last executing test programs:

4.136436862s ago: executing program 2 (id=931):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
setpriority(0x0, 0x0, 0xffffffffffffffcd)
modify_ldt$write2(0x11, &(0x7f0000000840)={0x0, 0x0, 0x2000}, 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000100)=0x40000000000000, 0x12)
r3 = syz_open_procfs(0x0, &(0x7f00000004c0)='stat\x00')
preadv(r3, &(0x7f0000000280)=[{&(0x7f0000000ac0)=""/100, 0x64}], 0x1, 0x0, 0x0)
epoll_create(0x3ff)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x9, 0x7, 0x2}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r4}, &(0x7f0000000580)=0x2, &(0x7f00000005c0)}, 0x20)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_num_comp_pkts={{0x13, 0x19}, {0x6, [{0xabe285601d0bde58, 0x9}, {0xc9}, {0xc8, 0x7f}, {0xc9, 0x4d}, {}, {0xc9, 0x61}]}}}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x10, 0x4, 0x0, 0x7, 0x0, 0x1}, 0x48)
timer_create(0xb, 0x0, &(0x7f00000000c0))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
r5 = syz_open_procfs(0x0, 0x0)
fchdir(r5)
mount(0x0, &(0x7f0000000080)='.\x00', 0x0, 0x0, 0x0)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
clock_adjtime(0x0, &(0x7f00000001c0))
r6 = syz_io_uring_setup(0x4076, &(0x7f0000000240)={0x0, 0x0, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f00000012c0)=<r7=>0x0, &(0x7f00000002c0)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0})
io_uring_enter(r6, 0x567, 0x0, 0x0, 0x0, 0x0)
socket(0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)

3.163413258s ago: executing program 0 (id=934):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x490420}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004200)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ecc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb190df08747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb81035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4718826b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22263e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485e4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6bb06500f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb0f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784776f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2205eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0609c0b731964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e44312c24c2ce8e642bb73c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a768cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d0500e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad24c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc5908", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78}, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r3=>0x0)
io_submit(r3, 0x140b, &(0x7f0000000700)=[&(0x7f0000000440)={0x18, 0x7000000, 0x4, 0x1, 0x0, r2, &(0x7f0000000180)='\x00', 0x1001}])

3.11320881s ago: executing program 2 (id=935):
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000000), 0x0)

2.958646404s ago: executing program 0 (id=936):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000200000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x1a, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x7, 0x0, &(0x7f00000002c0)="b9ff0307600300", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x6, 0xb, &(0x7f0000000400)="00a529c270e5e483833d04a04012dca0e789b6ac4aeb59da7123b7b880de000000000000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0xfffffffffffffcd9, 0x0, 0x0, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000180), 0x7fff, 0x180c0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6_udplite(0x11, 0x2, 0x88)
ioctl$SNDRV_PCM_IOCTL_WRITEI_FRAMES(r3, 0x40184150, 0x0)
ioctl$KVM_SET_CLOCK(r2, 0x4188aec6, &(0x7f0000000040))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0xa0882, 0x0)

2.704528784s ago: executing program 1 (id=939):
openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020100000900010073797a300000000008000222000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a32000000001400000011001f"], 0x7c}}, 0x0)
r0 = socket$packet(0x11, 0x0, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001e00)={'bond0\x00'})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @dev}, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r2, 0x11, 0x67, &(0x7f0000000000)=0x200, 0x4)
sendmmsg$inet6(r2, &(0x7f00000027c0)=[{{&(0x7f0000000040)={0xa, 0x4e20, 0x0, @mcast2, 0x1f}, 0x1c, &(0x7f0000001180)=[{0x0}], 0x1}}], 0x1, 0x0)
setsockopt$packet_int(r1, 0x107, 0x8, &(0x7f0000000080), 0x4)
recvmsg(r1, &(0x7f0000000680)={0x0, 0x0, 0x0}, 0x0)
getsockopt$sock_int(r0, 0x1, 0x26, 0x0, &(0x7f0000000080))
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r3, 0x84, 0x71, &(0x7f0000000140), 0x8)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, &(0x7f0000000000)={0xab8}, 0x4)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/user\x00')
creat(&(0x7f0000001040)='./file0\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000440)={<r4=>0x0})
creat(&(0x7f00000002c0)='./file0\x00', 0x81)
mount(&(0x7f0000000240)=@sg0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000340)='erofs\x00', 0x8080, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, &(0x7f0000000180)={r4, 0xf86})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000003c0)={<r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000080)={r5, 0x3, 0xffffffffffffffff, 0x5})
syz_emit_ethernet(0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})

2.500324995s ago: executing program 2 (id=941):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r2=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000680)={0x24, r1, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}]}, 0x24}}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000003440)={0x0, 0x0, &(0x7f0000003400)={&(0x7f0000002100)=@updpolicy={0x1bc, 0x19, 0x1, 0x70bd28, 0x0, {{@in6=@local, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}}, [@tmpl={0x104, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x0, 0x0, 0x2}, {{@in=@multicast2, 0x0, 0x6c}, 0x0, @in=@broadcast}, {{@in6=@mcast2, 0x0, 0x3c}, 0x0, @in6=@mcast1}, {{@in6=@private1}, 0xa, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x1}]}]}, 0x1bc}}, 0x0)
r4 = socket$l2tp(0x2, 0x2, 0x73)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000680), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f00000006c0)={'batadv0\x00', <r7=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000700)={0x24, r6, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r7}]}, 0x24}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r8}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
llistxattr(&(0x7f0000000300)='./file0\x00', &(0x7f0000000740)=""/4096, 0x1000)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r9}, 0x10)
r10 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
setns(0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000003c0)={0x1, &(0x7f0000000080)=[{0x6, 0x8}]})
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r11}, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)

2.499653769s ago: executing program 1 (id=942):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
pselect6(0x40, &(0x7f0000000340), 0x0, &(0x7f00000002c0)={0x3fd}, 0x0, 0x0) (fail_nth: 2)
bind$inet(r0, &(0x7f0000003900)={0x2, 0x4e24, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e24, @empty}, 0x10)
sendto$inet(r0, &(0x7f0000000100)="f4188a9876a9431deeb98e3edfaafa03a11300e3aebb4102000000000034c5d2af03a5f261a35c07d07d371a4402394549d78c3f511bb4793daf4b4e28410e598769487fb27044ece0b4e738bcc7e1ce3aa7a3df2572a082809f406467bc0f0b47872a2ecc399861b90da1ffcfb35a8f5579b72e3cde817a2a78ff205c6fee57f9177bbeeb2f3d121b9c508660c2d90b0dc3f2412b62e7d99a7dfa6960b663bb8e14764efb33f9465c242b84b75a436ef9af2492b19a15bb9108656d828553e1719de91aa29cb5bf187a0162d50e234b6207725486c9e828d756ff9b6d4f5c4960469dd3a48b4e525f0cbf7158f95d603a37c272f874ee3b5c6e56", 0xfffffffffffffdb0, 0x0, 0x0, 0x10000007f)

1.615678327s ago: executing program 2 (id=944):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r1 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f0000000000))
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000001e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_HASH_SREG={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x74}}, 0x0)

1.615094491s ago: executing program 3 (id=945):
openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020100000900010073797a300000000008000222000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a32000000001400000011001f"], 0x7c}}, 0x0)
r0 = socket$packet(0x11, 0x0, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001e00)={'bond0\x00'})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @dev}, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r2, 0x11, 0x67, &(0x7f0000000000)=0x200, 0x4)
sendmmsg$inet6(r2, &(0x7f00000027c0)=[{{&(0x7f0000000040)={0xa, 0x4e20, 0x0, @mcast2, 0x1f}, 0x1c, &(0x7f0000001180)=[{0x0}], 0x1}}], 0x1, 0x0)
setsockopt$packet_int(r1, 0x107, 0x8, &(0x7f0000000080), 0x4)
recvmsg(r1, &(0x7f0000000680)={0x0, 0x0, 0x0}, 0x0)
getsockopt$sock_int(r0, 0x1, 0x26, 0x0, &(0x7f0000000080))
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r3, 0x84, 0x71, &(0x7f0000000140), 0x8)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, &(0x7f0000000000)={0xab8}, 0x4)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/user\x00')
creat(&(0x7f0000001040)='./file0\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000440))
creat(&(0x7f00000002c0)='./file0\x00', 0x81)
mount(&(0x7f0000000240)=@sg0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000340)='erofs\x00', 0x8080, 0x0)

1.592718572s ago: executing program 1 (id=946):
r0 = memfd_create(&(0x7f0000000300)='\x00\xac=W[[\x87\x12\x04\xd5\xbc\x80K\x06\xcd]4(\xa2\xee2A7:n\x8c\xa7P\x1a\x87\xd9c\xecR\xd6\xe8\xf3Y\x12\"p^\xc1\x0f\x00\x00\x00\x00\x00\x00\x00t\x00\x00\x00\x00\x00\x00\x00\x05\x00\x00\x00\x19M\xc2N%\x93t[\xf3\xee\xa4\xb4\xfbf\x8dz7\\\x8e\xac\x18\x00\xfd\x89\xe1d\xfa\xcfb\xf3\xdc\xd4CY\x9a\xef\xa3\\\xa7\xa9^\xafL:[\x8e\x83U\xff\xfd\xff\xfa\xdaL\xa99\x9b\xcfA\xe4n\xa0^\n\x1c\x84\x04\xc5a\xdf\xe5\xd4Hyn\xba:/\xa5\xf4\xaa\xfa\xcd\xc7T\x83\xf5N^\xf2n\xd0=\xb9\t\xdd-F\xacb\xac \xd3\xccj\x13\xa2\x9fLu\'\xed\x91\x867\xaa\xf5\xa0]\xb6\xaa\xea\xfd\xde\xa6\xec\b\x16\x86l:;\xf9\xdb\xcf\x88\"\xca\xe0E\xdb\xec\xf9\xb3\xed\a\x00\x00\x00\x00\x00\x00\x00\xd6.\xf7\x92\xc42\xdf\xefE\xce}\x1b\xda\xdd?\n6\xe1\xb1\xd8Y\x960\xd1\x00\x00\x00\x00\x00\x00MW\x8f\xc6\x82\xe4\x15\xf7\xe9\xd8\xc5b\x0e\x91\xc5\xc76$\x18\xa4\xbe\xe8V\x8d-\xe3\x8fC\xd5\xf5\xd6L\xe3\xce\xa1\x8dz\xce\xa7\xa5\xc8\xcbhM\x1b\xf8\x98\xc4\xfbD6\x88\xfd\xe5i\x8a\xd8\xcfm\x81Z\x19\xf0\xef\xc15\xe8\xcb\xf5\t\t\x00\x17\xfa\x1fqb\xe7\"\xcb4\xb8\xe5/\xd52\x17\x12\x1d\xd8\x87\xb9|\x8d\x83\xea\xcc\x94\xebZ\xae\xaf\x19\xa4\xb2\xc6\xe1\x926B\xb6\x89Z\xa9\xb5/\xbb\x9d&\xeeO\xb3\xb3\xd4\bB\xa9f\x84\xad\t\x1a\xc2\xd5\x88\xbfo\x80V\x93\x9fl\xd7\xff\x03\xb7J\xed\x183\xe3\x7f\xfaq,\xca\x06\xb0\xc9\x92\x93\xa5I\x89\xb7\x85\x90\xb7\x1b0\xce\xd7!\x8fD\x96\xe1 ^>\x9f\x04\x89<\xb7S\x7f\x1a\x88\xab$\xd3y\xc2\xe1\x99\xbch\xd3\x83\xcd\x7f\xc5n\xb1\xc1X \x90\xbb\x1f\x01\x90\xb1O\x8d\x7f\xa8\xd4\xdbO\xef\x99\xf3\xd3M\x0f\t\x7f\n,\x84\x1f\xfa\xe2\xc8\x99\x97Oq\xae\x9b\x86h\xfa3\xb9\xfd\xbb\xd4^\xc0t\xa7]Y\xe9\x7f[\x11\xb1\xf3m\x17F\x9d\x18\xe2\xe1\x01\xb6f=-?\xbcI\xf2\xd9\xc4>-\xc0E\x9a\x82\xcc7S\xd4\xb6\'\xd2DY\xa5\x83,\xd1\xbc\xc7\xf6\xe0\x1f o\x06\xc2t\x14\xc2\xe0\x92\xc1\x8a\x85>@\xc9\xb0% \xc7\x13l\x8bJ\xe5\xec\x1dE\xf5\xc5\xe2\xe3\x10G7r#\xbc\x95&\x14\x1e\x97\xce\x83>Q@\xfb\xeb=\x1e\xb3\xd5H\x02\x86\xc6\xf3\xe1i\\\x1d\xf4\xc1\xacJC+\xc8}\x1b{\x86\x17\x00\n\"\xec\xa5x\xe6\xb1i\xeb\xb3\xb7I\x90\x9eai\xde\x01\xdc\xfeA\x05Sn\xe6\xe8^\xdf\x8c`\x17\xca\xbd\\QG\xb15\x82*=\xbd\xe9\xaf\x12<\xd7\xe1$\xa4\xdaU\xfb^\xd8!\xacxy\xd5X\xef\x03\xa7\x10\xa1C#S~\x0f\x17\t>X\\mv0\x9eZ\x89\xf4\xae\a\xc8\x16\xd2o\x16\xf3X%Q\xbd\xe9\x86V\xf2\x99^0\xe8xI(\xde-\x04s\x15\x06#2\xef\xef@\xa3t0d^^\xad\xf6\xad\xe0\x16\xf6\xa8\x99!\x0e\x9d+;D&\xebN\x94\x12\x04\x95o\xd6\x9fl\xcb\x16gc\xf5(\xaa_\xec\x9aiE\f\xd4\xc6\xf2\xae\x85n\x995\xcd\xa7\xbb\xf0pz\xff\x0f\x00\x00\x00\x00\x00\x00Li\r\x95Z\x89\"_\xe4\xba\xd4\x93\xab\xe1\xb9\xd8E[\xbb\xc9.M+\xbe\x81<z\xf2\xe8\xf4\x93\xe6h\x97\x7f\xaf\xc5\x06g\fI\xa5\xed\x05\x12\x0f\x0eu\xe5 \xfe\xcdMX\xb5X\x838\xf5\x18x\xc9\xb9\x03\t\x06\x96g\x8a5\xb0\xc8\x86\x14\xe2\x01\x1f\x80\xe7Ol\xba\x93\xaa\x15\x87I7W\x87\xc4;p\xc5\x1e\"K5r\xec6\xac\xf0\x1f\xf8 \xad\xc9\xf0\x16\xce\x17\xa1%f\x12\x80\x03N[qz\xf0q\xbd\xb8s\xe5>N\xd2\xae\xf4\x18\xd0\xe7\x98\x90,\xce\ft\xc4\xc7\x02\xaa\xc7\xeb1;\x86b)\x12{k#c\x1d@\xc31\x00\xd2}f\x8cX\xce\xed\xa4\xe4\xca\x00\x00\x00\x00\x00\x03\xfcWZ!<\x16a5ZL.\xe6\x15]\xebY\xaa\xbea\x8e\xdc\xc52r\"\xea\x9e\x03\x11&\xc3JU\xa7\xd6\x8a\xf8\xae>S\xde', 0x0)
write(r0, &(0x7f0000000140)='/', 0x1)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x100000c, 0x11, r0, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_UNIMAP(r1, 0x4b66, &(0x7f0000000040)={0x0, 0x0})

1.498441898s ago: executing program 1 (id=947):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r2=>0x0})
r3 = socket(0x10, 0x80002, 0x0)
socket(0x28, 0x5, 0x0)
socket(0x28, 0x5, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="180016000000000000000000000059af73a79f0978224100bf6e223f09ca4add140e7afeedefa509f87bdf7348d2d35ead25c21a353adcc27b86cd467a07af284c4eb5899ce4be2a4b50065d24970b8033af22ca5a060edf2e27a90062930e56cd56382d2f077014a62aa0f683d97af7911bac71"], &(0x7f0000000300)='GPL\x00', 0x9, 0x1, &(0x7f0000000340)=""/1}, 0x90)
socket$l2tp6(0xa, 0x2, 0x73)
r4 = syz_io_uring_setup(0x16d0, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f00000001c0)={0x48})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r7, &(0x7f00000001c0)=ANY=[@ANYBLOB='.'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r4, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000940)=ANY=[@ANYBLOB="4400000011002901800000000000000007000000", @ANYRES32=r2, @ANYBLOB="00000000000000001c001a800800028004000500080000003e"], 0x44}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge0\x00'}) (async)
socket(0x10, 0x80002, 0x0) (async)
socket(0x28, 0x5, 0x0) (async)
socket(0x28, 0x5, 0x0) (async)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="180016000000000000000000000059af73a79f0978224100bf6e223f09ca4add140e7afeedefa509f87bdf7348d2d35ead25c21a353adcc27b86cd467a07af284c4eb5899ce4be2a4b50065d24970b8033af22ca5a060edf2e27a90062930e56cd56382d2f077014a62aa0f683d97af7911bac71"], &(0x7f0000000300)='GPL\x00', 0x9, 0x1, &(0x7f0000000340)=""/1}, 0x90) (async)
socket$l2tp6(0xa, 0x2, 0x73) (async)
syz_io_uring_setup(0x16d0, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000140)) (async)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f00000001c0)={0x48}) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) (async)
write$UHID_CREATE2(r7, &(0x7f00000001c0)=ANY=[@ANYBLOB='.'], 0x118) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0) (async)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) (async)
io_uring_enter(r4, 0x2d3e, 0x0, 0x0, 0x0, 0x0) (async)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000940)=ANY=[@ANYBLOB="4400000011002901800000000000000007000000", @ANYRES32=r2, @ANYBLOB="00000000000000001c001a800800028004000500080000003e"], 0x44}}, 0x0) (async)

1.433945543s ago: executing program 3 (id=948):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,use', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x40}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007a700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1)
read$FUSE(r2, 0x0, 0x0)
close(r0)

1.30501434s ago: executing program 3 (id=949):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000002a40)=@raw={'raw\x00', 0x3c1, 0x3, 0x1438, 0x1168, 0x1170, 0x1170, 0x0, 0x1170, 0x1368, 0x1398, 0x1398, 0x1368, 0x1398, 0x3, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @multicast2}, @remote, [], [0x0, 0x0, 0x0, 0xff], 'ip6tnl0\x00', 'veth0_to_hsr\x00', {}, {0xff}, 0x62}, 0x0, 0x1120, 0x1168, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x0, 0x1, 0x1, './cgroup.net/syz0\x00', 0xffffffff, {0x4}}}, @common=@unspec=@helper={{0x48}, {0x0, 'H.245\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@empty, 'netpci0\x00'}}}, {{@uncond, 0x0, 0x1e0, 0x200, 0x0, {}, [@common=@rt={{0x138}, {0x0, [], 0x0, 0x0, 0x0, [@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @local, @mcast1, @mcast2, @mcast2, @local, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @local}, @local, @loopback, @remote, @mcast2, @empty, @rand_addr=' \x01\x00', @mcast1, @remote]}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1498)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10003)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x101180, 0x0)
socket$alg(0x26, 0x5, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
shmget(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
io_submit(0x0, 0x11, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mlock2(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001580)=[{&(0x7f00000014c0)=""/167, 0xa7}], 0x1, 0x0, 0x0)
close(0xffffffffffffffff)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r2, &(0x7f0000000040)={0x2a, 0xffffffff, 0xfffffffe}, 0xc)
write(r2, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x6, 0xfffffffc)
setsockopt$inet_int(r3, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x66)
mkdirat(r1, &(0x7f0000000280)='./file0\x00', 0x2)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./bus\x00', 0x0, 0x101091, 0x0)
mkdir(&(0x7f00000003c0)='./file2\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000380)='./file2\x00')
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002030702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000ee850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYRESDEC=r0], 0x34}}, 0x0)

1.304745491s ago: executing program 1 (id=950):
r0 = memfd_create(&(0x7f0000000300)='\x00\xac=W[[\x87\x12\x04\xd5\xbc\x80K\x06\xcd]4(\xa2\xee2A7:n\x8c\xa7P\x1a\x87\xd9c\xecR\xd6\xe8\xf3Y\x12\"p^\xc1\x0f\x00\x00\x00\x00\x00\x00\x00t\x00\x00\x00\x00\x00\x00\x00\x05\x00\x00\x00\x19M\xc2N%\x93t[\xf3\xee\xa4\xb4\xfbf\x8dz7\\\x8e\xac\x18\x00\xfd\x89\xe1d\xfa\xcfb\xf3\xdc\xd4CY\x9a\xef\xa3\\\xa7\xa9^\xafL:[\x8e\x83U\xff\xfd\xff\xfa\xdaL\xa99\x9b\xcfA\xe4n\xa0^\n\x1c\x84\x04\xc5a\xdf\xe5\xd4Hyn\xba:/\xa5\xf4\xaa\xfa\xcd\xc7T\x83\xf5N^\xf2n\xd0=\xb9\t\xdd-F\xacb\xac \xd3\xccj\x13\xa2\x9fLu\'\xed\x91\x867\xaa\xf5\xa0]\xb6\xaa\xea\xfd\xde\xa6\xec\b\x16\x86l:;\xf9\xdb\xcf\x88\"\xca\xe0E\xdb\xec\xf9\xb3\xed\a\x00\x00\x00\x00\x00\x00\x00\xd6.\xf7\x92\xc42\xdf\xefE\xce}\x1b\xda\xdd?\n6\xe1\xb1\xd8Y\x960\xd1\x00\x00\x00\x00\x00\x00MW\x8f\xc6\x82\xe4\x15\xf7\xe9\xd8\xc5b\x0e\x91\xc5\xc76$\x18\xa4\xbe\xe8V\x8d-\xe3\x8fC\xd5\xf5\xd6L\xe3\xce\xa1\x8dz\xce\xa7\xa5\xc8\xcbhM\x1b\xf8\x98\xc4\xfbD6\x88\xfd\xe5i\x8a\xd8\xcfm\x81Z\x19\xf0\xef\xc15\xe8\xcb\xf5\t\t\x00\x17\xfa\x1fqb\xe7\"\xcb4\xb8\xe5/\xd52\x17\x12\x1d\xd8\x87\xb9|\x8d\x83\xea\xcc\x94\xebZ\xae\xaf\x19\xa4\xb2\xc6\xe1\x926B\xb6\x89Z\xa9\xb5/\xbb\x9d&\xeeO\xb3\xb3\xd4\bB\xa9f\x84\xad\t\x1a\xc2\xd5\x88\xbfo\x80V\x93\x9fl\xd7\xff\x03\xb7J\xed\x183\xe3\x7f\xfaq,\xca\x06\xb0\xc9\x92\x93\xa5I\x89\xb7\x85\x90\xb7\x1b0\xce\xd7!\x8fD\x96\xe1 ^>\x9f\x04\x89<\xb7S\x7f\x1a\x88\xab$\xd3y\xc2\xe1\x99\xbch\xd3\x83\xcd\x7f\xc5n\xb1\xc1X \x90\xbb\x1f\x01\x90\xb1O\x8d\x7f\xa8\xd4\xdbO\xef\x99\xf3\xd3M\x0f\t\x7f\n,\x84\x1f\xfa\xe2\xc8\x99\x97Oq\xae\x9b\x86h\xfa3\xb9\xfd\xbb\xd4^\xc0t\xa7]Y\xe9\x7f[\x11\xb1\xf3m\x17F\x9d\x18\xe2\xe1\x01\xb6f=-?\xbcI\xf2\xd9\xc4>-\xc0E\x9a\x82\xcc7S\xd4\xb6\'\xd2DY\xa5\x83,\xd1\xbc\xc7\xf6\xe0\x1f o\x06\xc2t\x14\xc2\xe0\x92\xc1\x8a\x85>@\xc9\xb0% \xc7\x13l\x8bJ\xe5\xec\x1dE\xf5\xc5\xe2\xe3\x10G7r#\xbc\x95&\x14\x1e\x97\xce\x83>Q@\xfb\xeb=\x1e\xb3\xd5H\x02\x86\xc6\xf3\xe1i\\\x1d\xf4\xc1\xacJC+\xc8}\x1b{\x86\x17\x00\n\"\xec\xa5x\xe6\xb1i\xeb\xb3\xb7I\x90\x9eai\xde\x01\xdc\xfeA\x05Sn\xe6\xe8^\xdf\x8c`\x17\xca\xbd\\QG\xb15\x82*=\xbd\xe9\xaf\x12<\xd7\xe1$\xa4\xdaU\xfb^\xd8!\xacxy\xd5X\xef\x03\xa7\x10\xa1C#S~\x0f\x17\t>X\\mv0\x9eZ\x89\xf4\xae\a\xc8\x16\xd2o\x16\xf3X%Q\xbd\xe9\x86V\xf2\x99^0\xe8xI(\xde-\x04s\x15\x06#2\xef\xef@\xa3t0d^^\xad\xf6\xad\xe0\x16\xf6\xa8\x99!\x0e\x9d+;D&\xebN\x94\x12\x04\x95o\xd6\x9fl\xcb\x16gc\xf5(\xaa_\xec\x9aiE\f\xd4\xc6\xf2\xae\x85n\x995\xcd\xa7\xbb\xf0pz\xff\x0f\x00\x00\x00\x00\x00\x00Li\r\x95Z\x89\"_\xe4\xba\xd4\x93\xab\xe1\xb9\xd8E[\xbb\xc9.M+\xbe\x81<z\xf2\xe8\xf4\x93\xe6h\x97\x7f\xaf\xc5\x06g\fI\xa5\xed\x05\x12\x0f\x0eu\xe5 \xfe\xcdMX\xb5X\x838\xf5\x18x\xc9\xb9\x03\t\x06\x96g\x8a5\xb0\xc8\x86\x14\xe2\x01\x1f\x80\xe7Ol\xba\x93\xaa\x15\x87I7W\x87\xc4;p\xc5\x1e\"K5r\xec6\xac\xf0\x1f\xf8 \xad\xc9\xf0\x16\xce\x17\xa1%f\x12\x80\x03N[qz\xf0q\xbd\xb8s\xe5>N\xd2\xae\xf4\x18\xd0\xe7\x98\x90,\xce\ft\xc4\xc7\x02\xaa\xc7\xeb1;\x86b)\x12{k#c\x1d@\xc31\x00\xd2}f\x8cX\xce\xed\xa4\xe4\xca\x00\x00\x00\x00\x00\x03\xfcWZ!<\x16a5ZL.\xe6\x15]\xebY\xaa\xbea\x8e\xdc\xc52r\"\xea\x9e\x03\x11&\xc3JU\xa7\xd6\x8a\xf8\xae>S\xde', 0x0)
write(r0, &(0x7f0000000140)='/', 0x1)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x100000c, 0x11, r0, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_UNIMAP(r1, 0x4b66, &(0x7f0000000040)={0x0, 0x0}) (fail_nth: 2)

1.134952221s ago: executing program 1 (id=951):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00'}, 0x10)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000540)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0x541b, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
close_range(r2, 0xffffffffffffffff, 0x0)

999.518963ms ago: executing program 3 (id=952):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r2=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000680)={0x24, r1, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}]}, 0x24}}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000003440)={0x0, 0x0, &(0x7f0000003400)={&(0x7f0000002100)=@updpolicy={0x1bc, 0x19, 0x1, 0x70bd28, 0x0, {{@in6=@local, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}}, [@tmpl={0x104, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x0, 0x0, 0x2}, {{@in=@multicast2, 0x0, 0x6c}, 0x0, @in=@broadcast}, {{@in6=@mcast2, 0x0, 0x3c}, 0x0, @in6=@mcast1}, {{@in6=@private1}, 0xa, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x1}]}]}, 0x1bc}}, 0x0)
r4 = socket$l2tp(0x2, 0x2, 0x73)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000680), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f00000006c0)={'batadv0\x00', <r7=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000700)={0x24, r6, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r7}]}, 0x24}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r8}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
llistxattr(&(0x7f0000000300)='./file0\x00', &(0x7f0000000740)=""/4096, 0x1000)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r9}, 0x10)
r10 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
setns(0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000003c0)={0x1, &(0x7f0000000080)=[{0x6, 0x8}]})
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r11}, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)

787.779497ms ago: executing program 2 (id=953):
syz_emit_vhci(&(0x7f00000004c0)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x0, 0x78}, @l2cap_cid_signaling={{0x74}, [@l2cap_conf_req={{0x4, 0x7, 0x4}, {0xffff, 0xd}}, @l2cap_disconn_rsp={{0x7, 0xff, 0x4}, {0x7fff, 0x8}}, @l2cap_info_req={{0xa, 0x5, 0x2}, {0x6}}, @l2cap_conf_rsp={{0x5, 0x1, 0x5a}, {0xcd, 0x3, 0x1, [@l2cap_conf_mtu={0x1, 0x2, 0x80}, @l2cap_conf_rfc={0x4, 0x9, {0x1, 0xc, 0x8, 0xf3, 0x400, 0x6c9f}}, @l2cap_conf_rfc={0x4, 0x9, {0x4, 0x3, 0x5, 0x4, 0x4, 0x4}}, @l2cap_conf_efs={0x6, 0x10, {0x2, 0x2, 0x9, 0x1, 0x1, 0x80008}}, @l2cap_conf_mtu={0x1, 0x2, 0x1b}, @l2cap_conf_efs={0x6, 0x10, {0xff, 0x2, 0x16a5, 0x83ab, 0xc, 0x12f}}, @l2cap_conf_efs={0x6, 0x10, {0x0, 0x1, 0xfff8, 0x677e3c5b, 0x100, 0x2}}]}}]}}, 0x7d)
socket(0x29, 0x5, 0x1)
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})
sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[], 0x10}}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000240)='tlb_flush\x00', r1}, 0x10)
preadv(0xffffffffffffffff, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r3 = fsopen(&(0x7f0000000100)='proc\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r4 = fsmount(r3, 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000009c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x364, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_DESC={0x330, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0xa8, 0x2, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xefa1}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffff5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xf29a}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffff8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xb41d}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffff9}]}]}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0xfffffffa}, @NFTA_SET_DESC_CONCAT={0x4}, @NFTA_SET_DESC_CONCAT={0x20, 0x2, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x100}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xffffffff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}]}]}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0xd96f}, @NFTA_SET_DESC_CONCAT={0xf0, 0x2, 0x0, 0x1, [{0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xc8de}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xbd5b}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x86}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8000}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffffa}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x16}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8001}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xadee}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x80}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xe2e}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}]}]}, @NFTA_SET_DESC_CONCAT={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3ff}]}]}, @NFTA_SET_DESC_CONCAT={0x138, 0x2, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7fffffff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xdb73}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfe}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xffff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7fff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffff7}]}, {0x54, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xdc}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6d1}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xee}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x10001}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xea}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x34c}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xffff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xa6d8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xa}]}, {0x4}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x61}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7ff}]}]}, @NFTA_SET_DESC_CONCAT={0x18, 0x2, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7c000000}]}]}]}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xf}]}, @NFT_MSG_NEWSETELEM={0x2d8, 0xc, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x2ac, 0x3, 0x0, 0x1, [{0x2a8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x298, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0xa9, 0x1, "4843390a35941bec12766ca9e916d2908d924cd5f1092f3854dfded2a72866a36ddaea35a3ff2ca44d194c2d46c2309fd37191d6d1eb79338b2d9dd244fb6685af71774661ffe31a64be6cbafea1ab7c5244551fb60e7ef7fc7b5bf1e4531dbc37c8bc20e0743df99b64122f9e5a3c9464f733caa3af19dbf5cc7b0f26c0ae2f837e2491e0f3f28e1c80831ff6b605abc18966ddcd1f58586f77cbba0e5f8064cfa72fdb4d"}, @NFTA_DATA_VALUE={0xd2, 0x1, "69e52325fd075916ee1213247199a511a275f2ade8eed42311271f8f79ed32517bd884b3f939f0a813a3d159227176ef60a52ac921261ebaa64834dabcf7c51dc5f695b605af02cbeb9817e33dc8974b4b7b51ba05beebb93442574ae77c68f2419e11a52cf388c9c95ae8e0674535b1de3da1a2a579aeee5c8c9f06ecefc97c75ecdced8d0fb8ae27128c09f42a47c50669c8c7df6351964ddbbe1b4d36705fd265d4341632e25024491997158ee1b9fd974fa0bfea97f269b1de0abcce1c4f74a26fc7100a0704e6580b64d08b"}, @NFTA_DATA_VALUE={0xfb, 0x1, "3978d03ce1449254a851df3c1d75cfc05f1de456f81b9483edae6751bf196e71ad7e309d8445b8850d4108549c8ca0a53f74480afa47c4cf6f499fb4af69facaf2c6def16dfee687e81ed7d92890ed0101ef5ba848366f4d55c3214807b7f5867b81e5d5169187aefff2005f1c52378fca90c4f5a1bbe6f8080e5e21c6e1492f585df77231d3a2ad23abad0e1913394221bbca85b0f860882171a0c1e37e52d38d0dc578451bb854ed5dd9a57040977fb15c6ab6dcd6d717498833493876452bca69f40c9e22d17d99be4569631fc091f62ce9dea322f222350922679a3c50797d5a6bec85b96505a98cfa8ba2146ae02e52376de372e0"}, @NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8}]}]}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz1\x00'}]}]}]}], {0x14, 0x10}}, 0x684}}, 0x0)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000080), 0xffffffffffffffff)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@bloom_filter={0x1e, 0x3, 0x8, 0x5, 0x220, r4, 0x7fffffff, '\x00', 0x0, r4, 0x0, 0x2, 0x0, 0xe}, 0x48)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
syz_emit_vhci(0x0, 0x8a)
socket(0x0, 0xa, 0xaed)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000440)='wlan0\x00', 0x10)
sendto$inet(r6, 0x0, 0x0, 0x400c8c6, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10)
sendto$inet(r6, 0x0, 0x0, 0x4004084, 0x0, 0x0)
io_destroy(0x0)

733.120991ms ago: executing program 0 (id=954):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x0, 0x8, 0x201, 0x0, 0x0, {}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}}, 0x0)

732.699868ms ago: executing program 0 (id=955):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_pressure(r0, &(0x7f0000000040)='memory.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r1, &(0x7f0000000080)={'some', 0x20, 0x2000000005, 0x20, 0x10000000fffff}, 0x2f)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000b40)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
close(r1)

634.912753ms ago: executing program 0 (id=956):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@sack_perm, @window, @sack_perm, @sack_perm, @timestamp, @timestamp, @timestamp, @timestamp], 0x20000149)
getsockopt$ARPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x61, 0x0, &(0x7f0000000080))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x10012, r1, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_UNBLANKSCREEN(r2, 0x541c, &(0x7f00000000c0))

514.769319ms ago: executing program 0 (id=957):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00'}, 0x10)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000240), 0x400000, 0x0)
r1 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000540)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io$printer(r1, 0x0, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
syz_emit_vhci(&(0x7f0000000340)=ANY=[@ANYBLOB="040e04023c20"], 0x7)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0207a20802"], 0x10}}, 0x0)
ioperm(0x0, 0xe4d, 0x2)
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0)
quotactl$Q_SYNC(0xffffffff80000100, 0x0, 0x0, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000300)={{{@in6=@remote, @in=@broadcast, 0x8, 0xfffe, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {}, {0xd9}, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1}, {{@in6=@loopback, 0x0, 0x33}, 0x0, @in6=@mcast2, 0x0, 0x4, 0x0, 0xb7, 0x0, 0x0, 0x100}}, 0xe8)
setsockopt$netlink_NETLINK_RX_RING(0xffffffffffffffff, 0x10e, 0xb, &(0x7f00000000c0)={0xfffffff6}, 0x10)
socket$unix(0x1, 0x5, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r4, &(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e24}, 0x6e)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000140)=ANY=[@ANYBLOB="20000000051421060000000b00000000080001"], 0x20}}, 0x40041)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r6, 0x541b, &(0x7f0000000040))
close_range(r0, 0xffffffffffffffff, 0x2)

165.175615ms ago: executing program 2 (id=958):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_usb_connect(0x0, 0x36, &(0x7f00000002c0)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0)
ioctl$EVIOCSCLOCKID(0xffffffffffffffff, 0x400445a0, &(0x7f0000000080)=0xb309)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000002a40)=@urb_type_iso={0x0, {}, 0x0, 0x0, &(0x7f0000000a40)="d72837a519d8c0a23f3fd0a9a54e5e772eb4b6230be764ed2264a4d67acbb05d3d587e0903f3d6d6acc7c66398060e8d45743e8ddb740b20fcef277b0dae541562ee3be88723716c74a187c628ef213fd8c1b95894225d31c2198bdbdb119cb12d44176d00f19ae6f91b527499e8fa865d2f69f26258e555d9af7953081f349121f7e3e51bc6986f133101c03ba4d011a3c56e81bf5644e8ea977bb61e71c779fc348f6390dc46644801e95c6eb4b7ece32e58eb6f52d8a89b9f7471ad81cd50a25af09b1420665e7c6a9e76b266871fca5800b707e0efad0bcabcf60948773a478e12c6d2fe04054d62daf7a20d4b115c9d764d815889bbc6f236cdc85b28bbe40bf81d777df19b2cf567ee2da00f435f97b7eaa4423a3d292f7d883fb5b23c1ea9dc954c704fe57292fd7e2d57726df94e99a74f00e50b129f4dc752ed6a2f43b7cbdb82bfecc4bb3c6afdb8e11a75c302cca222df1c0e598bc107ca588679db6ec42cf37444d08d736532fa7e2137f252dfb542ea16bbe8570d94a4e502505dc549f868f3bf9491c844aba7290f21280df11730b6eb118e73621a39886122f7b7a5b10f0ea8a2876c56f8113451cd1ab508aeae66c6fd767228b6e861ff5bd01ea21c8d829d4c49714c4e9a821580ae803e2a52cd028610c02358159afd8aed3a90f4f07b793a242baafa857873e966034c503589bec9556f920c6bb4616645b19b155f424acb9ddc17bc450587b2448bb90a6e4a64e9c5cb0392ba5fef29d2fea478290cd4730da5aa930cf0d4c0f99d18dd43edaece7dc999a564581de666dc024b0d54d577a3654e489e00bdd787c4fa64c041b35ae1022c99814d99f19dfba8e57be2825b4d2934675629cfb52d9191d013576267353249dffdabdb5e90715ce2a919c1c383aebaa59ab37348c59c53246c7413bb84b944525afc3e720f64f6783aa2225fb316398a0a5bc739e3b10f3ad46c406abb12483209aee67e123223099f484cbf18c9e7c19fe3e85c8b3910057572d776fbc3c4556dcf14367892655af1eb3c16b711805efde5aba0505cbb4f4a346363d2a0e1c96b4df26f1df567dc2d7cee06ca3ecb01c123a044949e9c0a6738eae66a124dc43e1356290c3427cd2bd5a8e1536442b6f8417fb982d3b6ac5918b9e03eca9bb3db832b1b4f0c63eadb47f3fc3057c13bb2af697a84dd2983a497109c6ada3216a4c6bca1e27fe172e1b1dcdf5049f0593a9091f88954e54c28b520ab8acbb1741c0865ee5e0926dd40633dd4fa32b177376f18d5ad2918ace38f25d362d1760d9205e2b6ff9177d6e45938cff8eeb6fc3474710275dc06185856b07bea751d04e391d4a2a8a8dd03ae193dcedd214543b02be5d9d1f1e865f4b5043517255e8ba7a1334522d43179f83406693f3f6e6c7e7df03c4469a9", 0x3f3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, [{}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="1802000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000055090100000000009500000000000000b7020000000000007b9af8ff00000000b5090800000000007baaf0ff00000000bf8600000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018280000", @ANYRES32, @ANYBLOB="0000000000000000b7050100080000001500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_usb_ep_write$ath9k_ep2(r2, 0x83, 0x8, &(0x7f0000000080)=ANY=[])
r3 = syz_open_dev$evdev(&(0x7f0000000880), 0x200000000000002, 0x862b01)
write$char_usb(r3, &(0x7f0000000040)="e2", 0x2250)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00004f7000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000040)="440f20c0350d000000440f22c0c4e27d0f78780fb7da160af2260f001e0f21480f0013660f38804700b9150b00000f32c4a38144df6f", 0x36}], 0x1, 0x0, 0x0, 0x0)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = socket$unix(0x1, 0x2, 0x0)
r6 = io_uring_setup(0x30d3, &(0x7f00000000c0))
r7 = socket$packet(0x11, 0x3, 0x300)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000000)={'team0\x00', <r9=>0x0})
setsockopt$packet_add_memb(r7, 0x107, 0x1, &(0x7f0000000080)={r9, 0x1, 0x6, @multicast}, 0x10)
setsockopt$packet_add_memb(r7, 0x107, 0x1, &(0x7f0000000140)={r9, 0x1, 0x6, @remote}, 0x10)
close_range(r6, 0xffffffffffffffff, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r10=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r10, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r11, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
ioctl$KVM_RUN(r11, 0xae80, 0x0)
socket$inet(0x2b, 0x801, 0x0)

90.824024ms ago: executing program 3 (id=959):
ioctl$IMGETVERSION(0xffffffffffffffff, 0x80044942, &(0x7f0000000000))
socket$inet(0x2, 0x2, 0x0)
r0 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000100)={0x400, 0x300, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, {0x7, 0x0, 0xfffffffc}, {}, {0x3, 0x4}, {0x0, 0x2}, 0x0, 0x3f0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x2c})

0s ago: executing program 3 (id=960):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffdff}]})
r0 = syz_open_dev$swradio(&(0x7f0000000080), 0x0, 0x2)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
readv(r0, &(0x7f0000002240)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1)
stat(&(0x7f0000001100)='./bus\x00', &(0x7f0000001140))
r1 = syz_open_dev$loop(&(0x7f0000000100), 0x8000000000000, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_aout(r2, &(0x7f00000010c0)=ANY=[], 0x1a3)
write$binfmt_misc(r2, &(0x7f0000001000)=ANY=[@ANYBLOB="208588e01455bc18", @ANYBLOB="588c90aadaedde6a2e64f465b0fcbcb8b6449c2f317140214a9be29c9e467325a38e1b43cddd210783f3dc083935e3b9dbfc09a3e0b8febcada80457edb6649176ddb8"], 0xe09)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r2, 0x0, {0x2a00, 0x80010000, 0x0, 0x18, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}})
ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x3)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000012c0)={&(0x7f00000011c0)="2b96fa110809a5094ab4846d49973827982828dba625e85792aa", &(0x7f0000001200), 0x0, &(0x7f0000002280)="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", 0x7, r2, 0x4}, 0x38)
socket$inet6(0xa, 0x3, 0x0)
userfaultfd(0x801)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f0000000140)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_VFIO_IOAS$SET(r3, 0x3b88, &(0x7f0000000300)={0xc, r4})
ioctl$IOMMU_VFIO_IOMMU_UNMAP_DMA(r3, 0x3b72, &(0x7f0000000180)={0x18, 0x2})
r5 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
getsockopt$WPAN_SECURITY_LEVEL(r5, 0x0, 0x3, 0x0, &(0x7f00000000c0))

kernel console output (not intermixed with test programs):

ommended to keep mac addresses unique to avoid problems!
[  139.775587][ T6828] batman_adv: batadv0: Interface activated: batadv_slave_0
[  139.786847][ T6828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.791446][ T6828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.796205][ T6828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.800800][ T6828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.806371][ T6828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.810981][ T6828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.819306][ T6828] batman_adv: batadv0: Interface activated: batadv_slave_1
[  139.828181][ T6828] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  139.831800][ T6828] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  139.839485][ T6828] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  139.844219][ T6828] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  139.875882][ T6926] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  139.946699][   T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  139.950327][   T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  139.978778][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  139.982157][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  139.995975][   T39] kauditd_printk_skb: 59 callbacks suppressed
[  139.995991][   T39] audit: type=1400 audit(1722037802.683:895): avc:  denied  { mount } for  pid=6828 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  140.603099][   T39] audit: type=1326 audit(1722037803.203:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6940 comm="syz.1.468" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efe4ad77299 code=0x0
[  141.276287][ T6963] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  141.533238][ T5345] Bluetooth: hci3: command tx timeout
[  141.578740][ T6970] FAULT_INJECTION: forcing a failure.
[  141.578740][ T6970] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  141.584194][ T6970] CPU: 3 UID: 0 PID: 6970 Comm: syz.1.475 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  141.588235][ T6970] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  141.592929][ T6970] Call Trace:
[  141.594389][ T6970]  <TASK>
[  141.595711][ T6970]  dump_stack_lvl+0x16c/0x1f0
[  141.597766][ T6970]  should_fail_ex+0x497/0x5b0
[  141.599554][ T6970]  _copy_to_user+0x30/0xc0
[  141.601461][ T6970]  simple_read_from_buffer+0xd0/0x160
[  141.603815][ T6970]  proc_fail_nth_read+0x1b0/0x290
[  141.605861][ T6970]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  141.608176][ T6970]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  141.610556][ T6970]  vfs_read+0x1d4/0xbd0
[  141.612439][ T6970]  ? __fdget_pos+0xeb/0x180
[  141.614422][ T6970]  ? __pfx_vfs_read+0x10/0x10
[  141.616524][ T6970]  ? __pfx___mutex_lock+0x10/0x10
[  141.618714][ T6970]  ? __fget_files+0x256/0x400
[  141.620754][ T6970]  ksys_read+0x12f/0x260
[  141.622615][ T6970]  ? __pfx_ksys_read+0x10/0x10
[  141.624357][ T6970]  do_syscall_64+0xcd/0x250
[  141.626061][ T6970]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.628486][ T6970] RIP: 0033:0x7efe4ad75d7c
[  141.630311][ T6970] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  141.637382][ T6970] RSP: 002b:00007efe4bb0e040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  141.640416][ T6970] RAX: ffffffffffffffda RBX: 00007efe4af05f80 RCX: 00007efe4ad75d7c
[  141.643497][ T6970] RDX: 000000000000000f RSI: 00007efe4bb0e0b0 RDI: 0000000000000015
[  141.646800][ T6970] RBP: 00007efe4bb0e0a0 R08: 0000000000000000 R09: 0000000000000000
[  141.650430][ T6970] R10: 0000000020000440 R11: 0000000000000246 R12: 0000000000000001
[  141.653994][ T6970] R13: 000000000000000b R14: 00007efe4af05f80 R15: 00007ffff3f87b48
[  141.657789][ T6970]  </TASK>
[  141.671938][ T6973] Bluetooth: MGMT ver 1.23
[  142.021834][ T6983] FAULT_INJECTION: forcing a failure.
[  142.021834][ T6983] name failslab, interval 1, probability 0, space 0, times 0
[  142.029942][ T6983] CPU: 0 UID: 0 PID: 6983 Comm: syz.1.481 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  142.034863][ T6983] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  142.039200][ T6983] Call Trace:
[  142.040790][ T6983]  <TASK>
[  142.042249][ T6983]  dump_stack_lvl+0x16c/0x1f0
[  142.044695][ T6983]  should_fail_ex+0x497/0x5b0
[  142.047045][ T6983]  ? fs_reclaim_acquire+0xae/0x160
[  142.049424][ T6983]  should_failslab+0xc2/0x120
[  142.051706][ T6983]  __kmalloc_cache_node_noprof+0x6e/0x350
[  142.054489][ T6983]  ? __get_vm_area_node+0xe1/0x2d0
[  142.057009][ T6983]  __get_vm_area_node+0xe1/0x2d0
[  142.059470][ T6983]  __vmalloc_node_range_noprof+0x276/0x1520
[  142.062356][ T6983]  ? bpf_prog_alloc_no_stats+0x58/0x440
[  142.065142][ T6983]  ? bpf_prog_alloc_no_stats+0x58/0x440
[  142.067372][ T6983]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  142.070107][ T6983]  ? bpf_prog_alloc_no_stats+0x58/0x440
[  142.072830][ T6983]  __vmalloc_noprof+0x6d/0x90
[  142.075203][ T6983]  ? bpf_prog_alloc_no_stats+0x58/0x440
[  142.077917][ T6983]  bpf_prog_alloc_no_stats+0x58/0x440
[  142.080562][ T6983]  bpf_prog_alloc+0x3b/0x240
[  142.082781][ T6983]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  142.085939][ T6983]  bpf_prog_load+0x1b32/0x2660
[  142.088228][ T6983]  ? __pfx_bpf_prog_load+0x10/0x10
[  142.090759][ T6983]  ? avc_has_perm+0x11b/0x1c0
[  142.092269][   T39] audit: type=1400 audit(1722037804.773:897): avc:  denied  { read } for  pid=6984 comm="syz.0.482" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  142.093167][ T6983]  ? selinux_bpf+0xde/0x130
[  142.093197][ T6983]  ? security_bpf+0x8c/0xc0
[  142.093218][ T6983]  __sys_bpf+0x8e9/0x4a20
[  142.093242][ T6983]  ? ksys_write+0x21c/0x260
[  142.093258][ T6983]  ? __pfx_lock_release+0x10/0x10
[  142.093278][ T6983]  ? __pfx___sys_bpf+0x10/0x10
[  142.093301][ T6983]  ? vfs_write+0x14d/0x1140
[  142.093318][ T6983]  ? __mutex_unlock_slowpath+0x164/0x650
[  142.108421][   T39] audit: type=1400 audit(1722037804.773:898): avc:  denied  { open } for  pid=6984 comm="syz.0.482" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  142.110110][ T6983]  ? fput+0x32/0x390
[  142.136912][ T6983]  ? ksys_write+0x1ab/0x260
[  142.138679][ T6983]  ? __pfx_ksys_write+0x10/0x10
[  142.140819][ T6983]  __x64_sys_bpf+0x78/0xc0
[  142.143071][ T6983]  ? lockdep_hardirqs_on+0x7c/0x110
[  142.145434][ T6983]  do_syscall_64+0xcd/0x250
[  142.146290][   T39] audit: type=1400 audit(1722037804.833:899): avc:  denied  { ioctl } for  pid=6984 comm="syz.0.482" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  142.147456][ T6983]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.158246][ T6983] RIP: 0033:0x7efe4ad77299
[  142.160123][ T6983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.169109][ T6983] RSP: 002b:00007efe4bb0e048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  142.172996][ T6983] RAX: ffffffffffffffda RBX: 00007efe4af05f80 RCX: 00007efe4ad77299
[  142.176882][ T6983] RDX: 0000000000000090 RSI: 00000000200000c0 RDI: 0000000000000005
[  142.180583][ T6983] RBP: 00007efe4bb0e0a0 R08: 0000000000000000 R09: 0000000000000000
[  142.184923][ T6983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.188791][ T6983] R13: 000000000000000b R14: 00007efe4af05f80 R15: 00007ffff3f87b48
[  142.192789][ T6983]  </TASK>
[  142.195696][ T6983] warn_alloc: 1 callbacks suppressed
[  142.195708][ T6983] syz.1.481: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[  142.209844][ T6983] CPU: 1 UID: 0 PID: 6983 Comm: syz.1.481 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  142.211315][   T39] audit: type=1326 audit(1722037804.883:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6987 comm="syz.2.483" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f13c1777299 code=0x0
[  142.214396][ T6983] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  142.214410][ T6983] Call Trace:
[  142.214417][ T6983]  <TASK>
[  142.214424][ T6983]  dump_stack_lvl+0x16c/0x1f0
[  142.214456][ T6983]  warn_alloc+0x24d/0x3a0
[  142.214480][ T6983]  ? __pfx_warn_alloc+0x10/0x10
[  142.214502][ T6983]  ? fs_reclaim_acquire+0xae/0x160
[  142.214522][ T6983]  ? trace_kmalloc+0x2d/0xe0
[  142.214539][ T6983]  ? __kasan_kmalloc+0x8a/0xb0
[  142.214559][ T6983]  ? __get_vm_area_node+0x1bc/0x2d0
[  142.245455][ T6983]  __vmalloc_node_range_noprof+0xc1e/0x1520
[  142.248016][ T6983]  ? bpf_prog_alloc_no_stats+0x58/0x440
[  142.250285][ T6983]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  142.252801][ T6983]  ? bpf_prog_alloc_no_stats+0x58/0x440
[  142.254995][ T6983]  __vmalloc_noprof+0x6d/0x90
[  142.257084][ T6983]  ? bpf_prog_alloc_no_stats+0x58/0x440
[  142.257548][ T6991] FAULT_INJECTION: forcing a failure.
[  142.257548][ T6991] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  142.259508][ T6983]  bpf_prog_alloc_no_stats+0x58/0x440
[  142.267252][ T6983]  bpf_prog_alloc+0x3b/0x240
[  142.269285][ T6983]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  142.271893][ T6983]  bpf_prog_load+0x1b32/0x2660
[  142.274034][ T6983]  ? __pfx_bpf_prog_load+0x10/0x10
[  142.276355][ T6983]  ? avc_has_perm+0x11b/0x1c0
[  142.278347][ T6983]  ? selinux_bpf+0xde/0x130
[  142.280207][ T6983]  ? security_bpf+0x8c/0xc0
[  142.282009][ T6983]  __sys_bpf+0x8e9/0x4a20
[  142.283763][ T6983]  ? ksys_write+0x21c/0x260
[  142.285590][ T6983]  ? __pfx_lock_release+0x10/0x10
[  142.287592][ T6983]  ? __pfx___sys_bpf+0x10/0x10
[  142.289494][ T6983]  ? vfs_write+0x14d/0x1140
[  142.291396][ T6983]  ? __mutex_unlock_slowpath+0x164/0x650
[  142.293858][ T6983]  ? fput+0x32/0x390
[  142.295710][ T6983]  ? ksys_write+0x1ab/0x260
[  142.297531][ T6983]  ? __pfx_ksys_write+0x10/0x10
[  142.299472][ T6983]  __x64_sys_bpf+0x78/0xc0
[  142.301339][ T6983]  ? lockdep_hardirqs_on+0x7c/0x110
[  142.303637][ T6983]  do_syscall_64+0xcd/0x250
[  142.303794][ T6993] FAULT_INJECTION: forcing a failure.
[  142.303794][ T6993] name failslab, interval 1, probability 0, space 0, times 0
[  142.305746][ T6983]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.313751][ T6983] RIP: 0033:0x7efe4ad77299
[  142.315565][ T6983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.323893][ T6983] RSP: 002b:00007efe4bb0e048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  142.327505][ T6983] RAX: ffffffffffffffda RBX: 00007efe4af05f80 RCX: 00007efe4ad77299
[  142.330663][ T6983] RDX: 0000000000000090 RSI: 00000000200000c0 RDI: 0000000000000005
[  142.334004][ T6983] RBP: 00007efe4bb0e0a0 R08: 0000000000000000 R09: 0000000000000000
[  142.337745][ T6983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.341274][ T6983] R13: 000000000000000b R14: 00007efe4af05f80 R15: 00007ffff3f87b48
[  142.344682][ T6983]  </TASK>
[  142.345882][ T6991] CPU: 0 UID: 0 PID: 6991 Comm: syz.3.484 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  142.351077][ T6991] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  142.352026][ T6983] Mem-Info:
[  142.357097][ T6991] Call Trace:
[  142.357109][ T6991]  <TASK>
[  142.357117][ T6991]  dump_stack_lvl+0x16c/0x1f0
[  142.357144][ T6991]  should_fail_ex+0x497/0x5b0
[  142.357168][ T6991]  _copy_to_user+0x30/0xc0
[  142.358946][ T6983] active_anon:5497 inactive_anon:0 isolated_anon:0
[  142.358946][ T6983]  active_file:10801 inactive_file:2825 isolated_file:0
[  142.358946][ T6983]  unevictable:1768 dirty:437 writeback:0
[  142.358946][ T6983]  slab_reclaimable:9951 slab_unreclaimable:67100
[  142.358946][ T6983]  mapped:18233 shmem:2296 pagetables:731
[  142.358946][ T6983]  sec_pagetables:313 bounce:0
[  142.358946][ T6983]  kernel_misc_reclaimable:0
[  142.358946][ T6983]  free:565915 free_pcp:1992 free_cma:0
[  142.359881][ T6991]  simple_read_from_buffer+0xd0/0x160
[  142.361801][ T6983] Node 0 active_anon:21988kB inactive_anon:0kB active_file:43204kB inactive_file:11280kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:72932kB dirty:1736kB writeback:0kB shmem:5648kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10992kB pagetables:2924kB sec_pagetables:1252kB all_unreclaimable? no
[  142.363593][ T6991]  proc_fail_nth_read+0x1b0/0x290
[  142.363618][ T6991]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  142.363638][ T6991]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  142.363654][ T6991]  vfs_read+0x1d4/0xbd0
[  142.363670][ T6991]  ? __fdget_pos+0xeb/0x180
[  142.363685][ T6991]  ? __pfx_vfs_read+0x10/0x10
[  142.363699][ T6991]  ? __pfx___mutex_lock+0x10/0x10
[  142.363730][ T6991]  ? __fget_files+0x256/0x400
[  142.369821][ T6983] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:20kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:12kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  142.389419][ T6991]  ksys_read+0x12f/0x260
[  142.389448][ T6991]  ? __pfx_ksys_read+0x10/0x10
[  142.389468][ T6991]  do_syscall_64+0xcd/0x250
[  142.389494][ T6991]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.389513][ T6991] RIP: 0033:0x7f2f6af75d7c
[  142.389528][ T6991] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  142.392307][   T39] audit: type=1400 audit(1722037805.073:901): avc:  denied  { execute } for  pid=6987 comm="syz.2.483" name="file0" dev="tmpfs" ino=641 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  142.392477][ T6989] process 'syz.2.483' launched './file0' with NULL argv: empty string added
[  142.393423][ T6983] Node 0 DMA free:15360kB boost:0kB min:328kB low:408kB high:488kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  142.393455][ T6983] lowmem_reserve[]: 0 1313 0 0 0
[  142.393479][ T6983] Node 0 DMA32 free:609488kB boost:0kB min:28924kB low:36152kB high:43380kB reserved_highatomic:0KB active_anon:21988kB inactive_anon:0kB active_file:43204kB inactive_file:11280kB unevictable:3536kB writepending:1736kB present:2080628kB managed:1372144kB mlocked:0kB bounce:0kB free_pcp:6456kB local_pcp:4216kB free_cma:0kB
[  142.393506][ T6983] lowmem_reserve[]: 0 0 0 0 0
[  142.393525][ T6983] Node 1 Normal free:1638812kB boost:0kB min:38324kB low:47904kB high:57484kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:20kB unevictable:3536kB writepending:12kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:1480kB local_pcp:0kB free_cma:0kB
[  142.393552][ T6983] lowmem_reserve[]: 0 0 0 0 0
[  142.393570][ T6983] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  142.393632][ T6983] Node 0 DMA32: 192*4kB (M) 501*8kB (UME) 280*16kB (UME) 462*32kB (UME) 342*64kB (UME) 45*128kB (UME) 36*256kB (UM) 19*512kB (UM) 8*1024kB (UM) 9*2048kB (UM) 125*4096kB (UME) = 609256kB
[  142.393719][ T6983] Node 1 Normal: 2*4kB (UM) 3*8kB (M) 4*16kB (M) 3*32kB (UM) 2*64kB (M) 5*128kB (UM) 2*256kB (U) 6*512kB (UM) 2*1024kB (U) 3*2048kB (UM) 397*4096kB (UM) = 1638848kB
[  142.393804][ T6983] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  142.393812][ T6983] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  142.393821][ T6983] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  142.393829][ T6983] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  142.393837][ T6983] 15922 total pagecache pages
[  142.393841][ T6983] 0 pages in swap cache
[  142.393845][ T6983] Free swap  = 124996kB
[  142.393849][ T6983] Total swap = 124996kB
[  142.393853][ T6983] 1048443 pages RAM
[  142.393857][ T6983] 0 pages HighMem/MovableOnly
[  142.393860][ T6983] 256086 pages reserved
[  142.393864][ T6983] 0 pages cma reserved
[  142.405502][ T6991] RSP: 002b:00007f2f6be15040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  142.405527][ T6991] RAX: ffffffffffffffda RBX: 00007f2f6b105f80 RCX: 00007f2f6af75d7c
[  142.405541][ T6991] RDX: 000000000000000f RSI: 00007f2f6be150b0 RDI: 0000000000000004
[  142.405553][ T6991] RBP: 00007f2f6be150a0 R08: 0000000000000000 R09: 0000000000000000
[  142.405564][ T6991] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001
[  142.405575][ T6991] R13: 000000000000000b R14: 00007f2f6b105f80 R15: 00007ffc06d446f8
[  142.405590][ T6991]  </TASK>
[  142.412346][ T6993] CPU: 2 UID: 0 PID: 6993 Comm: syz.0.485 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  142.425393][   T39] audit: type=1400 audit(1722037805.083:902): avc:  denied  { execute_no_trans } for  pid=6987 comm="syz.2.483" path="/115/file0" dev="tmpfs" ino=641 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  142.435028][ T6993] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  142.435045][ T6993] Call Trace:
[  142.435054][ T6993]  <TASK>
[  142.435062][ T6993]  dump_stack_lvl+0x16c/0x1f0
[  142.435090][ T6993]  should_fail_ex+0x497/0x5b0
[  142.435116][ T6993]  ? fs_reclaim_acquire+0xae/0x160
[  142.469037][   T39] audit: type=1400 audit(1722037805.143:903): avc:  denied  { mount } for  pid=6987 comm="syz.2.483" name="/" dev="ramfs" ino=14030 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  142.475151][ T6993]  should_failslab+0xc2/0x120
[  142.475181][ T6993]  __kmalloc_noprof+0xcb/0x400
[  142.622116][ T6993]  ? __pfx_lock_acquire+0x10/0x10
[  142.624156][ T6993]  tomoyo_realpath_from_path+0xb9/0x720
[  142.626728][ T6993]  ? tomoyo_profile+0x47/0x60
[  142.629259][ T6993]  tomoyo_path_number_perm+0x245/0x590
[  142.631805][ T6993]  ? tomoyo_path_number_perm+0x232/0x590
[  142.634401][ T6993]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  142.636795][ T6993]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  142.639034][ T6993]  ? __fget_files+0x256/0x400
[  142.640874][ T6993]  security_file_ioctl+0x75/0xc0
[  142.642925][ T6993]  __x64_sys_ioctl+0xbb/0x220
[  142.644963][ T6993]  do_syscall_64+0xcd/0x250
[  142.646936][ T6993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.649044][ T6993] RIP: 0033:0x7f2572d77299
[  142.650920][ T6993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.658337][ T6993] RSP: 002b:00007f2573b84048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  142.661578][ T6993] RAX: ffffffffffffffda RBX: 00007f2572f05f80 RCX: 00007f2572d77299
[  142.664675][ T6993] RDX: 00000000200013c0 RSI: 00000000c100565c RDI: 0000000000000003
[  142.670684][ T6993] RBP: 00007f2573b840a0 R08: 0000000000000000 R09: 0000000000000000
[  142.674855][ T6993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.678286][ T6993] R13: 000000000000000b R14: 00007f2572f05f80 R15: 00007ffeb5566ce8
[  142.682188][ T6993]  </TASK>
[  142.683737][    C2] vkms_vblank_simulate: vblank timer overrun
[  142.694846][ T6993] ERROR: Out of memory at tomoyo_realpath_from_path.
[  142.710183][ T7007] trusted_key: encrypted_key: insufficient parameters specified
[  143.105363][ T7029] trusted_key: encrypted_key: insufficient parameters specified
[  143.115593][ T7029] FAULT_INJECTION: forcing a failure.
[  143.115593][ T7029] name failslab, interval 1, probability 0, space 0, times 0
[  143.121091][ T7029] CPU: 0 UID: 0 PID: 7029 Comm: syz.2.494 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  143.125538][ T7029] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  143.130291][ T7029] Call Trace:
[  143.131724][ T7029]  <TASK>
[  143.132891][ T7029]  dump_stack_lvl+0x16c/0x1f0
[  143.134879][ T7029]  should_fail_ex+0x497/0x5b0
[  143.136842][ T7029]  ? fs_reclaim_acquire+0xae/0x160
[  143.138971][ T7029]  should_failslab+0xc2/0x120
[  143.140975][ T7029]  kmem_cache_alloc_node_noprof+0x71/0x310
[  143.143408][ T7029]  ? __alloc_skb+0x2b1/0x380
[  143.145244][ T7029]  __alloc_skb+0x2b1/0x380
[  143.147119][ T7029]  ? __pfx___alloc_skb+0x10/0x10
[  143.149010][ T7029]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  143.151548][ T7029]  netlink_alloc_large_skb+0x69/0x130
[  143.153809][ T7029]  netlink_sendmsg+0x689/0xd70
[  143.156050][ T7029]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.158206][ T7029]  ? __import_iovec+0x1fd/0x6e0
[  143.160135][ T7029]  ____sys_sendmsg+0xab5/0xc90
[  143.162057][ T7029]  ? copy_msghdr_from_user+0x10b/0x160
[  143.164073][ T7029]  ? __pfx_____sys_sendmsg+0x10/0x10
[  143.166311][ T7029]  ? find_held_lock+0x2d/0x110
[  143.168262][ T7029]  ? __pfx___lock_acquire+0x10/0x10
[  143.170167][ T7029]  ___sys_sendmsg+0x135/0x1e0
[  143.171971][ T7029]  ? __pfx____sys_sendmsg+0x10/0x10
[  143.174152][ T7029]  ? ksys_write+0x21c/0x260
[  143.176116][ T7029]  ? __fget_light+0x173/0x210
[  143.178011][ T7029]  __sys_sendmsg+0x117/0x1f0
[  143.179901][ T7029]  ? __pfx___sys_sendmsg+0x10/0x10
[  143.182309][ T7029]  do_syscall_64+0xcd/0x250
[  143.184534][ T7029]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.187037][ T7029] RIP: 0033:0x7f13c1777299
[  143.189045][ T7029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.197786][ T7029] RSP: 002b:00007f13c245e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  143.201346][ T7029] RAX: ffffffffffffffda RBX: 00007f13c1905f80 RCX: 00007f13c1777299
[  143.204656][ T7029] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000007
[  143.207767][ T7029] RBP: 00007f13c245e0a0 R08: 0000000000000000 R09: 0000000000000000
[  143.211290][ T7029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.214596][ T7029] R13: 000000000000000b R14: 00007f13c1905f80 R15: 00007ffee7ed33a8
[  143.217996][ T7029]  </TASK>
[  143.245557][ T7030] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  143.484061][ T7036] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  143.613157][ T5345] Bluetooth: hci3: command tx timeout
[  144.402797][ T5340] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  144.412709][ T5340] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  144.419050][ T5340] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  144.424331][ T5340] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  144.440188][ T5340] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  144.446605][ T5340] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  144.470297][ T7046] netlink: 4 bytes leftover after parsing attributes in process `syz.2.499'.
[  144.607792][   T39] audit: type=1400 audit(1722037807.293:904): avc:  denied  { getopt } for  pid=7045 comm="syz.2.499" laddr=172.20.20.10 lport=250 faddr=172.20.20.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  144.712050][ T7047] chnl_net:caif_netlink_parms(): no params data found
[  145.030761][ T7047] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.047506][ T7047] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.050549][ T7047] bridge_slave_0: entered allmulticast mode
[  145.066087][ T7047] bridge_slave_0: entered promiscuous mode
[  145.086149][ T7047] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.091063][ T7047] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.106518][ T7047] bridge_slave_1: entered allmulticast mode
[  145.110821][ T7047] bridge_slave_1: entered promiscuous mode
[  145.294797][ T7047] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  145.330181][ T7047] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  145.352390][   T39] audit: type=1326 audit(1722037808.033:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7063 comm="syz.2.502" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f13c1777299 code=0x0
[  145.440945][ T7047] team0: Port device team_slave_0 added
[  145.448781][ T7047] team0: Port device team_slave_1 added
[  145.527212][ T7047] batman_adv: batadv0: Adding interface: batadv_slave_0
[  145.530460][ T7047] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  145.542127][ T7047] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  145.597033][ T7047] batman_adv: batadv0: Adding interface: batadv_slave_1
[  145.600514][ T7047] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  145.612533][ T7047] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  145.740135][ T7047] hsr_slave_0: entered promiscuous mode
[  145.747537][ T7047] hsr_slave_1: entered promiscuous mode
[  145.920874][ T7047] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.282070][ T7080] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  146.324863][ T7083] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  146.495645][ T5340] Bluetooth: hci4: command tx timeout
[  147.131229][ T7090] netlink: 4 bytes leftover after parsing attributes in process `syz.2.509'.
[  147.148651][ T7092] netlink: 36 bytes leftover after parsing attributes in process `syz.3.510'.
[  147.150220][ T7047] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.154536][ T7088] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  147.247024][ T7047] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.339755][ T7047] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.438986][   T97] bridge_slave_1: left allmulticast mode
[  147.441380][   T97] bridge_slave_1: left promiscuous mode
[  147.445505][   T97] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.454081][   T97] bridge_slave_0: left allmulticast mode
[  147.457197][   T97] bridge_slave_0: left promiscuous mode
[  147.459263][   T97] bridge0: port 1(bridge_slave_0) entered disabled state
[  147.808695][   T97] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  147.815953][   T97] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  147.822181][   T97] bond0 (unregistering): Released all slaves
[  147.881574][ T7047] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  147.904799][ T7047] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  147.918176][ T7047] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  147.927669][ T7047] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  148.036728][ T7047] 8021q: adding VLAN 0 to HW filter on device bond0
[  148.052398][ T7047] 8021q: adding VLAN 0 to HW filter on device team0
[  148.053351][ T7107] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  148.065321][ T5391] bridge0: port 1(bridge_slave_0) entered blocking state
[  148.069987][ T5391] bridge0: port 1(bridge_slave_0) entered forwarding state
[  148.078514][ T5391] bridge0: port 2(bridge_slave_1) entered blocking state
[  148.082666][ T5391] bridge0: port 2(bridge_slave_1) entered forwarding state
[  148.133330][ T7108] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  148.199509][   T97] hsr_slave_0: left promiscuous mode
[  148.213515][   T97] hsr_slave_1: left promiscuous mode
[  148.228196][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  148.231953][   T97] batman_adv: batadv0: Removing interface: batadv_slave_0
[  148.240046][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  148.245362][   T97] batman_adv: batadv0: Removing interface: batadv_slave_1
[  148.285634][   T97] veth1_macvtap: left promiscuous mode
[  148.288416][   T97] veth0_macvtap: left promiscuous mode
[  148.291294][   T97] veth1_vlan: left promiscuous mode
[  148.294505][   T97] veth0_vlan: left promiscuous mode
[  148.590387][ T5340] Bluetooth: hci4: command tx timeout
[  149.114295][   T97] team0 (unregistering): Port device team_slave_1 removed
[  149.148423][ T7126] netlink: 4 bytes leftover after parsing attributes in process `syz.0.522'.
[  149.272252][   T97] team0 (unregistering): Port device team_slave_0 removed
[  150.185565][ T7047] 8021q: adding VLAN 0 to HW filter on device batadv0
[  150.226875][ T7139] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  150.240289][ T7047] veth0_vlan: entered promiscuous mode
[  150.262323][ T7047] veth1_vlan: entered promiscuous mode
[  150.292379][ T7047] veth0_macvtap: entered promiscuous mode
[  150.300878][ T7047] veth1_macvtap: entered promiscuous mode
[  150.312366][ T7047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.317742][ T7047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.321973][ T7047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.326448][ T7047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.330464][ T7047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.335191][ T7047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.341454][ T7047] batman_adv: batadv0: Interface activated: batadv_slave_0
[  150.353642][ T7047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.358435][ T7047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.362732][ T7047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.368000][ T7047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.375029][ T7047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.379645][ T7047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.389131][ T7047] batman_adv: batadv0: Interface activated: batadv_slave_1
[  150.420621][ T7047] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  150.428719][ T7047] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  150.434693][ T7047] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  150.440459][ T7047] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  150.509879][ T7147] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  150.536230][ T1218] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  150.539807][ T1218] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  150.567175][ T1114] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  150.570661][ T1114] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  150.576640][ T7149] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  150.663159][ T5340] Bluetooth: hci4: command tx timeout
[  150.841274][ T7152] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  151.459150][ T7166] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  151.514165][ T7167] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  151.734209][ T7174] syz.1.536 (7174): attempted to duplicate a private mapping with mremap.  This is not supported.
[  151.742588][   T39] audit: type=1400 audit(1722037814.423:906): avc:  denied  { bind } for  pid=7170 comm="syz.1.536" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  151.751356][   T39] audit: type=1400 audit(1722037814.433:907): avc:  denied  { connect } for  pid=7170 comm="syz.1.536" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  152.421328][ T7185] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  152.507644][ T7190] fuse: Bad value for 'group_id'
[  152.509957][ T7190] fuse: Bad value for 'group_id'
[  152.743222][ T5340] Bluetooth: hci4: command tx timeout
[  152.901074][ T7195] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  153.307812][ T7202] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  153.728104][   T39] audit: type=1400 audit(1722037816.413:908): avc:  denied  { bind } for  pid=7208 comm="syz.1.551" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  153.838813][ T7213] FAULT_INJECTION: forcing a failure.
[  153.838813][ T7213] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.845704][ T7213] CPU: 2 UID: 0 PID: 7213 Comm: syz.2.552 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  153.850202][ T7213] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.855058][ T7213] Call Trace:
[  153.856574][ T7213]  <TASK>
[  153.857918][ T7213]  dump_stack_lvl+0x16c/0x1f0
[  153.860303][ T7213]  should_fail_ex+0x497/0x5b0
[  153.862530][ T7213]  _copy_from_iter+0x2a1/0x1150
[  153.865160][ T7213]  ? __pfx__copy_from_iter+0x10/0x10
[  153.867553][ T7213]  ? __virt_addr_valid+0x5e/0x590
[  153.870258][ T7213]  ? __phys_addr_symbol+0x30/0x80
[  153.872672][ T7213]  ? __check_object_size+0x497/0x720
[  153.875037][ T7213]  kernfs_fop_write_iter+0x1a3/0x500
[  153.877232][ T7213]  vfs_write+0x6b6/0x1140
[  153.879002][ T7213]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  153.881477][ T7213]  ? __pfx_vfs_write+0x10/0x10
[  153.883219][ T7213]  ? __pfx___mutex_lock+0x10/0x10
[  153.885265][ T7213]  ? __fget_files+0x256/0x400
[  153.887609][ T7213]  ksys_write+0x12f/0x260
[  153.889552][ T7213]  ? __pfx_ksys_write+0x10/0x10
[  153.891578][ T7213]  do_syscall_64+0xcd/0x250
[  153.893432][ T7213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.895950][ T7213] RIP: 0033:0x7f13c1777299
[  153.897648][ T7213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.904594][ T7213] RSP: 002b:00007f13c245e048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  153.908033][ T7213] RAX: ffffffffffffffda RBX: 00007f13c1905f80 RCX: 00007f13c1777299
[  153.911401][ T7213] RDX: 000000000000000a RSI: 0000000020000100 RDI: 0000000000000004
[  153.914470][ T7213] RBP: 00007f13c245e0a0 R08: 0000000000000000 R09: 0000000000000000
[  153.917473][ T7213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.920528][ T7213] R13: 000000000000000b R14: 00007f13c1905f80 R15: 00007ffee7ed33a8
[  153.923961][ T7213]  </TASK>
[  154.220666][ T7220] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  154.490678][ T7226] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  154.734181][ T7231] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  154.905831][ T7235] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  154.943551][ T7238] netlink: 48 bytes leftover after parsing attributes in process `syz.2.562'.
[  154.943558][ T7237] netlink: 48 bytes leftover after parsing attributes in process `syz.2.562'.
[  154.976157][ T7240] FAULT_INJECTION: forcing a failure.
[  154.976157][ T7240] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  154.981941][ T7240] CPU: 0 UID: 0 PID: 7240 Comm: syz.2.563 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  154.986338][ T7240] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  154.990877][ T7240] Call Trace:
[  154.992409][ T7240]  <TASK>
[  154.993743][ T7240]  dump_stack_lvl+0x16c/0x1f0
[  154.995841][ T7240]  should_fail_ex+0x497/0x5b0
[  154.997951][ T7240]  _copy_to_user+0x30/0xc0
[  154.999966][ T7240]  simple_read_from_buffer+0xd0/0x160
[  155.002451][ T7240]  proc_fail_nth_read+0x1b0/0x290
[  155.004655][ T7240]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  155.006833][ T7240]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  155.009013][ T7240]  vfs_read+0x1d4/0xbd0
[  155.010686][ T7240]  ? __fdget_pos+0xeb/0x180
[  155.012485][ T7240]  ? __pfx_vfs_read+0x10/0x10
[  155.014490][ T7240]  ? __pfx___mutex_lock+0x10/0x10
[  155.016612][ T7240]  ? __fget_files+0x256/0x400
[  155.018692][ T7240]  ksys_read+0x12f/0x260
[  155.018729][   T39] audit: type=1400 audit(1722037817.663:909): avc:  denied  { setopt } for  pid=7233 comm="syz.3.561" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  155.020593][ T7240]  ? __pfx_ksys_read+0x10/0x10
[  155.020617][ T7240]  do_syscall_64+0xcd/0x250
[  155.032752][ T7240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.035272][ T7240] RIP: 0033:0x7f13c1775d7c
[  155.037202][ T7240] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  155.044751][ T7240] RSP: 002b:00007f13c245e040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  155.048455][ T7240] RAX: ffffffffffffffda RBX: 00007f13c1905f80 RCX: 00007f13c1775d7c
[  155.051786][ T7240] RDX: 000000000000000f RSI: 00007f13c245e0b0 RDI: 0000000000000004
[  155.055044][ T7240] RBP: 00007f13c245e0a0 R08: 0000000000000000 R09: 0000000000000000
[  155.058179][ T7240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.061412][ T7240] R13: 000000000000000b R14: 00007f13c1905f80 R15: 00007ffee7ed33a8
[  155.064734][ T7240]  </TASK>
[  155.117514][   T39] audit: type=1400 audit(1722037817.803:910): avc:  denied  { ioctl } for  pid=7242 comm="syz.3.565" path="socket:[16010]" dev="sockfs" ino=16010 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  155.163139][   T39] audit: type=1400 audit(1722037817.843:911): avc:  denied  { execute } for  pid=7245 comm="syz.3.566" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=15347 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  155.201921][ T7251] fuse: Bad value for 'fd'
[  155.290447][ T7254] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  155.367369][ T7257] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  155.447201][ T7258] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  155.565349][ T7267] netlink: 'syz.1.571': attribute type 4 has an invalid length.
[  155.739848][   T39] audit: type=1326 audit(1722037818.423:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7272 comm="syz.1.574" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f856f377299 code=0x0
[  155.998481][ T7276] netlink: 'syz.2.575': attribute type 4 has an invalid length.
[  156.094692][ T7281] FAULT_INJECTION: forcing a failure.
[  156.094692][ T7281] name failslab, interval 1, probability 0, space 0, times 0
[  156.100143][ T7281] CPU: 3 UID: 0 PID: 7281 Comm: syz.3.577 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  156.100167][ T7281] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.100178][ T7281] Call Trace:
[  156.100185][ T7281]  <TASK>
[  156.100193][ T7281]  dump_stack_lvl+0x16c/0x1f0
[  156.114761][ T7281]  should_fail_ex+0x497/0x5b0
[  156.116801][ T7281]  ? fs_reclaim_acquire+0xae/0x160
[  156.119033][ T7281]  should_failslab+0xc2/0x120
[  156.121088][ T7281]  kmem_cache_alloc_node_noprof+0x71/0x310
[  156.123650][ T7281]  ? __alloc_skb+0x2b1/0x380
[  156.125671][ T7281]  __alloc_skb+0x2b1/0x380
[  156.127612][ T7281]  ? __pfx___alloc_skb+0x10/0x10
[  156.129816][ T7281]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  156.132417][ T7281]  netlink_alloc_large_skb+0x69/0x130
[  156.134714][ T7281]  netlink_sendmsg+0x689/0xd70
[  156.136699][ T7281]  ? __pfx_netlink_sendmsg+0x10/0x10
[  156.138918][ T7281]  ? __import_iovec+0x1fd/0x6e0
[  156.141063][ T7281]  ____sys_sendmsg+0xab5/0xc90
[  156.143179][ T7281]  ? copy_msghdr_from_user+0x10b/0x160
[  156.145556][ T7281]  ? __pfx_____sys_sendmsg+0x10/0x10
[  156.147903][ T7281]  ? find_held_lock+0x2d/0x110
[  156.149982][ T7281]  ? __pfx___lock_acquire+0x10/0x10
[  156.152236][ T7281]  ___sys_sendmsg+0x135/0x1e0
[  156.154289][ T7281]  ? __pfx____sys_sendmsg+0x10/0x10
[  156.156627][ T7281]  ? ksys_write+0x21c/0x260
[  156.158640][ T7281]  ? __fget_light+0x173/0x210
[  156.160498][ T7281]  __sys_sendmsg+0x117/0x1f0
[  156.162197][ T7281]  ? __pfx___sys_sendmsg+0x10/0x10
[  156.164350][ T7281]  do_syscall_64+0xcd/0x250
[  156.166435][ T7281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.168894][ T7281] RIP: 0033:0x7f2f6af77299
[  156.170428][ T7281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.178644][ T7281] RSP: 002b:00007f2f6be15048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  156.183196][ T7281] RAX: ffffffffffffffda RBX: 00007f2f6b105f80 RCX: 00007f2f6af77299
[  156.186619][ T7281] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  156.190431][ T7281] RBP: 00007f2f6be150a0 R08: 0000000000000000 R09: 0000000000000000
[  156.193736][ T7281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  156.197722][ T7281] R13: 000000000000000b R14: 00007f2f6b105f80 R15: 00007ffc06d446f8
[  156.200488][ T7281]  </TASK>
[  156.283080][   T39] audit: type=1326 audit(1722037818.963:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7283 comm="syz.0.578" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2572d77299 code=0x0
[  157.187459][ T7304] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  157.232853][ T7309] netlink: 8 bytes leftover after parsing attributes in process `syz.1.584'.
[  157.242889][   T39] audit: type=1400 audit(1722037819.923:914): avc:  denied  { map } for  pid=7308 comm="syz.1.584" path="socket:[16137]" dev="sockfs" ino=16137 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  157.254610][   T39] audit: type=1400 audit(1722037819.923:915): avc:  denied  { accept } for  pid=7308 comm="syz.1.584" path="socket:[16137]" dev="sockfs" ino=16137 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  157.321066][ T7310] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  158.133752][   T39] audit: type=1326 audit(1722037820.813:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.1.588" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f856f377299 code=0x0
[  158.191817][ T7322] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  158.257137][ T7327] netlink: 32 bytes leftover after parsing attributes in process `syz.2.590'.
[  158.574579][ T7335] netlink: 8 bytes leftover after parsing attributes in process `syz.2.593'.
[  158.618784][   T39] audit: type=1400 audit(1722037821.303:917): avc:  denied  { getopt } for  pid=7336 comm="syz.2.594" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  158.940746][ T7340] fuse: Unknown parameter 'fo'
[  159.100803][ T1114] Bluetooth: hci3: Frame reassembly failed (-84)
[  159.105817][ T1114] Bluetooth: hci3: Frame reassembly failed (-84)
[  159.117315][ T7348] Error parsing options; rc = [-22]
[  159.261997][ T7357] fuse: Unknown parameter 'grou00000000000000000000'
[  159.411603][ T7359] netlink: 32 bytes leftover after parsing attributes in process `syz.2.602'.
[  159.439136][ T5352] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  159.449238][ T5352] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  159.455124][ T5352] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  159.459241][ T5352] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  159.462992][ T5352] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  159.466597][ T5352] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  159.631190][ T7360] chnl_net:caif_netlink_parms(): no params data found
[  159.731931][ T1114] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.867074][ T1114] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.879646][ T7360] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.882574][ T7360] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.891327][ T7360] bridge_slave_0: entered allmulticast mode
[  159.899278][ T7360] bridge_slave_0: entered promiscuous mode
[  159.905259][ T7360] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.908445][ T7360] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.911983][ T7360] bridge_slave_1: entered allmulticast mode
[  159.917336][ T7360] bridge_slave_1: entered promiscuous mode
[  159.961593][ T7372] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  160.011040][ T1114] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.045522][ T7375] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  160.128115][   T39] audit: type=1326 audit(1722037822.813:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7376 comm="syz.2.605" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f13c1777299 code=0x0
[  160.142359][ T1114] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.154232][ T7360] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  160.161211][ T7360] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  160.235991][ T7360] team0: Port device team_slave_0 added
[  160.244496][ T7360] team0: Port device team_slave_1 added
[  160.319928][ T7360] batman_adv: batadv0: Adding interface: batadv_slave_0
[  160.322877][ T7360] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  160.334208][ T7360] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  160.340213][ T7360] batman_adv: batadv0: Adding interface: batadv_slave_1
[  160.343511][ T7360] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  160.362928][ T7360] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  160.411854][   T39] audit: type=1400 audit(1722037823.093:919): avc:  denied  { write } for  pid=7387 comm="syz.3.609" path="socket:[16250]" dev="sockfs" ino=16250 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  160.415249][ T7388] netlink: 8 bytes leftover after parsing attributes in process `syz.3.609'.
[  160.476462][ T1114] bridge_slave_1: left allmulticast mode
[  160.479086][ T1114] bridge_slave_1: left promiscuous mode
[  160.482684][ T1114] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.494792][ T1114] bridge_slave_0: left allmulticast mode
[  160.497467][ T1114] bridge_slave_0: left promiscuous mode
[  160.500168][ T1114] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.553139][   T39] audit: type=1400 audit(1722037823.233:920): avc:  denied  { read } for  pid=7389 comm="syz.3.610" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  160.601516][ T7396] netlink: 32 bytes leftover after parsing attributes in process `syz.3.611'.
[  160.808767][ T1114] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  160.824668][ T1114] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  160.829266][ T1114] bond0 (unregistering): Released all slaves
[  160.842286][ T7360] hsr_slave_0: entered promiscuous mode
[  160.845355][ T7360] hsr_slave_1: entered promiscuous mode
[  160.848510][ T7360] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  160.851626][ T7360] Cannot create hsr debugfs directory
[  160.935021][ T1114] tipc: Left network mode
[  161.145711][ T5345] Bluetooth: hci3: command 0x1003 tx timeout
[  161.147561][ T5340] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  161.257422][ T1114] hsr_slave_0: left promiscuous mode
[  161.261262][ T1114] hsr_slave_1: left promiscuous mode
[  161.265367][ T1114] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  161.268652][ T1114] batman_adv: batadv0: Removing interface: batadv_slave_0
[  161.280654][ T1114] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  161.287873][ T1114] batman_adv: batadv0: Removing interface: batadv_slave_1
[  161.298094][ T7409] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  161.335371][ T1114] veth1_macvtap: left promiscuous mode
[  161.337711][ T1114] veth0_macvtap: left promiscuous mode
[  161.340317][ T1114] veth1_vlan: left promiscuous mode
[  161.342652][ T1114] veth0_vlan: left promiscuous mode
[  161.533284][ T5340] Bluetooth: hci1: command tx timeout
[  161.660581][ T7419] 9pnet_fd: Insufficient options for proto=fd
[  162.093254][   T39] audit: type=1400 audit(1722037824.773:921): avc:  denied  { read } for  pid=7426 comm="syz.2.618" name="mice" dev="devtmpfs" ino=862 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  162.102189][   T39] audit: type=1400 audit(1722037824.773:922): avc:  denied  { open } for  pid=7426 comm="syz.2.618" path="/dev/input/mice" dev="devtmpfs" ino=862 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  162.168868][   T39] audit: type=1400 audit(1722037824.853:923): avc:  denied  { create } for  pid=7426 comm="syz.2.618" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  162.173146][ T7432] FAULT_INJECTION: forcing a failure.
[  162.173146][ T7432] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.182078][ T7432] CPU: 1 UID: 0 PID: 7432 Comm: syz.3.620 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  162.185886][ T7432] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  162.189337][ T7432] Call Trace:
[  162.190644][ T7432]  <TASK>
[  162.191806][ T7432]  dump_stack_lvl+0x16c/0x1f0
[  162.193443][ T7432]  should_fail_ex+0x497/0x5b0
[  162.195329][ T7432]  _copy_to_user+0x30/0xc0
[  162.197120][ T7432]  simple_read_from_buffer+0xd0/0x160
[  162.198752][ T7432]  proc_fail_nth_read+0x1b0/0x290
[  162.200612][ T7432]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  162.202695][ T7432]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  162.204447][ T7432]  vfs_read+0x1d4/0xbd0
[  162.205568][ T7432]  ? __fdget_pos+0xeb/0x180
[  162.207294][ T7432]  ? __pfx_vfs_read+0x10/0x10
[  162.209278][ T7432]  ? __pfx___mutex_lock+0x10/0x10
[  162.211057][ T7432]  ? __fget_files+0x256/0x400
[  162.212707][ T7432]  ksys_read+0x12f/0x260
[  162.214235][ T7432]  ? __pfx_ksys_read+0x10/0x10
[  162.216131][ T7432]  do_syscall_64+0xcd/0x250
[  162.217938][ T7432]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.220195][ T7432] RIP: 0033:0x7f2f6af75d7c
[  162.221947][ T7432] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  162.229672][ T7432] RSP: 002b:00007f2f6be15040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  162.233142][ T7432] RAX: ffffffffffffffda RBX: 00007f2f6b105f80 RCX: 00007f2f6af75d7c
[  162.236443][ T7432] RDX: 000000000000000f RSI: 00007f2f6be150b0 RDI: 0000000000000005
[  162.239693][ T7432] RBP: 00007f2f6be150a0 R08: 0000000000000000 R09: 0000000000000000
[  162.242944][ T7432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.246247][ T7432] R13: 000000000000000b R14: 00007f2f6b105f80 R15: 00007ffc06d446f8
[  162.249836][ T7432]  </TASK>
[  162.336685][   T39] kauditd_printk_skb: 1 callbacks suppressed
[  162.336700][   T39] audit: type=1400 audit(1722037825.013:925): avc:  denied  { create } for  pid=7438 comm="syz.3.623" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  162.362391][   T39] audit: type=1400 audit(1722037825.033:926): avc:  denied  { setopt } for  pid=7438 comm="syz.3.623" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  162.450278][ T1114] team0 (unregistering): Port device team_slave_1 removed
[  162.540919][ T1114] team0 (unregistering): Port device team_slave_0 removed
[  163.164596][ T7462] FAULT_INJECTION: forcing a failure.
[  163.164596][ T7462] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  163.173303][ T7462] CPU: 1 UID: 0 PID: 7462 Comm: syz.3.630 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  163.177416][ T7462] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.181473][ T7462] Call Trace:
[  163.182969][ T7462]  <TASK>
[  163.184305][ T7462]  dump_stack_lvl+0x16c/0x1f0
[  163.186076][ T7462]  should_fail_ex+0x497/0x5b0
[  163.187804][ T7462]  _copy_to_user+0x30/0xc0
[  163.189754][ T7462]  simple_read_from_buffer+0xd0/0x160
[  163.192056][ T7462]  proc_fail_nth_read+0x1b0/0x290
[  163.194203][ T7462]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  163.196499][ T7462]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  163.198940][ T7462]  vfs_read+0x1d4/0xbd0
[  163.200791][ T7462]  ? __fdget_pos+0xeb/0x180
[  163.202768][ T7462]  ? __pfx_vfs_read+0x10/0x10
[  163.204704][ T7462]  ? __pfx___mutex_lock+0x10/0x10
[  163.206942][ T7462]  ? __fget_files+0x256/0x400
[  163.209002][ T7462]  ksys_read+0x12f/0x260
[  163.210868][ T7462]  ? __pfx_ksys_read+0x10/0x10
[  163.212547][ T7462]  do_syscall_64+0xcd/0x250
[  163.214322][ T7462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.216854][ T7462] RIP: 0033:0x7f2f6af75d7c
[  163.218807][ T7462] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  163.226796][ T7462] RSP: 002b:00007f2f6be15040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  163.230283][ T7462] RAX: ffffffffffffffda RBX: 00007f2f6b105f80 RCX: 00007f2f6af75d7c
[  163.233625][ T7462] RDX: 000000000000000f RSI: 00007f2f6be150b0 RDI: 0000000000000005
[  163.237051][ T7462] RBP: 00007f2f6be150a0 R08: 0000000000000000 R09: 0000000000000000
[  163.239907][ T7462] R10: 0000000020000100 R11: 0000000000000246 R12: 0000000000000001
[  163.242660][ T7462] R13: 000000000000000b R14: 00007f2f6b105f80 R15: 00007ffc06d446f8
[  163.246095][ T7462]  </TASK>
[  163.326091][ T7458] kvm: vcpu 0: requested 88 ns lapic timer period limited to 200000 ns
[  163.425825][ T7458] kvm: pic: non byte write
[  163.470026][ T7479] netlink: 32 bytes leftover after parsing attributes in process `syz.1.634'.
[  163.479022][ T7360] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  163.490713][ T7360] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  163.501909][ T7360] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  163.506062][   T39] audit: type=1400 audit(1722037826.193:927): avc:  denied  { write } for  pid=4809 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  163.515328][   T39] audit: type=1400 audit(1722037826.193:928): avc:  denied  { remove_name } for  pid=4809 comm="syslogd" name="messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  163.522061][ T7360] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  163.524558][   T39] audit: type=1400 audit(1722037826.193:929): avc:  denied  { add_name } for  pid=4809 comm="syslogd" name="messages.0" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  163.578941][ T7481] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  163.613942][ T5340] Bluetooth: hci1: command tx timeout
[  163.648230][ T7360] 8021q: adding VLAN 0 to HW filter on device bond0
[  163.671342][ T7360] 8021q: adding VLAN 0 to HW filter on device team0
[  163.686057][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.688862][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[  163.698812][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.701916][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  163.891440][ T7501] tmpfs: Bad value for 'mpol'
[  163.895004][   T39] audit: type=1400 audit(1722037826.573:930): avc:  denied  { mounton } for  pid=7500 comm="syz.1.636" path="/syzcgroup/unified/syz1" dev="cgroup2" ino=70 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  163.908884][   T39] audit: type=1326 audit(1722037826.593:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7500 comm="syz.1.636" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f856f377299 code=0x0
[  163.932199][ T7360] 8021q: adding VLAN 0 to HW filter on device batadv0
[  163.980947][ T7360] veth0_vlan: entered promiscuous mode
[  163.988966][ T7360] veth1_vlan: entered promiscuous mode
[  164.015884][ T7360] veth0_macvtap: entered promiscuous mode
[  164.021885][ T7360] veth1_macvtap: entered promiscuous mode
[  164.034726][ T7360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  164.038813][ T7360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.042629][ T7360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  164.047406][ T7360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.051544][ T7360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  164.057580][ T7360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.064419][ T7360] batman_adv: batadv0: Interface activated: batadv_slave_0
[  164.072377][ T7360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  164.076500][ T7360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.080632][ T7360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  164.085156][ T7360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.088948][ T7360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  164.092737][ T7360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.098640][ T7360] batman_adv: batadv0: Interface activated: batadv_slave_1
[  164.109155][ T7360] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  164.112869][ T7360] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.116796][ T7360] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  164.120479][ T7360] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  164.177197][ T1114] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  164.180694][ T1114] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  164.207824][ T1218] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  164.211245][ T1218] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  164.339572][ T5340] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  164.340543][   T39] audit: type=1400 audit(1722037827.023:932): avc:  denied  { create } for  pid=7509 comm="syz.3.638" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  164.602361][ T7517] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  164.766446][   T39] audit: type=1326 audit(1722037827.453:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7523 comm="syz.1.643" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f856f377299 code=0x0
[  164.831668][ T7525] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  165.695013][ T5340] Bluetooth: hci1: command tx timeout
[  165.733229][ T5340] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  165.806920][ T7551] fuse: Unknown parameter 'group_id00000000000000000000'
[  166.152342][ T7556] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  166.333218][ T5340] Bluetooth: hci2: command 0x0406 tx timeout
[  166.874458][ T7560] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  167.013905][ T7571] FAULT_INJECTION: forcing a failure.
[  167.013905][ T7571] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.019479][ T7571] CPU: 1 UID: 0 PID: 7571 Comm: syz.1.657 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  167.023953][ T7571] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.028875][ T7571] Call Trace:
[  167.030396][ T7571]  <TASK>
[  167.031740][ T7571]  dump_stack_lvl+0x16c/0x1f0
[  167.033860][ T7571]  should_fail_ex+0x497/0x5b0
[  167.036035][ T7571]  _copy_from_iter+0x2a1/0x1150
[  167.037959][ T7571]  ? __pfx__copy_from_iter+0x10/0x10
[  167.039908][ T7571]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  167.042525][ T7571]  ? tun_build_skb.constprop.0+0x1b8/0x1390
[  167.045118][ T7571]  ? __pfx_lock_release+0x10/0x10
[  167.047287][ T7571]  ? __read_once_word_nocheck+0x9/0x20
[  167.049589][ T7571]  ? unwind_next_frame+0x51/0x23a0
[  167.051778][ T7571]  copy_page_from_iter+0xa5/0x120
[  167.053930][ T7571]  tun_build_skb.constprop.0+0x294/0x1390
[  167.056381][ T7571]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[  167.058914][ T7571]  ? __pfx___lock_acquire+0x10/0x10
[  167.061151][ T7571]  ? __pfx_mark_lock+0x10/0x10
[  167.063237][ T7571]  tun_get_user+0x888/0x3c30
[  167.065246][ T7571]  ? __pfx_tun_get_user+0x10/0x10
[  167.067108][ T7571]  ? find_held_lock+0x2d/0x110
[  167.069202][ T7571]  ? __pfx_lock_release+0x10/0x10
[  167.070939][ T7571]  tun_chr_write_iter+0xe8/0x210
[  167.072638][ T7571]  vfs_write+0x6b6/0x1140
[  167.074131][ T7571]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  167.076319][ T7571]  ? __pfx_vfs_write+0x10/0x10
[  167.078169][ T7571]  ? __fget_files+0x256/0x400
[  167.079922][ T7571]  ? __fget_light+0x173/0x210
[  167.081670][ T7571]  ksys_write+0x12f/0x260
[  167.083270][ T7571]  ? __pfx_ksys_write+0x10/0x10
[  167.085370][ T7571]  do_syscall_64+0xcd/0x250
[  167.087447][ T7571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.089975][ T7571] RIP: 0033:0x7f856f375e1f
[  167.091564][ T7571] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  167.099029][ T7571] RSP: 002b:00007f85701c1010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  167.102380][ T7571] RAX: ffffffffffffffda RBX: 00007f856f505f80 RCX: 00007f856f375e1f
[  167.105385][ T7571] RDX: 00000000000003b6 RSI: 00000000200003c0 RDI: 00000000000000c8
[  167.108801][ T7571] RBP: 00007f85701c10a0 R08: 0000000000000000 R09: 0000000000000000
[  167.112234][ T7571] R10: 00000000000003b6 R11: 0000000000000293 R12: 0000000000000001
[  167.115461][ T7571] R13: 000000000000000b R14: 00007f856f505f80 R15: 00007fff177ab918
[  167.118578][ T7571]  </TASK>
[  167.172107][   T39] audit: type=1326 audit(1722037829.853:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7573 comm="syz.1.658" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f856f377299 code=0x0
[  167.693327][ T5340] Bluetooth: hci0: command 0x0406 tx timeout
[  167.773147][ T5340] Bluetooth: hci1: command tx timeout
[  168.033514][ T7596] FAULT_INJECTION: forcing a failure.
[  168.033514][ T7596] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  168.039876][ T7596] CPU: 2 UID: 0 PID: 7596 Comm: syz.1.667 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  168.043991][ T7596] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  168.048516][ T7596] Call Trace:
[  168.049932][ T7596]  <TASK>
[  168.051212][ T7596]  dump_stack_lvl+0x16c/0x1f0
[  168.053216][ T7596]  should_fail_ex+0x497/0x5b0
[  168.056518][ T7596]  _copy_to_user+0x30/0xc0
[  168.058658][ T7596]  simple_read_from_buffer+0xd0/0x160
[  168.060982][ T7596]  proc_fail_nth_read+0x1b0/0x290
[  168.062961][ T7596]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  168.065100][ T7596]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  168.067313][ T7596]  vfs_read+0x1d4/0xbd0
[  168.068945][ T7596]  ? __fdget_pos+0xeb/0x180
[  168.070715][ T7596]  ? __pfx_vfs_read+0x10/0x10
[  168.072536][ T7596]  ? __pfx___mutex_lock+0x10/0x10
[  168.074546][ T7596]  ? __fget_files+0x256/0x400
[  168.076381][ T7596]  ksys_read+0x12f/0x260
[  168.077840][ T7596]  ? __pfx_ksys_read+0x10/0x10
[  168.079508][ T7596]  do_syscall_64+0xcd/0x250
[  168.081090][ T7596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.083131][ T7596] RIP: 0033:0x7f856f375d7c
[  168.084690][ T7596] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  168.092032][ T7596] RSP: 002b:00007f85701c1040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  168.096196][ T7596] RAX: ffffffffffffffda RBX: 00007f856f505f80 RCX: 00007f856f375d7c
[  168.099588][ T7596] RDX: 000000000000000f RSI: 00007f85701c10b0 RDI: 0000000000000003
[  168.102793][ T7596] RBP: 00007f85701c10a0 R08: 0000000000000000 R09: 0000000000000000
[  168.105833][ T7596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  168.109163][ T7596] R13: 000000000000000b R14: 00007f856f505f80 R15: 00007fff177ab918
[  168.112735][ T7596]  </TASK>
[  168.185180][ T7601] netlink: 'syz.0.669': attribute type 48 has an invalid length.
[  168.260942][ T7599] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  168.289559][ T7610] netlink: 32 bytes leftover after parsing attributes in process `syz.1.671'.
[  168.500807][ T7620] netlink: 'syz.1.674': attribute type 1 has an invalid length.
[  168.557620][ T7622] fuse: Bad value for 'fd'
[  168.562742][ T7623] fuse: Bad value for 'fd'
[  168.750591][ T7627] FAULT_INJECTION: forcing a failure.
[  168.750591][ T7627] name failslab, interval 1, probability 0, space 0, times 0
[  168.758317][ T7627] CPU: 2 UID: 0 PID: 7627 Comm: syz.1.676 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  168.762793][ T7627] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  168.767147][ T7627] Call Trace:
[  168.768633][ T7627]  <TASK>
[  168.769978][ T7627]  dump_stack_lvl+0x16c/0x1f0
[  168.771977][ T7627]  should_fail_ex+0x497/0x5b0
[  168.774094][ T7627]  ? fs_reclaim_acquire+0xae/0x160
[  168.776792][ T7627]  should_failslab+0xc2/0x120
[  168.778843][ T7627]  __kmalloc_noprof+0xcb/0x400
[  168.781112][ T7627]  ? percpu_counter_add_batch+0x174/0x1e0
[  168.783589][ T7627]  io_alloc_async_data+0x9d/0x150
[  168.786036][ T7627]  io_prep_rw+0x30d/0xb70
[  168.788003][ T7627]  io_prep_rwv+0xa8/0x350
[  168.789810][ T7627]  ? __pfx_io_prep_rwv+0x10/0x10
[  168.791850][ T7627]  ? __mutex_lock+0x1a6/0x9c0
[  168.793782][ T7627]  io_submit_sqes+0x8aa/0x2500
[  168.795562][ T7627]  __do_sys_io_uring_enter+0xbd8/0x1130
[  168.797603][ T7627]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  168.800014][ T7627]  ? ksys_write+0x1ab/0x260
[  168.801841][ T7627]  ? __pfx_ksys_write+0x10/0x10
[  168.804265][ T7627]  do_syscall_64+0xcd/0x250
[  168.806193][ T7627]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.808683][ T7627] RIP: 0033:0x7f856f377299
[  168.810608][ T7627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.818098][ T7627] RSP: 002b:00007f85701c1048 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  168.821203][ T7627] RAX: ffffffffffffffda RBX: 00007f856f505f80 RCX: 00007f856f377299
[  168.824839][ T7627] RDX: 0000000000000000 RSI: 0000000000000054 RDI: 0000000000000009
[  168.829188][ T7627] RBP: 00007f85701c10a0 R08: 0000000000000000 R09: 0000000000000018
[  168.833725][ T7627] R10: 000000000000000f R11: 0000000000000246 R12: 0000000000000001
[  168.838058][ T7627] R13: 000000000000000b R14: 00007f856f505f80 R15: 00007fff177ab918
[  168.842166][ T7627]  </TASK>
[  168.957233][ T7637] Bluetooth: MGMT ver 1.23
[  168.972353][ T7639] netlink: 32 bytes leftover after parsing attributes in process `syz.1.682'.
[  169.018585][ T7643] mkiss: ax0: crc mode is auto.
[  169.197297][ T7647] FAULT_INJECTION: forcing a failure.
[  169.197297][ T7647] name failslab, interval 1, probability 0, space 0, times 0
[  169.202816][ T7647] CPU: 3 UID: 0 PID: 7647 Comm: syz.1.684 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  169.207188][ T7647] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.211827][ T7647] Call Trace:
[  169.213322][ T7647]  <TASK>
[  169.214607][ T7647]  dump_stack_lvl+0x16c/0x1f0
[  169.216632][ T7647]  should_fail_ex+0x497/0x5b0
[  169.218709][ T7647]  ? fs_reclaim_acquire+0xae/0x160
[  169.220862][ T7647]  should_failslab+0xc2/0x120
[  169.222622][ T7647]  kmem_cache_alloc_node_noprof+0x71/0x310
[  169.224862][ T7647]  ? __alloc_skb+0x2b1/0x380
[  169.226831][ T7647]  __alloc_skb+0x2b1/0x380
[  169.228693][ T7647]  ? __pfx___alloc_skb+0x10/0x10
[  169.230707][ T7647]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  169.248809][ T7647]  netlink_alloc_large_skb+0x69/0x130
[  169.251308][ T7647]  netlink_sendmsg+0x689/0xd70
[  169.253119][ T7647]  ? __pfx_netlink_sendmsg+0x10/0x10
[  169.255028][ T7647]  ? __import_iovec+0x1fd/0x6e0
[  169.256880][ T7647]  ____sys_sendmsg+0xab5/0xc90
[  169.258707][ T7647]  ? copy_msghdr_from_user+0x10b/0x160
[  169.260806][ T7647]  ? __pfx_____sys_sendmsg+0x10/0x10
[  169.262612][ T7647]  ? find_held_lock+0x2d/0x110
[  169.264386][ T7647]  ? __pfx___lock_acquire+0x10/0x10
[  169.266281][ T7647]  ___sys_sendmsg+0x135/0x1e0
[  169.268373][ T7647]  ? __pfx____sys_sendmsg+0x10/0x10
[  169.270627][ T7647]  ? ksys_write+0x21c/0x260
[  169.272521][ T7647]  ? __fget_light+0x173/0x210
[  169.274957][ T7647]  __sys_sendmsg+0x117/0x1f0
[  169.276817][ T7647]  ? __pfx___sys_sendmsg+0x10/0x10
[  169.278600][ T7647]  do_syscall_64+0xcd/0x250
[  169.280195][ T7647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.282200][ T7647] RIP: 0033:0x7f856f377299
[  169.283855][ T7647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.290468][ T7647] RSP: 002b:00007f85701c1048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  169.293619][ T7647] RAX: ffffffffffffffda RBX: 00007f856f505f80 RCX: 00007f856f377299
[  169.296650][ T7647] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  169.299366][ T7647] RBP: 00007f85701c10a0 R08: 0000000000000000 R09: 0000000000000000
[  169.302012][ T7647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  169.304688][ T7647] R13: 000000000000000b R14: 00007f856f505f80 R15: 00007fff177ab918
[  169.307616][ T7647]  </TASK>
[  169.387612][   T39] audit: type=1400 audit(1722037832.073:935): avc:  denied  { create } for  pid=7655 comm="syz.0.687" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  169.396822][   T39] audit: type=1400 audit(1722037832.073:936): avc:  denied  { bind } for  pid=7655 comm="syz.0.687" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  169.416455][ T7656] input: syz0 as /devices/virtual/input/input5
[  169.427208][   T39] audit: type=1400 audit(1722037832.113:937): avc:  denied  { read } for  pid=4812 comm="acpid" name="event4" dev="devtmpfs" ino=2446 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  169.443144][   T39] audit: type=1400 audit(1722037832.113:938): avc:  denied  { open } for  pid=4812 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2446 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  169.443194][   T39] audit: type=1400 audit(1722037832.113:939): avc:  denied  { ioctl } for  pid=4812 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2446 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  169.663134][ T7669] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  169.771634][   T39] audit: type=1400 audit(1722037832.453:940): avc:  denied  { shutdown } for  pid=7670 comm="syz.0.693" lport=6 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  169.782019][   T39] audit: type=1400 audit(1722037832.463:941): avc:  denied  { read } for  pid=7670 comm="syz.0.693" lport=6 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  169.851145][ T5340] Bluetooth: hci1: ISO packet for unknown connection handle 0
[  169.896435][ T7678] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  169.907020][ T7681] fuse: Bad value for 'user_id'
[  169.909296][ T7681] fuse: Bad value for 'user_id'
[  170.166180][ T7688] mkiss: ax0: crc mode is auto.
[  170.304338][ T7690] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  170.594793][   T13] nci: nci_rx_work: unknown MT 0x1
[  170.601315][   T39] audit: type=1400 audit(1722037833.283:942): avc:  denied  { shutdown } for  pid=7695 comm="syz.2.702" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  170.664230][ T7703] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  170.666775][   T39] audit: type=1400 audit(1722037833.353:943): avc:  denied  { ioctl } for  pid=7695 comm="syz.2.702" path="/dev/sg0" dev="devtmpfs" ino=707 ioctlcmd=0x5393 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  170.730722][   T39] audit: type=1400 audit(1722037833.413:944): avc:  denied  { ioctl } for  pid=7695 comm="syz.2.702" path="socket:[18196]" dev="sockfs" ino=18196 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  171.307977][ T5340] Bluetooth: hci2: ISO packet for unknown connection handle 0
[  172.463314][ T7749] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  172.499253][ T7748] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  172.788453][ T7761] mkiss: ax0: crc mode is auto.
[  173.422641][ T7782] fuse: Bad value for 'fd'
[  173.435652][ T7776] kvm: emulating exchange as write
[  173.843780][ T7785] overlay: ./file1 is not a directory
[  174.088824][ T7800] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  174.094192][ T7801] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  174.366824][ T5340] Bluetooth: hci0: ISO packet for unknown connection handle 0
[  174.431747][ T7812] netlink: 'syz.1.738': attribute type 1 has an invalid length.
[  174.460584][ T7812] netlink: 28 bytes leftover after parsing attributes in process `syz.1.738'.
[  174.464755][ T7812] 8021q: adding VLAN 0 to HW filter on device bond1
[  174.723728][ T7820] fuse: Bad value for 'fd'
[  175.067322][ T7830] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  175.097743][ T7835] syz.1.745[7835] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  175.097827][ T7835] syz.1.745[7835] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  175.120738][   T39] kauditd_printk_skb: 19 callbacks suppressed
[  175.120799][   T39] audit: type=1400 audit(1722037837.803:964): avc:  denied  { load_policy } for  pid=7834 comm="syz.1.745" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  175.121136][ T7835] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  175.142035][ T7835] SELinux: failed to load policy
[  175.212010][ T7838] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.746'.
[  175.216391][ T7838] openvswitch: netlink: VXLAN extension message has 8 unknown bytes.
[  175.228848][   T39] audit: type=1400 audit(1722037837.913:965): avc:  denied  { write } for  pid=7836 comm="syz.1.746" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  175.292586][ T7838] 9pnet_fd: Insufficient options for proto=fd
[  175.297959][   T39] audit: type=1400 audit(1722037837.983:966): avc:  denied  { ioctl } for  pid=7836 comm="syz.1.746" path="socket:[21234]" dev="sockfs" ino=21234 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  175.454267][ T1087] sr 2:0:0:0: [sr0] tag#26 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  175.459084][ T1087] sr 2:0:0:0: [sr0] tag#26 Sense Key : Illegal Request [current] 
[  175.462605][ T1087] sr 2:0:0:0: [sr0] tag#26 Add. Sense: Invalid command operation code
[  175.466628][ T1087] sr 2:0:0:0: [sr0] tag#26 CDB: Write(10) 2a 00 00 00 00 00 00 00 04 00
[  175.471242][ T1087] critical target error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 2 prio class 0
[  175.476199][ T1087] Buffer I/O error on dev sr0, logical block 0, lost async page write
[  175.479943][ T1087] Buffer I/O error on dev sr0, logical block 1, lost async page write
[  175.535669][ T7841] FAULT_INJECTION: forcing a failure.
[  175.535669][ T7841] name failslab, interval 1, probability 0, space 0, times 0
[  175.540426][ T7841] CPU: 0 UID: 0 PID: 7841 Comm: syz.1.747 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  175.544365][ T7841] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  175.548786][ T7841] Call Trace:
[  175.550179][ T7841]  <TASK>
[  175.551360][ T7841]  dump_stack_lvl+0x16c/0x1f0
[  175.553327][ T7841]  should_fail_ex+0x497/0x5b0
[  175.555120][ T7841]  ? fs_reclaim_acquire+0xae/0x160
[  175.557296][ T7841]  should_failslab+0xc2/0x120
[  175.559165][ T7841]  __kmalloc_noprof+0xcb/0x400
[  175.560933][ T7841]  bpf_test_init.isra.0+0xa5/0x150
[  175.563064][ T7841]  bpf_prog_test_run_xdp+0x4f6/0x1530
[  175.565132][ T7841]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  175.567329][ T7841]  ? fput+0x32/0x390
[  175.568740][ T7841]  ? __bpf_prog_get+0xa0/0x2f0
[  175.570467][ T7841]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  175.572549][ T7841]  __sys_bpf+0x10d2/0x4a20
[  175.574319][ T7841]  ? ksys_write+0x21c/0x260
[  175.576300][ T7841]  ? __pfx_lock_release+0x10/0x10
[  175.578006][ T7841]  ? __pfx___sys_bpf+0x10/0x10
[  175.579676][ T7841]  ? vfs_write+0x14d/0x1140
[  175.581228][ T7841]  ? __mutex_unlock_slowpath+0x164/0x650
[  175.583215][ T7841]  ? fput+0x32/0x390
[  175.584773][ T7841]  ? ksys_write+0x1ab/0x260
[  175.586583][ T7841]  ? __pfx_ksys_write+0x10/0x10
[  175.588346][ T7841]  __x64_sys_bpf+0x78/0xc0
[  175.590173][ T7841]  ? lockdep_hardirqs_on+0x7c/0x110
[  175.592394][ T7841]  do_syscall_64+0xcd/0x250
[  175.594284][ T7841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.596857][ T7841] RIP: 0033:0x7f856f377299
[  175.598823][ T7841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.606398][ T7841] RSP: 002b:00007f85701c1048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  175.609562][ T7841] RAX: ffffffffffffffda RBX: 00007f856f505f80 RCX: 00007f856f377299
[  175.612933][ T7841] RDX: 0000000000000050 RSI: 0000000020000640 RDI: 000000000000000a
[  175.616415][ T7841] RBP: 00007f85701c10a0 R08: 0000000000000000 R09: 0000000000000000
[  175.619902][ T7841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.623366][ T7841] R13: 000000000000000b R14: 00007f856f505f80 R15: 00007fff177ab918
[  175.626827][ T7841]  </TASK>
[  175.734607][   T39] audit: type=1400 audit(1722037838.423:967): avc:  denied  { getopt } for  pid=7846 comm="syz.0.750" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  175.880912][ T7855] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  175.954147][ T7857] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  175.988824][ T7858] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  176.308330][ T7864] FAULT_INJECTION: forcing a failure.
[  176.308330][ T7864] name failslab, interval 1, probability 0, space 0, times 0
[  176.313223][ T7864] CPU: 0 UID: 0 PID: 7864 Comm: syz.3.754 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  176.318258][ T7864] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  176.322721][ T7864] Call Trace:
[  176.324071][ T7864]  <TASK>
[  176.325454][ T7864]  dump_stack_lvl+0x16c/0x1f0
[  176.328615][ T7864]  should_fail_ex+0x497/0x5b0
[  176.330593][ T7864]  ? fs_reclaim_acquire+0xae/0x160
[  176.332632][ T7864]  should_failslab+0xc2/0x120
[  176.334402][ T7864]  __kmalloc_noprof+0xcb/0x400
[  176.336353][ T7864]  ? d_absolute_path+0x137/0x1b0
[  176.338412][ T7864]  tomoyo_encode2+0x100/0x3e0
[  176.340458][ T7864]  tomoyo_encode+0x29/0x50
[  176.342000][ T7864]  tomoyo_realpath_from_path+0x19d/0x720
[  176.344512][ T7864]  tomoyo_path_number_perm+0x245/0x590
[  176.348265][ T7864]  ? tomoyo_path_number_perm+0x232/0x590
[  176.350431][ T7864]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  176.353131][ T7864]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  176.355498][ T7864]  ? __fget_files+0x256/0x400
[  176.357492][ T7864]  security_file_ioctl+0x75/0xc0
[  176.359862][ T7864]  __x64_sys_ioctl+0xbb/0x220
[  176.362114][ T7864]  do_syscall_64+0xcd/0x250
[  176.363889][ T7864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.366253][ T7864] RIP: 0033:0x7f2f6af77299
[  176.368034][ T7864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.377411][ T7864] RSP: 002b:00007f2f6be15048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  176.381898][ T7864] RAX: ffffffffffffffda RBX: 00007f2f6b105f80 RCX: 00007f2f6af77299
[  176.385250][ T7864] RDX: 0000000020000d40 RSI: 00000000c0386105 RDI: 0000000000000003
[  176.388918][ T7864] RBP: 00007f2f6be150a0 R08: 0000000000000000 R09: 0000000000000000
[  176.391891][ T7864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  176.395348][ T7864] R13: 000000000000000b R14: 00007f2f6b105f80 R15: 00007ffc06d446f8
[  176.398847][ T7864]  </TASK>
[  176.401771][ T7864] ERROR: Out of memory at tomoyo_realpath_from_path.
[  176.458117][ T7866] FAULT_INJECTION: forcing a failure.
[  176.458117][ T7866] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.468398][ T7866] CPU: 0 UID: 0 PID: 7866 Comm: syz.3.755 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  176.473285][ T7866] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  176.477541][ T7866] Call Trace:
[  176.479035][ T7866]  <TASK>
[  176.480269][ T7866]  dump_stack_lvl+0x16c/0x1f0
[  176.482321][ T7866]  should_fail_ex+0x497/0x5b0
[  176.484209][ T7866]  _copy_to_iter+0x44f/0x1150
[  176.485683][ T7866]  ? __pfx__copy_to_iter+0x10/0x10
[  176.487488][ T7866]  ? __virt_addr_valid+0x5e/0x590
[  176.489340][ T7866]  ? __phys_addr_symbol+0x30/0x80
[  176.491201][ T7866]  ? __check_object_size+0x497/0x720
[  176.493400][ T7866]  seq_read_iter+0x72b/0x12c0
[  176.495423][ T7866]  ? hlock_class+0x4e/0x130
[  176.497382][ T7866]  seq_read+0x390/0x4d0
[  176.499199][ T7866]  ? __pfx_seq_read+0x10/0x10
[  176.501226][ T7866]  ? __pfx___might_resched+0x10/0x10
[  176.503381][ T7866]  ? selinux_file_permission+0x125/0x590
[  176.505421][ T7866]  ? __pfx_seq_read+0x10/0x10
[  176.507142][ T7866]  proc_reg_read+0x243/0x340
[  176.508828][ T7866]  ? __pfx_proc_reg_read+0x10/0x10
[  176.510644][ T7866]  vfs_readv+0x6cb/0x8a0
[  176.512237][ T7866]  ? find_held_lock+0x2d/0x110
[  176.514067][ T7866]  ? __pfx_vfs_readv+0x10/0x10
[  176.515819][ T7866]  ? find_held_lock+0x2d/0x110
[  176.517612][ T7866]  ? __pfx_lock_release+0x10/0x10
[  176.519781][ T7866]  ? __x64_sys_preadv+0x22b/0x310
[  176.521850][ T7866]  __x64_sys_preadv+0x22b/0x310
[  176.523612][ T7866]  ? __pfx___x64_sys_preadv+0x10/0x10
[  176.525894][ T7866]  do_syscall_64+0xcd/0x250
[  176.527793][ T7866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.530030][ T7866] RIP: 0033:0x7f2f6af77299
[  176.531700][ T7866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.538587][ T7866] RSP: 002b:00007f2f6be15048 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  176.542056][ T7866] RAX: ffffffffffffffda RBX: 00007f2f6b105f80 RCX: 00007f2f6af77299
[  176.545511][ T7866] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000007
[  176.549060][ T7866] RBP: 00007f2f6be150a0 R08: 0000000000000000 R09: 0000000000000000
[  176.552390][ T7866] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[  176.555538][ T7866] R13: 000000000000000b R14: 00007f2f6b105f80 R15: 00007ffc06d446f8
[  176.558488][ T7866]  </TASK>
[  176.607031][ T7869] netlink: 32 bytes leftover after parsing attributes in process `syz.1.756'.
[  176.802741][ T7877] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  176.991103][ T7886] netlink: 24 bytes leftover after parsing attributes in process `syz.1.760'.
[  177.051412][ T7885] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  177.303335][ T7890] fuse: Bad value for 'fd'
[  177.459283][   T39] audit: type=1400 audit(1722037840.143:968): avc:  denied  { watch } for  pid=7891 comm="syz.1.763" path="/cgroup.kill" dev="tmpfs" ino=423 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  177.467830][ T5340] Bluetooth: hci4: Malformed LE Event: 0x0d
[  177.480676][   T39] audit: type=1400 audit(1722037840.143:969): avc:  denied  { watch_sb watch_reads } for  pid=7891 comm="syz.1.763" path="/cgroup.kill" dev="tmpfs" ino=423 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  177.493287][   T39] audit: type=1400 audit(1722037840.153:970): avc:  denied  { watch_reads } for  pid=7891 comm="syz.1.763" path="/" dev="tmpfs" ino=417 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  177.730888][ T7897] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  177.919307][ T7901] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  178.142092][ T7906] netlink: 32 bytes leftover after parsing attributes in process `syz.0.768'.
[  178.315596][ T7909] overlay: ./file1 is not a directory
[  178.452768][   T39] audit: type=1400 audit(1722037841.133:971): avc:  denied  { ioctl } for  pid=7918 comm="syz.3.772" path="socket:[21431]" dev="sockfs" ino=21431 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  178.520857][ T7920] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  178.582544][   T39] audit: type=1326 audit(1722037841.263:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7923 comm="syz.3.774" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f6af77299 code=0x7ffc0000
[  178.592640][   T39] audit: type=1326 audit(1722037841.263:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7923 comm="syz.3.774" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f6af77299 code=0x7ffc0000
[  179.557627][ T7941] netlink: 32 bytes leftover after parsing attributes in process `syz.3.778'.
[  180.135896][ T7954] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  180.203386][ T7957] fuse: Invalid rootmode
[  180.362033][   T39] kauditd_printk_skb: 25 callbacks suppressed
[  180.362051][   T39] audit: type=1326 audit(1722037843.043:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7963 comm="syz.2.785" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f13c1777299 code=0x0
[  180.397077][ T7962] netlink: 24 bytes leftover after parsing attributes in process `syz.3.784'.
[  180.772873][ T7969] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  180.879008][   T39] audit: type=1400 audit(1722037843.563:1000): avc:  denied  { map } for  pid=7979 comm="syz.1.791" path="/dev/nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  181.016232][   T39] audit: type=1400 audit(1722037843.703:1001): avc:  denied  { read write } for  pid=7987 comm="syz.1.793" name="uhid" dev="devtmpfs" ino=1113 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  181.027349][   T39] audit: type=1400 audit(1722037843.703:1002): avc:  denied  { open } for  pid=7987 comm="syz.1.793" path="/dev/uhid" dev="devtmpfs" ino=1113 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  181.245205][ T7995] netlink: 32 bytes leftover after parsing attributes in process `syz.2.795'.
[  181.635981][ T8001] netlink: 60 bytes leftover after parsing attributes in process `syz.2.796'.
[  181.705696][ T5353] Bluetooth: hci2: command 0x0406 tx timeout
[  181.708626][ T5352] Bluetooth: hci0: command 0x0406 tx timeout
[  181.844867][ T8007] fuse: Bad value for 'rootmode'
[  181.974551][ T8010] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  183.299697][ T8033] netlink: 8 bytes leftover after parsing attributes in process `syz.0.808'.
[  183.384158][ T8035] FAULT_INJECTION: forcing a failure.
[  183.384158][ T8035] name failslab, interval 1, probability 0, space 0, times 0
[  183.389663][ T8035] CPU: 2 UID: 0 PID: 8035 Comm: syz.0.809 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  183.393935][ T8035] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  183.398561][ T8035] Call Trace:
[  183.400000][ T8035]  <TASK>
[  183.401280][ T8035]  dump_stack_lvl+0x16c/0x1f0
[  183.403334][ T8035]  should_fail_ex+0x497/0x5b0
[  183.405393][ T8035]  ? fs_reclaim_acquire+0xae/0x160
[  183.407658][ T8035]  should_failslab+0xc2/0x120
[  183.409706][ T8035]  kmem_cache_alloc_node_noprof+0x71/0x310
[  183.412063][ T8035]  ? __alloc_skb+0x2b1/0x380
[  183.413755][ T8035]  __alloc_skb+0x2b1/0x380
[  183.415995][ T8035]  ? __pfx___alloc_skb+0x10/0x10
[  183.418212][ T8035]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  183.420795][ T8035]  netlink_alloc_large_skb+0x69/0x130
[  183.423160][ T8035]  netlink_sendmsg+0x689/0xd70
[  183.425384][ T8035]  ? __pfx_netlink_sendmsg+0x10/0x10
[  183.427887][ T8035]  ? __import_iovec+0x1fd/0x6e0
[  183.429995][ T8035]  ____sys_sendmsg+0xab5/0xc90
[  183.432167][ T8035]  ? copy_msghdr_from_user+0x10b/0x160
[  183.434482][ T8035]  ? __pfx_____sys_sendmsg+0x10/0x10
[  183.437513][ T8035]  ? find_held_lock+0x2d/0x110
[  183.439415][ T8035]  ? __pfx___lock_acquire+0x10/0x10
[  183.441583][ T8035]  ___sys_sendmsg+0x135/0x1e0
[  183.443657][ T8035]  ? __pfx____sys_sendmsg+0x10/0x10
[  183.445592][ T8035]  ? ksys_write+0x21c/0x260
[  183.447287][ T8035]  ? __fget_light+0x173/0x210
[  183.449214][ T8035]  __sys_sendmsg+0x117/0x1f0
[  183.450989][ T8035]  ? __pfx___sys_sendmsg+0x10/0x10
[  183.453475][ T8035]  do_syscall_64+0xcd/0x250
[  183.455938][ T8035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.458378][ T8035] RIP: 0033:0x7fecf6777299
[  183.460427][ T8035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.469942][ T8035] RSP: 002b:00007fecf61ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  183.474048][ T8035] RAX: ffffffffffffffda RBX: 00007fecf6905f80 RCX: 00007fecf6777299
[  183.477647][ T8035] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  183.480819][ T8035] RBP: 00007fecf61ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  183.484151][ T8035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  183.487094][ T8035] R13: 000000000000000b R14: 00007fecf6905f80 R15: 00007ffd65ca1b18
[  183.489810][ T8035]  </TASK>
[  183.683832][ T8043] netlink: 'syz.1.813': attribute type 4 has an invalid length.
[  183.687826][   T39] audit: type=1400 audit(1722037846.373:1003): avc:  denied  { map } for  pid=8042 comm="syz.1.813" path="/dev/video7" dev="devtmpfs" ino=895 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  183.696412][   T39] audit: type=1400 audit(1722037846.373:1004): avc:  denied  { execute } for  pid=8042 comm="syz.1.813" path="/dev/video7" dev="devtmpfs" ino=895 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  183.718125][ T8043] UBIFS error (pid: 8043): cannot open "./file0", error -22
[  183.846500][ T8054] netlink: 60 bytes leftover after parsing attributes in process `syz.1.816'.
[  183.867626][ T8055] UBIFS error (pid: 8055): cannot open "./file0", error -22
[  184.013607][ T8057] fuse: Bad value for 'fd'
[  184.718304][ T8094] fuse: Bad value for 'fd'
[  184.848203][ T8099] netlink: 32 bytes leftover after parsing attributes in process `syz.3.829'.
[  185.242343][ T8114] FAULT_INJECTION: forcing a failure.
[  185.242343][ T8114] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  185.248206][ T8114] CPU: 2 UID: 0 PID: 8114 Comm: syz.3.833 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  185.252398][ T8114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.256953][ T8114] Call Trace:
[  185.256964][ T8114]  <TASK>
[  185.256971][ T8114]  dump_stack_lvl+0x16c/0x1f0
[  185.256997][ T8114]  should_fail_ex+0x497/0x5b0
[  185.257022][ T8114]  _copy_from_user+0x30/0xf0
[  185.265721][ T8114]  core_sys_select+0x318/0xb80
[  185.265746][ T8114]  ? __pfx_core_sys_select+0x10/0x10
[  185.265763][ T8114]  ? get_pid_task+0xfc/0x250
[  185.272384][ T8114]  ? set_user_sigmask+0x217/0x2a0
[  185.274655][ T8114]  ? __pfx_set_user_sigmask+0x10/0x10
[  185.277005][ T8114]  do_pselect.constprop.0+0x1a0/0x1f0
[  185.279396][ T8114]  ? __pfx_do_pselect.constprop.0+0x10/0x10
[  185.281880][ T8114]  __x64_sys_pselect6+0x183/0x240
[  185.284094][ T8114]  ? __pfx___x64_sys_pselect6+0x10/0x10
[  185.286439][ T8114]  do_syscall_64+0xcd/0x250
[  185.288373][ T8114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.290830][ T8114] RIP: 0033:0x7f2f6af77299
[  185.293034][ T8114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.301651][ T8114] RSP: 002b:00007f2f6be15048 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  185.306137][ T8114] RAX: ffffffffffffffda RBX: 00007f2f6b105f80 RCX: 00007f2f6af77299
[  185.309095][ T8114] RDX: 0000000020000180 RSI: 0000000020000080 RDI: 0000000000000040
[  185.311800][ T8114] RBP: 00007f2f6be150a0 R08: 0000000000000000 R09: 0000000000000000
[  185.316199][ T8114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  185.321790][ T8114] R13: 000000000000000b R14: 00007f2f6b105f80 R15: 00007ffc06d446f8
[  185.325004][ T8114]  </TASK>
[  185.390560][ T8120] fuse: Bad value for 'fd'
[  185.440750][   T39] audit: type=1400 audit(1722037848.123:1005): avc:  denied  { connect } for  pid=8122 comm="syz.3.837" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  185.567247][   T39] audit: type=1400 audit(1722037848.253:1006): avc:  denied  { read } for  pid=8125 comm="syz.2.838" name="btrfs-control" dev="devtmpfs" ino=1152 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  185.586871][   T39] audit: type=1400 audit(1722037848.253:1007): avc:  denied  { open } for  pid=8125 comm="syz.2.838" path="/dev/btrfs-control" dev="devtmpfs" ino=1152 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  185.601106][   T39] audit: type=1400 audit(1722037848.263:1008): avc:  denied  { ioctl } for  pid=8125 comm="syz.2.838" path="/dev/btrfs-control" dev="devtmpfs" ino=1152 ioctlcmd=0x9404 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  186.750642][ T8154] FAULT_INJECTION: forcing a failure.
[  186.750642][ T8154] name failslab, interval 1, probability 0, space 0, times 0
[  186.757130][ T8154] CPU: 2 UID: 0 PID: 8154 Comm: syz.0.846 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  186.762696][ T8154] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  186.767471][ T8154] Call Trace:
[  186.768837][ T8154]  <TASK>
[  186.770802][ T8154]  dump_stack_lvl+0x16c/0x1f0
[  186.772719][ T8154]  should_fail_ex+0x497/0x5b0
[  186.774671][ T8154]  should_failslab+0xc2/0x120
[  186.776987][ T8154]  __kmalloc_cache_noprof+0x6b/0x300
[  186.779144][ T8154]  ? llc_sap_open+0x120/0x3b0
[  186.781134][ T8154]  llc_sap_open+0x120/0x3b0
[  186.783563][ T8154]  ? llc_ui_autoport+0x12d/0x140
[  186.785767][ T8154]  llc_ui_autobind.isra.0+0x2ae/0x510
[  186.788759][ T8154]  ? __local_bh_enable_ip+0xa4/0x120
[  186.791467][ T8154]  llc_ui_connect+0x587/0xdd0
[  186.793453][ T8154]  ? selinux_netlbl_socket_connect+0x30/0x40
[  186.795936][ T8154]  ? __pfx_llc_ui_connect+0x10/0x10
[  186.798003][ T8154]  ? __local_bh_enable_ip+0xa4/0x120
[  186.800192][ T8154]  ? lockdep_hardirqs_on+0x7c/0x110
[  186.802339][ T8154]  ? selinux_netlbl_socket_connect+0x30/0x40
[  186.806433][ T8154]  ? __local_bh_enable_ip+0xa4/0x120
[  186.808661][ T8154]  ? selinux_netlbl_socket_connect+0x30/0x40
[  186.811320][ T8154]  ? selinux_socket_connect+0x6b/0x80
[  186.813404][ T8154]  ? __pfx_llc_ui_connect+0x10/0x10
[  186.815283][ T8154]  __sys_connect_file+0x15f/0x1a0
[  186.816748][ T8154]  __sys_connect+0x149/0x170
[  186.818247][ T8154]  ? __pfx___sys_connect+0x10/0x10
[  186.820458][ T8154]  ? __pfx_ksys_write+0x10/0x10
[  186.823064][ T8154]  __x64_sys_connect+0x72/0xb0
[  186.825781][ T8154]  ? lockdep_hardirqs_on+0x7c/0x110
[  186.828639][ T8154]  do_syscall_64+0xcd/0x250
[  186.841975][ T8154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.844307][ T8154] RIP: 0033:0x7fecf6777299
[  186.846172][ T8154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.855003][ T8154] RSP: 002b:00007fecf61ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  186.858617][ T8154] RAX: ffffffffffffffda RBX: 00007fecf6905f80 RCX: 00007fecf6777299
[  186.861292][ T8154] RDX: 0000000000000010 RSI: 00000000200001c0 RDI: 0000000000000004
[  186.864686][ T8154] RBP: 00007fecf61ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  186.868528][ T8154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  186.872217][ T8154] R13: 000000000000000b R14: 00007fecf6905f80 R15: 00007ffd65ca1b18
[  186.876812][ T8154]  </TASK>
[  187.109368][ T8156] netlink: 144 bytes leftover after parsing attributes in process `syz.0.847'.
[  187.261105][ T8160] FAULT_INJECTION: forcing a failure.
[  187.261105][ T8160] name failslab, interval 1, probability 0, space 0, times 0
[  187.269294][ T8160] CPU: 0 UID: 0 PID: 8160 Comm: syz.3.849 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  187.273581][ T8160] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  187.278060][ T8160] Call Trace:
[  187.279498][ T8160]  <TASK>
[  187.280796][ T8160]  dump_stack_lvl+0x16c/0x1f0
[  187.282809][ T8160]  should_fail_ex+0x497/0x5b0
[  187.284829][ T8160]  ? fs_reclaim_acquire+0xae/0x160
[  187.286991][ T8160]  should_failslab+0xc2/0x120
[  187.288976][ T8160]  kmem_cache_alloc_node_noprof+0x71/0x310
[  187.291596][ T8160]  ? __alloc_skb+0x2b1/0x380
[  187.293549][ T8160]  __alloc_skb+0x2b1/0x380
[  187.295542][ T8160]  ? __pfx___alloc_skb+0x10/0x10
[  187.297624][ T8160]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  187.300137][ T8160]  netlink_alloc_large_skb+0x69/0x130
[  187.302347][ T8160]  netlink_sendmsg+0x689/0xd70
[  187.304202][ T8160]  ? __pfx_netlink_sendmsg+0x10/0x10
[  187.306154][ T8160]  ? __import_iovec+0x1fd/0x6e0
[  187.308209][ T8160]  ____sys_sendmsg+0xab5/0xc90
[  187.310266][ T8160]  ? copy_msghdr_from_user+0x10b/0x160
[  187.312542][ T8160]  ? __pfx_____sys_sendmsg+0x10/0x10
[  187.314886][ T8160]  ? find_held_lock+0x2d/0x110
[  187.316778][ T8160]  ? __pfx___lock_acquire+0x10/0x10
[  187.318709][ T8160]  ___sys_sendmsg+0x135/0x1e0
[  187.320823][ T8160]  ? __pfx____sys_sendmsg+0x10/0x10
[  187.323030][ T8160]  ? ksys_write+0x21c/0x260
[  187.324895][ T8160]  ? __fget_light+0x173/0x210
[  187.326698][ T8160]  __sys_sendmsg+0x117/0x1f0
[  187.328485][ T8160]  ? __pfx___sys_sendmsg+0x10/0x10
[  187.330465][ T8160]  do_syscall_64+0xcd/0x250
[  187.332242][ T8160]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.334485][ T8160] RIP: 0033:0x7f2f6af77299
[  187.337635][ T8160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.345762][ T8160] RSP: 002b:00007f2f6be15048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  187.349317][ T8160] RAX: ffffffffffffffda RBX: 00007f2f6b105f80 RCX: 00007f2f6af77299
[  187.353033][ T8160] RDX: 0000000000000000 RSI: 00000000200005c0 RDI: 0000000000000004
[  187.356735][ T8160] RBP: 00007f2f6be150a0 R08: 0000000000000000 R09: 0000000000000000
[  187.360048][ T8160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  187.363312][ T8160] R13: 000000000000000b R14: 00007f2f6b105f80 R15: 00007ffc06d446f8
[  187.366714][ T8160]  </TASK>
[  188.138681][ T8181] /dev/sg0: Can't lookup blockdev
[  188.429701][ T8187] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  189.080602][ T8202] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  189.345673][   T39] audit: type=1400 audit(1722037852.033:1009): avc:  denied  { sqpoll } for  pid=8203 comm="syz.2.862" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  189.498390][   T39] audit: type=1400 audit(1722037852.183:1010): avc:  denied  { write } for  pid=8205 comm="syz.2.863" path="socket:[23996]" dev="sockfs" ino=23996 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  189.625790][ T8211] /dev/sg0: Can't lookup blockdev
[  189.877988][ T8220] FAULT_INJECTION: forcing a failure.
[  189.877988][ T8220] name failslab, interval 1, probability 0, space 0, times 0
[  189.892100][ T8220] CPU: 1 UID: 0 PID: 8220 Comm: syz.0.868 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  189.896722][ T8220] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  189.901995][ T8220] Call Trace:
[  189.903719][ T8220]  <TASK>
[  189.905035][ T8220]  dump_stack_lvl+0x16c/0x1f0
[  189.907592][ T8220]  should_fail_ex+0x497/0x5b0
[  189.910380][ T8220]  ? fs_reclaim_acquire+0xae/0x160
[  189.913189][ T8220]  should_failslab+0xc2/0x120
[  189.915708][ T8220]  kmem_cache_alloc_node_noprof+0x71/0x310
[  189.918298][ T8220]  ? __alloc_skb+0x2b1/0x380
[  189.920697][ T8220]  __alloc_skb+0x2b1/0x380
[  189.922332][ T8220]  ? __pfx___alloc_skb+0x10/0x10
[  189.924743][ T8220]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  189.929043][ T8220]  netlink_alloc_large_skb+0x69/0x130
[  189.931335][ T8220]  netlink_sendmsg+0x689/0xd70
[  189.933203][ T8220]  ? __pfx_netlink_sendmsg+0x10/0x10
[  189.935105][ T8220]  ? __import_iovec+0x1fd/0x6e0
[  189.937128][ T8220]  ____sys_sendmsg+0xab5/0xc90
[  189.939031][ T8220]  ? copy_msghdr_from_user+0x10b/0x160
[  189.941284][ T8220]  ? __pfx_____sys_sendmsg+0x10/0x10
[  189.944284][ T8220]  ? find_held_lock+0x2d/0x110
[  189.946295][ T8220]  ? __pfx___lock_acquire+0x10/0x10
[  189.948603][ T8220]  ___sys_sendmsg+0x135/0x1e0
[  189.950718][ T8220]  ? __pfx____sys_sendmsg+0x10/0x10
[  189.953139][ T8220]  ? ksys_write+0x21c/0x260
[  189.955075][ T8220]  ? __fget_light+0x173/0x210
[  189.956849][ T8220]  __sys_sendmsg+0x117/0x1f0
[  189.958747][ T8220]  ? __pfx___sys_sendmsg+0x10/0x10
[  189.961151][ T8220]  do_syscall_64+0xcd/0x250
[  189.963292][ T8220]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.963316][ T8220] RIP: 0033:0x7fecf6777299
[  189.963331][ T8220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.963350][ T8220] RSP: 002b:00007fecf61ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  189.963379][ T8220] RAX: ffffffffffffffda RBX: 00007fecf6905f80 RCX: 00007fecf6777299
[  189.963393][ T8220] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003
[  189.963405][ T8220] RBP: 00007fecf61ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  189.963417][ T8220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  189.963429][ T8220] R13: 000000000000000b R14: 00007fecf6905f80 R15: 00007ffd65ca1b18
[  189.963445][ T8220]  </TASK>
[  190.165842][ T8226] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  190.338690][ T8235] netlink: 32 bytes leftover after parsing attributes in process `syz.0.874'.
[  190.431938][   T39] audit: type=1326 audit(1722037853.113:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8239 comm="syz.2.872" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13c1777299 code=0x7ffc0000
[  190.447189][   T39] audit: type=1326 audit(1722037853.133:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8239 comm="syz.2.872" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13c1777299 code=0x7ffc0000
[  190.457148][   T39] audit: type=1326 audit(1722037853.133:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8239 comm="syz.2.872" exe="/syz-executor" sig=0 arch=c000003e syscall=195 compat=0 ip=0x7f13c1777299 code=0x7ffc0000
[  190.466054][   T39] audit: type=1326 audit(1722037853.133:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8239 comm="syz.2.872" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13c1777299 code=0x7ffc0000
[  190.475320][   T39] audit: type=1326 audit(1722037853.133:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8239 comm="syz.2.872" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13c1777299 code=0x7ffc0000
[  190.484703][   T39] audit: type=1326 audit(1722037853.133:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8239 comm="syz.2.872" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f13c1777299 code=0x7ffc0000
[  190.493984][   T39] audit: type=1326 audit(1722037853.133:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8239 comm="syz.2.872" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13c1777299 code=0x7ffc0000
[  190.502976][   T39] audit: type=1326 audit(1722037853.133:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8239 comm="syz.2.872" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13c1777299 code=0x7ffc0000
[  190.512148][   T39] audit: type=1326 audit(1722037853.133:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8239 comm="syz.2.872" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f13c1777299 code=0x7ffc0000
[  190.522224][   T39] audit: type=1326 audit(1722037853.133:1020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8239 comm="syz.2.872" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13c1777299 code=0x7ffc0000
[  190.531753][   T39] audit: type=1326 audit(1722037853.133:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8239 comm="syz.2.872" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13c1777299 code=0x7ffc0000
[  190.728175][ T8245] /dev/sg0: Can't lookup blockdev
[  190.840793][ T8248] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  190.847800][ T8246] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  191.117163][ T8253] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  191.221033][ T8255] fuse: Invalid rootmode
[  191.320488][ T8262] netlink: 32 bytes leftover after parsing attributes in process `syz.2.883'.
[  191.744726][ T8287] FAULT_INJECTION: forcing a failure.
[  191.744726][ T8287] name failslab, interval 1, probability 0, space 0, times 0
[  191.749330][ T8287] CPU: 1 UID: 0 PID: 8287 Comm: syz.3.890 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  191.752950][ T8287] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  191.756708][ T8287] Call Trace:
[  191.758038][ T8287]  <TASK>
[  191.759222][ T8287]  dump_stack_lvl+0x16c/0x1f0
[  191.761004][ T8287]  should_fail_ex+0x497/0x5b0
[  191.762397][ T8287]  ? fs_reclaim_acquire+0xae/0x160
[  191.764092][ T8287]  should_failslab+0xc2/0x120
[  191.765894][ T8287]  kmem_cache_alloc_node_noprof+0x71/0x310
[  191.768159][ T8287]  ? __alloc_skb+0x2b1/0x380
[  191.769956][ T8287]  __alloc_skb+0x2b1/0x380
[  191.771733][ T8287]  ? __pfx___alloc_skb+0x10/0x10
[  191.774352][ T8287]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  191.776787][ T8287]  netlink_alloc_large_skb+0x69/0x130
[  191.776821][ T8287]  netlink_sendmsg+0x689/0xd70
[  191.776848][ T8287]  ? __pfx_netlink_sendmsg+0x10/0x10
[  191.783166][ T8287]  ? __import_iovec+0x1fd/0x6e0
[  191.785083][ T8287]  ____sys_sendmsg+0xab5/0xc90
[  191.787756][ T8287]  ? copy_msghdr_from_user+0x10b/0x160
[  191.789860][ T8287]  ? __pfx_____sys_sendmsg+0x10/0x10
[  191.791767][ T8287]  ? find_held_lock+0x2d/0x110
[  191.793310][ T8287]  ? __pfx___lock_acquire+0x10/0x10
[  191.795654][ T8287]  ___sys_sendmsg+0x135/0x1e0
[  191.797302][ T8287]  ? __pfx____sys_sendmsg+0x10/0x10
[  191.799078][ T8287]  ? ksys_write+0x21c/0x260
[  191.800795][ T8287]  ? __fget_light+0x173/0x210
[  191.802642][ T8287]  __sys_sendmsg+0x117/0x1f0
[  191.805003][ T8287]  ? __pfx___sys_sendmsg+0x10/0x10
[  191.807688][ T8287]  do_syscall_64+0xcd/0x250
[  191.809880][ T8287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.812159][ T8287] RIP: 0033:0x7f2f6af77299
[  191.814267][ T8287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  191.822053][ T8287] RSP: 002b:00007f2f6be15048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  191.825711][ T8287] RAX: ffffffffffffffda RBX: 00007f2f6b105f80 RCX: 00007f2f6af77299
[  191.828850][ T8287] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000003
[  191.831929][ T8287] RBP: 00007f2f6be150a0 R08: 0000000000000000 R09: 0000000000000000
[  191.834983][ T8287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  191.837894][ T8287] R13: 000000000000000b R14: 00007f2f6b105f80 R15: 00007ffc06d446f8
[  191.840646][ T8287]  </TASK>
[  191.995723][ T8297] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  191.999521][ T8297] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  192.060685][ T8302] netlink: 32 bytes leftover after parsing attributes in process `syz.3.895'.
[  192.587227][ T8325] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  192.939807][ T8332] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  193.680024][ T8350] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  193.760669][ T8354] FAULT_INJECTION: forcing a failure.
[  193.760669][ T8354] name failslab, interval 1, probability 0, space 0, times 0
[  193.766082][ T8354] CPU: 2 UID: 0 PID: 8354 Comm: syz.1.911 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  193.769846][ T8354] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  193.773674][ T8354] Call Trace:
[  193.774918][ T8354]  <TASK>
[  193.776109][ T8354]  dump_stack_lvl+0x16c/0x1f0
[  193.777800][ T8354]  should_fail_ex+0x497/0x5b0
[  193.779685][ T8354]  ? fs_reclaim_acquire+0xae/0x160
[  193.781723][ T8354]  should_failslab+0xc2/0x120
[  193.783890][ T8354]  kmem_cache_alloc_node_noprof+0x71/0x310
[  193.786323][ T8354]  ? __alloc_skb+0x2b1/0x380
[  193.788160][ T8354]  __alloc_skb+0x2b1/0x380
[  193.789916][ T8354]  ? __pfx___alloc_skb+0x10/0x10
[  193.791978][ T8354]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  193.794332][ T8354]  netlink_alloc_large_skb+0x69/0x130
[  193.796374][ T8354]  netlink_sendmsg+0x689/0xd70
[  193.798180][ T8354]  ? __pfx_netlink_sendmsg+0x10/0x10
[  193.800164][ T8354]  ? __import_iovec+0x1fd/0x6e0
[  193.802020][ T8354]  ____sys_sendmsg+0xab5/0xc90
[  193.803889][ T8354]  ? copy_msghdr_from_user+0x10b/0x160
[  193.805986][ T8354]  ? __pfx_____sys_sendmsg+0x10/0x10
[  193.808046][ T8354]  ? find_held_lock+0x2d/0x110
[  193.809895][ T8354]  ? __pfx___lock_acquire+0x10/0x10
[  193.811711][ T8354]  ___sys_sendmsg+0x135/0x1e0
[  193.813471][ T8354]  ? __pfx____sys_sendmsg+0x10/0x10
[  193.815427][ T8354]  ? ksys_write+0x21c/0x260
[  193.817140][ T8354]  ? __fget_light+0x173/0x210
[  193.818914][ T8354]  __sys_sendmsg+0x117/0x1f0
[  193.820825][ T8354]  ? __pfx___sys_sendmsg+0x10/0x10
[  193.823020][ T8354]  do_syscall_64+0xcd/0x250
[  193.825122][ T8354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.827558][ T8354] RIP: 0033:0x7f856f377299
[  193.829422][ T8354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.836908][ T8354] RSP: 002b:00007f85701c1048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  193.840153][ T8354] RAX: ffffffffffffffda RBX: 00007f856f505f80 RCX: 00007f856f377299
[  193.843178][ T8354] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000008
[  193.846598][ T8354] RBP: 00007f85701c10a0 R08: 0000000000000000 R09: 0000000000000000
[  193.849808][ T8354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.852795][ T8354] R13: 000000000000000b R14: 00007f856f505f80 R15: 00007fff177ab918
[  193.855747][ T8354]  </TASK>
[  194.114227][ T8362] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  194.546489][ T8372] xt_cgroup: xt_cgroup: no path or classid specified
[  194.588449][ T8372] overlayfs: failed to resolve './file0': -2
[  195.369475][ T8394] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[  196.074099][ T8405] xt_cgroup: xt_cgroup: no path or classid specified
[  196.130488][ T8405] overlayfs: failed to resolve './file0': -2
[  196.217101][   T39] kauditd_printk_skb: 60 callbacks suppressed
[  196.217117][   T39] audit: type=1326 audit(1722037858.903:1082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.930" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f856f377299 code=0x0
[  196.977658][ T8422] 9pnet_fd: Insufficient options for proto=fd
[  197.115744][   T39] audit: type=1400 audit(1722037859.803:1083): avc:  denied  { mount } for  pid=8421 comm="syz.0.933" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  197.167171][   T39] audit: type=1400 audit(1722037859.853:1084): avc:  denied  { unmount } for  pid=7360 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  197.237256][ T8428] fuse: Unknown parameter 'user_id00000000000000000000'
[  197.657692][ T8438] fuse: Unknown parameter 'use00000000000000000000'
[  197.712266][ T8440] /dev/sg0: Can't lookup blockdev
[  197.908521][ T8446] FAULT_INJECTION: forcing a failure.
[  197.908521][ T8446] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  197.929962][ T8446] CPU: 2 UID: 0 PID: 8446 Comm: syz.1.942 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  197.935810][ T8446] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  197.949375][ T8446] Call Trace:
[  197.950760][ T8446]  <TASK>
[  197.951978][ T8446]  dump_stack_lvl+0x16c/0x1f0
[  197.953968][ T8446]  should_fail_ex+0x497/0x5b0
[  197.971877][ T8446]  _copy_from_user+0x30/0xf0
[  197.973778][ T8446]  core_sys_select+0x361/0xb80
[  197.975735][ T8446]  ? __pfx_core_sys_select+0x10/0x10
[  197.977876][ T8446]  ? get_pid_task+0xfc/0x250
[  197.979787][ T8446]  ? set_user_sigmask+0x217/0x2a0
[  197.981913][ T8446]  ? __pfx_set_user_sigmask+0x10/0x10
[  197.984288][ T8446]  do_pselect.constprop.0+0x1a0/0x1f0
[  197.987013][ T8446]  ? __pfx_do_pselect.constprop.0+0x10/0x10
[  197.989691][ T8446]  __x64_sys_pselect6+0x183/0x240
[  197.991740][ T8446]  ? __pfx___x64_sys_pselect6+0x10/0x10
[  197.994039][ T8446]  do_syscall_64+0xcd/0x250
[  197.996455][ T8446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.998977][ T8446] RIP: 0033:0x7f856f377299
[  198.000816][ T8446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.008759][ T8446] RSP: 002b:00007f85701c1048 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  198.012476][ T8446] RAX: ffffffffffffffda RBX: 00007f856f505f80 RCX: 00007f856f377299
[  198.015980][ T8446] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000040
[  198.019016][ T8446] RBP: 00007f85701c10a0 R08: 0000000000000000 R09: 0000000000000000
[  198.022033][ T8446] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000000001
[  198.025201][ T8446] R13: 000000000000000b R14: 00007f856f505f80 R15: 00007fff177ab918
[  198.028048][ T8446]  </TASK>
[  198.039428][   T39] audit: type=1326 audit(1722037860.723:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8443 comm="syz.2.941" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13c1777299 code=0x7ffc0000
[  198.058809][   T39] audit: type=1326 audit(1722037860.733:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8443 comm="syz.2.941" exe="/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f13c1777299 code=0x7ffc0000
[  198.070457][   T39] audit: type=1326 audit(1722037860.753:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8443 comm="syz.2.941" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f13c1777299 code=0x0
[  198.888620][ T8457] /dev/sg0: Can't lookup blockdev
[  198.973248][ T8463] fuse: Unknown parameter 'use00000000000000000000'
[  199.059398][ T8473] xt_cgroup: xt_cgroup: no path or classid specified
[  199.060194][ T8472] FAULT_INJECTION: forcing a failure.
[  199.060194][ T8472] name failslab, interval 1, probability 0, space 0, times 0
[  199.074345][ T8472] CPU: 2 UID: 0 PID: 8472 Comm: syz.1.950 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  199.079301][ T8472] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  199.083873][ T8472] Call Trace:
[  199.085408][ T8472]  <TASK>
[  199.086884][ T8472]  dump_stack_lvl+0x16c/0x1f0
[  199.089464][ T8472]  should_fail_ex+0x497/0x5b0
[  199.092077][ T8472]  ? fs_reclaim_acquire+0xae/0x160
[  199.094570][ T8472]  should_failslab+0xc2/0x120
[  199.097906][ T8472]  __kmalloc_noprof+0xcb/0x400
[  199.100449][ T8472]  ? d_absolute_path+0x137/0x1b0
[  199.102647][ T8472]  tomoyo_encode2+0x100/0x3e0
[  199.105772][ T8472]  tomoyo_encode+0x29/0x50
[  199.108090][ T8472]  tomoyo_realpath_from_path+0x19d/0x720
[  199.110436][ T8472]  tomoyo_path_number_perm+0x245/0x590
[  199.112928][ T8472]  ? tomoyo_path_number_perm+0x232/0x590
[  199.116141][ T8472]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  199.118986][ T8472]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  199.121646][ T8472]  ? __fget_files+0x256/0x400
[  199.123518][ T8472]  security_file_ioctl+0x75/0xc0
[  199.125600][ T8472]  __x64_sys_ioctl+0xbb/0x220
[  199.127957][ T8472]  do_syscall_64+0xcd/0x250
[  199.130157][ T8472]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.132749][ T8472] RIP: 0033:0x7f856f377299
[  199.134760][ T8472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.142897][ T8472] RSP: 002b:00007f85701c1048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  199.146766][ T8472] RAX: ffffffffffffffda RBX: 00007f856f505f80 RCX: 00007f856f377299
[  199.150613][ T8472] RDX: 0000000020000040 RSI: 0000000000004b66 RDI: 0000000000000004
[  199.153748][ T8472] RBP: 00007f85701c10a0 R08: 0000000000000000 R09: 0000000000000000
[  199.156852][ T8472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  199.160444][ T8472] R13: 000000000000000b R14: 00007f856f505f80 R15: 00007fff177ab918
[  199.163925][ T8472]  </TASK>
[  199.168908][ T8472] ERROR: Out of memory at tomoyo_realpath_from_path.
[  199.228036][ T8473] overlayfs: failed to resolve './file0': -2
[  199.437432][   T39] audit: type=1326 audit(1722037862.123:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8477 comm="syz.3.952" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f6af77299 code=0x7ffc0000
[  199.452798][   T39] audit: type=1326 audit(1722037862.123:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8477 comm="syz.3.952" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f6af77299 code=0x7ffc0000
[  199.472440][   T39] audit: type=1326 audit(1722037862.133:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8477 comm="syz.3.952" exe="/syz-executor" sig=0 arch=c000003e syscall=195 compat=0 ip=0x7f2f6af77299 code=0x7ffc0000
[  199.483312][   T39] audit: type=1326 audit(1722037862.133:1091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8477 comm="syz.3.952" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f6af77299 code=0x7ffc0000
[  199.485939][   T35] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  199.603904][ T5345] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  199.673085][   T35] usb 6-1: Using ep0 maxpacket: 8
[  199.679332][   T35] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  199.684871][   T35] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  199.689876][   T35] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  199.694108][   T35] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  199.698383][   T35] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  199.704664][   T35] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  199.708629][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.933760][   T35] usb 6-1: usb_control_msg returned -32
[  199.936558][   T35] usbtmc 6-1:16.0: can't read capabilities
[  200.104873][ T1381] ieee802154 phy0 wpan0: encryption failed: -22
[  200.111485][ T7044] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  200.113157][ T1381] ieee802154 phy1 wpan1: encryption failed: -22
[  200.294877][ T7044] usb 5-1: Using ep0 maxpacket: 8
[  200.299053][ T7044] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  200.302759][ T7044] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  200.312850][ T7044] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  200.317311][ T7044] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  200.321496][ T7044] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  200.329374][ T7044] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  200.343076][ T7044] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  200.426407][ T8502] loop8: detected capacity change from 0 to 7
[  200.432720][ T8502]  loop8: [POWERTEC] p1
[  200.437707][ T8502] loop8: p1 size 1969368878 extends beyond EOD, truncated
[  200.493293][ T5381] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  200.530787][ T8501] 
[  200.531769][ T8501] ======================================================
[  200.534712][ T8501] WARNING: possible circular locking dependency detected
[  200.537632][ T8501] 6.10.0-syzkaller-12708-g2f8c4f506285 #0 Not tainted
[  200.540612][ T8501] ------------------------------------------------------
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  200.543274][ T8501] syz.3.960/8501 is trying to acquire lock:
[  200.546789][ T8501] ffff8880468fde18 (kn->active#5){++++}-{0:0}, at: __kernfs_remove+0x281/0x670
[  200.551950][ T8501] 
[  200.551950][ T8501] but task is already holding lock:
[  200.555062][ T8501] ffff888020f184c8 (&disk->open_mutex){+.+.}-{3:3}, at: bdev_release+0x166/0x6f0
[  200.559305][ T7044] usb 5-1: usb_control_msg returned -32
[  200.561317][ T8501] 
[  200.561317][ T8501] which lock already depends on the new lock.
[  200.561317][ T8501] 
[  200.561325][ T8501] 
[  200.561325][ T8501] the existing dependency chain (in reverse order) is:
[  200.561331][ T8501] 
[  200.561331][ T8501] -> #2 (&disk->open_mutex){+.+.}-{3:3}:
[  200.561357][ T8501]        __mutex_lock+0x175/0x9c0
[  200.563519][ T7044] usbtmc 5-1:16.0: can't read capabilities
[  200.567962][ T8501]        bdev_open+0x41a/0xe40
[  200.567992][ T8501]        bdev_file_open_by_dev+0x17d/0x210
[  200.589192][ T8501]        disk_scan_partitions+0x1ed/0x320
[  200.592789][ T8501]        device_add_disk+0xfbb/0x12d0
[  200.595906][ T8501]        pmem_attach_disk+0x9ab/0x13c0
[  200.598251][ T8501]        nd_pmem_probe+0x1a9/0x1f0
[  200.600496][ T8501]        nvdimm_bus_probe+0x169/0x5d0
[  200.602926][ T8501]        really_probe+0x23e/0xa90
[  200.605342][ T8501]        __driver_probe_device+0x1de/0x440
[  200.608500][ T8501]        driver_probe_device+0x4c/0x1b0
[  200.610973][ T8501]        __driver_attach+0x283/0x580
[  200.613357][ T8501]        bus_for_each_dev+0x13c/0x1d0
[  200.615636][ T8501]        bus_add_driver+0x2e9/0x690
[  200.618175][ T8501]        driver_register+0x15c/0x4b0
[  200.620859][ T8501]        __nd_driver_register+0x103/0x1a0
[  200.623503][ T8501]        do_one_initcall+0x128/0x700
[  200.626012][ T8501]        kernel_init_freeable+0x69d/0xca0
[  200.629410][ T8501]        kernel_init+0x1c/0x2b0
[  200.632033][ T8501]        ret_from_fork+0x45/0x80
[  200.634992][ T8501]        ret_from_fork_asm+0x1a/0x30
[  200.637836][ T8501] 
[  200.637836][ T8501] -> #1 (&nvdimm_namespace_key){+.+.}-{3:3}:
[  200.642243][ T8501]        __mutex_lock+0x175/0x9c0
[  200.644865][ T8501]        uevent_show+0x188/0x3b0
[  200.647026][ T8501]        dev_attr_show+0x53/0xe0
[  200.649531][ T8501]        sysfs_kf_seq_show+0x23e/0x410
[  200.652503][ T8501]        seq_read_iter+0x4fa/0x12c0
[  200.654907][ T8501]        kernfs_fop_read_iter+0x41a/0x590
[  200.657471][ T8501]        vfs_read+0x869/0xbd0
[  200.659498][ T8501]        ksys_read+0x12f/0x260
[  200.661590][ T8501]        do_syscall_64+0xcd/0x250
[  200.663598][ T8501]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.666130][ T8501] 
[  200.666130][ T8501] -> #0 (kn->active#5){++++}-{0:0}:
[  200.669835][ T8501]        __lock_acquire+0x24ed/0x3cb0
[  200.672570][ T8501]        lock_acquire+0x1b1/0x560
[  200.674788][ T8501]        kernfs_drain+0x48f/0x590
[  200.677072][ T8501]        __kernfs_remove+0x281/0x670
[  200.679496][ T8501]        kernfs_remove_by_name_ns+0xb2/0x130
[  200.682210][ T8501]        device_del+0x381/0x9f0
[  200.684372][ T8501]        drop_partition+0x109/0x1c0
[  200.686717][ T8501]        bdev_disk_changed+0x24d/0x14e0
[  200.689350][ T8501]        __loop_clr_fd+0x5f5/0x770
[  200.691752][ T8501]        lo_release+0x139/0x1e0
[  200.694019][ T8501]        blkdev_put_whole+0xad/0xf0
[  200.696382][ T8501]        bdev_release+0x496/0x6f0
[  200.699079][ T8501]        blkdev_release+0x15/0x20
[  200.702702][ T8501]        __fput+0x408/0xbb0
[  200.704787][ T8501]        task_work_run+0x14e/0x250
[  200.707706][ T8501]        syscall_exit_to_user_mode+0x27b/0x2a0
[  200.710720][ T8501]        do_syscall_64+0xda/0x250
[  200.713112][ T8501]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.715897][ T8501] 
[  200.715897][ T8501] other info that might help us debug this:
[  200.715897][ T8501] 
[  200.720613][ T8501] Chain exists of:
[  200.720613][ T8501]   kn->active#5 --> &nvdimm_namespace_key --> &disk->open_mutex
[  200.720613][ T8501] 
[  200.726772][ T8501]  Possible unsafe locking scenario:
[  200.726772][ T8501] 
[  200.736940][ T8501]        CPU0                    CPU1
[  200.739311][ T8501]        ----                    ----
[  200.741652][ T8501]   lock(&disk->open_mutex);
[  200.743769][ T8501]                                lock(&nvdimm_namespace_key);
[  200.747352][ T8501]                                lock(&disk->open_mutex);
[  200.750541][ T8501]   lock(kn->active#5);
[  200.752609][ T8501] 
[  200.752609][ T8501]  *** DEADLOCK ***
[  200.752609][ T8501] 
[  200.757792][ T8501] 1 lock held by syz.3.960/8501:
[  200.759938][ T8501]  #0: ffff888020f184c8 (&disk->open_mutex){+.+.}-{3:3}, at: bdev_release+0x166/0x6f0
[  200.764277][ T8501] 
[  200.764277][ T8501] stack backtrace:
[  200.766832][ T8501] CPU: 0 UID: 0 PID: 8501 Comm: syz.3.960 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  200.771388][ T8501] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  200.775935][ T8501] Call Trace:
[  200.777421][ T8501]  <TASK>
[  200.778680][ T8501]  dump_stack_lvl+0x116/0x1f0
[  200.780773][ T8501]  check_noncircular+0x31a/0x400
[  200.783172][ T8501]  ? __pfx_check_noncircular+0x10/0x10
[  200.786046][ T8501]  ? hlock_conflict+0x58/0x200
[  200.788977][ T8501]  ? lockdep_lock+0xc6/0x200
[  200.791122][ T8501]  ? __pfx_lockdep_lock+0x10/0x10
[  200.793508][ T8501]  ? __pfx_mark_lock+0x10/0x10
[  200.795906][ T8501]  __lock_acquire+0x24ed/0x3cb0
[  200.798630][ T8501]  ? __pfx___lock_acquire+0x10/0x10
[  200.800936][ T8501]  ? hlock_class+0x4e/0x130
[  200.802953][ T8501]  ? __lock_acquire+0x1620/0x3cb0
[  200.805233][ T8501]  lock_acquire+0x1b1/0x560
[  200.807363][ T8501]  ? __kernfs_remove+0x281/0x670
[  200.809653][ T8501]  ? __pfx_lock_acquire+0x10/0x10
[  200.811890][ T8501]  ? __pfx___lock_acquire+0x10/0x10
[  200.814236][ T8501]  ? up_write+0x1b2/0x520
[  200.816184][ T8501]  kernfs_drain+0x48f/0x590
[  200.818189][ T8501]  ? __kernfs_remove+0x281/0x670
[  200.820381][ T8501]  ? __pfx_lock_acquire+0x10/0x10
[  200.822605][ T8501]  ? __pfx_kernfs_drain+0x10/0x10
[  200.824839][ T8501]  __kernfs_remove+0x281/0x670
[  200.826849][ T8501]  kernfs_remove_by_name_ns+0xb2/0x130
[  200.829240][ T8501]  device_del+0x381/0x9f0
[  200.831117][ T8501]  ? __pfx_device_del+0x10/0x10
[  200.833326][ T8501]  drop_partition+0x109/0x1c0
[  200.835416][ T8501]  bdev_disk_changed+0x24d/0x14e0
[  200.837593][ T8501]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  200.840332][ T8501]  ? __pfx_bdev_disk_changed+0x10/0x10
[  200.842737][ T8501]  ? filemap_write_and_wait_range+0x7d/0x130
[  200.845383][ T8501]  __loop_clr_fd+0x5f5/0x770
[  200.847427][ T8501]  ? __pfx___loop_clr_fd+0x10/0x10
[  200.849625][ T8501]  ? __pfx_lock_release+0x10/0x10
[  200.851783][ T8501]  lo_release+0x139/0x1e0
[  200.853698][ T8501]  ? __pfx_lo_release+0x10/0x10
[  200.856266][ T8501]  blkdev_put_whole+0xad/0xf0
[  200.859153][ T8501]  bdev_release+0x496/0x6f0
[  200.861411][ T8501]  ? evm_file_release+0xd6/0x1d0
[  200.864099][ T8501]  ? __pfx_blkdev_release+0x10/0x10
[  200.866656][ T8501]  blkdev_release+0x15/0x20
[  200.868804][ T8501]  __fput+0x408/0xbb0
[  200.870553][ T8501]  task_work_run+0x14e/0x250
[  200.872649][ T8501]  ? __pfx_task_work_run+0x10/0x10
[  200.874770][ T8501]  ? __pkru_allows_pkey+0x52/0xb0
[  200.876623][ T8501]  syscall_exit_to_user_mode+0x27b/0x2a0
[  200.878822][ T8501]  do_syscall_64+0xda/0x250
[  200.881097][ T8501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.883706][ T8501] RIP: 0033:0x7f2f6af77299
[  200.886230][ T8501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.895070][ T8501] RSP: 002b:00007ffc06d44858 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  200.899411][ T8501] RAX: 0000000000000000 RBX: 0000000000030dff RCX: 00007f2f6af77299
[  200.902441][ T8501] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  200.906585][ T8501] RBP: 00007ffc06d44930 R08: 0000000000000001 R09: 00007ffc06d44b3f
[  200.910135][ T8501] R10: 00007f2f6ae00000 R11: 0000000000000246 R12: 0000000000000032
[  200.913825][ T8501] R13: 00007ffc06d44950 R14: 00007ffc06d44970 R15: ffffffffffffffff
[  200.918061][ T8501]  </TASK>
[  201.043087][ T5381] usb 7-1: Using ep0 maxpacket: 8
[  201.266893][ T5381] usb 7-1: device descriptor read/all, error -71
[  201.288424][   T97] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.353397][ T5386] usb 6-1: USB disconnect, device number 7
[  201.385437][   T97] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.406091][  T836] usb 5-1: USB disconnect, device number 9
[  201.467320][   T97] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.540126][   T97] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.649245][   T97] bridge_slave_1: left allmulticast mode
[  201.651867][   T97] bridge_slave_1: left promiscuous mode
[  201.655358][   T97] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.660106][   T97] bridge_slave_0: left allmulticast mode
[  201.664433][   T97] bridge_slave_0: left promiscuous mode
[  201.667106][   T97] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.863381][   T97] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  201.877348][   T97] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  201.882131][   T97] bond0 (unregistering): Released all slaves
[  201.890331][   T97] bond1 (unregistering): Released all slaves
[  202.192801][   T97] hsr_slave_0: left promiscuous mode
[  202.196764][   T97] hsr_slave_1: left promiscuous mode
[  202.200026][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  202.202992][   T97] batman_adv: batadv0: Removing interface: batadv_slave_0
[  202.207077][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  202.210246][   T97] batman_adv: batadv0: Removing interface: batadv_slave_1
[  202.215629][   T97] veth1_macvtap: left promiscuous mode
[  202.218182][   T97] veth0_macvtap: left promiscuous mode
[  202.220226][   T97] veth1_vlan: left promiscuous mode
[  202.222145][   T97] veth0_vlan: left promiscuous mode
[  202.483875][   T97] team0 (unregistering): Port device team_slave_1 removed
[  202.528418][   T97] team0 (unregistering): Port device team_slave_0 removed
[  203.229633][   T97] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.318801][   T97] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.379767][   T97] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.458889][   T97] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.576736][   T97] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.639681][   T97] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.759017][   T97] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.763141][   T39] kauditd_printk_skb: 21 callbacks suppressed
[  203.763156][   T39] audit: type=1400 audit(1722037866.443:1113): avc:  denied  { sys_chroot } for  pid=8556 comm="dhcpcd" capability=18  scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1
[  203.774559][   T39] audit: type=1400 audit(1722037866.443:1114): avc:  denied  { setgid } for  pid=8556 comm="dhcpcd" capability=6  scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1
[  203.783611][   T39] audit: type=1400 audit(1722037866.443:1115): avc:  denied  { setrlimit } for  pid=8556 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=process permissive=1
[  203.841636][   T97] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.947357][   T97] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.028677][   T97] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.092851][   T97] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.157180][   T97] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.243790][   T97] bridge_slave_1: left allmulticast mode
[  204.246172][   T97] bridge_slave_1: left promiscuous mode
[  204.248294][   T97] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.252902][   T97] bridge_slave_0: left allmulticast mode
[  204.256275][   T97] bridge_slave_0: left promiscuous mode
[  204.259596][   T97] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.267384][   T97] bridge_slave_1: left allmulticast mode
[  204.269452][   T97] bridge_slave_1: left promiscuous mode
[  204.271692][   T97] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.277576][   T97] bridge_slave_0: left allmulticast mode
[  204.280005][   T97] bridge_slave_0: left promiscuous mode
[  204.282327][   T97] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.287807][   T97] bridge_slave_1: left allmulticast mode
[  204.290187][   T97] bridge_slave_1: left promiscuous mode
[  204.292635][   T97] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.298133][   T97] bridge_slave_0: left allmulticast mode
[  204.300508][   T97] bridge_slave_0: left promiscuous mode
[  204.302975][   T97] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.787178][   T97] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  204.791069][   T97] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  204.795941][   T97] bond0 (unregistering): Released all slaves
[  204.807967][   T97] bond1 (unregistering): Released all slaves
[  204.816333][   T97] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  204.820869][   T97] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  204.825361][   T97] bond0 (unregistering): Released all slaves
[  204.832788][   T97] bond1 (unregistering): Released all slaves
[  204.844932][   T97] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  204.849133][   T97] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  204.854010][   T97] bond0 (unregistering): Released all slaves
[  204.919209][   T97] bond1 (unregistering): Released all slaves
[  205.896970][   T97] hsr_slave_0: left promiscuous mode
[  205.900150][   T97] hsr_slave_1: left promiscuous mode
[  205.905027][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  205.908172][   T97] batman_adv: batadv0: Removing interface: batadv_slave_0
[  205.912052][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  205.915476][   T97] batman_adv: batadv0: Removing interface: batadv_slave_1
[  205.930784][   T97] hsr_slave_0: left promiscuous mode
[  205.934653][   T97] hsr_slave_1: left promiscuous mode
[  205.938070][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  205.941835][   T97] batman_adv: batadv0: Removing interface: batadv_slave_0
[  205.945923][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  205.949818][   T97] batman_adv: batadv0: Removing interface: batadv_slave_1
[  205.971337][   T97] hsr_slave_0: left promiscuous mode
[  205.974878][   T97] hsr_slave_1: left promiscuous mode
[  205.998978][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  206.002063][   T97] batman_adv: batadv0: Removing interface: batadv_slave_0
[  206.005914][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  206.008848][   T97] batman_adv: batadv0: Removing interface: batadv_slave_1
[  206.016486][   T97] veth1_macvtap: left promiscuous mode
[  206.018755][   T97] veth0_macvtap: left promiscuous mode
[  206.021073][   T97] veth1_vlan: left promiscuous mode
[  206.024232][   T97] veth0_vlan: left allmulticast mode
[  206.026360][   T97] veth0_vlan: left promiscuous mode
[  206.030664][   T97] veth1_macvtap: left promiscuous mode
[  206.032878][   T97] veth0_macvtap: left promiscuous mode
[  206.035026][   T97] veth1_vlan: left promiscuous mode
[  206.037004][   T97] veth0_vlan: left promiscuous mode
[  206.039627][   T97] veth1_macvtap: left promiscuous mode
[  206.041894][   T97] veth0_macvtap: left promiscuous mode
[  206.045284][   T97] veth1_vlan: left promiscuous mode
[  206.047614][   T97] veth0_vlan: left promiscuous mode
[  206.310663][   T97] team0 (unregistering): Port device vlan0 removed
[  206.474462][   T97] team0 (unregistering): Port device team_slave_1 removed
[  206.527538][   T97] team0 (unregistering): Port device team_slave_0 removed
[  206.852961][   T97] team0 (unregistering): Port device team_slave_1 removed
[  206.869720][   T97] team0 (unregistering): Port device team_slave_0 removed
[  207.241772][   T97] team0 (unregistering): Port device team_slave_1 removed
[  207.280480][   T97] team0 (unregistering): Port device team_slave_0 removed

VM DIAGNOSIS:
23:51:03  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff84fddab0 RDI=ffffffff95198720 RBP=ffffffff951986e0 RSP=ffffc900030cef28
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=36392e332e7a7973
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff2a33136 R15=dffffc0000000000
RIP=ffffffff84fddad7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555556733500 ffffffff 00c00000
GS =0000 ffff88806b000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000001b319efff8 CR3=000000001e9ba000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffffc00 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2f6afe56c5
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2f6afe56d2
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2f6afe56cc
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2f6afe56e0
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2f6afe5766
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2f6afe5844
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 2323232323232323 2323232323232323
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000003870 6f6f6c2f7665642f
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001b53 4c4c4f0c5546470c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=ffffffff9012d678 RCX=0000000000000000 RDX=ffffffff9012d678
RSI=0000000000000004 RDI=ffff88806b13ee18 RBP=ffff88806b13ee18 RSP=ffffc9000336fbf0
R8 =0000000000000001 R9 =fffff5200066df74 R10=0000000000000003 R11=0000000000000001
R12=ffff888038c4802c R13=ffff888038c48000 R14=fffffbfff1b41e40 R15=ffff88806b13ee00
RIP=ffffffff81677949 RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b100000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f2f6af5ae20 CR3=000000001e9ba000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000ffffe000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2f6afe56c5
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2f6afe56d2
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2f6afe56cc
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2f6afe56e0
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2f6afe5766
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2f6afe5844
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 2323232323232323 2323232323232323
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000366f696461 7277732f7665642f
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000154c4a4742 5154500c5546470c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff81cfe6d3 RDX=ffff888020c92440
RSI=ffffffff81cfe6e4 RDI=0000000000000005 RBP=000000000000000d RSP=ffffc9000379f8a8
R8 =0000000000000005 R9 =00000000ffff0001 R10=000000000000000d R11=1ffff11004864512
R12=00007f5144daa000 R13=dffffc0000000000 R14=ffffea0000c20500 R15=ffffc9000379fcc8
RIP=ffffffff81cfe6e4 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b200000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffd27402860 CR3=00000000423fa000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffee7ed3730 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f13c17e56c5
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f13c17e56d2
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f13c17e56cc
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f13c17e56e0
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f13c17e5766
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f13c17e5844
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000050
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000444ff4 RBX=0000000000000003 RCX=ffffffff8b115519 RDX=ffffed100d666fe2
RSI=ffffffff8bb08b80 RDI=ffffffff816261dc RBP=ffffed100305b488 RSP=ffffc900001a7e08
R8 =0000000000000000 R9 =ffffed100d666fe1 R10=ffff88806b337f0b R11=0000000000000000
R12=0000000000000003 R13=ffff8880182da440 R14=ffffffff9012a598 R15=0000000000000000
RIP=ffffffff8b11690f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b300000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffe90059f78 CR3=0000000028aec000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=0000000000003fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ffffffff89b02db1
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000000e ffffffff8afc08c5
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000001
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000002
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000002
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ffffffff8100a0a5
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000002
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000002
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f856f3e5766
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f856f3e5844
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ffffffffff600000 00007f856f377000 ffffffff8100a0c8
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff81340d81 ffff000400000000 0000000b000c000e
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 000000000000003f 0000000000000001 ffffffff8130764e
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000