412d4fbdca38d29469460aae58db3277c50932cde8", 0xfe}, {&(0x7f0000001480)="221c95853060095acc0d78a3d0cc280aa42037200b84b5d1b84f74f1f51313f6df695a62ce7a997c70af99c5b74f7464af44a519eb4aa632330a65ea8094bca285aa985fe55b9deebd8405b9870b3ec25527b6ed371663e70cb6e2c118c7043f39f4a853ba23bf2805ae93eb5510d8bb520362d2fc444e286094fb96e5e4560c7194dee083b1b896f133f711db2d42766d0899bf1e2fac3ca23fbeee08a69f78e2899f10f2074f3ae7216d5ad09f945a2839fb729716fb0bb26357947a00a0978f7e4afed80a27", 0xc7}, {&(0x7f0000001580)="d4a1647159fb1342d97850", 0xb}, {&(0x7f00000015c0)="047bf2d92f6725b3812f526eedb73d33091e15e657955a64297dc30843519ef8ba5ab5eec0def36e584fcfdafa64efc557b41d1d2f81eb8ff5618479f3e08abd86399998f85133a124d1b47e4a936aec117888da231cf93fcd06175d69b28466aa26938a46036145aca2faeb94984320f60b660bcef90715f1e6920446d4", 0x7e}, {&(0x7f0000001640)="08fdc1f8862d0edaf541b5603fe95c45fa027457db762b6feeac098d2494a9fb7e8dc51d70578dbafffdcaf59d56fe320f7205bb5b1684a6dfb7b1cce6bb1fa61ee55303857cd20e77407413d6aa7ac5eb31efca81a6b99e48a6e3effa6d354713a1a0d665a66530028129ac359d7569bb9cfcc74fdcbd0fefe975838f500c9900d7aab3aa1623666949aeaceb2a3f320cf97728307f04201012b8062b1e2d036f3320587152e700def0ed0eb94d157da47a6d9360d4b0cc465ff937bdf1003b5585d80a4d9a52b641dace91adc1bf31aa0e947ea0ef8e3a3ea0f0227862", 0xde}], 0xa, &(0x7f0000001800)=ANY=[@ANYRESOCT], 0x1b0}, 0x4)
mount$9p_fd(0x0, 0x0, &(0x7f0000000040), 0x208000, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0xf5ffffff, 0x0, 0x0, 0x0, 0x4000000}, 0xf5ff}], 0xf00, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="e40000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000222803001c0012800c0001006d6163766c616e000c000280080001000800000008000500", @ANYRES32, @ANYBLOB='\b\x00?'], 0xe4}}, 0x0)
r5 = syz_open_dev$evdev(&(0x7f0000000200), 0x4, 0x2080)
ioctl$EVIOCGKEYCODE_V2(r5, 0x80284504, &(0x7f0000000040)=""/185)

3.656011571s ago: executing program 0 (id=16557):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040))
r1 = syz_open_dev$usbfs(&(0x7f0000000080), 0x9, 0x0)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r1, 0x8108551b, &(0x7f00000000c0)={0x259d, 0x3, "c0190124a959f04858cf9ea4e8c70431c5b67f34f75181cdf819a664b4ef105e54eff0b01307617b3bec41ccdc4dd699e315252ae9a25a6e1961798695dde5125742c6a9736cae1ec619088d5e90398478bd56c80827d0bd7f296a3860c187d5ec384e7ffca93f6a4a3fdc5ccd2b7c25554927f1a4972cbde297dd9a1bc440b4bd26b8b4ead5f2bfc345c57934c77db0491a1bd78678236166b52bf356b6a65042b3d83e5319a4ae3407cf8a6888c42c43820d6c40f24d3965b977bed1f3098f101c892b0599409769dd7d086725713ebc29c3189dda3db4bf30876b8c55dd7d57b430ec1ce87576c914c87721e6f2e208674d77010313d2e7369e513c2c5b1e"})
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000000))
ioctl$USBDEVFS_GET_CAPABILITIES(r1, 0x8004551a, &(0x7f0000000200))

3.65525666s ago: executing program 0 (id=16559):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040), 0x111, 0x2}}, 0x20)
socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x34, r3, 0x400, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x6}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7fff}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x4008840}, 0x8080)
r4 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000280)={'team0\x00', <r5=>0x0})
sendmsg$nl_route_sched_retired(r4, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=@newchain={0x34, 0x64, 0x1, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0x2, 0x1}, {0x0, 0x2}, {0xb, 0xfff1}}, [@f_rsvp6={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x24000040)
ioctl$SG_NEXT_CMD_LEN(r4, 0x2283, &(0x7f0000000380)=0x19)
read(r4, &(0x7f00000003c0)=""/225, 0xe1)
r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/sys/net/ipv4/vs/conn_reuse_mode\x00', 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r6, 0x8983, &(0x7f0000000500)={0x6, 'bond_slave_0\x00', {0x44}, 0x4})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000005c0)=<r9=>0x0)
sendmsg$NFC_CMD_LLC_SET_PARAMS(r7, &(0x7f00000006c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x54, r8, 0x2, 0x70bd28, 0x25dfdbfb, {}, [@NFC_ATTR_LLC_PARAM_RW={0x5, 0x10, 0xe}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r9}, @NFC_ATTR_LLC_PARAM_RW={0x5}, @NFC_ATTR_LLC_PARAM_RW={0x5, 0x10, 0x4}, @NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0x13}, @NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0x2}, @NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0x81}, @NFC_ATTR_LLC_PARAM_MIUX={0x6, 0x11, 0x525}]}, 0x54}, 0x1, 0x0, 0x0, 0x8014}, 0xc0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000700)={0x1ff, 0x2, 0xf000, 0x2000, &(0x7f0000ffc000/0x2000)=nil})
clock_gettime(0x0, &(0x7f0000000740)={<r10=>0x0, <r11=>0x0})
setsockopt$sock_timeval(r1, 0x1, 0x43, &(0x7f0000000780)={r10, r11/1000+10000}, 0x10)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000840)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000800)={<r12=>0xffffffffffffffff}, 0x13f, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f0000000880)={0x12, 0x10, 0xfa00, {&(0x7f00000007c0), r12, r6}}, 0x18)
sendmsg$NFC_CMD_DEV_UP(r7, &(0x7f00000009c0)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x4c, r8, 0x906, 0x70bd28, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r9}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r9}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r9}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r9}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r9}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r9}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r9}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8810}, 0x4001)
r13 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a40), r2)
sendmsg$NL80211_CMD_SET_INTERFACE(r6, &(0x7f0000000b80)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000a80)={0xc0, r13, 0x10, 0x70bd26, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x4, 0x69}}}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}, @NL80211_ATTR_MESH_ID={0xa}, @mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MNTR_FLAGS={0x4}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "23f0d914a92aba0bf2b55718d6d005c1ab0d8c63ba203899"}, @NL80211_ATTR_MNTR_FLAGS={0x28, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}], @NL80211_ATTR_4ADDR={0x5, 0x53, 0x1}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0xc}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @NL80211_ATTR_4ADDR={0x5}]}, 0xc0}, 0x1, 0x0, 0x0, 0x20040000}, 0x40800)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r4, 0x84, 0x6, &(0x7f0000000bc0)={<r14=>0x0, @in={{0x2, 0x4e24, @remote}}}, &(0x7f0000000c80)=0x84)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r4, 0x84, 0x78, &(0x7f0000000cc0)=r14, 0x4)
writev(0xffffffffffffffff, &(0x7f0000000e80)=[{&(0x7f0000000d00)="cdda249391fb6906c852639faf2d98229a6207042d23d24e2d7775ee331ca52edcc11e1fa6892ae166ccd87ab11c95373ced9afdcaf1f752972a970b5fe21605f9f30ae9ec6c708cba32b4973259c4434837", 0x52}, {&(0x7f0000000d80)="8420ac877a1380de78cd4a90c8404522", 0x10}, {&(0x7f0000000dc0)="f5385b27fe601fb51cde988bb5a5bb597650d0e502dfef9d1f964da38cbf03f8f80173a2f91ccdf79e38047dca553d52674dcc78032c445e64f54adeff55622dd82acdc8e120ed599c69d01c858f5af24de3351e7b5df5c8828af6f544060ee17c6398bdf83936eed9e322d121b99044d8ef371d1764e21cd2beff3cef997b5de3852d4f4550c5a43dce1f7de3777edafd63c05d793cc6b929", 0x99}], 0x3)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r4, 0x84, 0x10, &(0x7f0000000fc0)=@sack_info={0x0, 0x7fff, 0x4}, &(0x7f0000001000)=0xc)

3.591345614s ago: executing program 0 (id=16560):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), r0)
sendmsg$IEEE802154_ASSOCIATE_REQ(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYRES64=r1, @ANYRES16=r1, @ANYRES32, @ANYRESDEC=r0, @ANYRES64=r0], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20040014)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='task\x00')
r4 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r4, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
recvmmsg(r4, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000400)=""/4096, 0x10c4}], 0x1}}], 0x4000210, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)={0x14, 0x38, 0x701, 0x0, 0x0, {0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x48010}, 0x4000000)
r6 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r6, 0xc100565c, &(0x7f00000013c0)={0x0, 0x800002, 0x2, {0x5, @vbi={0x0, 0x3, 0x5, 0x0, [], [0x8200], 0x1}}})
ioctl$VIDIOC_QBUF(r6, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x0, 0x400, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfe, "8000"}, 0x0, 0x2, {}, 0x20800})
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$ax25_int(r8, 0x101, 0x8, &(0x7f0000000000), &(0x7f0000000040)=0x4)
sendmsg$nl_route(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@dellink={0x40, 0x10, 0xc03, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @remote}, @IFLA_IPTUN_6RD_RELAY_PREFIXLEN={0x6, 0xe, 0x8}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000020}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[], 0xc4}}, 0x0)
syz_usb_connect(0x2, 0x9a2, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000d0241710d8050a81b892000000010902"], 0x0)
fchdir(r3)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r9 = syz_open_dev$loop(&(0x7f0000000180), 0x9, 0x105002)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f0000001440)={r9, 0x401, {0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x12, 0x8, 0x8, "6684d878a4391ec125d7e273b3490c5e2984bcd126c4d4ba11e86ec69a1680661451f5db0d18da180b2b0939610fbf01a591c9d3d1601832576d434728341ba2", "e6ffe281e1e670ba8eb5bb6a0c6b506a7de36a051a3d25472532e585932d55ce149bda4b0e764e94d1229a7bcc9e0360d5ffd22a2424208efd265d3dcdaa8fff", "16fdf9cd2bb97cb1353999ba7f03b2ce85f6189d6d99ec2c7f9da8405a149648", [0x6f6, 0x401]}})
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=@framed={{0x6, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x3c}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x76}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
syz_open_procfs$namespace(r2, &(0x7f0000000140)='ns/pid_for_children\x00')

2.158711824s ago: executing program 4 (id=16590):
signalfd(0xffffffffffffffff, &(0x7f0000000140), 0x8)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/3\x00')
read$FUSE(r0, &(0x7f0000000400)={0x2020}, 0x2020)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0xd, 0x8, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x2000d00, 0xe, 0x55, &(0x7f0000000140)="a06ad876d56a0064d082778c3938", &(0x7f0000000380)=""/85, 0x0, 0x4000000}, 0x28)
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYRES8=r2], 0x1c}}, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000cc0), 0x505f81, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
syz_emit_ethernet(0x22, &(0x7f0000000180)=ANY=[@ANYBLOB="0000000020001722ecbdf591c3ccda9befbb6c1400"], 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
write$cgroup_subtree(r3, &(0x7f0000000180)=ANY=[], 0x36)
mkdirat(0xffffffffffffff9c, 0x0, 0x154)
getpid()
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$SMC_PNETID_GET(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
getsockname$packet(r6, &(0x7f0000000180)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000900)=ANY=[@ANYBLOB="8c0000001000370400"/20, @ANYRES32=r7, @ANYBLOB="00000000000000006c0012800e00010069703665727370616e000000580002801400060020010000000000000000000000000002050016000100000014000700fc020000000000000000000000000000040012"], 0x8c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newqdisc={0x24}, 0x24}, 0x1, 0x0, 0x0, 0xc}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@deltclass={0x24, 0x29, 0x800, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xd, 0xfff3}, {0xb, 0xfff1}, {0x6, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x1)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000640)=ANY=[@ANYBLOB="180000002d00010026bdf0007cdbdf2504000000040010"], 0x18}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)
close_range(r8, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtfilter={0x24, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x7}, {}, {0x8, 0x1}}}, 0x24}}, 0x4000)
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r9, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2.029582473s ago: executing program 4 (id=16591):
r0 = syz_open_dev$vbi(&(0x7f0000000340), 0x0, 0x2)
process_madvise(0xffffffffffffffff, &(0x7f0000002800)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x14, 0x0)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000180))
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='fd\x00')
r2 = memfd_create(&(0x7f0000000480)='v\xa6\xf5lj6,r\xaf\xe8\x10/\xecg\xed\xe3h\x80\xb8!y6w\xda\xdb\xb9\nR\xe8@\x99\xb9\x8a\x0fZ\t\x90\x8bp\x10\x84\x86t\x8a\xba\xc6\xfb\xd2\f\xef&\xad\xa8M\xe8\b\xb0#\xac)\x81\x1e\xf8hC\xcb\xf8\xc6\xd2\x86\x84\xa7\xf4\x8a\f\x11D\x90\xf5\xbb\x1c\xac\xc7\xad\xdc\\\x11\x95\xf8\xe6\xa7\xc3\xbc\x18+\x92\x92N\a\xa7\x7fN\x9bL\xf8\xebQs\x02\xf9\xadi\x8f\x0f\xff\x02n\x9d\x85\xea\x1a*\x1bC\xd8\x1c\xe8\x9bYSp\xa5\xfd\ny\xdfS\xdbU\xf8l\xb5b\x83\x00\x00\x00\x00\xfc\x83\x18\xe46\x8a\x029\x19\x8fjC\xce\xa7S\x81\xd5\xda\x05\x00\xe3A_\x05XCk\x1d\x1cC\x97r\x93\xd6t\x81b\xc7x\xab\xa2\xf0\av\x88\x10\x00\xeaF\xa9!\xfc\x1c\xbf7q\xcf\xed&\x96\xa6\x1c_\xff\xb4\x00X\x1b\xedw\xc1\x00\x00\x00\x00\xe0T\x1f\xbc\x85\xd1Z\xa9\x01Z\xc2\xb0\f\x9a\x16\xa5?\xf74\x88\xeez@a\xa2\x83S\xc1\v\xe7\xdf\x80\xe4\x9c\xf5f\x94j@\xb1\xcfh\xc5g\x02\xc6 \x02\x00\x00\x00\x88\xee\x0f\xf5J*\xb3\xe8iWTav\xff\xd9\xb0C\x1e\xbe\x97\xc8$-\x8d)\xe8\\\x8e;I\xde\x8a\x8f\x0fq\x06\xee\xb9\xc1\xf1)\xa0\xd9T\xec\x8b\x85I\x87OZ\xd8\"4\x87\xb1\xed?:\x84S\xb9\xbf\xab#\xd0N\x8f\x1ey7\x9286p\x10u=\xa6\xdc9|\xb6\xa8\rE\xfbu6S\xef\x8cp\xe1\x7f{\xeb\xfe%\x19 h\x82\xc8Q\xd7\xabO\xb5\xc8\x1b\x99&\x80d\xa4jl=\x90T\xf5ZB\xdalk\xf4\xe8\xb4\xedq\x91\xdf\x9c\xdab\x16\x97\xa0\xae\xf8\xf3\xff\xa3\xc3?\x83\x990\xb0\xa3X,\x02\x14m\xb5\xcb\xca\xf2\vC\xcd2X\xef\x94f$\xca\xf5\xb4X\x9cj\x04\xc0\x879\xcft\x1b\xa4@)\xb6\x16\x8d\xb13K\xfd\n0P+\xec\xf8E\xb96\xb51\xc1\xce,\xc9\xab\x84\x19\x9e\xcc\xf8\xdf\xcb\xa6Q\xd5;\x00\x1c\xd0ht\x01\xfe\xb7\x81\xaas\xe8={.\x91\xe9x\xa18\xa6\x97\xf3\xa8,\xba\xd9\xf9I\x8d\xa5\xfe\xff\xa9\x14\xe9\xbd\x15u(B', 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r5, 0x4008ae8a, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000000cc0001"])
ioctl$KVM_SET_LAPIC(r5, 0x4400ae8f, &(0x7f0000000440)={"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"})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
write(r2, &(0x7f0000002140)="6963e64243ea486da3a74e3deec6fc5bb9650b5de56946c568f95d22467190ba406d59a5958d6f156c9c8a2ac4677b00000000000000000000200000f8bf54da33", 0x41)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x0)
readlinkat(r1, &(0x7f0000000040)='./file1\x00', &(0x7f00000021c0)=""/102372, 0x18fe4)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)=ANY=[@ANYRES8=r0], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xc9b1, r6}, 0x38)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x4000})
socket$kcm(0x2, 0xa, 0x2)
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r8, &(0x7f00000000c0), 0x10)
listen(r8, 0x5)
r9 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r9, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r10 = accept4$unix(r8, 0x0, 0x0, 0x40000)
sendto$packet(r9, &(0x7f0000000600)="5f0efc3e1792a50972d2eb21bdff9ca4ac804c2847fe7bf05ddc63ff512d4074687760a5fbd1fc97772c6f5027dcea15b6658de3b024a6ea22baafb445bf8427c8055d00", 0xffffff3d, 0x0, 0x0, 0x0)
recvmsg(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)}, 0x10000)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000080)={'syzkaller1\x00', @broadcast})
write$tun(r7, &(0x7f0000000300)=ANY=[@ANYBLOB="1c00000e01000b000000"], 0x36)

1.924081801s ago: executing program 4 (id=16592):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, 0x0)

1.838435988s ago: executing program 4 (id=16593):
r0 = socket$inet6(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000ed3fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000300)={0x56}, 0x8)
sendto$inet6(r0, &(0x7f0000000100)="bc", 0x2e4ff, 0x4, &(0x7f00000000c0)={0xa, 0x4e20, 0x8, @loopback, 0x1}, 0x1c)

906.895675ms ago: executing program 4 (id=16598):
pipe(&(0x7f0000000380)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x4)
setsockopt$inet_tcp_int(r1, 0x6, 0x14, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r1, &(0x7f0000000300)={0x2, 0x0, @remote}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="e1", 0xfea8, 0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0xfea8, 0xa) (fail_nth: 3)

906.549164ms ago: executing program 4 (id=16599):
r0 = socket$kcm(0x21, 0x2, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x141)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000300)='./file0\x00')
io_submit(0x0, 0x0, 0x0)
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r1, &(0x7f00000008c0)=""/31, 0x1f)
r2 = socket(0x2b, 0x80801, 0x1)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000100)={'ip6tnl0\x00', &(0x7f0000000080)={'syztnl0\x00', 0x0, 0x4, 0x10, 0x5, 0xffff56ce, 0x40, @private2={0xfc, 0x2, '\x00', 0x1}, @private0, 0x7800, 0x40, 0x8, 0x8}})
connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x3ff}, 0x1c)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
r4 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000340)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f0000000000)={r5, 0x9, 0x20}, &(0x7f00000000c0)=0xc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2000000, 0x0)
chdir(&(0x7f0000000280)='\x00')
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
r6 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
close_range(r0, r2, 0x2)
r7 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0xfe)
ftruncate(r7, 0x2008002)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r8)
sendfile(r6, r7, 0x0, 0x80000001)
sendmsg$inet(r0, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)=[@ip_retopts={{0x14, 0x110, 0xd, {[@timestamp_addr={0x44, 0x4}]}}}], 0x18}, 0x0)

906.50468ms ago: executing program 3 (id=16600):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000001b00000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c00024000000000000000000c0001400000000000000000090003"], 0xd4}}, 0x0)

905.005185ms ago: executing program 3 (id=16605):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWSETELEM={0x2c, 0x1e, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x54}, 0x1, 0x700}, 0x0)

842.330271ms ago: executing program 3 (id=16611):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000090000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x2, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0xf, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)

354.2506ms ago: executing program 0 (id=16601):
syz_usb_connect(0x1, 0x2d, &(0x7f0000000340)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904010001faf40d00090582239f"], 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha384)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x800)
write$nbd(r1, &(0x7f0000000400)=ANY=[], 0xb4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x800000000000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x2, 0x0, {0xa, 0x0, 0x4}, [@NHA_OIF={0x8, 0x5, r6}]}, 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x24044000)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0xfffffffffffffda3, &(0x7f0000000180)={&(0x7f0000000200)=@delnexthop={0x20, 0x69, 0xb, 0x0, 0x0, {}, [{0x8, 0x1, 0x1}]}, 0x20}}, 0x4000000)
r10 = fcntl$dupfd(r3, 0x406, r2)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r10, 0x8028c003, 0x4)
ioctl$EVIOCSREP(r10, 0x40084503, &(0x7f0000000000)=[0xb, 0x9])

353.780078ms ago: executing program 3 (id=16603):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r0, &(0x7f00000001c0)='g', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f00000000c0)={0xb, 0x4, 0xfe, 0x9, 0x3, 0x0, 0xd, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x4}, 0xe)
shutdown(r0, 0x1)
recvmmsg(r0, &(0x7f0000000840)=[{{0x0, 0x0, 0x0}}], 0x414, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002f40)=ANY=[@ANYBLOB="40000000210a010800000000000000000a0000010900020073797a31000000000900010073797a310000000014000380"], 0x40}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
syz_emit_ethernet(0x4a, &(0x7f0000000380)={@broadcast, @dev, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "72b2af", 0x4, 0x2f, 0x0, @dev, @mcast2, {[], {0x0, 0x883e, 0x10, 0x0, @gue={{0x2}}}}}}}}, 0x0)

277.692792ms ago: executing program 1 (id=16604):
r0 = syz_open_dev$video(&(0x7f0000000440), 0x8, 0x0)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000000c0)={0x8, @sdr={0x3432564e, 0xfffff001}})
r1 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi3\x00', 0x2000, 0x0)
ioctl$COMEDI_INSN(r1, 0x8028640c, &(0x7f0000000000)={0x4000000, 0x92, 0x0, 0x1, 0x80000000})

277.055003ms ago: executing program 1 (id=16606):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010008020000001800006600000008000300", @ANYRES32=r2, @ANYBLOB="08002600940900000800b7"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r3 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r3, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x10, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x1}], 0x1}}], 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000e40)={0x2c, 0x2b, 0xb, 0x0, 0x0, {0x8}, [@typed={0x4, 0x3}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x0, 0x0, 0x0, @str='\x88H'}]}, @typed={0x8, 0x2, 0x0, 0x0, @fd}]}, 0x2c}}, 0x0)

213.750578ms ago: executing program 1 (id=16607):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

213.486526ms ago: executing program 3 (id=16608):
r0 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f0000000100)=[<r1=>0x0, <r2=>0x0], 0x0, 0x0, 0x0, 0x24})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r1, <r3=>0x0})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETOBJ_RESET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="20000000150a0103000000000000797a3100"/32], 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x4004004)
r5 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETFB(r5, 0xc01c64ad, &(0x7f0000000080)={r3})
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x1000004, 0x13, r5, 0x100000000)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60)
r8 = syz_open_dev$dri(&(0x7f0000000140), 0x2, 0x103000)
ioctl$DRM_IOCTL_MODE_OBJ_SETPROPERTY(r8, 0xc01864d0, &(0x7f00000003c0)={0x29, 0x0, 0x0, 0xb0b0b0b0})
r9 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r9, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r9, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r10=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r9, 0xc02064b6, &(0x7f00000001c0)={r10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r11 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r11, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r12=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r11, 0xc02064b6, &(0x7f00000001c0)={r12, <r13=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r11, 0xc01064c8, &(0x7f0000000280)={0x1, 0x0, &(0x7f0000000200)=[0x0]})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r11, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000240)=[<r14=>0x0], &(0x7f0000000040), 0x1, r13})
ioctl$DRM_IOCTL_MODE_ATOMIC(r11, 0xc03864bc, &(0x7f0000000380)={0x200, 0x1, &(0x7f0000000440)=[r13], &(0x7f0000000200), &(0x7f0000000300)=[r14], &(0x7f0000000340)})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f0000000280)={&(0x7f0000000200)=[<r15=>0x0], &(0x7f0000000240)=[0x0, 0x0, 0x0], 0x1, 0x0, 0xeeeeeeee})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r5, 0xc05064a7, &(0x7f0000000cc0)={&(0x7f00000002c0)=[0x0, 0x0], &(0x7f0000000900), &(0x7f0000000840)=[0x0, 0x0, <r16=>0x0, 0x0], &(0x7f0000000880)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x4, 0x2})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f0000000b80)={&(0x7f0000000380)=[0x0, <r17=>0x0], &(0x7f0000000b40)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x2, r1, 0xdededede})
ioctl$DRM_IOCTL_MODE_ATOMIC(r5, 0xc03864bc, &(0x7f0000000c80)={0x1, 0x5, &(0x7f00000000c0)=[r3, r3, r2, r1, r10], &(0x7f0000000180)=[0x1, 0xa2f], &(0x7f0000000bc0)=[r14, r15, r16, r17, 0x0], &(0x7f0000000c00)=[0x4, 0x7f, 0x3a4bdccd, 0x7, 0x2, 0x10000, 0x7, 0x2, 0x1]})
r18 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r18, 0x4400ae8f, &(0x7f0000000440)={"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"})

134.034153ms ago: executing program 1 (id=16612):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_GET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="2b0326bd7000fbdbdf2512"], 0x14}}, 0x8000)
syz_genetlink_get_family_id$smc(&(0x7f0000000000), r0)

74.620444ms ago: executing program 1 (id=16613):
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000100)=@generic={&(0x7f0000000080)='./file0\x00'}, 0x18)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000019dc0)=""/4090, 0xffa)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x94)
r1 = openat$audio1(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$SOUND_MIXER_READ_VOLUME(r1, 0x80444d1a, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f00000006c0)=""/4096, 0x1000)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0380c2000000aaaaaaaaaabb08004500000001ac1414aa030490781200183f2500000000681f00000100e6a0a5767bc6d6bdb71c007f0000017f000003c979c30103e0d75192b364b74467b8a9a6275cebb2acda7661043d462cd896af02e7528fc0761a1738ea3b07c89c41a63b6c00b7bc7fc466a7f3132f1758d30e9a215137086648c42469d2b1e128fb844049b2256b4206828abaeb4c4f66a0a319deec70227762107ea6e60069d84376b1ed2c736757b48454099f536dad3793165814842250b65dbac5b76e87363c00"/215], 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x4000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000100)=@generic={&(0x7f0000000080)='./file0\x00'}, 0x18) (async)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000019dc0)=""/4090, 0xffa) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x94) (async)
openat$audio1(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async)
ioctl$SOUND_MIXER_READ_VOLUME(r1, 0x80444d1a, 0x0) (async)
socket$inet_icmp_raw(0x2, 0x3, 0x1) (async)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f00000006c0)=""/4096, 0x1000) (async)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0380c2000000aaaaaaaaaabb08004500000001ac1414aa030490781200183f2500000000681f00000100e6a0a5767bc6d6bdb71c007f0000017f000003c979c30103e0d75192b364b74467b8a9a6275cebb2acda7661043d462cd896af02e7528fc0761a1738ea3b07c89c41a63b6c00b7bc7fc466a7f3132f1758d30e9a215137086648c42469d2b1e128fb844049b2256b4206828abaeb4c4f66a0a319deec70227762107ea6e60069d84376b1ed2c736757b48454099f536dad3793165814842250b65dbac5b76e87363c00"/215], 0x0) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x4000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) (async)

74.339364ms ago: executing program 3 (id=16614):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0xd, &(0x7f00000002c0)="1a00000002000000", 0x8) (fail_nth: 3)

0s ago: executing program 1 (id=16615):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a5, &(0x7f0000000100)={{@any, 0x8000}, 0x1, 0x0, 0x8}) (fail_nth: 2)

kernel console output (not intermixed with test programs):

5820][T10242] FAULT_INJECTION: forcing a failure.
[  567.815820][T10242] name failslab, interval 1, probability 0, space 0, times 0
[  567.820021][ T5168] usb 6-1: new full-speed USB device number 112 using dummy_hcd
[  567.822514][T10242] CPU: 3 UID: 0 PID: 10242 Comm: syz.0.16038 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  567.822539][T10242] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  567.822551][T10242] Call Trace:
[  567.822557][T10242]  <TASK>
[  567.822565][T10242]  dump_stack_lvl+0x16c/0x1f0
[  567.822588][T10242]  should_fail_ex+0x512/0x640
[  567.822612][T10242]  should_failslab+0xc2/0x120
[  567.822633][T10242]  __kmalloc_cache_noprof+0x6a/0x3e0
[  567.822660][T10242]  ? nsim_fib_event_nb+0x1c4/0x10d0
[  567.822690][T10242]  nsim_fib_event_nb+0x1c4/0x10d0
[  567.822723][T10242]  notifier_call_chain+0xbc/0x410
[  567.822749][T10242]  ? __pfx_nsim_fib_event_nb+0x10/0x10
[  567.822780][T10242]  atomic_notifier_call_chain+0x71/0x1c0
[  567.822808][T10242]  call_fib_notifiers+0x33/0x70
[  567.822828][T10242]  fib_notify_alias_delete+0x2be/0x390
[  567.822849][T10242]  ? __pfx_fib_notify_alias_delete+0x10/0x10
[  567.822876][T10242]  ? fib_table_insert+0x682/0x1c40
[  567.822899][T10242]  ? lockdep_rtnl_is_held+0x26/0x40
[  567.822923][T10242]  ? fib_find_node+0x22b/0x2b0
[  567.822948][T10242]  ? fib_find_alias+0x208/0x270
[  567.822976][T10242]  fib_table_delete+0x5c4/0x8d0
[  567.823018][T10242]  ? fib_route_seq_show+0xdf1/0xea0
[  567.823044][T10242]  ? __pfx_fib_table_delete+0x10/0x10
[  567.823061][T10242]  ? find_held_lock+0x2b/0x80
[  567.823084][T10242]  ? fib_magic+0x1a7/0x5c0
[  567.823104][T10242]  ? fib_new_table+0x109/0x3f0
[  567.823126][T10242]  fib_magic+0x362/0x5c0
[  567.823149][T10242]  ? __pfx_fib_magic+0x10/0x10
[  567.823188][T10242]  fib_modify_prefix_metric+0x2de/0x3a0
[  567.823216][T10242]  inet_rtm_newaddr+0xebe/0x1540
[  567.823245][T10242]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  567.823273][T10242]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  567.823292][T10242]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  567.823310][T10242]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  567.823330][T10242]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  567.823352][T10242]  rtnetlink_rcv_msg+0x95b/0xe90
[  567.823373][T10242]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  567.823400][T10242]  ? ref_tracker_free+0x37c/0x830
[  567.823425][T10242]  netlink_rcv_skb+0x158/0x420
[  567.823446][T10242]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  567.823472][T10242]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  567.823503][T10242]  ? netlink_deliver_tap+0x1ae/0xd30
[  567.823529][T10242]  netlink_unicast+0x5a7/0x870
[  567.823553][T10242]  ? __pfx_netlink_unicast+0x10/0x10
[  567.823585][T10242]  netlink_sendmsg+0x8d1/0xdd0
[  567.823610][T10242]  ? __pfx_netlink_sendmsg+0x10/0x10
[  567.823642][T10242]  ____sys_sendmsg+0xa98/0xc70
[  567.823666][T10242]  ? copy_msghdr_from_user+0x10a/0x160
[  567.823684][T10242]  ? __pfx_____sys_sendmsg+0x10/0x10
[  567.823723][T10242]  ___sys_sendmsg+0x134/0x1d0
[  567.823743][T10242]  ? __pfx____sys_sendmsg+0x10/0x10
[  567.823791][T10242]  ? __mutex_unlock_slowpath+0x100/0x800
[  567.823822][T10242]  __sys_sendmsg+0x16d/0x220
[  567.823841][T10242]  ? __pfx___sys_sendmsg+0x10/0x10
[  567.823881][T10242]  do_syscall_64+0xcd/0x4c0
[  567.823903][T10242]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  567.823921][T10242] RIP: 0033:0x7f876498ebe9
[  567.823936][T10242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  567.823953][T10242] RSP: 002b:00007f8765735038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  567.823970][T10242] RAX: ffffffffffffffda RBX: 00007f8764bb5fa0 RCX: 00007f876498ebe9
[  567.823982][T10242] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000003
[  567.823993][T10242] RBP: 00007f8765735090 R08: 0000000000000000 R09: 0000000000000000
[  567.824004][T10242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  567.824014][T10242] R13: 00007f8764bb6038 R14: 00007f8764bb5fa0 R15: 00007ffc3a3044a8
[  567.824060][T10242]  </TASK>
[  567.830218][T10245] delete_channel: no stack
[  568.000620][T10250] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  568.022312][ T5168] usb 6-1: config 0 has no interfaces?
[  568.026967][ T5168] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  568.030692][ T5168] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  568.036682][ T5168] usb 6-1: config 0 descriptor??
[  568.046898][T10252] kvm: kvm [10251]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x7
[  568.050218][T10252] kvm: kvm [10251]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x7
[  568.108321][T10252] kvm_intel: kvm [10251]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0x1d9) = 0x1
[  568.124912][T10252] kvm: kvm [10251]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0x187) = 0x1
[  568.127997][T10252] kvm: kvm [10251]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0x186) = 0x1
[  568.275424][ T5168] usb 6-1: USB disconnect, device number 112
[  568.995995][T10280] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  569.114843][T10283] tipc: Started in network mode
[  569.116500][T10283] tipc: Node identity ac14140f, cluster identity 4711
[  569.118770][T10283] tipc: New replicast peer: 255.255.255.255
[  569.120924][T10283] tipc: Enabled bearer <udp:syz2>, priority 10
[  569.123355][T10283] netlink: 12 bytes leftover after parsing attributes in process `syz.1.16051'.
[  569.126297][T10283] tipc: Disabling bearer <udp:syz2>
[  569.334567][T10305] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  569.982917][T10333] FAULT_INJECTION: forcing a failure.
[  569.982917][T10333] name failslab, interval 1, probability 0, space 0, times 0
[  569.986964][T10333] CPU: 0 UID: 0 PID: 10333 Comm: syz.1.16068 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  569.986996][T10333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  569.987003][T10333] Call Trace:
[  569.987008][T10333]  <TASK>
[  569.987013][T10333]  dump_stack_lvl+0x16c/0x1f0
[  569.987029][T10333]  should_fail_ex+0x512/0x640
[  569.987042][T10333]  ? fs_reclaim_acquire+0xae/0x150
[  569.987059][T10333]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  569.987076][T10333]  should_failslab+0xc2/0x120
[  569.987089][T10333]  __kmalloc_noprof+0xd2/0x510
[  569.987104][T10333]  tomoyo_realpath_from_path+0xc2/0x6e0
[  569.987122][T10333]  ? tomoyo_profile+0x47/0x60
[  569.987134][T10333]  tomoyo_path_number_perm+0x245/0x580
[  569.987148][T10333]  ? tomoyo_path_number_perm+0x237/0x580
[  569.987167][T10333]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  569.987182][T10333]  ? find_held_lock+0x2b/0x80
[  569.987209][T10333]  ? find_held_lock+0x2b/0x80
[  569.987222][T10333]  ? hook_file_ioctl_common+0x145/0x410
[  569.987237][T10333]  ? __fget_files+0x20e/0x3c0
[  569.987253][T10333]  security_file_ioctl+0x9b/0x240
[  569.987270][T10333]  __x64_sys_ioctl+0xb7/0x210
[  569.987289][T10333]  do_syscall_64+0xcd/0x4c0
[  569.987302][T10333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  569.987314][T10333] RIP: 0033:0x7f0f4f18ebe9
[  569.987324][T10333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  569.987335][T10333] RSP: 002b:00007f0f50020038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  569.987346][T10333] RAX: ffffffffffffffda RBX: 00007f0f4f3b5fa0 RCX: 00007f0f4f18ebe9
[  569.987353][T10333] RDX: 0000000000000000 RSI: 000000004008ae8a RDI: 0000000000000005
[  569.987360][T10333] RBP: 00007f0f50020090 R08: 0000000000000000 R09: 0000000000000000
[  569.987367][T10333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  569.987373][T10333] R13: 00007f0f4f3b6038 R14: 00007f0f4f3b5fa0 R15: 00007ffd8986ee58
[  569.987387][T10333]  </TASK>
[  569.987392][T10333] ERROR: Out of memory at tomoyo_realpath_from_path.
[  570.185120][T10335] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  570.312812][T10346] netlink: 40 bytes leftover after parsing attributes in process `syz.4.16073'.
[  570.405591][   T40] audit: type=1326 audit(1755182400.034:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10350 comm="syz.4.16075" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c7b38ebe9 code=0x7fc00000
[  571.255703][T10359] netlink: 48 bytes leftover after parsing attributes in process `syz.1.16077'.
[  571.360305][T10366] FAULT_INJECTION: forcing a failure.
[  571.360305][T10366] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  571.365684][T10366] CPU: 1 UID: 0 PID: 10366 Comm: syz.1.16080 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  571.365711][T10366] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  571.365724][T10366] Call Trace:
[  571.365732][T10366]  <TASK>
[  571.365740][T10366]  dump_stack_lvl+0x16c/0x1f0
[  571.365764][T10366]  should_fail_ex+0x512/0x640
[  571.365790][T10366]  _copy_to_user+0x32/0xd0
[  571.365816][T10366]  simple_read_from_buffer+0xcb/0x170
[  571.365840][T10366]  proc_fail_nth_read+0x197/0x240
[  571.365863][T10366]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  571.365888][T10366]  ? rw_verify_area+0xcf/0x6c0
[  571.365916][T10366]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  571.365939][T10366]  vfs_read+0x1e1/0xcf0
[  571.365962][T10366]  ? __pfx___mutex_lock+0x10/0x10
[  571.365984][T10366]  ? __pfx_vfs_read+0x10/0x10
[  571.366010][T10366]  ? __fget_files+0x20e/0x3c0
[  571.366040][T10366]  ksys_read+0x12a/0x250
[  571.366059][T10366]  ? __pfx_ksys_read+0x10/0x10
[  571.366087][T10366]  do_syscall_64+0xcd/0x4c0
[  571.366111][T10366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  571.366129][T10366] RIP: 0033:0x7f0f4f18d5fc
[  571.366146][T10366] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  571.366164][T10366] RSP: 002b:00007f0f50020030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  571.366181][T10366] RAX: ffffffffffffffda RBX: 00007f0f4f3b5fa0 RCX: 00007f0f4f18d5fc
[  571.366194][T10366] RDX: 000000000000000f RSI: 00007f0f500200a0 RDI: 0000000000000005
[  571.366206][T10366] RBP: 00007f0f50020090 R08: 0000000000000000 R09: 0000000000000000
[  571.366218][T10366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  571.366229][T10366] R13: 00007f0f4f3b6038 R14: 00007f0f4f3b5fa0 R15: 00007ffd8986ee58
[  571.366255][T10366]  </TASK>
[  571.458480][T10368] netlink: 4 bytes leftover after parsing attributes in process `syz.1.16081'.
[  571.513898][   T40] audit: type=1400 audit(1755182401.072:747): avc:  denied  { execute } for  pid=10367 comm="syz.1.16081" path="/dev/hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  572.239899][T10372] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  572.601099][T10382] team0 (unregistering): Port device team_slave_0 removed
[  572.605612][T10382] team0 (unregistering): Port device team_slave_1 removed
[  572.705423][T10390] netlink: 256 bytes leftover after parsing attributes in process `syz.1.16088'.
[  572.728804][T10392] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16089'.
[  572.732460][T10392] netlink: 'syz.0.16089': attribute type 1 has an invalid length.
[  572.746492][T10392] 8021q: adding VLAN 0 to HW filter on device bond1
[  572.755406][T10392] bond1: (slave geneve2): making interface the new active one
[  572.758539][T10392] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  572.866720][T10401] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  573.381183][T10415] autofs: Bad value for 'fd'
[  573.383800][T10415] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  573.427760][T10417] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  573.680735][T10419] FAULT_INJECTION: forcing a failure.
[  573.680735][T10419] name failslab, interval 1, probability 0, space 0, times 0
[  573.684729][T10419] CPU: 3 UID: 0 PID: 10419 Comm: syz.4.16099 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  573.684746][T10419] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  573.684753][T10419] Call Trace:
[  573.684757][T10419]  <TASK>
[  573.684762][T10419]  dump_stack_lvl+0x16c/0x1f0
[  573.684777][T10419]  should_fail_ex+0x512/0x640
[  573.684790][T10419]  ? fs_reclaim_acquire+0xae/0x150
[  573.684806][T10419]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  573.684823][T10419]  should_failslab+0xc2/0x120
[  573.684836][T10419]  __kmalloc_noprof+0xd2/0x510
[  573.684851][T10419]  tomoyo_realpath_from_path+0xc2/0x6e0
[  573.684869][T10419]  ? tomoyo_profile+0x47/0x60
[  573.684880][T10419]  tomoyo_path_number_perm+0x245/0x580
[  573.684894][T10419]  ? tomoyo_path_number_perm+0x237/0x580
[  573.684909][T10419]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  573.684925][T10419]  ? find_held_lock+0x2b/0x80
[  573.684950][T10419]  ? find_held_lock+0x2b/0x80
[  573.684963][T10419]  ? hook_file_ioctl_common+0x145/0x410
[  573.684977][T10419]  ? __fget_files+0x20e/0x3c0
[  573.684992][T10419]  security_file_ioctl+0x9b/0x240
[  573.685009][T10419]  __x64_sys_ioctl+0xb7/0x210
[  573.685028][T10419]  do_syscall_64+0xcd/0x4c0
[  573.685041][T10419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  573.685053][T10419] RIP: 0033:0x7f8c7b38ebe9
[  573.685062][T10419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  573.685073][T10419] RSP: 002b:00007f8c7c296038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  573.685084][T10419] RAX: ffffffffffffffda RBX: 00007f8c7b5b5fa0 RCX: 00007f8c7b38ebe9
[  573.685091][T10419] RDX: 0000200000000440 RSI: 000000004400ae8f RDI: 0000000000000005
[  573.685098][T10419] RBP: 00007f8c7c296090 R08: 0000000000000000 R09: 0000000000000000
[  573.685105][T10419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  573.685116][T10419] R13: 00007f8c7b5b6038 R14: 00007f8c7b5b5fa0 R15: 00007ffe5e494678
[  573.685130][T10419]  </TASK>
[  573.685134][T10419] ERROR: Out of memory at tomoyo_realpath_from_path.
[  573.750328][T10421] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  573.752736][T10419] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  574.194286][T10432] netlink: 40 bytes leftover after parsing attributes in process `syz.3.16104'.
[  574.264434][T10436] netlink: 20 bytes leftover after parsing attributes in process `syz.3.16106'.
[  574.460052][T10447] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  574.706189][T10459] netlink: 4 bytes leftover after parsing attributes in process `syz.3.16116'.
[  574.804236][ T1425] ieee802154 phy0 wpan0: encryption failed: -22
[  574.812123][T10467] bridge0: port 1(veth0_to_bridge) entered blocking state
[  574.814458][T10467] bridge0: port 1(veth0_to_bridge) entered disabled state
[  574.816961][T10467] veth0_to_bridge: entered allmulticast mode
[  574.819735][T10467] veth0_to_bridge: entered promiscuous mode
[  574.830160][T10471] netlink: 4 bytes leftover after parsing attributes in process `syz.3.16122'.
[  574.839979][T10469] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  574.983792][T10480] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  574.983792][T10480] The task syz.1.16125 (10480) triggered the difference, watch for misbehavior.
[  575.874634][T10495] netlink: 1248 bytes leftover after parsing attributes in process `syz.1.16130'.
[  575.943453][T10500] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  575.949729][T10500] netlink: 'syz.1.16132': attribute type 1 has an invalid length.
[  575.952434][T10500] netlink: 244 bytes leftover after parsing attributes in process `syz.1.16132'.
[  575.984578][T10502] FAULT_INJECTION: forcing a failure.
[  575.984578][T10502] name failslab, interval 1, probability 0, space 0, times 0
[  575.990790][T10502] CPU: 2 UID: 0 PID: 10502 Comm: syz.1.16133 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  575.990808][T10502] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  575.990815][T10502] Call Trace:
[  575.990820][T10502]  <TASK>
[  575.990825][T10502]  dump_stack_lvl+0x16c/0x1f0
[  575.990859][T10502]  should_fail_ex+0x512/0x640
[  575.990879][T10502]  should_failslab+0xc2/0x120
[  575.990894][T10502]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  575.990906][T10502]  ? dst_alloc+0x99/0x1a0
[  575.990957][T10502]  dst_alloc+0x99/0x1a0
[  575.990977][T10502]  rt_dst_alloc+0x35/0x3a0
[  575.990992][T10502]  ip_route_output_key_hash_rcu+0x880/0x28c0
[  575.991014][T10502]  ip_route_output_key_hash+0x137/0x2e0
[  575.991030][T10502]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  575.991055][T10502]  ? __call_rcu_common.constprop.0+0x3f0/0xa10
[  575.991073][T10502]  ? lockdep_hardirqs_on+0x7c/0x110
[  575.991103][T10502]  ? percpu_counter_add_batch+0xb8/0x1f0
[  575.991125][T10502]  ip_route_output_flow+0x27/0x150
[  575.991150][T10502]  tcp_v4_connect+0x899/0x1bb0
[  575.991181][T10502]  ? __pfx_tcp_v4_connect+0x10/0x10
[  575.991205][T10502]  ? __lock_acquire+0xb97/0x1ce0
[  575.991235][T10502]  __inet_stream_connect+0x914/0xf60
[  575.991264][T10502]  ? __pfx___inet_stream_connect+0x10/0x10
[  575.991286][T10502]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  575.991309][T10502]  ? __local_bh_enable_ip+0xa4/0x120
[  575.991337][T10502]  inet_stream_connect+0x57/0xa0
[  575.991361][T10502]  kernel_connect+0x107/0x180
[  575.991374][T10502]  ? __pfx_kernel_connect+0x10/0x10
[  575.991399][T10502]  ? __local_bh_enable_ip+0xa4/0x120
[  575.991415][T10502]  smc_connect+0x4c7/0x760
[  575.991435][T10502]  ? __pfx_smc_connect+0x10/0x10
[  575.991449][T10502]  __sys_connect_file+0x141/0x1a0
[  575.991472][T10502]  __sys_connect+0x13b/0x160
[  575.991494][T10502]  ? __pfx___sys_connect+0x10/0x10
[  575.991530][T10502]  ? __pfx_ksys_write+0x10/0x10
[  575.991554][T10502]  __x64_sys_connect+0x72/0xb0
[  575.991576][T10502]  ? lockdep_hardirqs_on+0x7c/0x110
[  575.991590][T10502]  do_syscall_64+0xcd/0x4c0
[  575.991603][T10502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  575.991615][T10502] RIP: 0033:0x7f0f4f18ebe9
[  575.991625][T10502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  575.991636][T10502] RSP: 002b:00007f0f50020038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  575.991656][T10502] RAX: ffffffffffffffda RBX: 00007f0f4f3b5fa0 RCX: 00007f0f4f18ebe9
[  575.991663][T10502] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000003
[  575.991670][T10502] RBP: 00007f0f50020090 R08: 0000000000000000 R09: 0000000000000000
[  575.991677][T10502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  575.991684][T10502] R13: 00007f0f4f3b6038 R14: 00007f0f4f3b5fa0 R15: 00007ffd8986ee58
[  575.991698][T10502]  </TASK>
[  576.106517][T10504] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16134'.
[  576.127210][T10506] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  576.251487][T10516] netlink: 'syz.0.16138': attribute type 10 has an invalid length.
[  576.310875][T10526] netlink: 'syz.3.16139': attribute type 1 has an invalid length.
[  576.313428][T10526] netlink: 224 bytes leftover after parsing attributes in process `syz.3.16139'.
[  576.591772][T10541] FAULT_INJECTION: forcing a failure.
[  576.591772][T10541] name failslab, interval 1, probability 0, space 0, times 0
[  576.595848][T10541] CPU: 3 UID: 0 PID: 10541 Comm: syz.3.16148 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  576.595865][T10541] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  576.595873][T10541] Call Trace:
[  576.595878][T10541]  <TASK>
[  576.595883][T10541]  dump_stack_lvl+0x16c/0x1f0
[  576.595899][T10541]  should_fail_ex+0x512/0x640
[  576.595914][T10541]  should_failslab+0xc2/0x120
[  576.595928][T10541]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  576.595941][T10541]  ? zswap_store+0x839/0x25a0
[  576.595958][T10541]  zswap_store+0x839/0x25a0
[  576.595979][T10541]  ? __pfx_zswap_store+0x10/0x10
[  576.595994][T10541]  ? do_raw_spin_lock+0x12c/0x2b0
[  576.596006][T10541]  ? find_held_lock+0x2b/0x80
[  576.596021][T10541]  ? folio_free_swap+0x171/0x580
[  576.596034][T10541]  ? do_raw_spin_unlock+0x172/0x230
[  576.596045][T10541]  ? swp_swap_info+0xce/0x130
[  576.596059][T10541]  ? __pfx_swp_swap_info+0x10/0x10
[  576.596075][T10541]  swap_writeout+0x3b2/0xfe0
[  576.596090][T10541]  ? folio_clear_dirty_for_io+0x112/0x810
[  576.596108][T10541]  shrink_folio_list+0x3e46/0x4880
[  576.596130][T10541]  ? __pfx_shrink_folio_list+0x10/0x10
[  576.596188][T10541]  ? __lock_acquire+0x62e/0x1ce0
[  576.596209][T10541]  reclaim_folio_list+0xda/0x5d0
[  576.596225][T10541]  ? __pfx_css_rstat_updated+0x10/0x10
[  576.596242][T10541]  ? __pfx_reclaim_folio_list+0x10/0x10
[  576.596266][T10541]  ? lru_gen_update_size+0x543/0xe10
[  576.596286][T10541]  ? lru_gen_del_folio+0x32b/0x540
[  576.596303][T10541]  reclaim_pages+0x47b/0x650
[  576.596323][T10541]  ? __pfx_vm_normal_page+0x10/0x10
[  576.596337][T10541]  ? __pfx_reclaim_pages+0x10/0x10
[  576.596354][T10541]  ? find_held_lock+0x2b/0x80
[  576.596368][T10541]  ? madvise_cold_or_pageout_pte_range+0x749/0x2120
[  576.596385][T10541]  madvise_cold_or_pageout_pte_range+0x1546/0x2120
[  576.596408][T10541]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  576.596423][T10541]  ? __page_table_check_zero+0x33c/0x5d0
[  576.596438][T10541]  ? lock_acquire+0x179/0x350
[  576.596457][T10541]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  576.596473][T10541]  walk_pgd_range+0xc02/0x1f50
[  576.596495][T10541]  ? __pfx_walk_pgd_range+0x10/0x10
[  576.596510][T10541]  __walk_page_range+0x163/0x820
[  576.596524][T10541]  ? __lock_acquire+0xb97/0x1ce0
[  576.596545][T10541]  walk_page_range_vma+0x2c7/0xa20
[  576.596559][T10541]  ? __pfx_walk_page_range_vma+0x10/0x10
[  576.596572][T10541]  ? find_held_lock+0x2b/0x80
[  576.596591][T10541]  madvise_pageout+0x257/0x540
[  576.596605][T10541]  ? __pfx_madvise_pageout+0x10/0x10
[  576.596625][T10541]  ? mtree_range_walk+0x718/0xc00
[  576.596645][T10541]  madvise_vma_behavior+0xb22/0x2d60
[  576.596663][T10541]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  576.596679][T10541]  ? __pfx_mt_find+0x10/0x10
[  576.596694][T10541]  ? find_vma_prev+0xda/0x160
[  576.596712][T10541]  ? find_vma+0xbf/0x140
[  576.596724][T10541]  ? __pfx_find_vma+0x10/0x10
[  576.596741][T10541]  madvise_walk_vmas+0x31f/0x9c0
[  576.596757][T10541]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  576.596776][T10541]  madvise_do_behavior+0x1e2/0x530
[  576.596791][T10541]  ? __pfx_madvise_do_behavior+0x10/0x10
[  576.596806][T10541]  ? down_read+0x13d/0x480
[  576.596831][T10541]  ? find_held_lock+0x2b/0x80
[  576.596847][T10541]  do_madvise+0x176/0x240
[  576.596861][T10541]  ? __pfx_do_madvise+0x10/0x10
[  576.596880][T10541]  ? __fget_files+0x20e/0x3c0
[  576.596897][T10541]  ? __pfx_ksys_write+0x10/0x10
[  576.596911][T10541]  __x64_sys_madvise+0xa9/0x110
[  576.596925][T10541]  ? lockdep_hardirqs_on+0x7c/0x110
[  576.596936][T10541]  do_syscall_64+0xcd/0x4c0
[  576.596949][T10541]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.596961][T10541] RIP: 0033:0x7f5cd018ebe9
[  576.596971][T10541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  576.596982][T10541] RSP: 002b:00007f5cd10a3038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  576.596993][T10541] RAX: ffffffffffffffda RBX: 00007f5cd03b5fa0 RCX: 00007f5cd018ebe9
[  576.597000][T10541] RDX: 0000000000000015 RSI: 7fffffffffffffff RDI: 0000200000000000
[  576.597007][T10541] RBP: 00007f5cd10a3090 R08: 0000000000000000 R09: 0000000000000000
[  576.597014][T10541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  576.597021][T10541] R13: 00007f5cd03b6038 R14: 00007f5cd03b5fa0 R15: 00007ffcca4dead8
[  576.597035][T10541]  </TASK>
[  576.816524][T10544] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  576.998759][T10551] netlink: 14 bytes leftover after parsing attributes in process `syz.4.16152'.
[  577.078188][T10554] batadv_slave_0: entered allmulticast mode
[  577.080721][T10554] batman_adv: batadv0: Interface activated: batadv_slave_0
[  577.088971][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  577.137145][T10553] netlink: 4 bytes leftover after parsing attributes in process `syz.4.16153'.
[  577.220744][T10573] binder: BINDER_SET_CONTEXT_MGR already set
[  577.222978][T10573] binder: 10572:10573 ioctl 4018620d 2000000002c0 returned -16
[  577.233484][T10575] netlink: 'syz.4.16157': attribute type 33 has an invalid length.
[  577.283038][T10577] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  577.404200][T10589] sctp: [Deprecated]: syz.1.16162 (pid 10589) Use of struct sctp_assoc_value in delayed_ack socket option.
[  577.404200][T10589] Use struct sctp_sack_info instead
[  577.753717][T10605] ÿÿÿÿÿÿÇ(
¯J: renamed from lo (while UP)
[  577.833756][T10612] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  578.003515][   T40] audit: type=1400 audit(1755182407.143:748): avc:  denied  { mounton } for  pid=10619 comm="syz.1.16173" path="/436/file0" dev="hugetlbfs" ino=256920 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=dir permissive=1
[  578.003666][T10620] overlayfs: maximum fs stacking depth exceeded
[  578.018988][   T40] audit: type=1400 audit(1755182407.162:749): avc:  denied  { checkpoint_restore } for  pid=10619 comm="syz.1.16173" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  578.580321][T10634] FAULT_INJECTION: forcing a failure.
[  578.580321][T10634] name failslab, interval 1, probability 0, space 0, times 0
[  578.584259][T10634] CPU: 3 UID: 0 PID: 10634 Comm: syz.1.16178 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  578.584275][T10634] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  578.584282][T10634] Call Trace:
[  578.584287][T10634]  <TASK>
[  578.584292][T10634]  dump_stack_lvl+0x16c/0x1f0
[  578.584319][T10634]  should_fail_ex+0x512/0x640
[  578.584332][T10634]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  578.584347][T10634]  should_failslab+0xc2/0x120
[  578.584361][T10634]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  578.584372][T10634]  ? __alloc_skb+0x2b2/0x380
[  578.584397][T10634]  __alloc_skb+0x2b2/0x380
[  578.584414][T10634]  ? __pfx___alloc_skb+0x10/0x10
[  578.584433][T10634]  ? __pfx_nf_tables_abort+0x10/0x10
[  578.584449][T10634]  netlink_ack+0x15d/0xb80
[  578.584461][T10634]  ? kasan_save_track+0x14/0x30
[  578.584476][T10634]  nfnetlink_rcv_batch+0x1423/0x2330
[  578.584499][T10634]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  578.584524][T10634]  ? avc_has_perm_noaudit+0x149/0x3b0
[  578.584550][T10634]  ? __nla_parse+0x40/0x60
[  578.584567][T10634]  nfnetlink_rcv+0x3c1/0x430
[  578.584583][T10634]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  578.584602][T10634]  netlink_unicast+0x5a7/0x870
[  578.584617][T10634]  ? __pfx_netlink_unicast+0x10/0x10
[  578.584629][T10634]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  578.584645][T10634]  netlink_sendmsg+0x8d1/0xdd0
[  578.584660][T10634]  ? __pfx_netlink_sendmsg+0x10/0x10
[  578.584677][T10634]  ____sys_sendmsg+0xa98/0xc70
[  578.584692][T10634]  ? copy_msghdr_from_user+0x10a/0x160
[  578.584703][T10634]  ? __pfx_____sys_sendmsg+0x10/0x10
[  578.584724][T10634]  ___sys_sendmsg+0x134/0x1d0
[  578.584736][T10634]  ? __pfx____sys_sendmsg+0x10/0x10
[  578.584760][T10634]  ? __mutex_unlock_slowpath+0x100/0x800
[  578.584777][T10634]  __sys_sendmsg+0x16d/0x220
[  578.584788][T10634]  ? __pfx___sys_sendmsg+0x10/0x10
[  578.584808][T10634]  do_syscall_64+0xcd/0x4c0
[  578.584821][T10634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  578.584833][T10634] RIP: 0033:0x7f0f4f18ebe9
[  578.584843][T10634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  578.584854][T10634] RSP: 002b:00007f0f50020038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  578.584865][T10634] RAX: ffffffffffffffda RBX: 00007f0f4f3b5fa0 RCX: 00007f0f4f18ebe9
[  578.584872][T10634] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  578.584879][T10634] RBP: 00007f0f50020090 R08: 0000000000000000 R09: 0000000000000000
[  578.584885][T10634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  578.584892][T10634] R13: 00007f0f4f3b6038 R14: 00007f0f4f3b5fa0 R15: 00007ffd8986ee58
[  578.584906][T10634]  </TASK>
[  578.678779][T10632] FAULT_INJECTION: forcing a failure.
[  578.678779][T10632] name failslab, interval 1, probability 0, space 0, times 0
[  578.682885][T10632] CPU: 1 UID: 0 PID: 10632 Comm: syz.3.16177 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  578.682918][T10632] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  578.682926][T10632] Call Trace:
[  578.682930][T10632]  <TASK>
[  578.682935][T10632]  dump_stack_lvl+0x16c/0x1f0
[  578.682950][T10632]  should_fail_ex+0x512/0x640
[  578.682963][T10632]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  578.682976][T10632]  should_failslab+0xc2/0x120
[  578.682990][T10632]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  578.683000][T10632]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  578.683017][T10632]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  578.683033][T10632]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  578.683053][T10632]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  578.683074][T10632]  mmu_topup_memory_caches+0x25/0x170
[  578.683087][T10632]  kvm_mmu_load+0xd6/0x23c0
[  578.683098][T10632]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  578.683111][T10632]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  578.683124][T10632]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  578.683140][T10632]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  578.683154][T10632]  ? __pfx_kvm_mmu_load+0x10/0x10
[  578.683164][T10632]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  578.683183][T10632]  ? kvm_check_and_inject_events+0x71c/0x1310
[  578.683202][T10632]  vcpu_run+0x358c/0x5580
[  578.683230][T10632]  ? __lock_acquire+0xb97/0x1ce0
[  578.683253][T10632]  ? __pfx_vcpu_run+0x10/0x10
[  578.683270][T10632]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  578.683286][T10632]  ? __local_bh_enable_ip+0xa4/0x120
[  578.683304][T10632]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  578.683319][T10632]  kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  578.683339][T10632]  kvm_vcpu_ioctl+0x5eb/0x1690
[  578.683356][T10632]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  578.683371][T10632]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  578.683385][T10632]  ? do_vfs_ioctl+0x128/0x14f0
[  578.683403][T10632]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  578.683424][T10632]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  578.683446][T10632]  ? hook_file_ioctl_common+0x145/0x410
[  578.683461][T10632]  ? selinux_file_ioctl+0x180/0x270
[  578.683477][T10632]  ? selinux_file_ioctl+0xb4/0x270
[  578.683493][T10632]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  578.683509][T10632]  __x64_sys_ioctl+0x18b/0x210
[  578.683527][T10632]  do_syscall_64+0xcd/0x4c0
[  578.683541][T10632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  578.683552][T10632] RIP: 0033:0x7f5cd018ebe9
[  578.683562][T10632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  578.683573][T10632] RSP: 002b:00007f5cd10a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  578.683584][T10632] RAX: ffffffffffffffda RBX: 00007f5cd03b5fa0 RCX: 00007f5cd018ebe9
[  578.683591][T10632] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  578.683598][T10632] RBP: 00007f5cd10a3090 R08: 0000000000000000 R09: 0000000000000000
[  578.683615][T10632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  578.683623][T10632] R13: 00007f5cd03b6038 R14: 00007f5cd03b5fa0 R15: 00007ffcca4dead8
[  578.683638][T10632]  </TASK>
[  578.808657][T10638] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  579.092766][T10645] 9pnet_fd: p9_fd_create_unix (10645): problem connecting socket: ./file0: -111
[  579.784797][T10659] FAULT_INJECTION: forcing a failure.
[  579.784797][T10659] name failslab, interval 1, probability 0, space 0, times 0
[  579.788756][T10659] CPU: 3 UID: 0 PID: 10659 Comm: syz.0.16185 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  579.788773][T10659] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  579.788781][T10659] Call Trace:
[  579.788785][T10659]  <TASK>
[  579.788790][T10659]  dump_stack_lvl+0x16c/0x1f0
[  579.788806][T10659]  should_fail_ex+0x512/0x640
[  579.788819][T10659]  ? fs_reclaim_acquire+0xae/0x150
[  579.788836][T10659]  ? tomoyo_encode2+0x100/0x3e0
[  579.788852][T10659]  should_failslab+0xc2/0x120
[  579.788865][T10659]  __kmalloc_noprof+0xd2/0x510
[  579.788877][T10659]  ? d_absolute_path+0x136/0x1a0
[  579.788896][T10659]  tomoyo_encode2+0x100/0x3e0
[  579.788914][T10659]  tomoyo_encode+0x29/0x50
[  579.788929][T10659]  tomoyo_realpath_from_path+0x18f/0x6e0
[  579.788950][T10659]  tomoyo_path_number_perm+0x245/0x580
[  579.788964][T10659]  ? tomoyo_path_number_perm+0x237/0x580
[  579.788979][T10659]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  579.788994][T10659]  ? find_held_lock+0x2b/0x80
[  579.789020][T10659]  ? find_held_lock+0x2b/0x80
[  579.789034][T10659]  ? hook_file_ioctl_common+0x145/0x410
[  579.789048][T10659]  ? __fget_files+0x20e/0x3c0
[  579.789063][T10659]  security_file_ioctl+0x9b/0x240
[  579.789081][T10659]  __x64_sys_ioctl+0xb7/0x210
[  579.789100][T10659]  do_syscall_64+0xcd/0x4c0
[  579.789113][T10659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  579.789125][T10659] RIP: 0033:0x7f876498ebe9
[  579.789146][T10659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  579.789158][T10659] RSP: 002b:00007f8765735038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  579.789170][T10659] RAX: ffffffffffffffda RBX: 00007f8764bb5fa0 RCX: 00007f876498ebe9
[  579.789177][T10659] RDX: 0000200000000000 RSI: 000000008028640c RDI: 0000000000000003
[  579.789184][T10659] RBP: 00007f8765735090 R08: 0000000000000000 R09: 0000000000000000
[  579.789191][T10659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  579.789198][T10659] R13: 00007f8764bb6038 R14: 00007f8764bb5fa0 R15: 00007ffc3a3044a8
[  579.789212][T10659]  </TASK>
[  579.789251][T10659] ERROR: Out of memory at tomoyo_realpath_from_path.
[  579.843338][T10663] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  579.866398][   T40] audit: type=1400 audit(1755182408.883:750): avc:  denied  { append } for  pid=10662 comm="syz.3.16187" name="btrfs-control" dev="devtmpfs" ino=1342 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  579.912822][T10667] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  580.295174][T10689] fuse: Unknown parameter '†5jrÓT½|ù;¥ð00000000000000000000'
[  580.422308][T10693] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  580.604434][T10699] __nla_validate_parse: 4 callbacks suppressed
[  580.604447][T10699] netlink: 20 bytes leftover after parsing attributes in process `syz.3.16200'.
[  580.759643][T10712] cgroup: Need name or subsystem set
[  581.514512][T10720] kvm: user requested TSC rate below hardware speed
[  581.632585][T10727] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  581.658028][T10733] FAULT_INJECTION: forcing a failure.
[  581.658028][T10733] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  581.662364][T10733] CPU: 3 UID: 0 PID: 10733 Comm: syz.1.16210 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  581.662380][T10733] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  581.662388][T10733] Call Trace:
[  581.662392][T10733]  <TASK>
[  581.662397][T10733]  dump_stack_lvl+0x16c/0x1f0
[  581.662427][T10733]  should_fail_ex+0x512/0x640
[  581.662447][T10733]  _copy_to_user+0x32/0xd0
[  581.662463][T10733]  simple_read_from_buffer+0xcb/0x170
[  581.662476][T10733]  proc_fail_nth_read+0x197/0x240
[  581.662490][T10733]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  581.662504][T10733]  ? rw_verify_area+0xcf/0x6c0
[  581.662521][T10733]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  581.662534][T10733]  vfs_read+0x1e1/0xcf0
[  581.662547][T10733]  ? __pfx___mutex_lock+0x10/0x10
[  581.662565][T10733]  ? __pfx_vfs_read+0x10/0x10
[  581.662579][T10733]  ? __fget_files+0x20e/0x3c0
[  581.662596][T10733]  ksys_read+0x12a/0x250
[  581.662606][T10733]  ? __pfx_ksys_read+0x10/0x10
[  581.662621][T10733]  do_syscall_64+0xcd/0x4c0
[  581.662635][T10733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  581.662647][T10733] RIP: 0033:0x7f0f4f18d5fc
[  581.662657][T10733] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  581.662668][T10733] RSP: 002b:00007f0f50020030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  581.662685][T10733] RAX: ffffffffffffffda RBX: 00007f0f4f3b5fa0 RCX: 00007f0f4f18d5fc
[  581.662693][T10733] RDX: 000000000000000f RSI: 00007f0f500200a0 RDI: 000000000000001c
[  581.662700][T10733] RBP: 00007f0f50020090 R08: 0000000000000000 R09: 0000000000000000
[  581.662707][T10733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  581.662713][T10733] R13: 00007f0f4f3b6038 R14: 00007f0f4f3b5fa0 R15: 00007ffd8986ee58
[  581.662727][T10733]  </TASK>
[  581.997413][T10750] binder: 10749:10750 ioctl c0306201 200000000680 returned -14
[  582.027871][T10753] binder: 10752:10753 ioctl c0306201 200000000680 returned -14
[  582.054347][T10756] netlink: 20 bytes leftover after parsing attributes in process `syz.3.16220'.
[  582.150353][T10762] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  582.288043][T10765] new mount options do not match the existing superblock, will be ignored
[  582.292555][   T40] audit: type=1400 audit(1755182411.156:751): avc:  denied  { remount } for  pid=10764 comm="syz.3.16224" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  582.294231][T10765] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 ""
[  582.650198][T10772] FAULT_INJECTION: forcing a failure.
[  582.650198][T10772] name failslab, interval 1, probability 0, space 0, times 0
[  582.654295][T10772] CPU: 3 UID: 0 PID: 10772 Comm: syz.3.16226 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  582.654313][T10772] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  582.654331][T10772] Call Trace:
[  582.654336][T10772]  <TASK>
[  582.654341][T10772]  dump_stack_lvl+0x16c/0x1f0
[  582.654356][T10772]  should_fail_ex+0x512/0x640
[  582.654369][T10772]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[  582.654394][T10772]  should_failslab+0xc2/0x120
[  582.654407][T10772]  __kmalloc_cache_node_noprof+0x6d/0x420
[  582.654427][T10772]  ? __get_vm_area_node+0x101/0x330
[  582.654444][T10772]  __get_vm_area_node+0x101/0x330
[  582.654462][T10772]  __vmalloc_node_range_noprof+0x271/0x14b0
[  582.654479][T10772]  ? vhost_task_create+0x1d2/0x2e0
[  582.654490][T10772]  ? local_lock_release+0x99/0x140
[  582.654508][T10772]  ? vhost_task_create+0x1d2/0x2e0
[  582.654518][T10772]  ? rcu_read_unlock+0x17/0x60
[  582.654533][T10772]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  582.654555][T10772]  ? vhost_task_create+0x1d2/0x2e0
[  582.654565][T10772]  __vmalloc_node_noprof+0xad/0xf0
[  582.654581][T10772]  ? vhost_task_create+0x1d2/0x2e0
[  582.654594][T10772]  copy_process+0x2c70/0x7690
[  582.654616][T10772]  ? __pfx_copy_process+0x10/0x10
[  582.654634][T10772]  ? lockdep_init_map_type+0x5c/0x280
[  582.654645][T10772]  ? lockdep_init_map_type+0x5c/0x280
[  582.654656][T10772]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  582.654672][T10772]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  582.654690][T10772]  vhost_task_create+0x1d2/0x2e0
[  582.654701][T10772]  ? __pfx_vhost_task_create+0x10/0x10
[  582.654717][T10772]  ? __pfx_vhost_task_fn+0x10/0x10
[  582.654734][T10772]  kvm_mmu_post_init_vm+0x1b7/0x380
[  582.654748][T10772]  kvm_arch_vcpu_ioctl_run+0x66/0x1980
[  582.654765][T10772]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  582.654783][T10772]  kvm_vcpu_ioctl+0x5eb/0x1690
[  582.654799][T10772]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  582.654814][T10772]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  582.654829][T10772]  ? do_vfs_ioctl+0x128/0x14f0
[  582.654847][T10772]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  582.654882][T10772]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  582.654904][T10772]  ? hook_file_ioctl_common+0x145/0x410
[  582.654919][T10772]  ? selinux_file_ioctl+0x180/0x270
[  582.654934][T10772]  ? selinux_file_ioctl+0xb4/0x270
[  582.654951][T10772]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  582.654966][T10772]  __x64_sys_ioctl+0x18b/0x210
[  582.654984][T10772]  do_syscall_64+0xcd/0x4c0
[  582.654997][T10772]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.655009][T10772] RIP: 0033:0x7f5cd018ebe9
[  582.655019][T10772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  582.655030][T10772] RSP: 002b:00007f5cd1061038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  582.655041][T10772] RAX: ffffffffffffffda RBX: 00007f5cd03b6180 RCX: 00007f5cd018ebe9
[  582.655048][T10772] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  582.655055][T10772] RBP: 00007f5cd1061090 R08: 0000000000000000 R09: 0000000000000000
[  582.655062][T10772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  582.655068][T10772] R13: 00007f5cd03b6218 R14: 00007f5cd03b6180 R15: 00007ffcca4dead8
[  582.655082][T10772]  </TASK>
[  582.655100][T10772] warn_alloc: 1 callbacks suppressed
[  582.655108][T10772] syz.3.16226: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  582.770615][T10772] CPU: 2 UID: 0 PID: 10772 Comm: syz.3.16226 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  582.770632][T10772] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  582.770639][T10772] Call Trace:
[  582.770645][T10772]  <TASK>
[  582.770650][T10772]  dump_stack_lvl+0x16c/0x1f0
[  582.770679][T10772]  warn_alloc+0x248/0x3a0
[  582.770693][T10772]  ? __pfx_warn_alloc+0x10/0x10
[  582.770705][T10772]  ? __kmalloc_cache_node_noprof+0x272/0x420
[  582.770727][T10772]  ? __kasan_kmalloc+0x8a/0xb0
[  582.770738][T10772]  ? __get_vm_area_node+0x208/0x330
[  582.770757][T10772]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  582.770774][T10772]  ? local_lock_release+0x99/0x140
[  582.770791][T10772]  ? vhost_task_create+0x1d2/0x2e0
[  582.770803][T10772]  ? rcu_read_unlock+0x17/0x60
[  582.770818][T10772]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  582.770840][T10772]  ? vhost_task_create+0x1d2/0x2e0
[  582.770870][T10772]  __vmalloc_node_noprof+0xad/0xf0
[  582.770888][T10772]  ? vhost_task_create+0x1d2/0x2e0
[  582.770900][T10772]  copy_process+0x2c70/0x7690
[  582.770924][T10772]  ? __pfx_copy_process+0x10/0x10
[  582.770941][T10772]  ? lockdep_init_map_type+0x5c/0x280
[  582.770954][T10772]  ? lockdep_init_map_type+0x5c/0x280
[  582.770964][T10772]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  582.770981][T10772]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  582.770999][T10772]  vhost_task_create+0x1d2/0x2e0
[  582.771011][T10772]  ? __pfx_vhost_task_create+0x10/0x10
[  582.771026][T10772]  ? __pfx_vhost_task_fn+0x10/0x10
[  582.771044][T10772]  kvm_mmu_post_init_vm+0x1b7/0x380
[  582.771058][T10772]  kvm_arch_vcpu_ioctl_run+0x66/0x1980
[  582.771075][T10772]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  582.771093][T10772]  kvm_vcpu_ioctl+0x5eb/0x1690
[  582.771113][T10772]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  582.771128][T10772]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  582.771142][T10772]  ? do_vfs_ioctl+0x128/0x14f0
[  582.771160][T10772]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  582.771177][T10772]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  582.771199][T10772]  ? hook_file_ioctl_common+0x145/0x410
[  582.771215][T10772]  ? selinux_file_ioctl+0x180/0x270
[  582.771230][T10772]  ? selinux_file_ioctl+0xb4/0x270
[  582.771246][T10772]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  582.771261][T10772]  __x64_sys_ioctl+0x18b/0x210
[  582.771280][T10772]  do_syscall_64+0xcd/0x4c0
[  582.771293][T10772]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.771305][T10772] RIP: 0033:0x7f5cd018ebe9
[  582.771314][T10772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  582.771326][T10772] RSP: 002b:00007f5cd1061038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  582.771337][T10772] RAX: ffffffffffffffda RBX: 00007f5cd03b6180 RCX: 00007f5cd018ebe9
[  582.771344][T10772] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  582.771351][T10772] RBP: 00007f5cd1061090 R08: 0000000000000000 R09: 0000000000000000
[  582.771357][T10772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  582.771364][T10772] R13: 00007f5cd03b6218 R14: 00007f5cd03b6180 R15: 00007ffcca4dead8
[  582.771378][T10772]  </TASK>
[  582.771394][T10772] Mem-Info:
[  582.847001][T10781] netlink: 'syz.1.16229': attribute type 4 has an invalid length.
[  582.847484][T10772] active_anon:12875 inactive_anon:498 isolated_anon:0
[  582.847484][T10772]  active_file:9795 inactive_file:13519 isolated_file:0
[  582.847484][T10772]  unevictable:1768 dirty:612 writeback:0
[  582.847484][T10772]  slab_reclaimable:8497 slab_unreclaimable:95443
[  582.847484][T10772]  mapped:31159 shmem:6347 pagetables:1277
[  582.847484][T10772]  sec_pagetables:325 bounce:0
[  582.847484][T10772]  kernel_misc_reclaimable:0
[  582.847484][T10772]  free:451125 free_pcp:8112 free_cma:0
[  582.849381][T10781] netlink: 17 bytes leftover after parsing attributes in process `syz.1.16229'.
[  582.858503][T10778] could not allocate digest TFM handle rmd320
[  582.859970][T10772] Node 0 active_anon:51484kB inactive_anon:1992kB active_file:35016kB inactive_file:53032kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:122272kB dirty:2448kB writeback:0kB shmem:21852kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:13168kB pagetables:4916kB sec_pagetables:1288kB all_unreclaimable? no Balloon:0kB
[  582.898410][T10783] Bluetooth: hci0: load_link_keys: too big key_count value 3072
[  582.907963][T10772] Node 1 active_anon:16kB inactive_anon:0kB active_file:4164kB inactive_file:1044kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:2116kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:144kB pagetables:192kB sec_pagetables:12kB all_unreclaimable? no Balloon:0kB
[  582.920188][T10772] Node 0 DMA free:11000kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:252kB local_pcp:104kB free_cma:0kB
[  582.931050][T10772] lowmem_reserve[]: 0 1233 1233 1233 1233
[  582.932963][T10772] Node 0 DMA32 free:201412kB boost:2048kB min:29564kB low:36440kB high:43316kB reserved_highatomic:0KB free_highatomic:0KB active_anon:51980kB inactive_anon:1992kB active_file:35016kB inactive_file:53032kB unevictable:3536kB writepending:2448kB present:2080628kB managed:1263512kB mlocked:0kB bounce:0kB free_pcp:29796kB local_pcp:2912kB free_cma:0kB
[  582.943151][T10772] lowmem_reserve[]: 0 0 0 0 0
[  582.944820][T10772] Node 1 Normal free:1592088kB boost:0kB min:39720kB low:49648kB high:59576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:16kB inactive_anon:0kB active_file:4164kB inactive_file:1044kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781892kB mlocked:0kB bounce:0kB free_pcp:2400kB local_pcp:160kB free_cma:0kB
[  582.954653][T10772] lowmem_reserve[]: 0 0 0 0 0
[  582.956240][T10772] Node 0 DMA: 6*4kB (UM) 8*8kB (UM) 8*16kB (UM) 5*32kB (UM) 6*64kB (UM) 6*128kB (UM) 7*256kB (UM) 5*512kB (UM) 3*1024kB (U) 1*2048kB (M) 0*4096kB = 11000kB
[  582.961426][T10772] Node 0 DMA32: 760*4kB (UME) 606*8kB (UE) 211*16kB (UE) 410*32kB (UE) 237*64kB (UME) 160*128kB (UME) 84*256kB (UME) 58*512kB (UME) 62*1024kB (UME) 13*2048kB (UM) 0*4096kB = 201344kB
[  582.967983][T10772] Node 1 Normal: 134*4kB (UME) 148*8kB (UME) 148*16kB (UME) 269*32kB (UME) 136*64kB (UME) 87*128kB (UME) 58*256kB (UME) 53*512kB (UME) 40*1024kB (UME) 39*2048kB (UM) 341*4096kB (UM) = 1592088kB
[  582.974242][T10772] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  582.977222][T10772] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  582.980428][T10772] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  582.983453][T10772] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  582.986591][T10772] 29774 total pagecache pages
[  582.988149][T10772] 54 pages in swap cache
[  582.989916][T10772] Free swap  = 120636kB
[  582.991296][T10772] Total swap = 124996kB
[  582.992623][T10772] 1048443 pages RAM
[  582.993851][T10772] 0 pages HighMem/MovableOnly
[  582.995365][T10772] 283252 pages reserved
[  582.996699][T10772] 0 pages cma reserved
[  583.004177][T10787] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  583.140074][T10785] binder: 10784:10785 ioctl c0306201 200000000680 returned -14
[  583.346778][T10804] netlink: 'syz.3.16239': attribute type 4 has an invalid length.
[  583.377603][T10804] kvm: user requested TSC rate below hardware speed
[  583.440803][T10810] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  583.734644][T10851] dvmrp1: entered allmulticast mode
[  583.758233][T10855] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  583.824935][T10860] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  583.927495][T10867] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  584.125356][T10880] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  585.272529][T10925] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  585.442794][T10934] batman_adv: batadv0: Adding interface: ipvlan2
[  585.445551][T10934] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  585.456197][T10934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  585.461153][T10934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  585.465258][T10934] batman_adv: batadv0: Interface activated: ipvlan2
[  586.594047][T10952] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  586.715822][T10957] ./cgroup: Can't lookup blockdev
[  586.718883][T10957] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  586.974559][T10963] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5122 sclass=netlink_route_socket pid=10963 comm=syz.0.16297
[  586.980476][T10963] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16297'.
[  586.983887][T10963] bridge_slave_1: left allmulticast mode
[  586.986009][T10963] bridge_slave_1: left promiscuous mode
[  586.988426][T10963] bridge0: port 2(bridge_slave_1) entered disabled state
[  586.993599][T10963] bridge_slave_0: left allmulticast mode
[  586.995748][T10963] bridge_slave_0: left promiscuous mode
[  586.997996][T10963] bridge0: port 1(bridge_slave_0) entered disabled state
[  587.052110][ T6502] usb 6-1: new high-speed USB device number 113 using dummy_hcd
[  587.223151][ T6502] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  587.227728][ T6502] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  587.231930][ T6502] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  587.236128][ T6502] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  587.244551][T10959] raw-gadget.3 gadget.1: fail, usb_ep_enable returned -22
[  587.250757][ T6502] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  587.466983][   T29] usb 6-1: USB disconnect, device number 113
[  588.171117][T10975] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  588.249252][T10978] FAULT_INJECTION: forcing a failure.
[  588.249252][T10978] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  588.253471][T10978] CPU: 0 UID: 0 PID: 10978 Comm: syz.1.16303 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  588.253487][T10978] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  588.253494][T10978] Call Trace:
[  588.253499][T10978]  <TASK>
[  588.253511][T10978]  dump_stack_lvl+0x16c/0x1f0
[  588.253543][T10978]  should_fail_ex+0x512/0x640
[  588.253563][T10978]  _copy_from_user+0x2e/0xd0
[  588.253578][T10978]  copy_msghdr_from_user+0x98/0x160
[  588.253591][T10978]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  588.253605][T10978]  ? __lock_acquire+0x62e/0x1ce0
[  588.253626][T10978]  ___sys_recvmsg+0xdb/0x1a0
[  588.253637][T10978]  ? __pfx____sys_recvmsg+0x10/0x10
[  588.253649][T10978]  ? find_held_lock+0x2b/0x80
[  588.253671][T10978]  do_recvmmsg+0x2fe/0x750
[  588.253684][T10978]  ? __pfx_do_recvmmsg+0x10/0x10
[  588.253695][T10978]  ? ksys_write+0x190/0x250
[  588.253709][T10978]  ? __mutex_unlock_slowpath+0x163/0x800
[  588.253731][T10978]  ? __fget_files+0x20e/0x3c0
[  588.253747][T10978]  __x64_sys_recvmmsg+0x22a/0x280
[  588.253760][T10978]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  588.253776][T10978]  do_syscall_64+0xcd/0x4c0
[  588.253794][T10978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.253806][T10978] RIP: 0033:0x7f0f4f18ebe9
[  588.253816][T10978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  588.253827][T10978] RSP: 002b:00007f0f50020038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  588.253838][T10978] RAX: ffffffffffffffda RBX: 00007f0f4f3b5fa0 RCX: 00007f0f4f18ebe9
[  588.253845][T10978] RDX: 0000000000000001 RSI: 0000200000000380 RDI: 0000000000000005
[  588.253851][T10978] RBP: 00007f0f50020090 R08: 0000000000000000 R09: 0000000000000000
[  588.253858][T10978] R10: 0000000000010102 R11: 0000000000000246 R12: 0000000000000001
[  588.253865][T10978] R13: 00007f0f4f3b6038 R14: 00007f0f4f3b5fa0 R15: 00007ffd8986ee58
[  588.253878][T10978]  </TASK>
[  588.341881][T10984] netlink: 'syz.1.16306': attribute type 1 has an invalid length.
[  588.344433][T10984] netlink: 224 bytes leftover after parsing attributes in process `syz.1.16306'.
[  588.752681][T10990] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  588.880520][T11004] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  589.005833][T11009] FAULT_INJECTION: forcing a failure.
[  589.005833][T11009] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  589.010121][T11009] CPU: 2 UID: 0 PID: 11009 Comm: syz.3.16315 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  589.010138][T11009] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  589.010146][T11009] Call Trace:
[  589.010150][T11009]  <TASK>
[  589.010156][T11009]  dump_stack_lvl+0x16c/0x1f0
[  589.010188][T11009]  should_fail_ex+0x512/0x640
[  589.010207][T11009]  should_fail_alloc_page+0xe7/0x130
[  589.010222][T11009]  prepare_alloc_pages+0x3c2/0x610
[  589.010244][T11009]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  589.010257][T11009]  ? __lock_acquire+0x62e/0x1ce0
[  589.010280][T11009]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  589.010294][T11009]  ? find_held_lock+0x2b/0x80
[  589.010314][T11009]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  589.010327][T11009]  ? cpuset_nodemask_valid_mems_allowed+0x5f/0x80
[  589.010345][T11009]  ? policy_nodemask+0xea/0x4e0
[  589.010360][T11009]  alloc_pages_mpol+0x1fb/0x550
[  589.010374][T11009]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  589.010387][T11009]  ? do_raw_read_unlock+0x44/0xe0
[  589.010399][T11009]  ? _raw_read_unlock+0x28/0x50
[  589.010416][T11009]  folio_alloc_mpol_noprof+0x36/0x2f0
[  589.010433][T11009]  vma_alloc_folio_noprof+0xed/0x1e0
[  589.010448][T11009]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  589.010467][T11009]  ? __pfx_filemap_map_pages+0x10/0x10
[  589.010482][T11009]  do_pte_missing+0x963/0x3ba0
[  589.010500][T11009]  ? find_held_lock+0x2b/0x80
[  589.010513][T11009]  ? __handle_mm_fault+0x14fd/0x2a50
[  589.010532][T11009]  __handle_mm_fault+0x152a/0x2a50
[  589.010554][T11009]  ? __pfx___handle_mm_fault+0x10/0x10
[  589.010572][T11009]  ? __pte_offset_map_lock+0x174/0x310
[  589.010587][T11009]  ? find_held_lock+0x2b/0x80
[  589.010605][T11009]  ? follow_page_pte.constprop.0+0x5cf/0x1390
[  589.010624][T11009]  handle_mm_fault+0x589/0xd10
[  589.010644][T11009]  __get_user_pages+0x551/0x34a0
[  589.010665][T11009]  ? __pfx___get_user_pages+0x10/0x10
[  589.010684][T11009]  populate_vma_page_range+0x267/0x3f0
[  589.010700][T11009]  ? __pfx_populate_vma_page_range+0x10/0x10
[  589.010716][T11009]  ? __pfx_find_vma_intersection+0x10/0x10
[  589.010731][T11009]  ? __pfx_apply_vma_lock_flags+0x10/0x10
[  589.010744][T11009]  __mm_populate+0x1d8/0x380
[  589.010761][T11009]  ? __pfx___mm_populate+0x10/0x10
[  589.010778][T11009]  ? up_write+0x1b2/0x520
[  589.010790][T11009]  do_mlock+0x448/0x810
[  589.010829][T11009]  ? __fget_files+0x20e/0x3c0
[  589.010844][T11009]  ? __pfx_do_mlock+0x10/0x10
[  589.010855][T11009]  ? fput+0x9b/0xd0
[  589.010870][T11009]  ? ksys_write+0x1ac/0x250
[  589.010881][T11009]  ? __pfx_ksys_write+0x10/0x10
[  589.010896][T11009]  __x64_sys_mlock+0x59/0x80
[  589.010907][T11009]  do_syscall_64+0xcd/0x4c0
[  589.010920][T11009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  589.010932][T11009] RIP: 0033:0x7f5cd018ebe9
[  589.010942][T11009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  589.010953][T11009] RSP: 002b:00007f5cd10a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  589.010970][T11009] RAX: ffffffffffffffda RBX: 00007f5cd03b5fa0 RCX: 00007f5cd018ebe9
[  589.010977][T11009] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[  589.010986][T11009] RBP: 00007f5cd10a3090 R08: 0000000000000000 R09: 0000000000000000
[  589.010994][T11009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  589.011000][T11009] R13: 00007f5cd03b6038 R14: 00007f5cd03b5fa0 R15: 00007ffcca4dead8
[  589.011015][T11009]  </TASK>
[  589.154513][T11011] netlink: 'syz.3.16316': attribute type 10 has an invalid length.
[  589.158608][T11011] hsr_slave_0: left promiscuous mode
[  589.161075][T11011] hsr_slave_1: left promiscuous mode
[  589.269795][   T40] audit: type=1400 audit(1755182417.685:752): avc:  denied  { setattr } for  pid=11012 comm="syz.3.16317" path="/dev/sr0" dev="devtmpfs" ino=726 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:removable_device_t tclass=blk_file permissive=1
[  589.372552][T11012] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  589.677422][   T40] audit: type=1400 audit(1755182418.059:753): avc:  denied  { map } for  pid=11021 comm="syz.4.16320" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  589.684681][   T40] audit: type=1400 audit(1755182418.059:754): avc:  denied  { execute } for  pid=11021 comm="syz.4.16320" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  589.759837][T11028] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  589.950982][T11031] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11031 comm=syz.1.16323
[  589.955698][T11031] netlink: 12 bytes leftover after parsing attributes in process `syz.1.16323'.
[  590.409462][T11037] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  590.961300][T11055] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  591.444109][T11079] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  592.398744][T11114] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16352'.
[  592.402648][T11114] sch_tbf: burst 0 is lower than device veth0_to_bridge mtu (1514) !
[  592.491154][T11118] syzkaller0: entered promiscuous mode
[  592.492986][T11118] syzkaller0: entered allmulticast mode
[  592.694359][T11122] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  594.187625][   T40] audit: type=1400 audit(1755182422.287:755): avc:  denied  { ioctl } for  pid=11158 comm="syz.3.16368" path="socket:[260959]" dev="sockfs" ino=260959 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  594.402691][T11172] netlink: 'syz.3.16371': attribute type 2 has an invalid length.
[  595.446607][   T40] audit: type=1400 audit(1755182423.466:756): avc:  denied  { connect } for  pid=11180 comm="syz.0.16375" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  595.785350][T11199] FAULT_INJECTION: forcing a failure.
[  595.785350][T11199] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  595.789810][T11199] CPU: 1 UID: 0 PID: 11199 Comm: syz.3.16383 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  595.789827][T11199] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  595.789834][T11199] Call Trace:
[  595.789839][T11199]  <TASK>
[  595.789843][T11199]  dump_stack_lvl+0x16c/0x1f0
[  595.789859][T11199]  should_fail_ex+0x512/0x640
[  595.789873][T11199]  _copy_from_user+0x2e/0xd0
[  595.789888][T11199]  memdup_user+0x6b/0xe0
[  595.789901][T11199]  strndup_user+0x78/0xe0
[  595.789913][T11199]  __x64_sys_mount+0x137/0x310
[  595.789928][T11199]  ? __pfx___x64_sys_mount+0x10/0x10
[  595.789947][T11199]  do_syscall_64+0xcd/0x4c0
[  595.789961][T11199]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.789972][T11199] RIP: 0033:0x7f5cd018ebe9
[  595.789981][T11199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  595.789992][T11199] RSP: 002b:00007f5cd10a3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  595.790003][T11199] RAX: ffffffffffffffda RBX: 00007f5cd03b5fa0 RCX: 00007f5cd018ebe9
[  595.790010][T11199] RDX: 0000200000002100 RSI: 00002000000020c0 RDI: 0000000000000000
[  595.790017][T11199] RBP: 00007f5cd10a3090 R08: 0000200000000180 R09: 0000000000000000
[  595.790024][T11199] R10: 0000000003810050 R11: 0000000000000246 R12: 0000000000000001
[  595.790031][T11199] R13: 00007f5cd03b6038 R14: 00007f5cd03b5fa0 R15: 00007ffcca4dead8
[  595.790044][T11199]  </TASK>
[  595.869037][T11206] 9pnet_fd: Insufficient options for proto=fd
[  596.613400][T11216] fuse: Bad value for 'rootmode'
[  596.628698][T11218] FAULT_INJECTION: forcing a failure.
[  596.628698][T11218] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  596.634166][T11218] CPU: 0 UID: 0 PID: 11218 Comm: syz.1.16391 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  596.634191][T11218] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  596.634203][T11218] Call Trace:
[  596.634210][T11218]  <TASK>
[  596.634217][T11218]  dump_stack_lvl+0x16c/0x1f0
[  596.634241][T11218]  should_fail_ex+0x512/0x640
[  596.634265][T11218]  strncpy_from_user+0x3b/0x2e0
[  596.634287][T11218]  getname_flags.part.0+0x8f/0x550
[  596.634317][T11218]  getname_flags+0x93/0xf0
[  596.634336][T11218]  do_sys_openat2+0xb8/0x1d0
[  596.634361][T11218]  ? __pfx_do_sys_openat2+0x10/0x10
[  596.634388][T11218]  ? __fget_files+0x20e/0x3c0
[  596.634413][T11218]  __x64_sys_openat+0x174/0x210
[  596.634439][T11218]  ? __pfx___x64_sys_openat+0x10/0x10
[  596.634462][T11218]  ? ksys_write+0x1ac/0x250
[  596.634488][T11218]  do_syscall_64+0xcd/0x4c0
[  596.634511][T11218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.634529][T11218] RIP: 0033:0x7f0f4f18ebe9
[  596.634543][T11218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  596.634560][T11218] RSP: 002b:00007f0f50020038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  596.634579][T11218] RAX: ffffffffffffffda RBX: 00007f0f4f3b5fa0 RCX: 00007f0f4f18ebe9
[  596.634591][T11218] RDX: 0000000000121141 RSI: 0000200000003ec0 RDI: ffffffffffffff9c
[  596.634603][T11218] RBP: 00007f0f50020090 R08: 0000000000000000 R09: 0000000000000000
[  596.634614][T11218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  596.634624][T11218] R13: 00007f0f4f3b6038 R14: 00007f0f4f3b5fa0 R15: 00007ffd8986ee58
[  596.634648][T11218]  </TASK>
[  596.704623][    C0] vkms_vblank_simulate: vblank timer overrun
[  596.731937][   T40] audit: type=1400 audit(1755182424.663:757): avc:  denied  { execute_no_trans } for  pid=11219 comm="syz.1.16392" path=2F6D656D66643AA39F6EB4645204693502ACCEE1889D5B4038D7CE1F2039497F151D933DB5E75C274CE6D28EBC294A7454447181CF81BAE531F520C8103EC95C85174CBFCF91DF4DF3025E542A202864656C6574656429 dev="hugetlbfs" ino=260994 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  596.814023][ T6502] psmouse serio2: Failed to reset mouse on : -5
[  597.511521][   T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  597.635846][   T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  597.694999][   T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  597.757359][ T5983] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  597.760568][ T5983] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  597.763710][ T5983] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  597.772828][ T5983] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  597.776440][ T5983] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  597.785237][   T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  598.065602][   T13] bond1 (unregistering): (slave geneve2): Releasing active interface
[  598.153689][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  598.158001][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  598.162041][   T13] bond0 (unregistering): Released all slaves
[  598.241614][   T13] bond1 (unregistering): Released all slaves
[  598.258366][T11251] chnl_net:caif_netlink_parms(): no params data found
[  598.345892][T11251] bridge0: port 1(bridge_slave_0) entered blocking state
[  598.348199][T11251] bridge0: port 1(bridge_slave_0) entered disabled state
[  598.350621][T11251] bridge_slave_0: entered allmulticast mode
[  598.353306][T11251] bridge_slave_0: entered promiscuous mode
[  598.356536][T11251] bridge0: port 2(bridge_slave_1) entered blocking state
[  598.358930][T11251] bridge0: port 2(bridge_slave_1) entered disabled state
[  598.361313][T11251] bridge_slave_1: entered allmulticast mode
[  598.365021][T11251] bridge_slave_1: entered promiscuous mode
[  598.411140][T11251] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  598.416173][T11251] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  598.453931][T11251] team0: Port device team_slave_0 added
[  598.471392][T11251] team0: Port device team_slave_1 added
[  598.500533][T11251] batman_adv: batadv0: Adding interface: batadv_slave_0
[  598.502770][T11251] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  598.510457][T11251] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  598.514553][T11251] batman_adv: batadv0: Adding interface: batadv_slave_1
[  598.516722][T11251] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  598.527359][T11251] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  598.528053][T11267] FAULT_INJECTION: forcing a failure.
[  598.528053][T11267] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  598.537999][T11267] CPU: 3 UID: 0 PID: 11267 Comm: syz.1.16407 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  598.538024][T11267] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  598.538034][T11267] Call Trace:
[  598.538041][T11267]  <TASK>
[  598.538047][T11267]  dump_stack_lvl+0x16c/0x1f0
[  598.538069][T11267]  should_fail_ex+0x512/0x640
[  598.538090][T11267]  _copy_from_iter+0x29f/0x16f0
[  598.538114][T11267]  ? __alloc_skb+0x200/0x380
[  598.538147][T11267]  ? __pfx__copy_from_iter+0x10/0x10
[  598.538165][T11267]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[  598.538187][T11267]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  598.538218][T11267]  netlink_sendmsg+0x829/0xdd0
[  598.538241][T11267]  ? __pfx_netlink_sendmsg+0x10/0x10
[  598.538269][T11267]  ____sys_sendmsg+0xa98/0xc70
[  598.538291][T11267]  ? copy_msghdr_from_user+0x10a/0x160
[  598.538308][T11267]  ? __pfx_____sys_sendmsg+0x10/0x10
[  598.538341][T11267]  ___sys_sendmsg+0x134/0x1d0
[  598.538359][T11267]  ? __pfx____sys_sendmsg+0x10/0x10
[  598.538399][T11267]  ? __mutex_unlock_slowpath+0x100/0x800
[  598.538425][T11267]  __sys_sendmsg+0x16d/0x220
[  598.538442][T11267]  ? __pfx___sys_sendmsg+0x10/0x10
[  598.538477][T11267]  do_syscall_64+0xcd/0x4c0
[  598.538497][T11267]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  598.538514][T11267] RIP: 0033:0x7f0f4f18ebe9
[  598.538529][T11267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  598.538545][T11267] RSP: 002b:00007f0f50020038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  598.538561][T11267] RAX: ffffffffffffffda RBX: 00007f0f4f3b5fa0 RCX: 00007f0f4f18ebe9
[  598.538572][T11267] RDX: 0000000000004400 RSI: 0000200000000a80 RDI: 0000000000000003
[  598.538582][T11267] RBP: 00007f0f50020090 R08: 0000000000000000 R09: 0000000000000000
[  598.538593][T11267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  598.538602][T11267] R13: 00007f0f4f3b6038 R14: 00007f0f4f3b5fa0 R15: 00007ffd8986ee58
[  598.538625][T11267]  </TASK>
[  598.613384][   T13] hsr_slave_0: left promiscuous mode
[  598.616454][   T13] hsr_slave_1: left promiscuous mode
[  598.618556][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  598.621448][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  598.624361][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  598.626690][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  598.631885][ T5019] hid-generic 0000:0004:0000.0008: unknown main item tag 0x0
[  598.635025][ T5019] hid-generic 0000:0004:0000.0008: unknown main item tag 0x0
[  598.638394][ T5019] hid-generic 0000:0004:0000.0008: unknown main item tag 0x0
[  598.647680][ T5019] hid-generic 0000:0004:0000.0008: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  598.668442][   T13] veth1_macvtap: left promiscuous mode
[  598.670305][   T13] veth0_macvtap: left promiscuous mode
[  598.672207][   T13] veth1_vlan: left promiscuous mode
[  598.674393][   T13] veth0_vlan: left promiscuous mode
[  598.692119][T11271] syz.1.16408: attempt to access beyond end of device
[  598.692119][T11271] nbd1: rw=0, sector=64, nr_sectors = 1 limit=0
[  598.697148][T11271] syz.1.16408: attempt to access beyond end of device
[  598.697148][T11271] nbd1: rw=0, sector=256, nr_sectors = 1 limit=0
[  598.701223][T11271] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  598.707038][T11271] syz.1.16408: attempt to access beyond end of device
[  598.707038][T11271] nbd1: rw=0, sector=512, nr_sectors = 1 limit=0
[  598.711959][T11271] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  598.714928][T11271] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found
[  598.718570][T11271] UDF-fs: Scanning with blocksize 512 failed
[  598.721344][T11271] syz.1.16408: attempt to access beyond end of device
[  598.721344][T11271] nbd1: rw=0, sector=64, nr_sectors = 2 limit=0
[  598.725515][T11271] syz.1.16408: attempt to access beyond end of device
[  598.725515][T11271] nbd1: rw=0, sector=512, nr_sectors = 2 limit=0
[  598.731132][T11271] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  598.734182][T11271] syz.1.16408: attempt to access beyond end of device
[  598.734182][T11271] nbd1: rw=0, sector=1024, nr_sectors = 2 limit=0
[  598.740474][T11271] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  598.743495][T11271] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found
[  598.745888][T11271] UDF-fs: Scanning with blocksize 1024 failed
[  598.752481][T11271] syz.1.16408: attempt to access beyond end of device
[  598.752481][T11271] nbd1: rw=0, sector=64, nr_sectors = 4 limit=0
[  598.756599][T11271] syz.1.16408: attempt to access beyond end of device
[  598.756599][T11271] nbd1: rw=0, sector=1024, nr_sectors = 4 limit=0
[  598.760800][T11271] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  598.763879][T11271] syz.1.16408: attempt to access beyond end of device
[  598.763879][T11271] nbd1: rw=0, sector=2048, nr_sectors = 4 limit=0
[  598.767910][T11271] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  598.771007][T11271] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found
[  598.773450][T11271] UDF-fs: Scanning with blocksize 2048 failed
[  598.775674][T11271] syz.1.16408: attempt to access beyond end of device
[  598.775674][T11271] nbd1: rw=0, sector=64, nr_sectors = 8 limit=0
[  598.780015][T11271] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  598.783144][T11271] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  598.786212][T11271] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found
[  598.788699][T11271] UDF-fs: Scanning with blocksize 4096 failed
[  598.790894][T11271] UDF-fs: warning (device nbd1): udf_fill_super: No partition found (1)
[  599.914577][T11251] hsr_slave_0: entered promiscuous mode
[  599.916905][T11251] hsr_slave_1: entered promiscuous mode
[  599.919122][T11251] debugfs: 'hsr0' already exists in 'hsr'
[  599.920932][T11251] Cannot create hsr debugfs directory
[  599.944934][ T5983] Bluetooth: hci1: command tx timeout
[  600.528405][T11251] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  600.533857][T11251] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  600.538156][T11251] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  600.543054][T11282] FAULT_INJECTION: forcing a failure.
[  600.543054][T11282] name failslab, interval 1, probability 0, space 0, times 0
[  600.543888][T11251] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  600.547442][T11282] CPU: 3 UID: 0 PID: 11282 Comm: syz.1.16412 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  600.547458][T11282] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  600.547466][T11282] Call Trace:
[  600.547470][T11282]  <TASK>
[  600.547474][T11282]  dump_stack_lvl+0x16c/0x1f0
[  600.547491][T11282]  should_fail_ex+0x512/0x640
[  600.547504][T11282]  ? fs_reclaim_acquire+0xae/0x150
[  600.547520][T11282]  ? tomoyo_encode2+0x100/0x3e0
[  600.547536][T11282]  should_failslab+0xc2/0x120
[  600.547550][T11282]  __kmalloc_noprof+0xd2/0x510
[  600.547561][T11282]  ? d_absolute_path+0x136/0x1a0
[  600.547580][T11282]  tomoyo_encode2+0x100/0x3e0
[  600.547598][T11282]  tomoyo_encode+0x29/0x50
[  600.547614][T11282]  tomoyo_realpath_from_path+0x18f/0x6e0
[  600.547634][T11282]  tomoyo_path_number_perm+0x245/0x580
[  600.547648][T11282]  ? tomoyo_path_number_perm+0x237/0x580
[  600.547664][T11282]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  600.547679][T11282]  ? find_held_lock+0x2b/0x80
[  600.547705][T11282]  ? find_held_lock+0x2b/0x80
[  600.547718][T11282]  ? hook_file_ioctl_common+0x145/0x410
[  600.547732][T11282]  ? __fget_files+0x20e/0x3c0
[  600.547747][T11282]  security_file_ioctl+0x9b/0x240
[  600.547764][T11282]  __x64_sys_ioctl+0xb7/0x210
[  600.547783][T11282]  do_syscall_64+0xcd/0x4c0
[  600.547796][T11282]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  600.547808][T11282] RIP: 0033:0x7f0f4f18ebe9
[  600.547818][T11282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  600.547829][T11282] RSP: 002b:00007f0f50020038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  600.547840][T11282] RAX: ffffffffffffffda RBX: 00007f0f4f3b5fa0 RCX: 00007f0f4f18ebe9
[  600.547847][T11282] RDX: 0000200000000000 RSI: 000000000000541c RDI: 0000000000000003
[  600.547854][T11282] RBP: 00007f0f50020090 R08: 0000000000000000 R09: 0000000000000000
[  600.547861][T11282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  600.547867][T11282] R13: 00007f0f4f3b6038 R14: 00007f0f4f3b5fa0 R15: 00007ffd8986ee58
[  600.547881][T11282]  </TASK>
[  600.547891][T11282] ERROR: Out of memory at tomoyo_realpath_from_path.
[  600.662402][T11288] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  600.691841][T11251] 8021q: adding VLAN 0 to HW filter on device bond0
[  600.716617][T11251] 8021q: adding VLAN 0 to HW filter on device team0
[  600.722222][ T1239] bridge0: port 1(bridge_slave_0) entered blocking state
[  600.724500][ T1239] bridge0: port 1(bridge_slave_0) entered forwarding state
[  600.730673][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  600.733754][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  600.843690][T11251] 8021q: adding VLAN 0 to HW filter on device batadv0
[  600.867850][T11251] veth0_vlan: entered promiscuous mode
[  600.872962][T11251] veth1_vlan: entered promiscuous mode
[  600.889453][T11251] veth0_macvtap: entered promiscuous mode
[  600.893332][T11251] veth1_macvtap: entered promiscuous mode
[  600.902439][T11251] batman_adv: batadv0: Interface activated: batadv_slave_0
[  600.908336][T11251] batman_adv: batadv0: Interface activated: batadv_slave_1
[  600.911111][ T6502] misc userio: Buffer overflowed, userio client isn't keeping up
[  600.914050][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  600.916859][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  600.920984][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  600.923776][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  601.224574][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  601.227156][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  601.244782][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  601.247365][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  601.321736][T11313] SELinux:  Context system_u:object_r:default_t:s0 is not valid (left unmapped).
[  601.328052][   T40] audit: type=1400 audit(1755182428.966:758): avc:  denied  { relabelto } for  pid=11312 comm="syz.0.16419" name="/" dev="ramfs" ino=264623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:default_t:s0"
[  601.336647][   T40] audit: type=1400 audit(1755182428.966:759): avc:  denied  { associate } for  pid=11312 comm="syz.0.16419" name="/" dev="ramfs" ino=264623 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:default_t:s0"
[  601.472035][T11328] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  601.517296][T11331] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16426'.
[  601.907914][T11354] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  602.051030][T11358] netlink: 40 bytes leftover after parsing attributes in process `syz.1.16437'.
[  602.065013][ T6502] input: PS/2 Generic Mouse as /devices/serio2/input/input51
[  602.158772][ T5977] Bluetooth: hci1: command tx timeout
[  602.286168][ T6502] psmouse serio2: Failed to enable mouse on 
[  602.333484][T11367] FAULT_INJECTION: forcing a failure.
[  602.333484][T11367] name failslab, interval 1, probability 0, space 0, times 0
[  602.337421][T11367] CPU: 2 UID: 0 PID: 11367 Comm: syz.3.16441 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  602.337437][T11367] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  602.337445][T11367] Call Trace:
[  602.337450][T11367]  <TASK>
[  602.337455][T11367]  dump_stack_lvl+0x16c/0x1f0
[  602.337470][T11367]  should_fail_ex+0x512/0x640
[  602.337483][T11367]  ? fs_reclaim_acquire+0xae/0x150
[  602.337500][T11367]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  602.337516][T11367]  should_failslab+0xc2/0x120
[  602.337530][T11367]  __kmalloc_noprof+0xd2/0x510
[  602.337544][T11367]  tomoyo_realpath_from_path+0xc2/0x6e0
[  602.337563][T11367]  ? tomoyo_profile+0x47/0x60
[  602.337575][T11367]  tomoyo_path_number_perm+0x245/0x580
[  602.337589][T11367]  ? tomoyo_path_number_perm+0x237/0x580
[  602.337604][T11367]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  602.337619][T11367]  ? find_held_lock+0x2b/0x80
[  602.337645][T11367]  ? find_held_lock+0x2b/0x80
[  602.337658][T11367]  ? hook_file_ioctl_common+0x145/0x410
[  602.337673][T11367]  ? __fget_files+0x20e/0x3c0
[  602.337688][T11367]  security_file_ioctl+0x9b/0x240
[  602.337705][T11367]  __x64_sys_ioctl+0xb7/0x210
[  602.337724][T11367]  do_syscall_64+0xcd/0x4c0
[  602.337737][T11367]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  602.337749][T11367] RIP: 0033:0x7f5cd018ebe9
[  602.337758][T11367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  602.337769][T11367] RSP: 002b:00007f5cd10a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  602.337781][T11367] RAX: ffffffffffffffda RBX: 00007f5cd03b5fa0 RCX: 00007f5cd018ebe9
[  602.337788][T11367] RDX: 0000200000000100 RSI: 00000000000007a5 RDI: 0000000000000003
[  602.337795][T11367] RBP: 00007f5cd10a3090 R08: 0000000000000000 R09: 0000000000000000
[  602.337802][T11367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  602.337808][T11367] R13: 00007f5cd03b6038 R14: 00007f5cd03b5fa0 R15: 00007ffcca4dead8
[  602.337822][T11367]  </TASK>
[  602.337827][T11367] ERROR: Out of memory at tomoyo_realpath_from_path.
[  602.467997][T21107] usb 6-1: new high-speed USB device number 114 using dummy_hcd
[  602.486512][T11373] netlink: 4 bytes leftover after parsing attributes in process `syz.3.16444'.
[  602.630628][T21107] usb 6-1: Using ep0 maxpacket: 16
[  602.634129][T21107] usb 6-1: config 0 has no interfaces?
[  602.638056][T21107] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  602.642820][T21107] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  602.646175][T21107] usb 6-1: Product: syz
[  602.647967][T21107] usb 6-1: Manufacturer: syz
[  602.650605][T21107] usb 6-1: SerialNumber: syz
[  602.654641][T21107] usb 6-1: config 0 descriptor??
[  602.800733][T11383] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  602.961649][   T40] audit: type=1400 audit(1755182430.491:760): avc:  denied  { setopt } for  pid=11363 comm="syz.1.16440" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  602.976176][ T1333] usb 6-1: USB disconnect, device number 114
[  603.050556][T11396] netlink: 'syz.0.16452': attribute type 10 has an invalid length.
[  603.417713][T11401] netlink: 12 bytes leftover after parsing attributes in process `syz.3.16454'.
[  603.490702][   T40] audit: type=1800 audit(1755182430.986:761): pid=11401 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.3.16454" name="/newroot/467/bus/#2459//deleted" dev="tmpfs" ino=2459 res=0 errno=0
[  603.794379][T11415] usb usb1: check_ctrlrecip: process 11415 (syz.3.16459) requesting ep 01 but needs 81
[  603.797981][T11415] usb usb1: usbfs: process 11415 (syz.3.16459) did not claim interface 0 before use
[  603.895929][T11421] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  603.916552][T11423] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  603.978160][T11425] "syz.1.16462" (11425) uses obsolete ecb(arc4) skcipher
[  603.985218][T11421] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  604.068711][T11435] netlink: set zone limit has 4 unknown bytes
[  604.116519][T11421] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  604.118014][T11432] FAULT_INJECTION: forcing a failure.
[  604.118014][T11432] name failslab, interval 1, probability 0, space 0, times 0
[  604.123788][T11432] CPU: 0 UID: 0 PID: 11432 Comm: syz.0.16465 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  604.123805][T11432] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  604.123812][T11432] Call Trace:
[  604.123817][T11432]  <TASK>
[  604.123821][T11432]  dump_stack_lvl+0x16c/0x1f0
[  604.123838][T11432]  should_fail_ex+0x512/0x640
[  604.123851][T11432]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  604.123864][T11432]  should_failslab+0xc2/0x120
[  604.123881][T11432]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  604.123892][T11432]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  604.123910][T11432]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  604.123926][T11432]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  604.123945][T11432]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  604.123966][T11432]  mmu_topup_memory_caches+0x25/0x170
[  604.123979][T11432]  kvm_mmu_load+0xd6/0x23c0
[  604.123991][T11432]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  604.124003][T11432]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  604.124017][T11432]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  604.124033][T11432]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  604.124060][T11432]  ? __pfx_kvm_mmu_load+0x10/0x10
[  604.124070][T11432]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  604.124088][T11432]  ? kvm_check_and_inject_events+0x71c/0x1310
[  604.124106][T11432]  vcpu_run+0x358c/0x5580
[  604.124122][T11432]  ? __lock_acquire+0xb97/0x1ce0
[  604.124144][T11432]  ? __pfx_vcpu_run+0x10/0x10
[  604.124161][T11432]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  604.124176][T11432]  ? __local_bh_enable_ip+0xa4/0x120
[  604.124194][T11432]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  604.124209][T11432]  kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  604.124229][T11432]  kvm_vcpu_ioctl+0x5eb/0x1690
[  604.124246][T11432]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  604.124261][T11432]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  604.124275][T11432]  ? do_vfs_ioctl+0x128/0x14f0
[  604.124293][T11432]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  604.124311][T11432]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  604.124333][T11432]  ? hook_file_ioctl_common+0x145/0x410
[  604.124348][T11432]  ? selinux_file_ioctl+0x180/0x270
[  604.124363][T11432]  ? selinux_file_ioctl+0xb4/0x270
[  604.124380][T11432]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  604.124395][T11432]  __x64_sys_ioctl+0x18b/0x210
[  604.124414][T11432]  do_syscall_64+0xcd/0x4c0
[  604.124427][T11432]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  604.124439][T11432] RIP: 0033:0x7f253738ebe9
[  604.124450][T11432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  604.124461][T11432] RSP: 002b:00007f2538128038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  604.124473][T11432] RAX: ffffffffffffffda RBX: 00007f25375b5fa0 RCX: 00007f253738ebe9
[  604.124480][T11432] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  604.124487][T11432] RBP: 00007f2538128090 R08: 0000000000000000 R09: 0000000000000000
[  604.124494][T11432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  604.124500][T11432] R13: 00007f25375b6038 R14: 00007f25375b5fa0 R15: 00007fff655ebb78
[  604.124514][T11432]  </TASK>
[  604.245376][    C0] vkms_vblank_simulate: vblank timer overrun
[  604.336774][T11421] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  604.381545][ T5977] Bluetooth: hci1: command tx timeout
[  604.474532][T11451] FAULT_INJECTION: forcing a failure.
[  604.474532][T11451] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  604.480265][ T1144] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  604.485599][ T1144] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  604.485790][T11451] CPU: 2 UID: 0 PID: 11451 Comm: syz.0.16470 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  604.485810][T11451] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  604.485816][T11451] Call Trace:
[  604.485821][T11451]  <TASK>
[  604.485825][T11451]  dump_stack_lvl+0x16c/0x1f0
[  604.485844][T11451]  should_fail_ex+0x512/0x640
[  604.485861][T11451]  _copy_from_user+0x2e/0xd0
[  604.485877][T11451]  comedi_unlocked_ioctl+0x15ef/0x2f00
[  604.485904][T11451]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  604.485926][T11451]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  604.485941][T11451]  ? do_vfs_ioctl+0x128/0x14f0
[  604.485959][T11451]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  604.485978][T11451]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  604.486001][T11451]  ? hook_file_ioctl_common+0x145/0x410
[  604.486016][T11451]  ? selinux_file_ioctl+0x180/0x270
[  604.486034][T11451]  ? selinux_file_ioctl+0xb4/0x270
[  604.486050][T11451]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  604.486071][T11451]  __x64_sys_ioctl+0x18b/0x210
[  604.486089][T11451]  do_syscall_64+0xcd/0x4c0
[  604.486104][T11451]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  604.486116][T11451] RIP: 0033:0x7f253738ebe9
[  604.486126][T11451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  604.486137][T11451] RSP: 002b:00007f2538128038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  604.486150][T11451] RAX: ffffffffffffffda RBX: 00007f25375b5fa0 RCX: 00007f253738ebe9
[  604.486160][T11451] RDX: 0000200000000000 RSI: 000000008028640c RDI: 0000000000000003
[  604.486167][T11451] RBP: 00007f2538128090 R08: 0000000000000000 R09: 0000000000000000
[  604.486174][T11451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  604.486184][T11451] R13: 00007f25375b6038 R14: 00007f25375b5fa0 R15: 00007fff655ebb78
[  604.486197][T11451]  </TASK>
[  604.578630][ T1144] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  604.596548][   T13] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  604.836090][T11468] fuse: Unknown parameter 'tasks'
[  604.904962][T11476] netlink: 12 bytes leftover after parsing attributes in process `syz.1.16477'.
[  604.999552][   T40] audit: type=1400 audit(1755182432.390:762): avc:  denied  { create } for  pid=11479 comm="syz.0.16478" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  605.001005][T11481] No buffer was provided with the request
[  605.117659][T11489] 9pnet_fd: Insufficient options for proto=fd
[  605.123942][T11491] binder: 11490:11491 ioctl c0306201 200000000680 returned -14
[  605.169082][T11495] overlayfs: upper fs does not support file handles, falling back to index=off.
[  605.193456][T11497] netlink: 12 bytes leftover after parsing attributes in process `syz.1.16485'.
[  605.240907][T11501] binder: 11500:11501 ioctl c0306201 2000000003c0 returned -14
[  605.243939][T11501] binder: 11500:11501 ioctl c0306201 200000000300 returned -14
[  605.246911][T11501] binder: 11500:11501 ioctl c0306201 200000000680 returned -14
[  605.523129][T11514] ufs: You didn't specify the type of your ufs filesystem
[  605.523129][T11514] 
[  605.523129][T11514] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  605.523129][T11514] 
[  605.523129][T11514] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  605.537038][T11514] ufs: ufstype=old is supported read-only
[  605.539822][T11514] bio_check_eod: 2 callbacks suppressed
[  605.539836][T11514] syz.0.16491: attempt to access beyond end of device
[  605.539836][T11514] nbd0: rw=0, sector=16, nr_sectors = 2 limit=0
[  605.549866][T11514] block nbd0: NBD_DISCONNECT
[  605.557703][T21107] usb 6-1: new full-speed USB device number 115 using dummy_hcd
[  605.730192][T21107] usb 6-1: config 0 has no interfaces?
[  605.732540][T21107] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  605.736269][T21107] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  605.743011][T21107] usb 6-1: config 0 descriptor??
[  605.965227][  T839] usb 6-1: USB disconnect, device number 115
[  606.606195][ T5977] Bluetooth: hci1: command tx timeout
[  606.706140][   T40] audit: type=1400 audit(1755182433.998:763): avc:  denied  { setattr } for  pid=11527 comm="syz.1.16496" name="radio0" dev="devtmpfs" ino=980 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  608.069885][   T40] audit: type=1400 audit(1755182435.261:764): avc:  denied  { accept } for  pid=11552 comm="syz.1.16505" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  608.222050][T11555] serio: Serial port ptm0
[  608.254582][T11557] FAULT_INJECTION: forcing a failure.
[  608.254582][T11557] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  608.258862][T11557] CPU: 0 UID: 0 PID: 11557 Comm: syz.1.16507 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  608.258879][T11557] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  608.258887][T11557] Call Trace:
[  608.258892][T11557]  <TASK>
[  608.258897][T11557]  dump_stack_lvl+0x16c/0x1f0
[  608.258913][T11557]  should_fail_ex+0x512/0x640
[  608.258929][T11557]  _copy_to_user+0x32/0xd0
[  608.258945][T11557]  simple_read_from_buffer+0xcb/0x170
[  608.258958][T11557]  proc_fail_nth_read+0x197/0x240
[  608.258972][T11557]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  608.258986][T11557]  ? rw_verify_area+0xcf/0x6c0
[  608.259003][T11557]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  608.259015][T11557]  vfs_read+0x1e1/0xcf0
[  608.259028][T11557]  ? __pfx___mutex_lock+0x10/0x10
[  608.259041][T11557]  ? __pfx_vfs_read+0x10/0x10
[  608.259055][T11557]  ? __fget_files+0x20e/0x3c0
[  608.259072][T11557]  ksys_read+0x12a/0x250
[  608.259083][T11557]  ? __pfx_ksys_read+0x10/0x10
[  608.259098][T11557]  do_syscall_64+0xcd/0x4c0
[  608.259111][T11557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  608.259128][T11557] RIP: 0033:0x7f0f4f18d5fc
[  608.259137][T11557] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  608.259148][T11557] RSP: 002b:00007f0f50020030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  608.259159][T11557] RAX: ffffffffffffffda RBX: 00007f0f4f3b5fa0 RCX: 00007f0f4f18d5fc
[  608.259166][T11557] RDX: 000000000000000f RSI: 00007f0f500200a0 RDI: 0000000000000006
[  608.259173][T11557] RBP: 00007f0f50020090 R08: 0000000000000000 R09: 0000000000000000
[  608.259180][T11557] R10: 0000000000010102 R11: 0000000000000246 R12: 0000000000000001
[  608.259186][T11557] R13: 00007f0f4f3b6038 R14: 00007f0f4f3b5fa0 R15: 00007ffd8986ee58
[  608.259200][T11557]  </TASK>
[  608.330964][    C0] vkms_vblank_simulate: vblank timer overrun
[  608.446672][   T40] audit: type=1400 audit(1755182435.626:765): avc:  denied  { ioctl } for  pid=11561 comm="syz.4.16509" path="socket:[265145]" dev="sockfs" ino=265145 ioctlcmd=0x4942 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  608.564173][T11570] netlink: 12 bytes leftover after parsing attributes in process `syz.3.16512'.
[  608.602001][T11574] FAULT_INJECTION: forcing a failure.
[  608.602001][T11574] name failslab, interval 1, probability 0, space 0, times 0
[  608.606225][T11574] CPU: 1 UID: 0 PID: 11574 Comm: syz.4.16514 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  608.606241][T11574] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  608.606248][T11574] Call Trace:
[  608.606252][T11574]  <TASK>
[  608.606257][T11574]  dump_stack_lvl+0x16c/0x1f0
[  608.606273][T11574]  should_fail_ex+0x512/0x640
[  608.606286][T11574]  ? fs_reclaim_acquire+0xae/0x150
[  608.606303][T11574]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  608.606320][T11574]  should_failslab+0xc2/0x120
[  608.606333][T11574]  __kmalloc_noprof+0xd2/0x510
[  608.606347][T11574]  tomoyo_realpath_from_path+0xc2/0x6e0
[  608.606366][T11574]  ? tomoyo_profile+0x47/0x60
[  608.606377][T11574]  tomoyo_path_number_perm+0x245/0x580
[  608.606391][T11574]  ? tomoyo_path_number_perm+0x237/0x580
[  608.606406][T11574]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  608.606421][T11574]  ? find_held_lock+0x2b/0x80
[  608.606447][T11574]  ? find_held_lock+0x2b/0x80
[  608.606461][T11574]  ? hook_file_ioctl_common+0x145/0x410
[  608.606475][T11574]  ? __fget_files+0x20e/0x3c0
[  608.606490][T11574]  security_file_ioctl+0x9b/0x240
[  608.606507][T11574]  __x64_sys_ioctl+0xb7/0x210
[  608.606526][T11574]  do_syscall_64+0xcd/0x4c0
[  608.606540][T11574]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  608.606551][T11574] RIP: 0033:0x7f8c7b38ebe9
[  608.606561][T11574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  608.606572][T11574] RSP: 002b:00007f8c7c296038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  608.606584][T11574] RAX: ffffffffffffffda RBX: 00007f8c7b5b5fa0 RCX: 00007f8c7b38ebe9
[  608.606591][T11574] RDX: 0000200000000000 RSI: 000000008028640c RDI: 0000000000000003
[  608.606598][T11574] RBP: 00007f8c7c296090 R08: 0000000000000000 R09: 0000000000000000
[  608.606605][T11574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  608.606611][T11574] R13: 00007f8c7b5b6038 R14: 00007f8c7b5b5fa0 R15: 00007ffe5e494678
[  608.606646][T11574]  </TASK>
[  608.606650][T11574] ERROR: Out of memory at tomoyo_realpath_from_path.
[  608.750938][T11578] fuse: Bad value for 'rootmode'
[  608.763266][   T40] audit: type=1400 audit(1755182435.916:766): avc:  denied  { node_bind } for  pid=11579 comm="syz.3.16516" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[  608.798054][T11582] netlink: 4 bytes leftover after parsing attributes in process `syz.3.16517'.
[  608.842770][T11584] FAULT_INJECTION: forcing a failure.
[  608.842770][T11584] name failslab, interval 1, probability 0, space 0, times 0
[  608.846764][T11584] CPU: 3 UID: 0 PID: 11584 Comm: syz.0.16518 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  608.846780][T11584] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  608.846788][T11584] Call Trace:
[  608.846792][T11584]  <TASK>
[  608.846797][T11584]  dump_stack_lvl+0x16c/0x1f0
[  608.846812][T11584]  should_fail_ex+0x512/0x640
[  608.846825][T11584]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  608.846844][T11584]  should_failslab+0xc2/0x120
[  608.846858][T11584]  __kmalloc_cache_noprof+0x6a/0x3e0
[  608.846874][T11584]  ? __asan_memcpy+0x3c/0x60
[  608.846891][T11584]  ? sctp_transport_new+0xa8/0x7b0
[  608.846906][T11584]  sctp_transport_new+0xa8/0x7b0
[  608.846925][T11584]  sctp_assoc_add_peer+0x2e3/0x1550
[  608.846941][T11584]  sctp_connect_new_asoc+0x1f8/0x770
[  608.846956][T11584]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  608.846970][T11584]  ? selinux_sctp_bind_connect+0x112/0x2c0
[  608.846989][T11584]  sctp_sendmsg+0x1560/0x1e10
[  608.847006][T11584]  ? __pfx_sctp_sendmsg+0x10/0x10
[  608.847021][T11584]  ? __pfx_sock_has_perm+0x10/0x10
[  608.847053][T11584]  ? __pfx_sctp_sendmsg+0x10/0x10
[  608.847069][T11584]  inet_sendmsg+0x11c/0x140
[  608.847087][T11584]  __sys_sendto+0x43c/0x520
[  608.847105][T11584]  ? __pfx___sys_sendto+0x10/0x10
[  608.847144][T11584]  ? ksys_write+0x1ac/0x250
[  608.847158][T11584]  ? __pfx_ksys_write+0x10/0x10
[  608.847171][T11584]  __x64_sys_sendto+0xe0/0x1c0
[  608.847188][T11584]  ? do_syscall_64+0x91/0x4c0
[  608.847200][T11584]  ? lockdep_hardirqs_on+0x7c/0x110
[  608.847210][T11584]  do_syscall_64+0xcd/0x4c0
[  608.847223][T11584]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  608.847235][T11584] RIP: 0033:0x7f253738ebe9
[  608.847244][T11584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  608.847256][T11584] RSP: 002b:00007f2538128038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  608.847267][T11584] RAX: ffffffffffffffda RBX: 00007f25375b5fa0 RCX: 00007f253738ebe9
[  608.847274][T11584] RDX: 000000000000ffe0 RSI: 0000200000000100 RDI: 0000000000000003
[  608.847281][T11584] RBP: 00007f2538128090 R08: 0000200000000140 R09: 000000000000001c
[  608.847287][T11584] R10: 000000002000c851 R11: 0000000000000246 R12: 0000000000000001
[  608.847294][T11584] R13: 00007f25375b6038 R14: 00007f25375b5fa0 R15: 00007fff655ebb78
[  608.847307][T11584]  </TASK>
[  608.946604][T21107] psmouse serio4: Failed to reset mouse on : -5
[  608.976840][T11582] team0 (unregistering): Port device team_slave_0 removed
[  608.980164][T11582] team0 (unregistering): Port device team_slave_1 removed
[  609.020898][T11585] netlink: 400 bytes leftover after parsing attributes in process `syz.3.16517'.
[  609.307339][   T40] audit: type=1400 audit(1755182436.421:767): avc:  denied  { create } for  pid=11596 comm="syz.1.16524" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  609.309002][T11597] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16524'.
[  609.664160][   T40] audit: type=1400 audit(1755182436.767:768): avc:  denied  { getopt } for  pid=11601 comm="syz.1.16526" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  609.951612][ T5582] usb 6-1: new full-speed USB device number 116 using dummy_hcd
[  609.970985][T11614] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  610.123907][ T5582] usb 6-1: config 0 has no interfaces?
[  610.125767][ T5582] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  610.128644][ T5582] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  610.132609][ T5582] usb 6-1: config 0 descriptor??
[  610.198666][T11617] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  610.381064][   T59] usb 6-1: USB disconnect, device number 116
[  610.827236][T11627] netlink: 'syz.3.16533': attribute type 2 has an invalid length.
[  611.255666][   T59] usb 6-1: new low-speed USB device number 117 using dummy_hcd
[  611.417307][   T59] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  611.420103][   T59] usb 6-1: config 0 has no interface number 0
[  611.422459][   T59] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  611.426420][   T59] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  611.430179][   T59] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  611.433464][   T59] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  611.438105][   T59] usb 6-1: config 0 descriptor??
[  611.440379][T11629] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  611.445003][   T59] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  611.668869][   T59] usb 6-1: USB disconnect, device number 117
[  611.880197][T11636] binder: 11635:11636 unknown command 154
[  611.882025][T11636] binder: 11635:11636 ioctl c0306201 200000000080 returned -22
[  611.885230][T11636] binder: BINDER_SET_CONTEXT_MGR already set
[  611.887216][T11636] binder: 11635:11636 ioctl 4018620d 200000000040 returned -16
[  611.913693][T11638] FAULT_INJECTION: forcing a failure.
[  611.913693][T11638] name failslab, interval 1, probability 0, space 0, times 0
[  611.917239][T11638] CPU: 2 UID: 0 PID: 11638 Comm: syz.3.16537 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  611.917254][T11638] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  611.917261][T11638] Call Trace:
[  611.917266][T11638]  <TASK>
[  611.917271][T11638]  dump_stack_lvl+0x16c/0x1f0
[  611.917287][T11638]  should_fail_ex+0x512/0x640
[  611.917300][T11638]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  611.917320][T11638]  should_failslab+0xc2/0x120
[  611.917333][T11638]  __kmalloc_cache_noprof+0x6a/0x3e0
[  611.917350][T11638]  ? copy_mount_options+0x55/0x190
[  611.917367][T11638]  ? _copy_from_user+0x59/0xd0
[  611.917382][T11638]  copy_mount_options+0x55/0x190
[  611.917400][T11638]  __x64_sys_mount+0x1ac/0x310
[  611.917415][T11638]  ? __pfx___x64_sys_mount+0x10/0x10
[  611.917433][T11638]  do_syscall_64+0xcd/0x4c0
[  611.917447][T11638]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  611.917458][T11638] RIP: 0033:0x7f5cd018ebe9
[  611.917468][T11638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  611.917478][T11638] RSP: 002b:00007f5cd10a3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  611.917489][T11638] RAX: ffffffffffffffda RBX: 00007f5cd03b5fa0 RCX: 00007f5cd018ebe9
[  611.917497][T11638] RDX: 0000200000002100 RSI: 00002000000020c0 RDI: 0000000000000000
[  611.917503][T11638] RBP: 00007f5cd10a3090 R08: 0000200000000180 R09: 0000000000000000
[  611.917511][T11638] R10: 0000000003810050 R11: 0000000000000246 R12: 0000000000000001
[  611.917517][T11638] R13: 00007f5cd03b6038 R14: 00007f5cd03b5fa0 R15: 00007ffcca4dead8
[  611.917531][T11638]  </TASK>
[  612.018083][T11642] kAFS: No cell specified
[  612.080100][T11642] 9pnet_virtio: no channels available for device syz
[  612.169343][   T40] audit: type=1400 audit(1755182439.106:769): avc:  denied  { read } for  pid=11646 comm="syz.3.16540" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  612.203325][T11649] FAULT_INJECTION: forcing a failure.
[  612.203325][T11649] name failslab, interval 1, probability 0, space 0, times 0
[  612.208914][T11649] CPU: 1 UID: 0 PID: 11649 Comm: syz.3.16541 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  612.208939][T11649] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  612.208951][T11649] Call Trace:
[  612.208957][T11649]  <TASK>
[  612.208965][T11649]  dump_stack_lvl+0x16c/0x1f0
[  612.208986][T11649]  should_fail_ex+0x512/0x640
[  612.209006][T11649]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  612.209024][T11649]  should_failslab+0xc2/0x120
[  612.209045][T11649]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  612.209062][T11649]  ? alloc_empty_file+0x55/0x1e0
[  612.209087][T11649]  alloc_empty_file+0x55/0x1e0
[  612.209109][T11649]  path_openat+0xda/0x2cb0
[  612.209125][T11649]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  612.209149][T11649]  ? __pfx_path_openat+0x10/0x10
[  612.209175][T11649]  do_filp_open+0x20b/0x470
[  612.209196][T11649]  ? __pfx_do_filp_open+0x10/0x10
[  612.209233][T11649]  ? alloc_fd+0x471/0x7d0
[  612.209257][T11649]  do_sys_openat2+0x11b/0x1d0
[  612.209280][T11649]  ? __pfx_do_sys_openat2+0x10/0x10
[  612.209306][T11649]  ? __fget_files+0x20e/0x3c0
[  612.209330][T11649]  __x64_sys_openat+0x174/0x210
[  612.209352][T11649]  ? __pfx___x64_sys_openat+0x10/0x10
[  612.209375][T11649]  ? ksys_write+0x1ac/0x250
[  612.209418][T11649]  do_syscall_64+0xcd/0x4c0
[  612.209439][T11649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  612.209454][T11649] RIP: 0033:0x7f5cd018ebe9
[  612.209468][T11649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  612.209483][T11649] RSP: 002b:00007f5cd10a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  612.209500][T11649] RAX: ffffffffffffffda RBX: 00007f5cd03b5fa0 RCX: 00007f5cd018ebe9
[  612.209513][T11649] RDX: 0000000000121141 RSI: 0000200000003ec0 RDI: ffffffffffffff9c
[  612.209523][T11649] RBP: 00007f5cd10a3090 R08: 0000000000000000 R09: 0000000000000000
[  612.209535][T11649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  612.209545][T11649] R13: 00007f5cd03b6038 R14: 00007f5cd03b5fa0 R15: 00007ffcca4dead8
[  612.209568][T11649]  </TASK>
[  612.382401][T11654] overlayfs: missing 'workdir'
[  612.540456][T11669] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  612.987635][T21107] misc userio: Buffer overflowed, userio client isn't keeping up
[  613.602190][T11687] netlink: 'syz.1.16556': attribute type 2 has an invalid length.
[  613.642876][T11691] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  613.664670][   T40] audit: type=1400 audit(1755182440.499:770): avc:  denied  { setopt } for  pid=11693 comm="syz.0.16559" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  614.121618][T21107] input: PS/2 Generic Mouse as /devices/serio4/input/input52
[  614.345282][T21107] psmouse serio4: Failed to enable mouse on 
[  614.477162][T11714] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11714 comm=syz.4.16567
[  614.493039][T11714] netlink: 'syz.4.16567': attribute type 25 has an invalid length.
[  614.496445][T11714] netlink: 'syz.4.16567': attribute type 7 has an invalid length.
[  614.584351][T11716] comedi comedi3: comedi_config --init_data is deprecated
[  614.634842][T11718] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  614.817735][T11734] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16576'.
[  614.825800][T11736] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  614.828739][T11737] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  614.855905][T11740] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  615.009160][T11747] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  615.016326][T11752] netlink: 8 bytes leftover after parsing attributes in process `syz.4.16583'.
[  615.019749][T11752] openvswitch: netlink: nsh attr 0 has unexpected len 4 expected 0
[  615.022657][T11752] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  615.026064][   T40] audit: type=1400 audit(1755182441.772:771): avc:  denied  { write } for  pid=11751 comm="syz.4.16583" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  615.048707][T11756] tipc: Started in network mode
[  615.050353][T11756] tipc: Node identity ac14140f, cluster identity 511
[  615.053709][T11756] tipc: New replicast peer: 255.255.255.255
[  615.055897][T11756] tipc: Enabled bearer <udp:syz2>, priority 10
[  615.058445][T11756] netlink: 12 bytes leftover after parsing attributes in process `syz.4.16585'.
[  615.061299][T11756] tipc: Disabling bearer <udp:syz2>
[  615.191441][T11765] netlink: 32 bytes leftover after parsing attributes in process `syz.4.16590'.
[  615.226827][ T5983] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  615.229795][ T5983] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  615.233414][ T5983] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  615.236577][ T5983] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  615.239283][ T5983] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  615.266520][T11771] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  615.353777][T11768] chnl_net:caif_netlink_parms(): no params data found
[  615.422135][T11768] bridge0: port 1(bridge_slave_0) entered blocking state
[  615.425395][T11768] bridge0: port 1(bridge_slave_0) entered disabled state
[  615.428630][T11768] bridge_slave_0: entered allmulticast mode
[  615.431614][T11768] bridge_slave_0: entered promiscuous mode
[  615.435108][T11768] bridge0: port 2(bridge_slave_1) entered blocking state
[  615.438195][T11768] bridge0: port 2(bridge_slave_1) entered disabled state
[  615.440471][T11768] bridge_slave_1: entered allmulticast mode
[  615.443644][T11768] bridge_slave_1: entered promiscuous mode
[  615.474250][T11768] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  615.479533][T11768] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  615.510288][T11768] team0: Port device team_slave_0 added
[  615.514176][T11768] team0: Port device team_slave_1 added
[  615.545228][T11768] batman_adv: batadv0: Adding interface: batadv_slave_0
[  615.547415][T11768] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  615.557760][T11768] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  615.561999][T11768] batman_adv: batadv0: Adding interface: batadv_slave_1
[  615.564217][T11768] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  615.572242][T11768] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  615.616298][T11768] hsr_slave_0: entered promiscuous mode
[  615.618771][T11768] hsr_slave_1: entered promiscuous mode
[  615.620816][T11768] debugfs: 'hsr0' already exists in 'hsr'
[  615.622623][T11768] Cannot create hsr debugfs directory
[  615.702721][T11768] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  615.761848][T11768] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  615.836720][T11768] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  615.920208][T11768] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  616.011527][T11768] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  616.021384][T11768] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  616.025927][T11768] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  616.030415][T11768] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  616.067842][T11768] 8021q: adding VLAN 0 to HW filter on device bond0
[  616.077331][T11768] 8021q: adding VLAN 0 to HW filter on device team0
[  616.084276][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  616.086535][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  616.093698][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[  616.095983][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[  616.201171][T11768] 8021q: adding VLAN 0 to HW filter on device batadv0
[  616.221480][T11768] veth0_vlan: entered promiscuous mode
[  616.226270][T11768] veth1_vlan: entered promiscuous mode
[  616.245069][T11768] veth0_macvtap: entered promiscuous mode
[  616.250009][T11768] veth1_macvtap: entered promiscuous mode
[  616.258376][T11768] batman_adv: batadv0: Interface activated: batadv_slave_0
[  616.266397][T11768] batman_adv: batadv0: Interface activated: batadv_slave_1
[  616.272258][ T1144] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  616.275082][ T1144] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  616.278139][ T1144] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  616.281023][ T1144] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  616.314910][   T97] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  616.317342][   T97] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  616.333068][   T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  616.335666][   T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  616.386839][T11808] netlink: 40 bytes leftover after parsing attributes in process `syz.3.16600'.
[  616.412697][   T40] audit: type=1400 audit(1755182443.072:772): avc:  denied  { mounton } for  pid=11809 comm="syz.4.16599" path="/328/file0/file0" dev="9p" ino=35913891 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  616.420929][   T40] audit: type=1400 audit(1755182443.072:773): avc:  denied  { add_name } for  pid=11809 comm="syz.4.16599" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  616.427329][   T40] audit: type=1400 audit(1755182443.072:774): avc:  denied  { create } for  pid=11809 comm="syz.4.16599" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  616.433864][   T40] audit: type=1400 audit(1755182443.072:775): avc:  denied  { associate } for  pid=11809 comm="syz.4.16599" name="bus" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  616.484759][T11822] netlink: 40 bytes leftover after parsing attributes in process `syz.1.16610'.
[  617.025986][T11833] netlink: 'syz.1.16606': attribute type 1 has an invalid length.
[  617.028653][T11833] netlink: 4 bytes leftover after parsing attributes in process `syz.1.16606'.
[  617.058123][T11838] netlink: 12 bytes leftover after parsing attributes in process `syz.3.16608'.
[  617.080831][T11837] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  617.081344][T11838] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  617.241794][T11845] FAULT_INJECTION: forcing a failure.
[  617.241794][T11845] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  617.246474][T11845] CPU: 2 UID: 0 PID: 11845 Comm: syz.3.16614 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  617.246491][T11845] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  617.246498][T11845] Call Trace:
[  617.246503][T11845]  <TASK>
[  617.246507][T11845]  dump_stack_lvl+0x16c/0x1f0
[  617.246523][T11845]  should_fail_ex+0x512/0x640
[  617.246561][T11845]  _copy_to_user+0x32/0xd0
[  617.246581][T11845]  simple_read_from_buffer+0xcb/0x170
[  617.246594][T11845]  proc_fail_nth_read+0x197/0x240
[  617.246608][T11845]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  617.246622][T11845]  ? rw_verify_area+0xcf/0x6c0
[  617.246639][T11845]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  617.246652][T11845]  vfs_read+0x1e1/0xcf0
[  617.246665][T11845]  ? __pfx___mutex_lock+0x10/0x10
[  617.246678][T11845]  ? __pfx_vfs_read+0x10/0x10
[  617.246693][T11845]  ? __fget_files+0x20e/0x3c0
[  617.246709][T11845]  ksys_read+0x12a/0x250
[  617.246720][T11845]  ? __pfx_ksys_read+0x10/0x10
[  617.246741][T11845]  do_syscall_64+0xcd/0x4c0
[  617.246754][T11845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  617.246766][T11845] RIP: 0033:0x7f5cd018d5fc
[  617.246775][T11845] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  617.246786][T11845] RSP: 002b:00007f5cd10a3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  617.246797][T11845] RAX: ffffffffffffffda RBX: 00007f5cd03b5fa0 RCX: 00007f5cd018d5fc
[  617.246804][T11845] RDX: 000000000000000f RSI: 00007f5cd10a30a0 RDI: 0000000000000004
[  617.246810][T11845] RBP: 00007f5cd10a3090 R08: 0000000000000000 R09: 0000000000000000
[  617.246817][T11845] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  617.246824][T11845] R13: 00007f5cd03b6038 R14: 00007f5cd03b5fa0 R15: 00007ffcca4dead8
[  617.246838][T11845]  </TASK>
[  617.281372][T11849] FAULT_INJECTION: forcing a failure.
[  617.281372][T11849] name failslab, interval 1, probability 0, space 0, times 0
[  617.285314][T11810] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] SMP KASAN NOPTI
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  617.286197][T11849] CPU: 1 UID: 0 PID: 11849 Comm: syz.1.16615 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  617.286214][T11849] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  617.286220][T11849] Call Trace:
[  617.286224][T11849]  <TASK>
[  617.286228][T11849]  dump_stack_lvl+0x16c/0x1f0
[  617.286243][T11849]  should_fail_ex+0x512/0x640
[  617.286255][T11849]  ? fs_reclaim_acquire+0xae/0x150
[  617.286271][T11849]  ? tomoyo_encode2+0x100/0x3e0
[  617.286286][T11849]  should_failslab+0xc2/0x120
[  617.286299][T11849]  __kmalloc_noprof+0xd2/0x510
[  617.286310][T11849]  ? d_absolute_path+0x136/0x1a0
[  617.286326][T11849]  tomoyo_encode2+0x100/0x3e0
[  617.286343][T11849]  tomoyo_encode+0x29/0x50
[  617.286358][T11849]  tomoyo_realpath_from_path+0x18f/0x6e0
[  617.286376][T11849]  tomoyo_path_number_perm+0x245/0x580
[  617.286389][T11849]  ? tomoyo_path_number_perm+0x237/0x580
[  617.286404][T11849]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  617.286418][T11849]  ? find_held_lock+0x2b/0x80
[  617.286436][T11849]  ? find_held_lock+0x2b/0x80
[  617.286449][T11849]  ? hook_file_ioctl_common+0x145/0x410
[  617.286461][T11849]  ? __fget_files+0x20e/0x3c0
[  617.286474][T11849]  security_file_ioctl+0x9b/0x240
[  617.286490][T11849]  __x64_sys_ioctl+0xb7/0x210
[  617.286513][T11849]  do_syscall_64+0xcd/0x4c0
[  617.286530][T11849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  617.286570][T11849] RIP: 0033:0x7f940c38ebe9
[  617.286583][T11849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  617.286597][T11849] RSP: 002b:00007f940d276038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  617.286608][T11849] RAX: ffffffffffffffda RBX: 00007f940c5b5fa0 RCX: 00007f940c38ebe9
[  617.286615][T11849] RDX: 0000200000000100 RSI: 00000000000007a5 RDI: 0000000000000003
[  617.286622][T11849] RBP: 00007f940d276090 R08: 0000000000000000 R09: 0000000000000000
[  617.286629][T11849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  617.286635][T11849] R13: 00007f940c5b6038 R14: 00007f940c5b5fa0 R15: 00007ffc94750008
[  617.286645][T11849]  </TASK>
[  617.286654][T11849] ERROR: Out of memory at tomoyo_realpath_from_path.
[  617.287440][T11810] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f]
[  617.398121][T11810] CPU: 3 UID: 0 PID: 11810 Comm: syz.4.16599 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  617.402822][T11810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  617.407211][T11810] RIP: 0010:iter_file_splice_write+0xa46/0x1270
[  617.409492][T11810] Code: 00 48 89 fa 48 c1 ea 03 80 3c 1a 00 0f 85 1a 06 00 00 4d 8b 65 10 49 c7 45 10 00 00 00 00 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 1a 00 0f 85 eb 06 00 00 49 8b 54 24 08 4c 89 ee 4c 89 f7 83
[  617.415559][T11810] RSP: 0018:ffffc900046d7918 EFLAGS: 00010202
[  617.417470][T11810] RAX: 0000000000080000 RBX: dffffc0000000000 RCX: ffffc9000c706000
[  617.419958][T11810] RDX: 0000000000000001 RSI: ffffffff8244e81e RDI: 0000000000000008
[  617.422439][T11810] RBP: 00000000000001aa R08: 0000000000000006 R09: 0000000000000000
[  617.424925][T11810] R10: 7fffffffffffefff R11: 0000000000000000 R12: 0000000000000000
[  617.427407][T11810] R13: ffff88802bef5190 R14: ffff888052b37800 R15: 7fffffffffffefff
[  617.429850][T11810] FS:  00007f8c7c2966c0(0000) GS:ffff8880d69bc000(0000) knlGS:0000000000000000
[  617.432659][T11810] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  617.434737][T11810] CR2: 00002000000002c0 CR3: 0000000034204000 CR4: 0000000000352ef0
[  617.437218][T11810] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  617.439686][T11810] DR3: 3a810b1eb6134bdc DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  617.442189][T11810] Call Trace:
[  617.443261][T11810]  <TASK>
[  617.444221][T11810]  ? __pfx_iter_file_splice_write+0x10/0x10
[  617.446083][T11810]  ? __pfx_iter_file_splice_write+0x10/0x10
[  617.447949][T11810]  direct_splice_actor+0x192/0x6c0
[  617.449564][T11810]  splice_direct_to_actor+0x342/0xa30
[  617.451273][T11810]  ? __pfx_direct_splice_actor+0x10/0x10
[  617.453028][T11810]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  617.454879][T11810]  ? futex_private_hash_put+0x18a/0x300
[  617.456621][T11810]  do_splice_direct+0x174/0x240
[  617.458157][T11810]  ? __pfx_do_splice_direct+0x10/0x10
[  617.459859][T11810]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  617.461708][T11810]  ? rw_verify_area+0xcf/0x6c0
[  617.463234][T11810]  do_sendfile+0xb06/0xe50
[  617.464650][T11810]  ? __pfx_do_sendfile+0x10/0x10
[  617.466208][T11810]  ? __x64_sys_futex+0x1e0/0x4c0
[  617.467780][T11810]  ? __x64_sys_futex+0x1e9/0x4c0
[  617.469342][T11810]  __x64_sys_sendfile64+0x1d8/0x220
[  617.471002][T11810]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  617.472788][T11810]  do_syscall_64+0xcd/0x4c0
[  617.474221][T11810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  617.476075][T11810] RIP: 0033:0x7f8c7b38ebe9
[  617.477486][T11810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  617.483431][T11810] RSP: 002b:00007f8c7c296038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  617.486020][T11810] RAX: ffffffffffffffda RBX: 00007f8c7b5b5fa0 RCX: 00007f8c7b38ebe9
[  617.488504][T11810] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[  617.491494][T11810] RBP: 00007f8c7b411e19 R08: 0000000000000000 R09: 0000000000000000
[  617.494625][T11810] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000000
[  617.497095][T11810] R13: 00007f8c7b5b6038 R14: 00007f8c7b5b5fa0 R15: 00007ffe5e494678
[  617.499567][T11810]  </TASK>
[  617.500553][T11810] Modules linked in:
[  617.502159][T11810] ---[ end trace 0000000000000000 ]---
[  617.503472][ T5983] Bluetooth: hci3: command tx timeout
[  617.505668][T11810] RIP: 0010:iter_file_splice_write+0xa46/0x1270
[  617.507668][T11810] Code: 00 48 89 fa 48 c1 ea 03 80 3c 1a 00 0f 85 1a 06 00 00 4d 8b 65 10 49 c7 45 10 00 00 00 00 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 1a 00 0f 85 eb 06 00 00 49 8b 54 24 08 4c 89 ee 4c 89 f7 83
[  617.513768][T11810] RSP: 0018:ffffc900046d7918 EFLAGS: 00010202
[  617.515784][T11810] RAX: 0000000000080000 RBX: dffffc0000000000 RCX: ffffc9000c706000
[  617.518248][T11810] RDX: 0000000000000001 RSI: ffffffff8244e81e RDI: 0000000000000008
[  617.520863][T11810] RBP: 00000000000001aa R08: 0000000000000006 R09: 0000000000000000
[  617.524215][T11810] R10: 7fffffffffffefff R11: 0000000000000000 R12: 0000000000000000
[  617.527322][T11810] R13: ffff88802bef5190 R14: ffff888052b37800 R15: 7fffffffffffefff
[  617.530817][T11810] FS:  00007f8c7c2966c0(0000) GS:ffff8880d68bc000(0000) knlGS:0000000000000000
[  617.534599][T11810] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  617.537344][T11810] CR2: 00007f5cd01eeca8 CR3: 0000000034204000 CR4: 0000000000352ef0
[  617.540461][T11810] Kernel panic - not syncing: Fatal exception
[  617.543455][T11810] Kernel Offset: disabled
[  617.545131][T11810] Rebooting in 86400 seconds..

VM DIAGNOSIS:
14:40:58  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000496404 RBX=0000000000000000 RCX=ffffffff8b935c29 RDX=ffffed100d486656
RSI=ffffffff8c162480 RDI=ffffffff819133c1 RBP=fffffbfff1c52ef8 RSP=ffffffff8e207e08
R8 =0000000000000000 R9 =ffffed100d486655 R10=ffff88806a4332ab R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e2977c0 R14=ffffffff90ab3590 R15=0000000000000000
RIP=ffffffff8b93478f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d66bc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f940d254f98 CR3=000000002ccd2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000010000000
Opmask04=0000000000000000 Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=65e226dd7a8dd172 0fc661014b6c9320 65e226dd7a8dd172 0fc661014b6c9320 65e226dd7a8dd172 0fc661014b6c9320 65e226dd7a8dd172 0fc661014b6c9320
ZMM18=bc5dda2f3e416335 ec96279b7d1f1e8c bc5dda2f3e416335 ec96279b7d1f1e8c bc5dda2f3e416335 ec96279b7d1f1e8c bc5dda2f3e416335 ec96279b7d1f1e8c
ZMM19=7a38000000000000 0000000000000005 7a38000000000000 0000000000000004 7a38000000000000 0000000000000003 7a38000000000000 0000000000000002
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0fffffffffffff04 0100000208060c01 04be031000098003 0100000208060204
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 04ca001000081000 0100000208060601 06b2000400019db4 08000a800401c708
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000001101000 0b80041a08000288 0800010000000806 0a0169f200000002
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 03000000ffffffba 03000000ffffffb2 0700000000000002 ffffff9807000000
ZMM25=7b7654ec7b7654ec 7b7654ec7b7654ec 7b7654ec7b7654ec 7b7654ec7b7654ec 7b7654ec7b7654ec 7b7654ec7b7654ec 7b7654ec7b7654ec 7b7654ec7b7654ec
ZMM26=10f5869610f58696 10f5869610f58696 10f5869610f58696 10f5869610f58696 10f5869610f58696 10f5869610f58696 10f5869610f58696 10f5869610f58696
ZMM27=60c2260860c22608 60c2260860c22608 60c2260860c22608 60c2260860c22608 60c2260860c22608 60c2260860c22608 60c2260860c22608 60c2260860c22608
ZMM28=000000500000004f 0000004e0000004d 0000004c0000004b 0000004a00000049 0000004800000047 0000004600000045 0000004400000043 0000004200000041
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=cc470000cc470000 cc470000cc470000 cc470000cc470000 cc470000cc470000 cc470000cc470000 cc470000cc470000 cc470000cc470000 cc470000cc470000
info registers vcpu 1

CPU#1
RAX=ffffea00015f3830 RBX=ffffea00015f3800 RCX=ffffffff820ecc98 RDX=0000000000000001
RSI=0000000000000004 RDI=ffffea00015f3830 RBP=0000000000000001 RSP=ffffc900034277d0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=ffffea00015f3800 R13=ffff888012877040 R14=0000000000000000 R15=0000000000000001
RIP=ffffffff8221e232 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d67bc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fb430ce7d60 CR3=000000002901d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb4301876c3 00007fb4301876c3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffef273ab10 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557588318f 0000555575882f40
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557587cfa4 000055557587cf70
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010480041eca0800 0100000008060601 1aee000004071008 0004980300040004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 9403020400049003 0480800800048803 1ffffffffe080004 800300041ec00800
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100000008060601 1aea000800080313 a440808080880000 030280041ece0800
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100000008060601 1afc588080080002 8003000400040800 1d800401c7100008
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bf469c6c65fefc2b bed4d6fe0198de89 f92e5accc6aedaba 431d58e1218025ad
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffff88806a741e80 RCX=ffffffff81af8e61 RDX=ffff888057744880
RSI=ffffffff81af8e3b RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc9000471f648
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=dffffc0000000000 R13=ffffed100d4e83d1 R14=0000000000000001 R15=0000000000000003
RIP=ffffffff81af8e3d RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d68bc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f5cd01eeca8 CR3=000000004c4b5000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=0000000004000000 Opmask02=0000000002fefcfe Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcca4dee60 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcca4defe6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcca4defe6 00007ffcca4defec
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5cd0212e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5cd0212e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5cd0212e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5cd0212e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5cd0212ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5cd0212fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000033 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85640d15 RDI=ffffffff9b10dfa0 RBP=ffffffff9b10df60 RSP=ffffc900046d7310
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552031203a555043
R12=0000000000000000 R13=0000000000000033 R14=ffffffff9b10df60 R15=ffffffff85640cb0
RIP=ffffffff85640d3f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f8c7c2966c0 ffffffff 00c00000
GS =0000 ffff8880d69bc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00002000000002c0 CR3=0000000034204000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=3a810b1eb6134bdc 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=000000000534c002 Opmask01=0000000000000000 Opmask02=00000000f0400000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000560bfe539600 0000560bfe539600
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe8a2cea70 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c737973007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49565c56005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c31206c61767265 746e69202c62616c 736c69616620656d 616e205d39343831
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3834203030203230 2033392066652038 6520383020343220 3434203938203834
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2037632039382034 3420343320373720 6666206666203066 203030206433203e
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 38343c2035302066 3020306320313320 3830203432206337 2062382030632039
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3820313420303120 3432203437206238 2038342038312034 3220343520623820
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000