last executing test programs:

6.499322924s ago: executing program 1 (id=3129):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'ip6gre0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newqdisc={0x78, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{}, 0x0, 0x0, 0x0, 0x634, 0x0, 0x16}}}]}, 0x78}}, 0x0)

6.499042231s ago: executing program 1 (id=3130):
r0 = gettid()
r1 = epoll_create(0x400)
socket(0x10, 0x3, 0x9)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0xde02})
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_usb_disconnect(0xffffffffffffffff)
preadv(r3, &(0x7f00000002c0)=[{&(0x7f0000000300)=""/133, 0x85}], 0x1, 0x0, 0x0)
kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, 0xffffffffffffffff, &(0x7f0000000080)={r1})
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)

4.60019189s ago: executing program 0 (id=3145):
unshare(0x22020400)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
listen(r0, 0x101)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r1, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000007c0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{0x0}], 0x1}}], 0x1, 0x931766f6319eed40)
connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @dev}, 0x3a)
sendmmsg$inet(r1, &(0x7f0000000d00)=[{{&(0x7f0000000240)={0x2, 0x4e24, @private=0xa010102}, 0x10, &(0x7f0000000400)=[{&(0x7f0000000300)=':', 0x1}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x88}}, {{0x0, 0x0, 0x0}}], 0x3, 0x4000)
close(r1)

4.150125473s ago: executing program 1 (id=3146):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000cc0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r3, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="2508007a0000000000000700000008000300", @ANYRES32=r5, @ANYRESOCT=r0], 0x54}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

3.929781853s ago: executing program 3 (id=3147):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r0, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000003f00000008000300", @ANYRES32=r1, @ANYBLOB="18005e800800020000000000070001"], 0x34}}, 0x0)

3.880725318s ago: executing program 3 (id=3148):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x12, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="18020000000000000000000000000000850000003100000095"], &(0x7f0000000480)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

3.880550048s ago: executing program 3 (id=3149):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000080)="0fae8e593e0fc77d913e0f804900baf80c66b86fbf298266efbafc0cb000eeb84b078ed8baf80c66b84e29cf8d66efbafc0cedb800078ed80f07b8d8038ec86764670fc71d0001c0fe", 0x49}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x0)

3.739528314s ago: executing program 0 (id=3150):
r0 = epoll_create1(0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
writev(r1, &(0x7f0000000180)=[{&(0x7f0000000000)="9c", 0xffffff7d}], 0x1)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100))
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f00000000c0)={0x2000000e})

3.558678663s ago: executing program 3 (id=3155):
memfd_create(0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
mlockall(0x1)
write$P9_RSETATTR(0xffffffffffffffff, 0x0, 0x0)
syz_clone(0x0, 0x0, 0xfffffffffffffff4, 0x0, 0x0, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0)

3.303720012s ago: executing program 1 (id=3156):
mlockall(0x1)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
dup3(r0, 0xffffffffffffffff, 0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(0xffffffffffffffff, 0x0, 0x0)
openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
mlockall(0x1)
setsockopt$inet_tcp_TLS_TX(0xffffffffffffffff, 0x6, 0x1, 0x0, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f0000ff5000/0x3000)=nil)
mknodat$loop(0xffffffffffffffff, 0x0, 0x2, 0x1)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
ioctl$TCGETS2(0xffffffffffffffff, 0x802c542a, 0x0)

2.842356657s ago: executing program 0 (id=3157):
mlockall(0x1)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0, 0x3)
openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x361380, 0x0)

2.210418124s ago: executing program 3 (id=3158):
mlockall(0x1)
mremap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f0000ff5000/0x3000)=nil)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
r0 = msgget$private(0x0, 0x0)
msgctl$MSG_STAT_ANY(r0, 0xd, 0x0)

1.711736678s ago: executing program 2 (id=3160):
mlockall(0x1)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlockall(0x4)

1.510443835s ago: executing program 0 (id=3161):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0x541b, &(0x7f0000000140)={<r1=>0xffffffffffffffff})
close(r1)
r2 = socket$netlink(0x10, 0x3, 0x0)
dup3(r2, 0xffffffffffffffff, 0x0)
getpeername$unix(r1, 0x0, &(0x7f0000007e80))

1.51014083s ago: executing program 1 (id=3162):
mlockall(0x1)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TIOCGSERIAL(0xffffffffffffffff, 0x541e, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlockall(0x4)

1.450579831s ago: executing program 0 (id=3163):
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20842, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = memfd_create(&(0x7f0000000200)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\x91\xfd\x00\x00\x00\x00\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}\xa0F\xdf\x14\xe1knh#\xcf)\x0f\xc8\xc0`\xaa8\xc7\xc8\x9d\xfdA\b\x10\x92(c\x10d\xee\xa3\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU\x05\x1dN~Ju\xfc)\xc98M\xcd\xfb\xcc\x82n=w=\xcdI\x83\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7 \x1d\xa1\xce\x8b\xac \xe8\x80\xdc\x02\xd7\x04\x9b\x9aL\x9f([4\x81\xf6\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6{\xf0(\xae', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000000)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
r2 = memfd_create(&(0x7f0000000580)='\xc0\x87:*\x18\xc1k\xa7\x87[\xa0o8\xaaK\xa5\xd3\v\x86\xca<\x7f\xfd6\x8d}\xd8\xf2G\xb8\xeae)\x90\x86\xe3\xf4\b\xe0\xfa\xb1\xd8N\xb2W\x06\xcd\xba{\x99$\xc3\x93u\x86\xfc\xc3\b\x1b\b\x1d\xcb\x8d}3lm8\xa57\xc9\x00HOA\xc8\x05kR\xfc\xcb[\xc7%\x88 \xeeQR\x9f\x81\x8b\xdc\xc7\xdc\xdem\xbe\x7f2\x11)W\x9c\x82\x91\x17\xd8\xda@4\x9f\xf5\xc5\xe3\x8d.\xd1=\xcf\xbf\x81\b\x8d%K\x1d\xe7_\xde\x87\xdd\xc1\xf0\x91\x1a!\x9c\xd3\v\xc9\x95d\xe3*\xa9\xfa\x99\x9d\xb8\x89>\xc9\xf2/\x13{\x1a\x7f\x00\x00\x00\x00+\x00\x02X\xb7KV\x90\xc3D\x82`\xea\x16\xc6\xcef\xab\x05\x19\x96\xb9_6*-\xf3\x8c\x9a\x15\x9c\xf5\xb4O\x17@d\x81+\xf6\xe6+\xed\r\xd2\xb3\xaa\x9b\x7fC\'\xa2\xf6\x12\xa1\x15Punfo\x7f\vG\x0e.\xce\xd8h\xb9p2\xccC\xbaH\xc4\xdc\xe2\xa1%)\x85\xc7O]\'9\x92\xad\xfbJ\x02\x1d\x91-\xc3\x0e\t&\xbd\xeb\x05\x9f\t5\x06\xdd\xaf\x84\xf4\"\x13\xcf\xe5\x93D\x8d~\x01\t\x00\x00\xaa\xc4F\xc1\xc08\x94\xe6\xe5\x1f\xa7\xf6\xcaA\x90T\x1b\xe6\xb9\xe7\xff\xc5H\x04\x8d\xca\xad\x17UlY\x9a}\r4\xac\x93\xac\v2\xc6\xf9\xbe\xfeI\x8b\xd4/\xf2\x1d\xf0`\xab\x1e\xcf\x7f\b\x94 2.{\xc1\xbe\x9bth~\xcb\xb9E\x10W\xed\xed51[\xc5\xeb\xb1ux\x94\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\xdem\xe3)q:3\xfa*\x98o\'f\xbcY\x8e?\xf9\x84y\x89Y\x1c]\xad$\x7fp\xf1\xa3\x99[\xff\x1f\x94\xc2\xdb\xbaG\xa6UD\x88Y6\x11Y\xd4\xd1x\x17/\v0\x9e\xde\x9a{]\xe2\x98W\xb9\x13\x17<\x8b!?\x8e\xbc\xae\xf9\xcc\b\x90n\x15\x7f\xd5WS\xfbN\xec)B\xe7R\xa5\xd7O\x83\x80}\xcc5\x99\xdb\xd6\xbd\x9c\x05l\xfc.\xf4\xbbeF\xa3\xea\x04\xf0\xd0\x00}\xfa}\xf1\x8bz\xca\xad\x8a\xd9IRV5\xa77\'\x1a\x1c\x89\xef:\xee\x10\xb2\xd6\xc8\xf4\xb5\xdd\xd8c!@JRY\t\x00Pjk\xf7\xa5d\xc2\xecn\xc9X\xfc\xd4D\x13\"\xb2\x06\xbd&\xf86\xddXv\xc9\x1322L\xaa\xa4\xb67\x89D\x93L\xc0\xa41\xf9sNG\x02\x83\xe6Bl\xd2\x02\xfb[\x82\xc0I\xb7\xf6}\xee}\x8b\x89\x04\x8a\'\xc7J\xca\xdf:\x8ft\xe0\xf8\a\xf6\xf6\xa6\x88\xfd\xc2\xa9\x14\xf3\xe1}\r.\a\x97\xf1A\x16\xbb1\xe3\xb7-\x96\xc1\x19\x85\x00\x00\x00\x00\x00', 0x0)
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x0)
fallocate(r2, 0x0, 0x0, 0x800000b)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)

819.238421ms ago: executing program 3 (id=3164):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240))
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, 0x0)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/73, &(0x7f0000000880)=""/72})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$VHOST_SET_LOG_BASE(r2, 0x4008af04, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0x11)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
clock_nanosleep(0x8, 0x0, &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet(0x2, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, 0x0, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
r6 = dup(r5)
write$UHID_INPUT(r6, &(0x7f00000030c0)={0xfc, {"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", 0xc980}}, 0x1006)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000340)={0x0, @in6={{0xa, 0x4e22, 0x4, @remote, 0x7}}, 0xff, 0x3, 0x9, 0xaf, 0xa0, 0x8}, &(0x7f0000000200)=0x9c)
ioctl$EXT4_IOC_MIGRATE(r1, 0xff03)

450.521185ms ago: executing program 2 (id=3165):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
r1 = syz_open_pts(r0, 0x10000)
ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000580)={0x6, 0xa, 0x2, 0x8, 0x5, "a3b044239c2fb048c94b544db4c89f7bbeb9e8"})

310.407715ms ago: executing program 2 (id=3166):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getpeername$inet(r0, &(0x7f0000000180)={0x2, 0x0, @loopback}, 0x0)

240.122274ms ago: executing program 2 (id=3167):
mq_open(0x0, 0x40, 0x48, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x88440, 0x0)
setxattr$trusted_overlay_origin(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000080), 0x0, 0x0, 0x0)

110.587546ms ago: executing program 2 (id=3168):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000073011100000000009500000000000000f96754a655718b389b9c5c8e81e1c3df94751ad2ee857dae40e64c901f88df739e2381b48200e3cfc55eccf7987a40da24f0b000eabd146a7478351bba67be8b1ccf40e3c8f5a5af7a5084cd2a1305d7e4560ea2cd9d0fd5add1f1725f227c1445ad057bf345935ca36967d0f147424a14a91c"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x20}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x8, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x100000}, 0x90)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x1f4, 0xd50, 0x1000000, &(0x7f0000000100)="ff412f66b0833efc8864968781", 0x0, 0x300, 0x300, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe, 0x2}, 0x50)

78.920897ms ago: executing program 0 (id=3169):
mq_open(&(0x7f0000000580)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0xc4, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001e00)={'bond0\x00', <r2=>0x0})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000080)={r2, 0x1, 0x6, @dev}, 0x10)
getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, 0x0, &(0x7f0000000080))
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x4328c1, 0x0)
ioctl$KDGKBDIACR(0xffffffffffffffff, 0x4b4a, 0x0)
r4 = syz_open_procfs$namespace(0x0, &(0x7f00000003c0)='ns/cgroup\x00')
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@ipv6_newaddrlabel={0x38, 0x48, 0x301, 0x0, 0x0, {}, [@IFAL_LABEL={0x8}, @IFAL_ADDRESS={0x14, 0x1, @ipv4={'\x00', '\xff\xff', @multicast1}}]}, 0x38}}, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f00000002c0), &(0x7f0000000400), 0x2, 0x2)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r7, 0xc0502100, &(0x7f0000000340)={<r8=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r7, 0xc0182101, &(0x7f0000000180)={r8, 0xf86})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r7, 0xc0502100, &(0x7f0000002780)={<r9=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r7, 0x40182103, &(0x7f0000000080)={r9, 0x3, r6, 0x5})
syz_emit_ethernet(0x0, 0x0, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000140)={<r12=>0x0, 0x10000}, &(0x7f00000001c0)=0x8)
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000240)={r12}, 0x8)
sendmsg$TIPC_CMD_ENABLE_BEARER(r10, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="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"], 0x34}}, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x400}, 0x0)
socket$igmp6(0xa, 0x3, 0x2)

249.835µs ago: executing program 2 (id=3170):
r0 = socket$caif_seqpacket(0x25, 0x5, 0x2)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r0, 0x8982, &(0x7f0000000040))
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'gre0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="380000001000010400"/20, @ANYRES32=r2, @ANYBLOB="00000000000000001800128008000100677265000c00028006000e000110"], 0x38}}, 0x0)

0s ago: executing program 1 (id=3171):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc)

kernel console output (not intermixed with test programs):

vc:  denied  { setopt } for  pid=12661 comm="syz.1.2224" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  462.818447][   T39] audit: type=1400 audit(1724644406.145:803): avc:  denied  { module_request } for  pid=12661 comm="syz.1.2224" kmod="netdev-wpan3" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  463.045320][  T833] tipc: Node number set to 4269801488
[  463.700832][   T39] audit: type=1400 audit(1724644407.025:804): avc:  denied  { read write } for  pid=12683 comm="syz.0.2227" name="nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  463.725815][   T39] audit: type=1400 audit(1724644407.035:805): avc:  denied  { open } for  pid=12683 comm="syz.0.2227" path="/dev/nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  464.620949][T12687] binder: 12686:12687 ioctl c00c620f 20000340 returned -22
[  464.634194][T12687] veth0_vlan: entered allmulticast mode
[  464.666963][T12687] veth0_vlan: left promiscuous mode
[  464.669851][T12687] veth0_vlan: entered promiscuous mode
[  465.368299][T12699] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2232'.
[  465.468976][T12706] FAULT_INJECTION: forcing a failure.
[  465.468976][T12706] name failslab, interval 1, probability 0, space 0, times 0
[  465.473782][T12706] CPU: 1 UID: 0 PID: 12706 Comm: syz.1.2233 Not tainted 6.11.0-rc5-syzkaller #0
[  465.477218][T12706] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  465.481333][T12706] Call Trace:
[  465.482629][T12706]  <TASK>
[  465.483684][T12706]  dump_stack_lvl+0x16c/0x1f0
[  465.485503][T12706]  should_fail_ex+0x497/0x5b0
[  465.487897][T12706]  ? fs_reclaim_acquire+0xae/0x160
[  465.490004][T12706]  should_failslab+0xc2/0x120
[  465.491969][T12706]  __kmalloc_node_track_caller_noprof+0xcf/0x430
[  465.494568][T12706]  ? rds_sendmsg+0x1afe/0x31a0
[  465.496652][T12706]  krealloc_noprof+0x5d/0x100
[  465.498755][T12706]  rds_sendmsg+0x1afe/0x31a0
[  465.500579][T12706]  ? __pfx___lock_acquire+0x10/0x10
[  465.502511][T12706]  ? __pfx_rds_sendmsg+0x10/0x10
[  465.504194][T12706]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[  465.506587][T12706]  ? ____sys_sendmsg+0xab5/0xc90
[  465.508818][T12706]  ____sys_sendmsg+0xab5/0xc90
[  465.510879][T12706]  ? __pfx_____sys_sendmsg+0x10/0x10
[  465.513057][T12706]  ? find_held_lock+0x2d/0x110
[  465.515193][T12706]  ? __pfx___lock_acquire+0x10/0x10
[  465.517388][T12706]  ___sys_sendmsg+0x135/0x1e0
[  465.519376][T12706]  ? __pfx____sys_sendmsg+0x10/0x10
[  465.521627][T12706]  ? ksys_write+0x21c/0x260
[  465.523560][T12706]  ? __fget_light+0x173/0x210
[  465.525515][T12706]  __sys_sendmsg+0x117/0x1f0
[  465.527503][T12706]  ? __pfx___sys_sendmsg+0x10/0x10
[  465.529901][T12706]  do_syscall_64+0xcd/0x250
[  465.531811][T12706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  465.534279][T12706] RIP: 0033:0x7f0e79979e79
[  465.536204][T12706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  465.544243][T12706] RSP: 002b:00007f0e793ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  465.547703][T12706] RAX: ffffffffffffffda RBX: 00007f0e79b15f80 RCX: 00007f0e79979e79
[  465.550793][T12706] RDX: 0000000000000000 RSI: 0000000020000f40 RDI: 0000000000000003
[  465.553765][T12706] RBP: 00007f0e793ff090 R08: 0000000000000000 R09: 0000000000000000
[  465.556738][T12706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  465.559985][T12706] R13: 0000000000000000 R14: 00007f0e79b15f80 R15: 00007ffe7e3c8528
[  465.563210][T12706]  </TASK>
[  467.729275][T12744] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2242'.
[  470.977611][T12784] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2252'.
[  470.981893][T12782] binder: 12780:12782 ioctl c00c620f 20000340 returned -22
[  471.037889][T12782] veth0_vlan: entered allmulticast mode
[  471.089867][T12789] FAULT_INJECTION: forcing a failure.
[  471.089867][T12789] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  471.096198][T12789] CPU: 0 UID: 0 PID: 12789 Comm: syz.1.2253 Not tainted 6.11.0-rc5-syzkaller #0
[  471.100276][T12789] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  471.104595][T12789] Call Trace:
[  471.106009][T12789]  <TASK>
[  471.107402][T12789]  dump_stack_lvl+0x16c/0x1f0
[  471.109491][T12789]  should_fail_ex+0x497/0x5b0
[  471.111739][T12789]  _copy_to_user+0x30/0xc0
[  471.113909][T12789]  simple_read_from_buffer+0xd0/0x160
[  471.116453][T12789]  proc_fail_nth_read+0x19e/0x280
[  471.118881][T12789]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  471.121782][T12789]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  471.124401][T12789]  vfs_read+0x1d4/0xbd0
[  471.126460][T12789]  ? ioctl_has_perm.constprop.0.isra.0+0x2f0/0x470
[  471.129512][T12789]  ? __fdget_pos+0xeb/0x180
[  471.131653][T12789]  ? __pfx_vfs_read+0x10/0x10
[  471.133977][T12789]  ? __pfx___mutex_lock+0x10/0x10
[  471.136360][T12789]  ? __fget_files+0x256/0x400
[  471.138257][T12789]  ksys_read+0x12f/0x260
[  471.140238][T12789]  ? __pfx_ksys_read+0x10/0x10
[  471.142359][T12789]  do_syscall_64+0xcd/0x250
[  471.143984][T12789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  471.146846][T12789] RIP: 0033:0x7f0e799788bc
[  471.148771][T12789] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  471.156685][T12789] RSP: 002b:00007f0e793ff030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  471.160485][T12789] RAX: ffffffffffffffda RBX: 00007f0e79b15f80 RCX: 00007f0e799788bc
[  471.163448][T12789] RDX: 000000000000000f RSI: 00007f0e793ff0a0 RDI: 0000000000000004
[  471.167035][T12789] RBP: 00007f0e793ff090 R08: 0000000000000000 R09: 0000000000000000
[  471.170811][T12789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  471.174001][T12789] R13: 0000000000000000 R14: 00007f0e79b15f80 R15: 00007ffe7e3c8528
[  471.177893][T12789]  </TASK>
[  471.195429][T12786] veth0_vlan: left promiscuous mode
[  471.199010][T12786] veth0_vlan: entered promiscuous mode
[  471.732629][T12805] FAULT_INJECTION: forcing a failure.
[  471.732629][T12805] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  471.738164][T12805] CPU: 3 UID: 0 PID: 12805 Comm: syz.1.2258 Not tainted 6.11.0-rc5-syzkaller #0
[  471.742423][T12805] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  471.746502][T12805] Call Trace:
[  471.747701][T12805]  <TASK>
[  471.748941][T12805]  dump_stack_lvl+0x16c/0x1f0
[  471.750741][T12805]  should_fail_ex+0x497/0x5b0
[  471.752661][T12805]  _copy_from_user+0x30/0xf0
[  471.754764][T12805]  __x64_sys_sendfile64+0x121/0x220
[  471.757016][T12805]  ? ksys_write+0x1ab/0x260
[  471.759010][T12805]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  471.761819][T12805]  do_syscall_64+0xcd/0x250
[  471.763797][T12805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  471.766353][T12805] RIP: 0033:0x7f0e79979e79
[  471.768216][T12805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  471.775294][T12805] RSP: 002b:00007f0e793de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  471.778586][T12805] RAX: ffffffffffffffda RBX: 00007f0e79b16058 RCX: 00007f0e79979e79
[  471.781986][T12805] RDX: 0000000020002080 RSI: 0000000000000003 RDI: 0000000000000004
[  471.785693][T12805] RBP: 00007f0e793de090 R08: 0000000000000000 R09: 0000000000000000
[  471.789326][T12805] R10: 000000000000023b R11: 0000000000000246 R12: 0000000000000001
[  471.792627][T12805] R13: 0000000000000000 R14: 00007f0e79b16058 R15: 00007ffe7e3c8528
[  471.795951][T12805]  </TASK>
[  475.569212][ T5350] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  475.574518][ T5350] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  475.579306][ T5350] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  475.584088][ T5350] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  475.588304][ T5350] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  475.591666][ T5350] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  475.624349][ T5344] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  475.629308][ T5344] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  475.632900][ T5344] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  475.639709][ T5344] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  475.643721][ T5344] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  475.648205][ T5344] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  476.328333][ T1167] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  476.334231][ T1167] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.418546][T12867] chnl_net:caif_netlink_parms(): no params data found
[  476.521251][ T1167] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  476.529433][ T1167] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.653481][T12867] bridge0: port 1(bridge_slave_0) entered blocking state
[  476.657998][T12867] bridge0: port 1(bridge_slave_0) entered disabled state
[  476.661070][T12867] bridge_slave_0: entered allmulticast mode
[  476.664923][T12867] bridge_slave_0: entered promiscuous mode
[  476.694356][ T1167] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  476.706675][ T1167] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.725673][T12867] bridge0: port 2(bridge_slave_1) entered blocking state
[  476.729116][T12867] bridge0: port 2(bridge_slave_1) entered disabled state
[  476.732334][T12867] bridge_slave_1: entered allmulticast mode
[  476.736358][T12867] bridge_slave_1: entered promiscuous mode
[  476.890674][ T1167] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  476.896785][ T1167] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.924299][T12867] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  476.943307][T12867] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  477.043280][T12867] team0: Port device team_slave_0 added
[  477.049836][T12867] team0: Port device team_slave_1 added
[  477.080486][T12885] kernel profiling enabled (shift: 17)
[  477.085430][   T39] audit: type=1400 audit(1724644420.405:806): avc:  denied  { connect } for  pid=12884 comm="syz.3.2278" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  477.103068][   T39] audit: type=1400 audit(1724644420.415:807): avc:  denied  { open } for  pid=12889 comm="syz.0.2277" path="/dev/ptyq4" dev="devtmpfs" ino=133 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  477.107562][T12890] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  477.114075][   T39] audit: type=1400 audit(1724644420.425:808): avc:  denied  { ioctl } for  pid=12889 comm="syz.0.2277" path="/dev/ptyq4" dev="devtmpfs" ino=133 ioctlcmd=0x5414 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  477.154509][   T39] audit: type=1400 audit(1724644420.475:809): avc:  denied  { read } for  pid=12889 comm="syz.0.2277" name="btrfs-control" dev="devtmpfs" ino=1152 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  477.171298][   T39] audit: type=1400 audit(1724644420.475:810): avc:  denied  { open } for  pid=12889 comm="syz.0.2277" path="/dev/btrfs-control" dev="devtmpfs" ino=1152 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  477.219590][T12867] batman_adv: batadv0: Adding interface: batadv_slave_0
[  477.222773][T12867] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  477.232284][T12867] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  477.251193][T12867] batman_adv: batadv0: Adding interface: batadv_slave_1
[  477.254366][T12867] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  477.264874][T12867] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  477.315433][ T1167] bridge_slave_1: left allmulticast mode
[  477.317486][ T1167] bridge_slave_1: left promiscuous mode
[  477.320141][ T1167] bridge0: port 2(bridge_slave_1) entered disabled state
[  477.324950][ T1167] bridge_slave_0: left allmulticast mode
[  477.332119][ T1167] bridge_slave_0: left promiscuous mode
[  477.334741][ T1167] bridge0: port 1(bridge_slave_0) entered disabled state
[  477.660253][ T5350] Bluetooth: hci2: command tx timeout
[  477.720925][ T1167] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  477.732564][ T1167] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  477.745627][ T1167] bond0 (unregistering): Released all slaves
[  477.813860][T12867] hsr_slave_0: entered promiscuous mode
[  477.825271][T12867] hsr_slave_1: entered promiscuous mode
[  477.840154][T12867] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  477.843348][T12867] Cannot create hsr debugfs directory
[  478.230997][ T1167] hsr_slave_0: left promiscuous mode
[  478.234758][ T1167] hsr_slave_1: left promiscuous mode
[  478.240149][ T1167] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  478.243852][ T1167] batman_adv: batadv0: Removing interface: batadv_slave_0
[  478.251109][ T1167] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  478.255110][ T1167] batman_adv: batadv0: Removing interface: batadv_slave_1
[  478.306014][ T1167] veth1_macvtap: left promiscuous mode
[  478.309318][ T1167] veth0_macvtap: left promiscuous mode
[  478.311839][ T1167] veth1_vlan: left promiscuous mode
[  478.314804][ T1167] veth0_vlan: left promiscuous mode
[  479.591356][ T1167] team0 (unregistering): Port device team_slave_1 removed
[  479.697677][ T1167] team0 (unregistering): Port device team_slave_0 removed
[  479.735300][ T5350] Bluetooth: hci2: command tx timeout
[  480.827149][T12924] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  480.880382][T12867] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  480.894483][T12867] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  480.952007][T12867] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  480.976411][T12867] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  481.106111][ T1167] IPVS: stop unused estimator thread 0...
[  481.109664][T12867] 8021q: adding VLAN 0 to HW filter on device bond0
[  481.141981][T12867] 8021q: adding VLAN 0 to HW filter on device team0
[  481.159590][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[  481.162769][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[  481.179357][   T83] bridge0: port 2(bridge_slave_1) entered blocking state
[  481.182675][   T83] bridge0: port 2(bridge_slave_1) entered forwarding state
[  481.303697][    C3] vkms_vblank_simulate: vblank timer overrun
[  481.465809][T12867] 8021q: adding VLAN 0 to HW filter on device batadv0
[  481.516504][T12867] veth0_vlan: entered promiscuous mode
[  481.526461][T12867] veth1_vlan: entered promiscuous mode
[  481.554433][T12867] veth0_macvtap: entered promiscuous mode
[  481.561842][T12867] veth1_macvtap: entered promiscuous mode
[  481.579528][T12867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  481.583944][T12867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  481.589127][T12867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  481.593512][T12867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  481.598052][T12867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  481.602382][T12867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  481.609664][T12867] batman_adv: batadv0: Interface activated: batadv_slave_0
[  481.618434][T12867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  481.622818][T12867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  481.632911][T12867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  481.637392][T12867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  481.641255][T12867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  481.648962][T12867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  481.668041][T12867] batman_adv: batadv0: Interface activated: batadv_slave_1
[  481.677244][T12867] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  481.681518][T12867] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  481.685745][T12867] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  481.689614][T12867] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  481.816763][ T5350] Bluetooth: hci2: command tx timeout
[  481.846758][ T1114] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  481.850256][ T1114] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  481.903041][   T83] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  481.907907][   T83] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  482.852216][T12943] block nbd2: shutting down sockets
[  483.885513][   T39] audit: type=1400 audit(1724644427.215:811): avc:  denied  { block_suspend } for  pid=12958 comm="syz.3.2302" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  483.975405][ T5350] Bluetooth: hci2: command tx timeout
[  484.038928][   T39] audit: type=1326 audit(1724644427.365:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12958 comm="syz.3.2302" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1c9c579e79 code=0x0
[  484.260538][T12971] sp0: Synchronizing with TNC
[  489.482533][T13053] FAULT_INJECTION: forcing a failure.
[  489.482533][T13053] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  489.488307][T13053] CPU: 1 UID: 0 PID: 13053 Comm: syz.1.2317 Not tainted 6.11.0-rc5-syzkaller #0
[  489.491705][T13053] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  489.495316][T13053] Call Trace:
[  489.496785][T13053]  <TASK>
[  489.498140][T13053]  dump_stack_lvl+0x16c/0x1f0
[  489.500227][T13053]  should_fail_ex+0x497/0x5b0
[  489.502277][T13053]  _copy_from_iter+0x2a1/0x1150
[  489.504439][T13053]  ? __alloc_skb+0x1fe/0x380
[  489.506456][T13053]  ? __pfx__copy_from_iter+0x10/0x10
[  489.509165][T13053]  ? __virt_addr_valid+0x5e/0x590
[  489.511369][T13053]  ? __phys_addr_symbol+0x30/0x80
[  489.513583][T13053]  ? __check_object_size+0x497/0x720
[  489.515878][T13053]  netlink_sendmsg+0x813/0xd70
[  489.517988][T13053]  ? __pfx_netlink_sendmsg+0x10/0x10
[  489.520292][T13053]  ? __import_iovec+0x1fd/0x6e0
[  489.522004][T13053]  ____sys_sendmsg+0xab5/0xc90
[  489.523960][T13053]  ? copy_msghdr_from_user+0x10b/0x160
[  489.526348][T13053]  ? __pfx_____sys_sendmsg+0x10/0x10
[  489.528922][T13053]  ? find_held_lock+0x2d/0x110
[  489.531016][T13053]  ? __pfx___lock_acquire+0x10/0x10
[  489.533319][T13053]  ___sys_sendmsg+0x135/0x1e0
[  489.535401][T13053]  ? __pfx____sys_sendmsg+0x10/0x10
[  489.537581][T13053]  ? ksys_write+0x21c/0x260
[  489.539558][T13053]  ? __fget_light+0x173/0x210
[  489.541641][T13053]  __sys_sendmsg+0x117/0x1f0
[  489.543684][T13053]  ? __pfx___sys_sendmsg+0x10/0x10
[  489.545942][T13053]  do_syscall_64+0xcd/0x250
[  489.548142][T13053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.550246][T13053] RIP: 0033:0x7f0e79979e79
[  489.552086][T13053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  489.560124][T13053] RSP: 002b:00007f0e793ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  489.563728][T13053] RAX: ffffffffffffffda RBX: 00007f0e79b15f80 RCX: 00007f0e79979e79
[  489.567160][T13053] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  489.570316][T13053] RBP: 00007f0e793ff090 R08: 0000000000000000 R09: 0000000000000000
[  489.573751][T13053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  489.577182][T13053] R13: 0000000000000000 R14: 00007f0e79b15f80 R15: 00007ffe7e3c8528
[  489.579971][T13053]  </TASK>
[  490.954185][T13078] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2326'.
[  490.965960][T13078] FAULT_INJECTION: forcing a failure.
[  490.965960][T13078] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  490.972173][T13078] CPU: 2 UID: 0 PID: 13078 Comm: syz.2.2326 Not tainted 6.11.0-rc5-syzkaller #0
[  490.976263][T13078] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  490.980919][T13078] Call Trace:
[  490.982372][T13078]  <TASK>
[  490.983666][T13078]  dump_stack_lvl+0x16c/0x1f0
[  490.985785][T13078]  should_fail_ex+0x497/0x5b0
[  490.987932][T13078]  _copy_from_user+0x30/0xf0
[  490.989968][T13078]  input_event_from_user+0x134/0x3b0
[  490.992264][T13078]  ? __pfx_input_event_from_user+0x10/0x10
[  490.994840][T13078]  ? __pfx___might_resched+0x10/0x10
[  490.997148][T13078]  ? input_inject_event+0x51/0x370
[  490.999743][T13078]  evdev_write+0x374/0x750
[  491.001984][T13078]  ? __pfx_evdev_write+0x10/0x10
[  491.004153][T13078]  ? security_file_permission+0x98/0xc0
[  491.006505][T13078]  ? __pfx_evdev_write+0x10/0x10
[  491.008719][T13078]  vfs_write+0x29a/0x1140
[  491.010921][T13078]  ? __pfx_vfs_write+0x10/0x10
[  491.013020][T13078]  ? __fget_files+0x256/0x400
[  491.015111][T13078]  ? __fget_light+0x173/0x210
[  491.017221][T13078]  ksys_write+0x1f8/0x260
[  491.019451][T13078]  ? __pfx_ksys_write+0x10/0x10
[  491.021637][T13078]  do_syscall_64+0xcd/0x250
[  491.023748][T13078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  491.026732][T13078] RIP: 0033:0x7f2ed6179e79
[  491.028586][T13078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  491.037096][T13078] RSP: 002b:00007f2ed6f8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  491.040774][T13078] RAX: ffffffffffffffda RBX: 00007f2ed6315f80 RCX: 00007f2ed6179e79
[  491.044230][T13078] RDX: 000000000000fed1 RSI: 0000000020000300 RDI: 000000000000000c
[  491.047687][T13078] RBP: 00007f2ed6f8f090 R08: 0000000000000000 R09: 0000000000000000
[  491.051141][T13078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  491.054660][T13078] R13: 0000000000000000 R14: 00007f2ed6315f80 R15: 00007ffeccb7b638
[  491.058047][T13078]  </TASK>
[  492.380379][T13095] xt_CT: You must specify a L4 protocol and not use inversions on it
[  492.385614][   T39] audit: type=1400 audit(1724644435.705:813): avc:  denied  { map } for  pid=13094 comm="syz.3.2330" path="/dev/nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  492.397043][   T39] audit: type=1400 audit(1724644435.705:814): avc:  denied  { execute } for  pid=13094 comm="syz.3.2330" path="/dev/nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  495.526631][   T39] audit: type=1400 audit(1724644438.855:815): avc:  denied  { create } for  pid=13141 comm="syz.0.2345" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  495.707222][   T39] audit: type=1400 audit(1724644439.035:816): avc:  denied  { mount } for  pid=13150 comm="syz.0.2348" name="/" dev="rpc_pipefs" ino=42247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  497.972926][   T39] audit: type=1400 audit(1724644441.295:817): avc:  denied  { getopt } for  pid=13180 comm="syz.3.2356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  498.143869][T13189] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2359'.
[  498.351095][T13195] binder: 13194:13195 ioctl c0306201 0 returned -14
[  498.354445][T13195] FAULT_INJECTION: forcing a failure.
[  498.354445][T13195] name failslab, interval 1, probability 0, space 0, times 0
[  498.359935][T13195] CPU: 2 UID: 0 PID: 13195 Comm: syz.2.2361 Not tainted 6.11.0-rc5-syzkaller #0
[  498.363892][T13195] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  498.368483][T13195] Call Trace:
[  498.369986][T13195]  <TASK>
[  498.371304][T13195]  dump_stack_lvl+0x16c/0x1f0
[  498.373399][T13195]  should_fail_ex+0x497/0x5b0
[  498.375445][T13195]  ? fs_reclaim_acquire+0xae/0x160
[  498.377680][T13195]  should_failslab+0xc2/0x120
[  498.379728][T13195]  __kmalloc_noprof+0xcb/0x400
[  498.381847][T13195]  ? d_absolute_path+0x137/0x1b0
[  498.384056][T13195]  tomoyo_encode2+0x100/0x3e0
[  498.386138][T13195]  tomoyo_encode+0x29/0x50
[  498.387916][T13195]  tomoyo_realpath_from_path+0x19d/0x720
[  498.390260][T13195]  tomoyo_path_number_perm+0x245/0x590
[  498.392575][T13195]  ? tomoyo_path_number_perm+0x232/0x590
[  498.394761][T13195]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  498.397120][T13195]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  498.399627][T13195]  ? __fget_files+0x256/0x400
[  498.401750][T13195]  security_file_ioctl+0x75/0xc0
[  498.403935][T13195]  __x64_sys_ioctl+0xbb/0x220
[  498.406064][T13195]  do_syscall_64+0xcd/0x250
[  498.408099][T13195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  498.410748][T13195] RIP: 0033:0x7f2ed6179e79
[  498.412540][T13195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  498.420979][T13195] RSP: 002b:00007f2ed6f8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  498.424645][T13195] RAX: ffffffffffffffda RBX: 00007f2ed6315f80 RCX: 00007f2ed6179e79
[  498.428079][T13195] RDX: 0000000020000280 RSI: 00000000c0306201 RDI: 0000000000000003
[  498.431575][T13195] RBP: 00007f2ed6f8f090 R08: 0000000000000000 R09: 0000000000000000
[  498.435045][T13195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  498.438504][T13195] R13: 0000000000000000 R14: 00007f2ed6315f80 R15: 00007ffeccb7b638
[  498.441981][T13195]  </TASK>
[  498.447295][T13195] ERROR: Out of memory at tomoyo_realpath_from_path.
[  500.117991][   T39] audit: type=1400 audit(1724644443.445:818): avc:  denied  { getopt } for  pid=13217 comm="syz.1.2369" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  500.119219][T13218] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  500.144098][T13220] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  500.726516][ T5378] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  500.917203][ T5378] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  500.924259][ T5378] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  500.929347][ T5378] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  500.934134][ T5378] usb 6-1: config 0 interface 0 has no altsetting 0
[  500.955103][ T5378] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  500.958906][ T5378] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  500.963388][ T5378] usb 6-1: config 0 interface 0 has no altsetting 0
[  500.967864][ T5378] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  500.971883][ T5378] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  500.976301][ T5378] usb 6-1: config 0 interface 0 has no altsetting 0
[  500.980564][ T5378] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  500.984229][ T5378] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  500.989409][ T5378] usb 6-1: config 0 interface 0 has no altsetting 0
[  501.005395][ T5378] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  501.009248][ T5378] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  501.029107][ T5378] usb 6-1: config 0 interface 0 has no altsetting 0
[  501.035801][ T5378] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  501.039636][ T5378] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  501.044289][ T5378] usb 6-1: config 0 interface 0 has no altsetting 0
[  501.048883][ T5378] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  501.052570][ T5378] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  501.056960][ T5378] usb 6-1: config 0 interface 0 has no altsetting 0
[  501.061351][ T5378] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  501.064519][ T5378] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  501.069412][ T5378] usb 6-1: config 0 interface 0 has no altsetting 0
[  501.075807][ T5378] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  501.079847][ T5378] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  501.083815][ T5378] usb 6-1: Product: syz
[  501.085973][ T5378] usb 6-1: Manufacturer: syz
[  501.088598][ T5378] usb 6-1: SerialNumber: syz
[  501.092694][ T5378] usb 6-1: config 0 descriptor??
[  501.098584][ T5378] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0
[  503.716697][ T5378] usb 6-1: USB disconnect, device number 9
[  503.729569][ T5378] yurex 6-1:0.0: USB YUREX #0 now disconnected
[  504.372335][T13288] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2388'.
[  504.375881][T13288] veth0_to_bridge: entered allmulticast mode
[  505.868533][T13298] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  505.871353][T13298] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  506.758147][T13319] netlink: 'syz.0.2397': attribute type 4 has an invalid length.
[  506.917684][T13319] fuse: Bad value for 'fd'
[  507.104385][   T39] audit: type=1400 audit(1724644450.425:819): avc:  denied  { append } for  pid=13323 comm="syz.0.2399" name="card0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  507.931667][ T1378] ieee802154 phy0 wpan0: encryption failed: -22
[  507.934695][ T1378] ieee802154 phy1 wpan1: encryption failed: -22
[  509.909747][T13362] FAULT_INJECTION: forcing a failure.
[  509.909747][T13362] name failslab, interval 1, probability 0, space 0, times 0
[  509.915042][T13362] CPU: 2 UID: 0 PID: 13362 Comm: syz.0.2409 Not tainted 6.11.0-rc5-syzkaller #0
[  509.918970][T13362] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  509.923789][T13362] Call Trace:
[  509.925140][T13362]  <TASK>
[  509.926381][T13362]  dump_stack_lvl+0x16c/0x1f0
[  509.928394][T13362]  should_fail_ex+0x497/0x5b0
[  509.930483][T13362]  ? fs_reclaim_acquire+0xae/0x160
[  509.932477][T13362]  should_failslab+0xc2/0x120
[  509.934490][T13362]  __kmalloc_noprof+0xcb/0x400
[  509.936631][T13362]  tomoyo_encode2+0x100/0x3e0
[  509.938624][T13362]  tomoyo_encode+0x29/0x50
[  509.940496][T13362]  tomoyo_realpath_from_path+0x19d/0x720
[  509.942559][T13362]  ? tomoyo_profile+0x47/0x60
[  509.944174][T13362]  tomoyo_path_number_perm+0x245/0x590
[  509.946091][T13362]  ? tomoyo_path_number_perm+0x232/0x590
[  509.948382][T13362]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  509.950948][T13362]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  509.953444][T13362]  ? __fget_files+0x256/0x400
[  509.955220][T13362]  security_file_ioctl+0x75/0xc0
[  509.957527][T13362]  __x64_sys_ioctl+0xbb/0x220
[  509.959658][T13362]  do_syscall_64+0xcd/0x250
[  509.961757][T13362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  509.964362][T13362] RIP: 0033:0x7f72c0b79e79
[  509.966164][T13362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  509.973885][T13362] RSP: 002b:00007f72c194c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  509.977616][T13362] RAX: ffffffffffffffda RBX: 00007f72c0d15f80 RCX: 00007f72c0b79e79
[  509.980828][T13362] RDX: 0000000020000f80 RSI: 0000000000008946 RDI: 0000000000000003
[  509.984203][T13362] RBP: 00007f72c194c090 R08: 0000000000000000 R09: 0000000000000000
[  509.987683][T13362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  509.991174][T13362] R13: 0000000000000000 R14: 00007f72c0d15f80 R15: 00007ffc22b88ed8
[  509.994414][T13362]  </TASK>
[  509.995830][    C2] vkms_vblank_simulate: vblank timer overrun
[  510.000227][T13362] ERROR: Out of memory at tomoyo_realpath_from_path.
[  512.960561][T13409] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  512.979656][   T39] audit: type=1400 audit(1724644456.305:820): avc:  denied  { ioctl } for  pid=13401 comm="syz.3.2420" path="socket:[42527]" dev="sockfs" ino=42527 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  514.813895][T13441] FAULT_INJECTION: forcing a failure.
[  514.813895][T13441] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  514.819584][T13441] CPU: 3 UID: 0 PID: 13441 Comm: syz.3.2430 Not tainted 6.11.0-rc5-syzkaller #0
[  514.822907][T13441] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  514.827055][T13441] Call Trace:
[  514.828447][T13441]  <TASK>
[  514.829599][T13441]  dump_stack_lvl+0x16c/0x1f0
[  514.831375][T13441]  should_fail_ex+0x497/0x5b0
[  514.833276][T13441]  _copy_to_user+0x30/0xc0
[  514.835202][T13441]  simple_read_from_buffer+0xd0/0x160
[  514.837406][T13441]  proc_fail_nth_read+0x19e/0x280
[  514.839521][T13441]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  514.841601][T13441]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  514.843618][T13441]  vfs_read+0x1d4/0xbd0
[  514.845169][T13441]  ? ip6_datagram_connect+0x38/0x50
[  514.847313][T13441]  ? __fdget_pos+0xeb/0x180
[  514.849171][T13441]  ? inet_dgram_connect+0x166/0x2f0
[  514.851409][T13441]  ? __pfx_vfs_read+0x10/0x10
[  514.853185][T13441]  ? __pfx___mutex_lock+0x10/0x10
[  514.855361][T13441]  ? __fget_files+0x256/0x400
[  514.857492][T13441]  ksys_read+0x12f/0x260
[  514.859391][T13441]  ? __pfx_ksys_read+0x10/0x10
[  514.861557][T13441]  do_syscall_64+0xcd/0x250
[  514.863635][T13441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.866264][T13441] RIP: 0033:0x7f1c9c5788bc
[  514.868264][T13441] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  514.876550][T13441] RSP: 002b:00007f1c9d420030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  514.880197][T13441] RAX: ffffffffffffffda RBX: 00007f1c9c715f80 RCX: 00007f1c9c5788bc
[  514.883556][T13441] RDX: 000000000000000f RSI: 00007f1c9d4200a0 RDI: 0000000000000004
[  514.886723][T13441] RBP: 00007f1c9d420090 R08: 0000000000000000 R09: 0000000000000000
[  514.890028][T13441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  514.893493][T13441] R13: 0000000000000000 R14: 00007f1c9c715f80 R15: 00007ffc8c21c178
[  514.896260][T13441]  </TASK>
[  514.897746][    C3] vkms_vblank_simulate: vblank timer overrun
[  516.118732][T13458] netlink: 'syz.1.2435': attribute type 4 has an invalid length.
[  516.394314][T13458] fuse: Bad value for 'fd'
[  516.496929][T13463] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2436'.
[  516.532306][   T39] audit: type=1400 audit(1724644459.855:821): avc:  denied  { bind } for  pid=13461 comm="syz.1.2436" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  517.953501][   T39] audit: type=1400 audit(1724644461.275:822): avc:  denied  { connect } for  pid=13485 comm="syz.1.2444" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  518.005591][   T39] audit: type=1400 audit(1724644461.335:823): avc:  denied  { write } for  pid=13485 comm="syz.1.2444" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  519.123192][T13504] FAULT_INJECTION: forcing a failure.
[  519.123192][T13504] name failslab, interval 1, probability 0, space 0, times 0
[  519.128923][T13504] CPU: 3 UID: 0 PID: 13504 Comm: syz.3.2449 Not tainted 6.11.0-rc5-syzkaller #0
[  519.132904][T13504] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  519.137464][T13504] Call Trace:
[  519.138902][T13504]  <TASK>
[  519.140166][T13504]  dump_stack_lvl+0x16c/0x1f0
[  519.142178][T13504]  should_fail_ex+0x497/0x5b0
[  519.144218][T13504]  ? fs_reclaim_acquire+0xae/0x160
[  519.146445][T13504]  should_failslab+0xc2/0x120
[  519.148488][T13504]  kmem_cache_alloc_node_noprof+0x71/0x310
[  519.150970][T13504]  ? __alloc_skb+0x2b1/0x380
[  519.152989][T13504]  __alloc_skb+0x2b1/0x380
[  519.155021][T13504]  ? __pfx___alloc_skb+0x10/0x10
[  519.157247][T13504]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  519.159832][T13504]  netlink_alloc_large_skb+0x69/0x130
[  519.162194][T13504]  netlink_sendmsg+0x689/0xd70
[  519.164319][T13504]  ? __pfx_netlink_sendmsg+0x10/0x10
[  519.166591][T13504]  ? __import_iovec+0x1fd/0x6e0
[  519.168679][T13504]  ____sys_sendmsg+0xab5/0xc90
[  519.170686][T13504]  ? copy_msghdr_from_user+0x10b/0x160
[  519.173025][T13504]  ? __pfx_____sys_sendmsg+0x10/0x10
[  519.175333][T13504]  ? find_held_lock+0x2d/0x110
[  519.177414][T13504]  ? __pfx___lock_acquire+0x10/0x10
[  519.179672][T13504]  ___sys_sendmsg+0x135/0x1e0
[  519.181772][T13504]  ? __pfx____sys_sendmsg+0x10/0x10
[  519.184034][T13504]  ? ksys_write+0x21c/0x260
[  519.186106][T13504]  ? __fget_light+0x173/0x210
[  519.188150][T13504]  __sys_sendmsg+0x117/0x1f0
[  519.190177][T13504]  ? __pfx___sys_sendmsg+0x10/0x10
[  519.192470][T13504]  do_syscall_64+0xcd/0x250
[  519.194487][T13504]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.196949][T13504] RIP: 0033:0x7f1c9c579e79
[  519.198913][T13504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  519.207123][T13504] RSP: 002b:00007f1c9d420038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  519.210689][T13504] RAX: ffffffffffffffda RBX: 00007f1c9c715f80 RCX: 00007f1c9c579e79
[  519.214121][T13504] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000003
[  519.217504][T13504] RBP: 00007f1c9d420090 R08: 0000000000000000 R09: 0000000000000000
[  519.220853][T13504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  519.224119][T13504] R13: 0000000000000000 R14: 00007f1c9c715f80 R15: 00007ffc8c21c178
[  519.227527][T13504]  </TASK>
[  519.452775][T13511] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  520.010804][T13526] netlink: 188 bytes leftover after parsing attributes in process `syz.3.2454'.
[  520.014526][T13526] netlink: 'syz.3.2454': attribute type 1 has an invalid length.
[  520.017883][T13526] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2454'.
[  520.888019][T13535] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2457'.
[  524.256830][T13572] FAULT_INJECTION: forcing a failure.
[  524.256830][T13572] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  524.262280][T13572] CPU: 3 UID: 0 PID: 13572 Comm: syz.3.2467 Not tainted 6.11.0-rc5-syzkaller #0
[  524.265741][T13572] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  524.270139][T13572] Call Trace:
[  524.271555][T13572]  <TASK>
[  524.272994][T13572]  dump_stack_lvl+0x16c/0x1f0
[  524.275214][T13572]  should_fail_ex+0x497/0x5b0
[  524.277206][T13572]  _copy_to_user+0x30/0xc0
[  524.279223][T13572]  simple_read_from_buffer+0xd0/0x160
[  524.281492][T13572]  proc_fail_nth_read+0x19e/0x280
[  524.283825][T13572]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  524.286133][T13572]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  524.288634][T13572]  vfs_read+0x1d4/0xbd0
[  524.290762][T13572]  ? __fdget_pos+0xeb/0x180
[  524.292964][T13572]  ? __pfx_vfs_read+0x10/0x10
[  524.294993][T13572]  ? __pfx___mutex_lock+0x10/0x10
[  524.297424][T13572]  ? __fget_files+0x256/0x400
[  524.299538][T13572]  ksys_read+0x12f/0x260
[  524.301387][T13572]  ? __pfx_ksys_read+0x10/0x10
[  524.303482][T13572]  do_syscall_64+0xcd/0x250
[  524.306279][T13572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  524.308753][T13572] RIP: 0033:0x7f1c9c5788bc
[  524.310689][T13572] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  524.319685][T13572] RSP: 002b:00007f1c9d420030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  524.323698][T13572] RAX: ffffffffffffffda RBX: 00007f1c9c715f80 RCX: 00007f1c9c5788bc
[  524.327137][T13572] RDX: 000000000000000f RSI: 00007f1c9d4200a0 RDI: 0000000000000004
[  524.330468][T13572] RBP: 00007f1c9d420090 R08: 0000000000000000 R09: 0000000000000000
[  524.333735][T13572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  524.336993][T13572] R13: 0000000000000000 R14: 00007f1c9c715f80 R15: 00007ffc8c21c178
[  524.340327][T13572]  </TASK>
[  524.392161][   T39] audit: type=1400 audit(1724644467.715:824): avc:  denied  { ioctl } for  pid=13574 comm="syz.3.2468" path="socket:[43999]" dev="sockfs" ino=43999 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  524.738396][T13581] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2471'.
[  524.742252][T13581] veth0_to_bridge: entered allmulticast mode
[  528.206677][   T39] audit: type=1326 audit(1724644471.535:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13610 comm="syz.0.2480" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72c0b79e79 code=0x7ffc0000
[  528.223472][   T39] audit: type=1326 audit(1724644471.545:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13610 comm="syz.0.2480" exe="/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f72c0b79e79 code=0x7ffc0000
[  528.235290][   T39] audit: type=1326 audit(1724644471.545:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13610 comm="syz.0.2480" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72c0b79e79 code=0x7ffc0000
[  528.246701][   T39] audit: type=1326 audit(1724644471.545:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13610 comm="syz.0.2480" exe="/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f72c0b79e79 code=0x7ffc0000
[  528.256271][   T39] audit: type=1326 audit(1724644471.545:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13610 comm="syz.0.2480" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f72c0b70e27 code=0x7ffc0000
[  528.266471][   T39] audit: type=1326 audit(1724644471.545:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13610 comm="syz.0.2480" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f72c0b157e9 code=0x7ffc0000
[  528.278002][   T39] audit: type=1326 audit(1724644471.545:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13610 comm="syz.0.2480" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f72c0b70e27 code=0x7ffc0000
[  528.287732][   T39] audit: type=1326 audit(1724644471.545:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13610 comm="syz.0.2480" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f72c0b157e9 code=0x7ffc0000
[  528.301734][   T39] audit: type=1326 audit(1724644471.545:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13610 comm="syz.0.2480" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f72c0b70e27 code=0x7ffc0000
[  531.952716][   T39] kauditd_printk_skb: 319 callbacks suppressed
[  531.952734][   T39] audit: type=1400 audit(1724644475.275:1153): avc:  denied  { remount } for  pid=13665 comm="syz.1.2494" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  535.252373][T13715] FAULT_INJECTION: forcing a failure.
[  535.252373][T13715] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  535.259261][T13715] CPU: 2 UID: 0 PID: 13715 Comm: syz.3.2505 Not tainted 6.11.0-rc5-syzkaller #0
[  535.262543][T13715] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  535.266942][T13715] Call Trace:
[  535.268398][T13715]  <TASK>
[  535.269693][T13715]  dump_stack_lvl+0x16c/0x1f0
[  535.271723][T13715]  should_fail_ex+0x497/0x5b0
[  535.273742][T13715]  _copy_from_user+0x30/0xf0
[  535.275718][T13715]  copy_msghdr_from_user+0x99/0x160
[  535.278022][T13715]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  535.280577][T13715]  ? __lock_acquire+0x1620/0x3cb0
[  535.282815][T13715]  ___sys_sendmsg+0xff/0x1e0
[  535.284848][T13715]  ? __pfx____sys_sendmsg+0x10/0x10
[  535.287144][T13715]  ? __pfx___might_resched+0x10/0x10
[  535.289472][T13715]  ? __might_fault+0xe3/0x190
[  535.291537][T13715]  __sys_sendmmsg+0x1a1/0x450
[  535.293623][T13715]  ? __pfx___sys_sendmmsg+0x10/0x10
[  535.295895][T13715]  ? vfs_write+0x14d/0x1140
[  535.298008][T13715]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  535.300631][T13715]  ? fput+0x32/0x390
[  535.302383][T13715]  ? ksys_write+0x1ab/0x260
[  535.304389][T13715]  ? __pfx_ksys_write+0x10/0x10
[  535.306532][T13715]  __x64_sys_sendmmsg+0x9c/0x100
[  535.308705][T13715]  ? lockdep_hardirqs_on+0x7c/0x110
[  535.311005][T13715]  do_syscall_64+0xcd/0x250
[  535.313031][T13715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  535.315631][T13715] RIP: 0033:0x7f1c9c579e79
[  535.317610][T13715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  535.325941][T13715] RSP: 002b:00007f1c9d420038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  535.329582][T13715] RAX: ffffffffffffffda RBX: 00007f1c9c715f80 RCX: 00007f1c9c579e79
[  535.332864][T13715] RDX: 03ffffffffffff06 RSI: 00000000200038c0 RDI: 0000000000000003
[  535.336303][T13715] RBP: 00007f1c9d420090 R08: 0000000000000000 R09: 0000000000000000
[  535.339884][T13715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  535.343345][T13715] R13: 0000000000000000 R14: 00007f1c9c715f80 R15: 00007ffc8c21c178
[  535.346790][T13715]  </TASK>
[  535.811795][T13727] FAULT_INJECTION: forcing a failure.
[  535.811795][T13727] name failslab, interval 1, probability 0, space 0, times 0
[  535.818704][T13727] CPU: 3 UID: 0 PID: 13727 Comm: syz.2.2510 Not tainted 6.11.0-rc5-syzkaller #0
[  535.822509][T13727] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  535.826998][T13727] Call Trace:
[  535.828436][T13727]  <TASK>
[  535.829694][T13727]  dump_stack_lvl+0x16c/0x1f0
[  535.831676][T13727]  should_fail_ex+0x497/0x5b0
[  535.833651][T13727]  ? fs_reclaim_acquire+0xae/0x160
[  535.835778][T13727]  should_failslab+0xc2/0x120
[  535.837662][T13727]  __kmalloc_noprof+0xcb/0x400
[  535.839481][T13727]  ? d_absolute_path+0x137/0x1b0
[  535.841564][T13727]  tomoyo_encode2+0x100/0x3e0
[  535.843554][T13727]  tomoyo_encode+0x29/0x50
[  535.845449][T13727]  tomoyo_realpath_from_path+0x19d/0x720
[  535.847802][T13727]  tomoyo_path_number_perm+0x245/0x590
[  535.850095][T13727]  ? tomoyo_path_number_perm+0x232/0x590
[  535.852450][T13727]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  535.854968][T13727]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  535.857537][T13727]  ? __fget_files+0x256/0x400
[  535.859538][T13727]  security_file_ioctl+0x75/0xc0
[  535.861628][T13727]  __x64_sys_ioctl+0xbb/0x220
[  535.863629][T13727]  do_syscall_64+0xcd/0x250
[  535.865565][T13727]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  535.868044][T13727] RIP: 0033:0x7f2ed6179e79
[  535.869915][T13727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  535.877875][T13727] RSP: 002b:00007f2ed6f8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  535.881334][T13727] RAX: ffffffffffffffda RBX: 00007f2ed6315f80 RCX: 00007f2ed6179e79
[  535.884719][T13727] RDX: 0000000020000040 RSI: 00000000c0386105 RDI: 0000000000000003
[  535.887915][T13727] RBP: 00007f2ed6f8f090 R08: 0000000000000000 R09: 0000000000000000
[  535.891255][T13727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  535.894670][T13727] R13: 0000000000000000 R14: 00007f2ed6315f80 R15: 00007ffeccb7b638
[  535.897984][T13727]  </TASK>
[  535.906722][T13727] ERROR: Out of memory at tomoyo_realpath_from_path.
[  535.909502][T13727] trusted_key: encrypted_key: insufficient parameters specified
[  540.457487][T13776] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  540.463777][T13776] netlink: 'syz.0.2522': attribute type 2 has an invalid length.
[  540.472565][T13776] trusted_key: encrypted_key: insufficient parameters specified
[  540.602170][   T39] audit: type=1400 audit(1724644483.925:1154): avc:  denied  { getopt } for  pid=13781 comm="syz.1.2525" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  540.604871][T13782] vcan0: tx drop: invalid sa for name 0x0000000000000003
[  541.298341][   T39] audit: type=1326 audit(1724644484.625:1155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13796 comm="syz.2.2530" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  541.325291][   T39] audit: type=1326 audit(1724644484.625:1156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13796 comm="syz.2.2530" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  541.345321][   T39] audit: type=1326 audit(1724644484.625:1157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13796 comm="syz.2.2530" exe="/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  541.354947][   T39] audit: type=1326 audit(1724644484.625:1158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13796 comm="syz.2.2530" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  541.366312][   T39] audit: type=1326 audit(1724644484.625:1159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13796 comm="syz.2.2530" exe="/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  541.377148][   T39] audit: type=1326 audit(1724644484.625:1160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13796 comm="syz.2.2530" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2ed6170e27 code=0x7ffc0000
[  541.386560][   T39] audit: type=1326 audit(1724644484.625:1161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13796 comm="syz.2.2530" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2ed61157e9 code=0x7ffc0000
[  541.396540][   T39] audit: type=1326 audit(1724644484.625:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13796 comm="syz.2.2530" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2ed6170e27 code=0x7ffc0000
[  541.406615][   T39] audit: type=1326 audit(1724644484.625:1163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13796 comm="syz.2.2530" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2ed61157e9 code=0x7ffc0000
[  541.609645][ T5344] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  541.614015][T13801] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  541.618510][T13801] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  541.628733][T13801] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  541.633852][T13801] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  541.643890][T13801] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  541.651991][ T5350] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  541.675455][ T5350] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  541.680061][ T5350] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  541.685120][ T5350] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  541.690645][ T5350] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  541.694080][ T5350] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  541.717927][   T13] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  541.891138][   T13] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  541.948711][T13799] chnl_net:caif_netlink_parms(): no params data found
[  542.197433][T13799] bridge0: port 1(bridge_slave_0) entered blocking state
[  542.200373][T13799] bridge0: port 1(bridge_slave_0) entered disabled state
[  542.203378][T13799] bridge_slave_0: entered allmulticast mode
[  542.226596][T13799] bridge_slave_0: entered promiscuous mode
[  542.270500][   T13] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  542.285778][T13799] bridge0: port 2(bridge_slave_1) entered blocking state
[  542.288891][T13799] bridge0: port 2(bridge_slave_1) entered disabled state
[  542.291730][T13799] bridge_slave_1: entered allmulticast mode
[  542.297424][T13799] bridge_slave_1: entered promiscuous mode
[  542.358350][   T13] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  542.417196][T13799] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  542.424444][T13799] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  542.573264][T13799] team0: Port device team_slave_0 added
[  542.580159][T13799] team0: Port device team_slave_1 added
[  542.707707][T13799] batman_adv: batadv0: Adding interface: batadv_slave_0
[  542.710747][T13799] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  542.733704][T13799] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  542.752508][T13799] batman_adv: batadv0: Adding interface: batadv_slave_1
[  542.757676][T13799] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  542.773314][T13799] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  542.895483][   T13] bridge_slave_1: left allmulticast mode
[  542.899243][   T13] bridge_slave_1: left promiscuous mode
[  542.901324][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  542.942510][   T13] bridge_slave_0: left allmulticast mode
[  542.944615][   T13] bridge_slave_0: left promiscuous mode
[  542.948745][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  543.735598][T13801] Bluetooth: hci1: command tx timeout
[  544.472953][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  544.483866][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  544.493480][   T13] bond0 (unregistering): Released all slaves
[  544.594765][T13799] hsr_slave_0: entered promiscuous mode
[  544.600981][T13799] hsr_slave_1: entered promiscuous mode
[  544.607359][T13799] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  544.612459][T13799] Cannot create hsr debugfs directory
[  544.616182][   T13] tipc: Disabling bearer <udp:syz1>
[  544.640333][   T13] tipc: Left network mode
[  545.591540][   T13] hsr_slave_0: left promiscuous mode
[  545.594949][   T13] hsr_slave_1: left promiscuous mode
[  545.601476][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  545.604847][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  545.609291][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  545.612481][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  545.666618][   T13] veth1_macvtap: left promiscuous mode
[  545.670376][   T13] veth0_macvtap: left promiscuous mode
[  545.673330][   T13] veth1_vlan: left promiscuous mode
[  545.677095][   T13] veth0_vlan: left promiscuous mode
[  545.815274][T13801] Bluetooth: hci1: command tx timeout
[  547.530209][   T13] team0 (unregistering): Port device team_slave_1 removed
[  547.631985][   T13] team0 (unregistering): Port device team_slave_0 removed
[  547.896847][T13801] Bluetooth: hci1: command tx timeout
[  549.004772][T13799] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  549.115717][T13799] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  549.125479][T13799] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  549.139185][T13799] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  549.238141][T13799] 8021q: adding VLAN 0 to HW filter on device bond0
[  549.254469][T13799] 8021q: adding VLAN 0 to HW filter on device team0
[  549.265908][ T1117] bridge0: port 1(bridge_slave_0) entered blocking state
[  549.269503][ T1117] bridge0: port 1(bridge_slave_0) entered forwarding state
[  549.280566][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[  549.283629][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[  549.494506][T13799] 8021q: adding VLAN 0 to HW filter on device batadv0
[  549.558808][T13799] veth0_vlan: entered promiscuous mode
[  549.566230][T13799] veth1_vlan: entered promiscuous mode
[  549.620604][T13799] veth0_macvtap: entered promiscuous mode
[  549.626518][T13799] veth1_macvtap: entered promiscuous mode
[  549.636525][T13799] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  549.641122][T13799] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  549.645531][T13799] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  549.649992][T13799] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  549.661023][T13799] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  549.666004][T13799] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  549.672368][T13799] batman_adv: batadv0: Interface activated: batadv_slave_0
[  549.678927][T13799] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  549.683472][T13799] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  549.689039][T13799] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  549.694656][T13799] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  549.701651][T13799] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  549.705679][T13799] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  549.715705][T13799] batman_adv: batadv0: Interface activated: batadv_slave_1
[  549.744254][T13799] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  549.748853][T13799] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  549.944204][T13799] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  549.954658][T13799] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  550.015681][T13801] Bluetooth: hci1: command tx timeout
[  550.056222][ T1167] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  550.102506][ T1167] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  550.261131][ T1114] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  550.264814][ T1114] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  554.194716][   T39] kauditd_printk_skb: 3609 callbacks suppressed
[  554.194732][   T39] audit: type=1400 audit(1724644497.515:4773): avc:  denied  { accept } for  pid=13925 comm="syz.1.2560" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  554.227723][   T39] audit: type=1400 audit(1724644497.555:4774): avc:  denied  { connect } for  pid=13925 comm="syz.1.2560" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  554.259203][   T39] audit: type=1400 audit(1724644497.555:4775): avc:  denied  { name_connect } for  pid=13925 comm="syz.1.2560" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  558.614679][T14007] FAULT_INJECTION: forcing a failure.
[  558.614679][T14007] name failslab, interval 1, probability 0, space 0, times 0
[  558.620690][T14007] CPU: 0 UID: 0 PID: 14007 Comm: syz.1.2576 Not tainted 6.11.0-rc5-syzkaller #0
[  558.625045][T14007] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  558.629595][T14007] Call Trace:
[  558.631045][T14007]  <TASK>
[  558.632366][T14007]  dump_stack_lvl+0x16c/0x1f0
[  558.634513][T14007]  should_fail_ex+0x497/0x5b0
[  558.636586][T14007]  ? __pfx___ip_dev_find+0x10/0x10
[  558.638747][T14007]  should_failslab+0xc2/0x120
[  558.640757][T14007]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  558.643021][T14007]  ? dst_alloc+0x99/0x1a0
[  558.644755][T14007]  dst_alloc+0x99/0x1a0
[  558.646332][T14007]  rt_dst_alloc+0x35/0x3a0
[  558.648108][T14007]  ip_route_output_key_hash_rcu+0x8a5/0x2770
[  558.650620][T14007]  ip_route_output_key_hash+0x138/0x2e0
[  558.652979][T14007]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  558.655623][T14007]  ? __pfx_lock_release+0x10/0x10
[  558.657777][T14007]  ip_route_output_flow+0x27/0x150
[  558.660000][T14007]  udp_sendmsg+0x1d06/0x2b50
[  558.662035][T14007]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  558.664368][T14007]  ? __pfx_udp_sendmsg+0x10/0x10
[  558.666484][T14007]  ? avc_has_perm+0x11b/0x1c0
[  558.668804][T14007]  ? __pfx___up_read+0x10/0x10
[  558.670834][T14007]  ? sock_has_perm+0x25a/0x2f0
[  558.672864][T14007]  ? __pfx_sock_has_perm+0x10/0x10
[  558.675109][T14007]  ? __import_iovec+0x1fd/0x6e0
[  558.677266][T14007]  ? __pfx_udp_sendmsg+0x10/0x10
[  558.679546][T14007]  ? inet_sendmsg+0x105/0x140
[  558.681541][T14007]  inet_sendmsg+0x105/0x140
[  558.683464][T14007]  ____sys_sendmsg+0x992/0xc90
[  558.685461][T14007]  ? copy_msghdr_from_user+0x10b/0x160
[  558.687604][T14007]  ? __pfx_____sys_sendmsg+0x10/0x10
[  558.689600][T14007]  ? __pfx___lock_acquire+0x10/0x10
[  558.691514][T14007]  ___sys_sendmsg+0x135/0x1e0
[  558.693449][T14007]  ? __pfx____sys_sendmsg+0x10/0x10
[  558.695988][T14007]  ? __pfx_lock_release+0x10/0x10
[  558.698289][T14007]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  558.700732][T14007]  ? __fget_light+0x173/0x210
[  558.702784][T14007]  __sys_sendmmsg+0x1a1/0x450
[  558.704835][T14007]  ? __pfx___sys_sendmmsg+0x10/0x10
[  558.707326][T14007]  ? vfs_write+0x14d/0x1140
[  558.709272][T14007]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  558.711778][T14007]  ? fput+0x32/0x390
[  558.713437][T14007]  ? ksys_write+0x1ab/0x260
[  558.715377][T14007]  ? __pfx_ksys_write+0x10/0x10
[  558.717777][T14007]  __x64_sys_sendmmsg+0x9c/0x100
[  558.720015][T14007]  ? lockdep_hardirqs_on+0x7c/0x110
[  558.722283][T14007]  do_syscall_64+0xcd/0x250
[  558.724298][T14007]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  558.727258][T14007] RIP: 0033:0x7fd9b6d79e79
[  558.729224][T14007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  558.737340][T14007] RSP: 002b:00007fd9b7c0a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  558.740036][T14007] RAX: ffffffffffffffda RBX: 00007fd9b6f16058 RCX: 00007fd9b6d79e79
[  558.742955][T14007] RDX: 000000000800001d RSI: 0000000020007fc0 RDI: 0000000000000003
[  558.746503][T14007] RBP: 00007fd9b7c0a090 R08: 0000000000000000 R09: 0000000000000000
[  558.749542][T14007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  558.752821][T14007] R13: 0000000000000000 R14: 00007fd9b6f16058 R15: 00007ffd640e6478
[  558.756426][T14007]  </TASK>
[  558.876441][T14012] syz.1.2577: vmalloc error: size 2768896, failed to allocated page array size 5408, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[  558.884778][T14012] CPU: 2 UID: 0 PID: 14012 Comm: syz.1.2577 Not tainted 6.11.0-rc5-syzkaller #0
[  558.888611][T14012] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  558.893744][T14012] Call Trace:
[  558.895028][T14012]  <TASK>
[  558.896269][T14012]  dump_stack_lvl+0x16c/0x1f0
[  558.898352][T14012]  warn_alloc+0x24d/0x3a0
[  558.900020][T14012]  ? __pfx_warn_alloc+0x10/0x10
[  558.901884][T14012]  ? __get_vm_area_node+0x190/0x2d0
[  558.903908][T14012]  ? __get_vm_area_node+0x1bc/0x2d0
[  558.905921][T14012]  __vmalloc_node_range_noprof+0xfe8/0x14e0
[  558.908210][T14012]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  558.910188][T14012]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  558.913061][T14012]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  558.915182][T14012]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  558.917457][T14012]  vmalloc_user_noprof+0x6b/0x90
[  558.919455][T14012]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  558.921378][T14012]  vb2_vmalloc_alloc+0x11e/0x3d0
[  558.923224][T14012]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  558.925340][T14012]  __vb2_queue_alloc+0x896/0x1220
[  558.927261][T14012]  vb2_core_reqbufs+0xa73/0xfb0
[  558.929111][T14012]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  558.931226][T14012]  ? __pfx___mutex_trylock_common+0x10/0x10
[  558.933505][T14012]  ? rcu_is_watching+0x12/0xc0
[  558.934950][T14012]  ? trace_contention_end+0xea/0x140
[  558.936549][T14012]  vb2_reqbufs+0x1a5/0x1f0
[  558.938288][T14012]  ? __video_do_ioctl+0x4a8/0xf00
[  558.940138][T14012]  ? __pfx_vb2_reqbufs+0x10/0x10
[  558.941833][T14012]  ? __pfx___mutex_lock+0x10/0x10
[  558.943555][T14012]  ? tomoyo_path_number_perm+0x292/0x590
[  558.945576][T14012]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  558.947870][T14012]  v4l2_m2m_ioctl_reqbufs+0xe2/0x1f0
[  558.949891][T14012]  v4l_reqbufs+0x14c/0x1e0
[  558.951588][T14012]  __video_do_ioctl+0xaf9/0xf00
[  558.953440][T14012]  ? __pfx___video_do_ioctl+0x10/0x10
[  558.955500][T14012]  video_usercopy+0x4ce/0x1600
[  558.957400][T14012]  ? __pfx___video_do_ioctl+0x10/0x10
[  558.959334][T14012]  ? __pfx_video_usercopy+0x10/0x10
[  558.961107][T14012]  ? selinux_file_ioctl+0x180/0x270
[  558.962844][T14012]  v4l2_ioctl+0x1c0/0x260
[  558.964132][T14012]  ? __pfx_v4l2_ioctl+0x10/0x10
[  558.965747][T14012]  __x64_sys_ioctl+0x193/0x220
[  558.967374][T14012]  do_syscall_64+0xcd/0x250
[  558.968927][T14012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  558.970918][T14012] RIP: 0033:0x7fd9b6d79e79
[  558.972430][T14012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  558.979712][T14012] RSP: 002b:00007fd9b7c2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  558.982920][T14012] RAX: ffffffffffffffda RBX: 00007fd9b6f15f80 RCX: 00007fd9b6d79e79
[  558.985917][T14012] RDX: 0000000020001100 RSI: 00000000c0145608 RDI: 0000000000000005
[  558.988507][T14012] RBP: 00007fd9b6de793e R08: 0000000000000000 R09: 0000000000000000
[  558.990854][T14012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  558.993529][T14012] R13: 0000000000000000 R14: 00007fd9b6f15f80 R15: 00007ffd640e6478
[  558.996885][T14012]  </TASK>
[  559.004661][T14012] Mem-Info:
[  559.007131][T14012] active_anon:6305 inactive_anon:0 isolated_anon:0
[  559.007131][T14012]  active_file:1396 inactive_file:15938 isolated_file:0
[  559.007131][T14012]  unevictable:1768 dirty:298 writeback:0
[  559.007131][T14012]  slab_reclaimable:6873 slab_unreclaimable:68929
[  559.007131][T14012]  mapped:18321 shmem:4359 pagetables:658
[  559.007131][T14012]  sec_pagetables:322 bounce:0
[  559.007131][T14012]  kernel_misc_reclaimable:0
[  559.007131][T14012]  free:559867 free_pcp:2863 free_cma:0
[  559.031299][T14012] Node 0 active_anon:25220kB inactive_anon:0kB active_file:5584kB inactive_file:63748kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:73284kB dirty:1192kB writeback:0kB shmem:13900kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10448kB pagetables:2632kB sec_pagetables:1288kB all_unreclaimable? no
[  559.046138][T14012] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  559.057485][T14012] Node 0 DMA free:15360kB boost:0kB min:328kB low:408kB high:488kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  559.067825][T14012] lowmem_reserve[]: 0 1313 0 0 0
[  559.069650][T14012] Node 0 DMA32 free:580944kB boost:0kB min:28924kB low:36152kB high:43380kB reserved_highatomic:0KB active_anon:26336kB inactive_anon:0kB active_file:5584kB inactive_file:63748kB unevictable:3536kB writepending:1192kB present:2080628kB managed:1372100kB mlocked:0kB bounce:0kB free_pcp:11456kB local_pcp:3428kB free_cma:0kB
[  559.079711][T14012] lowmem_reserve[]: 0 0 0 0 0
[  559.081601][T14012] Node 1 Normal free:1642168kB boost:0kB min:38324kB low:47904kB high:57484kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  559.091632][T14012] lowmem_reserve[]: 0 0 0 0 0
[  559.102969][T14012] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  559.111768][T14012] Node 0 DMA32: 346*4kB (UME) 366*8kB (UME) 291*16kB (UME) 399*32kB (UME) 206*64kB (UME) 136*128kB (UME) 59*256kB (UME) 74*512kB (UME) 106*1024kB (UME) 27*2048kB (UME) 76*4096kB (UM) = 580456kB
[  559.120592][T14012] Node 1 Normal: 2*4kB (UM) 16*8kB (UM) 11*16kB (UM) 14*32kB (UM) 13*64kB (UM) 17*128kB (UM) 6*256kB (U) 9*512kB (UM) 6*1024kB (U) 4*2048kB (UM) 395*4096kB (M) = 1642168kB
[  559.127509][T14012] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  559.131869][T14012] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  559.137235][T14012] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  559.141425][T14012] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  559.146013][T14012] 23306 total pagecache pages
[  559.148382][T14012] 0 pages in swap cache
[  559.150513][T14012] Free swap  = 124360kB
[  559.152659][T14012] Total swap = 124996kB
[  559.154409][T14012] 1048443 pages RAM
[  559.156585][T14012] 0 pages HighMem/MovableOnly
[  559.158757][T14012] 256097 pages reserved
[  559.160737][T14012] 0 pages cma reserved
[  561.736969][   T39] audit: type=1400 audit(1724644505.065:4776): avc:  denied  { ioctl } for  pid=14054 comm="syz.2.2596" path="socket:[44885]" dev="sockfs" ino=44885 ioctlcmd=0x891b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  562.005469][T14069] FAULT_INJECTION: forcing a failure.
[  562.005469][T14069] name failslab, interval 1, probability 0, space 0, times 0
[  562.011472][T14069] CPU: 2 UID: 0 PID: 14069 Comm: syz.0.2590 Not tainted 6.11.0-rc5-syzkaller #0
[  562.015581][T14069] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  562.020013][T14069] Call Trace:
[  562.021542][T14069]  <TASK>
[  562.022871][T14069]  dump_stack_lvl+0x16c/0x1f0
[  562.025032][T14069]  should_fail_ex+0x497/0x5b0
[  562.027167][T14069]  ? fs_reclaim_acquire+0xae/0x160
[  562.029467][T14069]  should_failslab+0xc2/0x120
[  562.031598][T14069]  __kmalloc_node_noprof+0xd1/0x430
[  562.033920][T14069]  ? __kvmalloc_node_noprof+0x9d/0x1a0
[  562.036371][T14069]  ? __pfx_mark_lock+0x10/0x10
[  562.038504][T14069]  __kvmalloc_node_noprof+0x9d/0x1a0
[  562.040885][T14069]  seq_read_iter+0x830/0x12c0
[  562.042962][T14069]  seq_read+0x390/0x4d0
[  562.044774][T14069]  ? __pfx_seq_read+0x10/0x10
[  562.046671][T14069]  ? __pfx___might_resched+0x10/0x10
[  562.049248][T14069]  full_proxy_read+0x127/0x1a0
[  562.051480][T14069]  ? __pfx_full_proxy_read+0x10/0x10
[  562.053527][T14069]  vfs_read+0x1d4/0xbd0
[  562.055044][T14069]  ? __fdget_pos+0xeb/0x180
[  562.056711][T14069]  ? __pfx_vfs_read+0x10/0x10
[  562.058639][T14069]  ? __pfx___mutex_lock+0x10/0x10
[  562.060717][T14069]  ? __fget_files+0x256/0x400
[  562.062544][T14069]  ksys_read+0x12f/0x260
[  562.064370][T14069]  ? __pfx_ksys_read+0x10/0x10
[  562.066519][T14069]  do_syscall_64+0xcd/0x250
[  562.068412][T14069]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.071008][T14069] RIP: 0033:0x7f72c0b79e79
[  562.073003][T14069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  562.080487][T14069] RSP: 002b:00007f72c194c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  562.083663][T14069] RAX: ffffffffffffffda RBX: 00007f72c0d15f80 RCX: 00007f72c0b79e79
[  562.086675][T14069] RDX: 0000000000002020 RSI: 00000000200061c0 RDI: 0000000000000003
[  562.089823][T14069] RBP: 00007f72c194c090 R08: 0000000000000000 R09: 0000000000000000
[  562.093035][T14069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  562.096510][T14069] R13: 0000000000000000 R14: 00007f72c0d15f80 R15: 00007ffc22b88ed8
[  562.100010][T14069]  </TASK>
[  563.476015][T14090] FAULT_INJECTION: forcing a failure.
[  563.476015][T14090] name failslab, interval 1, probability 0, space 0, times 0
[  563.489638][T14090] CPU: 1 UID: 0 PID: 14090 Comm: syz.0.2597 Not tainted 6.11.0-rc5-syzkaller #0
[  563.493654][T14090] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  563.498379][T14090] Call Trace:
[  563.499872][T14090]  <TASK>
[  563.501216][T14090]  dump_stack_lvl+0x16c/0x1f0
[  563.503408][T14090]  should_fail_ex+0x497/0x5b0
[  563.505547][T14090]  ? fs_reclaim_acquire+0xae/0x160
[  563.507819][T14090]  should_failslab+0xc2/0x120
[  563.509931][T14090]  kmem_cache_alloc_lru_noprof+0x72/0x2f0
[  563.512434][T14090]  ? __d_alloc+0x31/0xaa0
[  563.514392][T14090]  __d_alloc+0x31/0xaa0
[  563.516253][T14090]  ? hugetlb_vma_lock_alloc+0xc/0x1f0
[  563.518656][T14090]  d_alloc_pseudo+0x1c/0xc0
[  563.520705][T14090]  alloc_file_pseudo+0xdc/0x210
[  563.522893][T14090]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  563.525329][T14090]  ? lockdep_annotate_inode_mutex_key+0x4b/0x200
[  563.527911][T14090]  ? hugetlbfs_get_inode+0x32d/0x530
[  563.530271][T14090]  hugetlb_file_setup+0x4cd/0x620
[  563.532511][T14090]  ksys_mmap_pgoff+0x189/0x5d0
[  563.534659][T14090]  __x64_sys_mmap+0x125/0x190
[  563.536761][T14090]  do_syscall_64+0xcd/0x250
[  563.538812][T14090]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  563.541463][T14090] RIP: 0033:0x7f72c0b79e79
[  563.543464][T14090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  563.551913][T14090] RSP: 002b:00007f72c192b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  563.555715][T14090] RAX: ffffffffffffffda RBX: 00007f72c0d16058 RCX: 00007f72c0b79e79
[  563.559335][T14090] RDX: 0000000000000002 RSI: 0000000000ff5000 RDI: 0000000020000000
[  563.562828][T14090] RBP: 00007f72c192b090 R08: ffffffffffffffff R09: 0000000000000000
[  563.566663][T14090] R10: 000000000005c831 R11: 0000000000000246 R12: 0000000000000001
[  563.570579][T14090] R13: 0000000000000000 R14: 00007f72c0d16058 R15: 00007ffc22b88ed8
[  563.573979][T14090]  </TASK>
[  564.366828][T14094] netlink: 256 bytes leftover after parsing attributes in process `syz.3.2600'.
[  564.373976][T14094] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2600'.
[  565.620709][T14114] xt_policy: neither incoming nor outgoing policy selected
[  565.796830][T14118] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2605'.
[  566.220981][T14124] futex_wake_op: syz.2.2608 tries to shift op by 32; fix this program
[  568.474188][   T39] audit: type=1400 audit(1724644511.795:4777): avc:  denied  { ioctl } for  pid=14163 comm="syz.2.2619" path="socket:[48151]" dev="sockfs" ino=48151 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  569.111786][ T1378] ieee802154 phy0 wpan0: encryption failed: -22
[  569.114583][ T1378] ieee802154 phy1 wpan1: encryption failed: -22
[  570.735242][   T39] audit: type=1326 audit(1724644514.055:4778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14191 comm="syz.2.2626" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ed6179e79 code=0x0
[  570.846584][   T39] audit: type=1400 audit(1724644514.175:4779): avc:  denied  { ioctl } for  pid=14198 comm="syz.3.2629" path="socket:[47597]" dev="sockfs" ino=47597 ioctlcmd=0x9410 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  570.889264][   T39] audit: type=1400 audit(1724644514.215:4780): avc:  denied  { listen } for  pid=14196 comm="syz.1.2628" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  578.156018][   T35] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  578.357624][   T35] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  578.362467][   T35] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  578.368139][   T35] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  578.371572][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  578.386072][   T35] usb 6-1: config 0 descriptor??
[  578.815506][   T35] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[  578.822387][   T35] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  579.095619][   T39] audit: type=1400 audit(1724644522.425:4781): avc:  denied  { bind } for  pid=14328 comm="syz.1.2664" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  579.106832][ T5398] usb 6-1: USB disconnect, device number 10
[  580.204019][T14366] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2675'.
[  580.488908][T14374] Bluetooth: MGMT ver 1.23
[  580.528820][T14375] syz.3.2685: attempt to access beyond end of device
[  580.528820][T14375] nbd3: rw=0, sector=8, nr_sectors = 8 limit=0
[  580.535013][T14375] VFS: unable to read V7 FS superblock on device nbd3.
[  580.543855][T14375] VFS: could not find a valid V7 on nbd3.
[  584.592922][T14435] syz.1.2694 (14435): drop_caches: 2
[  584.593107][T14434] syz.1.2694 (14434): drop_caches: 2
[  584.596075][T14435] syz.1.2694 (14435): drop_caches: 2
[  584.598382][T14434] syz.1.2694 (14434): drop_caches: 2
[  586.797055][T14474] xt_policy: neither incoming nor outgoing policy selected
[  586.957428][T14477] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2703'.
[  594.184935][   T39] audit: type=1400 audit(1724644537.505:4782): avc:  denied  { listen } for  pid=14606 comm="syz.3.2737" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  594.203186][   T39] audit: type=1400 audit(1724644537.525:4783): avc:  denied  { listen } for  pid=14606 comm="syz.3.2737" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  611.325255][  T834] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  611.505587][  T834] usb 6-1: Using ep0 maxpacket: 8
[  611.510292][  T834] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  611.513587][  T834] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  611.517815][  T834] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  611.521709][  T834] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  611.525804][  T834] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  611.530746][  T834] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  611.533954][  T834] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  611.780982][  T834] usb 6-1: usb_control_msg returned -32
[  611.783559][  T834] usbtmc 6-1:16.0: can't read capabilities
[  612.530028][T14861] TCP: TCP_TX_DELAY enabled
[  614.053193][ T5398] usb 6-1: USB disconnect, device number 11
[  615.095611][   T39] audit: type=1804 audit(1724644558.425:4784): pid=14900 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.2.2819" name="/newroot/129/bus/file0" dev="overlay" ino=783 res=1 errno=0
[  619.490447][    C2] vxcan1: j1939_tp_rxtimer: 0xffff8880201ed800: rx timeout, send abort
[  619.496808][    C2] vxcan1: j1939_xtp_rx_abort_one: 0xffff8880201ed800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  624.510669][   T39] audit: type=1400 audit(1724644567.835:4785): avc:  denied  { accept } for  pid=15051 comm="syz.0.2861" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  624.750469][T15061] loop0: detected capacity change from 0 to 524287999
[  624.759537][    C2] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  624.763160][    C2] Buffer I/O error on dev loop0, logical block 0, async page read
[  624.768558][    C2] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  624.772479][    C2] Buffer I/O error on dev loop0, logical block 0, async page read
[  624.775809][    C3] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  624.780520][    C3] Buffer I/O error on dev loop0, logical block 0, async page read
[  624.784288][    C2] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  624.788174][    C2] Buffer I/O error on dev loop0, logical block 0, async page read
[  624.792433][    C2] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  624.796397][    C2] Buffer I/O error on dev loop0, logical block 0, async page read
[  624.799276][    C3] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  624.803497][    C3] Buffer I/O error on dev loop0, logical block 0, async page read
[  624.807691][    C2] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  624.808445][   T39] audit: type=1400 audit(1724644568.135:4786): avc:  denied  { write } for  pid=15060 comm="syz.2.2863" name="random" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  624.811588][    C2] Buffer I/O error on dev loop0, logical block 0, async page read
[  624.811799][    C2] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  624.828252][    C2] Buffer I/O error on dev loop0, logical block 0, async page read
[  624.828306][T15061] ldm_validate_partition_table(): Disk read failed.
[  624.828640][    C2] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  624.828664][    C2] Buffer I/O error on dev loop0, logical block 0, async page read
[  624.829668][    C3] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  624.829695][    C3] Buffer I/O error on dev loop0, logical block 0, async page read
[  624.831326][T15061] Dev loop0: unable to read RDB block 0
[  624.831768][T15061]  loop0: unable to read partition table
[  624.831993][T15061] loop_reread_partitions: partition scan of loop0 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  626.426435][   T39] audit: type=1400 audit(1724644569.755:4787): avc:  denied  { ioctl } for  pid=15086 comm="syz.3.2871" path="/dev/nullb0" dev="devtmpfs" ino=693 ioctlcmd=0x1269 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  627.005425][   T39] audit: type=1400 audit(1724644570.325:4788): avc:  denied  { connect } for  pid=15090 comm="syz.3.2872" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  630.576625][ T1378] ieee802154 phy0 wpan0: encryption failed: -22
[  630.580792][ T1378] ieee802154 phy1 wpan1: encryption failed: -22
[  632.620281][ T5675] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  632.821998][ T5675] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  632.827627][ T5675] usb 8-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  632.832166][ T5675] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  632.839166][ T5675] usb 8-1: config 0 descriptor??
[  632.845005][ T5675] pwc: Askey VC010 type 2 USB webcam detected.
[  633.284915][ T5675] pwc: recv_control_msg error -32 req 02 val 2b00
[  633.493975][   T39] audit: type=1400 audit(1724644576.815:4789): avc:  denied  { accept } for  pid=15178 comm="syz.3.2898" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  633.561543][ T5675] pwc: recv_control_msg error -71 req 02 val 2c00
[  633.569182][ T5675] pwc: recv_control_msg error -71 req 04 val 1000
[  633.574188][ T5675] pwc: recv_control_msg error -71 req 04 val 1300
[  633.585303][ T5675] pwc: recv_control_msg error -71 req 04 val 1400
[  633.590730][ T5675] pwc: recv_control_msg error -71 req 02 val 2000
[  633.594461][ T5675] pwc: recv_control_msg error -71 req 02 val 2100
[  633.599248][ T5675] pwc: recv_control_msg error -71 req 04 val 1500
[  633.603767][ T5675] pwc: recv_control_msg error -71 req 02 val 2500
[  633.607510][ T5675] pwc: recv_control_msg error -71 req 02 val 2400
[  633.611237][ T5675] pwc: recv_control_msg error -71 req 02 val 2600
[  633.614641][ T5675] pwc: recv_control_msg error -71 req 02 val 2900
[  633.620097][ T5675] pwc: recv_control_msg error -71 req 02 val 2800
[  633.624211][ T5675] pwc: recv_control_msg error -71 req 04 val 1100
[  633.628380][ T5675] pwc: recv_control_msg error -71 req 04 val 1200
[  633.639534][ T5675] pwc: Registered as video71.
[  633.644268][ T5675] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb8/8-1/input/input18
[  633.653595][ T5675] usb 8-1: USB disconnect, device number 13
[  634.750436][   T39] audit: type=1400 audit(1724644578.075:4790): avc:  denied  { bind } for  pid=15210 comm="syz.0.2908" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  634.775395][   T39] audit: type=1400 audit(1724644578.075:4791): avc:  denied  { write } for  pid=15210 comm="syz.0.2908" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  635.781848][   T39] audit: type=1400 audit(1724644579.105:4792): avc:  denied  { setopt } for  pid=15230 comm="syz.0.2913" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  635.790223][   T39] audit: type=1400 audit(1724644579.105:4793): avc:  denied  { connect } for  pid=15230 comm="syz.0.2913" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  635.882071][T15234] FAULT_INJECTION: forcing a failure.
[  635.882071][T15234] name failslab, interval 1, probability 0, space 0, times 0
[  635.887855][T15234] CPU: 0 UID: 0 PID: 15234 Comm: syz.1.2914 Not tainted 6.11.0-rc5-syzkaller #0
[  635.891264][T15234] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  635.895039][T15234] Call Trace:
[  635.896412][T15234]  <TASK>
[  635.897438][T15234]  dump_stack_lvl+0x16c/0x1f0
[  635.899228][T15234]  should_fail_ex+0x497/0x5b0
[  635.901302][T15234]  should_failslab+0xc2/0x120
[  635.903390][T15234]  kmem_cache_alloc_node_noprof+0x71/0x310
[  635.906020][T15234]  ? zswap_store+0x3f3/0x22b0
[  635.908173][T15234]  zswap_store+0x3f3/0x22b0
[  635.910118][T15234]  ? __pfx_zswap_store+0x10/0x10
[  635.912292][T15234]  ? _raw_spin_unlock+0x28/0x50
[  635.914289][T15234]  ? swap_swapcount+0x13d/0x220
[  635.916190][T15234]  ? __pfx_swap_swapcount+0x10/0x10
[  635.918437][T15234]  ? folio_free_swap+0xbe/0x730
[  635.920315][T15234]  ? folio_flags.constprop.0+0x56/0x150
[  635.922219][T15234]  swap_writepage+0x8a/0x1e0
[  635.923869][T15234]  pageout+0x399/0xa10
[  635.925451][T15234]  ? __pfx_pageout+0x10/0x10
[  635.927339][T15234]  ? __pfx_try_to_unmap_one+0x10/0x10
[  635.929617][T15234]  ? __pfx_folio_not_mapped+0x10/0x10
[  635.931887][T15234]  ? __pfx_folio_lock_anon_vma_read+0x10/0x10
[  635.934088][T15234]  ? folio_mark_dirty+0xd8/0x150
[  635.935915][T15234]  shrink_folio_list+0x3145/0x41e0
[  635.937788][T15234]  ? __pfx_shrink_folio_list+0x10/0x10
[  635.940196][T15234]  ? is_module_text_address+0x80/0x1a0
[  635.942275][T15234]  ? kernel_text_address+0x6e/0xe0
[  635.944425][T15234]  ? __kernel_text_address+0xd/0x40
[  635.946586][T15234]  ? unwind_get_return_address+0x45/0xe0
[  635.948997][T15234]  ? arch_stack_walk+0x118/0x170
[  635.951113][T15234]  ? lockdep_unlock+0x11a/0x290
[  635.953083][T15234]  ? __lock_acquire+0x20f2/0x3cb0
[  635.955171][T15234]  reclaim_folio_list+0xe5/0x3a0
[  635.957301][T15234]  ? __pfx_reclaim_folio_list+0x10/0x10
[  635.959571][T15234]  ? mark_lock+0xb5/0xc60
[  635.961211][T15234]  ? find_held_lock+0x2d/0x110
[  635.963209][T15234]  ? folio_isolate_lru+0x577/0x8e0
[  635.965433][T15234]  ? find_held_lock+0x2d/0x110
[  635.967282][T15234]  reclaim_pages+0x481/0x650
[  635.969061][T15234]  ? __pfx_reclaim_pages+0x10/0x10
[  635.971231][T15234]  ? folio_isolate_lru+0xa2/0x8e0
[  635.973293][T15234]  ? const_folio_flags.constprop.0+0x56/0x150
[  635.975577][T15234]  madvise_cold_or_pageout_pte_range+0x1758/0x2160
[  635.978153][T15234]  ? lockdep_hardirqs_on+0x7c/0x110
[  635.980348][T15234]  ? __pfx___lock_acquire+0x10/0x10
[  635.982564][T15234]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  635.985481][T15234]  ? find_held_lock+0x2d/0x110
[  635.987452][T15234]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  635.990087][T15234]  walk_pgd_range+0xa5e/0x18a0
[  635.991927][T15234]  ? mt_find+0x4cc/0xa20
[  635.993542][T15234]  ? __pfx_walk_pgd_range+0x10/0x10
[  635.995505][T15234]  __walk_page_range+0x643/0x780
[  635.997396][T15234]  ? find_vma+0xc0/0x140
[  635.999011][T15234]  ? __pfx_find_vma+0x10/0x10
[  636.000986][T15234]  ? walk_page_test+0x9b/0x180
[  636.003020][T15234]  walk_page_range+0x55a/0x940
[  636.005092][T15234]  ? __pfx_walk_page_range+0x10/0x10
[  636.007377][T15234]  madvise_pageout+0x32c/0x830
[  636.009548][T15234]  ? __pfx_madvise_pageout+0x10/0x10
[  636.011842][T15234]  madvise_vma_behavior+0x4a6/0x18e0
[  636.014094][T15234]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  636.016430][T15234]  ? find_vma_prev+0xcd/0x150
[  636.018429][T15234]  ? __pfx_find_vma_prev+0x10/0x10
[  636.020601][T15234]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  636.022977][T15234]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  636.025117][T15234]  madvise_walk_vmas+0x1cf/0x2c0
[  636.027231][T15234]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  636.029548][T15234]  do_madvise+0x310/0x7a0
[  636.031022][T15234]  ? __pfx_do_madvise+0x10/0x10
[  636.033033][T15234]  ? __fget_light+0x173/0x210
[  636.035071][T15234]  ? ksys_write+0x1ab/0x260
[  636.036996][T15234]  ? __pfx_ksys_write+0x10/0x10
[  636.039099][T15234]  __x64_sys_madvise+0xa9/0x110
[  636.041281][T15234]  ? lockdep_hardirqs_on+0x7c/0x110
[  636.043381][T15234]  do_syscall_64+0xcd/0x250
[  636.045238][T15234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  636.047520][T15234] RIP: 0033:0x7fd9b6d79e79
[  636.049256][T15234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  636.056276][T15234] RSP: 002b:00007fd9b7c2b038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  636.059168][T15234] RAX: ffffffffffffffda RBX: 00007fd9b6f15f80 RCX: 00007fd9b6d79e79
[  636.062306][T15234] RDX: 0000000000000015 RSI: 0000000000600003 RDI: 0000000020000000
[  636.065642][T15234] RBP: 00007fd9b7c2b090 R08: 0000000000000000 R09: 0000000000000000
[  636.069092][T15234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  636.072572][T15234] R13: 0000000000000000 R14: 00007fd9b6f15f80 R15: 00007ffd640e6478
[  636.076022][T15234]  </TASK>
[  639.586431][T15299] FAULT_INJECTION: forcing a failure.
[  639.586431][T15299] name failslab, interval 1, probability 0, space 0, times 0
[  639.592993][T15299] CPU: 3 UID: 0 PID: 15299 Comm: syz.2.2932 Not tainted 6.11.0-rc5-syzkaller #0
[  639.597176][T15299] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  639.602183][T15299] Call Trace:
[  639.603657][T15299]  <TASK>
[  639.604937][T15299]  dump_stack_lvl+0x16c/0x1f0
[  639.606864][T15299]  should_fail_ex+0x497/0x5b0
[  639.608485][T15299]  ? fs_reclaim_acquire+0xae/0x160
[  639.610417][T15299]  should_failslab+0xc2/0x120
[  639.612284][T15299]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  639.614606][T15299]  ? dqget+0x744/0x1160
[  639.616450][T15299]  dqget+0x744/0x1160
[  639.618127][T15299]  ? __pfx_dqget+0x10/0x10
[  639.619725][T15299]  ? map_id_range_down+0x2b6/0x3a0
[  639.621681][T15299]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  639.624216][T15299]  dquot_set_dqblk+0x2b/0x1230
[  639.626470][T15299]  quota_setquota+0x4c5/0x5f0
[  639.628865][T15299]  ? __pfx_quota_setquota+0x10/0x10
[  639.631472][T15299]  ? avc_has_perm_noaudit+0x143/0x3a0
[  639.634075][T15299]  ? __pfx_avc_has_perm+0x10/0x10
[  639.636221][T15299]  ? selinux_quotactl+0x171/0x300
[  639.638358][T15299]  ? security_quotactl+0x98/0xd0
[  639.640437][T15299]  do_quotactl+0xb00/0x13d0
[  639.642340][T15299]  ? __pfx_do_quotactl+0x10/0x10
[  639.644286][T15299]  ? rwsem_read_trylock+0x12d/0x250
[  639.646616][T15299]  ? __pfx_rwsem_read_trylock+0x10/0x10
[  639.649140][T15299]  ? __pfx_lock_release+0x10/0x10
[  639.651385][T15299]  ? __pfx___might_resched+0x10/0x10
[  639.653822][T15299]  ? down_read+0xc9/0x330
[  639.655711][T15299]  ? __pfx_down_read+0x10/0x10
[  639.657702][T15299]  ? mnt_get_write_access+0x20c/0x300
[  639.660270][T15299]  __x64_sys_quotactl_fd+0x2e6/0x510
[  639.662805][T15299]  do_syscall_64+0xcd/0x250
[  639.664840][T15299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  639.667327][T15299] RIP: 0033:0x7f2ed6179e79
[  639.669928][T15299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  639.678495][T15299] RSP: 002b:00007f2ed6f8f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bb
[  639.682154][T15299] RAX: ffffffffffffffda RBX: 00007f2ed6315f80 RCX: 00007f2ed6179e79
[  639.685585][T15299] RDX: 000000000000ee01 RSI: ffffffff80000800 RDI: 0000000000000003
[  639.689114][T15299] RBP: 00007f2ed6f8f090 R08: 0000000000000000 R09: 0000000000000000
[  639.692549][T15299] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001
[  639.695949][T15299] R13: 0000000000000000 R14: 00007f2ed6315f80 R15: 00007ffeccb7b638
[  639.699385][T15299]  </TASK>
[  645.159770][   T39] audit: type=1326 audit(1724644588.485:4794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15370 comm="syz.2.2953" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  645.169926][   T39] audit: type=1326 audit(1724644588.485:4795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15370 comm="syz.2.2953" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  645.182408][   T39] audit: type=1326 audit(1724644588.505:4796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15370 comm="syz.2.2953" exe="/syz-executor" sig=0 arch=c000003e syscall=261 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  645.193122][   T39] audit: type=1326 audit(1724644588.505:4797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15370 comm="syz.2.2953" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  645.203181][   T39] audit: type=1326 audit(1724644588.505:4798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15370 comm="syz.2.2953" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  645.219838][   T39] audit: type=1326 audit(1724644588.515:4799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15370 comm="syz.2.2953" exe="/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  645.230548][   T39] audit: type=1326 audit(1724644588.515:4800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15370 comm="syz.2.2953" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  645.242229][   T39] audit: type=1326 audit(1724644588.515:4801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15370 comm="syz.2.2953" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  645.256278][   T39] audit: type=1326 audit(1724644588.525:4802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15370 comm="syz.2.2953" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  645.256634][T15375] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  645.266450][   T39] audit: type=1326 audit(1724644588.525:4803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15370 comm="syz.2.2953" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ed6179e79 code=0x7ffc0000
[  646.445794][T15391] netlink: 'syz.1.2958': attribute type 12 has an invalid length.
[  648.632306][T15414] FAULT_INJECTION: forcing a failure.
[  648.632306][T15414] name failslab, interval 1, probability 0, space 0, times 0
[  648.638687][T15414] CPU: 3 UID: 0 PID: 15414 Comm: syz.3.2964 Not tainted 6.11.0-rc5-syzkaller #0
[  648.643110][T15414] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  648.647927][T15414] Call Trace:
[  648.649365][T15414]  <TASK>
[  648.650544][T15414]  dump_stack_lvl+0x16c/0x1f0
[  648.652536][T15414]  should_fail_ex+0x497/0x5b0
[  648.654321][T15414]  ? fs_reclaim_acquire+0xae/0x160
[  648.656204][T15414]  should_failslab+0xc2/0x120
[  648.657937][T15414]  __kmalloc_noprof+0xcb/0x400
[  648.659712][T15414]  security_prepare_creds+0x22b/0x2e0
[  648.662030][T15414]  prepare_creds+0x540/0x750
[  648.663982][T15414]  selinux_inode_copy_up+0x14e/0x1a0
[  648.666091][T15414]  security_inode_copy_up+0x6d/0xc0
[  648.668023][T15414]  ovl_copy_up_one+0xad8/0x3490
[  648.669809][T15414]  ? hlock_class+0x4e/0x130
[  648.671348][T15414]  ? mark_lock+0xb5/0xc60
[  648.672851][T15414]  ? __pfx_mark_lock+0x10/0x10
[  648.674893][T15414]  ? __pfx_ovl_copy_up_one+0x10/0x10
[  648.677192][T15414]  ? __pfx_mark_lock+0x10/0x10
[  648.679600][T15414]  ? __lock_acquire+0x1620/0x3cb0
[  648.682161][T15414]  ? __orc_find+0x104/0x130
[  648.684435][T15414]  ? stack_access_ok+0xf9/0x270
[  648.686787][T15414]  ? hlock_class+0x4e/0x130
[  648.689124][T15414]  ? __lock_acquire+0x1620/0x3cb0
[  648.691351][T15414]  ? do_raw_spin_unlock+0x172/0x230
[  648.693698][T15414]  ovl_copy_up_flags+0x18d/0x200
[  648.695886][T15414]  ovl_set_acl+0x608/0x9f0
[  648.697872][T15414]  ? __pfx_ovl_set_acl+0x10/0x10
[  648.700098][T15414]  ? evm_inode_set_acl+0x221/0x370
[  648.702357][T15414]  ? make_vfsuid+0xe0/0x130
[  648.704389][T15414]  ? __pfx_make_vfsuid+0x10/0x10
[  648.706573][T15414]  ? __pfx_selinux_inode_set_acl+0x10/0x10
[  648.709203][T15414]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  648.711701][T15414]  ? posix_acl_valid+0x2f2/0x340
[  648.713871][T15414]  set_posix_acl+0x25c/0x320
[  648.715929][T15414]  vfs_set_acl+0x53d/0x940
[  648.717920][T15414]  do_set_acl+0xd9/0x1a0
[  648.719812][T15414]  do_setxattr+0xeb/0x170
[  648.721732][T15414]  path_setxattr+0x221/0x280
[  648.723825][T15414]  ? __pfx_path_setxattr+0x10/0x10
[  648.726108][T15414]  ? __pfx_lock_release+0x10/0x10
[  648.728387][T15414]  ? fput+0x32/0x390
[  648.730121][T15414]  ? ksys_write+0x1ab/0x260
[  648.731974][T15414]  ? __pfx_ksys_write+0x10/0x10
[  648.734114][T15414]  __x64_sys_setxattr+0xc4/0x160
[  648.736314][T15414]  ? do_syscall_64+0x91/0x250
[  648.738398][T15414]  ? lockdep_hardirqs_on+0x7c/0x110
[  648.740628][T15414]  do_syscall_64+0xcd/0x250
[  648.742474][T15414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  648.744582][T15414] RIP: 0033:0x7f1c9c579e79
[  648.746266][T15414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  648.754322][T15414] RSP: 002b:00007f1c9d420038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  648.757531][T15414] RAX: ffffffffffffffda RBX: 00007f1c9c715f80 RCX: 00007f1c9c579e79
[  648.760566][T15414] RDX: 0000000020000280 RSI: 00000000200001c0 RDI: 0000000020000100
[  648.763618][T15414] RBP: 00007f1c9d420090 R08: 0000000000000000 R09: 0000000000000000
[  648.766642][T15414] R10: 0000000000000024 R11: 0000000000000246 R12: 0000000000000002
[  648.769917][T15414] R13: 0000000000000000 R14: 00007f1c9c715f80 R15: 00007ffc8c21c178
[  648.773010][T15414]  </TASK>
[  649.014324][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.024192][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.044369][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.055235][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.095017][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.109005][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.113995][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.124208][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.134468][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.161929][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.174279][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.184236][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.194017][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.204101][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.214034][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.224751][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.234386][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.244559][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.257613][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.264217][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.274445][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.284319][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.294226][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.304157][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.316539][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.331039][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.364622][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.375410][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.403987][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.415152][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.434035][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.444505][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.455265][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.484022][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.504046][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.524050][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.554095][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.563999][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.575621][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.584013][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.594029][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.604072][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.613998][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.624017][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.637487][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.644920][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.654017][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  649.661610][T15420] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[  651.111869][T15461] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.2976'.
[  651.120080][T15461] openvswitch: netlink: IP tunnel attribute has 3060 unknown bytes.
[  651.370839][T15468] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15468 comm=syz.3.2978
[  651.377541][T15469] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15469 comm=syz.3.2978
[  652.026694][T15476] vcan0: tx drop: invalid sa for name 0x0000000000000002
[  652.325986][T15491] FAULT_INJECTION: forcing a failure.
[  652.325986][T15491] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  652.332287][T15491] CPU: 0 UID: 0 PID: 15491 Comm: syz.2.2986 Not tainted 6.11.0-rc5-syzkaller #0
[  652.336538][T15491] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  652.341790][T15491] Call Trace:
[  652.343303][T15491]  <TASK>
[  652.344715][T15491]  dump_stack_lvl+0x16c/0x1f0
[  652.346805][T15491]  should_fail_ex+0x497/0x5b0
[  652.348940][T15491]  _copy_from_user+0x30/0xf0
[  652.351005][T15491]  copy_msghdr_from_user+0x99/0x160
[  652.353273][T15491]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  652.355753][T15491]  ? __lock_acquire+0x1620/0x3cb0
[  652.357618][T15491]  ___sys_sendmsg+0xff/0x1e0
[  652.359312][T15491]  ? __pfx____sys_sendmsg+0x10/0x10
[  652.361225][T15491]  ? __pfx___might_resched+0x10/0x10
[  652.363247][T15491]  ? __might_fault+0xe3/0x190
[  652.365031][T15491]  __sys_sendmmsg+0x1a1/0x450
[  652.366788][T15491]  ? __pfx___sys_sendmmsg+0x10/0x10
[  652.369044][T15491]  ? vfs_write+0x14d/0x1140
[  652.371042][T15491]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  652.373703][T15491]  ? fput+0x32/0x390
[  652.375442][T15491]  ? ksys_write+0x1ab/0x260
[  652.377658][T15491]  ? __pfx_ksys_write+0x10/0x10
[  652.379789][T15491]  __x64_sys_sendmmsg+0x9c/0x100
[  652.381923][T15491]  ? lockdep_hardirqs_on+0x7c/0x110
[  652.384085][T15491]  do_syscall_64+0xcd/0x250
[  652.386476][T15491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  652.389835][T15491] RIP: 0033:0x7f2ed6179e79
[  652.391847][T15491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  652.399854][T15491] RSP: 002b:00007f2ed6f8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  652.403083][T15491] RAX: ffffffffffffffda RBX: 00007f2ed6315f80 RCX: 00007f2ed6179e79
[  652.406389][T15491] RDX: 03ffffffffffff06 RSI: 00000000200038c0 RDI: 0000000000000003
[  652.409555][T15491] RBP: 00007f2ed6f8f090 R08: 0000000000000000 R09: 0000000000000000
[  652.412805][T15491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  652.416197][T15491] R13: 0000000000000000 R14: 00007f2ed6315f80 R15: 00007ffeccb7b638
[  652.419651][T15491]  </TASK>
[  652.421667][ T5350] Bluetooth: hci1: command 0x0405 tx timeout
[  652.972263][T15505] xt_connbytes: Forcing CT accounting to be enabled
[  652.975720][T15505] No such timeout policy "syz0"
[  652.986702][   T39] kauditd_printk_skb: 40 callbacks suppressed
[  652.986715][   T39] audit: type=1400 audit(1724644596.315:4844): avc:  denied  { append } for  pid=15504 comm="syz.1.2990" name="urandom" dev="devtmpfs" ino=9 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:urandom_device_t tclass=chr_file permissive=1
[  653.452552][T15524] FAULT_INJECTION: forcing a failure.
[  653.452552][T15524] name failslab, interval 1, probability 0, space 0, times 0
[  653.461012][T15524] CPU: 2 UID: 0 PID: 15524 Comm: syz.0.2995 Not tainted 6.11.0-rc5-syzkaller #0
[  653.465412][T15524] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  653.469942][T15524] Call Trace:
[  653.471334][T15524]  <TASK>
[  653.472604][T15524]  dump_stack_lvl+0x16c/0x1f0
[  653.474683][T15524]  should_fail_ex+0x497/0x5b0
[  653.476733][T15524]  ? fs_reclaim_acquire+0xae/0x160
[  653.478846][T15524]  should_failslab+0xc2/0x120
[  653.480958][T15524]  kmem_cache_alloc_node_noprof+0x71/0x310
[  653.483398][T15524]  ? __alloc_skb+0x2b1/0x380
[  653.485163][T15524]  __alloc_skb+0x2b1/0x380
[  653.487122][T15524]  ? __pfx___alloc_skb+0x10/0x10
[  653.489213][T15524]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  653.491856][T15524]  netlink_alloc_large_skb+0x69/0x130
[  653.494306][T15524]  netlink_sendmsg+0x689/0xd70
[  653.496503][T15524]  ? __pfx_netlink_sendmsg+0x10/0x10
[  653.498895][T15524]  ? __import_iovec+0x1fd/0x6e0
[  653.501042][T15524]  ____sys_sendmsg+0xab5/0xc90
[  653.503113][T15524]  ? copy_msghdr_from_user+0x10b/0x160
[  653.505428][T15524]  ? __pfx_____sys_sendmsg+0x10/0x10
[  653.507715][T15524]  ? find_held_lock+0x2d/0x110
[  653.509843][T15524]  ? __pfx___lock_acquire+0x10/0x10
[  653.512208][T15524]  ___sys_sendmsg+0x135/0x1e0
[  653.514169][T15524]  ? __pfx____sys_sendmsg+0x10/0x10
[  653.516242][T15524]  ? ksys_write+0x21c/0x260
[  653.518013][T15524]  ? __fget_light+0x173/0x210
[  653.519881][T15524]  __sys_sendmsg+0x117/0x1f0
[  653.521903][T15524]  ? __pfx___sys_sendmsg+0x10/0x10
[  653.524342][T15524]  do_syscall_64+0xcd/0x250
[  653.526354][T15524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  653.528941][T15524] RIP: 0033:0x7f72c0b79e79
[  653.531129][T15524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  653.539903][T15524] RSP: 002b:00007f72c194c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  653.543529][T15524] RAX: ffffffffffffffda RBX: 00007f72c0d15f80 RCX: 00007f72c0b79e79
[  653.547500][T15524] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000003
[  653.551023][T15524] RBP: 00007f72c194c090 R08: 0000000000000000 R09: 0000000000000000
[  653.554613][T15524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  653.558253][T15524] R13: 0000000000000000 R14: 00007f72c0d15f80 R15: 00007ffc22b88ed8
[  653.562509][T15524]  </TASK>
[  653.808231][T15530] FAULT_INJECTION: forcing a failure.
[  653.808231][T15530] name failslab, interval 1, probability 0, space 0, times 0
[  653.814145][T15530] CPU: 2 UID: 0 PID: 15530 Comm: syz.0.2996 Not tainted 6.11.0-rc5-syzkaller #0
[  653.818051][T15530] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  653.823181][T15530] Call Trace:
[  653.824486][T15530]  <TASK>
[  653.825760][T15530]  dump_stack_lvl+0x16c/0x1f0
[  653.827854][T15530]  should_fail_ex+0x497/0x5b0
[  653.829931][T15530]  should_failslab+0xc2/0x120
[  653.832028][T15530]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  653.834220][T15530]  ? skb_clone+0x190/0x3f0
[  653.836458][T15530]  skb_clone+0x190/0x3f0
[  653.838359][T15530]  dev_queue_xmit_nit+0x38f/0xba0
[  653.840707][T15530]  dev_hard_start_xmit+0x56/0x790
[  653.843444][T15530]  __dev_queue_xmit+0x7c7/0x4300
[  653.846129][T15530]  ? __pfx___dev_queue_xmit+0x10/0x10
[  653.848538][T15530]  ? rcu_is_watching+0x12/0xc0
[  653.850785][T15530]  ? trace_kmalloc+0x2d/0xe0
[  653.852852][T15530]  ? __kmalloc_node_track_caller_noprof+0x22d/0x430
[  653.855745][T15530]  ? pskb_expand_head+0x240/0x11f0
[  653.858016][T15530]  ? skb_release_data+0x761/0x980
[  653.860217][T15530]  ? kmalloc_reserve+0x13c/0x2c0
[  653.862425][T15530]  ? skb_headers_offset_update+0x129/0x260
[  653.864985][T15530]  ? pskb_expand_head+0x636/0x11f0
[  653.867235][T15530]  ? __pfx_pskb_expand_head+0x10/0x10
[  653.869584][T15530]  ? __asan_memcpy+0x3c/0x60
[  653.871500][T15530]  __bpf_redirect+0x6fa/0xfa0
[  653.873726][T15530]  bpf_clone_redirect+0x2cb/0x3d0
[  653.875940][T15530]  ? __pfx_bpf_clone_redirect+0x10/0x10
[  653.878285][T15530]  ___bpf_prog_run+0x3e51/0xabd0
[  653.880439][T15530]  ? __pfx_mark_lock+0x10/0x10
[  653.882578][T15530]  __bpf_prog_run512+0xb7/0x100
[  653.884639][T15530]  ? __pfx___bpf_prog_run512+0x10/0x10
[  653.887002][T15530]  ? hlock_class+0x4e/0x130
[  653.889034][T15530]  ? __pfx___cant_migrate+0x10/0x10
[  653.891289][T15530]  ? ktime_get+0xfb/0x1a0
[  653.893133][T15530]  bpf_test_run+0x49d/0xa90
[  653.895145][T15530]  ? __pfx_bpf_test_run+0x10/0x10
[  653.897318][T15530]  ? __asan_memset+0x23/0x50
[  653.899353][T15530]  bpf_prog_test_run_skb+0xb6e/0x20f0
[  653.901687][T15530]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  653.904054][T15530]  ? fput+0x32/0x390
[  653.905764][T15530]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  653.908313][T15530]  __sys_bpf+0x10d2/0x4a00
[  653.910292][T15530]  ? ksys_write+0x21c/0x260
[  653.912307][T15530]  ? reacquire_held_locks+0x420/0x4c0
[  653.914605][T15530]  ? __pfx___sys_bpf+0x10/0x10
[  653.916486][T15530]  ? vfs_write+0x14d/0x1140
[  653.918499][T15530]  ? __mutex_unlock_slowpath+0x164/0x650
[  653.920991][T15530]  ? fput+0x32/0x390
[  653.922678][T15530]  ? ksys_write+0x1ab/0x260
[  653.924669][T15530]  ? __pfx_ksys_write+0x10/0x10
[  653.926809][T15530]  __x64_sys_bpf+0x78/0xc0
[  653.928904][T15530]  ? lockdep_hardirqs_on+0x7c/0x110
[  653.931287][T15530]  do_syscall_64+0xcd/0x250
[  653.933331][T15530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  653.935959][T15530] RIP: 0033:0x7f72c0b79e79
[  653.937917][T15530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  653.946233][T15530] RSP: 002b:00007f72c192b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  653.949850][T15530] RAX: ffffffffffffffda RBX: 00007f72c0d16058 RCX: 00007f72c0b79e79
[  653.953793][T15530] RDX: 0000000000000028 RSI: 00000000200000c0 RDI: 000000000000000a
[  653.957275][T15530] RBP: 00007f72c192b090 R08: 0000000000000000 R09: 0000000000000000
[  653.961049][T15530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  653.964603][T15530] R13: 0000000000000000 R14: 00007f72c0d16058 R15: 00007ffc22b88ed8
[  653.968677][T15530]  </TASK>
[  655.258555][T15553] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3003'.
[  655.519874][   T39] audit: type=1400 audit(1724644598.845:4845): avc:  denied  { read } for  pid=15558 comm="syz.2.3005" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  656.456200][T15574] FAULT_INJECTION: forcing a failure.
[  656.456200][T15574] name failslab, interval 1, probability 0, space 0, times 0
[  656.461668][T15574] CPU: 0 UID: 0 PID: 15574 Comm: syz.2.3010 Not tainted 6.11.0-rc5-syzkaller #0
[  656.465554][T15574] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  656.470156][T15574] Call Trace:
[  656.471896][T15574]  <TASK>
[  656.473242][T15574]  dump_stack_lvl+0x16c/0x1f0
[  656.475290][T15574]  should_fail_ex+0x497/0x5b0
[  656.477609][T15574]  ? fs_reclaim_acquire+0xae/0x160
[  656.480102][T15574]  should_failslab+0xc2/0x120
[  656.482215][T15574]  __kmalloc_noprof+0xcb/0x400
[  656.484296][T15574]  _iommufd_object_alloc+0x23/0x1a0
[  656.486566][T15574]  iommufd_access_create+0x2f/0x2b0
[  656.488526][T15574]  iommufd_test+0x1b4e/0x41c0
[  656.490241][T15574]  ? __pfx_iommufd_test+0x10/0x10
[  656.492197][T15574]  ? __pfx_lock_release+0x10/0x10
[  656.494326][T15574]  ? __pfx___might_resched+0x10/0x10
[  656.496576][T15574]  ? __might_fault+0xe3/0x190
[  656.498701][T15574]  iommufd_fops_ioctl+0x35f/0x4f0
[  656.501013][T15574]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  656.503680][T15574]  ? selinux_file_ioctl+0xb4/0x270
[  656.506443][T15574]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  656.508762][T15574]  __x64_sys_ioctl+0x193/0x220
[  656.510804][T15574]  do_syscall_64+0xcd/0x250
[  656.512786][T15574]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  656.516132][T15574] RIP: 0033:0x7f2ed6179e79
[  656.518646][T15574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  656.526981][T15574] RSP: 002b:00007f2ed6f8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  656.530674][T15574] RAX: ffffffffffffffda RBX: 00007f2ed6315f80 RCX: 00007f2ed6179e79
[  656.534078][T15574] RDX: 0000000020000080 RSI: 0000000000003ba0 RDI: 0000000000000005
[  656.537437][T15574] RBP: 00007f2ed6f8f090 R08: 0000000000000000 R09: 0000000000000000
[  656.540894][T15574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  656.544177][T15574] R13: 0000000000000000 R14: 00007f2ed6315f80 R15: 00007ffeccb7b638
[  656.547692][T15574]  </TASK>
[  656.588565][ T5675] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  656.614813][T15579] netlink: 104 bytes leftover after parsing attributes in process `syz.2.3012'.
[  656.620776][T15579] netlink: 'syz.2.3012': attribute type 29 has an invalid length.
[  656.629753][T15579] netlink: 'syz.2.3012': attribute type 29 has an invalid length.
[  656.634863][T15579] netlink: 'syz.2.3012': attribute type 29 has an invalid length.
[  656.643797][T15579] netlink: 'syz.2.3012': attribute type 29 has an invalid length.
[  656.801740][ T5675] usb 6-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  656.805781][ T5675] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  656.809501][ T5675] usb 6-1: Product: syz
[  656.811305][ T5675] usb 6-1: Manufacturer: syz
[  656.813310][ T5675] usb 6-1: SerialNumber: syz
[  656.817874][ T5675] usb 6-1: config 0 descriptor??
[  657.040637][T15572] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  657.045638][T15572] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  657.233270][T15590] netlink: 'syz.1.3009': attribute type 10 has an invalid length.
[  657.237023][T15590] netlink: 2 bytes leftover after parsing attributes in process `syz.1.3009'.
[  657.240795][T15590] bond0: entered promiscuous mode
[  657.243054][T15590] bond_slave_0: entered promiscuous mode
[  657.246031][T15590] bond_slave_1: entered promiscuous mode
[  657.249528][T15590] bridge0: port 3(bond0) entered blocking state
[  657.252258][T15590] bridge0: port 3(bond0) entered disabled state
[  657.255161][T15590] bond0: entered allmulticast mode
[  657.257477][T15590] bond_slave_0: entered allmulticast mode
[  657.260063][T15590] bond_slave_1: entered allmulticast mode
[  657.268116][T15590] bridge0: port 3(bond0) entered blocking state
[  657.273039][T15590] bridge0: port 3(bond0) entered forwarding state
[  658.026523][ T2235] usb 6-1: USB disconnect, device number 12
[  661.857832][T15653] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  683.828430][   T39] audit: type=1326 audit(1724644627.135:4846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15945 comm="syz.3.3114" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1c9c579e79 code=0x0
[  683.881631][   T39] audit: type=1400 audit(1724644627.195:4847): avc:  denied  { mount } for  pid=15950 comm="syz.1.3121" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  683.882095][T15953] devtmpfs: Bad value for 'mpol'
[  683.924162][   T39] audit: type=1400 audit(1724644627.205:4848): avc:  denied  { remount } for  pid=15950 comm="syz.1.3121" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  685.812039][T15974] bond0: entered promiscuous mode
[  685.814318][T15974] bond_slave_0: entered promiscuous mode
[  685.825981][T15974] bond_slave_1: entered promiscuous mode
[  685.952679][T15974] bond0: left promiscuous mode
[  685.960058][T15974] bond_slave_0: left promiscuous mode
[  685.964717][T15974] bond_slave_1: left promiscuous mode
[  685.971947][T15977] tipc: Failed to obtain node identity
[  685.974400][T15977] tipc: Enabling of bearer <ib:caif0> rejected, failed to enable media
[  686.303705][T15984] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3124'.
[  686.310377][T15984] gre1: entered promiscuous mode
[  686.312659][T15984] gre1: entered allmulticast mode
[  686.473684][T13801] Bluetooth: Fragment is too long (len 16, expected 2)
[  686.500450][   T39] audit: type=1400 audit(1724644629.825:4849): avc:  denied  { connect } for  pid=15981 comm="syz.0.3123" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  686.575462][   T39] audit: type=1400 audit(1724644629.905:4850): avc:  denied  { read } for  pid=15981 comm="syz.0.3123" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  686.632408][   T39] audit: type=1400 audit(1724644629.955:4851): avc:  denied  { write } for  pid=15981 comm="syz.0.3123" path="socket:[52214]" dev="sockfs" ino=52214 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  686.693863][T15997] bond0: entered promiscuous mode
[  686.696572][T15997] bond_slave_0: entered promiscuous mode
[  686.699336][T15997] bond_slave_1: entered promiscuous mode
[  686.832616][T15997] bond0: left promiscuous mode
[  686.839464][T15997] bond_slave_0: left promiscuous mode
[  686.844631][T15997] bond_slave_1: left promiscuous mode
[  686.850684][T15998] tipc: Failed to obtain node identity
[  686.853578][T15998] tipc: Enabling of bearer <ib:caif0> rejected, failed to enable media
[  687.699506][   T39] audit: type=1400 audit(1724644631.025:4852): avc:  denied  { write } for  pid=16007 comm="syz.2.3132" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  687.699546][T16012] ieee802154 phy0 wpan0: encryption failed: -22
[  688.020564][   T39] audit: type=1400 audit(1724644631.345:4853): avc:  denied  { ioctl } for  pid=16019 comm="syz.2.3137" path="socket:[54322]" dev="sockfs" ino=54322 ioctlcmd=0x8982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  688.792028][T16036] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check.
[  688.960769][   T39] audit: type=1400 audit(1724644632.285:4854): avc:  denied  { bind } for  pid=16041 comm="syz.0.3145" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  688.970098][   T39] audit: type=1400 audit(1724644632.285:4855): avc:  denied  { name_bind } for  pid=16041 comm="syz.0.3145" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  688.981403][   T39] audit: type=1400 audit(1724644632.285:4856): avc:  denied  { node_bind } for  pid=16041 comm="syz.0.3145" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[  688.998314][T16043] mac80211_hwsim hwsim15 ÿÿÿÿÿÿ: renamed from wlan1
[  689.419978][T16046] netlink: 56 bytes leftover after parsing attributes in process `syz.1.3146'.
[  689.479869][T16047] netlink: 56 bytes leftover after parsing attributes in process `syz.1.3146'.
[  689.638509][T16049] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3147'.
[  691.768636][    C2] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies.
[  691.978951][ T1378] ieee802154 phy0 wpan0: encryption failed: -22
[  691.981731][ T1378] ieee802154 phy1 wpan1: encryption failed: -22
[  693.572183][T16118] bond0: entered promiscuous mode
[  693.576908][T16118] bond_slave_0: entered promiscuous mode
[  693.583292][T16120] ------------[ cut here ]------------
[  693.586367][T16120] WARNING: CPU: 3 PID: 16120 at kernel/bpf/helpers.c:132 bpf_map_lookup_percpu_elem+0xa8/0xc0
[  693.587412][T16118] bond_slave_1: entered promiscuous mode
[  693.591325][T16120] Modules linked in:
[  693.597650][T16120] CPU: 3 UID: 0 PID: 16120 Comm: syz.1.3171 Not tainted 6.11.0-rc5-syzkaller #0
[  693.601616][T16120] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  693.601633][T16120] RIP: 0010:bpf_map_lookup_percpu_elem+0xa8/0xc0
[  693.601665][T16120] Code: 41 5c 41 5d ff e0 cc 66 90 e8 84 1d e5 ff e8 0f 82 ca ff 31 ff 41 89 c4 89 c6 e8 b3 1f e5 ff 45 85 e4 75 8c e8 69 1d e5 ff 90 <0f> 0b 90 eb 81 48 89 df e8 bb 49 42 00 eb 93 e8 b4 49 42 00 eb ae
[  693.622824][T16120] RSP: 0018:ffffc900038dfa80 EFLAGS: 00010287
[  693.622849][T16120] RAX: 000000000000006f RBX: ffff888023bb3800 RCX: ffffc900066f1000
[  693.622863][T16120] RDX: 0000000000040000 RSI: ffffffff81a55c07 RDI: 0000000000000005
[  693.622876][T16120] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  693.622887][T16120] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  693.622898][T16120] R13: ffffc900038dfb38 R14: 0000000000000000 R15: 0000000000000000
[  693.649758][T16120] FS:  00007fd9b7c2b6c0(0000) GS:ffff88806b300000(0000) knlGS:0000000000000000
[  693.653696][T16120] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  693.658042][T16120] CR2: 0000000000000000 CR3: 000000002f476000 CR4: 0000000000350ef0
[  693.661692][T16120] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  693.665060][T16120] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  693.668774][T16120] Call Trace:
[  693.670309][T16120]  <TASK>
[  693.671713][T16120]  ? show_regs+0x8c/0xa0
[  693.673648][T16120]  ? __warn+0xe5/0x3c0
[  693.675545][T16120]  ? bpf_map_lookup_percpu_elem+0xa8/0xc0
[  693.678721][T16120]  ? report_bug+0x3c0/0x580
[  693.681265][T16120]  ? handle_bug+0x3d/0x70
[  693.683773][T16120]  ? exc_invalid_op+0x17/0x50
[  693.686412][T16120]  ? asm_exc_invalid_op+0x1a/0x20
[  693.688970][T16120]  ? bpf_map_lookup_percpu_elem+0xa7/0xc0
[  693.691596][T16120]  ? bpf_map_lookup_percpu_elem+0xa8/0xc0
[  693.694224][T16120]  ? __pfx_bpf_map_lookup_percpu_elem+0x10/0x10
[  693.697015][T16120]  ___bpf_prog_run+0x3e51/0xabd0
[  693.699104][T16120]  __bpf_prog_run32+0xc1/0x100
[  693.701200][T16120]  ? __pfx___bpf_prog_run32+0x10/0x10
[  693.704246][T16120]  ? __pfx_lock_acquire+0x10/0x10
[  693.706605][T16120]  ? __pfx_lock_release+0x10/0x10
[  693.709023][T16120]  ? __pfx___cant_migrate+0x10/0x10
[  693.711254][T16120]  ? migrate_disable+0x106/0x160
[  693.713331][T16120]  bpf_prog_test_run_syscall+0x3ae/0x770
[  693.716084][T16120]  ? __pfx_bpf_prog_test_run_syscall+0x10/0x10
[  693.718662][T16120]  ? fput+0x32/0x390
[  693.720299][T16120]  ? __bpf_prog_get+0xa0/0x2f0
[  693.722609][T16120]  ? __pfx_bpf_prog_test_run_syscall+0x10/0x10
[  693.725432][T16120]  __sys_bpf+0x10d2/0x4a00
[  693.727509][T16120]  ? __pfx_futex_wake+0x10/0x10
[  693.729622][T16120]  ? __pfx___sys_bpf+0x10/0x10
[  693.731677][T16120]  ? do_user_addr_fault+0xdc7/0x13f0
[  693.733904][T16120]  ? reacquire_held_locks+0x20b/0x4c0
[  693.736424][T16120]  ? do_futex+0x123/0x350
[  693.738274][T16120]  ? __pfx_do_futex+0x10/0x10
[  693.740408][T16120]  ? xfd_validate_state+0x5d/0x180
[  693.743144][T16120]  __x64_sys_bpf+0x78/0xc0
[  693.746172][T16120]  ? lockdep_hardirqs_on+0x7c/0x110
[  693.749213][T16120]  do_syscall_64+0xcd/0x250
[  693.751296][T16120]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  693.753929][T16120] RIP: 0033:0x7fd9b6d79e79
[  693.756370][T16120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  693.765078][T16120] RSP: 002b:00007fd9b7c2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  693.768869][T16120] RAX: ffffffffffffffda RBX: 00007fd9b6f15f80 RCX: 00007fd9b6d79e79
[  693.773186][T16120] RDX: 000000000000000c RSI: 00000000200004c0 RDI: 000000000000000a
[  693.777341][T16120] RBP: 00007fd9b6de793e R08: 0000000000000000 R09: 0000000000000000
[  693.780694][T16120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  693.784144][T16120] R13: 0000000000000000 R14: 00007fd9b6f15f80 R15: 00007ffd640e6478
[  693.787699][T16120]  </TASK>
[  693.789100][T16120] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  693.792338][T16120] CPU: 3 UID: 0 PID: 16120 Comm: syz.1.3171 Not tainted 6.11.0-rc5-syzkaller #0
[  693.796307][T16120] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  693.805143][T16120] Call Trace:
[  693.806704][T16120]  <TASK>
[  693.807988][T16120]  dump_stack_lvl+0x3d/0x1f0
[  693.810037][T16120]  panic+0x6dc/0x7c0
[  693.811790][T16120]  ? __pfx_panic+0x10/0x10
[  693.813697][T16120]  ? show_trace_log_lvl+0x363/0x500
[  693.816106][T16120]  ? bpf_map_lookup_percpu_elem+0xa8/0xc0
[  693.818187][T16120]  check_panic_on_warn+0xab/0xb0
[  693.820242][T16120]  __warn+0xf1/0x3c0
[  693.821891][T16120]  ? bpf_map_lookup_percpu_elem+0xa8/0xc0
[  693.824389][T16120]  report_bug+0x3c0/0x580
[  693.833027][T16120]  handle_bug+0x3d/0x70
[  693.834746][T16120]  exc_invalid_op+0x17/0x50
[  693.837033][T16120]  asm_exc_invalid_op+0x1a/0x20
[  693.839623][T16120] RIP: 0010:bpf_map_lookup_percpu_elem+0xa8/0xc0
[  693.842349][T16120] Code: 41 5c 41 5d ff e0 cc 66 90 e8 84 1d e5 ff e8 0f 82 ca ff 31 ff 41 89 c4 89 c6 e8 b3 1f e5 ff 45 85 e4 75 8c e8 69 1d e5 ff 90 <0f> 0b 90 eb 81 48 89 df e8 bb 49 42 00 eb 93 e8 b4 49 42 00 eb ae
[  693.850464][T16120] RSP: 0018:ffffc900038dfa80 EFLAGS: 00010287
[  693.852956][T16120] RAX: 000000000000006f RBX: ffff888023bb3800 RCX: ffffc900066f1000
[  693.856257][T16120] RDX: 0000000000040000 RSI: ffffffff81a55c07 RDI: 0000000000000005
[  693.859139][T16120] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  693.862827][T16120] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  693.866466][T16120] R13: ffffc900038dfb38 R14: 0000000000000000 R15: 0000000000000000
[  693.869612][T16120]  ? bpf_map_lookup_percpu_elem+0xa7/0xc0
[  693.871904][T16120]  ? __pfx_bpf_map_lookup_percpu_elem+0x10/0x10
[  693.874294][T16120]  ___bpf_prog_run+0x3e51/0xabd0
[  693.876252][T16120]  __bpf_prog_run32+0xc1/0x100
[  693.877945][T16120]  ? __pfx___bpf_prog_run32+0x10/0x10
[  693.880228][T16120]  ? __pfx_lock_acquire+0x10/0x10
[  693.882069][T16120]  ? __pfx_lock_release+0x10/0x10
[  693.883942][T16120]  ? __pfx___cant_migrate+0x10/0x10
[  693.887946][T16120]  ? migrate_disable+0x106/0x160
[  693.890400][T16120]  bpf_prog_test_run_syscall+0x3ae/0x770
[  693.892932][T16120]  ? __pfx_bpf_prog_test_run_syscall+0x10/0x10
[  693.896262][T16120]  ? fput+0x32/0x390
[  693.898048][T16120]  ? __bpf_prog_get+0xa0/0x2f0
[  693.900131][T16120]  ? __pfx_bpf_prog_test_run_syscall+0x10/0x10
[  693.902792][T16120]  __sys_bpf+0x10d2/0x4a00
[  693.904807][T16120]  ? __pfx_futex_wake+0x10/0x10
[  693.907231][T16120]  ? __pfx___sys_bpf+0x10/0x10
[  693.909571][T16120]  ? do_user_addr_fault+0xdc7/0x13f0
[  693.911935][T16120]  ? reacquire_held_locks+0x20b/0x4c0
[  693.914253][T16120]  ? do_futex+0x123/0x350
[  693.916367][T16120]  ? __pfx_do_futex+0x10/0x10
[  693.918430][T16120]  ? xfd_validate_state+0x5d/0x180
[  693.920991][T16120]  __x64_sys_bpf+0x78/0xc0
[  693.922961][T16120]  ? lockdep_hardirqs_on+0x7c/0x110
[  693.925241][T16120]  do_syscall_64+0xcd/0x250
[  693.927426][T16120]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  693.930406][T16120] RIP: 0033:0x7fd9b6d79e79
[  693.932393][T16120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  693.940810][T16120] RSP: 002b:00007fd9b7c2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  693.944551][T16120] RAX: ffffffffffffffda RBX: 00007fd9b6f15f80 RCX: 00007fd9b6d79e79
[  693.947944][T16120] RDX: 000000000000000c RSI: 00000000200004c0 RDI: 000000000000000a
[  693.951472][T16120] RBP: 00007fd9b6de793e R08: 0000000000000000 R09: 0000000000000000
[  693.954627][T16120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  693.957670][T16120] R13: 0000000000000000 R14: 00007fd9b6f15f80 R15: 00007ffd640e6478
[  693.960719][T16120]  </TASK>
[  693.962475][T16120] Kernel Offset: disabled
[  693.964458][T16120] Rebooting in 86400 seconds..

VM DIAGNOSIS:
03:49:39  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffffc900033af148 RCX=ffffffff813cdd16 RDX=ffff888023eec880
RSI=0000000000000000 RDI=0000000000000005 RBP=ffffc900033af7f8 RSP=ffffc900033af080
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffffc900033af150 R13=ffffc900033af158 R14=ffffc900033a8000 R15=0000000000000001
RIP=ffffffff813cdd16 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffd81744a90 CR3=000000000db7c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=000000000000000f Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f99c7ceb6a3 00007f99c7ceb6a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd81746c90 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555898034a0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555898932b4 000055558988ef20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000036323335 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 02a8000800059803 00080005900303ff ffffff0405800303 ffffffff0404f003
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0118100013800414 1000060102a60008 0013900301080013 8803010000020806
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 13800302a0100003 80040a1000060202 a800080005980300 080005900303ffff
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff0405800303ff ffffff0404f00300 080004e803000800 04e00300080004d8
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0300080004d00303 ffffffff0404c003 00080004b8030008 0004b00303ffffff
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000160000000000 RBX=000000000005f5ed RCX=ffffffff81f1bf92 RDX=ffff88801ea0c880
RSI=000000000000000b RDI=000000000007ffff RBP=000000000000000b RSP=ffffc9000346f218
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=ffffea00017d7b40
RIP=ffffffff818a7be0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b100000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000048830000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=0000000000000fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff817e2f32 ffffffff817e2f32
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff817e2f32 ffffffff817e2f32
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 ffffffff817e2f32
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1c9c5e8762
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1c9c5e876f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1c9c5e8769
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1c9c5e877d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1c9c5e8803
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1c9c5e88e1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5219f37e8f98f30a 0a0d249a669b954a 339b0ae7c6f80a9b 87e09008036d3536
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1c9d24d100 00007f1c9c6eb440 00007f1c00040008 0000000f0010000c
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1c9c6eb498 00007f1c9c6eb490 00007f1c9c6eb488 00007f1c9c6eb480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 000000000000007c
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000003 RBX=ffff88801bbbd3d2 RCX=1ffffffff28d13d0 RDX=0000000000000004
RSI=0000000000000100 RDI=ffffffff94689e80 RBP=0000000000000007 RSP=ffffc90000fd78c8
R8 =0000000000000000 R9 =fffffbfff28c5afd R10=ffffffff9462d7ef R11=0000000000000000
R12=dffffc0000000000 R13=ffff88801bbbd3b0 R14=0000000000000004 R15=ffff88801bbbc880
RIP=ffffffff81683154 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b200000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000003f98a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd640e6800 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b6de8762
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b6de876f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b6de8769
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b6de877d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b6de8803
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b6de88e1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000050
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000003a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff84fe6fe5 RDI=ffffffff9519f5a0 RBP=ffffffff9519f560 RSP=ffffc900038df440
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=000000000000003a R14=ffffffff84fe6f80 R15=0000000000000000
RIP=ffffffff84fe700f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fd9b7c2b6c0 ffffffff 00c00000
GS =0000 ffff88806b300000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000002f476000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000208001 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b6de8762
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b6de876f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b6de8769
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b6de877d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b6de8803
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b6de88e1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b6eeb488 00007fd9b6eeb480 00007fd9b6eeb478 00007fd9b6eeb450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b7a4d100 00007fd9b6eeb440 00007fd9b6eeb458 00007fd9b6eeb4a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd9b6eeb498 00007fd9b6eeb490 00007fd9b6eeb488 00007fd9b6eeb480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000