last executing test programs:

54.995969744s ago: executing program 2 (id=872):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x13, 0x2})
close(0x3)
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYRES8=r0], 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="140000"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)

54.836563407s ago: executing program 2 (id=875):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r2=>0x0})
socket(0x40000000015, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000240)={'batadv_slave_1\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="240000f0", @ANYRES16=r1, @ANYBLOB="310300000000000000000900000008000300", @ANYRES32=r2, @ANYBLOB="08000600", @ANYRES32=r3], 0x24}}, 0x0)

54.836380197s ago: executing program 2 (id=876):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000400)='./binderfs/binder1\x00', 0x0, 0x0)
socket(0x10, 0x3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x401, 0x0)
r1 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4d8, 0xdd, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xa0, 0x8, [{{0x9, 0x4, 0x0, 0xfe, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0xffff, 0xfd, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x3, 0x0, 0xfd}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
getsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, 0x0, &(0x7f0000000040))
syz_usb_control_io(r1, &(0x7f0000000080)={0x18, &(0x7f00000012c0)=ANY=[@ANYBLOB="40020c"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_open_dev$I2C(&(0x7f0000000100), 0x2, 0x1)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x13, 0x2})
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYRES8=r2], 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r3, &(0x7f0000000000), 0xd)

53.124908016s ago: executing program 2 (id=913):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x28a5291, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
landlock_create_ruleset(&(0x7f0000000100)={0x1200, 0x1, 0x3}, 0x18, 0x1)
stat(&(0x7f0000000180)='./file0/file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
quotactl$Q_QUOTAON(0x0, &(0x7f0000000140)=@sg0, r0, &(0x7f00000001c0)='./file0\x00')
syz_clone(0x4160000, 0x0, 0x0, 0x0, 0x0, 0x0)

53.064774008s ago: executing program 2 (id=916):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), r0)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={0x1c, r2, 0x48212b8952c3aff5, 0x70bd24, 0xa6, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200408d0}, 0x4000000)

52.651144965s ago: executing program 2 (id=927):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x7, 0x10000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000009c0)={0xffffffffffffffff, 0xe0, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f00000006c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, &(0x7f0000000700)=[0x0, 0x0], &(0x7f0000000740)=[0x0, 0x0], 0x0, 0x55, &(0x7f0000000780)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x48, 0x10, &(0x7f0000000800), &(0x7f0000000840), 0x8, 0x87, 0x8, 0x8, &(0x7f0000000880)}}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'tunl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xffe0}}, [@qdisc_kind_options=@q_plug={{0x9}, {0xc, 0x2, {0x3, 0x4}}}]}, 0x3c}}, 0x4000010)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000a80)={'ip6gre0\x00', &(0x7f0000000a00)={'syztnl1\x00', 0x0, 0x2f, 0xf5, 0x4, 0x10001, 0x20, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @dev={0xfe, 0x80, '\x00', 0x1f}, 0x8700, 0x80, 0x1, 0x4}})
r4 = socket(0x10, 0x2, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000300)={0x0, 0x7}, 0xc)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYRES32=r5], 0x48}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000380)={'veth0_vlan\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="280000001000010029bd7000fcdbdf2500000000", @ANYRES32=r8, @ANYBLOB="7a8d04005a1000000800040044000000"], 0x28}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000b00)={'syztnl1\x00', &(0x7f0000000ac0)={'erspan0\x00', 0x0, 0x7800, 0x8000, 0x6, 0x7, {{0x6, 0x4, 0x3, 0x11, 0x18, 0x68, 0x0, 0xb4, 0x4, 0x0, @multicast2, @multicast1, {[@ra={0x94, 0x4, 0x1}]}}}}})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000bc0)={'erspan0\x00', &(0x7f0000000b40)={'sit0\x00', 0x0, 0x80, 0x700, 0x4, 0x5, {{0x16, 0x4, 0x3, 0x4, 0x58, 0x68, 0x0, 0x9, 0x2f, 0x0, @multicast2, @broadcast, {[@noop, @rr={0x7, 0xb, 0x32, [@loopback, @broadcast]}, @rr={0x7, 0xf, 0xc6, [@remote, @loopback, @multicast2]}, @ssrr={0x89, 0x13, 0xb4, [@empty, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010101, @private=0xa010100]}, @noop, @generic={0x44, 0x11, "fc881ca77e1b6fb3a86f148c444067"}, @end]}}}}})
r9 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x7, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x8040}, 0x20000001)
getsockname$packet(r9, &(0x7f0000000600)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=@newlink={0x44, 0x10, 0x503, 0x0, 0xfffffffc, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_TTL={0x5, 0x4, 0xc}]}}}, @IFLA_MASTER={0x8, 0xa, r10}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
r11 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r12=>0x0})
connect$can_bcm(r11, &(0x7f00000000c0)={0x1d, r12}, 0x10)
r13 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r14=>0x0})
sendmsg$nl_route_sched(r13, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70b927, 0x25dfdc01, {0x0, 0x0, 0x0, r14, {0x0, 0xe}, {0x2, 0xb}, {0xd, 0xffe9}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0xc, 0x0, 0x1}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c00)={'team_slave_0\x00'})
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000040)={0x11})
sendmsg$NFNL_MSG_COMPAT_GET(r0, &(0x7f0000002840)={0x0, 0x0, &(0x7f0000002800)={&(0x7f0000000400)=ANY=[@ANYBLOB="34000000000b010300000000000000000200000a0800d2f69c98a9f4541097eed0dd31513402400000000108000340000018000d000100727066696c74657200000000026f79ec92257fba031769d7d8d3d6fd6b6a55f592ba8697550dbe3cc723603c71e6b42e7821a15f9c0ae44f672d51c12ef7f07bf67fdec2664a7e89ff072b3bcd79043416d65fa6f549018709aab9576e4897b22a6d426e5d7315252e67e38cc1a75edfe3044734d2132121b759ee9198976fee749a6d1c8298efa66682bc98b7f8"], 0x34}, 0x1, 0x0, 0x0, 0xa880}, 0x4040010)

52.563196219s ago: executing program 32 (id=927):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x7, 0x10000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000009c0)={0xffffffffffffffff, 0xe0, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f00000006c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, &(0x7f0000000700)=[0x0, 0x0], &(0x7f0000000740)=[0x0, 0x0], 0x0, 0x55, &(0x7f0000000780)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x48, 0x10, &(0x7f0000000800), &(0x7f0000000840), 0x8, 0x87, 0x8, 0x8, &(0x7f0000000880)}}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'tunl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xffe0}}, [@qdisc_kind_options=@q_plug={{0x9}, {0xc, 0x2, {0x3, 0x4}}}]}, 0x3c}}, 0x4000010)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000a80)={'ip6gre0\x00', &(0x7f0000000a00)={'syztnl1\x00', 0x0, 0x2f, 0xf5, 0x4, 0x10001, 0x20, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @dev={0xfe, 0x80, '\x00', 0x1f}, 0x8700, 0x80, 0x1, 0x4}})
r4 = socket(0x10, 0x2, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000300)={0x0, 0x7}, 0xc)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYRES32=r5], 0x48}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000380)={'veth0_vlan\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="280000001000010029bd7000fcdbdf2500000000", @ANYRES32=r8, @ANYBLOB="7a8d04005a1000000800040044000000"], 0x28}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000b00)={'syztnl1\x00', &(0x7f0000000ac0)={'erspan0\x00', 0x0, 0x7800, 0x8000, 0x6, 0x7, {{0x6, 0x4, 0x3, 0x11, 0x18, 0x68, 0x0, 0xb4, 0x4, 0x0, @multicast2, @multicast1, {[@ra={0x94, 0x4, 0x1}]}}}}})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000bc0)={'erspan0\x00', &(0x7f0000000b40)={'sit0\x00', 0x0, 0x80, 0x700, 0x4, 0x5, {{0x16, 0x4, 0x3, 0x4, 0x58, 0x68, 0x0, 0x9, 0x2f, 0x0, @multicast2, @broadcast, {[@noop, @rr={0x7, 0xb, 0x32, [@loopback, @broadcast]}, @rr={0x7, 0xf, 0xc6, [@remote, @loopback, @multicast2]}, @ssrr={0x89, 0x13, 0xb4, [@empty, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010101, @private=0xa010100]}, @noop, @generic={0x44, 0x11, "fc881ca77e1b6fb3a86f148c444067"}, @end]}}}}})
r9 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x7, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x8040}, 0x20000001)
getsockname$packet(r9, &(0x7f0000000600)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=@newlink={0x44, 0x10, 0x503, 0x0, 0xfffffffc, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_TTL={0x5, 0x4, 0xc}]}}}, @IFLA_MASTER={0x8, 0xa, r10}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
r11 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r12=>0x0})
connect$can_bcm(r11, &(0x7f00000000c0)={0x1d, r12}, 0x10)
r13 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r14=>0x0})
sendmsg$nl_route_sched(r13, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70b927, 0x25dfdc01, {0x0, 0x0, 0x0, r14, {0x0, 0xe}, {0x2, 0xb}, {0xd, 0xffe9}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0xc, 0x0, 0x1}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c00)={'team_slave_0\x00'})
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000040)={0x11})
sendmsg$NFNL_MSG_COMPAT_GET(r0, &(0x7f0000002840)={0x0, 0x0, &(0x7f0000002800)={&(0x7f0000000400)=ANY=[@ANYBLOB="34000000000b010300000000000000000200000a0800d2f69c98a9f4541097eed0dd31513402400000000108000340000018000d000100727066696c74657200000000026f79ec92257fba031769d7d8d3d6fd6b6a55f592ba8697550dbe3cc723603c71e6b42e7821a15f9c0ae44f672d51c12ef7f07bf67fdec2664a7e89ff072b3bcd79043416d65fa6f549018709aab9576e4897b22a6d426e5d7315252e67e38cc1a75edfe3044734d2132121b759ee9198976fee749a6d1c8298efa66682bc98b7f8"], 0x34}, 0x1, 0x0, 0x0, 0xa880}, 0x4040010)

3.342492922s ago: executing program 3 (id=1769):
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x37}, 0x50)
socket$caif_stream(0x25, 0x1, 0x0)
syz_io_uring_setup(0x179a, &(0x7f00000000c0)={0x0, 0xfb29, 0x100, 0x2, 0x2f5}, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3}, &(0x7f0000000240), &(0x7f00000003c0)=r5}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r4, r1, 0x25, 0x2, @void}, 0x10)
syz_emit_ethernet(0x4a, &(0x7f00000003c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x2f, 0x0, @remote, @local, {[], {{0x0, 0x22eb, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

3.280391871s ago: executing program 3 (id=1772):
r0 = syz_open_dev$I2C(&(0x7f0000003000), 0x10000000000, 0x80)
rseq(&(0x7f0000000040), 0x20, 0x0, 0x0)
rseq(&(0x7f0000000040)={0x0, 0x0, 0x0, 0x5}, 0x20, 0x1, 0x0)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "f4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95df8c01eaf07677d18bc"}})

3.280034974s ago: executing program 3 (id=1774):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x8000, &(0x7f00000002c0)={[{@usrquota_block_hardlimit={'usrquota_block_hardlimit', 0x3d, [0x38, 0x65]}}]})
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000240)={0x84, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_usb_connect$rtl8150(0x0, 0x3f, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xbda, 0x8150, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d}}]}}, 0x0)
syz_usb_control_io$rtl8150(r1, &(0x7f0000000300)={0x14, &(0x7f0000000140)={0x40, 0xa, 0xb6, {0xb6, 0x11, "412c9a6b69999f3c7a6a06bd8ba30b3b624547d9657a97547a3e589bfa47c18982708746509d4efc747d3aaebccae77f556fdde9840b338edaa86e6765d7240d6c75e5249878043e223740e42feb6fbd0f0740f5f568df282adc570241fb028fde80730a6ad561679d267a24f74e1302d4302170d390a9453f321572b9630fa91d01836d39a363dbbd6d671f3c8c18aec48b13198478cd282237f4ad5280a482bdfc9afaddcdd99e69631a33763af1a7025b1686"}}, &(0x7f0000000200)={0x0, 0x3, 0x29, @string={0x29, 0x3, "ff5d4edcfc2eb9f8038e459137666bc281d02b6e40eda01e3e06b7effb92b25cd1801d1288f2e0"}}}, &(0x7f00000004c0)={0x2c, &(0x7f0000000340)={0x20, 0x8, 0x6e, "43ff5218936401145aa3154c42e0c820103ff1a3bb47573974353af7737c209b701df3530b4580ea7b52dd278121233515c99cc85240fd4bc12945a259fabfbe5ab1140b19613e4cf78d92a99ba8cbe79d97b7e7fabf461e94a36da1a3fb95301c38a0fc483ae09d19c7fbe04f92"}, &(0x7f00000003c0)={0x0, 0xa, 0x1, 0x1a}, &(0x7f0000000400)={0x0, 0x8, 0x1, 0x5}, &(0x7f0000000440)={0xc0, 0x5, 0x6, "957720b9c30f"}, &(0x7f0000000480)={0x40, 0x5, 0x2, "c034"}})
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x4e22, @empty}, 0x3, 0x9a00}}, 0x2e)
ioctl$FS_IOC_GETVERSION(r2, 0xc0145b0e, &(0x7f0000000040))

1.09216317s ago: executing program 1 (id=1838):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000023c0)={0x348, 0x2e, 0x1, 0x0, 0x0, "", [@nested={0x4, 0x119}, @nested={0x334, 0x11, 0x0, 0x1, [@nested={0x330, 0xcf, 0x0, 0x1, [@nested={0x32b, 0x146, 0x0, 0x1, [@generic="f5ef56146c91147563276660e594de86923b901b9c31b5127825f1868b4db9469c2df41906c1f5ee49", @typed={0x8, 0x124, 0x0, 0x0, @u32=0x7}, @nested={0x1ed, 0x6c, 0x0, 0x1, [@generic="8b82111c59", @nested={0x1d0, 0x10f, 0x0, 0x1, [@nested={0x1c9, 0x11b, 0x0, 0x1, [@generic="44e4ba7c0b0ff113b095b181686c69e6901606a6035b241060d1ba9b116c80da82d5b88cc6363112ecfcfe146d3396e45fbbf0a08b22fd28c11b96cceeebb143edb758f38e41e6198a4aac1b4f64403c0297fdc66d55feb17b3a47961e32432008a761d761630abd62e074f1aeda6ad0a673e1e2f1ef46c79d906ae0a1b56a1cb49371c5044e8535c676535532d332e91b4270db1184a76120ede03ed5473adf06033298dbeef6a61dc38f79dcbab66a59547791ab5c867c0e0244d06d7eeb09d3b84e9bad5626f647e62bd3f0", @typed={0x5, 0x6b, 0x0, 0x0, @str='\x00'}, @typed={0xc, 0x105, 0x0, 0x0, @u64=0xfffffffffffffffd}, @typed={0xc1, 0x82, 0x0, 0x0, @binary="9da6d2cfd0d56814fd84a9b4e09bfefb7e71aa6b1338a2f4b0bcf5b7da34e38272c0fb396e8da9fe6bafa86982b217883dc0a99d6f8cc8d02d65ac33bf40d09bc28a90cbe72d692943aa8ec74169b9f54f99da2135cef1a3b948b4bb65653d617abfa325b7ece7ef3a395ab715205e14add6497c4d4ccd9950c466a2121433263671d206265ab7a4afb86bcfc88d39c8da199e34acdfd9f19a20d74af1508d9ef7e25cbdbcb597005c8fd2c532208d87b50f917122d979574773357159"}, @generic="ea8e54f0deb6d4df4fed8cacb160ad53bc0360eeda91dd56", @typed={0x8, 0xb8, 0x0, 0x0, @pid}]}]}, @nested={0x4, 0xef}, @nested={0x4}, @nested={0x4, 0x62}, @nested={0x4, 0x87}, @nested={0x4, 0x76}]}, @typed={0x8, 0x65, 0x0, 0x0, @pid}, @typed={0x8, 0x2b, 0x0, 0x0, @ipv4=@multicast2}, @generic="db89061eb9fbad2bf82b2a9418649da868c869b4397ab66e7f39863979f0bdf348067f0b5606ca8cdcb5b5080280648f010c688d62984d051b094fe343cb1fa22295cdcf66ca2b1cc8152ecb85f43f28d04aa546812ddb957608dc2f3b52e0e98745cc4aa9b20ab28754d0d7c05b9139d8ff8509fbe0d7d56d5710ea94b935782d99259af1a87cf89bcca8f33c9878df0b153753b7ccc2d3d65b5d8e92f7230c8b3b3d434ce7cd2f1e8dbf2cbfca3103a770996f13ed41af6f046964853f276bf8c18987b616eb8c1c752f52389cd54b7a7874ba1d9b4d2612518c8c3c9220ded49fd5ff56d71b5b5569f9421c6d", @typed={0x8, 0xb8, 0x0, 0x0, @u32=0xfffffff8}]}]}]}]}, 0x348}], 0x1, 0x0, 0x0, 0x84}, 0x300)

1.085237487s ago: executing program 1 (id=1841):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000811}, 0x0) (async)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newtaction={0x6c, 0x30, 0x871a15abc695fb3f, 0x70bd27, 0x1, {}, [{0x58, 0x1, [@m_nat={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x5c, 0x8001, 0x3, 0x5, 0xfffffff8}, @multicast1, @multicast1, 0xffffff00, 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}]}]}, 0x6c}}, 0x0) (async)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) (async)
r2 = open$dir(&(0x7f0000000080)='./file0\x00', 0x614002, 0x0) (async)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@delneigh={0x1b, 0x1d, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x96}}, 0x1c}}, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x30, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x46)
write$qrtrtun(r1, &(0x7f0000000340)="66bb0b760dc0f4ff", 0x8) (async)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r4, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], &(0x7f0000000240)=[0x2], 0x0, 0x9}}, 0x40)
syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @random="c4bc9cac9686", @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x2b, 0xff, @remote, @local, {[], {{0x2, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) (async)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.024867844s ago: executing program 1 (id=1843):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$FUSE_DEV_IOC_BACKING_OPEN(r0, 0x4010e501, &(0x7f0000000200)={r1})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYRES32=r0, @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES8=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r2, 0x0, 0x0, 0x2}, 0x20)
r3 = socket$packet(0x11, 0x3, 0x300)
getpid()
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'veth1_to_team\x00'})
setsockopt$packet_int(r3, 0x107, 0x10, &(0x7f0000000040)=0x9, 0x4)
r4 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0), 0x200000, 0x0)
setns(r4, 0x8000000)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280), 0x8400, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r4, 0x18, &(0x7f00000002c0)={0x200, r5, 0x3, {0x9, 0x2}, 0x10}, 0x1)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'gretap0\x00', <r6=>0x0})
sendto$packet(r3, &(0x7f0000000180)="0b0312002e0064000200475400f6a13bb1000000086086dd4803", 0x100a6, 0x0, &(0x7f0000000140)={0x11, 0x88a8, r6}, 0x14)
ioctl$sock_netdev_private(r3, 0x89f2, &(0x7f0000000340)="8bfeb6226f415b456d00cadfcce10d663b3faf35c1b7afe9c055db20afa7711b8197dc9cf44ffe74df977cb93f0660a6a43b6eb7bc752c04dd51f2a673ada7b8caa6e69b03832654fe0ec56ff464e7170a6719d59d27e09eabecff990672e0d3ba34b3aa454fb36bae99007652b050edf0d01693cf54aafd0280a8aa8fb3a4d725f2b83e8b7018d02698e9078d5817bfd803088013f94854129b290359bbf4505b078b4bee326501b3b2c4c23ce9e1da46b75428d6eb05bdd015c1b66cf419fbd4883a91079666a0071b8aefa3644d4a5e7363ef2e4acda6b5cb48c98ff57e729c2c0cbace5f0bf356f5d665")

944.729376ms ago: executing program 1 (id=1847):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)={0x18, 0x2e, 0x9, 0x70bd29, 0x0, {0x4}, [@nested={0x4, 0x19}]}, 0x18}, 0x1, 0x0, 0xffffffffffffff8c, 0x42820}, 0x20000084)

943.640235ms ago: executing program 1 (id=1849):
r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix_mp={0x5, 0x7, 0x35314258, 0x8, 0x7, [{0x7}, {0x1, 0xc}, {0x6, 0x80000001}, {0x6, 0x6}, {0xe, 0x6}, {0x6, 0x8}, {0x2, 0x2}, {0x8001, 0x2}], 0x4, 0xe, 0x6, 0x0, 0x4}})
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000035c0), r2)
sendmmsg$alg(r2, &(0x7f0000001c40)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x895}], 0x1, 0x24002894)
sendmsg$kcm(r2, &(0x7f0000001a00)={0x0, 0x0, &(0x7f0000001980)=[{&(0x7f0000000480)="00e88a79f76008c77f19ee3a8a898217187ebc0aa050c39779499861583963a54d23d4868e24a73cea3072be489fe4a80000000e00"/76, 0x4c}, {&(0x7f0000000500)="909dcb6b2ff63f57b07f672dd7a3ca8b94227a5c618d5a442da9c1e9a442c27321f5690de8053f3945c9ae744d1f385c3a6c65eaf1ca23a0da70e987b202e2de5dac48a8d6839fa5855b5aeb3473e85dd24db36da7695c187d21f4fa3f08324826ad75aa3f35876eab89b25ebc0c987d9fc7de06b8a712fc6643ffc6e1193a9c0653273f83a0832322f32ea812d1a5a97dc19fed1b38018a3bbca96d642f7b25fcaa872f01bb2d6756223aefe8dc84d30cb58461", 0xb4}], 0x2}, 0x4c000)
r3 = semget$private(0x0, 0x3, 0x0)
semop(r3, &(0x7f0000000000)=[{0x1, 0xff00, 0x3000}], 0x1)
semctl$GETNCNT(r3, 0x1, 0xe, 0x0)

855.270015ms ago: executing program 4 (id=1851):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="170000000700"], 0x50)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, &(0x7f0000000000)={0x4, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000001040)={0x3, {{0x2, 0x0, @multicast1}}}, 0x88)
getsockopt$inet_buf(r1, 0x0, 0x28, &(0x7f0000000000)=""/4090, &(0x7f0000001000)=0xffa)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = open(&(0x7f0000001100)='./file0\x00', 0x440, 0x1)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000001140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYRESDEC=r2, @ANYRESDEC=0x0])
read$FUSE(r4, &(0x7f00000021c0)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r4, &(0x7f0000000040)={0x50, 0xfffffffffffffffe, r5, {0x7, 0x1f, 0xdffffffa, 0x564ba438, 0x2, 0xfffd, 0x5, 0x2, 0x0, 0x0, 0x98, 0x95}}, 0x50)
syz_fuse_handle_req(r4, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r7, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r7, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r8, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000004780)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)='A', 0x1}], 0x1, &(0x7f0000000200)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r9], 0x18, 0x40001}}], 0x4000000000002b3, 0x0)
close(0x3)
syz_fuse_handle_req(r4, &(0x7f0000008340)="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", 0x2000, &(0x7f0000001080)={&(0x7f0000000240)={0x50, 0x0, 0xf992, {0x7, 0x2b, 0x4, 0x20000000, 0x23, 0x1, 0x8000, 0xd, 0x0, 0x0, 0x40, 0x7}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
dup3(r4, r6, 0x6700000000000000)
fcntl$setlease(r3, 0x400, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0f0000000400000008000000b263000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000902000000001000"/28], 0x48)
setxattr$trusted_overlay_nlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0, 0x1)
renameat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x1)

793.759088ms ago: executing program 4 (id=1853):
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x4d0})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x50)
sendto$packet(0xffffffffffffffff, &(0x7f0000000000)='[', 0x1, 0x0, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)

793.308657ms ago: executing program 4 (id=1854):
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x13, 0x2})
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES8=r0], 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)

725.314367ms ago: executing program 4 (id=1856):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41000, 0x9}, 0x94)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f00000000c0)={0x3, 0x1000}, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2000000}, 0x48)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
preadv2(r2, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0x1fee00}], 0x2, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41000, 0x9}, 0x94) (async)
socket$packet(0x11, 0x3, 0x300) (async)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f00000000c0)={0x3, 0x1000}, 0x4) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2000000}, 0x48) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0) (async)
preadv2(r2, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0x1fee00}], 0x2, 0x0, 0x0, 0x0) (async)

633.604567ms ago: executing program 4 (id=1859):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r0, &(0x7f0000001640)={0xfc, {"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", 0x1000}}, 0x1066)

495.816487ms ago: executing program 4 (id=1862):
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r1 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = openat$comedi(0xffffffffffffff9c, &(0x7f0000002580)='/dev/comedi4\x00', 0x100b02, 0x0)
ioctl$COMEDI_BUFCONFIG(r2, 0x8020640d, &(0x7f00000025c0)={0x1, 0x0, 0x2b31, 0x3})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000004c0))
ioctl$sock_bt_hidp_HIDPGETCONNINFO(r1, 0x800448d3, 0x0)
syz_open_dev$sg(&(0x7f0000000240), 0x1, 0x8040)
r3 = memfd_create(&(0x7f0000000080)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea\x7f\x8cZ7`_4t\xcda\x9b\x11\x11\x0e\xa1\xcf\x00'/51, 0x2)
ftruncate(r3, 0x1000006)
fcntl$addseals(r3, 0x409, 0x7)
r4 = ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000000)={r3, 0x0, 0x0, 0x1000000})
syz_usb_connect(0x5, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="120100004106cd40cd060f011bd5000000010902"], 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001780)={0x3c, 0x40, 0x1, 0x7fffc, 0x4, {0x1}, [@nested={0x4, 0x48}, @nested={0x18, 0x1, 0x0, 0x1, [@nested={0x14, 0x10, 0x0, 0x1, [@nested={0x10, 0x8, 0x0, 0x1, [@generic="a831985351cb3d4a57729361"]}]}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x3c}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000580)=0x1)
r6 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000380), 0x60180, 0x0)
ioctl$SNDCTL_SEQ_NRSYNTHS(r6, 0x8004510a, &(0x7f00000003c0))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000140)={0x1, &(0x7f0000000100)=[{0xe5f, 0x1, 0x27, 0x4}]})
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x0, &(0x7f0000000100)})
fsetxattr$trusted_overlay_upper(r3, &(0x7f00000000c0), &(0x7f0000000280)=ANY=[@ANYBLOB="00fb7d010b60e1882f5296b7000000000000d9a7d9146dd8975bc8638ea9e659f8df36182470857b529db2534a4c3ea74e9415d9b7dc3e52a7b1ce036522d3170a03856cf85324a59f5f6e43cb180f37f1b522353feb38145043ac504c942705121dd2b3869b20eee40efb759d668e9d8a5fdd048080f0ae78585eb3234a1d953038c01739a188de45dda3"], 0x7d, 0x1)
close_range(r7, 0xffffffffffffffff, 0x0)

325.611851ms ago: executing program 0 (id=1868):
r0 = io_uring_setup(0x7d93, &(0x7f0000000140)={0x0, 0xdf07, 0x40, 0x1, 0x91})
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000080)=@name={0x1e, 0x2, 0x2, {{0x42, 0x4000002}, 0x2}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000140)={0x42, 0xf5, 0x1}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000000)=@name={0x1e, 0x2, 0x2, {{0x42, 0x4}, 0x4}}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000100)={0x42, 0x2}, 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)
r5 = socket(0xea4a76934929e305, 0x6, 0x2)
write(r5, &(0x7f0000000140)="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", 0xfc)

235.688ms ago: executing program 0 (id=1869):
r0 = syz_open_dev$usbfs(&(0x7f0000000140), 0xd, 0x3501)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0xffffffff, 0x0, &(0x7f00000004c0)={0x4b5a9da54893e123, 0x3, 0x4, 0x2}, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1d, 0x0, 0x0, 0x0, 0x2000004, 0x0, 0x0, 0x1f00, 0x39, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x2, 0x200008, 0x3, 0x20000}, 0x10}, 0x94)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

235.275855ms ago: executing program 3 (id=1870):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r0, &(0x7f0000001640)={0xfc, {"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", 0x1000}}, 0x1066)

155.755143ms ago: executing program 0 (id=1871):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000600)=ANY=[@ANYBLOB="4400000010000104fcfffffffbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="431f07000b02000008000a00", @ANYRES32=r2, @ANYBLOB="08000500", @ANYRES32=r2, @ANYBLOB="140012800b0001006d6163736563"], 0x44}, 0x1, 0x0, 0x0, 0x2004d808}, 0x0)
signalfd4(r0, &(0x7f0000000000)={[0x401]}, 0x8, 0x80000)

85.565967ms ago: executing program 0 (id=1872):
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x4d0})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x50)
sendto$packet(0xffffffffffffffff, &(0x7f0000000000)='[', 0x1, 0x0, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)

85.290113ms ago: executing program 0 (id=1873):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000023c0)={0x348, 0x2e, 0x1, 0x0, 0x0, "", [@nested={0x4, 0x119}, @nested={0x334, 0x11, 0x0, 0x1, [@nested={0x330, 0xcf, 0x0, 0x1, [@nested={0x32b, 0x146, 0x0, 0x1, [@generic="f5ef56146c91147563276660e594de86923b901b9c31b5127825f1868b4db9469c2df41906c1f5ee49", @typed={0x8, 0x124, 0x0, 0x0, @u32=0x7}, @nested={0x1ed, 0x6c, 0x0, 0x1, [@generic="8b82111c59", @nested={0x1d0, 0x10f, 0x0, 0x1, [@nested={0x1c9, 0x11b, 0x0, 0x1, [@generic="44e4ba7c0b0ff113b095b181686c69e6901606a6035b241060d1ba9b116c80da82d5b88cc6363112ecfcfe146d3396e45fbbf0a08b22fd28c11b96cceeebb143edb758f38e41e6198a4aac1b4f64403c0297fdc66d55feb17b3a47961e32432008a761d761630abd62e074f1aeda6ad0a673e1e2f1ef46c79d906ae0a1b56a1cb49371c5044e8535c676535532d332e91b4270db1184a76120ede03ed5473adf06033298dbeef6a61dc38f79dcbab66a59547791ab5c867c0e0244d06d7eeb09d3b84e9bad5626f647e62bd3f0", @typed={0x5, 0x6b, 0x0, 0x0, @str='\x00'}, @typed={0xc, 0x105, 0x0, 0x0, @u64=0xfffffffffffffffd}, @typed={0xc1, 0x82, 0x0, 0x0, @binary="9da6d2cfd0d56814fd84a9b4e09bfefb7e71aa6b1338a2f4b0bcf5b7da34e38272c0fb396e8da9fe6bafa86982b217883dc0a99d6f8cc8d02d65ac33bf40d09bc28a90cbe72d692943aa8ec74169b9f54f99da2135cef1a3b948b4bb65653d617abfa325b7ece7ef3a395ab715205e14add6497c4d4ccd9950c466a2121433263671d206265ab7a4afb86bcfc88d39c8da199e34acdfd9f19a20d74af1508d9ef7e25cbdbcb597005c8fd2c532208d87b50f917122d979574773357159"}, @generic="ea8e54f0deb6d4df4fed8cacb160ad53bc0360eeda91dd56", @typed={0x8, 0xb8, 0x0, 0x0, @pid}]}]}, @nested={0x4, 0xef}, @typed={0x4, 0xfe}, @nested={0x4, 0x62}, @nested={0x4, 0x87}, @nested={0x4, 0x76}]}, @typed={0x8, 0x65, 0x0, 0x0, @pid}, @typed={0x8, 0x2b, 0x0, 0x0, @ipv4=@multicast2}, @generic="db89061eb9fbad2bf82b2a9418649da868c869b4397ab66e7f39863979f0bdf348067f0b5606ca8cdcb5b5080280648f010c688d62984d051b094fe343cb1fa22295cdcf66ca2b1cc8152ecb85f43f28d04aa546812ddb957608dc2f3b52e0e98745cc4aa9b20ab28754d0d7c05b9139d8ff8509fbe0d7d56d5710ea94b935782d99259af1a87cf89bcca8f33c9878df0b153753b7ccc2d3d65b5d8e92f7230c8b3b3d434ce7cd2f1e8dbf2cbfca3103a770996f13ed41af6f046964853f276bf8c18987b616eb8c1c752f52389cd54b7a7874ba1d9b4d2612518c8c3c9220ded49fd5ff56d71b5b5569f9421c6d", @typed={0x8, 0xb8, 0x0, 0x0, @u32=0xfffffff8}]}]}]}]}, 0x348}], 0x1, 0x0, 0x0, 0x84}, 0x300)

85.172727ms ago: executing program 1 (id=1874):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x280, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f00000000c0)='wG', 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000440)="3ef0879bf966b92b03000066b8ca9153c366baea67184c0f30f30f92c0baf80c66b83479a08266efbafc0cb87600ef0f395c660f15d0baf80c66b89c19228e66efbafc0c66b8ae3800000f23c00f21f8663501000f000f23f8ef6465ff469e66b91300000066b80055010066ba000000000f30b8f60f8ee0", 0x78}], 0x1, 0x11, 0x0, 0x5b)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100), 0x22000, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 1)

85.106919ms ago: executing program 3 (id=1875):
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x13, 0x2})
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYRES16=0x0, @ANYRES8=r0], 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)

999.684µs ago: executing program 3 (id=1876):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x280, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f00000000c0)='wG', 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xf)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x48000)
sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="05002ebd7000000000000800000008000300", @ANYRES32=r5], 0x2c}, 0x1, 0x0, 0x0, 0x44840}, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000440)="3ef0879bf966b92b03000066b8ca9153c366baea67184c0f30f30f92c0baf80c66b83479a08266efbafc0cb87600ef0f395c660f15d0baf80c66b89c19228e66efbafc0c66b8ae3800000f23c00f21f8663501000f000f23f8ef6465ff469e66b91300000066b80055010066ba000000000f30b8f60f8ee0", 0x78}], 0x1, 0x11, 0x0, 0x5b)
syz_kvm_setup_cpu$x86(r1, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000050000000100000001000013040000000200000088060000ff0f0000002e2e"], 0x0, 0x35, 0x0, 0x1}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000980)={0x18, 0xb, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x10000}, [@exit, @cb_func={0x18, 0x3, 0x4, 0x0, 0xffffffffffffffff}, @tail_call]}, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x530dbdb7c0738e9c, 0x2c, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x7ffffff, &(0x7f0000000400)={0x5, 0x2, 0x660, 0x5a9}, 0x10}, 0x94)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100), 0x22000, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

0s ago: executing program 0 (id=1877):
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$UHID_DESTROY(r0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x37}, 0x50)
socket$caif_stream(0x25, 0x1, 0x0)
syz_io_uring_setup(0x179a, &(0x7f00000000c0)={0x0, 0xfb29, 0x100, 0x2, 0x2f5}, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r5, r2, 0x25, 0x2, @void}, 0x10)
syz_emit_ethernet(0x4a, &(0x7f00000003c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x2f, 0x0, @remote, @local, {[], {{0x0, 0x22eb, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

kernel console output (not intermixed with test programs):

': attribute type 3 has an invalid length.
[  144.412143][ T9550] netlink: 'syz.4.1238': attribute type 10 has an invalid length.
[  144.413071][   T40] audit: type=1400 audit(1764576160.455:546): avc:  denied  { read } for  pid=9557 comm="syz.3.1242" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  144.473994][   T40] audit: type=1804 audit(1764576160.515:547): pid=9563 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1244" name="/newroot/34/bus/file0" dev="overlay" ino=223 res=1 errno=0
[  144.581867][ T9572] overlayfs: missing 'lowerdir'
[  144.591078][   T40] audit: type=1400 audit(1764576160.635:548): avc:  denied  { setopt } for  pid=9571 comm="syz.1.1248" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  144.606985][   T40] audit: type=1400 audit(1764576160.635:549): avc:  denied  { read } for  pid=9571 comm="syz.1.1248" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  144.627809][ T9572] No control pipe specified
[  144.655533][ T9574] FAULT_INJECTION: forcing a failure.
[  144.655533][ T9574] name failslab, interval 1, probability 0, space 0, times 0
[  144.660911][ T9574] CPU: 0 UID: 0 PID: 9574 Comm: syz.3.1249 Not tainted syzkaller #0 PREEMPT(full) 
[  144.660935][ T9574] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.660945][ T9574] Call Trace:
[  144.660951][ T9574]  <TASK>
[  144.660958][ T9574]  dump_stack_lvl+0x16c/0x1f0
[  144.660978][ T9574]  should_fail_ex+0x512/0x640
[  144.661000][ T9574]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  144.661030][ T9574]  should_failslab+0xc2/0x120
[  144.661050][ T9574]  kmem_cache_alloc_noprof+0x75/0x6e0
[  144.661075][ T9574]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  144.661101][ T9574]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  144.661132][ T9574]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  144.661156][ T9574]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  144.661189][ T9574]  mmu_topup_memory_caches+0x25/0x170
[  144.661209][ T9574]  kvm_mmu_load+0xd6/0x23c0
[  144.661236][ T9574]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  144.661258][ T9574]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  144.661284][ T9574]  ? __pfx_kvm_mmu_load+0x10/0x10
[  144.661311][ T9574]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  144.661337][ T9574]  ? kvm_check_and_inject_events+0x71c/0x1310
[  144.661376][ T9574]  vcpu_run+0x3779/0x54d0
[  144.661397][ T9574]  ? __lock_acquire+0xb8a/0x1c90
[  144.661420][ T9574]  ? __pfx_vcpu_run+0x10/0x10
[  144.661445][ T9574]  ? rcu_is_watching+0x12/0xc0
[  144.661470][ T9574]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1920
[  144.661488][ T9574]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1920
[  144.661513][ T9574]  kvm_vcpu_ioctl+0x5eb/0x1690
[  144.661540][ T9574]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  144.661565][ T9574]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  144.661589][ T9574]  ? do_vfs_ioctl+0x128/0x14f0
[  144.661614][ T9574]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  144.661639][ T9574]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  144.661669][ T9574]  ? hook_file_ioctl_common+0x145/0x410
[  144.661701][ T9574]  ? selinux_file_ioctl+0x180/0x270
[  144.661719][ T9574]  ? selinux_file_ioctl+0xb4/0x270
[  144.661739][ T9574]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  144.661764][ T9574]  __x64_sys_ioctl+0x18e/0x210
[  144.661791][ T9574]  do_syscall_64+0xcd/0xfa0
[  144.661809][ T9574]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.661826][ T9574] RIP: 0033:0x7ff60978f7c9
[  144.661840][ T9574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.661855][ T9574] RSP: 002b:00007ff60a604038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  144.661872][ T9574] RAX: ffffffffffffffda RBX: 00007ff6099e5fa0 RCX: 00007ff60978f7c9
[  144.661883][ T9574] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  144.661893][ T9574] RBP: 00007ff60a604090 R08: 0000000000000000 R09: 0000000000000000
[  144.661903][ T9574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  144.661913][ T9574] R13: 00007ff6099e6038 R14: 00007ff6099e5fa0 R15: 00007ffc20ffbf98
[  144.661938][ T9574]  </TASK>
[  145.071046][   T40] audit: type=1400 audit(1764576161.115:550): avc:  denied  { call } for  pid=9590 comm="syz.3.1257" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  145.137490][ T9607] loop6: detected capacity change from 0 to 2640
[  145.142914][ T9607] ldm_validate_partition_table(): Disk read failed.
[  145.145994][ T9607] Dev loop6: unable to read RDB block 0
[  145.148769][ T9607]  loop6: unable to read partition table
[  145.157555][ T9607] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  145.162209][ T9608] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1253'.
[  145.238831][ T9608] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9608 comm=syz.1.1253
[  145.502809][   T40] audit: type=1804 audit(1764576161.545:551): pid=9632 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1270" name="/newroot/40/bus/file0" dev="overlay" ino=262 res=1 errno=0
[  145.503562][ T9632] evm: overlay not supported
[  145.550318][ T9642] loop6: detected capacity change from 0 to 2640
[  145.552945][ T9642] ldm_validate_partition_table(): Disk read failed.
[  145.556138][ T9642] Dev loop6: unable to read RDB block 0
[  145.558376][ T9642]  loop6: unable to read partition table
[  145.561316][ T9642] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  145.624760][   T40] audit: type=1400 audit(1764576161.665:552): avc:  denied  { ioctl } for  pid=9648 comm="syz.3.1278" path="socket:[36065]" dev="sockfs" ino=36065 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  145.653996][ T9649] netlink: 'syz.3.1278': attribute type 10 has an invalid length.
[  145.660680][ T9649] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  145.687102][   T40] audit: type=1400 audit(1764576161.725:553): avc:  denied  { mount } for  pid=9648 comm="syz.3.1278" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  145.744754][ T9657] tmpfs: Unknown parameter '18446744073709551615'
[  145.826211][   T40] audit: type=1804 audit(1764576161.865:554): pid=9665 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.1284" name="/newroot/325/bus/file0" dev="overlay" ino=1834 res=1 errno=0
[  145.921140][ T9669] FAULT_INJECTION: forcing a failure.
[  145.921140][ T9669] name failslab, interval 1, probability 0, space 0, times 0
[  145.927126][ T9669] CPU: 0 UID: 0 PID: 9669 Comm: syz.0.1286 Not tainted syzkaller #0 PREEMPT(full) 
[  145.927155][ T9669] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  145.927165][ T9669] Call Trace:
[  145.927180][ T9669]  <TASK>
[  145.927187][ T9669]  dump_stack_lvl+0x16c/0x1f0
[  145.927222][ T9669]  should_fail_ex+0x512/0x640
[  145.927254][ T9669]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  145.927282][ T9669]  should_failslab+0xc2/0x120
[  145.927324][ T9669]  kmem_cache_alloc_noprof+0x75/0x6e0
[  145.927348][ T9669]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  145.927372][ T9669]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  145.927399][ T9669]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  145.927422][ T9669]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  145.927466][ T9669]  mmu_topup_memory_caches+0x25/0x170
[  145.927485][ T9669]  kvm_mmu_load+0xd6/0x23c0
[  145.927511][ T9669]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  145.927531][ T9669]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  145.927556][ T9669]  ? __pfx_kvm_mmu_load+0x10/0x10
[  145.927587][ T9669]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  145.927611][ T9669]  ? kvm_check_and_inject_events+0x71c/0x1310
[  145.927633][ T9669]  vcpu_run+0x3779/0x54d0
[  145.927653][ T9669]  ? __lock_acquire+0xb8a/0x1c90
[  145.927675][ T9669]  ? __pfx_vcpu_run+0x10/0x10
[  145.927698][ T9669]  ? rcu_is_watching+0x12/0xc0
[  145.927720][ T9669]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1920
[  145.927737][ T9669]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1920
[  145.927761][ T9669]  kvm_vcpu_ioctl+0x5eb/0x1690
[  145.927786][ T9669]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  145.927810][ T9669]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  145.927832][ T9669]  ? do_vfs_ioctl+0x128/0x14f0
[  145.927855][ T9669]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  145.927879][ T9669]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  145.927906][ T9669]  ? hook_file_ioctl_common+0x145/0x410
[  145.927935][ T9669]  ? selinux_file_ioctl+0x180/0x270
[  145.927952][ T9669]  ? selinux_file_ioctl+0xb4/0x270
[  145.927971][ T9669]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  145.927996][ T9669]  __x64_sys_ioctl+0x18e/0x210
[  145.928019][ T9669]  do_syscall_64+0xcd/0xfa0
[  145.928039][ T9669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.928055][ T9669] RIP: 0033:0x7f7fce98f7c9
[  145.928069][ T9669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.928084][ T9669] RSP: 002b:00007f7fcf75d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  145.928101][ T9669] RAX: ffffffffffffffda RBX: 00007f7fcebe5fa0 RCX: 00007f7fce98f7c9
[  145.928111][ T9669] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  145.928120][ T9669] RBP: 00007f7fcf75d090 R08: 0000000000000000 R09: 0000000000000000
[  145.928129][ T9669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  145.928138][ T9669] R13: 00007f7fcebe6038 R14: 00007f7fcebe5fa0 R15: 00007ffcd9b6b9b8
[  145.928162][ T9669]  </TASK>
[  146.417779][   T40] audit: type=1804 audit(1764576162.455:555): pid=9696 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.1296" name="/newroot/295/bus/file0" dev="overlay" ino=1633 res=1 errno=0
[  146.679929][ T6001] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  146.706056][ T6021] libceph: connect (1)[c::]:6789 error -101
[  146.708623][ T6021] libceph: mon0 (1)[c::]:6789 connect error
[  146.714307][ T6021] libceph: connect (1)[c::]:6789 error -101
[  146.716308][ T6021] libceph: mon0 (1)[c::]:6789 connect error
[  146.804448][ T9702] ceph: No mds server is up or the cluster is laggy
[  146.851377][ T6001] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  146.854933][ T6001] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  146.858352][ T6001] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  146.862853][ T6001] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  146.865893][ T6001] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.870413][ T6001] usb 6-1: config 0 descriptor??
[  147.064293][ T9718] loop6: detected capacity change from 0 to 2640
[  147.066992][ T9718] ldm_validate_partition_table(): Disk read failed.
[  147.069325][ T9718] Dev loop6: unable to read RDB block 0
[  147.071430][ T9718]  loop6: unable to read partition table
[  147.074022][ T9718] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  147.277963][ T6001] hid_parser_main: 33 callbacks suppressed
[  147.277977][ T6001] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  147.283342][ T6001] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  147.286689][ T6001] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  147.289510][ T6001] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  147.292275][ T6001] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  147.295465][ T6001] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  147.298551][ T6001] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  147.298880][ T9729] tmpfs: Bad value for 'mpol'
[  147.301929][ T6001] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  147.304673][ T9729] nftables ruleset with unbound set
[  147.306257][ T6001] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  147.311065][ T6001] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  147.318697][ T6001] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  147.532395][ T6001] usb 6-1: USB disconnect, device number 31
[  148.149529][ T9742] FAULT_INJECTION: forcing a failure.
[  148.149529][ T9742] name failslab, interval 1, probability 0, space 0, times 0
[  148.154928][ T9742] CPU: 0 UID: 0 PID: 9742 Comm: syz.1.1314 Not tainted syzkaller #0 PREEMPT(full) 
[  148.154953][ T9742] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  148.154964][ T9742] Call Trace:
[  148.154972][ T9742]  <TASK>
[  148.154981][ T9742]  dump_stack_lvl+0x16c/0x1f0
[  148.155002][ T9742]  should_fail_ex+0x512/0x640
[  148.155025][ T9742]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  148.155054][ T9742]  should_failslab+0xc2/0x120
[  148.155074][ T9742]  kmem_cache_alloc_noprof+0x75/0x6e0
[  148.155099][ T9742]  ? security_file_alloc+0x34/0x2b0
[  148.155138][ T9742]  ? security_file_alloc+0x34/0x2b0
[  148.155157][ T9742]  security_file_alloc+0x34/0x2b0
[  148.155176][ T9742]  init_file+0x93/0x4c0
[  148.155198][ T9742]  alloc_empty_backing_file+0x3f/0xd0
[  148.155224][ T9742]  backing_file_open+0x24/0xb0
[  148.155248][ T9742]  ovl_open_realfile+0x2d7/0x420
[  148.155272][ T9742]  ovl_open+0x1dd/0x330
[  148.155312][ T9742]  ? __pfx_ovl_open+0x10/0x10
[  148.155332][ T9742]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  148.155358][ T9742]  do_dentry_open+0x982/0x1530
[  148.155376][ T9742]  ? __pfx_ovl_open+0x10/0x10
[  148.155399][ T9742]  vfs_open+0x82/0x3f0
[  148.155425][ T9742]  path_openat+0x1de4/0x2cb0
[  148.155450][ T9742]  ? __pfx_path_openat+0x10/0x10
[  148.155476][ T9742]  do_filp_open+0x20b/0x470
[  148.155494][ T9742]  ? __pfx_do_filp_open+0x10/0x10
[  148.155530][ T9742]  ? _raw_spin_unlock+0x28/0x50
[  148.155561][ T9742]  ? alloc_fd+0x471/0x7d0
[  148.155586][ T9742]  do_sys_openat2+0x11b/0x1d0
[  148.155608][ T9742]  ? __pfx_do_sys_openat2+0x10/0x10
[  148.155631][ T9742]  ? __fget_files+0x20e/0x3c0
[  148.155653][ T9742]  __x64_sys_open+0x153/0x1e0
[  148.155677][ T9742]  ? __pfx___x64_sys_open+0x10/0x10
[  148.155703][ T9742]  ? rcu_is_watching+0x12/0xc0
[  148.155730][ T9742]  do_syscall_64+0xcd/0xfa0
[  148.155751][ T9742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.155769][ T9742] RIP: 0033:0x7fe8c4b8f7c9
[  148.155786][ T9742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.155802][ T9742] RSP: 002b:00007fe8c5a45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  148.155820][ T9742] RAX: ffffffffffffffda RBX: 00007fe8c4de5fa0 RCX: 00007fe8c4b8f7c9
[  148.155833][ T9742] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000200000000080
[  148.155843][ T9742] RBP: 00007fe8c5a45090 R08: 0000000000000000 R09: 0000000000000000
[  148.155853][ T9742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  148.155861][ T9742] R13: 00007fe8c4de6038 R14: 00007fe8c4de5fa0 R15: 00007ffcfd94c648
[  148.155885][ T9742]  </TASK>
[  148.287431][ T9746] loop6: detected capacity change from 0 to 2640
[  148.291636][ T5952] ldm_validate_partition_table(): Disk read failed.
[  148.293714][ T5952] Dev loop6: unable to read RDB block 0
[  148.295509][ T5952]  loop6: unable to read partition table
[  148.299040][ T9746] ldm_validate_partition_table(): Disk read failed.
[  148.301414][ T9746] Dev loop6: unable to read RDB block 0
[  148.303261][ T9746]  loop6: unable to read partition table
[  148.305338][ T9746] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  148.679885][ T6021] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  148.832010][ T6021] usb 5-1: config 0 has no interfaces?
[  148.834362][ T6021] usb 5-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[  148.838171][ T6021] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.845627][ T6021] usb 5-1: config 0 descriptor??
[  149.061925][ T6021] usb 5-1: USB disconnect, device number 27
[  149.152362][ T9785] FAULT_INJECTION: forcing a failure.
[  149.152362][ T9785] name failslab, interval 1, probability 0, space 0, times 0
[  149.156307][ T9785] CPU: 3 UID: 0 PID: 9785 Comm: syz.1.1332 Not tainted syzkaller #0 PREEMPT(full) 
[  149.156321][ T9785] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.156327][ T9785] Call Trace:
[  149.156333][ T9785]  <TASK>
[  149.156338][ T9785]  dump_stack_lvl+0x16c/0x1f0
[  149.156351][ T9785]  should_fail_ex+0x512/0x640
[  149.156365][ T9785]  ? fs_reclaim_acquire+0xae/0x150
[  149.156379][ T9785]  should_failslab+0xc2/0x120
[  149.156392][ T9785]  __kmalloc_noprof+0xdd/0x880
[  149.156407][ T9785]  ? tomoyo_encode2+0x100/0x3e0
[  149.156422][ T9785]  ? tomoyo_encode2+0x100/0x3e0
[  149.156433][ T9785]  tomoyo_encode2+0x100/0x3e0
[  149.156446][ T9785]  tomoyo_encode+0x29/0x50
[  149.156457][ T9785]  tomoyo_realpath_from_path+0x18f/0x6e0
[  149.156473][ T9785]  tomoyo_check_open_permission+0x2ab/0x3c0
[  149.156483][ T9785]  ? alloc_empty_backing_file+0x3f/0xd0
[  149.156498][ T9785]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  149.156508][ T9785]  ? do_dentry_open+0x982/0x1530
[  149.156518][ T9785]  ? do_filp_open+0x20b/0x470
[  149.156528][ T9785]  ? do_sys_openat2+0x11b/0x1d0
[  149.156552][ T9785]  ? do_raw_spin_lock+0x12c/0x2b0
[  149.156568][ T9785]  tomoyo_file_open+0x6b/0x90
[  149.156587][ T9785]  security_file_open+0x84/0x1e0
[  149.156600][ T9785]  do_dentry_open+0x596/0x1530
[  149.156611][ T9785]  ? find_held_lock+0x2b/0x80
[  149.156626][ T9785]  vfs_open+0x82/0x3f0
[  149.156638][ T9785]  ? do_raw_spin_unlock+0x172/0x230
[  149.156651][ T9785]  backing_file_open+0x62/0xb0
[  149.156665][ T9785]  ovl_open_realfile+0x2d7/0x420
[  149.156679][ T9785]  ovl_open+0x1dd/0x330
[  149.156689][ T9785]  ? __pfx_ovl_open+0x10/0x10
[  149.156701][ T9785]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  149.156716][ T9785]  do_dentry_open+0x982/0x1530
[  149.156726][ T9785]  ? __pfx_ovl_open+0x10/0x10
[  149.156740][ T9785]  vfs_open+0x82/0x3f0
[  149.156754][ T9785]  path_openat+0x1de4/0x2cb0
[  149.156769][ T9785]  ? __pfx_path_openat+0x10/0x10
[  149.156783][ T9785]  do_filp_open+0x20b/0x470
[  149.156794][ T9785]  ? __pfx_do_filp_open+0x10/0x10
[  149.156814][ T9785]  ? _raw_spin_unlock+0x28/0x50
[  149.156830][ T9785]  ? alloc_fd+0x471/0x7d0
[  149.156844][ T9785]  do_sys_openat2+0x11b/0x1d0
[  149.156857][ T9785]  ? __pfx_do_sys_openat2+0x10/0x10
[  149.156871][ T9785]  ? __fget_files+0x20e/0x3c0
[  149.156885][ T9785]  __x64_sys_open+0x153/0x1e0
[  149.156898][ T9785]  ? __pfx___x64_sys_open+0x10/0x10
[  149.156914][ T9785]  ? rcu_is_watching+0x12/0xc0
[  149.156929][ T9785]  do_syscall_64+0xcd/0xfa0
[  149.156941][ T9785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.156951][ T9785] RIP: 0033:0x7fe8c4b8f7c9
[  149.156960][ T9785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.156971][ T9785] RSP: 002b:00007fe8c5a45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  149.156981][ T9785] RAX: ffffffffffffffda RBX: 00007fe8c4de5fa0 RCX: 00007fe8c4b8f7c9
[  149.156988][ T9785] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000200000000080
[  149.156994][ T9785] RBP: 00007fe8c5a45090 R08: 0000000000000000 R09: 0000000000000000
[  149.157000][ T9785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  149.157005][ T9785] R13: 00007fe8c4de6038 R14: 00007fe8c4de5fa0 R15: 00007ffcfd94c648
[  149.157019][ T9785]  </TASK>
[  149.157033][ T9785] ERROR: Out of memory at tomoyo_realpath_from_path.
[  149.187720][ T9789] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1333'.
[  149.241037][ T9790] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1333'.
[  149.339988][ T9794] loop6: detected capacity change from 0 to 2640
[  149.344601][ T5952] buffer_io_error: 111 callbacks suppressed
[  149.344613][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.350525][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.353463][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.356195][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.358668][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.361786][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.364434][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.366889][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.369412][ T5952] ldm_validate_partition_table(): Disk read failed.
[  149.372353][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.375086][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.377638][ T5952] Dev loop6: unable to read RDB block 0
[  149.379577][ T5952]  loop6: unable to read partition table
[  149.384304][ T9794] ldm_validate_partition_table(): Disk read failed.
[  149.387103][ T9794] Dev loop6: unable to read RDB block 0
[  149.389086][ T9794]  loop6: unable to read partition table
[  149.391131][ T9794] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  149.869125][ T9819] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1346'.
[  149.873052][ T9819] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1346'.
[  149.912068][ T9822] FAULT_INJECTION: forcing a failure.
[  149.912068][ T9822] name failslab, interval 1, probability 0, space 0, times 0
[  149.917125][ T9822] CPU: 1 UID: 0 PID: 9822 Comm: syz.0.1347 Not tainted syzkaller #0 PREEMPT(full) 
[  149.917140][ T9822] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.917146][ T9822] Call Trace:
[  149.917152][ T9822]  <TASK>
[  149.917156][ T9822]  dump_stack_lvl+0x16c/0x1f0
[  149.917170][ T9822]  should_fail_ex+0x512/0x640
[  149.917183][ T9822]  ? fs_reclaim_acquire+0xae/0x150
[  149.917197][ T9822]  should_failslab+0xc2/0x120
[  149.917209][ T9822]  kmem_cache_alloc_noprof+0x75/0x6e0
[  149.917226][ T9822]  ? ima_inode_get+0x120/0x580
[  149.917240][ T9822]  ? ima_inode_get+0x120/0x580
[  149.917253][ T9822]  ima_inode_get+0x120/0x580
[  149.917270][ T9822]  process_measurement+0x585/0x23e0
[  149.917291][ T9822]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.917309][ T9822]  ? __pfx_process_measurement+0x10/0x10
[  149.917362][ T9822]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  149.917382][ T9822]  ? inode_to_bdi+0x9e/0x160
[  149.917402][ T9822]  ima_file_check+0xbc/0x100
[  149.917419][ T9822]  ? __pfx_ima_file_check+0x10/0x10
[  149.917442][ T9822]  security_file_post_open+0x8e/0x210
[  149.917461][ T9822]  path_openat+0x1404/0x2cb0
[  149.917488][ T9822]  ? __pfx_path_openat+0x10/0x10
[  149.917520][ T9822]  do_filp_open+0x20b/0x470
[  149.917537][ T9822]  ? __pfx_do_filp_open+0x10/0x10
[  149.917574][ T9822]  ? _raw_spin_unlock+0x28/0x50
[  149.917598][ T9822]  ? alloc_fd+0x471/0x7d0
[  149.917623][ T9822]  do_sys_openat2+0x11b/0x1d0
[  149.917646][ T9822]  ? __pfx_do_sys_openat2+0x10/0x10
[  149.917671][ T9822]  ? __fget_files+0x20e/0x3c0
[  149.917693][ T9822]  __x64_sys_open+0x153/0x1e0
[  149.917715][ T9822]  ? __pfx___x64_sys_open+0x10/0x10
[  149.917744][ T9822]  ? rcu_is_watching+0x12/0xc0
[  149.917769][ T9822]  do_syscall_64+0xcd/0xfa0
[  149.917788][ T9822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.917805][ T9822] RIP: 0033:0x7f7fce98f7c9
[  149.917819][ T9822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.917835][ T9822] RSP: 002b:00007f7fcf75d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  149.917854][ T9822] RAX: ffffffffffffffda RBX: 00007f7fcebe5fa0 RCX: 00007f7fce98f7c9
[  149.917866][ T9822] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000200000000080
[  149.917876][ T9822] RBP: 00007f7fcf75d090 R08: 0000000000000000 R09: 0000000000000000
[  149.917886][ T9822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  149.917896][ T9822] R13: 00007f7fcebe6038 R14: 00007f7fcebe5fa0 R15: 00007ffcd9b6b9b8
[  149.917921][ T9822]  </TASK>
[  150.051910][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  150.051926][   T40] audit: type=1400 audit(1764576166.095:560): avc:  denied  { lock } for  pid=9823 comm="syz.0.1348" path="/dev/fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  150.161913][   T40] audit: type=1400 audit(1764576166.205:561): avc:  denied  { create } for  pid=9827 comm="syz.1.1350" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  150.171463][   T40] audit: type=1400 audit(1764576166.205:562): avc:  denied  { read write } for  pid=9827 comm="syz.1.1350" name="file0" dev="tmpfs" ino=1796 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  150.181430][   T40] audit: type=1400 audit(1764576166.205:563): avc:  denied  { open } for  pid=9827 comm="syz.1.1350" path="/320/file0" dev="tmpfs" ino=1796 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  150.190910][   T40] audit: type=1400 audit(1764576166.225:564): avc:  denied  { unlink } for  pid=5934 comm="syz-executor" name="file0" dev="tmpfs" ino=1796 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  150.373580][ T9841] FAULT_INJECTION: forcing a failure.
[  150.373580][ T9841] name failslab, interval 1, probability 0, space 0, times 0
[  150.377946][ T9841] CPU: 1 UID: 0 PID: 9841 Comm: syz.1.1356 Not tainted syzkaller #0 PREEMPT(full) 
[  150.377961][ T9841] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.377967][ T9841] Call Trace:
[  150.377981][ T9841]  <TASK>
[  150.377985][ T9841]  dump_stack_lvl+0x16c/0x1f0
[  150.378014][ T9841]  should_fail_ex+0x512/0x640
[  150.378031][ T9841]  ? fs_reclaim_acquire+0xae/0x150
[  150.378045][ T9841]  should_failslab+0xc2/0x120
[  150.378058][ T9841]  kmem_cache_alloc_noprof+0x75/0x6e0
[  150.378074][ T9841]  ? ima_inode_get+0x120/0x580
[  150.378089][ T9841]  ? ima_inode_get+0x120/0x580
[  150.378099][ T9841]  ima_inode_get+0x120/0x580
[  150.378112][ T9841]  process_measurement+0x585/0x23e0
[  150.378126][ T9841]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.378139][ T9841]  ? __pfx_process_measurement+0x10/0x10
[  150.378168][ T9841]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  150.378181][ T9841]  ? inode_to_bdi+0x9e/0x160
[  150.378194][ T9841]  ima_file_check+0xbc/0x100
[  150.378206][ T9841]  ? __pfx_ima_file_check+0x10/0x10
[  150.378221][ T9841]  security_file_post_open+0x8e/0x210
[  150.378234][ T9841]  path_openat+0x1404/0x2cb0
[  150.378250][ T9841]  ? __pfx_path_openat+0x10/0x10
[  150.378269][ T9841]  do_filp_open+0x20b/0x470
[  150.378280][ T9841]  ? __pfx_do_filp_open+0x10/0x10
[  150.378300][ T9841]  ? _raw_spin_unlock+0x28/0x50
[  150.378314][ T9841]  ? alloc_fd+0x471/0x7d0
[  150.378329][ T9841]  do_sys_openat2+0x11b/0x1d0
[  150.378343][ T9841]  ? __pfx_do_sys_openat2+0x10/0x10
[  150.378357][ T9841]  ? __fget_files+0x20e/0x3c0
[  150.378370][ T9841]  __x64_sys_open+0x153/0x1e0
[  150.378384][ T9841]  ? __pfx___x64_sys_open+0x10/0x10
[  150.378400][ T9841]  ? rcu_is_watching+0x12/0xc0
[  150.378415][ T9841]  do_syscall_64+0xcd/0xfa0
[  150.378426][ T9841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.378436][ T9841] RIP: 0033:0x7fe8c4b8f7c9
[  150.378445][ T9841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.378455][ T9841] RSP: 002b:00007fe8c5a45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  150.378466][ T9841] RAX: ffffffffffffffda RBX: 00007fe8c4de5fa0 RCX: 00007fe8c4b8f7c9
[  150.378472][ T9841] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000200000000080
[  150.378478][ T9841] RBP: 00007fe8c5a45090 R08: 0000000000000000 R09: 0000000000000000
[  150.378484][ T9841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  150.378490][ T9841] R13: 00007fe8c4de6038 R14: 00007fe8c4de5fa0 R15: 00007ffcfd94c648
[  150.378504][ T9841]  </TASK>
[  150.567190][ T9845] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=11 sclass=netlink_route_socket pid=9845 comm=syz.1.1358
[  150.579602][ T9845] ip6gre1: entered promiscuous mode
[  150.582765][ T9845] ip6gre1: entered allmulticast mode
[  150.636536][   T40] audit: type=1400 audit(1764576166.675:565): avc:  denied  { map } for  pid=9848 comm="syz.3.1359" path="socket:[38141]" dev="sockfs" ino=38141 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  150.648295][   T40] audit: type=1400 audit(1764576166.675:566): avc:  denied  { read } for  pid=9848 comm="syz.3.1359" path="socket:[38141]" dev="sockfs" ino=38141 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  150.786262][ T9864] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1364'.
[  151.424187][ T9870] FAULT_INJECTION: forcing a failure.
[  151.424187][ T9870] name failslab, interval 1, probability 0, space 0, times 0
[  151.428005][ T9870] CPU: 3 UID: 0 PID: 9870 Comm: syz.1.1367 Not tainted syzkaller #0 PREEMPT(full) 
[  151.428020][ T9870] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  151.428027][ T9870] Call Trace:
[  151.428032][ T9870]  <TASK>
[  151.428036][ T9870]  dump_stack_lvl+0x16c/0x1f0
[  151.428050][ T9870]  should_fail_ex+0x512/0x640
[  151.428063][ T9870]  ? fs_reclaim_acquire+0xae/0x150
[  151.428076][ T9870]  should_failslab+0xc2/0x120
[  151.428090][ T9870]  __kmalloc_noprof+0xdd/0x880
[  151.428105][ T9870]  ? ima_alloc_init_template+0xb5/0x720
[  151.428121][ T9870]  ? ima_alloc_init_template+0xb5/0x720
[  151.428133][ T9870]  ima_alloc_init_template+0xb5/0x720
[  151.428147][ T9870]  ? __pfx_d_absolute_path+0x10/0x10
[  151.428164][ T9870]  ima_add_violation+0x123/0x3d0
[  151.428179][ T9870]  ? __pfx_ima_add_violation+0x10/0x10
[  151.428191][ T9870]  ? ima_d_path+0x12b/0x2a0
[  151.428204][ T9870]  ? __pfx_ima_d_path+0x10/0x10
[  151.428220][ T9870]  ? lockdep_init_map_type+0x5c/0x280
[  151.428231][ T9870]  ? ima_inode_get+0x39e/0x580
[  151.428244][ T9870]  process_measurement+0x1783/0x23e0
[  151.428260][ T9870]  ? __pfx_process_measurement+0x10/0x10
[  151.428294][ T9870]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  151.428306][ T9870]  ? inode_to_bdi+0x9e/0x160
[  151.428319][ T9870]  ima_file_check+0xbc/0x100
[  151.428330][ T9870]  ? __pfx_ima_file_check+0x10/0x10
[  151.428345][ T9870]  security_file_post_open+0x8e/0x210
[  151.428358][ T9870]  path_openat+0x1404/0x2cb0
[  151.428373][ T9870]  ? __pfx_path_openat+0x10/0x10
[  151.428388][ T9870]  do_filp_open+0x20b/0x470
[  151.428398][ T9870]  ? __pfx_do_filp_open+0x10/0x10
[  151.428418][ T9870]  ? _raw_spin_unlock+0x28/0x50
[  151.428433][ T9870]  ? alloc_fd+0x471/0x7d0
[  151.428447][ T9870]  do_sys_openat2+0x11b/0x1d0
[  151.428461][ T9870]  ? __pfx_do_sys_openat2+0x10/0x10
[  151.428476][ T9870]  ? __fget_files+0x20e/0x3c0
[  151.428489][ T9870]  __x64_sys_open+0x153/0x1e0
[  151.428502][ T9870]  ? __pfx___x64_sys_open+0x10/0x10
[  151.428518][ T9870]  ? rcu_is_watching+0x12/0xc0
[  151.428533][ T9870]  do_syscall_64+0xcd/0xfa0
[  151.428544][ T9870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.428555][ T9870] RIP: 0033:0x7fe8c4b8f7c9
[  151.428563][ T9870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.428574][ T9870] RSP: 002b:00007fe8c5a45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  151.428584][ T9870] RAX: ffffffffffffffda RBX: 00007fe8c4de5fa0 RCX: 00007fe8c4b8f7c9
[  151.428590][ T9870] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000200000000080
[  151.428596][ T9870] RBP: 00007fe8c5a45090 R08: 0000000000000000 R09: 0000000000000000
[  151.428602][ T9870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  151.428608][ T9870] R13: 00007fe8c4de6038 R14: 00007fe8c4de5fa0 R15: 00007ffcfd94c648
[  151.428621][ T9870]  </TASK>
[  151.428773][   T40] audit: type=1804 audit(1764576167.465:567): pid=9870 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.1367" name="/newroot/329/bus/file0" dev="overlay" ino=1863 res=0 errno=0
[  151.644956][ T9877] loop6: detected capacity change from 0 to 2640
[  151.648664][ T5952] ldm_validate_partition_table(): Disk read failed.
[  151.652155][ T5952] Dev loop6: unable to read RDB block 0
[  151.654866][ T5952]  loop6: unable to read partition table
[  151.658825][ T9877] ldm_validate_partition_table(): Disk read failed.
[  151.663157][ T9877] Dev loop6: unable to read RDB block 0
[  151.665875][ T9877]  loop6: unable to read partition table
[  151.668569][ T9877] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  151.843356][ T9888] hfsplus: unable to find HFS+ superblock
[  151.912814][ T9883] isofs_fill_super: bread failed, dev=sr0, iso_blknum=16, block=16
[  151.945284][ T9893] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  151.959918][   T40] audit: type=1400 audit(1764576167.995:568): avc:  denied  { read } for  pid=9892 comm="syz.0.1376" name="file1" dev="9p" ino=71827847 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  151.971339][   T40] audit: type=1400 audit(1764576168.005:569): avc:  denied  { write } for  pid=9892 comm="syz.0.1376" name="file1" dev="overlay" ino=71827847 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  152.937381][ T9936] loop6: detected capacity change from 0 to 2640
[  152.942001][ T9936] ldm_validate_partition_table(): Disk read failed.
[  152.944950][ T9936] Dev loop6: unable to read RDB block 0
[  152.947678][ T9936]  loop6: unable to read partition table
[  152.950417][ T9936] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  153.087069][ T5345] ldm_validate_partition_table(): Disk read failed.
[  153.090172][ T5345] Dev loop6: unable to read RDB block 0
[  153.092705][ T5345]  loop6: unable to read partition table
[  154.165477][ T9965] netlink: 'syz.3.1410': attribute type 2 has an invalid length.
[  154.167903][ T9965] netlink: 'syz.3.1410': attribute type 1 has an invalid length.
[  154.170703][ T9965] netlink: 'syz.3.1410': attribute type 1 has an invalid length.
[  154.253458][ T9968] SELinux:  policydb version 894130788 does not match my version range 15-35
[  154.257319][ T9968] SELinux: failed to load policy
[  154.286525][ T9970] netlink: 'syz.3.1412': attribute type 4 has an invalid length.
[  155.067738][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  155.067755][   T40] audit: type=1804 audit(1764576171.105:578): pid=9985 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.1418" name="/newroot/368/bus/file0" dev="overlay" ino=2101 res=1 errno=0
[  155.162144][ T9988] netlink: 'syz.0.1419': attribute type 2 has an invalid length.
[  155.166373][ T9988] netlink: 'syz.0.1419': attribute type 1 has an invalid length.
[  155.169628][ T9988] netlink: 'syz.0.1419': attribute type 1 has an invalid length.
[  155.244174][ T9997] FAULT_INJECTION: forcing a failure.
[  155.244174][ T9997] name failslab, interval 1, probability 0, space 0, times 0
[  155.248777][ T9997] CPU: 0 UID: 0 PID: 9997 Comm: syz.1.1423 Not tainted syzkaller #0 PREEMPT(full) 
[  155.248799][ T9997] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.248808][ T9997] Call Trace:
[  155.248814][ T9997]  <TASK>
[  155.248821][ T9997]  dump_stack_lvl+0x16c/0x1f0
[  155.248842][ T9997]  should_fail_ex+0x512/0x640
[  155.248862][ T9997]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  155.248890][ T9997]  should_failslab+0xc2/0x120
[  155.248911][ T9997]  kmem_cache_alloc_node_noprof+0x78/0x770
[  155.248936][ T9997]  ? __alloc_skb+0x2b2/0x380
[  155.248962][ T9997]  ? __alloc_skb+0x2b2/0x380
[  155.248980][ T9997]  __alloc_skb+0x2b2/0x380
[  155.248998][ T9997]  ? __pfx___alloc_skb+0x10/0x10
[  155.249017][ T9997]  ? rcu_is_watching+0x12/0xc0
[  155.249039][ T9997]  ? __kmalloc_large_noprof+0x70/0x70
[  155.249057][ T9997]  ? kmem_cache_alloc_noprof+0x2a1/0x6e0
[  155.249083][ T9997]  ? lockdep_init_map_type+0x5c/0x280
[  155.249104][ T9997]  audit_log_start+0x34e/0x950
[  155.249124][ T9997]  ? __pfx_audit_log_start+0x10/0x10
[  155.249148][ T9997]  ? integrity_audit_msg+0x41/0x60
[  155.249169][ T9997]  integrity_audit_message+0x10c/0x580
[  155.249188][ T9997]  ? __pfx_integrity_audit_message+0x10/0x10
[  155.249216][ T9997]  ? __pfx_ima_add_template_entry+0x10/0x10
[  155.249240][ T9997]  integrity_audit_msg+0x41/0x60
[  155.249258][ T9997]  ima_add_violation+0x1b4/0x3d0
[  155.249282][ T9997]  ? __pfx_ima_add_violation+0x10/0x10
[  155.249300][ T9997]  ? ima_d_path+0x12b/0x2a0
[  155.249320][ T9997]  ? __pfx_ima_d_path+0x10/0x10
[  155.249346][ T9997]  ? lockdep_init_map_type+0x5c/0x280
[  155.249362][ T9997]  ? ima_inode_get+0x39e/0x580
[  155.249383][ T9997]  process_measurement+0x1783/0x23e0
[  155.249410][ T9997]  ? __pfx_process_measurement+0x10/0x10
[  155.249463][ T9997]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  155.249484][ T9997]  ? inode_to_bdi+0x9e/0x160
[  155.249505][ T9997]  ima_file_check+0xbc/0x100
[  155.249523][ T9997]  ? __pfx_ima_file_check+0x10/0x10
[  155.249554][ T9997]  security_file_post_open+0x8e/0x210
[  155.249574][ T9997]  path_openat+0x1404/0x2cb0
[  155.249600][ T9997]  ? __pfx_path_openat+0x10/0x10
[  155.249623][ T9997]  do_filp_open+0x20b/0x470
[  155.249640][ T9997]  ? __pfx_do_filp_open+0x10/0x10
[  155.249671][ T9997]  ? _raw_spin_unlock+0x28/0x50
[  155.249693][ T9997]  ? alloc_fd+0x471/0x7d0
[  155.249716][ T9997]  do_sys_openat2+0x11b/0x1d0
[  155.249736][ T9997]  ? __pfx_do_sys_openat2+0x10/0x10
[  155.249775][ T9997]  ? __fget_files+0x20e/0x3c0
[  155.249800][ T9997]  __x64_sys_open+0x153/0x1e0
[  155.249820][ T9997]  ? __pfx___x64_sys_open+0x10/0x10
[  155.249847][ T9997]  ? rcu_is_watching+0x12/0xc0
[  155.249872][ T9997]  do_syscall_64+0xcd/0xfa0
[  155.249889][ T9997]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.249904][ T9997] RIP: 0033:0x7fe8c4b8f7c9
[  155.249917][ T9997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.249933][ T9997] RSP: 002b:00007fe8c5a45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  155.249949][ T9997] RAX: ffffffffffffffda RBX: 00007fe8c4de5fa0 RCX: 00007fe8c4b8f7c9
[  155.249958][ T9997] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000200000000080
[  155.249967][ T9997] RBP: 00007fe8c5a45090 R08: 0000000000000000 R09: 0000000000000000
[  155.249976][ T9997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  155.249985][ T9997] R13: 00007fe8c4de6038 R14: 00007fe8c4de5fa0 R15: 00007ffcfd94c648
[  155.250010][ T9997]  </TASK>
[  155.251167][ T9995] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1422'.
[  155.256903][ T9997] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[  155.380478][ T9997] audit: out of memory in audit_log_start
[  155.746738][T10026] syzkaller1: entered promiscuous mode
[  155.747456][T10025] loop6: detected capacity change from 0 to 2640
[  155.748717][T10026] syzkaller1: entered allmulticast mode
[  155.751554][T10025] buffer_io_error: 106 callbacks suppressed
[  155.751564][T10025] Buffer I/O error on dev loop6, logical block 0, async page read
[  155.751613][T10025] Buffer I/O error on dev loop6, logical block 0, async page read
[  155.751653][T10025] Buffer I/O error on dev loop6, logical block 0, async page read
[  155.751692][T10025] Buffer I/O error on dev loop6, logical block 0, async page read
[  155.751732][T10025] Buffer I/O error on dev loop6, logical block 0, async page read
[  155.751779][T10025] Buffer I/O error on dev loop6, logical block 0, async page read
[  155.751824][T10025] Buffer I/O error on dev loop6, logical block 0, async page read
[  155.751863][T10025] Buffer I/O error on dev loop6, logical block 0, async page read
[  155.751891][T10025] ldm_validate_partition_table(): Disk read failed.
[  155.751909][T10025] Buffer I/O error on dev loop6, logical block 0, async page read
[  155.751948][T10025] Buffer I/O error on dev loop6, logical block 0, async page read
[  155.752037][T10025] Dev loop6: unable to read RDB block 0
[  155.752200][T10025]  loop6: unable to read partition table
[  155.752288][T10025] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  155.793279][ T5345] ldm_validate_partition_table(): Disk read failed.
[  155.796357][ T5345] Dev loop6: unable to read RDB block 0
[  155.799675][ T5345]  loop6: unable to read partition table
[  156.171949][T10046] Cannot find del_set index 0 as target
[  156.237722][T10052] loop6: detected capacity change from 0 to 2640
[  156.249491][ T5952] ldm_validate_partition_table(): Disk read failed.
[  156.254133][ T5952] Dev loop6: unable to read RDB block 0
[  156.256749][ T5952]  loop6: unable to read partition table
[  156.269110][T10052] ldm_validate_partition_table(): Disk read failed.
[  156.272374][T10052] Dev loop6: unable to read RDB block 0
[  156.274917][T10052]  loop6: unable to read partition table
[  156.278037][T10052] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  156.345256][   T40] audit: type=1400 audit(1764576172.385:579): avc:  denied  { map } for  pid=10053 comm="syz.0.1447" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  156.345522][   T40] audit: type=1400 audit(1764576172.385:580): avc:  denied  { write execute } for  pid=10053 comm="syz.0.1447" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  156.538524][   T40] audit: type=1400 audit(1764576172.575:581): avc:  denied  { write } for  pid=10066 comm="syz.0.1453" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  156.615134][T10077] FAULT_INJECTION: forcing a failure.
[  156.615134][T10077] name failslab, interval 1, probability 0, space 0, times 0
[  156.615179][T10077] CPU: 0 UID: 0 PID: 10077 Comm: syz.4.1455 Not tainted syzkaller #0 PREEMPT(full) 
[  156.615192][T10077] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.615198][T10077] Call Trace:
[  156.615237][T10077]  <TASK>
[  156.615244][T10077]  dump_stack_lvl+0x16c/0x1f0
[  156.615263][T10077]  should_fail_ex+0x512/0x640
[  156.615276][T10077]  ? __kmalloc_cache_noprof+0x5f/0x780
[  156.615294][T10077]  should_failslab+0xc2/0x120
[  156.615308][T10077]  __kmalloc_cache_noprof+0x72/0x780
[  156.615323][T10077]  ? virtio_gpu_plane_duplicate_state+0x6c/0xc0
[  156.615339][T10077]  ? virtio_gpu_plane_duplicate_state+0x6c/0xc0
[  156.615350][T10077]  virtio_gpu_plane_duplicate_state+0x6c/0xc0
[  156.615362][T10077]  drm_atomic_get_plane_state+0x20e/0x590
[  156.615375][T10077]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  156.615391][T10077]  ? rcu_is_watching+0x12/0xc0
[  156.615405][T10077]  ? trace_contention_end+0xdd/0x130
[  156.615463][T10077]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  156.615504][T10077]  ? __mutex_lock+0x1c5/0x1060
[  156.615517][T10077]  ? __mutex_lock+0x1c5/0x1060
[  156.615536][T10077]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  156.615552][T10077]  drm_client_modeset_commit_locked+0x14d/0x580
[  156.615567][T10077]  drm_fb_helper_pan_display+0x32d/0xa40
[  156.615580][T10077]  ? clear_pending_if_disabled+0xa8/0x210
[  156.615598][T10077]  fb_pan_display+0x47c/0x7d0
[  156.615609][T10077]  ? __pfx_drm_fb_helper_pan_display+0x10/0x10
[  156.615622][T10077]  bit_update_start+0x49/0x1f0
[  156.615636][T10077]  fbcon_switch+0xbf8/0x1420
[  156.615652][T10077]  ? __pfx_fbcon_switch+0x10/0x10
[  156.615671][T10077]  ? __pfx_bit_cursor+0x10/0x10
[  156.615682][T10077]  ? fbcon_cursor+0x40c/0x5a0
[  156.615698][T10077]  csi_J+0x866/0xad0
[  156.615719][T10077]  do_con_write+0x41ec/0x8290
[  156.615737][T10077]  ? rcu_is_watching+0x12/0xc0
[  156.615751][T10077]  ? trace_contention_end+0xdd/0x130
[  156.615768][T10077]  ? __pfx___mutex_lock+0x10/0x10
[  156.615778][T10077]  ? __pfx_do_con_write+0x10/0x10
[  156.615794][T10077]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  156.615809][T10077]  ? con_write+0x93/0xb0
[  156.615839][T10077]  con_write+0x23/0xb0
[  156.615854][T10077]  n_tty_write+0x41e/0x11e0
[  156.615873][T10077]  ? __pfx_n_tty_write+0x10/0x10
[  156.615884][T10077]  ? trace_kmalloc+0x2b/0xd0
[  156.615895][T10077]  ? __pfx_woken_wake_function+0x10/0x10
[  156.615909][T10077]  ? kfree+0x252/0x6d0
[  156.615924][T10077]  ? __pfx_n_tty_write+0x10/0x10
[  156.615936][T10077]  file_tty_write.constprop.0+0x503/0x9b0
[  156.615956][T10077]  vfs_write+0x7d3/0x11d0
[  156.615968][T10077]  ? __pfx_tty_write+0x10/0x10
[  156.615984][T10077]  ? __pfx_vfs_write+0x10/0x10
[  156.615992][T10077]  ? find_held_lock+0x2b/0x80
[  156.616016][T10077]  ksys_write+0x12a/0x250
[  156.616025][T10077]  ? __pfx_ksys_write+0x10/0x10
[  156.616040][T10077]  do_syscall_64+0xcd/0xfa0
[  156.616052][T10077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.616063][T10077] RIP: 0033:0x7f48ed98f7c9
[  156.616072][T10077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.616083][T10077] RSP: 002b:00007f48ee8fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  156.616093][T10077] RAX: ffffffffffffffda RBX: 00007f48edbe5fa0 RCX: 00007f48ed98f7c9
[  156.616100][T10077] RDX: 0000000000001066 RSI: 0000200000001640 RDI: 0000000000000003
[  156.616106][T10077] RBP: 00007f48ee8fd090 R08: 0000000000000000 R09: 0000000000000000
[  156.616112][T10077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  156.616118][T10077] R13: 00007f48edbe6038 R14: 00007f48edbe5fa0 R15: 00007ffc9fd35ca8
[  156.616133][T10077]  </TASK>
[  156.781065][T10088] overlayfs: failed to resolve './file0': -2
[  156.880396][T10092] loop6: detected capacity change from 0 to 2640
[  156.881168][T10092] ldm_validate_partition_table(): Disk read failed.
[  156.881352][T10092] Dev loop6: unable to read RDB block 0
[  156.881532][T10092]  loop6: unable to read partition table
[  156.881618][T10092] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  156.920711][T10094] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1463'.
[  156.948299][T10096] FAULT_INJECTION: forcing a failure.
[  156.948299][T10096] name failslab, interval 1, probability 0, space 0, times 0
[  156.948361][T10096] CPU: 2 UID: 0 PID: 10096 Comm: syz.1.1464 Not tainted syzkaller #0 PREEMPT(full) 
[  156.948381][T10096] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.948392][T10096] Call Trace:
[  156.948398][T10096]  <TASK>
[  156.948405][T10096]  dump_stack_lvl+0x16c/0x1f0
[  156.948426][T10096]  should_fail_ex+0x512/0x640
[  156.948447][T10096]  ? __kmalloc_cache_noprof+0x5f/0x780
[  156.948483][T10096]  should_failslab+0xc2/0x120
[  156.948504][T10096]  __kmalloc_cache_noprof+0x72/0x780
[  156.948528][T10096]  ? irqentry_exit+0x3b/0x90
[  156.948545][T10096]  ? lockdep_hardirqs_on+0x7c/0x110
[  156.948560][T10096]  ? ima_calc_file_hash_tfm+0x234/0x350
[  156.948587][T10096]  ? ima_calc_file_hash_tfm+0x234/0x350
[  156.948608][T10096]  ima_calc_file_hash_tfm+0x234/0x350
[  156.948631][T10096]  ? __pfx_ima_calc_file_hash_tfm+0x10/0x10
[  156.948683][T10096]  ? find_held_lock+0x2b/0x80
[  156.948707][T10096]  ? simple_xattr_get+0x179/0x1d0
[  156.948729][T10096]  ? ima_alloc_tfm+0x21a/0x2e0
[  156.948753][T10096]  ima_calc_file_hash+0x1ba/0x490
[  156.948779][T10096]  ima_collect_measurement+0x8a6/0xa50
[  156.948809][T10096]  ? __pfx_ima_collect_measurement+0x10/0x10
[  156.948849][T10096]  ? __pfx_ovl_other_xattr_get+0x10/0x10
[  156.948870][T10096]  ? xattr_resolve_name+0x27b/0x3f0
[  156.948892][T10096]  ? vfs_getxattr_alloc+0xec/0x350
[  156.948915][T10096]  ? ima_get_hash_algo+0x27c/0x400
[  156.948933][T10096]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  156.948957][T10096]  ? process_measurement+0x11fa/0x23e0
[  156.948976][T10096]  process_measurement+0x11fa/0x23e0
[  156.949005][T10096]  ? __pfx_process_measurement+0x10/0x10
[  156.949062][T10096]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  156.949083][T10096]  ? inode_to_bdi+0x9e/0x160
[  156.949105][T10096]  ima_file_check+0xbc/0x100
[  156.949125][T10096]  ? __pfx_ima_file_check+0x10/0x10
[  156.949152][T10096]  security_file_post_open+0x8e/0x210
[  156.949175][T10096]  path_openat+0x1404/0x2cb0
[  156.949203][T10096]  ? __pfx_path_openat+0x10/0x10
[  156.949228][T10096]  do_filp_open+0x20b/0x470
[  156.949247][T10096]  ? __pfx_do_filp_open+0x10/0x10
[  156.949284][T10096]  ? _raw_spin_unlock+0x28/0x50
[  156.949309][T10096]  ? alloc_fd+0x471/0x7d0
[  156.949352][T10096]  do_sys_openat2+0x11b/0x1d0
[  156.949378][T10096]  ? __pfx_do_sys_openat2+0x10/0x10
[  156.949403][T10096]  ? __fget_files+0x20e/0x3c0
[  156.949427][T10096]  __x64_sys_open+0x153/0x1e0
[  156.949450][T10096]  ? __pfx___x64_sys_open+0x10/0x10
[  156.949487][T10096]  ? rcu_is_watching+0x12/0xc0
[  156.949513][T10096]  do_syscall_64+0xcd/0xfa0
[  156.949532][T10096]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.949550][T10096] RIP: 0033:0x7fe8c4b8f7c9
[  156.949564][T10096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.949581][T10096] RSP: 002b:00007fe8c5a45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  156.949598][T10096] RAX: ffffffffffffffda RBX: 00007fe8c4de5fa0 RCX: 00007fe8c4b8f7c9
[  156.949609][T10096] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000200000000080
[  156.949619][T10096] RBP: 00007fe8c5a45090 R08: 0000000000000000 R09: 0000000000000000
[  156.949629][T10096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  156.949639][T10096] R13: 00007fe8c4de6038 R14: 00007fe8c4de5fa0 R15: 00007ffcfd94c648
[  156.949665][T10096]  </TASK>
[  156.950800][   T40] audit: type=1804 audit(1764576172.985:582): pid=10096 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.1464" name="/newroot/346/bus/file0" dev="overlay" ino=1970 res=1 errno=0
[  156.953733][   T40] audit: type=1800 audit(1764576172.995:583): pid=10096 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.1.1464" name="file0" dev="overlay" ino=1970 res=0 errno=0
[  157.203017][   T40] audit: type=1400 audit(1764576173.245:584): avc:  denied  { write } for  pid=10111 comm="syz.0.1471" name="mouse1" dev="devtmpfs" ino=1297 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  157.250035][ T6021] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[  157.255445][   T40] audit: type=1400 audit(1764576173.295:585): avc:  denied  { getopt } for  pid=10111 comm="syz.0.1471" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  157.255653][T10116] netlink: zone id is out of range
[  157.268815][T10116] nilfs2: Unknown parameter 'barrierÿÿÿÿ'
[  157.312593][T10120] loop6: detected capacity change from 0 to 2640
[  157.316595][ T5952] ldm_validate_partition_table(): Disk read failed.
[  157.319012][ T5952] Dev loop6: unable to read RDB block 0
[  157.321468][ T5952]  loop6: unable to read partition table
[  157.325760][T10120] ldm_validate_partition_table(): Disk read failed.
[  157.328934][T10120] Dev loop6: unable to read RDB block 0
[  157.332437][T10120]  loop6: unable to read partition table
[  157.338606][T10120] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  157.362148][T10122] comedi comedi0: comedi_config --init_data is deprecated
[  157.365365][T10122] comedi comedi0: dt2814: I/O port conflict (0xff,2)
[  157.401460][ T6021] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  157.406013][ T6021] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  157.411071][ T6021] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  157.416131][ T6021] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  157.420212][ T6021] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.433551][ T6021] usb 6-1: config 0 descriptor??
[  157.700474][T10145] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=60 sclass=netlink_route_socket pid=10145 comm=syz.3.1483
[  157.844503][T10102] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  157.847392][T10102] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  157.854344][ T6021] hid_parser_main: 28 callbacks suppressed
[  157.854362][ T6021] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  157.860790][ T6021] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  157.863937][ T6021] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  157.867524][ T6021] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  157.871480][ T6021] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  157.874574][ T6021] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  157.877706][ T6021] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  157.881255][ T6021] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  157.884077][ T6021] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  157.887079][ T6021] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  157.898636][ T6021] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  158.110950][T10102] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  158.114845][T10102] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  158.121561][ T5834] usb 6-1: USB disconnect, device number 32
[  158.361253][T10164] FAULT_INJECTION: forcing a failure.
[  158.361253][T10164] name failslab, interval 1, probability 0, space 0, times 0
[  158.361279][T10164] CPU: 3 UID: 0 PID: 10164 Comm: syz.0.1491 Not tainted syzkaller #0 PREEMPT(full) 
[  158.361294][T10164] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  158.361302][T10164] Call Trace:
[  158.361307][T10164]  <TASK>
[  158.361312][T10164]  dump_stack_lvl+0x16c/0x1f0
[  158.361329][T10164]  should_fail_ex+0x512/0x640
[  158.361346][T10164]  ? __kmalloc_cache_noprof+0x5f/0x780
[  158.361368][T10164]  should_failslab+0xc2/0x120
[  158.361384][T10164]  __kmalloc_cache_noprof+0x72/0x780
[  158.361402][T10164]  ? drm_atomic_helper_check_planes+0x54e/0x900
[  158.361424][T10164]  ? drm_self_refresh_helper_alter_state+0x2e1/0x520
[  158.361442][T10164]  ? drm_atomic_helper_setup_commit+0x63a/0x15d0
[  158.361461][T10164]  ? drm_atomic_helper_setup_commit+0x63a/0x15d0
[  158.361474][T10164]  ? __pfx___drm_dev_dbg+0x10/0x10
[  158.361492][T10164]  drm_atomic_helper_setup_commit+0x63a/0x15d0
[  158.361516][T10164]  drm_atomic_helper_commit+0xa9/0x380
[  158.361532][T10164]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  158.361547][T10164]  drm_atomic_commit+0x234/0x300
[  158.361563][T10164]  ? __pfx_drm_atomic_commit+0x10/0x10
[  158.361577][T10164]  ? __pfx___drm_printfn_info+0x10/0x10
[  158.361599][T10164]  ? drm_client_rotation+0x4da/0x6a0
[  158.361618][T10164]  drm_client_modeset_commit_atomic+0x69d/0x7e0
[  158.361641][T10164]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  158.361657][T10164]  ? __mutex_lock+0x1c5/0x1060
[  158.361670][T10164]  ? __mutex_lock+0x1c5/0x1060
[  158.361695][T10164]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  158.361716][T10164]  drm_client_modeset_commit_locked+0x14d/0x580
[  158.361735][T10164]  drm_fb_helper_pan_display+0x32d/0xa40
[  158.361751][T10164]  ? clear_pending_if_disabled+0xa8/0x210
[  158.361774][T10164]  fb_pan_display+0x47c/0x7d0
[  158.361789][T10164]  ? __pfx_drm_fb_helper_pan_display+0x10/0x10
[  158.361805][T10164]  bit_update_start+0x49/0x1f0
[  158.361823][T10164]  fbcon_switch+0xbf8/0x1420
[  158.361843][T10164]  ? __pfx_fbcon_switch+0x10/0x10
[  158.361869][T10164]  ? __pfx_bit_cursor+0x10/0x10
[  158.361884][T10164]  ? fbcon_cursor+0x40c/0x5a0
[  158.361904][T10164]  csi_J+0x866/0xad0
[  158.361926][T10164]  do_con_write+0x41ec/0x8290
[  158.361947][T10164]  ? rcu_is_watching+0x12/0xc0
[  158.361965][T10164]  ? trace_contention_end+0xdd/0x130
[  158.361987][T10164]  ? __pfx___mutex_lock+0x10/0x10
[  158.362001][T10164]  ? __pfx_do_con_write+0x10/0x10
[  158.362020][T10164]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  158.362039][T10164]  ? con_write+0x93/0xb0
[  158.362060][T10164]  con_write+0x23/0xb0
[  158.362079][T10164]  n_tty_write+0x41e/0x11e0
[  158.362104][T10164]  ? __pfx_n_tty_write+0x10/0x10
[  158.362118][T10164]  ? trace_kmalloc+0x2b/0xd0
[  158.362133][T10164]  ? __pfx_woken_wake_function+0x10/0x10
[  158.362150][T10164]  ? kfree+0x252/0x6d0
[  158.362170][T10164]  ? __pfx_n_tty_write+0x10/0x10
[  158.362184][T10164]  file_tty_write.constprop.0+0x503/0x9b0
[  158.362211][T10164]  vfs_write+0x7d3/0x11d0
[  158.362225][T10164]  ? __pfx_tty_write+0x10/0x10
[  158.362252][T10164]  ? __pfx_vfs_write+0x10/0x10
[  158.362263][T10164]  ? find_held_lock+0x2b/0x80
[  158.362295][T10164]  ksys_write+0x12a/0x250
[  158.362307][T10164]  ? __pfx_ksys_write+0x10/0x10
[  158.362327][T10164]  do_syscall_64+0xcd/0xfa0
[  158.362342][T10164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.362355][T10164] RIP: 0033:0x7f7fce98f7c9
[  158.362367][T10164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.362380][T10164] RSP: 002b:00007f7fcf75d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  158.362393][T10164] RAX: ffffffffffffffda RBX: 00007f7fcebe5fa0 RCX: 00007f7fce98f7c9
[  158.362402][T10164] RDX: 0000000000001066 RSI: 0000200000001640 RDI: 0000000000000003
[  158.362410][T10164] RBP: 00007f7fcf75d090 R08: 0000000000000000 R09: 0000000000000000
[  158.362418][T10164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  158.362425][T10164] R13: 00007f7fcebe6038 R14: 00007f7fcebe5fa0 R15: 00007ffcd9b6b9b8
[  158.362446][T10164]  </TASK>
[  159.029871][ T5834] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[  159.102166][T10189] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  159.102177][T10188] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  159.166014][T10191] FAULT_INJECTION: forcing a failure.
[  159.166014][T10191] name failslab, interval 1, probability 0, space 0, times 0
[  159.166046][T10191] CPU: 0 UID: 0 PID: 10191 Comm: syz.0.1503 Not tainted syzkaller #0 PREEMPT(full) 
[  159.166066][T10191] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  159.166077][T10191] Call Trace:
[  159.166083][T10191]  <TASK>
[  159.166090][T10191]  dump_stack_lvl+0x16c/0x1f0
[  159.166112][T10191]  should_fail_ex+0x512/0x640
[  159.166133][T10191]  ? __kmalloc_cache_noprof+0x5f/0x780
[  159.166162][T10191]  should_failslab+0xc2/0x120
[  159.166184][T10191]  __kmalloc_cache_noprof+0x72/0x780
[  159.166210][T10191]  ? drm_atomic_helper_setup_commit+0x8d7/0x15d0
[  159.166244][T10191]  ? drm_atomic_helper_setup_commit+0x8d7/0x15d0
[  159.166262][T10191]  ? _raw_spin_unlock+0x28/0x50
[  159.166288][T10191]  drm_atomic_helper_setup_commit+0x8d7/0x15d0
[  159.166322][T10191]  drm_atomic_helper_commit+0xa9/0x380
[  159.166344][T10191]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  159.166365][T10191]  drm_atomic_commit+0x234/0x300
[  159.166386][T10191]  ? __pfx_drm_atomic_commit+0x10/0x10
[  159.166405][T10191]  ? __pfx___drm_printfn_info+0x10/0x10
[  159.166434][T10191]  ? drm_client_rotation+0x4da/0x6a0
[  159.166461][T10191]  drm_client_modeset_commit_atomic+0x69d/0x7e0
[  159.166493][T10191]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  159.166514][T10191]  ? __mutex_lock+0x1c5/0x1060
[  159.166530][T10191]  ? __mutex_lock+0x1c5/0x1060
[  159.166567][T10191]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  159.166598][T10191]  drm_client_modeset_commit_locked+0x14d/0x580
[  159.166625][T10191]  drm_fb_helper_pan_display+0x32d/0xa40
[  159.166647][T10191]  ? clear_pending_if_disabled+0xa8/0x210
[  159.166679][T10191]  fb_pan_display+0x47c/0x7d0
[  159.166697][T10191]  ? __pfx_drm_fb_helper_pan_display+0x10/0x10
[  159.166720][T10191]  bit_update_start+0x49/0x1f0
[  159.166744][T10191]  fbcon_switch+0xbf8/0x1420
[  159.166774][T10191]  ? __pfx_fbcon_switch+0x10/0x10
[  159.166812][T10191]  ? __pfx_bit_cursor+0x10/0x10
[  159.166832][T10191]  ? fbcon_cursor+0x40c/0x5a0
[  159.166860][T10191]  csi_J+0x866/0xad0
[  159.166891][T10191]  do_con_write+0x41ec/0x8290
[  159.166920][T10191]  ? rcu_is_watching+0x12/0xc0
[  159.166943][T10191]  ? trace_contention_end+0xdd/0x130
[  159.166975][T10191]  ? __pfx___mutex_lock+0x10/0x10
[  159.166994][T10191]  ? __pfx_do_con_write+0x10/0x10
[  159.167020][T10191]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  159.167047][T10191]  ? con_write+0x93/0xb0
[  159.167076][T10191]  con_write+0x23/0xb0
[  159.167106][T10191]  n_tty_write+0x41e/0x11e0
[  159.167138][T10191]  ? __pfx_n_tty_write+0x10/0x10
[  159.167157][T10191]  ? trace_kmalloc+0x2b/0xd0
[  159.167201][T10191]  ? __pfx_woken_wake_function+0x10/0x10
[  159.167225][T10191]  ? kfree+0x252/0x6d0
[  159.167260][T10191]  ? __pfx_n_tty_write+0x10/0x10
[  159.167281][T10191]  file_tty_write.constprop.0+0x503/0x9b0
[  159.167311][T10191]  vfs_write+0x7d3/0x11d0
[  159.167331][T10191]  ? __pfx_tty_write+0x10/0x10
[  159.167353][T10191]  ? __pfx_vfs_write+0x10/0x10
[  159.167365][T10191]  ? find_held_lock+0x2b/0x80
[  159.167403][T10191]  ksys_write+0x12a/0x250
[  159.167418][T10191]  ? __pfx_ksys_write+0x10/0x10
[  159.167440][T10191]  do_syscall_64+0xcd/0xfa0
[  159.167457][T10191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.167473][T10191] RIP: 0033:0x7f7fce98f7c9
[  159.167487][T10191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.167504][T10191] RSP: 002b:00007f7fcf75d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  159.167520][T10191] RAX: ffffffffffffffda RBX: 00007f7fcebe5fa0 RCX: 00007f7fce98f7c9
[  159.167530][T10191] RDX: 0000000000001066 RSI: 0000200000001640 RDI: 0000000000000003
[  159.167539][T10191] RBP: 00007f7fcf75d090 R08: 0000000000000000 R09: 0000000000000000
[  159.167547][T10191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  159.167553][T10191] R13: 00007f7fcebe6038 R14: 00007f7fcebe5fa0 R15: 00007ffcd9b6b9b8
[  159.167568][T10191]  </TASK>
[  159.190303][ T5834] usb 6-1: Using ep0 maxpacket: 8
[  159.192034][ T5834] usb 6-1: config 0 interface 0 has no altsetting 0
[  159.192056][ T5834] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  159.192067][ T5834] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.194102][ T5834] usb 6-1: config 0 descriptor??
[  159.603388][ T5834] mcp2221 0003:04D8:00DD.0015: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.1-1/input0
[  159.821213][T10198] overlay: ./file1 is not a directory
[  159.930910][ T6003] usb 6-1: USB disconnect, device number 33
[  160.389086][T10238] sp0: Synchronizing with TNC
[  160.400432][T10241] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1524'.
[  160.403954][T10241] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1524'.
[  160.406773][T10241] netlink: 'syz.0.1524': attribute type 11 has an invalid length.
[  160.409145][T10241] netlink: 'syz.0.1524': attribute type 7 has an invalid length.
[  160.419281][   T40] kauditd_printk_skb: 13 callbacks suppressed
[  160.419295][   T40] audit: type=1804 audit(1764576176.455:599): pid=10241 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.1524" name="/newroot/418/bus/file0" dev="overlay" ino=2414 res=1 errno=0
[  160.707473][   T40] audit: type=1804 audit(1764576176.745:600): pid=10264 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.1534" name="/newroot/365/bus/file0" dev="overlay" ino=2079 res=1 errno=0
[  160.750001][ T6021] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  160.900880][   T40] audit: type=1400 audit(1764576176.945:601): avc:  denied  { read } for  pid=10277 comm="syz.4.1541" path="socket:[38776]" dev="sockfs" ino=38776 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  160.901405][ T6021] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  160.913219][ T6021] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  160.917112][ T6021] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  160.922401][ T6021] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  160.926065][ T6021] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.931675][ T6021] usb 5-1: config 0 descriptor??
[  161.063800][T10286] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1541'.
[  161.135981][T10249] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  161.138776][T10249] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  161.150927][T10249] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  161.154895][T10249] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  161.159038][T10249] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  161.162888][T10249] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  161.166826][T10249] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  161.171767][T10249] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  161.175466][T10249] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  161.180228][T10249] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  161.392970][ T6021] usbhid 5-1:0.0: can't add hid device: -32
[  161.394948][ T6021] usbhid 5-1:0.0: probe with driver usbhid failed with error -32
[  161.466806][T10315] FAULT_INJECTION: forcing a failure.
[  161.466806][T10315] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  161.471410][T10315] CPU: 0 UID: 0 PID: 10315 Comm: syz.1.1555 Not tainted syzkaller #0 PREEMPT(full) 
[  161.471432][T10315] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.471443][T10315] Call Trace:
[  161.471466][T10315]  <TASK>
[  161.471472][T10315]  dump_stack_lvl+0x16c/0x1f0
[  161.471506][T10315]  should_fail_ex+0x512/0x640
[  161.471536][T10315]  _copy_from_user+0x2e/0xd0
[  161.471558][T10315]  memdup_user+0x6b/0xe0
[  161.471575][T10315]  strndup_user+0x78/0xe0
[  161.471591][T10315]  bpf_uprobe_multi_link_attach+0x3b2/0x12e0
[  161.471616][T10315]  ? find_held_lock+0x2b/0x80
[  161.471642][T10315]  ? __pfx_bpf_uprobe_multi_link_attach+0x10/0x10
[  161.471663][T10315]  ? __fget_files+0x20e/0x3c0
[  161.471684][T10315]  ? fput+0x9b/0xd0
[  161.471703][T10315]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  161.471729][T10315]  __sys_bpf+0x3862/0x4980
[  161.471756][T10315]  ? __pfx___sys_bpf+0x10/0x10
[  161.471779][T10315]  ? find_held_lock+0x2b/0x80
[  161.471803][T10315]  ? find_held_lock+0x2b/0x80
[  161.471847][T10315]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  161.471877][T10315]  ? fput+0x9b/0xd0
[  161.471896][T10315]  ? ksys_write+0x1ac/0x250
[  161.471911][T10315]  ? __pfx_ksys_write+0x10/0x10
[  161.471930][T10315]  __x64_sys_bpf+0x78/0xc0
[  161.471943][T10315]  ? lockdep_hardirqs_on+0x7c/0x110
[  161.471958][T10315]  do_syscall_64+0xcd/0xfa0
[  161.471976][T10315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.471996][T10315] RIP: 0033:0x7fe8c4b8f7c9
[  161.472009][T10315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.472026][T10315] RSP: 002b:00007fe8c5a45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  161.472042][T10315] RAX: ffffffffffffffda RBX: 00007fe8c4de5fa0 RCX: 00007fe8c4b8f7c9
[  161.472052][T10315] RDX: 0000000000000040 RSI: 00002000000005c0 RDI: 000000000000001c
[  161.472062][T10315] RBP: 00007fe8c5a45090 R08: 0000000000000000 R09: 0000000000000000
[  161.472072][T10315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  161.472081][T10315] R13: 00007fe8c4de6038 R14: 00007fe8c4de5fa0 R15: 00007ffcfd94c648
[  161.472104][T10315]  </TASK>
[  161.540255][T10313] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  161.599044][   T40] audit: type=1400 audit(1764576177.635:602): avc:  denied  { rename } for  pid=10320 comm="syz.3.1559" name="file0" dev="9p" ino=71827997 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  161.614713][   T40] audit: type=1400 audit(1764576177.655:603): avc:  denied  { getattr } for  pid=10320 comm="syz.3.1559" name="/" dev="9p" ino=71827841 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  161.615143][T10321] overlayfs: workdir and upperdir must be separate subtrees
[  161.732134][T10328] FAULT_INJECTION: forcing a failure.
[  161.732134][T10328] name failslab, interval 1, probability 0, space 0, times 0
[  161.732154][T10328] CPU: 3 UID: 0 PID: 10328 Comm: syz.1.1562 Not tainted syzkaller #0 PREEMPT(full) 
[  161.732166][T10328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.732173][T10328] Call Trace:
[  161.732176][T10328]  <TASK>
[  161.732180][T10328]  dump_stack_lvl+0x16c/0x1f0
[  161.732194][T10328]  should_fail_ex+0x512/0x640
[  161.732208][T10328]  ? __kmalloc_noprof+0xca/0x880
[  161.732225][T10328]  should_failslab+0xc2/0x120
[  161.732239][T10328]  __kmalloc_noprof+0xdd/0x880
[  161.732252][T10328]  ? do_raw_spin_lock+0x12c/0x2b0
[  161.732265][T10328]  ? virtio_gpu_array_alloc+0x21/0xb0
[  161.732280][T10328]  ? virtio_gpu_array_alloc+0x21/0xb0
[  161.732291][T10328]  virtio_gpu_array_alloc+0x21/0xb0
[  161.732302][T10328]  virtio_gpu_primary_plane_update+0xd43/0x1540
[  161.732318][T10328]  ? __pfx_virtio_gpu_primary_plane_update+0x10/0x10
[  161.732331][T10328]  ? drm_crtc_next_vblank_start+0x25a/0x300
[  161.732350][T10328]  drm_atomic_helper_commit_planes+0x957/0x1010
[  161.732368][T10328]  drm_atomic_helper_commit_tail+0x7f/0x110
[  161.732379][T10328]  commit_tail+0x35b/0x400
[  161.732393][T10328]  drm_atomic_helper_commit+0x2fd/0x380
[  161.732405][T10328]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  161.732417][T10328]  drm_atomic_commit+0x234/0x300
[  161.732436][T10328]  ? __pfx_drm_atomic_commit+0x10/0x10
[  161.732447][T10328]  ? __pfx___drm_printfn_info+0x10/0x10
[  161.732464][T10328]  ? drm_client_rotation+0x4da/0x6a0
[  161.732480][T10328]  drm_client_modeset_commit_atomic+0x69d/0x7e0
[  161.732497][T10328]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  161.732509][T10328]  ? __mutex_lock+0x1c5/0x1060
[  161.732520][T10328]  ? __mutex_lock+0x1c5/0x1060
[  161.732538][T10328]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  161.732554][T10328]  drm_client_modeset_commit_locked+0x14d/0x580
[  161.732570][T10328]  drm_fb_helper_pan_display+0x32d/0xa40
[  161.732588][T10328]  ? clear_pending_if_disabled+0xa8/0x210
[  161.732615][T10328]  fb_pan_display+0x47c/0x7d0
[  161.732631][T10328]  ? __pfx_drm_fb_helper_pan_display+0x10/0x10
[  161.732651][T10328]  bit_update_start+0x49/0x1f0
[  161.732673][T10328]  fbcon_switch+0xbf8/0x1420
[  161.732699][T10328]  ? __pfx_fbcon_switch+0x10/0x10
[  161.732732][T10328]  ? __pfx_bit_cursor+0x10/0x10
[  161.732749][T10328]  ? fbcon_cursor+0x40c/0x5a0
[  161.732774][T10328]  csi_J+0x866/0xad0
[  161.732803][T10328]  do_con_write+0x41ec/0x8290
[  161.732829][T10328]  ? rcu_is_watching+0x12/0xc0
[  161.732849][T10328]  ? trace_contention_end+0xdd/0x130
[  161.732877][T10328]  ? __pfx___mutex_lock+0x10/0x10
[  161.732895][T10328]  ? __pfx_do_con_write+0x10/0x10
[  161.732920][T10328]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  161.732944][T10328]  ? con_write+0x93/0xb0
[  161.732970][T10328]  con_write+0x23/0xb0
[  161.732991][T10328]  n_tty_write+0x41e/0x11e0
[  161.733020][T10328]  ? __pfx_n_tty_write+0x10/0x10
[  161.733037][T10328]  ? trace_kmalloc+0x2b/0xd0
[  161.733054][T10328]  ? __pfx_woken_wake_function+0x10/0x10
[  161.733073][T10328]  ? kfree+0x252/0x6d0
[  161.733098][T10328]  ? __pfx_n_tty_write+0x10/0x10
[  161.733116][T10328]  file_tty_write.constprop.0+0x503/0x9b0
[  161.733150][T10328]  vfs_write+0x7d3/0x11d0
[  161.733168][T10328]  ? __pfx_tty_write+0x10/0x10
[  161.733192][T10328]  ? __pfx_vfs_write+0x10/0x10
[  161.733205][T10328]  ? find_held_lock+0x2b/0x80
[  161.733240][T10328]  ksys_write+0x12a/0x250
[  161.733257][T10328]  ? __pfx_ksys_write+0x10/0x10
[  161.733281][T10328]  do_syscall_64+0xcd/0xfa0
[  161.733299][T10328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.733316][T10328] RIP: 0033:0x7fe8c4b8f7c9
[  161.733330][T10328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.733346][T10328] RSP: 002b:00007fe8c5a45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  161.733363][T10328] RAX: ffffffffffffffda RBX: 00007fe8c4de5fa0 RCX: 00007fe8c4b8f7c9
[  161.733374][T10328] RDX: 0000000000001066 RSI: 0000200000001640 RDI: 0000000000000003
[  161.733383][T10328] RBP: 00007fe8c5a45090 R08: 0000000000000000 R09: 0000000000000000
[  161.733393][T10328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  161.733401][T10328] R13: 00007fe8c4de6038 R14: 00007fe8c4de5fa0 R15: 00007ffcfd94c648
[  161.733437][T10328]  </TASK>
[  161.908790][ T5834] usb 5-1: USB disconnect, device number 28
[  162.099598][T10344] comedi comedi3: comedi_config --init_data is deprecated
[  162.110674][T10344] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1567'.
[  162.114517][T10344] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1567'.
[  162.121026][T10341] FAULT_INJECTION: forcing a failure.
[  162.121026][T10341] name failslab, interval 1, probability 0, space 0, times 0
[  162.126518][T10341] CPU: 0 UID: 0 PID: 10341 Comm: syz.0.1566 Not tainted syzkaller #0 PREEMPT(full) 
[  162.126543][T10341] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  162.126552][T10341] Call Trace:
[  162.126557][T10341]  <TASK>
[  162.126563][T10341]  dump_stack_lvl+0x16c/0x1f0
[  162.126580][T10341]  should_fail_ex+0x512/0x640
[  162.126601][T10341]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  162.126628][T10341]  should_failslab+0xc2/0x120
[  162.126648][T10341]  kmem_cache_alloc_noprof+0x75/0x6e0
[  162.126673][T10341]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  162.126697][T10341]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  162.126728][T10341]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  162.126748][T10341]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  162.126780][T10341]  mmu_topup_memory_caches+0x25/0x170
[  162.126799][T10341]  kvm_mmu_load+0xd6/0x23c0
[  162.126827][T10341]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  162.126845][T10341]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  162.126869][T10341]  ? __pfx_kvm_mmu_load+0x10/0x10
[  162.126894][T10341]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  162.126914][T10341]  ? kvm_check_and_inject_events+0x71c/0x1310
[  162.126939][T10341]  vcpu_run+0x3779/0x54d0
[  162.126961][T10341]  ? __lock_acquire+0xb8a/0x1c90
[  162.126985][T10341]  ? __pfx_vcpu_run+0x10/0x10
[  162.127005][T10341]  ? rcu_is_watching+0x12/0xc0
[  162.127031][T10341]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1920
[  162.127048][T10341]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1920
[  162.127074][T10341]  kvm_vcpu_ioctl+0x5eb/0x1690
[  162.127102][T10341]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  162.127123][T10341]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  162.127142][T10341]  ? do_vfs_ioctl+0x128/0x14f0
[  162.127189][T10341]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  162.127217][T10341]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  162.127247][T10341]  ? hook_file_ioctl_common+0x145/0x410
[  162.127277][T10341]  ? selinux_file_ioctl+0x180/0x270
[  162.127295][T10341]  ? selinux_file_ioctl+0xb4/0x270
[  162.127317][T10341]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  162.127338][T10341]  __x64_sys_ioctl+0x18e/0x210
[  162.127365][T10341]  do_syscall_64+0xcd/0xfa0
[  162.127382][T10341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.127397][T10341] RIP: 0033:0x7f7fce98f7c9
[  162.127411][T10341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.127427][T10341] RSP: 002b:00007f7fcf75d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  162.127445][T10341] RAX: ffffffffffffffda RBX: 00007f7fcebe5fa0 RCX: 00007f7fce98f7c9
[  162.127456][T10341] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  162.127466][T10341] RBP: 00007f7fcf75d090 R08: 0000000000000000 R09: 0000000000000000
[  162.127476][T10341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  162.127485][T10341] R13: 00007f7fcebe6038 R14: 00007f7fcebe5fa0 R15: 00007ffcd9b6b9b8
[  162.127505][T10341]  </TASK>
[  162.160366][T10350] IPv6: syztnl0: Disabled Multicast RS
[  162.329752][T10360] FAULT_INJECTION: forcing a failure.
[  162.329752][T10360] name failslab, interval 1, probability 0, space 0, times 0
[  162.333581][T10362] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  162.335036][T10360] CPU: 0 UID: 0 PID: 10360 Comm: syz.1.1572 Not tainted syzkaller #0 PREEMPT(full) 
[  162.335059][T10360] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  162.335068][T10360] Call Trace:
[  162.335075][T10360]  <TASK>
[  162.335081][T10360]  dump_stack_lvl+0x16c/0x1f0
[  162.335105][T10360]  should_fail_ex+0x512/0x640
[  162.335127][T10360]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  162.335173][T10360]  should_failslab+0xc2/0x120
[  162.335197][T10360]  kmem_cache_alloc_noprof+0x75/0x6e0
[  162.335222][T10360]  ? getname_kernel+0x52/0x370
[  162.335249][T10360]  ? getname_kernel+0x52/0x370
[  162.335269][T10360]  getname_kernel+0x52/0x370
[  162.335292][T10360]  kern_path+0x1d/0x50
[  162.335310][T10360]  bpf_uprobe_multi_link_attach+0x3f4/0x12e0
[  162.335337][T10360]  ? find_held_lock+0x2b/0x80
[  162.335364][T10360]  ? __pfx_bpf_uprobe_multi_link_attach+0x10/0x10
[  162.335387][T10360]  ? __fget_files+0x20e/0x3c0
[  162.335409][T10360]  ? fput+0x9b/0xd0
[  162.335437][T10360]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  162.335466][T10360]  __sys_bpf+0x3862/0x4980
[  162.335498][T10360]  ? __pfx___sys_bpf+0x10/0x10
[  162.335523][T10360]  ? find_held_lock+0x2b/0x80
[  162.335549][T10360]  ? find_held_lock+0x2b/0x80
[  162.335577][T10360]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  162.335610][T10360]  ? fput+0x9b/0xd0
[  162.335642][T10360]  ? ksys_write+0x1ac/0x250
[  162.335659][T10360]  ? __pfx_ksys_write+0x10/0x10
[  162.335680][T10360]  __x64_sys_bpf+0x78/0xc0
[  162.335693][T10360]  ? lockdep_hardirqs_on+0x7c/0x110
[  162.335710][T10360]  do_syscall_64+0xcd/0xfa0
[  162.335728][T10360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.335747][T10360] RIP: 0033:0x7fe8c4b8f7c9
[  162.335762][T10360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.335779][T10360] RSP: 002b:00007fe8c5a45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  162.335797][T10360] RAX: ffffffffffffffda RBX: 00007fe8c4de5fa0 RCX: 00007fe8c4b8f7c9
[  162.335807][T10360] RDX: 0000000000000040 RSI: 00002000000005c0 RDI: 000000000000001c
[  162.335819][T10360] RBP: 00007fe8c5a45090 R08: 0000000000000000 R09: 0000000000000000
[  162.335829][T10360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.335839][T10360] R13: 00007fe8c4de6038 R14: 00007fe8c4de5fa0 R15: 00007ffcfd94c648
[  162.335863][T10360]  </TASK>
[  162.389202][   T40] audit: type=1400 audit(1764576178.425:604): avc:  denied  { getopt } for  pid=10361 comm="syz.0.1573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  162.517129][   T40] audit: type=1400 audit(1764576178.555:605): avc:  denied  { unlink } for  pid=10372 comm="syz.0.1578" name="file1" dev="9p" ino=71827997 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  162.522212][T10375] syzkaller0: entered promiscuous mode
[  162.526961][T10375] syzkaller0: entered allmulticast mode
[  162.527484][T10373] overlayfs: workdir and upperdir must be separate subtrees
[  162.628198][   T40] audit: type=1804 audit(1764576178.665:606): pid=10377 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.1581" name="/newroot/390/bus/file0" dev="overlay" ino=2233 res=1 errno=0
[  162.814545][T10384] FAULT_INJECTION: forcing a failure.
[  162.814545][T10384] name failslab, interval 1, probability 0, space 0, times 0
[  162.819421][T10384] CPU: 1 UID: 0 PID: 10384 Comm: syz.0.1583 Not tainted syzkaller #0 PREEMPT(full) 
[  162.819444][T10384] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  162.819456][T10384] Call Trace:
[  162.819464][T10384]  <TASK>
[  162.819471][T10384]  dump_stack_lvl+0x16c/0x1f0
[  162.819496][T10384]  should_fail_ex+0x512/0x640
[  162.819518][T10384]  ? __kmalloc_cache_noprof+0x5f/0x780
[  162.819547][T10384]  should_failslab+0xc2/0x120
[  162.819568][T10384]  __kmalloc_cache_noprof+0x72/0x780
[  162.819592][T10384]  ? kfree+0x2b8/0x6d0
[  162.819614][T10384]  ? bpf_uprobe_multi_link_attach+0x3ff/0x12e0
[  162.819639][T10384]  ? bpf_uprobe_multi_link_attach+0x4d5/0x12e0
[  162.819663][T10384]  ? putname+0x154/0x1a0
[  162.819686][T10384]  ? bpf_uprobe_multi_link_attach+0x4d5/0x12e0
[  162.819710][T10384]  bpf_uprobe_multi_link_attach+0x4d5/0x12e0
[  162.819737][T10384]  ? find_held_lock+0x2b/0x80
[  162.819780][T10384]  ? __pfx_bpf_uprobe_multi_link_attach+0x10/0x10
[  162.819805][T10384]  ? __fget_files+0x20e/0x3c0
[  162.819829][T10384]  ? fput+0x9b/0xd0
[  162.819849][T10384]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  162.819878][T10384]  __sys_bpf+0x3862/0x4980
[  162.819909][T10384]  ? __pfx___sys_bpf+0x10/0x10
[  162.819937][T10384]  ? find_held_lock+0x2b/0x80
[  162.819964][T10384]  ? find_held_lock+0x2b/0x80
[  162.819994][T10384]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  162.820028][T10384]  ? fput+0x9b/0xd0
[  162.820048][T10384]  ? ksys_write+0x1ac/0x250
[  162.820065][T10384]  ? __pfx_ksys_write+0x10/0x10
[  162.820086][T10384]  __x64_sys_bpf+0x78/0xc0
[  162.820102][T10384]  ? lockdep_hardirqs_on+0x7c/0x110
[  162.820121][T10384]  do_syscall_64+0xcd/0xfa0
[  162.820140][T10384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.820159][T10384] RIP: 0033:0x7f7fce98f7c9
[  162.820181][T10384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.820199][T10384] RSP: 002b:00007f7fcf75d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  162.820217][T10384] RAX: ffffffffffffffda RBX: 00007f7fcebe5fa0 RCX: 00007f7fce98f7c9
[  162.820228][T10384] RDX: 0000000000000040 RSI: 00002000000005c0 RDI: 000000000000001c
[  162.820239][T10384] RBP: 00007f7fcf75d090 R08: 0000000000000000 R09: 0000000000000000
[  162.820249][T10384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.820259][T10384] R13: 00007f7fcebe6038 R14: 00007f7fcebe5fa0 R15: 00007ffcd9b6b9b8
[  162.820283][T10384]  </TASK>
[  162.939242][T10386] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  162.949981][T10386] input: syz0 as /devices/virtual/input/input9
[  162.977695][T10388] tmpfs: Bad value for 'mpol'
[  163.005409][   T40] audit: type=1400 audit(1764576179.045:607): avc:  denied  { mount } for  pid=10389 comm="syz.1.1586" name="/" dev="nfsd" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfsd_fs_t tclass=filesystem permissive=1
[  163.015716][   T40] audit: type=1400 audit(1764576179.055:608): avc:  denied  { search } for  pid=10389 comm="syz.1.1586" name="/" dev="nfsd" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfsd_fs_t tclass=dir permissive=1
[  163.122975][T10402] tmpfs: Cannot change global quota limit on remount
[  163.186014][T10408] FAULT_INJECTION: forcing a failure.
[  163.186014][T10408] name failslab, interval 1, probability 0, space 0, times 0
[  163.186088][T10408] CPU: 0 UID: 0 PID: 10408 Comm: syz.1.1593 Not tainted syzkaller #0 PREEMPT(full) 
[  163.186106][T10408] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.186115][T10408] Call Trace:
[  163.186121][T10408]  <TASK>
[  163.186127][T10408]  dump_stack_lvl+0x16c/0x1f0
[  163.186147][T10408]  should_fail_ex+0x512/0x640
[  163.186178][T10408]  should_failslab+0xc2/0x120
[  163.186197][T10408]  __kmalloc_noprof+0xdd/0x880
[  163.186217][T10408]  ? __lock_acquire+0x622/0x1c90
[  163.186232][T10408]  ? virtqueue_add_sgs+0x794/0x1c70
[  163.186259][T10408]  ? virtqueue_add_sgs+0x794/0x1c70
[  163.186277][T10408]  virtqueue_add_sgs+0x794/0x1c70
[  163.186299][T10408]  ? lock_acquire+0x179/0x350
[  163.186321][T10408]  ? __pfx_virtqueue_add_sgs+0x10/0x10
[  163.186340][T10408]  ? do_raw_spin_lock+0x12c/0x2b0
[  163.186358][T10408]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  163.186383][T10408]  virtio_gpu_queue_fenced_ctrl_buffer+0x5c6/0x1010
[  163.186417][T10408]  ? __pfx_virtio_gpu_queue_fenced_ctrl_buffer+0x10/0x10
[  163.186457][T10408]  ? kmem_cache_alloc_noprof+0x2a1/0x6e0
[  163.186478][T10408]  ? virtio_gpu_get_vbuf+0x50/0x180
[  163.186496][T10408]  ? virtio_gpu_get_vbuf+0x50/0x180
[  163.186525][T10408]  ? __asan_memset+0x23/0x50
[  163.186547][T10408]  ? virtio_gpu_cmd_resource_flush+0x84/0x230
[  163.186575][T10408]  virtio_gpu_primary_plane_update+0xe48/0x1540
[  163.186601][T10408]  ? __pfx_virtio_gpu_primary_plane_update+0x10/0x10
[  163.186620][T10408]  ? drm_crtc_next_vblank_start+0x25a/0x300
[  163.186649][T10408]  drm_atomic_helper_commit_planes+0x957/0x1010
[  163.186679][T10408]  drm_atomic_helper_commit_tail+0x7f/0x110
[  163.186696][T10408]  commit_tail+0x35b/0x400
[  163.186720][T10408]  drm_atomic_helper_commit+0x2fd/0x380
[  163.186738][T10408]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  163.186757][T10408]  drm_atomic_commit+0x234/0x300
[  163.186775][T10408]  ? __pfx_drm_atomic_commit+0x10/0x10
[  163.186792][T10408]  ? __pfx___drm_printfn_info+0x10/0x10
[  163.186819][T10408]  ? drm_client_rotation+0x4da/0x6a0
[  163.186843][T10408]  drm_client_modeset_commit_atomic+0x69d/0x7e0
[  163.186875][T10408]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  163.186893][T10408]  ? __mutex_lock+0x1c5/0x1060
[  163.186910][T10408]  ? __mutex_lock+0x1c5/0x1060
[  163.186943][T10408]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  163.186970][T10408]  drm_client_modeset_commit_locked+0x14d/0x580
[  163.186993][T10408]  drm_fb_helper_pan_display+0x32d/0xa40
[  163.187013][T10408]  ? clear_pending_if_disabled+0xa8/0x210
[  163.187040][T10408]  fb_pan_display+0x47c/0x7d0
[  163.187057][T10408]  ? __pfx_drm_fb_helper_pan_display+0x10/0x10
[  163.187077][T10408]  bit_update_start+0x49/0x1f0
[  163.187098][T10408]  fbcon_switch+0xbf8/0x1420
[  163.187124][T10408]  ? __pfx_fbcon_switch+0x10/0x10
[  163.187184][T10408]  ? __pfx_bit_cursor+0x10/0x10
[  163.187203][T10408]  ? fbcon_cursor+0x40c/0x5a0
[  163.187227][T10408]  csi_J+0x866/0xad0
[  163.187252][T10408]  do_con_write+0x41ec/0x8290
[  163.187277][T10408]  ? rcu_is_watching+0x12/0xc0
[  163.187297][T10408]  ? trace_contention_end+0xdd/0x130
[  163.187323][T10408]  ? __pfx___mutex_lock+0x10/0x10
[  163.187339][T10408]  ? __pfx_do_con_write+0x10/0x10
[  163.187361][T10408]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  163.187383][T10408]  ? con_write+0x93/0xb0
[  163.187407][T10408]  con_write+0x23/0xb0
[  163.187429][T10408]  n_tty_write+0x41e/0x11e0
[  163.187457][T10408]  ? __pfx_n_tty_write+0x10/0x10
[  163.187473][T10408]  ? trace_kmalloc+0x2b/0xd0
[  163.187489][T10408]  ? __pfx_woken_wake_function+0x10/0x10
[  163.187509][T10408]  ? kfree+0x252/0x6d0
[  163.187532][T10408]  ? __pfx_n_tty_write+0x10/0x10
[  163.187549][T10408]  file_tty_write.constprop.0+0x503/0x9b0
[  163.187580][T10408]  vfs_write+0x7d3/0x11d0
[  163.187597][T10408]  ? __pfx_tty_write+0x10/0x10
[  163.187621][T10408]  ? __pfx_vfs_write+0x10/0x10
[  163.187634][T10408]  ? find_held_lock+0x2b/0x80
[  163.187671][T10408]  ksys_write+0x12a/0x250
[  163.187685][T10408]  ? __pfx_ksys_write+0x10/0x10
[  163.187709][T10408]  do_syscall_64+0xcd/0xfa0
[  163.187726][T10408]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.187742][T10408] RIP: 0033:0x7fe8c4b8f7c9
[  163.187755][T10408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.187770][T10408] RSP: 002b:00007fe8c5a45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  163.187786][T10408] RAX: ffffffffffffffda RBX: 00007fe8c4de5fa0 RCX: 00007fe8c4b8f7c9
[  163.187795][T10408] RDX: 0000000000001066 RSI: 0000200000001640 RDI: 0000000000000003
[  163.187804][T10408] RBP: 00007fe8c5a45090 R08: 0000000000000000 R09: 0000000000000000
[  163.187813][T10408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  163.187822][T10408] R13: 00007fe8c4de6038 R14: 00007fe8c4de5fa0 R15: 00007ffcfd94c648
[  163.187848][T10408]  </TASK>
[  163.393413][T10416] usb usb8: usbfs: process 10416 (syz.0.1595) did not claim interface 0 before use
[  163.406852][T10416] IPVS: length: 528 != 182255695864
[  163.833285][T10432] overlayfs: workdir and upperdir must be separate subtrees
[  164.555501][T10479] FAULT_INJECTION: forcing a failure.
[  164.555501][T10479] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.561067][T10479] CPU: 1 UID: 0 PID: 10479 Comm: syz.4.1622 Not tainted syzkaller #0 PREEMPT(full) 
[  164.561091][T10479] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  164.561102][T10479] Call Trace:
[  164.561108][T10479]  <TASK>
[  164.561115][T10479]  dump_stack_lvl+0x16c/0x1f0
[  164.561137][T10479]  should_fail_ex+0x512/0x640
[  164.561169][T10479]  _copy_from_user+0x2e/0xd0
[  164.561192][T10479]  kstrtouint_from_user+0xd6/0x1d0
[  164.561220][T10479]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  164.561245][T10479]  ? __lock_acquire+0xb8a/0x1c90
[  164.561274][T10479]  proc_fail_nth_write+0x83/0x220
[  164.561297][T10479]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  164.561325][T10479]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  164.561344][T10479]  vfs_write+0x2a0/0x11d0
[  164.561366][T10479]  ? __pfx___mutex_lock+0x10/0x10
[  164.561384][T10479]  ? __pfx_vfs_write+0x10/0x10
[  164.561406][T10479]  ? __fget_files+0x20e/0x3c0
[  164.561432][T10479]  ksys_write+0x12a/0x250
[  164.561449][T10479]  ? __pfx_ksys_write+0x10/0x10
[  164.561474][T10479]  do_syscall_64+0xcd/0xfa0
[  164.561492][T10479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.561509][T10479] RIP: 0033:0x7f48ed98e27f
[  164.561523][T10479] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  164.561540][T10479] RSP: 002b:00007f48ee8fd030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  164.561557][T10479] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f48ed98e27f
[  164.561567][T10479] RDX: 0000000000000001 RSI: 00007f48ee8fd0a0 RDI: 0000000000000005
[  164.561577][T10479] RBP: 00007f48ee8fd090 R08: 0000000000000000 R09: 0000000000000000
[  164.561587][T10479] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  164.561597][T10479] R13: 00007f48edbe6038 R14: 00007f48edbe5fa0 R15: 00007ffc9fd35ca8
[  164.561623][T10479]  </TASK>
[  164.697209][T10486] overlayfs: workdir and upperdir must be separate subtrees
[  165.032515][T10514] overlayfs: workdir and upperdir must be separate subtrees
[  165.354378][T10544] netlink: 'syz.3.1649': attribute type 10 has an invalid length.
[  165.359059][T10544] syz_tun: entered promiscuous mode
[  165.368277][T10544] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  165.437108][T10550] overlayfs: workdir and upperdir must be separate subtrees
[  165.437854][T10544] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1649'.
[  165.463943][T10556] xt_NFQUEUE: number of queues (5) out of range (got 65536)
[  165.602345][T10569] bridge2: entered promiscuous mode
[  165.669973][ T6418] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  165.683246][T10576] 9pnet_fd: Insufficient options for proto=fd
[  165.763914][T10580] overlayfs: workdir and upperdir must be separate subtrees
[  165.809902][ T6418] usb 5-1: device descriptor read/64, error -71
[  165.841019][T10582] IPVS: persistence engine module ip_vs_pe_s not found
[  166.080793][ T6418] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  166.219865][ T6418] usb 5-1: device descriptor read/64, error -71
[  166.330730][ T6418] usb usb5-port1: attempt power cycle
[  166.425091][T10627] netlink: 10 bytes leftover after parsing attributes in process `syz.1.1684'.
[  166.427679][T10627] netlink: 5 bytes leftover after parsing attributes in process `syz.1.1684'.
[  166.430705][T10627] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1684'.
[  166.465912][T10629] netlink: 'syz.1.1685': attribute type 3 has an invalid length.
[  166.468695][T10629] netlink: 'syz.1.1685': attribute type 4 has an invalid length.
[  166.501352][T10631] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  166.505394][T10631] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  166.509539][T10631] overlayfs: inode number too big (/, ino=4611686018427387905, xinobits=3)
[  166.669942][ T6418] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  166.691760][ T6418] usb 5-1: device descriptor read/8, error -71
[  166.940113][ T6418] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  166.960996][ T6418] usb 5-1: device descriptor read/8, error -71
[  167.033714][T10651] FAULT_INJECTION: forcing a failure.
[  167.033714][T10651] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  167.039338][T10651] CPU: 1 UID: 0 PID: 10651 Comm: syz.3.1696 Not tainted syzkaller #0 PREEMPT(full) 
[  167.039364][T10651] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.039375][T10651] Call Trace:
[  167.039392][T10651]  <TASK>
[  167.039400][T10651]  dump_stack_lvl+0x16c/0x1f0
[  167.039440][T10651]  should_fail_ex+0x512/0x640
[  167.039473][T10651]  should_fail_alloc_page+0xe7/0x130
[  167.039497][T10651]  prepare_alloc_pages+0x3c2/0x610
[  167.039518][T10651]  ? rcu_is_watching+0x12/0xc0
[  167.039544][T10651]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  167.039573][T10651]  ? kasan_save_stack+0x33/0x60
[  167.039589][T10651]  ? kasan_save_track+0x14/0x30
[  167.039605][T10651]  ? __kasan_kmalloc+0xaa/0xb0
[  167.039620][T10651]  ? __kvmalloc_node_noprof+0x3a3/0x9c0
[  167.039636][T10651]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  167.039660][T10651]  ? mmu_topup_memory_caches+0xbc/0x170
[  167.039676][T10651]  ? kvm_mmu_load+0xd6/0x23c0
[  167.039700][T10651]  ? vcpu_run+0x3779/0x54d0
[  167.039715][T10651]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1920
[  167.039732][T10651]  ? kvm_vcpu_ioctl+0x5eb/0x1690
[  167.039753][T10651]  ? __x64_sys_ioctl+0x18e/0x210
[  167.039793][T10651]  ? do_syscall_64+0xcd/0xfa0
[  167.039807][T10651]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.039830][T10651]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  167.039875][T10651]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  167.039901][T10651]  ? policy_nodemask+0xea/0x4e0
[  167.039924][T10651]  alloc_pages_mpol+0x1fb/0x550
[  167.039947][T10651]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  167.039967][T10651]  ? __kvmalloc_node_noprof+0x3c0/0x9c0
[  167.039985][T10651]  ? trace_kmem_cache_alloc+0x28/0xc0
[  167.040005][T10651]  ? kmem_cache_alloc_noprof+0x2a1/0x6e0
[  167.040035][T10651]  alloc_pages_noprof+0x131/0x390
[  167.040056][T10651]  get_free_pages_noprof+0x10/0xb0
[  167.040074][T10651]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  167.040107][T10651]  mmu_topup_memory_caches+0xbc/0x170
[  167.040126][T10651]  kvm_mmu_load+0xd6/0x23c0
[  167.040158][T10651]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  167.040180][T10651]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  167.040206][T10651]  ? __pfx_kvm_mmu_load+0x10/0x10
[  167.040233][T10651]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  167.040256][T10651]  ? kvm_check_and_inject_events+0x71c/0x1310
[  167.040277][T10651]  vcpu_run+0x3779/0x54d0
[  167.040297][T10651]  ? __lock_acquire+0xb8a/0x1c90
[  167.040318][T10651]  ? __pfx_vcpu_run+0x10/0x10
[  167.040338][T10651]  ? rcu_is_watching+0x12/0xc0
[  167.040364][T10651]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1920
[  167.040379][T10651]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1920
[  167.040401][T10651]  kvm_vcpu_ioctl+0x5eb/0x1690
[  167.040427][T10651]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  167.040446][T10651]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  167.040468][T10651]  ? do_vfs_ioctl+0x128/0x14f0
[  167.040492][T10651]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  167.040515][T10651]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  167.040545][T10651]  ? hook_file_ioctl_common+0x145/0x410
[  167.040574][T10651]  ? selinux_file_ioctl+0x180/0x270
[  167.040592][T10651]  ? selinux_file_ioctl+0xb4/0x270
[  167.040609][T10651]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  167.040631][T10651]  __x64_sys_ioctl+0x18e/0x210
[  167.040653][T10651]  do_syscall_64+0xcd/0xfa0
[  167.040669][T10651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.040685][T10651] RIP: 0033:0x7ff60978f7c9
[  167.040698][T10651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.040715][T10651] RSP: 002b:00007ff60a604038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  167.040733][T10651] RAX: ffffffffffffffda RBX: 00007ff6099e5fa0 RCX: 00007ff60978f7c9
[  167.040743][T10651] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  167.040753][T10651] RBP: 00007ff60a604090 R08: 0000000000000000 R09: 0000000000000000
[  167.040762][T10651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  167.040771][T10651] R13: 00007ff6099e6038 R14: 00007ff6099e5fa0 R15: 00007ffc20ffbf98
[  167.040795][T10651]  </TASK>
[  167.070222][ T6418] usb usb5-port1: unable to enumerate USB device
[  167.209974][ T6003] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[  167.369936][ T6003] usb 6-1: Using ep0 maxpacket: 8
[  167.374079][ T6003] usb 6-1: config 0 interface 0 has no altsetting 0
[  167.377166][ T6003] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  167.381449][ T6003] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.388103][ T6003] usb 6-1: config 0 descriptor??
[  167.509739][T10664] loop6: detected capacity change from 0 to 2640
[  167.513787][T10664] buffer_io_error: 117 callbacks suppressed
[  167.513801][T10664] Buffer I/O error on dev loop6, logical block 0, async page read
[  167.519738][T10664] Buffer I/O error on dev loop6, logical block 0, async page read
[  167.523216][T10664] Buffer I/O error on dev loop6, logical block 0, async page read
[  167.526456][T10664] Buffer I/O error on dev loop6, logical block 0, async page read
[  167.530504][T10664] Buffer I/O error on dev loop6, logical block 0, async page read
[  167.533792][T10664] Buffer I/O error on dev loop6, logical block 0, async page read
[  167.537172][T10664] Buffer I/O error on dev loop6, logical block 0, async page read
[  167.540659][T10664] Buffer I/O error on dev loop6, logical block 0, async page read
[  167.544007][T10664] ldm_validate_partition_table(): Disk read failed.
[  167.546657][T10664] Buffer I/O error on dev loop6, logical block 0, async page read
[  167.550055][T10664] Buffer I/O error on dev loop6, logical block 0, async page read
[  167.553462][T10664] Dev loop6: unable to read RDB block 0
[  167.556755][T10664]  loop6: unable to read partition table
[  167.559336][T10664] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  167.606570][T10666] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  167.611772][T10666] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10666 comm=syz.3.1701
[  167.798542][ T6003] hid_parser_main: 28 callbacks suppressed
[  167.798554][ T6003] mcp2221 0003:04D8:00DD.0016: unknown main item tag 0x0
[  167.803439][ T6003] mcp2221 0003:04D8:00DD.0016: unknown main item tag 0x0
[  167.806052][ T6003] mcp2221 0003:04D8:00DD.0016: unknown main item tag 0x0
[  167.808481][ T6003] mcp2221 0003:04D8:00DD.0016: unknown main item tag 0x0
[  167.811083][ T6003] mcp2221 0003:04D8:00DD.0016: unknown main item tag 0x0
[  167.814000][ T6003] mcp2221 0003:04D8:00DD.0016: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.1-1/input0
[  168.000125][ T6003] usb 6-1: USB disconnect, device number 34
[  168.564924][T10678] tmpfs: Unknown parameter '00000000000000000000'
[  168.564924][T10677] tmpfs: Unknown parameter '00000000000000000000'
[  168.690274][T10688] overlayfs: workdir and upperdir must be separate subtrees
[  168.708811][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  168.708825][   T40] audit: type=1804 audit(1764576184.745:618): pid=10688 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.1711" name="/newroot/450/file0/bus/file0" dev="9p" ino=71828001 res=1 errno=0
[  168.875082][T10698] openvswitch: netlink: EtherType 53b is less than min 600
[  169.013922][T10716] loop6: detected capacity change from 0 to 2640
[  169.014504][T10714] overlayfs: workdir and upperdir must be separate subtrees
[  169.017570][T10716] ldm_validate_partition_table(): Disk read failed.
[  169.022388][T10716] Dev loop6: unable to read RDB block 0
[  169.025157][T10716]  loop6: unable to read partition table
[  169.028804][   T40] audit: type=1804 audit(1764576185.065:619): pid=10714 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.1721" name="/newroot/181/file0/bus/file0" dev="9p" ino=71828001 res=1 errno=0
[  169.029552][T10716] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  169.149922][ T6418] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  169.163531][T10722] FAULT_INJECTION: forcing a failure.
[  169.163531][T10722] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  169.167620][T10722] CPU: 2 UID: 0 PID: 10722 Comm: syz.1.1727 Not tainted syzkaller #0 PREEMPT(full) 
[  169.167638][T10722] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.167647][T10722] Call Trace:
[  169.167653][T10722]  <TASK>
[  169.167658][T10722]  dump_stack_lvl+0x16c/0x1f0
[  169.167676][T10722]  should_fail_ex+0x512/0x640
[  169.167695][T10722]  _copy_from_iter+0x29f/0x1720
[  169.167714][T10722]  ? __pfx_avc_has_perm+0x10/0x10
[  169.167734][T10722]  ? __pfx__copy_from_iter+0x10/0x10
[  169.167753][T10722]  ? sock_has_perm+0x259/0x2f0
[  169.167774][T10722]  ? __pfx_sock_has_perm+0x10/0x10
[  169.167796][T10722]  hci_sock_sendmsg+0x46d/0x25f0
[  169.167821][T10722]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  169.167847][T10722]  sock_write_iter+0x566/0x610
[  169.167861][T10722]  ? __pfx_sock_write_iter+0x10/0x10
[  169.167880][T10722]  ? bpf_lsm_file_permission+0x9/0x10
[  169.167893][T10722]  ? security_file_permission+0x71/0x210
[  169.167910][T10722]  ? rw_verify_area+0xcf/0x6c0
[  169.167931][T10722]  vfs_write+0x7d3/0x11d0
[  169.167945][T10722]  ? __pfx_sock_write_iter+0x10/0x10
[  169.167959][T10722]  ? __pfx_vfs_write+0x10/0x10
[  169.167970][T10722]  ? find_held_lock+0x2b/0x80
[  169.167998][T10722]  ksys_write+0x1f8/0x250
[  169.168011][T10722]  ? __pfx_ksys_write+0x10/0x10
[  169.168028][T10722]  do_syscall_64+0xcd/0xfa0
[  169.168042][T10722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.168056][T10722] RIP: 0033:0x7fe8c4b8f7c9
[  169.168066][T10722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.168079][T10722] RSP: 002b:00007fe8c5a45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  169.168094][T10722] RAX: ffffffffffffffda RBX: 00007fe8c4de5fa0 RCX: 00007fe8c4b8f7c9
[  169.168102][T10722] RDX: 000000000000000d RSI: 0000200000000000 RDI: 0000000000000004
[  169.168110][T10722] RBP: 00007fe8c5a45090 R08: 0000000000000000 R09: 0000000000000000
[  169.168117][T10722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  169.168125][T10722] R13: 00007fe8c4de6038 R14: 00007fe8c4de5fa0 R15: 00007ffcfd94c648
[  169.168143][T10722]  </TASK>
[  169.339860][ T6418] usb 5-1: Using ep0 maxpacket: 8
[  169.341465][ T6418] usb 5-1: config 0 interface 0 has no altsetting 0
[  169.341497][ T6418] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  169.341510][ T6418] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.343549][ T6418] usb 5-1: config 0 descriptor??
[  169.459861][   T40] audit: type=1400 audit(1764576185.495:620): avc:  granted  { setsecparam } for  pid=10736 comm="syz.1.1733" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  169.742666][T10752] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  169.746011][T10752] IPv6: NLM_F_CREATE should be set when creating new route
[  169.749187][ T6418] mcp2221 0003:04D8:00DD.0017: unknown main item tag 0x0
[  169.751909][ T6418] mcp2221 0003:04D8:00DD.0017: unknown main item tag 0x0
[  169.754299][ T6418] mcp2221 0003:04D8:00DD.0017: unknown main item tag 0x0
[  169.756523][ T6418] mcp2221 0003:04D8:00DD.0017: unknown main item tag 0x0
[  169.758778][ T6418] mcp2221 0003:04D8:00DD.0017: unknown main item tag 0x0
[  169.761807][ T6418] mcp2221 0003:04D8:00DD.0017: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0
[  169.966057][ T5834] usb 5-1: USB disconnect, device number 33
[  170.002661][T10769] loop6: detected capacity change from 0 to 2640
[  170.006998][ T5952] ldm_validate_partition_table(): Disk read failed.
[  170.010059][ T5952] Dev loop6: unable to read RDB block 0
[  170.013230][ T5952]  loop6: unable to read partition table
[  170.017186][T10769] ldm_validate_partition_table(): Disk read failed.
[  170.021868][T10769] Dev loop6: unable to read RDB block 0
[  170.024552][T10769]  loop6: unable to read partition table
[  170.029843][T10769] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  170.223941][T10788] FAULT_INJECTION: forcing a failure.
[  170.223941][T10788] name failslab, interval 1, probability 0, space 0, times 0
[  170.230523][T10788] CPU: 0 UID: 0 PID: 10788 Comm: syz.1.1757 Not tainted syzkaller #0 PREEMPT(full) 
[  170.230545][T10788] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  170.230556][T10788] Call Trace:
[  170.230562][T10788]  <TASK>
[  170.230569][T10788]  dump_stack_lvl+0x16c/0x1f0
[  170.230591][T10788]  should_fail_ex+0x512/0x640
[  170.230611][T10788]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  170.230640][T10788]  should_failslab+0xc2/0x120
[  170.230658][T10788]  kmem_cache_alloc_node_noprof+0x78/0x770
[  170.230683][T10788]  ? __alloc_skb+0x2b2/0x380
[  170.230710][T10788]  ? __alloc_skb+0x2b2/0x380
[  170.230728][T10788]  __alloc_skb+0x2b2/0x380
[  170.230749][T10788]  ? __pfx___alloc_skb+0x10/0x10
[  170.230767][T10788]  ? __lock_acquire+0xb8a/0x1c90
[  170.230790][T10788]  mgmt_cmd_complete+0x4f/0x550
[  170.230818][T10788]  user_pairing_resp+0x31f/0x560
[  170.230845][T10788]  ? __hci_dev_get+0x16a/0x270
[  170.230870][T10788]  ? __pfx_user_pairing_resp+0x10/0x10
[  170.230892][T10788]  ? do_raw_read_unlock+0x44/0xe0
[  170.230909][T10788]  ? _raw_read_unlock+0x28/0x50
[  170.230934][T10788]  ? __pfx_mgmt_init_hdev+0x10/0x10
[  170.230962][T10788]  hci_sock_sendmsg+0x1522/0x25f0
[  170.230993][T10788]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  170.231022][T10788]  sock_write_iter+0x566/0x610
[  170.231040][T10788]  ? __pfx_sock_write_iter+0x10/0x10
[  170.231065][T10788]  ? bpf_lsm_file_permission+0x9/0x10
[  170.231108][T10788]  ? security_file_permission+0x71/0x210
[  170.231139][T10788]  ? rw_verify_area+0xcf/0x6c0
[  170.231163][T10788]  vfs_write+0x7d3/0x11d0
[  170.231180][T10788]  ? __pfx_sock_write_iter+0x10/0x10
[  170.231200][T10788]  ? __pfx_vfs_write+0x10/0x10
[  170.231214][T10788]  ? find_held_lock+0x2b/0x80
[  170.231251][T10788]  ksys_write+0x1f8/0x250
[  170.231265][T10788]  ? __pfx_ksys_write+0x10/0x10
[  170.231287][T10788]  do_syscall_64+0xcd/0xfa0
[  170.231306][T10788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.231323][T10788] RIP: 0033:0x7fe8c4b8f7c9
[  170.231338][T10788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.231354][T10788] RSP: 002b:00007fe8c5a45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  170.231371][T10788] RAX: ffffffffffffffda RBX: 00007fe8c4de5fa0 RCX: 00007fe8c4b8f7c9
[  170.231381][T10788] RDX: 000000000000000d RSI: 0000200000000000 RDI: 0000000000000004
[  170.231390][T10788] RBP: 00007fe8c5a45090 R08: 0000000000000000 R09: 0000000000000000
[  170.231398][T10788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  170.231407][T10788] R13: 00007fe8c4de6038 R14: 00007fe8c4de5fa0 R15: 00007ffcfd94c648
[  170.231433][T10788]  </TASK>
[  170.392611][T10792] overlayfs: workdir and upperdir must be separate subtrees
[  170.398763][   T40] audit: type=1804 audit(1764576186.435:621): pid=10792 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.1759" name="/newroot/199/file0/bus/file0" dev="9p" ino=71828001 res=1 errno=0
[  170.516663][T10796] netlink: 16178 bytes leftover after parsing attributes in process `syz.0.1762'.
[  170.521770][T10798] bridge0: entered allmulticast mode
[  170.525113][T10796] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1762'.
[  170.551109][T10800] netlink: 'syz.1.1763': attribute type 2 has an invalid length.
[  170.565643][   T40] audit: type=1400 audit(1764576186.605:622): avc:  denied  { unmount } for  pid=5941 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  170.656164][T10810] macsec2: entered promiscuous mode
[  170.658547][T10810] macsec2: entered allmulticast mode
[  170.863624][T10830] tmpfs: User quota block hardlimit too large.
[  170.922445][T10834] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1776'.
[  170.927094][T10834] IPv6: NLM_F_CREATE should be specified when creating new route
[  170.933548][T10834] IPv6: Can't replace route, no match found
[  171.030911][T10838] netlink: 'syz.0.1778': attribute type 3 has an invalid length.
[  171.033765][T10838] netlink: 'syz.0.1778': attribute type 4 has an invalid length.
[  171.081785][   T40] audit: type=1400 audit(1764576187.125:623): avc:  denied  { read } for  pid=10839 comm="syz.0.1779" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  171.220793][T10844] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  171.220855][T10844] IPv6: NLM_F_CREATE should be set when creating new route
[  171.374380][T10859] loop6: detected capacity change from 0 to 2640
[  171.378447][T10859] ldm_validate_partition_table(): Disk read failed.
[  171.381974][T10859] Dev loop6: unable to read RDB block 0
[  171.384732][T10859]  loop6: unable to read partition table
[  171.387465][T10859] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  171.556406][   T40] audit: type=1400 audit(1764576187.595:624): avc:  denied  { getopt } for  pid=10871 comm="syz.0.1794" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  171.576735][T10874] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1794'.
[  171.580945][T10874] bridge0: port 1(batadv0) entered disabled state
[  171.587620][T10876] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1795'.
[  171.760759][T10876] bond0 (unregistering): Released all slaves
[  171.952128][   T40] audit: type=1400 audit(1764576187.995:625): avc:  denied  { create } for  pid=10880 comm="syz.0.1797" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  171.960469][   T40] audit: type=1400 audit(1764576187.995:626): avc:  denied  { ioctl } for  pid=10880 comm="syz.0.1797" path="socket:[42620]" dev="sockfs" ino=42620 ioctlcmd=0x89e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  172.099265][   T40] audit: type=1400 audit(1764576188.135:627): avc:  denied  { ioctl } for  pid=10894 comm="syz.1.1803" path="socket:[42627]" dev="sockfs" ino=42627 ioctlcmd=0x943c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  172.165854][T10906] loop6: detected capacity change from 0 to 2640
[  172.168614][T10906] ldm_validate_partition_table(): Disk read failed.
[  172.171494][T10906] Dev loop6: unable to read RDB block 0
[  172.174152][T10906]  loop6: unable to read partition table
[  172.176425][T10906] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  172.275789][T10921] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1813'.
[  172.360282][T10927] FAULT_INJECTION: forcing a failure.
[  172.360282][T10927] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  172.365616][T10927] CPU: 0 UID: 0 PID: 10927 Comm: syz.0.1815 Not tainted syzkaller #0 PREEMPT(full) 
[  172.365637][T10927] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  172.365647][T10927] Call Trace:
[  172.365654][T10927]  <TASK>
[  172.365660][T10927]  dump_stack_lvl+0x16c/0x1f0
[  172.365680][T10927]  should_fail_ex+0x512/0x640
[  172.365704][T10927]  _copy_to_user+0x32/0xd0
[  172.365723][T10927]  simple_read_from_buffer+0xcb/0x170
[  172.365742][T10927]  proc_fail_nth_read+0x197/0x240
[  172.365755][T10927]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  172.365768][T10927]  ? rw_verify_area+0xcf/0x6c0
[  172.365783][T10927]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  172.365795][T10927]  vfs_read+0x1e4/0xcf0
[  172.365807][T10927]  ? __pfx___mutex_lock+0x10/0x10
[  172.365819][T10927]  ? __pfx_vfs_read+0x10/0x10
[  172.365832][T10927]  ? __fget_files+0x20e/0x3c0
[  172.365847][T10927]  ksys_read+0x12a/0x250
[  172.365858][T10927]  ? __pfx_ksys_read+0x10/0x10
[  172.365878][T10927]  do_syscall_64+0xcd/0xfa0
[  172.365895][T10927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.365912][T10927] RIP: 0033:0x7f7fce98e1dc
[  172.365928][T10927] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  172.365945][T10927] RSP: 002b:00007f7fcf75d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  172.365962][T10927] RAX: ffffffffffffffda RBX: 00007f7fcebe5fa0 RCX: 00007f7fce98e1dc
[  172.365973][T10927] RDX: 000000000000000f RSI: 00007f7fcf75d0a0 RDI: 0000000000000003
[  172.365983][T10927] RBP: 00007f7fcf75d090 R08: 0000000000000000 R09: 0000000000000000
[  172.365993][T10927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  172.366003][T10927] R13: 00007f7fcebe6038 R14: 00007f7fcebe5fa0 R15: 00007ffcd9b6b9b8
[  172.366029][T10927]  </TASK>
[  172.478348][    C0] vcan0: j1939_tp_rxtimer: 0xffff888036a3e800: rx timeout, send abort
[  172.483752][    C0] vcan0: j1939_tp_rxtimer: 0xffff888036a3f400: rx timeout, send abort
[  172.487435][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888036a3e800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  172.494785][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888036a3f400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  172.621698][T10942] FAULT_INJECTION: forcing a failure.
[  172.621698][T10942] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  172.627252][T10942] CPU: 0 UID: 0 PID: 10942 Comm: syz.4.1821 Not tainted syzkaller #0 PREEMPT(full) 
[  172.627285][T10942] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  172.627296][T10942] Call Trace:
[  172.627304][T10942]  <TASK>
[  172.627310][T10942]  dump_stack_lvl+0x16c/0x1f0
[  172.627331][T10942]  should_fail_ex+0x512/0x640
[  172.627358][T10942]  should_fail_alloc_page+0xe7/0x130
[  172.627381][T10942]  prepare_alloc_pages+0x3c2/0x610
[  172.627401][T10942]  ? rcu_is_watching+0x12/0xc0
[  172.627427][T10942]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  172.627455][T10942]  ? kasan_save_stack+0x33/0x60
[  172.627473][T10942]  ? kasan_save_track+0x14/0x30
[  172.627490][T10942]  ? __kasan_kmalloc+0xaa/0xb0
[  172.627505][T10942]  ? __kvmalloc_node_noprof+0x3a3/0x9c0
[  172.627522][T10942]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  172.627547][T10942]  ? mmu_topup_memory_caches+0xbc/0x170
[  172.627563][T10942]  ? kvm_mmu_load+0xd6/0x23c0
[  172.627587][T10942]  ? vcpu_run+0x3779/0x54d0
[  172.627602][T10942]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1920
[  172.627619][T10942]  ? kvm_vcpu_ioctl+0x5eb/0x1690
[  172.627641][T10942]  ? __x64_sys_ioctl+0x18e/0x210
[  172.627663][T10942]  ? do_syscall_64+0xcd/0xfa0
[  172.627678][T10942]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.627700][T10942]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  172.627743][T10942]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  172.627768][T10942]  ? policy_nodemask+0xea/0x4e0
[  172.627791][T10942]  alloc_pages_mpol+0x1fb/0x550
[  172.627813][T10942]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  172.627834][T10942]  ? __kvmalloc_node_noprof+0x3c0/0x9c0
[  172.627853][T10942]  ? trace_kmem_cache_alloc+0x28/0xc0
[  172.627874][T10942]  ? kmem_cache_alloc_noprof+0x2a1/0x6e0
[  172.627901][T10942]  alloc_pages_noprof+0x131/0x390
[  172.627922][T10942]  get_free_pages_noprof+0x10/0xb0
[  172.627940][T10942]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  172.627972][T10942]  mmu_topup_memory_caches+0xbc/0x170
[  172.627991][T10942]  kvm_mmu_load+0xd6/0x23c0
[  172.628017][T10942]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  172.628039][T10942]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  172.628064][T10942]  ? __pfx_kvm_mmu_load+0x10/0x10
[  172.628090][T10942]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  172.628114][T10942]  ? kvm_check_and_inject_events+0x71c/0x1310
[  172.628138][T10942]  vcpu_run+0x3779/0x54d0
[  172.628159][T10942]  ? __lock_acquire+0xb8a/0x1c90
[  172.628182][T10942]  ? __pfx_vcpu_run+0x10/0x10
[  172.628208][T10942]  ? rcu_is_watching+0x12/0xc0
[  172.628234][T10942]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1920
[  172.628251][T10942]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1920
[  172.628282][T10942]  kvm_vcpu_ioctl+0x5eb/0x1690
[  172.628309][T10942]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  172.628334][T10942]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  172.628358][T10942]  ? do_vfs_ioctl+0x128/0x14f0
[  172.628382][T10942]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  172.628408][T10942]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  172.628439][T10942]  ? hook_file_ioctl_common+0x145/0x410
[  172.628469][T10942]  ? selinux_file_ioctl+0x180/0x270
[  172.628488][T10942]  ? selinux_file_ioctl+0xb4/0x270
[  172.628509][T10942]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  172.628533][T10942]  __x64_sys_ioctl+0x18e/0x210
[  172.628556][T10942]  do_syscall_64+0xcd/0xfa0
[  172.628574][T10942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.628590][T10942] RIP: 0033:0x7f48ed98f7c9
[  172.628604][T10942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.628621][T10942] RSP: 002b:00007f48ee8fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  172.628638][T10942] RAX: ffffffffffffffda RBX: 00007f48edbe5fa0 RCX: 00007f48ed98f7c9
[  172.628648][T10942] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  172.628656][T10942] RBP: 00007f48ee8fd090 R08: 0000000000000000 R09: 0000000000000000
[  172.628665][T10942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  172.628674][T10942] R13: 00007f48edbe6038 R14: 00007f48edbe5fa0 R15: 00007ffc9fd35ca8
[  172.628696][T10942]  </TASK>
[  172.931715][T10970] loop6: detected capacity change from 0 to 2640
[  172.934520][ T5952] buffer_io_error: 111 callbacks suppressed
[  172.934528][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  172.938945][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  172.942517][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  172.945146][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  172.947749][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  172.950650][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  172.953453][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  172.956809][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  172.962101][ T5952] ldm_validate_partition_table(): Disk read failed.
[  172.964560][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  172.968003][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[  172.974223][ T5952] Dev loop6: unable to read RDB block 0
[  172.977008][ T5952]  loop6: unable to read partition table
[  172.984509][T10970] ldm_validate_partition_table(): Disk read failed.
[  172.986819][T10970] Dev loop6: unable to read RDB block 0
[  172.988811][T10970]  loop6: unable to read partition table
[  172.991179][T10970] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  173.167421][T11002] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  173.237845][T11009] trusted_key: syz.1.1849 sent an empty control message without MSG_MORE.
[  173.258583][T11013] fuse: Bad value for 'user_id'
[  173.260326][T11013] fuse: Bad value for 'user_id'
[  173.570795][T11037] netlink: 'syz.0.1861': attribute type 10 has an invalid length.
[  173.573428][T11037] team0: Device vetè0_virt_wif is loopback device. Loopback devices can't be added as a team port
[  173.577184][T11037] A link change request failed with some changes committed already. Interface vetè0_virt_wif may have been left with an inconsistent configuration, please check.
[  173.977921][T11062] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1871'.
[  174.103105][T11074] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1876'.
[  174.105911][T11070] FAULT_INJECTION: forcing a failure.
[  174.105911][T11070] name failslab, interval 1, probability 0, space 0, times 0
[  174.112349][T11070] CPU: 0 UID: 0 PID: 11070 Comm: syz.1.1874 Not tainted syzkaller #0 PREEMPT(full) 
[  174.112373][T11070] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  174.112383][T11070] Call Trace:
[  174.112389][T11070]  <TASK>
[  174.112396][T11070]  dump_stack_lvl+0x16c/0x1f0
[  174.112418][T11070]  should_fail_ex+0x512/0x640
[  174.112438][T11070]  ? fs_reclaim_acquire+0xae/0x150
[  174.112461][T11070]  should_failslab+0xc2/0x120
[  174.112481][T11070]  __kmalloc_noprof+0xdd/0x880
[  174.112506][T11070]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  174.112533][T11070]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  174.112552][T11070]  tomoyo_realpath_from_path+0xc2/0x6e0
[  174.112575][T11070]  ? tomoyo_profile+0x47/0x60
[  174.112601][T11070]  tomoyo_path_number_perm+0x245/0x580
[  174.112617][T11070]  ? tomoyo_path_number_perm+0x237/0x580
[  174.112637][T11070]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  174.112656][T11070]  ? find_held_lock+0x2b/0x80
[  174.112706][T11070]  ? find_held_lock+0x2b/0x80
[  174.112726][T11070]  ? hook_file_ioctl_common+0x145/0x410
[  174.112756][T11070]  ? __fget_files+0x20e/0x3c0
[  174.112780][T11070]  security_file_ioctl+0x9b/0x240
[  174.112802][T11070]  __x64_sys_ioctl+0xb7/0x210
[  174.112829][T11070]  do_syscall_64+0xcd/0xfa0
[  174.112849][T11070]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.112866][T11070] RIP: 0033:0x7fe8c4b8f7c9
[  174.112881][T11070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.112897][T11070] RSP: 002b:00007fe8c5a45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  174.112914][T11070] RAX: ffffffffffffffda RBX: 00007fe8c4de5fa0 RCX: 00007fe8c4b8f7c9
[  174.112924][T11070] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  174.112934][T11070] RBP: 00007fe8c5a45090 R08: 0000000000000000 R09: 0000000000000000
[  174.112944][T11070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  174.112954][T11070] R13: 00007fe8c4de6038 R14: 00007fe8c4de5fa0 R15: 00007ffcfd94c648
[  174.112979][T11070]  </TASK>
[  174.112986][T11070] ERROR: Out of memory at tomoyo_realpath_from_path.
[  174.226857][T11074] bond0: (slave wlan1): Releasing backup interface
[  174.237236][T11074] ------------[ cut here ]------------
[  174.239635][T11074] wlan1: Failed check-sdata-in-driver check, flags: 0x0
[  174.242275][T11074] WARNING: CPU: 0 PID: 11074 at net/mac80211/driver-ops.c:366 drv_unassign_vif_chanctx+0x247/0x850
[  174.245587][T11074] Modules linked in:
[  174.247251][T11074] CPU: 0 UID: 0 PID: 11074 Comm: syz.3.1876 Not tainted syzkaller #0 PREEMPT(full) 
[  174.250310][T11074] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  174.253644][T11074] RIP: 0010:drv_unassign_vif_chanctx+0x247/0x850
[  174.255724][T11074] Code: 74 24 10 48 81 c6 20 01 00 00 48 89 74 24 10 e8 5f d7 ee f6 8b 54 24 04 48 8b 74 24 10 48 c7 c7 60 bd e2 8c e8 aa 0a ad f6 90 <0f> 0b 90 90 e8 40 d7 ee f6 4c 89 f2 48 b8 00 00 00 00 00 fc ff df
[  174.262036][T11074] RSP: 0018:ffffc90005d9f180 EFLAGS: 00010286
[  174.264641][T11074] RAX: 0000000000000000 RBX: ffff888051fd0d80 RCX: ffffc9000c001000
[  174.267973][T11074] RDX: 0000000000080000 RSI: ffffffff817b1ce5 RDI: 0000000000000001
[  174.271422][T11074] RBP: ffff888053a50e80 R08: 0000000000000001 R09: 0000000000000000
[  174.274764][T11074] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888051fd2ad8
[  174.278119][T11074] R13: 0000000000000000 R14: ffff888051fd17b8 R15: ffff888051fd2a80
[  174.281545][T11074] FS:  00007ff60a6046c0(0000) GS:ffff8880d6a05000(0000) knlGS:0000000000000000
[  174.285280][T11074] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  174.288112][T11074] CR2: 00007fe8c4ce02f8 CR3: 000000003e74f000 CR4: 0000000000352ef0
[  174.291624][T11074] DR0: ffffffffffffffff DR1: 00000000000001f8 DR2: 0000000000000083
[  174.294976][T11074] DR3: ffffffffefffff15 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  174.298322][T11074] Call Trace:
[  174.299859][T11074]  <TASK>
[  174.301144][T11074]  ieee80211_assign_link_chanctx+0x3f1/0xf00
[  174.303722][T11074]  __ieee80211_link_release_channel+0x273/0x4b0
[  174.305936][T11074]  ieee80211_link_release_channel+0x128/0x200
[  174.307903][T11074]  ? __pfx_ieee80211_uninit+0x10/0x10
[  174.309622][T11074]  unregister_netdevice_many_notify+0x1402/0x25c0
[  174.311737][T11074]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  174.313853][T11074]  ? __call_rcu_common.constprop.0+0x3f0/0xa10
[  174.315891][T11074]  ? find_held_lock+0x2b/0x80
[  174.317416][T11074]  unregister_netdevice_queue+0x305/0x3f0
[  174.319295][T11074]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  174.321751][T11074]  _cfg80211_unregister_wdev+0x64b/0x830
[  174.324136][T11074]  ieee80211_if_remove+0x250/0x400
[  174.326340][T11074]  ieee80211_del_iface+0x16/0x20
[  174.328460][T11074]  cfg80211_remove_virtual_intf+0xdd/0x2a0
[  174.331130][T11074]  nl80211_del_interface+0x106/0x190
[  174.333390][T11074]  genl_family_rcv_msg_doit+0x209/0x2f0
[  174.335782][T11074]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  174.338471][T11074]  ? bpf_lsm_capable+0x9/0x10
[  174.340584][T11074]  ? security_capable+0x7e/0x260
[  174.342703][T11074]  ? ns_capable+0xd7/0x110
[  174.344634][T11074]  genl_rcv_msg+0x55c/0x800
[  174.346563][T11074]  ? __pfx_genl_rcv_msg+0x10/0x10
[  174.348704][T11074]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  174.351082][T11074]  ? __pfx_nl80211_del_interface+0x10/0x10
[  174.353536][T11074]  ? __pfx_nl80211_post_doit+0x10/0x10
[  174.355879][T11074]  netlink_rcv_skb+0x158/0x420
[  174.357795][T11074]  ? __pfx_genl_rcv_msg+0x10/0x10
[  174.359606][T11074]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  174.361980][T11074]  ? netlink_deliver_tap+0x1ae/0xd30
[  174.364239][T11074]  genl_rcv+0x28/0x40
[  174.365951][T11074]  netlink_unicast+0x5aa/0x870
[  174.367604][T11074]  ? __pfx_netlink_unicast+0x10/0x10
[  174.369411][T11074]  netlink_sendmsg+0x8c8/0xdd0
[  174.371000][T11074]  ? __pfx_netlink_sendmsg+0x10/0x10
[  174.372674][T11074]  ____sys_sendmsg+0xa98/0xc70
[  174.374184][T11074]  ? copy_msghdr_from_user+0x10a/0x160
[  174.375922][T11074]  ? __pfx_____sys_sendmsg+0x10/0x10
[  174.377589][T11074]  ? __pfx_futex_wake_mark+0x10/0x10
[  174.379366][T11074]  ___sys_sendmsg+0x134/0x1d0
[  174.381026][T11074]  ? __pfx____sys_sendmsg+0x10/0x10
[  174.382722][T11074]  ? __lock_acquire+0x622/0x1c90
[  174.384316][T11074]  __sys_sendmsg+0x16d/0x220
[  174.385768][T11074]  ? __pfx___sys_sendmsg+0x10/0x10
[  174.387391][T11074]  ? __x64_sys_futex+0x1e0/0x4c0
[  174.388951][T11074]  do_syscall_64+0xcd/0xfa0
[  174.390963][T11074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.393482][T11074] RIP: 0033:0x7ff60978f7c9
[  174.395415][T11074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.403499][T11074] RSP: 002b:00007ff60a604038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  174.406206][T11074] RAX: ffffffffffffffda RBX: 00007ff6099e5fa0 RCX: 00007ff60978f7c9
[  174.408795][T11074] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000005
[  174.411451][T11074] RBP: 00007ff609813f91 R08: 0000000000000000 R09: 0000000000000000
[  174.414254][T11074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  174.417606][T11074] R13: 00007ff6099e6038 R14: 00007ff6099e5fa0 R15: 00007ffc20ffbf98
[  174.421047][T11074]  </TASK>
[  174.422391][T11074] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  174.425459][T11074] CPU: 0 UID: 0 PID: 11074 Comm: syz.3.1876 Not tainted syzkaller #0 PREEMPT(full) 
[  174.429060][T11074] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  174.432577][T11074] Call Trace:
[  174.433711][T11074]  <TASK>
[  174.434714][T11074]  dump_stack_lvl+0x3d/0x1f0
[  174.436202][T11074]  vpanic+0x640/0x6f0
[  174.437476][T11074]  ? drv_unassign_vif_chanctx+0x247/0x850
[  174.439338][T11074]  panic+0xca/0xd0
[  174.440532][T11074]  ? __pfx_panic+0x10/0x10
[  174.442007][T11074]  check_panic_on_warn+0xab/0xb0
[  174.443618][T11074]  __warn+0xf6/0x3c0
[  174.444855][T11074]  ? __pfx_vprintk_emit+0x10/0x10
[  174.446438][T11074]  ? drv_unassign_vif_chanctx+0x247/0x850
[  174.448271][T11074]  report_bug+0x3c3/0x580
[  174.449697][T11074]  ? drv_unassign_vif_chanctx+0x247/0x850
[  174.451499][T11074]  handle_bug+0x184/0x210
[  174.453083][T11074]  exc_invalid_op+0x17/0x50
[  174.455068][T11074]  asm_exc_invalid_op+0x1a/0x20
[  174.456885][T11074] RIP: 0010:drv_unassign_vif_chanctx+0x247/0x850
[  174.458912][T11074] Code: 74 24 10 48 81 c6 20 01 00 00 48 89 74 24 10 e8 5f d7 ee f6 8b 54 24 04 48 8b 74 24 10 48 c7 c7 60 bd e2 8c e8 aa 0a ad f6 90 <0f> 0b 90 90 e8 40 d7 ee f6 4c 89 f2 48 b8 00 00 00 00 00 fc ff df
[  174.465341][T11074] RSP: 0018:ffffc90005d9f180 EFLAGS: 00010286
[  174.467282][T11074] RAX: 0000000000000000 RBX: ffff888051fd0d80 RCX: ffffc9000c001000
[  174.469821][T11074] RDX: 0000000000080000 RSI: ffffffff817b1ce5 RDI: 0000000000000001
[  174.472441][T11074] RBP: ffff888053a50e80 R08: 0000000000000001 R09: 0000000000000000
[  174.475330][T11074] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888051fd2ad8
[  174.477796][T11074] R13: 0000000000000000 R14: ffff888051fd17b8 R15: ffff888051fd2a80
[  174.480909][T11074]  ? __warn_printk+0x1a5/0x350
[  174.482817][T11074]  ieee80211_assign_link_chanctx+0x3f1/0xf00
[  174.484837][T11074]  __ieee80211_link_release_channel+0x273/0x4b0
[  174.486793][T11074]  ieee80211_link_release_channel+0x128/0x200
[  174.488761][T11074]  ? __pfx_ieee80211_uninit+0x10/0x10
[  174.490504][T11074]  unregister_netdevice_many_notify+0x1402/0x25c0
[  174.492630][T11074]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  174.494868][T11074]  ? __call_rcu_common.constprop.0+0x3f0/0xa10
[  174.496914][T11074]  ? find_held_lock+0x2b/0x80
[  174.498466][T11074]  unregister_netdevice_queue+0x305/0x3f0
[  174.500430][T11074]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  174.502613][T11074]  _cfg80211_unregister_wdev+0x64b/0x830
[  174.505013][T11074]  ieee80211_if_remove+0x250/0x400
[  174.507211][T11074]  ieee80211_del_iface+0x16/0x20
[  174.508894][T11074]  cfg80211_remove_virtual_intf+0xdd/0x2a0
[  174.510816][T11074]  nl80211_del_interface+0x106/0x190
[  174.512862][T11074]  genl_family_rcv_msg_doit+0x209/0x2f0
[  174.514824][T11074]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  174.516782][T11074]  ? bpf_lsm_capable+0x9/0x10
[  174.518296][T11074]  ? security_capable+0x7e/0x260
[  174.520356][T11074]  ? ns_capable+0xd7/0x110
[  174.522254][T11074]  genl_rcv_msg+0x55c/0x800
[  174.524209][T11074]  ? __pfx_genl_rcv_msg+0x10/0x10
[  174.526443][T11074]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  174.528715][T11074]  ? __pfx_nl80211_del_interface+0x10/0x10
[  174.531233][T11074]  ? __pfx_nl80211_post_doit+0x10/0x10
[  174.533564][T11074]  netlink_rcv_skb+0x158/0x420
[  174.535631][T11074]  ? __pfx_genl_rcv_msg+0x10/0x10
[  174.537270][T11074]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  174.539027][T11074]  ? netlink_deliver_tap+0x1ae/0xd30
[  174.540737][T11074]  genl_rcv+0x28/0x40
[  174.542013][T11074]  netlink_unicast+0x5aa/0x870
[  174.543593][T11074]  ? __pfx_netlink_unicast+0x10/0x10
[  174.545278][T11074]  netlink_sendmsg+0x8c8/0xdd0
[  174.546822][T11074]  ? __pfx_netlink_sendmsg+0x10/0x10
[  174.548579][T11074]  ____sys_sendmsg+0xa98/0xc70
[  174.550119][T11074]  ? copy_msghdr_from_user+0x10a/0x160
[  174.551924][T11074]  ? __pfx_____sys_sendmsg+0x10/0x10
[  174.553623][T11074]  ? __pfx_futex_wake_mark+0x10/0x10
[  174.555367][T11074]  ___sys_sendmsg+0x134/0x1d0
[  174.556920][T11074]  ? __pfx____sys_sendmsg+0x10/0x10
[  174.558592][T11074]  ? __lock_acquire+0x622/0x1c90
[  174.560727][T11074]  __sys_sendmsg+0x16d/0x220
[  174.562241][T11074]  ? __pfx___sys_sendmsg+0x10/0x10
[  174.563983][T11074]  ? __x64_sys_futex+0x1e0/0x4c0
[  174.565740][T11074]  do_syscall_64+0xcd/0xfa0
[  174.567326][T11074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.569329][T11074] RIP: 0033:0x7ff60978f7c9
[  174.570743][T11074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.577566][T11074] RSP: 002b:00007ff60a604038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  174.581052][T11074] RAX: ffffffffffffffda RBX: 00007ff6099e5fa0 RCX: 00007ff60978f7c9
[  174.584384][T11074] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000005
[  174.587700][T11074] RBP: 00007ff609813f91 R08: 0000000000000000 R09: 0000000000000000
[  174.590478][T11074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  174.592976][T11074] R13: 00007ff6099e6038 R14: 00007ff6099e5fa0 R15: 00007ffc20ffbf98
[  174.595445][T11074]  </TASK>
[  174.597208][T11074] Kernel Offset: disabled
[  174.598588][T11074] Rebooting in 86400 seconds..