last executing test programs:

10.197856424s ago: executing program 3 (id=194):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xe, 0x4, 0x4, 0x3}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1c, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0x700}}, [], {{0x5, 0x1, 0x5, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000380), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f}}, 0x50)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r5)
sendmsg$TIPC_CMD_ENABLE_BEARER(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
sendmsg(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000040)='B', 0x1}], 0x1, 0x0, 0x0, 0x11000000}, 0x0)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r7)
ptrace$setregs(0xd, r7, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$setregs(0xd, r7, 0x0, &(0x7f0000000540))
ptrace$cont(0x20, r7, 0x0, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x60040, 0x0)
close(r8)
r9 = socket$unix(0x1, 0x1, 0x0)
r10 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=@newqdisc={0x64, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0xffe0}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x34, 0x2, {{0x3, 0x7, 0x6361, 0x5, 0xffffffff, 0x6}, [@TCA_NETEM_LOSS={0x18, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0xfffffff7, 0x6, 0x7, 0x3}}]}]}}}]}, 0x64}, 0x1, 0x0, 0x0, 0x240080c1}, 0x80)
ioctl$SIOCSIFHWADDR(r8, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})
r12 = syz_open_dev$vim2m(&(0x7f0000000140), 0x6, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r12, 0xc0405602, &(0x7f0000000000)={0x12, 0x1, 0x0, "6106007722366ccef4ba566c4acd3d00e7bfeb8cace586d84a500000000800"})

10.130709242s ago: executing program 3 (id=197):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000480), 0x1000000, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
open(&(0x7f0000000440)='./file1\x00', 0x0, 0x73) (fail_nth: 8)

9.912823743s ago: executing program 3 (id=199):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
getpeername$unix(r0, &(0x7f0000000040)=@abs, &(0x7f0000000100)=0x6e)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000480), 0x1000000, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r1, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
open(&(0x7f0000000440)='./file1\x00', 0x0, 0x73)

9.891189774s ago: executing program 3 (id=203):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x221809, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2) (fail_nth: 2)

9.740125021s ago: executing program 3 (id=207):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$unix(0x1, 0x2, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x7, 0x4, 0x18, 0xa042, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x18}, 0x48)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010028bd7000fddbdf250700000008000300", @ANYRES32=r4, @ANYBLOB="0c009900ff070000700000001400040073797a6b616c6c6572300000000000000800050006"], 0x44}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f00000001c0)={0x5, &(0x7f0000000180)=[{0xe, 0x5, 0xed, 0x1400}, {0x8, 0x0, 0x9, 0xd2d}, {0x5, 0x8, 0xda, 0x6}, {0x6, 0x52, 0x9}, {0x7, 0x6, 0x3, 0x1ff}]}, 0x10)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0xfffffffd, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0xf, "000000000000000abb4e3800"}}}]}, 0x48}}, 0x0)

8.839637874s ago: executing program 3 (id=219):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x4, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000800)=@newtfilter={0x74, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {}, {0x9, 0xffff}}, [@filter_kind_options=@f_route={{0xa}, {0x44, 0x2, [@TCA_ROUTE4_POLICE={0x40, 0x5, [@TCA_POLICE_TBF={0x3c, 0x1, {0x9, 0x20000000, 0x80, 0x9, 0x5, {0x2, 0x0, 0x5, 0x8a67, 0x7, 0x685f}, {0x37, 0x1, 0xb, 0xc5}, 0x2, 0x2, 0xfff}}]}]}}]}, 0x74}, 0x1, 0x0, 0x0, 0x1404c885}, 0x2000d8d0)
r4 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r4, 0xc05064a7, &(0x7f0000000640)={&(0x7f0000000180)=[0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, r5})

8.773423915s ago: executing program 32 (id=219):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x4, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000800)=@newtfilter={0x74, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {}, {0x9, 0xffff}}, [@filter_kind_options=@f_route={{0xa}, {0x44, 0x2, [@TCA_ROUTE4_POLICE={0x40, 0x5, [@TCA_POLICE_TBF={0x3c, 0x1, {0x9, 0x20000000, 0x80, 0x9, 0x5, {0x2, 0x0, 0x5, 0x8a67, 0x7, 0x685f}, {0x37, 0x1, 0xb, 0xc5}, 0x2, 0x2, 0xfff}}]}]}}]}, 0x74}, 0x1, 0x0, 0x0, 0x1404c885}, 0x2000d8d0)
r4 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r4, 0xc05064a7, &(0x7f0000000640)={&(0x7f0000000180)=[0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, r5})

2.420402564s ago: executing program 4 (id=285):
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'bond_slave_1\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xfff3}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_ADMIT_BYTES={0x8, 0x5, 0xaf6}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x40, 0x103)
mount$9p_virtio(&(0x7f0000000040), &(0x7f00000000c0)='./file1\x00', &(0x7f0000000180), 0x2000442, 0x0)

2.350398052s ago: executing program 4 (id=289):
r0 = socket(0x40000000015, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x2721, 0x0, &(0x7f0000000040))

2.174294276s ago: executing program 4 (id=293):
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="340000003e000701feffffff00000000017c0000040042800c0001800600060090390000100002800c00168008000f00884827"], 0x34}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
pipe(&(0x7f0000000180)={<r1=>0xffffffffffffffff})
ioctl$SNDCTL_TMR_TIMEBASE(r1, 0xc0045401, &(0x7f00000001c0)=0x3e5)
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000000000000560000000000000066ba2100b066eeb9e00a00000f"], 0x56})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000380)={0x2, 0x102000, 0x1})
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
r4 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$int_in(r4, 0x40000000af01, 0x0)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r6, &(0x7f0000000400)={0x0, 0xa7, &(0x7f00000003c0)={&(0x7f0000000300)={0x4c, r5, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x8, 0x8e, 0x1}}]}, 0x4c}}, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000002340)={0x0, 0x0, @pic={0x7, 0x10, 0x4, 0x81, 0x0, 0xb, 0x7, 0x9, 0x5d, 0x1, 0x8, 0x40, 0x31, 0x0, 0x5, 0x4b}})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f00000000c0)={0x3})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

1.752084719s ago: executing program 1 (id=297):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x440900, 0x0)
getsockname$packet(r3, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newlink={0x4c, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GENEVE_UDP_CSUM={0x5, 0x8, 0x1}, @IFLA_GENEVE_TTL_INHERIT={0x5, 0xc, 0x1}]}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1.699314998s ago: executing program 0 (id=299):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) (fail_nth: 6)

1.640871297s ago: executing program 1 (id=300):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x200000000000001, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000080)={0x8})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f00000000c0)={0x0, 0x0, 0x0, <r1=>0x0, <r2=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_REVOKE_LEASE(r0, 0xc00464c9, &(0x7f00000001c0)={r1})
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
sendmsg$NFC_CMD_ACTIVATE_TARGET(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000800)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010023010000340200001c00000008000100", @ANYRES32=0x0, @ANYBLOB="18000400000000000800030000800000"], 0x2c}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000180))
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000200))
r5 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r6)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f00000000c0)=<r8=>0x0)
sendmsg$NFC_CMD_DEV_UP(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c00", @ANYRES16=r7, @ANYBLOB="010026bd7000fcdbdf250200000008000100", @ANYRES32=r8, @ANYBLOB, @ANYRES8=0x0], 0x1c}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000240))
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
r9 = open$dir(&(0x7f0000000080)='./file0\x00', 0x200280, 0x1)
mmap$xdp(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1f, 0x4010, r9, 0x0)
r10 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
preadv(r10, &(0x7f0000000380)=[{&(0x7f0000002fc0)=""/140, 0x8c}], 0x1, 0x0, 0x100)
ioctl$IOCTL_GET_NCIDEV_IDX(r10, 0x0, &(0x7f00000000c0)=<r11=>0x0)
r12 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r12)
sendmsg$NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r13, @ANYBLOB="010028bd7000070000000200000008000100", @ANYRES32=r11], 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004)
r14 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r15 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r16 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r15)
ioctl$IOCTL_GET_NCIDEV_IDX(r14, 0x0, &(0x7f00000000c0)=<r17=>0x0)
sendmsg$NFC_CMD_DEV_UP(r15, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r16, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r17], 0xfd45}}, 0x0)

1.460830615s ago: executing program 0 (id=301):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x88)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
mkdir(&(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)='./file0\x00') (fail_nth: 8)

1.329252482s ago: executing program 0 (id=302):
r0 = socket(0x40000000015, 0x5, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x40, r2, 0x5, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "9d15a649288ad004f4173d6512fd5095c8b07c667826ac05"}]]}, 0x40}, 0x1, 0x0, 0x0, 0x40048}, 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2800000, 0x0)
chdir(&(0x7f0000000000)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r4 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
getsockopt(r0, 0x200000000114, 0x271c, 0x0, &(0x7f0000000040))
write$UHID_CREATE2(r4, &(0x7f0000000440)={0xb, {'syz0\x00', 'syz0\x00', 'syz1\x00', 0xd7, 0x4, 0x2, 0x3, 0x8, 0x7407, "6b25414285ff570832434081023d53300a1b37d67eec83b83af38de48eb48775356e5df8e0a241b6b915b08aaf158a4d0ffaf930f05f93e0ec9f81fa8b82c718a6e43a012cbe6e66d55209d1d1eb55c9c70d53b4da96308726d808abad007d240cbc7fdd2457cd41b24a3d7b84518ef2eb2f8b65a0cb4bb7998f9c4bbbca675bae4fc743096cc0aa32c144740d572e2d8dc9e1c0cfc1a8ca0b76a33785c0f096338093046e48c087825c26f6e0e4f48bdde203cacadc0a717b6d2fc3bf908373756fee436d543c31ae9980be4aa1d4a18185337a264e89"}}, 0x1ef)

1.328978954s ago: executing program 2 (id=303):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0x20040, 0x0)
ioctl$RNDCLEARPOOL(r1, 0x5206, &(0x7f0000000040)=0xbf60)
fsetxattr$security_capability(r0, &(0x7f0000000080), &(0x7f0000000100)=@v2={0x2000000, [{0x2}, {0x4, 0x400}]}, 0x14, 0x1)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r2=>r1, {0x6}}, './file0\x00'})
fcntl$getown(r2, 0x9)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=@newtaction={0x88, 0x30, 0x871a15abc695fb3d, 0x4c, 0x0, {}, [{0x74, 0x1, [@m_tunnel_key={0x70, 0x1, 0x0, 0x0, {{0xf}, {0x38, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @broadcast}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @empty}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6, 0x9, 0x4e23}]}, {0xc, 0x6, "f9a80961b77dde55"}, {0xc}, {0xc}}}]}]}, 0x88}}, 0x4c050)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000180)={'lo\x00', {0x2, 0x4e21, @empty=0x7f000000}})

1.285141164s ago: executing program 2 (id=304):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, r1, 0x2, 0x70bd2d, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x4004001)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
r2 = socket$inet(0x2b, 0x801, 0x0)
r3 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r3, &(0x7f0000000040)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000ac0)="ee", 0xffffff1f}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb71658bda99b49720fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000040)={0x4000000, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={0x2, 0xf, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @broadcast}}, @sadb_x_policy={0x8, 0x12, 0x0, 0x1, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@empty, @in6=@private2}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x80}}, 0x0)
recvmsg$kcm(r3, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x202)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x48f, &(0x7f0000000000)={0x1, @private, 0x0, 0x0, 'lc\x00', 0xa, 0x0, 0x14}, 0x2c)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x44000, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$BSG_GET_VERSION_NUM(r7, 0x2282, &(0x7f0000000040))
socket$inet6_mptcp(0xa, 0x1, 0x106)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
creat(&(0x7f00000001c0)='./file0\x00', 0x8)
r9 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r9, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r9, &(0x7f0000006380)={0x2020, 0x0, <r10=>0x0}, 0x2020)
write$FUSE_INIT(r9, &(0x7f0000000100)={0x50, 0x0, r10, {0x7, 0x1f, 0x0, 0x45c0d00c}}, 0x50)
syz_fuse_handle_req(r9, &(0x7f00000083c0)="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", 0x2000, &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x18, 0x0, 0x0, {0x800007ff}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
llistxattr(&(0x7f0000000240)='./file0\x00', 0x0, 0x8a4b41029b6088c8)
connect$bt_l2cap(r8, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
writev(r8, &(0x7f0000000240)=[{&(0x7f0000002740)="1e", 0xfdef}], 0x33)
r11 = dup(r6)
ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x2)
ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x2)

1.28392531s ago: executing program 4 (id=305):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x200, 0x0, 0xfffffffffffffffe, 0x7, 0x0, 0x5, 0x0, 0x8000, 0xffffffffffffffff], 0x0, 0x200})
ioctl$KVM_RUN(r2, 0xae80, 0x31)

1.169975576s ago: executing program 4 (id=306):
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
r1 = userfaultfd(0x801)
socket(0x10, 0x3, 0x0) (async)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'sit0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="380000006800010000000000000000000a000000000000000600070008000000100008800c000100000000070000000008000500", @ANYRES32=r3], 0x38}}, 0x0) (async)
sendmsg$nl_route(r2, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="380000006800010000000000000000000a000000000000000600070008000000100008800c000100000000070000000008000500", @ANYRES32=r3], 0x38}}, 0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x4}) (async)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x4})
ioctl$UFFDIO_ZEROPAGE(r1, 0xc020aa04, &(0x7f0000000040)={{&(0x7f00004f9000/0x2000)=nil, 0x2000}, 0x1})
socket$nl_route(0x10, 0x3, 0x0)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
mremap(&(0x7f0000d59000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000a91000/0x1000)=nil)
ioctl$UFFDIO_ZEROPAGE(r1, 0xc020aa04, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r0, 0x4008ae93, &(0x7f0000000080)=0x2000) (async)
ioctl$KVM_SET_VAPIC_ADDR(r0, 0x4008ae93, &(0x7f0000000080)=0x2000)
r4 = socket(0x11, 0x800000002, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r4, 0x8916, &(0x7f0000000540)={'wlan0\x00', {0x2, 0x0, @private=0xf30a0000}})

769.472463ms ago: executing program 0 (id=307):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000000)=0x2)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x200, 0x0, 0xfffffffffffffffe, 0x7, 0x0, 0x5, 0x0, 0x8000, 0xffffffffffffffff], 0x0, 0x200})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='/proc/1/\x00\x82q\xee\xe5\xa0\xbd\xc2\x98#YP\xee\x9c2G\xf0\x81x\x97'}, 0x30)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080), 0x10)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

767.705424ms ago: executing program 1 (id=308):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000200)={0x1, 0x1, 0x0, &(0x7f0000000740)=""/51, 0x0})
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000340))
r2 = dup(r1)
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000000)={0x1, r2})
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r3, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000200)={0x1, 0x1, 0x0, &(0x7f0000000280)=""/56, 0x0})
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000340))
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=ANY=[@ANYBLOB="6c01000010001307fefffffffcdbdf252001000000000000000000000000000120010000000000000000000000000001000000004e210002020000206c000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="fc010000000000000000000000000000000400fe3200000000000000000000000000ffffac1414bb000000000000000000000000000000000000000000080000080000000000000000000000000000000000000000000000000000000000000043050000000000000400000000000000ffffffffffffff7f000000000000000000000000000000000200000000000000000000002cbd70000035000002000400500000000000000060001200726663343130362867636d2861657329290000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000060000000210466d38547aa140db9a200000000c538c7cb7a1c00040002"], 0x16c}, 0x1, 0x0, 0x0, 0x880}, 0x0)
r6 = dup(r4)
ioctl$VHOST_NET_SET_BACKEND(r3, 0x4008af30, &(0x7f0000000000)={0x1, r6})
ioctl$VHOST_RESET_OWNER(r3, 0xaf02, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f00000001c0)=0x304008000)

659.480894ms ago: executing program 0 (id=309):
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYRESOCT=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000004700)={'team0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x10)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000100)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="9148be4b22eb5f2f1c71b500000008000100", @ANYRES32=r3, @ANYBLOB="4800028044000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005000000110004006163746976656261636b757000000000"], 0x64}, 0x1, 0x0, 0x0, 0x4000401}, 0x4040084)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180200000020702500000000002020207b1af8ff00000000bfa100000000000007010000dbffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000080)={0x62, <r7=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x19, 0xd, &(0x7f0000000340)=ANY=[@ANYRES64=r5, @ANYRES32, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, r6, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
r8 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
r9 = fsmount(r8, 0x0, 0x0)
r10 = openat$cgroup_pressure(r9, &(0x7f0000000000)='memory.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r10, &(0x7f00000001c0)={'full', 0x20, 0xe, 0x20, 0x200}, 0x2f)
r11 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r11, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id'])

659.337076ms ago: executing program 1 (id=310):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x118)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, r0)
setpgid(0x0, r0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
mount$overlay(0xfe, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x20a242a, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0x9362, 0x0)

659.048027ms ago: executing program 0 (id=311):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x7, @mcast1}, r1}}, 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x118)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(anubis)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000035c0), r3)
sendmsg$SEG6_CMD_DUMPHMAC(r3, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x40, 0x0, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x5}, @SEG6_ATTR_SECRET={0x14, 0x4, [0x2dd0, 0x7, 0x4b, 0x7fff]}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x7fff}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x5}]}, 0x40}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000100)=0x7)
ioctl$VT_RELDISP(r4, 0x8910)
mount$fuse(0x0, 0x0, 0x0, 0x110000, &(0x7f0000000000)=ANY=[@ANYRES16=r4, @ANYRES64=r4])
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0)
write$char_usb(r5, &(0x7f00000008c0)='-0', 0x2)
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
r6 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r6, r6)
setpgid(0x0, r6)
r7 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0/file0\x00', 0x101000, 0xb1)
r8 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x4, 0x0)
ioctl$DVD_WRITE_STRUCT(r8, 0x5390, &(0x7f0000000b40)=@physical={0x0, 0x2, [{0xb, 0x1, 0x2, 0x0, 0x9, 0x0, 0x2, 0x3, 0xb, 0x0, 0x6, 0x1c0, 0xfffffffd}, {0x1, 0xc, 0xd, 0x8, 0x7, 0x1, 0x2, 0x0, 0x7, 0x0, 0x9, 0x9, 0x6}, {0x0, 0x7, 0x9, 0x0, 0x8, 0x1, 0x2, 0x3, 0x4, 0x1, 0x4, 0x10, 0x2}, {0x4, 0x1, 0x4, 0x3, 0xf, 0x1, 0x2, 0x0, 0xc, 0x0, 0x9, 0xc, 0xf}]})
r9 = openat(r7, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
mount$overlay(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x20a242a, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r9, 0x9362, 0x0)

658.904933ms ago: executing program 1 (id=312):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x115}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_ACTOR_SYSTEM={0x8, 0x1a, @multicast2}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x240048c4}, 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x24)
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000080)='devpts\x00', 0x0, 0x0) (async)
r1 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r1, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) (async)
listen(r1, 0x8)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x28, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x7}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x50}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b0001006272696467650000180002"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) (async)
r3 = accept4(r1, 0x0, 0x0, 0x0)
recvfrom$l2tp6(r3, 0x0, 0x0, 0x20, 0x0, 0x0) (async)
recvmmsg$unix(r3, &(0x7f0000001280)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f0000000040)=[{&(0x7f0000000280)=""/111, 0x6f}, {&(0x7f0000000300)=""/189, 0xbd}, {&(0x7f0000000440)=""/132, 0x84}, {&(0x7f0000000500)=""/183, 0xb7}], 0x4}}, {{&(0x7f00000005c0)=@abs, 0x6e, &(0x7f0000000e00)=[{&(0x7f0000000640)=""/82, 0x52}, {&(0x7f00000006c0)=""/246, 0xf6}, {&(0x7f00000007c0)=""/70, 0x46}, {&(0x7f0000000840)=""/90, 0x5a}, {&(0x7f00000008c0)=""/191, 0xbf}, {&(0x7f0000000980)=""/129, 0x81}, {&(0x7f0000000a40)=""/149, 0x95}, {&(0x7f0000000b00)=""/230, 0xe6}, {&(0x7f0000000c00)=""/234, 0xea}, {&(0x7f0000000d00)=""/229, 0xe5}], 0xa, &(0x7f0000000ec0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60}}, {{&(0x7f0000000f40), 0x6e, &(0x7f0000001080)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f0000000fc0)=""/169, 0xa9}], 0x2, &(0x7f00000010c0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x18}}, {{&(0x7f0000001100), 0x6e, &(0x7f00000011c0)=[{&(0x7f0000001180)=""/32, 0x20}], 0x1, &(0x7f0000001200)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}}], 0x4, 0x23, &(0x7f0000001380)={0x0, 0x3938700}) (async)
mount$binder(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x1026864, &(0x7f00000001c0)=ANY=[@ANYBLOB='max='])

540.936148ms ago: executing program 1 (id=313):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = dup(r0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=@RTM_NEWMDB={0x38, 0x54, 0x1, 0x170bd26, 0x0, {0x7, r3}, [@MDBA_SET_ENTRY={0x20, 0x1, {r3, 0x0, 0x0, 0x2, {@in6_addr=@loopback, 0x800}}}]}, 0x38}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000003c0)={'ip6gre0\x00', &(0x7f0000000740)={'ip6gre0\x00', <r4=>0x0, 0x0, 0x26, 0xd8, 0x4d58, 0x10, @rand_addr=' \x01\x00', @loopback, 0x1, 0x80, 0x6, 0xf}})
sendmmsg$inet6(r1, &(0x7f0000000980)=[{{&(0x7f0000000040)={0xa, 0x4e20, 0xe, @rand_addr=' \x01\x00', 0x4}, 0x1c, &(0x7f00000006c0)=[{&(0x7f0000000080)="825d812b311106cef7b28fca755a3b4112271bdce8189779b7d7c77f908a0f55bcd7356b6ffadef172c7b0e88c4921e6ac6d1fb9a29d977ec406e836fc2167e0d5e65d4be1e6043a7bf4c6d8c4a86232597a6b5f2f97860d6f2dbb78121c48ca9b042d90b4fdb166dcb61da710d5077095a8daad38a98a979c660d70a037943d4bde7705da97eb6b9f9789", 0x8b}, {&(0x7f0000000440)="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", 0xfa}, {&(0x7f0000000140)="5d9cd9f5c417ef5e463bec6fcddf5beca19fe01a5c4fe32a78b5014fded6804b559901fd4373d7d87143682e3f1d4c844ad60d4b8ea245041b13e4127daa671cd93319770646c1315c9166283134534abc9f90f019b28079ef2d9a571fc546de2ecee67ffd4c48a36766fcf945acd4065093370e8bd8aad7341f0e3888de7d152d479ec5ee08903c2ab82634efa424fb3eed880f0bd72be0ac8ec6fdccc63c2678eb24331587c890c9da17d3af82387f6016b233db82d7", 0xb7}, {&(0x7f0000000240)="614daa2dd71524054f64772d606b7a4f142aeadd30d113d854b9c780fb7dd3db3b2d3c2348a3af2b6bbc1a9765c7d87293e21bb63cea2852c14f1802b418309a95573fd2ec78a95d3562bb1a0d0e40206bd13b093cb5b37f03b9", 0x5a}, {&(0x7f0000000340)="3b402d3f26eac2a533b14a011373d7bb435a103c0ebf0c92f85e72e2cb9948a0678c6ff5ce0bf53bf49420de7de0367df23dc59e7caee3b8d7bc10c856c3e4bec60bf37dd1c8c8bd52cbb607dcbd65cee4c57b38eeea6be261dbcd4ff3643acf990ffa5eb4fb4bf78fa829e084254d53071e72e2c3", 0x75}, {&(0x7f00000002c0)="3f63bf1bfdc019de7829857e1438145c1ef71358c250c942738125eaabaac34ed92b339f2a371f0375c3cb1b292b49fcda77010e73e7", 0x36}, {&(0x7f0000000540)="10205f3f7b35d542c7365900b842f7d767bcb1d961187335242fdc96ab9826daf0c28addbd45256723d2a45e2584447d72a2b97165d0355f7f3fa6944f679b2da9980b1cc1915abc8f2bc68256829d451672eaa16666065d6ee2c426321c4d3e709f72afdfc3fc76632c51725e5ec7153fc4741b832aa45baa58cd0d4a4609401ef33cff0b9b134f08102f8b6c35d500c6903ba1d02d9b157496068d6eb3430501f8624ab023b55ff2acd0642ca190469ac7cb17c56ab637fbdccb93663b1341dc77289dd148cf4266b6746e266a516e1a028460", 0xd4}, {&(0x7f0000000640)="0f737c372144814a3b0a90adaf488c5f18be88037274d14232a01c7c0a71f0a17ca811b39d777fc36adbbfc461d6004f4d6daf0f9a4b91d80cf31e58e81ef84b028a65fc4709487e218f8ef0a17d8614b123ac3ee76ed679d269b6c056a3f96b9e524805bae5ed150e578a7569f39d5096763273", 0x74}], 0x8, &(0x7f00000007c0)=[@hopopts={{0x58, 0x29, 0x36, {0x2b, 0x7, '\x00', [@generic={0x7, 0x3d, "afb6ee18952b9dd47f97381935c29c8ca72e99211aaccdafd22766aca2cee96b0ac325a087d2a790d2c015ccad6ba8e610fe5f39dab44b7bd1f714bdad"}]}}}, @rthdrdstopts={{0x50, 0x29, 0x37, {0x2f, 0x7, '\x00', [@pad1, @pad1, @padn={0x1, 0x1, [0x0]}, @ra={0x5, 0x2, 0x8}, @enc_lim={0x4, 0x1, 0x8}, @hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}, @ra={0x5, 0x2, 0xffff}, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}}}, @rthdr_2292={{0x98, 0x29, 0x39, {0x32, 0x10, 0x1, 0x0, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @remote, @private2, @ipv4={'\x00', '\xff\xff', @empty}, @mcast1, @empty, @empty]}}}, @pktinfo={{0x24, 0x29, 0x32, {@remote, r3}}}, @pktinfo={{0x24, 0x29, 0x32, {@dev={0xfe, 0x80, '\x00', 0x17}, r4}}}, @dstopts_2292={{0x20, 0x29, 0x4, {0x11, 0x0, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}}}], 0x1b0}}], 0x1, 0x20044000)
sendmmsg$inet(r0, &(0x7f0000006980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000400)=[{&(0x7f0000000200)='T', 0x1}], 0x1}}], 0x1, 0x810)
poll(&(0x7f0000000300)=[{r0, 0x84d}], 0x1, 0x4e21)
listen(r0, 0xc6)
accept4(r0, 0x0, 0x0, 0x80800)

410.752855ms ago: executing program 2 (id=314):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f00000001c0)={0x79, 0x0, 0xc73})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 8)

230.77941ms ago: executing program 4 (id=315):
name_to_handle_at(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0xffffffffffffffff, 0x2, 0xfffffffffffffffe, 0x0, 0x0, 0x0, {0x40, 0x3, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x120, 0x6000, 0x0, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x14c0348, 0x0, 0x2, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x1)
ioctl$TIOCGPTPEER(r2, 0x932, 0x8)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x4043, 0x3e)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
move_pages(0x0, 0x1, &(0x7f0000000480)=[&(0x7f0000174000/0x1000)=nil], 0x0, &(0x7f0000000180), 0x2)
r4 = fanotify_init(0xf00, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), r5)
sendmsg$DEVLINK_CMD_RATE_SET(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="0107000000000000000052"], 0x14}, 0x1, 0x0, 0x0, 0x4800}, 0x0)
sendmsg$DEVLINK_CMD_RATE_GET(r2, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000500)={0x154, r6, 0x2, 0x70bd25, 0x25dfdbfb, {}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @DEVLINK_ATTR_RATE_NODE_NAME={0xbd, 0xa8, @random="909955c117c934f8e2e45b214b18670a8751d2e9263204f5d09908b49da1659786f53b058631039416884e404d3c565b25cf7d0db01895b5ca08f693bb88f8ae47a5645f879f65e3b2f31c0597d3b3b486113fc74b0757d24b9e3f9396c639d15fe86806af75c6562d88db402c07443716643378a3744792c582c3e6631c6032ee9eb0d9102b64424e1143b0c7b86dcc6d575524770aa03454aec25afbabac75865ef978390c73bcecd93a54d8b40fdfe262c614d3484e41de"}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x2}]}, 0x154}, 0x1, 0x0, 0x0, 0x4040}, 0x88000)
fanotify_mark(r4, 0x105, 0x5000003a, r3, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x0, 0x1000000a)
r7 = open(&(0x7f0000000000)='./bus\x00', 0x1, 0xc32a4cddd557707a)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeed, 0x80010, r7, 0x5000)
pipe2$9p(&(0x7f0000000040), 0x800)

149.634619ms ago: executing program 2 (id=316):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='dctcp\x00', 0x6)
sendto$inet(r0, 0x0, 0x240, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)

149.475628ms ago: executing program 2 (id=317):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x118)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, r0)
setpgid(0x0, r0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
mount$overlay(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x20a242a, 0x0) (fail_nth: 8)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0x9362, 0x0)

0s ago: executing program 2 (id=318):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000b00850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x8a002, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000036000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f00000001c0)={{0x80a0000, 0xeeef0000, 0xe, 0x8, 0x3, 0xd2, 0x4, 0x7, 0x0, 0x2e, 0x19, 0x9}, {0x1, 0x2, 0x8, 0x0, 0x40, 0x7, 0x7, 0x16, 0x4, 0x80, 0x3, 0x6}, {0x3000, 0xdddd0000, 0x8, 0x5, 0x1, 0x7, 0x0, 0x4, 0x1, 0xa7, 0x8, 0x81}, {0x6000, 0x100000, 0xd, 0xe6, 0x3, 0x2, 0x1, 0xf6, 0x8, 0x4, 0xe, 0xf1}, {0x4000, 0xd000, 0xe, 0x3, 0x5, 0x2, 0xab, 0x7f, 0x41, 0x83, 0xf7, 0x3}, {0x1000, 0xdddd1000, 0xc, 0xa0, 0xad, 0x8, 0x2, 0x80, 0x80, 0xf, 0x1, 0x7}, {0xffff1000, 0x1000, 0xc, 0x5, 0x0, 0x5, 0x1, 0x3, 0x5, 0x81, 0x3, 0x70}, {0x4, 0x4, 0xe, 0x5, 0xf, 0x7, 0x1, 0x37, 0x2, 0x8, 0xf0, 0x10}, {0x6000, 0x6d}, {0xdddd0000, 0x7}, 0x80000031, 0x0, 0xeeee8000, 0x100200, 0x6, 0x0, 0x3000, [0x2, 0x9, 0x5e, 0x3]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000540), 0xffffffffffffffff)
r7 = io_uring_setup(0x3458, &(0x7f0000000080)={0x0, 0xffffeffa, 0x18, 0x2, 0x1})
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r7, 0x10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000002700)=""/4096, 0x1000}], 0x0, 0xa}, 0x20)
sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000380)={0x28, r6, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_STRSET_HEADER={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}]}]}, 0x28}}, 0x0)

kernel console output (not intermixed with test programs):

b 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[   48.354540][   T29] usb 6-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[   48.363377][   T53] usb 7-1: new low-speed USB device number 2 using dummy_hcd
[   48.363750][   T29] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   48.368281][   T29] usb 6-1: Product: syz
[   48.369639][   T29] usb 6-1: Manufacturer: syz
[   48.371116][   T29] usb 6-1: SerialNumber: syz
[   48.379726][   T29] usb 6-1: config 0 descriptor??
[   48.386467][   T29] input: KB Gear Tablet as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input5
[   48.534327][   T53] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[   48.536913][   T53] usb 7-1: config 0 has no interface number 0
[   48.538831][   T53] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   48.542224][   T53] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[   48.545757][   T53] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[   48.549365][   T53] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[   48.552820][   T53] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[   48.556321][   T53] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[   48.560342][   T53] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[   48.563303][   T53] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   48.567014][   T53] usb 7-1: config 0 descriptor??
[   48.569552][ T6096] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   48.571952][ T6096] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   48.578828][   T53] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[   48.659944][ T6053] usb 6-1: USB disconnect, device number 2
[   48.838155][   T29] usb 7-1: USB disconnect, device number 2
[   48.841784][   T29] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[   49.264261][ T6119] process 'syz.3.25' launched '/dev/fd/3' with NULL argv: empty string added
[   49.293235][ T5982] Bluetooth: hci3: command tx timeout
[   49.332707][ T6122] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[   49.373158][ T5982] Bluetooth: hci1: command tx timeout
[   49.373332][ T5972] Bluetooth: hci2: command tx timeout
[   49.383285][ T6125] netlink: 8 bytes leftover after parsing attributes in process `syz.2.27'.
[   49.607572][ T6136] netlink: 12 bytes leftover after parsing attributes in process `syz.2.32'.
[   49.611563][ T6136] netlink: 'syz.2.32': attribute type 21 has an invalid length.
[   49.614884][ T6136] netlink: 132 bytes leftover after parsing attributes in process `syz.2.32'.
[   49.948245][   T40] kauditd_printk_skb: 108 callbacks suppressed
[   49.948255][   T40] audit: type=1400 audit(1754724909.456:196): avc:  denied  { watch } for  pid=6159 comm="syz.3.42" path="/21/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=144 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   49.964600][   T40] audit: type=1400 audit(1754724909.456:197): avc:  denied  { watch_sb watch_reads } for  pid=6159 comm="syz.3.42" path="/21/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=144 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   49.980963][   T40] audit: type=1400 audit(1754724909.486:198): avc:  denied  { read } for  pid=6161 comm="syz.3.43" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   50.015798][   T40] audit: type=1400 audit(1754724909.526:199): avc:  denied  { setopt } for  pid=6161 comm="syz.3.43" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   50.204446][ T6164] FAULT_INJECTION: forcing a failure.
[   50.204446][ T6164] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   50.209784][ T6164] CPU: 3 UID: 0 PID: 6164 Comm: syz.3.44 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   50.209806][ T6164] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   50.209816][ T6164] Call Trace:
[   50.209822][ T6164]  <TASK>
[   50.209828][ T6164]  dump_stack_lvl+0x16c/0x1f0
[   50.209855][ T6164]  should_fail_ex+0x512/0x640
[   50.209872][ T6164]  ? page_copy_sane+0xcd/0x2d0
[   50.209890][ T6164]  copy_folio_from_iter_atomic+0x375/0x1aa0
[   50.209922][ T6164]  ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[   50.209941][ T6164]  ? fault_in_readable+0x179/0x1d0
[   50.209962][ T6164]  ? __pfx_fault_in_readable+0x10/0x10
[   50.209982][ T6164]  ? iomap_iter+0x7a7/0xf20
[   50.210011][ T6164]  iomap_file_buffered_write+0x535/0xac0
[   50.210030][ T6164]  ? __pfx_fuse_xattr_get+0x10/0x10
[   50.210056][ T6164]  ? __pfx_iomap_file_buffered_write+0x10/0x10
[   50.210076][ T6164]  ? cap_inode_need_killpriv+0x4c/0x60
[   50.210094][ T6164]  ? security_inode_need_killpriv+0x6c/0x1e0
[   50.210132][ T6164]  ? __pfx_generic_write_checks+0x10/0x10
[   50.210165][ T6164]  fuse_file_write_iter+0x6f0/0x990
[   50.210190][ T6164]  aio_write+0x3b9/0x910
[   50.210212][ T6164]  ? __pfx_aio_write+0x10/0x10
[   50.210231][ T6164]  ? __lock_acquire+0xb97/0x1ce0
[   50.210272][ T6164]  ? __might_fault+0xe3/0x190
[   50.210289][ T6164]  ? __might_fault+0x13b/0x190
[   50.210312][ T6164]  ? io_submit_one+0x1243/0x1df0
[   50.210328][ T6164]  io_submit_one+0x1243/0x1df0
[   50.210352][ T6164]  ? __lock_acquire+0xb97/0x1ce0
[   50.210382][ T6164]  ? __pfx_io_submit_one+0x10/0x10
[   50.210408][ T6164]  ? __might_fault+0xe3/0x190
[   50.210423][ T6164]  ? __might_fault+0x13b/0x190
[   50.210445][ T6164]  ? __x64_sys_io_submit+0x1a9/0x350
[   50.210466][ T6164]  __x64_sys_io_submit+0x1a9/0x350
[   50.210490][ T6164]  ? __pfx___x64_sys_io_submit+0x10/0x10
[   50.210522][ T6164]  do_syscall_64+0xcd/0x4c0
[   50.210540][ T6164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.210558][ T6164] RIP: 0033:0x7fca3498ebe9
[   50.210572][ T6164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.210586][ T6164] RSP: 002b:00007fca3572c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[   50.210602][ T6164] RAX: ffffffffffffffda RBX: 00007fca34bb5fa0 RCX: 00007fca3498ebe9
[   50.210611][ T6164] RDX: 0000200000000700 RSI: 000000000000140b RDI: 00007fca3570b000
[   50.210619][ T6164] RBP: 00007fca3572c090 R08: 0000000000000000 R09: 0000000000000000
[   50.210628][ T6164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.210638][ T6164] R13: 00007fca34bb6038 R14: 00007fca34bb5fa0 R15: 00007ffc8b14b978
[   50.210661][ T6164]  </TASK>
[   50.316933][    C3] vkms_vblank_simulate: vblank timer overrun
[   50.471791][   T40] audit: type=1400 audit(1754724909.976:200): avc:  denied  { create } for  pid=6172 comm="syz.3.46" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   50.485155][   T40] audit: type=1400 audit(1754724909.976:201): avc:  denied  { bind } for  pid=6172 comm="syz.3.46" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   50.492612][   T40] audit: type=1400 audit(1754724909.976:202): avc:  denied  { write } for  pid=6172 comm="syz.3.46" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   50.495098][ T6175] input: syz0 as /devices/virtual/input/input6
[   50.499617][   T40] audit: type=1400 audit(1754724909.996:203): avc:  denied  { read write } for  pid=6174 comm="syz.1.48" name="uinput" dev="devtmpfs" ino=943 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   50.511643][   T40] audit: type=1400 audit(1754724909.996:204): avc:  denied  { open } for  pid=6174 comm="syz.1.48" path="/dev/uinput" dev="devtmpfs" ino=943 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   50.520831][   T40] audit: type=1400 audit(1754724909.996:205): avc:  denied  { ioctl } for  pid=6174 comm="syz.1.48" path="/dev/uinput" dev="devtmpfs" ino=943 ioctlcmd=0x5564 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   50.527852][ T6182] input: syz0 as /devices/virtual/input/input7
[   50.544770][ T6182] FAULT_INJECTION: forcing a failure.
[   50.544770][ T6182] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.548918][ T6182] CPU: 1 UID: 0 PID: 6182 Comm: syz.3.50 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   50.548932][ T6182] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   50.548938][ T6182] Call Trace:
[   50.548942][ T6182]  <TASK>
[   50.548946][ T6182]  dump_stack_lvl+0x16c/0x1f0
[   50.548965][ T6182]  should_fail_ex+0x512/0x640
[   50.548978][ T6182]  _copy_from_user+0x2e/0xd0
[   50.548990][ T6182]  input_event_from_user+0x133/0x3b0
[   50.549004][ T6182]  ? __pfx_input_event_from_user+0x10/0x10
[   50.549017][ T6182]  ? __pfx___might_resched+0x10/0x10
[   50.549031][ T6182]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   50.549046][ T6182]  ? input_event+0xb6/0xd0
[   50.549058][ T6182]  uinput_write+0xbb4/0x12b0
[   50.549077][ T6182]  ? __pfx_uinput_write+0x10/0x10
[   50.549093][ T6182]  ? bpf_lsm_file_permission+0x9/0x10
[   50.549107][ T6182]  ? security_file_permission+0x71/0x210
[   50.549122][ T6182]  ? rw_verify_area+0xcf/0x6c0
[   50.549139][ T6182]  ? __pfx_uinput_write+0x10/0x10
[   50.549153][ T6182]  vfs_write+0x2a0/0x1150
[   50.549166][ T6182]  ? __pfx_vfs_write+0x10/0x10
[   50.549175][ T6182]  ? find_held_lock+0x2b/0x80
[   50.549188][ T6182]  ? __fget_files+0x204/0x3c0
[   50.549220][ T6182]  ? __fget_files+0x20e/0x3c0
[   50.549237][ T6182]  ksys_write+0x1f8/0x250
[   50.549247][ T6182]  ? __pfx_ksys_write+0x10/0x10
[   50.549261][ T6182]  do_syscall_64+0xcd/0x4c0
[   50.549272][ T6182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.549283][ T6182] RIP: 0033:0x7fca3498ebe9
[   50.549291][ T6182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.549302][ T6182] RSP: 002b:00007fca3572c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   50.549311][ T6182] RAX: ffffffffffffffda RBX: 00007fca34bb5fa0 RCX: 00007fca3498ebe9
[   50.549318][ T6182] RDX: 000000000000045c RSI: 0000200000000a40 RDI: 0000000000000003
[   50.549323][ T6182] RBP: 00007fca3572c090 R08: 0000000000000000 R09: 0000000000000000
[   50.549329][ T6182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.549335][ T6182] R13: 00007fca34bb6038 R14: 00007fca34bb5fa0 R15: 00007ffc8b14b978
[   50.549347][ T6182]  </TASK>
[   50.755378][ T6192] FAULT_INJECTION: forcing a failure.
[   50.755378][ T6192] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   50.759583][ T6192] CPU: 0 UID: 0 PID: 6192 Comm: syz.3.54 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   50.759598][ T6192] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   50.759604][ T6192] Call Trace:
[   50.759607][ T6192]  <TASK>
[   50.759611][ T6192]  dump_stack_lvl+0x16c/0x1f0
[   50.759631][ T6192]  should_fail_ex+0x512/0x640
[   50.759643][ T6192]  should_fail_alloc_page+0xe7/0x130
[   50.759657][ T6192]  prepare_alloc_pages+0x3c2/0x610
[   50.759673][ T6192]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[   50.759687][ T6192]  ? find_held_lock+0x2b/0x80
[   50.759702][ T6192]  ? is_bpf_text_address+0x8a/0x1a0
[   50.759717][ T6192]  ? bpf_ksym_find+0x127/0x1c0
[   50.759730][ T6192]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   50.759742][ T6192]  ? kernel_text_address+0x8d/0x100
[   50.759753][ T6192]  ? __pfx_stack_trace_save+0x10/0x10
[   50.759768][ T6192]  ? __kernel_text_address+0xd/0x40
[   50.759779][ T6192]  ? unwind_get_return_address+0x59/0xa0
[   50.759795][ T6192]  ? __lock_acquire+0x62e/0x1ce0
[   50.759811][ T6192]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   50.759824][ T6192]  ? policy_nodemask+0xea/0x4e0
[   50.759837][ T6192]  alloc_pages_mpol+0x1fb/0x550
[   50.759850][ T6192]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   50.759863][ T6192]  ? __lock_acquire+0x62e/0x1ce0
[   50.759880][ T6192]  folio_alloc_mpol_noprof+0x36/0x2f0
[   50.759895][ T6192]  shmem_alloc_folio+0x135/0x160
[   50.759911][ T6192]  shmem_alloc_and_add_folio+0x499/0xc20
[   50.759931][ T6192]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[   50.759950][ T6192]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[   50.759963][ T6192]  shmem_get_folio_gfp+0x67f/0x1600
[   50.759976][ T6192]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[   50.759990][ T6192]  shmem_fault+0x1fe/0xa30
[   50.760001][ T6192]  ? __pfx_shmem_fault+0x10/0x10
[   50.760010][ T6192]  ? __lock_acquire+0x62e/0x1ce0
[   50.760032][ T6192]  ? __pfx_filemap_map_pages+0x10/0x10
[   50.760042][ T6192]  __do_fault+0x10d/0x490
[   50.760053][ T6192]  ? __pfx_filemap_map_pages+0x10/0x10
[   50.760063][ T6192]  do_pte_missing+0x1a6/0x3ba0
[   50.760079][ T6192]  ? find_held_lock+0x2b/0x80
[   50.760092][ T6192]  ? __handle_mm_fault+0x14fd/0x2a50
[   50.760110][ T6192]  __handle_mm_fault+0x152a/0x2a50
[   50.760129][ T6192]  ? __pfx___handle_mm_fault+0x10/0x10
[   50.760146][ T6192]  ? __pte_offset_map_lock+0x174/0x310
[   50.760159][ T6192]  ? find_held_lock+0x2b/0x80
[   50.760175][ T6192]  ? follow_page_pte.constprop.0+0x5cf/0x1390
[   50.760192][ T6192]  handle_mm_fault+0x589/0xd10
[   50.760211][ T6192]  __get_user_pages+0x551/0x34a0
[   50.760228][ T6192]  ? down_read_killable+0x220/0x4b0
[   50.760240][ T6192]  ? __pfx___get_user_pages+0x10/0x10
[   50.760254][ T6192]  ? __pfx_gup_fast_fallback+0x10/0x10
[   50.760271][ T6192]  get_user_pages_unlocked+0x1ca/0x780
[   50.760287][ T6192]  ? __pfx_get_user_pages_unlocked+0x10/0x10
[   50.760301][ T6192]  ? get_user_pages_fast_only+0xae/0xf0
[   50.760315][ T6192]  ? __pfx_get_user_pages_fast_only+0x10/0x10
[   50.760330][ T6192]  ? __pfx___might_resched+0x10/0x10
[   50.760342][ T6192]  ? rcu_is_watching+0x12/0xc0
[   50.760355][ T6192]  ? trace_contention_end+0xdd/0x130
[   50.760366][ T6192]  hva_to_pfn+0x886/0xe60
[   50.760378][ T6192]  ? __pfx_hva_to_pfn+0x10/0x10
[   50.760388][ T6192]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   50.760406][ T6192]  ? __lock_acquire+0xb97/0x1ce0
[   50.760427][ T6192]  kvm_follow_pfn+0x2d4/0x430
[   50.760438][ T6192]  __kvm_faultin_pfn+0x11c/0x1a0
[   50.760448][ T6192]  ? __pfx___kvm_faultin_pfn+0x10/0x10
[   50.760460][ T6192]  ? __pfx___mod_timer+0x10/0x10
[   50.760472][ T6192]  vmx_set_apic_access_page_addr+0x52f/0x900
[   50.760485][ T6192]  ? __pfx_kvm_guest_time_update+0x10/0x10
[   50.760498][ T6192]  ? __pfx_vmx_set_apic_access_page_addr+0x10/0x10
[   50.760511][ T6192]  ? vmx_flush_tlb_all+0x153/0x2f0
[   50.760528][ T6192]  ? record_steal_time+0x78/0xc30
[   50.760545][ T6192]  vcpu_run+0x4236/0x5580
[   50.760560][ T6192]  ? __lock_acquire+0xb97/0x1ce0
[   50.760578][ T6192]  ? __pfx_vcpu_run+0x10/0x10
[   50.760594][ T6192]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   50.760608][ T6192]  ? __local_bh_enable_ip+0xa4/0x120
[   50.760623][ T6192]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[   50.760637][ T6192]  kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[   50.760656][ T6192]  kvm_vcpu_ioctl+0x5eb/0x1690
[   50.760671][ T6192]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   50.760685][ T6192]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   50.760697][ T6192]  ? do_vfs_ioctl+0x128/0x14f0
[   50.760716][ T6192]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   50.760731][ T6192]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   50.760750][ T6192]  ? hook_file_ioctl_common+0x145/0x410
[   50.760770][ T6192]  ? selinux_file_ioctl+0x180/0x270
[   50.760782][ T6192]  ? selinux_file_ioctl+0xb4/0x270
[   50.760795][ T6192]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   50.760809][ T6192]  __x64_sys_ioctl+0x18e/0x210
[   50.760826][ T6192]  do_syscall_64+0xcd/0x4c0
[   50.760836][ T6192]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.760846][ T6192] RIP: 0033:0x7fca3498ebe9
[   50.760855][ T6192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.760865][ T6192] RSP: 002b:00007fca3572c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   50.760874][ T6192] RAX: ffffffffffffffda RBX: 00007fca34bb5fa0 RCX: 00007fca3498ebe9
[   50.760893][ T6192] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   50.760899][ T6192] RBP: 00007fca3572c090 R08: 0000000000000000 R09: 0000000000000000
[   50.760905][ T6192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.760910][ T6192] R13: 00007fca34bb6038 R14: 00007fca34bb5fa0 R15: 00007ffc8b14b978
[   50.760924][ T6192]  </TASK>
[   50.968492][ T6192] kvm: pic: non byte write
[   51.149591][ T6218] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0
[   51.176061][ T6220] input: syz1 as /devices/virtual/input/input8
[   51.226620][ T6229] delete_channel: no stack
[   51.245824][ T6234] netlink: 8 bytes leftover after parsing attributes in process `syz.1.67'.
[   51.249209][ T6234] netlink: 4 bytes leftover after parsing attributes in process `syz.1.67'.
[   51.263058][  T839] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   51.278251][ T6238] FAULT_INJECTION: forcing a failure.
[   51.278251][ T6238] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   51.282336][ T6238] CPU: 0 UID: 0 PID: 6238 Comm: syz.3.71 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   51.282350][ T6238] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   51.282356][ T6238] Call Trace:
[   51.282359][ T6238]  <TASK>
[   51.282363][ T6238]  dump_stack_lvl+0x16c/0x1f0
[   51.282383][ T6238]  should_fail_ex+0x512/0x640
[   51.282395][ T6238]  _copy_to_user+0x32/0xd0
[   51.282407][ T6238]  video_usercopy+0xf3e/0x1720
[   51.282424][ T6238]  ? __pfx___video_do_ioctl+0x10/0x10
[   51.282439][ T6238]  ? selinux_kernel_read_file+0xc0/0x130
[   51.282453][ T6238]  ? __pfx_video_usercopy+0x10/0x10
[   51.282476][ T6238]  v4l2_ioctl+0x1ba/0x250
[   51.282490][ T6238]  ? __pfx_v4l2_ioctl+0x10/0x10
[   51.282505][ T6238]  __x64_sys_ioctl+0x18e/0x210
[   51.282523][ T6238]  do_syscall_64+0xcd/0x4c0
[   51.282534][ T6238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.282544][ T6238] RIP: 0033:0x7fca3498ebe9
[   51.282553][ T6238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   51.282563][ T6238] RSP: 002b:00007fca3572c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   51.282573][ T6238] RAX: ffffffffffffffda RBX: 00007fca34bb5fa0 RCX: 00007fca3498ebe9
[   51.282580][ T6238] RDX: 0000200000000000 RSI: 00000000c050561a RDI: 0000000000000004
[   51.282586][ T6238] RBP: 00007fca3572c090 R08: 0000000000000000 R09: 0000000000000000
[   51.282591][ T6238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   51.282597][ T6238] R13: 00007fca34bb6038 R14: 00007fca34bb5fa0 R15: 00007ffc8b14b978
[   51.282609][ T6238]  </TASK>
[   51.343662][ T5972] Bluetooth: hci0: command tx timeout
[   51.350703][ T5972] Bluetooth: hci1: unexpected event 0x01 length: 4 > 1
[   51.373220][ T5972] Bluetooth: hci3: command tx timeout
[   51.405791][  T839] usb 7-1: device descriptor read/64, error -71
[   51.453209][ T5972] Bluetooth: hci2: command tx timeout
[   51.462778][ T2302] libceph: connect (1)[c::]:6789 error -101
[   51.463017][ T5972] Bluetooth: hci1: command tx timeout
[   51.465739][ T2302] libceph: mon0 (1)[c::]:6789 connect error
[   51.540642][ T6261] netlink: 16 bytes leftover after parsing attributes in process `syz.0.79'.
[   51.643194][  T839] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   51.723752][   T53] libceph: connect (1)[c::]:6789 error -101
[   51.726172][   T53] libceph: mon0 (1)[c::]:6789 connect error
[   51.773141][  T839] usb 7-1: device descriptor read/64, error -71
[   51.883192][  T839] usb usb7-port1: attempt power cycle
[   52.223772][  T839] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   52.233269][ T2302] libceph: connect (1)[c::]:6789 error -101
[   52.235699][ T2302] libceph: mon0 (1)[c::]:6789 connect error
[   52.243996][  T839] usb 7-1: device descriptor read/8, error -71
[   52.290489][ T6252] ceph: No mds server is up or the cluster is laggy
[   52.330163][ T6278] tmpfs: Bad value for 'mpol'
[   52.409571][ T6287] 9pnet_fd: Insufficient options for proto=fd
[   52.435021][ T6289] netlink: 'syz.3.87': attribute type 2 has an invalid length.
[   52.438075][ T6289] netlink: 132 bytes leftover after parsing attributes in process `syz.3.87'.
[   52.493055][  T839] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[   52.524571][  T839] usb 7-1: device descriptor read/8, error -71
[   52.633193][  T839] usb usb7-port1: unable to enumerate USB device
[   52.760846][ T6301] netlink: 24 bytes leftover after parsing attributes in process `syz.0.90'.
[   52.888268][ T5972] Bluetooth: hci1: unexpected event 0x09 length: 8 > 3
[   52.909907][ T6311] program syz.0.93 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   52.915336][ T6311] ata1.00: non-matching transfer count (-1882353613/0)
[   52.918504][ T6311] netlink: 24 bytes leftover after parsing attributes in process `syz.0.93'.
[   52.944176][ T6313] fuse: Bad value for 'group_id'
[   52.946131][ T6313] fuse: Bad value for 'group_id'
[   52.986611][ T6315] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   52.989358][ T6315] overlayfs: failed to set xattr on upper
[   52.991816][ T6315] overlayfs: ...falling back to redirect_dir=nofollow.
[   52.995265][ T6315] overlayfs: ...falling back to index=off.
[   52.997551][ T6315] overlayfs: ...falling back to uuid=null.
[   53.004089][ T6315] overlayfs: overlay with incompat feature 'volatile' cannot be mounted
[   53.076011][ T6319] syz.0.97 uses obsolete (PF_INET,SOCK_PACKET)
[   53.264619][ T6322] netlink: 8 bytes leftover after parsing attributes in process `syz.0.98'.
[   53.335999][ T6325] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[   53.340289][ T6325] qnx6: wrong signature (magic) in superblock #1.
[   53.342778][ T6325] qnx6: unable to read the first superblock
[   53.350614][ T6325] netlink: 8 bytes leftover after parsing attributes in process `syz.1.99'.
[   53.357020][ T6327] netlink: 8 bytes leftover after parsing attributes in process `syz.3.100'.
[   53.360863][ T6327] netlink: 12 bytes leftover after parsing attributes in process `syz.3.100'.
[   53.374096][ T6325] netlink: 48 bytes leftover after parsing attributes in process `syz.1.99'.
[   53.383002][ T5972] Bluetooth: hci0: command tx timeout
[   53.426961][ T6335] capability: warning: `syz.1.104' uses deprecated v2 capabilities in a way that may be insecure
[   53.440585][ T6335] trusted_key: encrypted_key: insufficient parameters specified
[   53.463041][ T5972] Bluetooth: hci3: command tx timeout
[   53.475217][ T6343] netlink: 68 bytes leftover after parsing attributes in process `syz.1.106'.
[   53.478140][ T6343] netem: invalid attributes len -21
[   53.479837][ T6343] netem: change failed
[   53.507883][ T6348] mmap: syz.1.109 (6348) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   53.533190][ T5972] Bluetooth: hci1: command tx timeout
[   53.533347][ T5982] Bluetooth: hci2: command tx timeout
[   53.554123][ T6348] usb usb1: check_ctrlrecip: process 6348 (syz.1.109) requesting ep 01 but needs 81
[   53.557053][ T6348] usb usb1: usbfs: process 6348 (syz.1.109) did not claim interface 0 before use
[   53.631797][ T6350] Zero length message leads to an empty skb
[   53.733165][ T2302] usb 8-1: new full-speed USB device number 2 using dummy_hcd
[   53.884138][ T2302] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64
[   53.888336][ T2302] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[   53.892088][ T2302] usb 8-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   53.898036][ T2302] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   53.901515][ T2302] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   53.904744][ T2302] usb 8-1: SerialNumber: syz
[   53.909368][ T6345] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[   53.913267][ T2302] cdc_ether 8-1:1.0: probe with driver cdc_ether failed with error -22
[   54.151505][ T6356] netlink: 8 bytes leftover after parsing attributes in process `syz.0.111'.
[   54.192120][ T1475] usb 8-1: USB disconnect, device number 2
[   54.306967][ T6370] Bluetooth: MGMT ver 1.23
[   54.368226][ T6371] block device autoloading is deprecated and will be removed.
[   54.535835][ T6389] tipc: Failed to obtain node identity
[   54.537823][ T6389] tipc: Enabling of bearer <ib:ip6gre0> rejected, failed to enable media
[   54.625149][ T6395] netlink: 24 bytes leftover after parsing attributes in process `syz.0.123'.
[   54.718680][ T6399] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   54.729203][ T6399] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   54.776323][ T6401] netlink: 8 bytes leftover after parsing attributes in process `syz.0.126'.
[   54.838498][ T6406] syz_tun: entered allmulticast mode
[   54.842556][ T6405] syz_tun: left allmulticast mode
[   54.966691][   T40] kauditd_printk_skb: 60 callbacks suppressed
[   54.966701][   T40] audit: type=1400 audit(1754724914.476:266): avc:  denied  { lock } for  pid=6410 comm="syz.0.129" path="socket:[12610]" dev="sockfs" ino=12610 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[   55.194141][ T2302] usb 7-1: new full-speed USB device number 7 using dummy_hcd
[   55.310570][   T40] audit: type=1400 audit(1754724914.816:267): avc:  denied  { read write } for  pid=6420 comm="syz.3.133" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   55.311874][ T6421] 
[   55.318533][   T40] audit: type=1400 audit(1754724914.816:268): avc:  denied  { open } for  pid=6420 comm="syz.3.133" path="/50/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   55.344675][ T2302] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   55.344678][ T6423] FAULT_INJECTION: forcing a failure.
[   55.344678][ T6423] name failslab, interval 1, probability 0, space 0, times 0
[   55.344696][ T6423] CPU: 0 UID: 0 PID: 6423 Comm: syz.1.134 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   55.344708][ T6423] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.344714][ T6423] Call Trace:
[   55.344718][ T6423]  <TASK>
[   55.344721][ T6423]  dump_stack_lvl+0x16c/0x1f0
[   55.344756][ T6423]  should_fail_ex+0x512/0x640
[   55.344769][ T6423]  ? __kmalloc_noprof+0xbf/0x510
[   55.344781][ T6423]  ? devkmsg_write+0x13a/0x3d0
[   55.344795][ T6423]  should_failslab+0xc2/0x120
[   55.344807][ T6423]  __kmalloc_noprof+0xd2/0x510
[   55.344816][ T6423]  ? __pfx____ratelimit+0x10/0x10
[   55.344833][ T6423]  devkmsg_write+0x13a/0x3d0
[   55.344847][ T6423]  ? __pfx_devkmsg_write+0x10/0x10
[   55.344859][ T6423]  ? bpf_lsm_file_permission+0x9/0x10
[   55.344873][ T6423]  ? security_file_permission+0x71/0x210
[   55.344888][ T6423]  ? rw_verify_area+0xcf/0x6c0
[   55.344905][ T6423]  vfs_write+0x6c4/0x1150
[   55.344916][ T6423]  ? __pfx_devkmsg_write+0x10/0x10
[   55.344930][ T6423]  ? __pfx_vfs_write+0x10/0x10
[   55.344939][ T6423]  ? find_held_lock+0x2b/0x80
[   55.344960][ T6423]  ksys_write+0x12a/0x250
[   55.344970][ T6423]  ? __pfx_ksys_write+0x10/0x10
[   55.344984][ T6423]  do_syscall_64+0xcd/0x4c0
[   55.344999][ T6423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.345009][ T6423] RIP: 0033:0x7f441eb8ebe9
[   55.345018][ T6423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.345028][ T6423] RSP: 002b:00007f441fa55038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   55.345038][ T6423] RAX: ffffffffffffffda RBX: 00007f441edb5fa0 RCX: 00007f441eb8ebe9
[   55.345045][ T6423] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[   55.345050][ T6423] RBP: 00007f441fa55090 R08: 0000000000000000 R09: 0000000000000000
[   55.345056][ T6423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.345061][ T6423] R13: 00007f441edb6038 R14: 00007f441edb5fa0 R15: 00007fff915337d8
[   55.345074][ T6423]  </TASK>
[   55.418765][ T2302] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   55.423626][ T2302] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   55.426607][ T2302] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   55.501677][ T6432] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.136'.
[   55.504717][ T6432] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[   55.508513][ T6429] 
[   55.510335][   T40] audit: type=1400 audit(1754724915.016:269): avc:  denied  { create } for  pid=6433 comm="syz.3.138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   55.517119][   T40] audit: type=1400 audit(1754724915.016:270): avc:  denied  { setopt } for  pid=6433 comm="syz.3.138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   55.577864][ T6439] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   55.580688][ T6436] FAULT_INJECTION: forcing a failure.
[   55.580688][ T6436] name failslab, interval 1, probability 0, space 0, times 0
[   55.585411][ T6436] CPU: 3 UID: 0 PID: 6436 Comm: syz.1.139 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   55.585429][ T6436] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.585435][ T6436] Call Trace:
[   55.585439][ T6436]  <TASK>
[   55.585443][ T6436]  dump_stack_lvl+0x16c/0x1f0
[   55.585462][ T6436]  should_fail_ex+0x512/0x640
[   55.585473][ T6436]  ? __kmalloc_noprof+0xbf/0x510
[   55.585485][ T6436]  ? kobject_get_path+0xd2/0x2a0
[   55.585493][ T6436]  should_failslab+0xc2/0x120
[   55.585506][ T6436]  __kmalloc_noprof+0xd2/0x510
[   55.585519][ T6436]  kobject_get_path+0xd2/0x2a0
[   55.585531][ T6436]  kobject_uevent_env+0x289/0x1870
[   55.585542][ T6436]  ? __pfx_dev_uevent_name+0x10/0x10
[   55.585558][ T6436]  ? kfree+0x2b4/0x4d0
[   55.585572][ T6436]  ? kvm_uevent_notify_change.part.0+0x32d/0x450
[   55.585588][ T6436]  kvm_uevent_notify_change.part.0+0x3ae/0x450
[   55.585601][ T6436]  ? __pfx_kvm_vm_release+0x10/0x10
[   55.585611][ T6436]  kvm_put_kvm+0xe4/0xb40
[   55.585620][ T6436]  ? lockdep_hardirqs_on+0x7c/0x110
[   55.585638][ T6436]  ? __pfx_kvm_vm_release+0x10/0x10
[   55.585648][ T6436]  kvm_vm_release+0x3c/0x50
[   55.585657][ T6436]  __fput+0x402/0xb70
[   55.585672][ T6436]  ? _raw_spin_unlock_irq+0x23/0x50
[   55.585688][ T6436]  task_work_run+0x150/0x240
[   55.585701][ T6436]  ? __pfx_task_work_run+0x10/0x10
[   55.585712][ T6436]  ? __pfx___do_sys_close_range+0x10/0x10
[   55.585728][ T6436]  exit_to_user_mode_loop+0xeb/0x110
[   55.585741][ T6436]  do_syscall_64+0x3f6/0x4c0
[   55.585751][ T6436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.585762][ T6436] RIP: 0033:0x7f441eb8ebe9
[   55.585770][ T6436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.585780][ T6436] RSP: 002b:00007f441fa55038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   55.585789][ T6436] RAX: 0000000000000000 RBX: 00007f441edb5fa0 RCX: 00007f441eb8ebe9
[   55.585796][ T6436] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[   55.585801][ T6436] RBP: 00007f441fa55090 R08: 0000000000000000 R09: 0000000000000000
[   55.585807][ T6436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.585812][ T6436] R13: 00007f441edb6038 R14: 00007f441edb5fa0 R15: 00007fff915337d8
[   55.585825][ T6436]  </TASK>
[   55.636039][ T2302] usb 7-1: GET_CAPABILITIES returned 0
[   55.636969][    C3] vkms_vblank_simulate: vblank timer overrun
[   55.670938][ T2302] usbtmc 7-1:16.0: can't read capabilities
[   55.767773][ T6445] kvm: user requested TSC rate below hardware speed
[   55.845356][ T2302] usb 7-1: USB disconnect, device number 7
[   55.998893][   T40] audit: type=1400 audit(1754724915.506:271): avc:  denied  { write } for  pid=6455 comm="syz.1.146" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   56.007674][   T40] audit: type=1400 audit(1754724915.506:272): avc:  denied  { open } for  pid=6455 comm="syz.1.146" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   56.017321][   T40] audit: type=1400 audit(1754724915.506:273): avc:  denied  { ioctl } for  pid=6455 comm="syz.1.146" path="/dev/nullb0" dev="devtmpfs" ino=707 ioctlcmd=0x127f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   56.026831][   T40] audit: type=1400 audit(1754724915.536:274): avc:  denied  { connect } for  pid=6455 comm="syz.1.146" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   56.106266][   T40] audit: type=1400 audit(1754724915.616:275): avc:  denied  { write } for  pid=6453 comm="syz.0.145" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   56.149626][ T6465] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3354154791 (6708309582 ns) > initial count (4455734788 ns). Using initial count to start timer.
[   56.159095][ T6466] 9pnet_virtio: no channels available for device 127.0.0.1
[   56.207324][ T6471] fuse: Unknown parameter 'groÀm_id'
[   56.334659][ T6476] ref_tracker: memory allocation failure, unreliable refcount tracker.
[   56.361111][ T6478] fuse: Bad value for 'group_id'
[   56.363214][ T6478] fuse: Bad value for 'group_id'
[   56.368997][ T6478] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[   56.372625][ T6478] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   56.377066][ T6478] overlayfs: failed to set uuid (59/file1, err=-13); falling back to uuid=null.
[   56.472086][ T6484] team0: Device macvlan2 is already an upper device of the team interface
[   56.640251][ T6491] rdma_op ffff8881077e29f0 conn xmit_rdma 0000000000000000
[   56.921768][ T6504] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   56.953791][ T6506] FAULT_INJECTION: forcing a failure.
[   56.953791][ T6506] name failslab, interval 1, probability 0, space 0, times 0
[   56.958520][ T6506] CPU: 1 UID: 0 PID: 6506 Comm: syz.0.164 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   56.958534][ T6506] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   56.958540][ T6506] Call Trace:
[   56.958544][ T6506]  <TASK>
[   56.958548][ T6506]  dump_stack_lvl+0x16c/0x1f0
[   56.958587][ T6506]  should_fail_ex+0x512/0x640
[   56.958600][ T6506]  ? __kmalloc_cache_noprof+0x57/0x3e0
[   56.958619][ T6506]  should_failslab+0xc2/0x120
[   56.958631][ T6506]  __kmalloc_cache_noprof+0x6a/0x3e0
[   56.958646][ T6506]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   56.958658][ T6506]  ? kvm_set_irq_routing+0x24f/0x970
[   56.958675][ T6506]  kvm_set_irq_routing+0x24f/0x970
[   56.958693][ T6506]  kvm_vm_ioctl+0x18aa/0x4000
[   56.958709][ T6506]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   56.958727][ T6506]  ? kasan_quarantine_put+0x10a/0x240
[   56.958736][ T6506]  ? lockdep_hardirqs_on+0x7c/0x110
[   56.958759][ T6506]  ? find_held_lock+0x2b/0x80
[   56.958772][ T6506]  ? tomoyo_path_number_perm+0x295/0x580
[   56.958786][ T6506]  ? tomoyo_path_number_perm+0x18d/0x580
[   56.958799][ T6506]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   56.958811][ T6506]  ? find_held_lock+0x2b/0x80
[   56.958826][ T6506]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   56.958838][ T6506]  ? do_vfs_ioctl+0x128/0x14f0
[   56.958854][ T6506]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   56.958870][ T6506]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   56.958888][ T6506]  ? hook_file_ioctl_common+0x145/0x410
[   56.958907][ T6506]  ? selinux_file_ioctl+0x180/0x270
[   56.958920][ T6506]  ? selinux_file_ioctl+0xb4/0x270
[   56.958933][ T6506]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   56.958944][ T6506]  __x64_sys_ioctl+0x18e/0x210
[   56.958960][ T6506]  do_syscall_64+0xcd/0x4c0
[   56.958970][ T6506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.958981][ T6506] RIP: 0033:0x7ff70b18ebe9
[   56.958990][ T6506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.959000][ T6506] RSP: 002b:00007ff70bf40038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   56.959009][ T6506] RAX: ffffffffffffffda RBX: 00007ff70b3b5fa0 RCX: 00007ff70b18ebe9
[   56.959016][ T6506] RDX: 0000200000002100 RSI: 000000004008ae6a RDI: 0000000000000004
[   56.959021][ T6506] RBP: 00007ff70bf40090 R08: 0000000000000000 R09: 0000000000000000
[   56.959027][ T6506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.959033][ T6506] R13: 00007ff70b3b6038 R14: 00007ff70b3b5fa0 R15: 00007ffe1f0fc928
[   56.959045][ T6506]  </TASK>
[   57.119681][ T6513] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3354154791 (6708309582 ns) > initial count (4455734788 ns). Using initial count to start timer.
[   57.159239][ T6518] bond0: entered promiscuous mode
[   57.160847][ T6518] bond_slave_0: entered promiscuous mode
[   57.162750][ T6518] bond_slave_1: entered promiscuous mode
[   57.326748][ T6527] FAULT_INJECTION: forcing a failure.
[   57.326748][ T6527] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.331023][ T6527] CPU: 1 UID: 0 PID: 6527 Comm: syz.3.172 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   57.331037][ T6527] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   57.331044][ T6527] Call Trace:
[   57.331047][ T6527]  <TASK>
[   57.331052][ T6527]  dump_stack_lvl+0x16c/0x1f0
[   57.331071][ T6527]  should_fail_ex+0x512/0x640
[   57.331083][ T6527]  _copy_to_user+0x32/0xd0
[   57.331096][ T6527]  simple_read_from_buffer+0xcb/0x170
[   57.331108][ T6527]  proc_fail_nth_read+0x197/0x240
[   57.331122][ T6527]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   57.331134][ T6527]  ? rw_verify_area+0xcf/0x6c0
[   57.331150][ T6527]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   57.331162][ T6527]  vfs_read+0x1e1/0xc60
[   57.331174][ T6527]  ? __pfx___mutex_lock+0x10/0x10
[   57.331184][ T6527]  ? __pfx_vfs_read+0x10/0x10
[   57.331198][ T6527]  ? __fget_files+0x20e/0x3c0
[   57.331213][ T6527]  ksys_read+0x12a/0x250
[   57.331223][ T6527]  ? __pfx_ksys_read+0x10/0x10
[   57.331233][ T6527]  ? fput+0x9b/0xd0
[   57.331249][ T6527]  do_syscall_64+0xcd/0x4c0
[   57.331259][ T6527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.331270][ T6527] RIP: 0033:0x7fca3498d5fc
[   57.331279][ T6527] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   57.331288][ T6527] RSP: 002b:00007fca3572c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   57.331298][ T6527] RAX: ffffffffffffffda RBX: 00007fca34bb5fa0 RCX: 00007fca3498d5fc
[   57.331304][ T6527] RDX: 000000000000000f RSI: 00007fca3572c0a0 RDI: 0000000000000006
[   57.331310][ T6527] RBP: 00007fca3572c090 R08: 0000000000000000 R09: 0000000000000000
[   57.331316][ T6527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.331321][ T6527] R13: 00007fca34bb6038 R14: 00007fca34bb5fa0 R15: 00007ffc8b14b978
[   57.331334][ T6527]  </TASK>
[   57.452198][ T6533] FAULT_INJECTION: forcing a failure.
[   57.452198][ T6533] name failslab, interval 1, probability 0, space 0, times 0
[   57.457999][ T6533] CPU: 3 UID: 0 PID: 6533 Comm: syz.2.175 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   57.458021][ T6533] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   57.458030][ T6533] Call Trace:
[   57.458036][ T6533]  <TASK>
[   57.458042][ T6533]  dump_stack_lvl+0x16c/0x1f0
[   57.458070][ T6533]  should_fail_ex+0x512/0x640
[   57.458080][ T6533]  ? fs_reclaim_acquire+0xae/0x150
[   57.458095][ T6533]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   57.458109][ T6533]  should_failslab+0xc2/0x120
[   57.458122][ T6533]  __kmalloc_noprof+0xd2/0x510
[   57.458136][ T6533]  tomoyo_realpath_from_path+0xc2/0x6e0
[   57.458151][ T6533]  ? tomoyo_profile+0x47/0x60
[   57.458167][ T6533]  tomoyo_path_number_perm+0x245/0x580
[   57.458178][ T6533]  ? tomoyo_path_number_perm+0x237/0x580
[   57.458191][ T6533]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   57.458203][ T6533]  ? find_held_lock+0x2b/0x80
[   57.458248][ T6533]  ? find_held_lock+0x2b/0x80
[   57.458262][ T6533]  ? hook_file_ioctl_common+0x145/0x410
[   57.458281][ T6533]  ? __fget_files+0x20e/0x3c0
[   57.458295][ T6533]  security_file_ioctl+0x9b/0x240
[   57.458309][ T6533]  __x64_sys_ioctl+0xb7/0x210
[   57.458326][ T6533]  do_syscall_64+0xcd/0x4c0
[   57.458337][ T6533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.458349][ T6533] RIP: 0033:0x7f278738ebe9
[   57.458358][ T6533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.458367][ T6533] RSP: 002b:00007f278824a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   57.458377][ T6533] RAX: ffffffffffffffda RBX: 00007f27875b5fa0 RCX: 00007f278738ebe9
[   57.458384][ T6533] RDX: 0000200000000000 RSI: 000000008028640c RDI: 0000000000000003
[   57.458389][ T6533] RBP: 00007f278824a090 R08: 0000000000000000 R09: 0000000000000000
[   57.458395][ T6533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.458401][ T6533] R13: 00007f27875b6038 R14: 00007f27875b5fa0 R15: 00007ffcae842b18
[   57.458414][ T6533]  </TASK>
[   57.458430][ T6533] ERROR: Out of memory at tomoyo_realpath_from_path.
[   57.604896][ T6542] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6542 comm=syz.3.180
[   57.664697][ T6549] binder_alloc: 6548: binder_alloc_buf size 12280 failed, no address space
[   57.667749][ T6549] binder_alloc: allocated: 8 (num: 1 largest: 8), free: 8184 (num: 1 largest: 8184)
[   58.115089][ T6572] trusted_key: syz.1.188 sent an empty control message without MSG_MORE.
[   58.660442][ T6586] tipc: Started in network mode
[   58.662027][ T6586] tipc: Node identity f2ab70ede8f8, cluster identity 4711
[   58.665007][ T6586] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   58.667479][ T6586] syzkaller0: entered promiscuous mode
[   58.669232][ T6586] syzkaller0: entered allmulticast mode
[   58.693951][ T6586] tipc: Resetting bearer <eth:syzkaller0>
[   58.711248][ T6594] FAULT_INJECTION: forcing a failure.
[   58.711248][ T6594] name failslab, interval 1, probability 0, space 0, times 0
[   58.715314][ T6594] CPU: 2 UID: 0 PID: 6594 Comm: syz.2.196 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   58.715328][ T6594] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.715334][ T6594] Call Trace:
[   58.715338][ T6594]  <TASK>
[   58.715342][ T6594]  dump_stack_lvl+0x16c/0x1f0
[   58.715366][ T6594]  should_fail_ex+0x512/0x640
[   58.715376][ T6594]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[   58.715389][ T6594]  should_failslab+0xc2/0x120
[   58.715401][ T6594]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[   58.715412][ T6594]  ? __d_alloc+0x32/0xae0
[   58.715427][ T6594]  __d_alloc+0x32/0xae0
[   58.715441][ T6594]  d_alloc_parallel+0x111/0x1480
[   58.715459][ T6594]  ? avc_has_perm_noaudit+0x117/0x3b0
[   58.715478][ T6594]  ? map_id_range_up+0x2ce/0x3b0
[   58.715490][ T6594]  ? __pfx_d_alloc_parallel+0x10/0x10
[   58.715508][ T6594]  ? lockdep_init_map_type+0x5c/0x280
[   58.715519][ T6594]  ? lockdep_init_map_type+0x5c/0x280
[   58.715531][ T6594]  __lookup_slow+0x193/0x460
[   58.715547][ T6594]  ? __pfx___lookup_slow+0x10/0x10
[   58.715564][ T6594]  ? pcpu_next_md_free_region+0x230/0x380
[   58.715582][ T6594]  ? pcpu_next_md_free_region+0x230/0x380
[   58.715611][ T6594]  ? d_lookup+0xe7/0x190
[   58.715630][ T6594]  lookup_one_unlocked+0xd4/0x120
[   58.715647][ T6594]  lookup_one_positive_unlocked+0x24/0xc0
[   58.715663][ T6594]  ovl_lookup_index+0x20d/0x800
[   58.715676][ T6594]  ? __pfx_ovl_lookup_index+0x10/0x10
[   58.715686][ T6594]  ? trace_kmalloc+0x2b/0xd0
[   58.715699][ T6594]  ? stack_trace_snprint+0x81/0xd0
[   58.715716][ T6594]  ovl_lookup+0x98f/0x21a0
[   58.715732][ T6594]  ? __pfx_ovl_lookup+0x10/0x10
[   58.715741][ T6594]  ? lockdep_unlock+0x64/0xe0
[   58.715761][ T6594]  ? do_raw_spin_lock+0x12c/0x2b0
[   58.715775][ T6594]  ? do_raw_spin_unlock+0x172/0x230
[   58.715787][ T6594]  ? _raw_spin_unlock+0x28/0x50
[   58.715803][ T6594]  lookup_one_qstr_excl+0x1d1/0x250
[   58.715818][ T6594]  ? mnt_want_write+0x161/0x450
[   58.715828][ T6594]  do_unlinkat+0x284/0x6a0
[   58.715841][ T6594]  ? __pfx_do_unlinkat+0x10/0x10
[   58.715859][ T6594]  ? getname_flags.part.0+0x1c5/0x550
[   58.715876][ T6594]  __x64_sys_unlink+0xc5/0x110
[   58.715888][ T6594]  do_syscall_64+0xcd/0x4c0
[   58.715899][ T6594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.715910][ T6594] RIP: 0033:0x7f278738ebe9
[   58.715919][ T6594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.715928][ T6594] RSP: 002b:00007f278824a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[   58.715938][ T6594] RAX: ffffffffffffffda RBX: 00007f27875b5fa0 RCX: 00007f278738ebe9
[   58.715944][ T6594] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000280
[   58.715950][ T6594] RBP: 00007f278824a090 R08: 0000000000000000 R09: 0000000000000000
[   58.715956][ T6594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.715961][ T6594] R13: 00007f27875b6038 R14: 00007f27875b5fa0 R15: 00007ffcae842b18
[   58.715975][ T6594]  </TASK>
[   58.716066][ T6594] overlayfs: failed inode index lookup (ino=169, key=00fb2100012ca9eabcf27749338ccd06c56ca8b13d996d2f03a900000000000000, err=-12);
[   58.716066][ T6594] overlayfs: mount with '-o index=off' to disable inodes index.
[   58.739892][ T6596] FAULT_INJECTION: forcing a failure.
[   58.739892][ T6596] name failslab, interval 1, probability 0, space 0, times 0
[   58.828301][ T6596] CPU: 1 UID: 0 PID: 6596 Comm: syz.3.197 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   58.828316][ T6596] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.828322][ T6596] Call Trace:
[   58.828325][ T6596]  <TASK>
[   58.828330][ T6596]  dump_stack_lvl+0x16c/0x1f0
[   58.828351][ T6596]  should_fail_ex+0x512/0x640
[   58.828361][ T6596]  ? __kmalloc_cache_noprof+0x57/0x3e0
[   58.828379][ T6596]  should_failslab+0xc2/0x120
[   58.828391][ T6596]  __kmalloc_cache_noprof+0x6a/0x3e0
[   58.828424][ T6596]  ? ovl_encode_real_fh+0xca/0x420
[   58.828444][ T6596]  ovl_encode_real_fh+0xca/0x420
[   58.828461][ T6596]  ? __pfx_ovl_encode_real_fh+0x10/0x10
[   58.828481][ T6596]  ovl_lookup_index+0xde/0x800
[   58.828494][ T6596]  ? __pfx_ovl_lookup_index+0x10/0x10
[   58.828504][ T6596]  ? trace_kmalloc+0x2b/0xd0
[   58.828521][ T6596]  ovl_lookup+0x98f/0x21a0
[   58.828536][ T6596]  ? __pfx_ovl_lookup+0x10/0x10
[   58.828548][ T6596]  ? d_alloc_parallel+0x828/0x1480
[   58.828568][ T6596]  ? find_held_lock+0x2b/0x80
[   58.828591][ T6596]  ? __d_lookup+0x266/0x4a0
[   58.828609][ T6596]  ? __pfx_ovl_lookup+0x10/0x10
[   58.828619][ T6596]  lookup_open.isra.0+0x4da/0x1580
[   58.828632][ T6596]  ? __pfx_lookup_open.isra.0+0x10/0x10
[   58.828658][ T6596]  ? lookup_fast+0x156/0x610
[   58.828669][ T6596]  path_openat+0x893/0x2cb0
[   58.828685][ T6596]  ? __pfx_path_openat+0x10/0x10
[   58.828697][ T6596]  ? __lock_acquire+0xb97/0x1ce0
[   58.828715][ T6596]  do_filp_open+0x20b/0x470
[   58.828727][ T6596]  ? __pfx_do_filp_open+0x10/0x10
[   58.828748][ T6596]  ? _raw_spin_unlock+0x28/0x50
[   58.828762][ T6596]  ? alloc_fd+0x471/0x7d0
[   58.828777][ T6596]  do_sys_openat2+0x11b/0x1d0
[   58.828792][ T6596]  ? __pfx_do_sys_openat2+0x10/0x10
[   58.828807][ T6596]  ? __fget_files+0x20e/0x3c0
[   58.828821][ T6596]  __x64_sys_open+0x153/0x1e0
[   58.828836][ T6596]  ? __pfx___x64_sys_open+0x10/0x10
[   58.828853][ T6596]  ? rcu_is_watching+0x12/0xc0
[   58.828868][ T6596]  do_syscall_64+0xcd/0x4c0
[   58.828879][ T6596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.828889][ T6596] RIP: 0033:0x7fca3498ebe9
[   58.828898][ T6596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.828908][ T6596] RSP: 002b:00007fca3572c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[   58.828918][ T6596] RAX: ffffffffffffffda RBX: 00007fca34bb5fa0 RCX: 00007fca3498ebe9
[   58.828925][ T6596] RDX: 0000000000000073 RSI: 0000000000000000 RDI: 0000200000000440
[   58.828931][ T6596] RBP: 00007fca3572c090 R08: 0000000000000000 R09: 0000000000000000
[   58.828936][ T6596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.828942][ T6596] R13: 00007fca34bb6038 R14: 00007fca34bb5fa0 R15: 00007ffc8b14b978
[   58.828955][ T6596]  </TASK>
[   58.987035][ T6607] bond0: entered promiscuous mode
[   58.988780][ T6607] bond_slave_0: entered promiscuous mode
[   58.990687][ T6607] bond_slave_1: entered promiscuous mode
[   59.001489][ T6609] __nla_validate_parse: 3 callbacks suppressed
[   59.001498][ T6609] netlink: 92 bytes leftover after parsing attributes in process `syz.0.201'.
[   59.026861][ T6611] FAULT_INJECTION: forcing a failure.
[   59.026861][ T6611] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.030942][ T6611] CPU: 1 UID: 0 PID: 6611 Comm: syz.3.203 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   59.030956][ T6611] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   59.030963][ T6611] Call Trace:
[   59.030969][ T6611]  <TASK>
[   59.030975][ T6611]  dump_stack_lvl+0x16c/0x1f0
[   59.031004][ T6611]  should_fail_ex+0x512/0x640
[   59.031017][ T6611]  strncpy_from_user+0x3b/0x2e0
[   59.031034][ T6611]  getname_flags.part.0+0x8f/0x550
[   59.031052][ T6611]  getname_flags+0x93/0xf0
[   59.031063][ T6611]  user_path_at+0x24/0x60
[   59.031074][ T6611]  __x64_sys_umount+0x10a/0x1a0
[   59.031087][ T6611]  ? __pfx___x64_sys_umount+0x10/0x10
[   59.031112][ T6611]  ? rcu_is_watching+0x12/0xc0
[   59.031129][ T6611]  do_syscall_64+0xcd/0x4c0
[   59.031140][ T6611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.031151][ T6611] RIP: 0033:0x7fca3498ebe9
[   59.031159][ T6611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.031169][ T6611] RSP: 002b:00007fca3572c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   59.031179][ T6611] RAX: ffffffffffffffda RBX: 00007fca34bb5fa0 RCX: 00007fca3498ebe9
[   59.031186][ T6611] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000200000000040
[   59.031191][ T6611] RBP: 00007fca3572c090 R08: 0000000000000000 R09: 0000000000000000
[   59.031197][ T6611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.031203][ T6611] R13: 00007fca34bb6038 R14: 00007fca34bb5fa0 R15: 00007ffc8b14b978
[   59.031216][ T6611]  </TASK>
[   59.095945][ T6609] netlink: 8 bytes leftover after parsing attributes in process `syz.0.201'.
[   59.125982][ T6623] overlayfs: failed to resolve './file1': -2
[   59.153006][ T6618] tmpfs: Bad value for 'mpol'
[   59.211140][ T6631] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   59.213641][ T6631] IPv6: NLM_F_CREATE should be set when creating new route
[   59.223328][ T6631] lo: entered allmulticast mode
[   59.236808][ T6631] tunl0: entered allmulticast mode
[   59.239579][ T6631] gre0: entered allmulticast mode
[   59.245076][ T6633] execmem: unable to allocate memory
[   59.247497][ T6631] gretap0: entered allmulticast mode
[   59.392564][ T6631] erspan0: entered allmulticast mode
[   59.397101][ T6631] ip_vti0: entered allmulticast mode
[   59.400035][ T6631] ip6_vti0: entered allmulticast mode
[   59.403135][ T6631] sit0: entered allmulticast mode
[   59.406593][ T6631] ip6tnl0: entered allmulticast mode
[   59.411975][ T6631] ip6gre0: entered allmulticast mode
[   59.460473][ T6631] syz_tun: entered allmulticast mode
[   59.464224][ T6631] ip6gretap0: entered allmulticast mode
[   59.469496][ T6631] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.472472][ T6631] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.476773][ T6631] bridge0: entered allmulticast mode
[   59.480097][ T6631] vcan0: entered allmulticast mode
[   59.482333][ T6631] bond0: left promiscuous mode
[   59.484066][ T6631] bond_slave_0: left promiscuous mode
[   59.485884][ T6631] bond_slave_1: left promiscuous mode
[   59.487638][ T6631] bond0: entered allmulticast mode
[   59.489268][ T6631] bond_slave_0: entered allmulticast mode
[   59.491059][ T6631] bond_slave_1: entered allmulticast mode
[   59.494030][ T6631] team0: entered allmulticast mode
[   59.495662][ T6631] team_slave_0: entered allmulticast mode
[   59.497451][ T6631] team_slave_1: entered allmulticast mode
[   59.500682][ T6631] dummy0: entered allmulticast mode
[   59.505501][ T6631] nlmon0: entered allmulticast mode
[   59.507959][ T6631] caif0: entered allmulticast mode
[   59.509844][ T6631] batadv0: entered allmulticast mode
[   59.513837][ T6631] vxcan0: entered allmulticast mode
[   59.516729][ T6631] vxcan1: entered allmulticast mode
[   59.519829][ T6631] veth0: entered allmulticast mode
[   59.523703][ T6631] veth1: entered allmulticast mode
[   59.527499][ T6631] wg0: entered allmulticast mode
[   59.530141][ T6631] wg1: entered allmulticast mode
[   59.532793][ T6631] wg2: entered allmulticast mode
[   59.536131][ T6631] veth0_to_bridge: entered allmulticast mode
[   59.542328][ T6631] veth1_to_bridge: entered allmulticast mode
[   59.547694][ T6631] veth0_to_bond: entered allmulticast mode
[   59.551630][ T6631] veth1_to_bond: entered allmulticast mode
[   59.556530][ T6631] veth0_to_team: entered allmulticast mode
[   59.561381][ T6631] veth1_to_team: entered allmulticast mode
[   59.566066][ T6631] veth0_to_batadv: entered allmulticast mode
[   59.569235][ T6631] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   59.572318][ T6631] batadv_slave_0: entered allmulticast mode
[   59.576456][ T6631] veth1_to_batadv: entered allmulticast mode
[   59.579640][ T6631] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   59.582415][ T6631] batadv_slave_1: entered allmulticast mode
[   59.585859][ T6631] xfrm0: entered allmulticast mode
[   59.588933][ T6631] veth0_to_hsr: entered allmulticast mode
[   59.592038][ T6631] hsr_slave_0: entered allmulticast mode
[   59.595387][ T6631] veth1_to_hsr: entered allmulticast mode
[   59.598397][ T6631] hsr_slave_1: entered allmulticast mode
[   59.601466][ T6631] hsr0: entered allmulticast mode
[   59.605848][ T6631] veth1_virt_wifi: entered allmulticast mode
[   59.609081][ T6631] veth0_virt_wifi: entered allmulticast mode
[   59.613851][ T6631] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[   59.617307][ T6631] veth1_vlan: entered allmulticast mode
[   59.620836][ T6631] veth0_vlan: entered allmulticast mode
[   59.628098][ T6631] vlan0: entered allmulticast mode
[   59.629852][ T6631] vlan1: entered allmulticast mode
[   59.632493][ T6631] macvlan0: entered allmulticast mode
[   59.635766][ T6631] macvlan1: entered allmulticast mode
[   59.638897][ T6631] ipvlan0: entered allmulticast mode
[   59.640656][ T6631] ipvlan1: entered allmulticast mode
[   59.643892][ T6631] veth1_macvtap: entered allmulticast mode
[   59.647390][ T6631] veth0_macvtap: entered allmulticast mode
[   59.650720][ T6631] macvtap0: entered allmulticast mode
[   59.653890][ T6631] macsec0: entered allmulticast mode
[   59.657493][ T6631] geneve0: entered allmulticast mode
[   59.660829][ T6631] geneve1: entered allmulticast mode
[   59.663936][ T6056] tipc: Node number set to 441676013
[   59.667141][ T6631] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[   59.673338][ T6631] netdevsim netdevsim0 netdevsim1: entered allmulticast mode
[   59.677010][ T6631] netdevsim netdevsim0 netdevsim2: entered allmulticast mode
[   59.680625][ T6631] netdevsim netdevsim0 netdevsim3: entered allmulticast mode
[   59.691032][ T6631] mac80211_hwsim hwsim6 wlan0: entered allmulticast mode
[   59.699345][ T6631] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[   59.703340][ T6631] gre1: entered allmulticast mode
[   59.705508][ T6631] vti60: entered allmulticast mode
[   59.711916][ T6587] tipc: Resetting bearer <eth:syzkaller0>
[   59.718833][ T6587] tipc: Disabling bearer <eth:syzkaller0>
[   59.745047][   T13] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   59.749676][   T13] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   59.756382][   T13] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   59.759179][   T13] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   59.796975][   T13] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.859614][ T6659] FAULT_INJECTION: forcing a failure.
[   59.859614][ T6659] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.864155][ T6659] CPU: 1 UID: 0 PID: 6659 Comm: syz.1.218 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   59.864169][ T6659] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   59.864175][ T6659] Call Trace:
[   59.864178][ T6659]  <TASK>
[   59.864182][ T6659]  dump_stack_lvl+0x16c/0x1f0
[   59.864202][ T6659]  should_fail_ex+0x512/0x640
[   59.864214][ T6659]  _copy_from_iter+0x29f/0x16f0
[   59.864229][ T6659]  ? __pfx__copy_from_iter+0x10/0x10
[   59.864239][ T6659]  ? __lock_acquire+0xb97/0x1ce0
[   59.864255][ T6659]  ? _parse_integer_limit+0x17f/0x1d0
[   59.864271][ T6659]  ? _kstrtoull+0x145/0x200
[   59.864285][ T6659]  ? __pfx__kstrtoull+0x10/0x10
[   59.864300][ T6659]  tun_get_user+0x3d3/0x3ce0
[   59.864319][ T6659]  ? __pfx_tun_get_user+0x10/0x10
[   59.864333][ T6659]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   59.864348][ T6659]  ? find_held_lock+0x2b/0x80
[   59.864360][ T6659]  ? tun_get+0x191/0x370
[   59.864374][ T6659]  tun_chr_write_iter+0xdc/0x210
[   59.864387][ T6659]  vfs_write+0x6c4/0x1150
[   59.864399][ T6659]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   59.864412][ T6659]  ? __pfx_vfs_write+0x10/0x10
[   59.864421][ T6659]  ? find_held_lock+0x2b/0x80
[   59.864441][ T6659]  ksys_write+0x12a/0x250
[   59.864451][ T6659]  ? __pfx_ksys_write+0x10/0x10
[   59.864466][ T6659]  do_syscall_64+0xcd/0x4c0
[   59.864476][ T6659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.864487][ T6659] RIP: 0033:0x7f441eb8ebe9
[   59.864495][ T6659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.864506][ T6659] RSP: 002b:00007f441fa34038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   59.864516][ T6659] RAX: ffffffffffffffda RBX: 00007f441edb6090 RCX: 00007f441eb8ebe9
[   59.864522][ T6659] RDX: 000000000000ffdd RSI: 0000200000000840 RDI: 0000000000000003
[   59.864528][ T6659] RBP: 00007f441fa34090 R08: 0000000000000000 R09: 0000000000000000
[   59.864534][ T6659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.864539][ T6659] R13: 00007f441edb6128 R14: 00007f441edb6090 R15: 00007fff915337d8
[   59.864557][ T6659]  </TASK>
[   60.276257][   T40] kauditd_printk_skb: 33 callbacks suppressed
[   60.276271][   T40] audit: type=1400 audit(1754724919.790:309): avc:  denied  { ioctl } for  pid=6661 comm="syz-executor" path="socket:[11873]" dev="sockfs" ino=11873 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   60.278670][ T5972] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   60.296434][ T5972] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   60.302017][ T5972] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   60.304938][ T5972] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   60.307443][ T5972] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   60.575330][   T13] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.650779][   T40] audit: type=1400 audit(1754724920.160:310): avc:  denied  { execute_no_trans } for  pid=6663 comm="syz.2.221" path="/37/file0" dev="tmpfs" ino=220 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   61.312040][   T40] audit: type=1400 audit(1754724920.820:311): avc:  denied  { append } for  pid=6675 comm="syz.0.225" name="comedi3" dev="devtmpfs" ino=1305 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   61.465614][   T13] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.496870][ T6680] nbd: couldn't find device at index -1605786504
[   62.303213][   T13] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.361933][   T40] audit: type=1400 audit(1754724921.870:312): avc:  denied  { execute } for  pid=6687 comm="syz.1.229" path="/dev/audio1" dev="devtmpfs" ino=1323 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sound_device_t tclass=chr_file permissive=1
[   62.410064][ T6661] chnl_net:caif_netlink_parms(): no params data found
[   62.413054][ T5982] Bluetooth: hci0: command tx timeout
[   62.434948][   T40] audit: type=1400 audit(1754724921.950:313): avc:  denied  { shutdown } for  pid=6687 comm="syz.1.229" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   62.444865][ T6693] FAULT_INJECTION: forcing a failure.
[   62.444865][ T6693] name failslab, interval 1, probability 0, space 0, times 0
[   62.448908][ T6693] CPU: 2 UID: 0 PID: 6693 Comm: syz.2.230 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   62.448934][ T6693] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   62.448940][ T6693] Call Trace:
[   62.448944][ T6693]  <TASK>
[   62.448948][ T6693]  dump_stack_lvl+0x16c/0x1f0
[   62.448967][ T6693]  should_fail_ex+0x512/0x640
[   62.448978][ T6693]  ? __kmalloc_noprof+0xbf/0x510
[   62.448990][ T6693]  ? ovl_cache_entry_new+0x60/0x750
[   62.449004][ T6693]  should_failslab+0xc2/0x120
[   62.449018][ T6693]  __kmalloc_noprof+0xd2/0x510
[   62.449031][ T6693]  ovl_cache_entry_new+0x60/0x750
[   62.449048][ T6693]  ovl_fill_merge+0x601/0xa90
[   62.449065][ T6693]  ? __pfx_ovl_fill_merge+0x10/0x10
[   62.449078][ T6693]  offset_readdir+0x1c7/0x6d0
[   62.449115][ T6693]  iterate_dir+0x293/0xaf0
[   62.449142][ T6693]  ovl_dir_read_merged+0x20d/0x5c0
[   62.449167][ T6693]  ? __pfx_ovl_dir_read_merged+0x10/0x10
[   62.449186][ T6693]  ? __pfx_ovl_fill_merge+0x10/0x10
[   62.449208][ T6693]  ovl_iterate+0x86c/0xe40
[   62.449224][ T6693]  ? __pfx_down_read_killable+0x10/0x10
[   62.449237][ T6693]  ? __pfx_ovl_iterate+0x10/0x10
[   62.449251][ T6693]  wrap_directory_iterator+0xa2/0xe0
[   62.449269][ T6693]  iterate_dir+0x293/0xaf0
[   62.449287][ T6693]  __x64_sys_getdents+0x13c/0x2b0
[   62.449297][ T6693]  ? __pfx___x64_sys_getdents+0x10/0x10
[   62.449307][ T6693]  ? __pfx_filldir+0x10/0x10
[   62.449328][ T6693]  do_syscall_64+0xcd/0x4c0
[   62.449338][ T6693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.449349][ T6693] RIP: 0033:0x7f278738ebe9
[   62.449358][ T6693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.449367][ T6693] RSP: 002b:00007f278824a038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[   62.449379][ T6693] RAX: ffffffffffffffda RBX: 00007f27875b5fa0 RCX: 00007f278738ebe9
[   62.449385][ T6693] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[   62.449391][ T6693] RBP: 00007f278824a090 R08: 0000000000000000 R09: 0000000000000000
[   62.449397][ T6693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.449402][ T6693] R13: 00007f27875b6038 R14: 00007f27875b5fa0 R15: 00007ffcae842b18
[   62.449416][ T6693]  </TASK>
[   62.552512][   T40] audit: type=1400 audit(1754724922.060:314): avc:  denied  { accept } for  pid=6698 comm="syz.2.231" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[   62.591813][ T6699] sp0: Synchronizing with TNC
[   62.593057][ T6661] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.595685][ T6661] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.597960][ T6661] bridge_slave_0: entered allmulticast mode
[   62.600545][ T6661] bridge_slave_0: entered promiscuous mode
[   62.612540][ T6661] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.615595][ T6661] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.617899][ T6661] bridge_slave_1: entered allmulticast mode
[   62.620445][ T6661] bridge_slave_1: entered promiscuous mode
[   62.682616][ T6677] syz.0.225 (6677) used greatest stack depth: 20488 bytes left
[   62.690664][ T6661] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   62.708205][ T6661] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   62.729519][ T6704] overlayfs: failed to resolve './file1': -2
[   62.782347][ T6661] team0: Port device team_slave_0 added
[   62.785439][   T13] bridge_slave_1: left allmulticast mode
[   62.787369][   T13] bridge_slave_1: left promiscuous mode
[   62.789742][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.795411][   T13] bridge_slave_0: left allmulticast mode
[   62.797299][   T13] bridge_slave_0: left promiscuous mode
[   62.799206][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.902625][   T40] audit: type=1400 audit(1754724922.410:315): avc:  denied  { create } for  pid=6715 comm="syz.0.237" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   62.923440][ T6718] FAULT_INJECTION: forcing a failure.
[   62.923440][ T6718] name failslab, interval 1, probability 0, space 0, times 0
[   62.927352][ T6718] CPU: 1 UID: 0 PID: 6718 Comm: syz.2.238 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   62.927367][ T6718] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   62.927373][ T6718] Call Trace:
[   62.927377][ T6718]  <TASK>
[   62.927381][ T6718]  dump_stack_lvl+0x16c/0x1f0
[   62.927402][ T6718]  should_fail_ex+0x512/0x640
[   62.927414][ T6718]  should_failslab+0xc2/0x120
[   62.927427][ T6718]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   62.927438][ T6718]  ? skb_clone+0x190/0x3f0
[   62.927457][ T6718]  skb_clone+0x190/0x3f0
[   62.927473][ T6718]  netlink_deliver_tap+0xabd/0xd30
[   62.927492][ T6718]  netlink_unicast+0x64c/0x870
[   62.927503][ T6718]  ? __pfx_netlink_unicast+0x10/0x10
[   62.927520][ T6718]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[   62.927544][ T6718]  netlink_sendmsg+0x8d1/0xdd0
[   62.927555][ T6718]  ? __pfx_netlink_sendmsg+0x10/0x10
[   62.927570][ T6718]  ____sys_sendmsg+0xa95/0xc70
[   62.927582][ T6718]  ? copy_msghdr_from_user+0x10a/0x160
[   62.927597][ T6718]  ? __pfx_____sys_sendmsg+0x10/0x10
[   62.927615][ T6718]  ___sys_sendmsg+0x134/0x1d0
[   62.927631][ T6718]  ? __pfx____sys_sendmsg+0x10/0x10
[   62.927658][ T6718]  ? __mutex_unlock_slowpath+0x100/0x800
[   62.927679][ T6718]  __sys_sendmsg+0x16d/0x220
[   62.927694][ T6718]  ? __pfx___sys_sendmsg+0x10/0x10
[   62.927718][ T6718]  do_syscall_64+0xcd/0x4c0
[   62.927729][ T6718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.927740][ T6718] RIP: 0033:0x7f278738ebe9
[   62.927749][ T6718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.927759][ T6718] RSP: 002b:00007f278824a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   62.927769][ T6718] RAX: ffffffffffffffda RBX: 00007f27875b5fa0 RCX: 00007f278738ebe9
[   62.927775][ T6718] RDX: 000000000000c000 RSI: 0000200000000000 RDI: 0000000000000003
[   62.927781][ T6718] RBP: 00007f278824a090 R08: 0000000000000000 R09: 0000000000000000
[   62.927787][ T6718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.927792][ T6718] R13: 00007f27875b6038 R14: 00007f27875b5fa0 R15: 00007ffcae842b18
[   62.927805][ T6718]  </TASK>
[   62.927929][ T6718] openvswitch: netlink: Missing valid actions attribute.
[   62.999202][ T6718] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   63.022164][ T6719] netlink: 'syz.0.237': attribute type 1 has an invalid length.
[   63.059868][ T6722] FAULT_INJECTION: forcing a failure.
[   63.059868][ T6722] name failslab, interval 1, probability 0, space 0, times 0
[   63.064645][ T6722] CPU: 1 UID: 0 PID: 6722 Comm: syz.2.239 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   63.064659][ T6722] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   63.064665][ T6722] Call Trace:
[   63.064669][ T6722]  <TASK>
[   63.064673][ T6722]  dump_stack_lvl+0x16c/0x1f0
[   63.064692][ T6722]  should_fail_ex+0x512/0x640
[   63.064702][ T6722]  ? __kvmalloc_node_noprof+0x124/0x620
[   63.064714][ T6722]  should_failslab+0xc2/0x120
[   63.064726][ T6722]  __kvmalloc_node_noprof+0x137/0x620
[   63.064737][ T6722]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[   63.064753][ T6722]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[   63.064770][ T6722]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[   63.064785][ T6722]  __kvm_mmu_topup_memory_cache+0x450/0x600
[   63.064804][ T6722]  mmu_topup_memory_caches+0x25/0x170
[   63.064817][ T6722]  kvm_mmu_load+0xd6/0x23c0
[   63.064827][ T6722]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   63.064838][ T6722]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   63.064850][ T6722]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[   63.064865][ T6722]  ? __pfx_kvm_guest_time_update+0x10/0x10
[   63.064878][ T6722]  ? __pfx_kvm_mmu_load+0x10/0x10
[   63.064888][ T6722]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   63.064904][ T6722]  ? kvm_check_and_inject_events+0x71c/0x1310
[   63.064921][ T6722]  vcpu_run+0x358c/0x5580
[   63.064936][ T6722]  ? __lock_acquire+0xb97/0x1ce0
[   63.064956][ T6722]  ? __pfx_vcpu_run+0x10/0x10
[   63.064972][ T6722]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   63.064985][ T6722]  ? __local_bh_enable_ip+0xa4/0x120
[   63.065001][ T6722]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[   63.065015][ T6722]  kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[   63.065034][ T6722]  kvm_vcpu_ioctl+0x5eb/0x1690
[   63.065049][ T6722]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   63.065063][ T6722]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   63.065076][ T6722]  ? do_vfs_ioctl+0x128/0x14f0
[   63.065111][ T6722]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   63.065127][ T6722]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   63.065146][ T6722]  ? hook_file_ioctl_common+0x145/0x410
[   63.065165][ T6722]  ? selinux_file_ioctl+0x180/0x270
[   63.065178][ T6722]  ? selinux_file_ioctl+0xb4/0x270
[   63.065191][ T6722]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   63.065205][ T6722]  __x64_sys_ioctl+0x18e/0x210
[   63.065222][ T6722]  do_syscall_64+0xcd/0x4c0
[   63.065232][ T6722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.065243][ T6722] RIP: 0033:0x7f278738ebe9
[   63.065252][ T6722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.065262][ T6722] RSP: 002b:00007f278824a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   63.065271][ T6722] RAX: ffffffffffffffda RBX: 00007f27875b5fa0 RCX: 00007f278738ebe9
[   63.065278][ T6722] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   63.065283][ T6722] RBP: 00007f278824a090 R08: 0000000000000000 R09: 0000000000000000
[   63.065289][ T6722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.065295][ T6722] R13: 00007f27875b6038 R14: 00007f27875b5fa0 R15: 00007ffcae842b18
[   63.065307][ T6722]  </TASK>
[   63.185346][ T6720] netlink: 32 bytes leftover after parsing attributes in process `syz.0.237'.
[   63.226106][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   63.230926][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   63.239052][   T13] bond0 (unregistering): Released all slaves
[   63.250771][ T6661] team0: Port device team_slave_1 added
[   63.329566][ T6661] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.332453][ T6661] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.343652][ T6661] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.349253][ T6661] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.352015][ T6661] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.362300][ T6661] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   63.371071][   T13] tipc: Left network mode
[   63.375371][   T13] IPVS: stopping backup sync thread 6218 ...
[   63.430921][ T6661] hsr_slave_0: entered promiscuous mode
[   63.435250][ T6661] hsr_slave_1: entered promiscuous mode
[   63.437812][ T6661] debugfs: 'hsr0' already exists in 'hsr'
[   63.439989][ T6661] Cannot create hsr debugfs directory
[   63.487447][ T6733] openvswitch: netlink: Missing valid actions attribute.
[   63.489770][ T6733] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   63.548460][   T40] audit: type=1400 audit(1754724923.060:316): avc:  denied  { search } for  pid=5682 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   63.556857][   T40] audit: type=1400 audit(1754724923.070:317): avc:  denied  { search } for  pid=5682 comm="dhcpcd" name="udev" dev="tmpfs" ino=9 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   63.564721][   T40] audit: type=1400 audit(1754724923.070:318): avc:  denied  { search } for  pid=5682 comm="dhcpcd" name="data" dev="tmpfs" ino=14 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   63.566604][ T6740] openvswitch: netlink: Message has 37 unknown bytes.
[   63.571700][ T6738] FAULT_INJECTION: forcing a failure.
[   63.571700][ T6738] name failslab, interval 1, probability 0, space 0, times 0
[   63.577664][ T6738] CPU: 0 UID: 0 PID: 6738 Comm: syz.0.244 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   63.577679][ T6738] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   63.577686][ T6738] Call Trace:
[   63.577690][ T6738]  <TASK>
[   63.577694][ T6738]  dump_stack_lvl+0x16c/0x1f0
[   63.577714][ T6738]  should_fail_ex+0x512/0x640
[   63.577724][ T6738]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[   63.577737][ T6738]  should_failslab+0xc2/0x120
[   63.577750][ T6738]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   63.577760][ T6738]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[   63.577776][ T6738]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[   63.577791][ T6738]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   63.577809][ T6738]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   63.577829][ T6738]  mmu_topup_memory_caches+0x25/0x170
[   63.577841][ T6738]  kvm_mmu_load+0xd6/0x23c0
[   63.577852][ T6738]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   63.577863][ T6738]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   63.577875][ T6738]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[   63.577890][ T6738]  ? __pfx_kvm_guest_time_update+0x10/0x10
[   63.577903][ T6738]  ? __pfx_kvm_mmu_load+0x10/0x10
[   63.577913][ T6738]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   63.577929][ T6738]  ? kvm_check_and_inject_events+0x71c/0x1310
[   63.577946][ T6738]  vcpu_run+0x358c/0x5580
[   63.577961][ T6738]  ? __lock_acquire+0xb97/0x1ce0
[   63.577982][ T6738]  ? __pfx_vcpu_run+0x10/0x10
[   63.577997][ T6738]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   63.578011][ T6738]  ? __local_bh_enable_ip+0xa4/0x120
[   63.578028][ T6738]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[   63.578042][ T6738]  kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[   63.578061][ T6738]  kvm_vcpu_ioctl+0x5eb/0x1690
[   63.578077][ T6738]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   63.578091][ T6738]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   63.578104][ T6738]  ? do_vfs_ioctl+0x128/0x14f0
[   63.578120][ T6738]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   63.578136][ T6738]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   63.578155][ T6738]  ? hook_file_ioctl_common+0x145/0x410
[   63.578175][ T6738]  ? selinux_file_ioctl+0x180/0x270
[   63.578187][ T6738]  ? selinux_file_ioctl+0xb4/0x270
[   63.578201][ T6738]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   63.578229][ T6738]  __x64_sys_ioctl+0x18e/0x210
[   63.578246][ T6738]  do_syscall_64+0xcd/0x4c0
[   63.578257][ T6738]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.578267][ T6738] RIP: 0033:0x7ff70b18ebe9
[   63.578276][ T6738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.578287][ T6738] RSP: 002b:00007ff70bf40038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   63.578297][ T6738] RAX: ffffffffffffffda RBX: 00007ff70b3b5fa0 RCX: 00007ff70b18ebe9
[   63.578303][ T6738] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[   63.578309][ T6738] RBP: 00007ff70bf40090 R08: 0000000000000000 R09: 0000000000000000
[   63.578315][ T6738] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.578321][ T6738] R13: 00007ff70b3b6038 R14: 00007ff70b3b5fa0 R15: 00007ffe1f0fc928
[   63.578334][ T6738]  </TASK>
[   63.767836][ T6749] ptrace attach of "/syz-executor exec"[5974] was attempted by "/syz-executor exec"[6749]
[   63.849783][   T13] hsr_slave_0: left promiscuous mode
[   63.852064][   T13] hsr_slave_1: left promiscuous mode
[   63.856483][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   63.859842][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[   63.864148][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   63.867745][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[   63.895342][   T13] veth1_macvtap: left promiscuous mode
[   63.897287][   T13] veth0_macvtap: left promiscuous mode
[   63.899338][   T13] veth1_vlan: left promiscuous mode
[   63.901190][   T13] veth0_vlan: left promiscuous mode
[   64.077331][ T6767] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=6767 comm=syz.2.251
[   64.385611][   T13] team0 (unregistering): Port device team_slave_1 removed
[   64.387820][ T6776] FAULT_INJECTION: forcing a failure.
[   64.387820][ T6776] name failslab, interval 1, probability 0, space 0, times 0
[   64.392772][ T6776] CPU: 2 UID: 0 PID: 6776 Comm: syz.2.255 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   64.392788][ T6776] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.392794][ T6776] Call Trace:
[   64.392798][ T6776]  <TASK>
[   64.392803][ T6776]  dump_stack_lvl+0x16c/0x1f0
[   64.392838][ T6776]  should_fail_ex+0x512/0x640
[   64.392852][ T6776]  ? __kmalloc_noprof+0xbf/0x510
[   64.392864][ T6776]  ? ovl_lookup+0x1243/0x21a0
[   64.392875][ T6776]  should_failslab+0xc2/0x120
[   64.392887][ T6776]  __kmalloc_noprof+0xd2/0x510
[   64.392901][ T6776]  ovl_lookup+0x1243/0x21a0
[   64.392926][ T6776]  ? find_held_lock+0x2b/0x80
[   64.392943][ T6776]  ? __pfx_ovl_lookup+0x10/0x10
[   64.392955][ T6776]  ? d_alloc_parallel+0x828/0x1480
[   64.392975][ T6776]  ? register_lock_class+0x41/0x4c0
[   64.392985][ T6776]  ? __lock_acquire+0xb97/0x1ce0
[   64.393005][ T6776]  ? lockdep_init_map_type+0x5c/0x280
[   64.393017][ T6776]  __lookup_slow+0x24e/0x460
[   64.393045][ T6776]  ? __pfx___lookup_slow+0x10/0x10
[   64.393070][ T6776]  ? lookup_fast+0x156/0x610
[   64.393100][ T6776]  walk_component+0x353/0x5b0
[   64.393112][ T6776]  path_lookupat+0x142/0x6d0
[   64.393124][ T6776]  filename_lookup+0x224/0x5f0
[   64.393136][ T6776]  ? __pfx_filename_lookup+0x10/0x10
[   64.393157][ T6776]  ? __might_fault+0xe3/0x190
[   64.393167][ T6776]  ? __might_fault+0xe3/0x190
[   64.393177][ T6776]  ? __might_fault+0x13b/0x190
[   64.393191][ T6776]  filename_setxattr+0x9d/0x1d0
[   64.393203][ T6776]  ? __pfx_filename_setxattr+0x10/0x10
[   64.393216][ T6776]  ? getname_flags.part.0+0x1c5/0x550
[   64.393234][ T6776]  path_setxattrat+0x1de/0x2a0
[   64.393246][ T6776]  ? __pfx_path_setxattrat+0x10/0x10
[   64.393260][ T6776]  ? ksys_write+0x190/0x250
[   64.393282][ T6776]  ? fput+0x9b/0xd0
[   64.393296][ T6776]  ? ksys_write+0x1ac/0x250
[   64.393306][ T6776]  ? __pfx_ksys_write+0x10/0x10
[   64.393318][ T6776]  __x64_sys_lsetxattr+0xc9/0x140
[   64.393334][ T6776]  ? do_syscall_64+0x91/0x4c0
[   64.393349][ T6776]  ? lockdep_hardirqs_on+0x7c/0x110
[   64.393365][ T6776]  do_syscall_64+0xcd/0x4c0
[   64.393375][ T6776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.393386][ T6776] RIP: 0033:0x7f278738ebe9
[   64.393395][ T6776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.393406][ T6776] RSP: 002b:00007f278824a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[   64.393416][ T6776] RAX: ffffffffffffffda RBX: 00007f27875b5fa0 RCX: 00007f278738ebe9
[   64.393422][ T6776] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000200000000080
[   64.393428][ T6776] RBP: 00007f278824a090 R08: 0000000000000003 R09: 0000000000000000
[   64.393434][ T6776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.393440][ T6776] R13: 00007f27875b6038 R14: 00007f27875b5fa0 R15: 00007ffcae842b18
[   64.393453][ T6776]  </TASK>
[   64.493435][ T5982] Bluetooth: hci0: command tx timeout
[   64.537238][   T13] team0 (unregistering): Port device team_slave_0 removed
[   64.989653][ T6784] netlink: 'syz.1.257': attribute type 15 has an invalid length.
[   65.005389][ T6661] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   65.013228][ T6661] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   65.024331][ T6661] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   65.031412][ T6661] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   65.088521][ T6661] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.105109][ T6661] 8021q: adding VLAN 0 to HW filter on device team0
[   65.110443][ T1143] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.112716][ T1143] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.126757][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.129594][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.251066][ T6661] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.305462][   T40] kauditd_printk_skb: 20 callbacks suppressed
[   65.305472][   T40] audit: type=1400 audit(1754724924.820:339): avc:  denied  { listen } for  pid=6809 comm="syz.1.262" lport=42004 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   65.317453][   T40] audit: type=1400 audit(1754724924.830:340): avc:  denied  { create } for  pid=6823 comm="syz.2.263" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   65.327028][   T40] audit: type=1400 audit(1754724924.830:341): avc:  denied  { ioctl } for  pid=6823 comm="syz.2.263" path="socket:[16614]" dev="sockfs" ino=16614 ioctlcmd=0x7213 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   65.355722][ T6824] sctp: failed to load transform for md5: -2
[   65.370639][   T40] audit: type=1400 audit(1754724924.880:342): avc:  denied  { write } for  pid=6823 comm="syz.2.263" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   65.373492][ T6831] netlink: 'syz.2.263': attribute type 2 has an invalid length.
[   65.379931][ T6831] netlink: 'syz.2.263': attribute type 2 has an invalid length.
[   65.382461][ T6831] netlink: 'syz.2.263': attribute type 2 has an invalid length.
[   65.385082][ T6831] netlink: 'syz.2.263': attribute type 1 has an invalid length.
[   65.391030][ T6827] team0 (unregistering): Port device team_slave_0 removed
[   65.396785][ T6827] team0 (unregistering): Port device team_slave_1 removed
[   65.590487][ T6661] veth0_vlan: entered promiscuous mode
[   65.592395][   T40] audit: type=1400 audit(1754724925.100:343): avc:  denied  { ioctl } for  pid=6844 comm="syz.1.267" path="/dev/vhost-net" dev="devtmpfs" ino=1300 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   65.596172][ T6661] veth1_vlan: entered promiscuous mode
[   65.625663][ T6661] veth0_macvtap: entered promiscuous mode
[   65.629682][ T6661] veth1_macvtap: entered promiscuous mode
[   65.638543][ T6661] batman_adv: batadv0: Interface activated: batadv_slave_0
[   65.642589][ T6661] batman_adv: batadv0: Interface activated: batadv_slave_1
[   65.650710][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   65.656203][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   65.662244][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   65.671375][   T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   65.698463][   T40] audit: type=1400 audit(1754724925.200:344): avc:  denied  { mount } for  pid=6852 comm="syz.0.268" name="/" dev="configfs" ino=3172 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   65.718339][   T40] audit: type=1400 audit(1754724925.230:345): avc:  denied  { create } for  pid=6855 comm="syz.1.271" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   65.727899][ T1194] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.730527][ T1194] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.734192][   T40] audit: type=1400 audit(1754724925.230:346): avc:  denied  { bind } for  pid=6855 comm="syz.1.271" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   65.740645][   T40] audit: type=1400 audit(1754724925.230:347): avc:  denied  { name_bind } for  pid=6855 comm="syz.1.271" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[   65.748729][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.756455][   T40] audit: type=1400 audit(1754724925.230:348): avc:  denied  { node_bind } for  pid=6855 comm="syz.1.271" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[   65.756649][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.899967][ T6872] FAULT_INJECTION: forcing a failure.
[   65.899967][ T6872] name failslab, interval 1, probability 0, space 0, times 0
[   65.904213][ T6872] CPU: 2 UID: 0 PID: 6872 Comm: syz.1.274 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   65.904228][ T6872] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   65.904235][ T6872] Call Trace:
[   65.904238][ T6872]  <TASK>
[   65.904252][ T6872]  dump_stack_lvl+0x16c/0x1f0
[   65.904273][ T6872]  should_fail_ex+0x512/0x640
[   65.904282][ T6872]  ? __kmalloc_node_noprof+0xc5/0x500
[   65.904296][ T6872]  should_failslab+0xc2/0x120
[   65.904309][ T6872]  __kmalloc_node_noprof+0xd8/0x500
[   65.904320][ T6872]  ? __vmalloc_node_range_noprof+0x3e5/0x14b0
[   65.904338][ T6872]  __vmalloc_node_range_noprof+0x3e5/0x14b0
[   65.904355][ T6872]  ? __pfx_stack_trace_save+0x10/0x10
[   65.904372][ T6872]  ? __vcalloc_noprof+0x4d/0x80
[   65.904385][ T6872]  ? __pfx___mutex_trylock_common+0x10/0x10
[   65.904405][ T6872]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   65.904421][ T6872]  ? trace_contention_end+0xdd/0x130
[   65.904430][ T6872]  ? __mutex_lock+0x1c4/0x10b0
[   65.904443][ T6872]  ? __vcalloc_noprof+0x4d/0x80
[   65.904453][ T6872]  __vmalloc_node_noprof+0xad/0xf0
[   65.904468][ T6872]  ? __vcalloc_noprof+0x4d/0x80
[   65.904481][ T6872]  __vcalloc_noprof+0x4d/0x80
[   65.904493][ T6872]  kvm_arch_prepare_memory_region+0x35a/0x8d0
[   65.904516][ T6872]  kvm_set_memslot+0x139/0x1380
[   65.904532][ T6872]  ? kasan_save_track+0x14/0x30
[   65.904544][ T6872]  kvm_set_memory_region+0xebc/0x1680
[   65.904563][ T6872]  ? __pfx_kvm_set_memory_region+0x10/0x10
[   65.904582][ T6872]  kvm_vm_ioctl+0x151b/0x4000
[   65.904598][ T6872]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   65.904617][ T6872]  ? kasan_quarantine_put+0x10a/0x240
[   65.904627][ T6872]  ? lockdep_hardirqs_on+0x7c/0x110
[   65.904644][ T6872]  ? find_held_lock+0x2b/0x80
[   65.904657][ T6872]  ? tomoyo_path_number_perm+0x295/0x580
[   65.904671][ T6872]  ? tomoyo_path_number_perm+0x18d/0x580
[   65.904684][ T6872]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   65.904696][ T6872]  ? find_held_lock+0x2b/0x80
[   65.904711][ T6872]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   65.904732][ T6872]  ? hook_file_ioctl_common+0x145/0x410
[   65.904751][ T6872]  ? selinux_file_ioctl+0x180/0x270
[   65.904764][ T6872]  ? selinux_file_ioctl+0xb4/0x270
[   65.904778][ T6872]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   65.904789][ T6872]  __x64_sys_ioctl+0x18e/0x210
[   65.904806][ T6872]  do_syscall_64+0xcd/0x4c0
[   65.904817][ T6872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.904827][ T6872] RIP: 0033:0x7f441eb8e7eb
[   65.904836][ T6872] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   65.904846][ T6872] RSP: 002b:00007f441fa54f30 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   65.904857][ T6872] RAX: ffffffffffffffda RBX: 0000200000bff000 RCX: 00007f441eb8e7eb
[   65.904863][ T6872] RDX: 00007f441fa54f90 RSI: 000000004020ae46 RDI: 0000000000000004
[   65.904869][ T6872] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[   65.904875][ T6872] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f441fa54f90
[   65.904881][ T6872] R13: 00007f441edb6038 R14: 00007f441fa55008 R15: 0000200000c15000
[   65.904894][ T6872]  </TASK>
[   65.905000][ T6872] syz.1.274: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null)
[   65.954828][ T6869] netlink: 8 bytes leftover after parsing attributes in process `syz.2.273'.
[   65.956631][ T6872] ,cpuset=
[   65.957682][ T6875] FAULT_INJECTION: forcing a failure.
[   65.957682][ T6875] name failslab, interval 1, probability 0, space 0, times 0
[   65.959361][ T6872] /
[   65.960921][ T6875] CPU: 3 UID: 0 PID: 6875 Comm: syz.4.275 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   65.960936][ T6875] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   65.960942][ T6875] Call Trace:
[   65.960946][ T6875]  <TASK>
[   65.960950][ T6875]  dump_stack_lvl+0x16c/0x1f0
[   65.960970][ T6875]  should_fail_ex+0x512/0x640
[   65.960980][ T6875]  ? __kvmalloc_node_noprof+0x124/0x620
[   65.960992][ T6875]  should_failslab+0xc2/0x120
[   65.961005][ T6875]  __kvmalloc_node_noprof+0x137/0x620
[   65.961015][ T6875]  ? bpf_test_run_xdp_live+0x16b/0x500
[   65.961033][ T6875]  ? bpf_test_run_xdp_live+0x16b/0x500
[   65.961047][ T6875]  bpf_test_run_xdp_live+0x16b/0x500
[   65.961085][ T6875]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   65.961102][ T6875]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   65.961123][ T6875]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   65.961137][ T6875]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   65.961147][ T6875]  ? 0xffffffffa0206480
[   65.961163][ T6875]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   65.961175][ T6875]  ? 0xffffffffa0206480
[   65.961183][ T6875]  ? 0xffffffffa0206480
[   65.961191][ T6875]  ? 0xffffffffa0206480
[   65.961202][ T6875]  bpf_prog_test_run_xdp+0x824/0x1590
[   65.961222][ T6875]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   65.961239][ T6875]  ? __might_fault+0xb0/0x190
[   65.961252][ T6875]  ? fput+0x9b/0xd0
[   65.961265][ T6875]  ? __bpf_prog_get+0x97/0x2a0
[   65.961277][ T6875]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   65.961292][ T6875]  __sys_bpf+0x1050/0x4de0
[   65.961308][ T6875]  ? __pfx___sys_bpf+0x10/0x10
[   65.961321][ T6875]  ? ksys_write+0x190/0x250
[   65.961334][ T6875]  ? __mutex_unlock_slowpath+0x163/0x800
[   65.961363][ T6875]  ? fput+0x9b/0xd0
[   65.961376][ T6875]  ? ksys_write+0x1ac/0x250
[   65.961386][ T6875]  ? __pfx_ksys_write+0x10/0x10
[   65.961399][ T6875]  __x64_sys_bpf+0x78/0xc0
[   65.961412][ T6875]  ? lockdep_hardirqs_on+0x7c/0x110
[   65.961428][ T6875]  do_syscall_64+0xcd/0x4c0
[   65.961438][ T6875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.961449][ T6875] RIP: 0033:0x7f331af8ebe9
[   65.961457][ T6875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.961467][ T6875] RSP: 002b:00007f331bdc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   65.961477][ T6875] RAX: ffffffffffffffda RBX: 00007f331b1b5fa0 RCX: 00007f331af8ebe9
[   65.961484][ T6875] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[   65.961490][ T6875] RBP: 00007f331bdc0090 R08: 0000000000000000 R09: 0000000000000000
[   65.961496][ T6875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.961501][ T6875] R13: 00007f331b1b6038 R14: 00007f331b1b5fa0 R15: 00007ffd73ba16f8
[   65.961514][ T6875]  </TASK>
[   66.103470][ T6872] ,mems_allowed=0-1
[   66.105418][ T6872] CPU: 3 UID: 0 PID: 6872 Comm: syz.1.274 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   66.105433][ T6872] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.105439][ T6872] Call Trace:
[   66.105443][ T6872]  <TASK>
[   66.105448][ T6872]  dump_stack_lvl+0x16c/0x1f0
[   66.105468][ T6872]  warn_alloc+0x248/0x3a0
[   66.105480][ T6872]  ? __pfx_warn_alloc+0x10/0x10
[   66.105490][ T6872]  ? dump_stack_lvl+0x185/0x1f0
[   66.105509][ T6872]  ? rcu_is_watching+0x12/0xc0
[   66.105523][ T6872]  ? __kmalloc_node_noprof+0x23b/0x500
[   66.105538][ T6872]  __vmalloc_node_range_noprof+0x101b/0x14b0
[   66.105555][ T6872]  ? __pfx_stack_trace_save+0x10/0x10
[   66.105573][ T6872]  ? __vcalloc_noprof+0x4d/0x80
[   66.105585][ T6872]  ? __pfx___mutex_trylock_common+0x10/0x10
[   66.105604][ T6872]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   66.105620][ T6872]  ? trace_contention_end+0xdd/0x130
[   66.105630][ T6872]  ? __mutex_lock+0x1c4/0x10b0
[   66.105642][ T6872]  ? __vcalloc_noprof+0x4d/0x80
[   66.105653][ T6872]  __vmalloc_node_noprof+0xad/0xf0
[   66.105668][ T6872]  ? __vcalloc_noprof+0x4d/0x80
[   66.105681][ T6872]  __vcalloc_noprof+0x4d/0x80
[   66.105693][ T6872]  kvm_arch_prepare_memory_region+0x35a/0x8d0
[   66.105716][ T6872]  kvm_set_memslot+0x139/0x1380
[   66.105733][ T6872]  ? kasan_save_track+0x14/0x30
[   66.105745][ T6872]  kvm_set_memory_region+0xebc/0x1680
[   66.105765][ T6872]  ? __pfx_kvm_set_memory_region+0x10/0x10
[   66.105784][ T6872]  kvm_vm_ioctl+0x151b/0x4000
[   66.105800][ T6872]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   66.105819][ T6872]  ? kasan_quarantine_put+0x10a/0x240
[   66.105829][ T6872]  ? lockdep_hardirqs_on+0x7c/0x110
[   66.105846][ T6872]  ? find_held_lock+0x2b/0x80
[   66.105859][ T6872]  ? tomoyo_path_number_perm+0x295/0x580
[   66.105873][ T6872]  ? tomoyo_path_number_perm+0x18d/0x580
[   66.105886][ T6872]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   66.105899][ T6872]  ? find_held_lock+0x2b/0x80
[   66.105914][ T6872]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   66.105935][ T6872]  ? hook_file_ioctl_common+0x145/0x410
[   66.105955][ T6872]  ? selinux_file_ioctl+0x180/0x270
[   66.105968][ T6872]  ? selinux_file_ioctl+0xb4/0x270
[   66.105982][ T6872]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   66.105993][ T6872]  __x64_sys_ioctl+0x18e/0x210
[   66.106010][ T6872]  do_syscall_64+0xcd/0x4c0
[   66.106021][ T6872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.106031][ T6872] RIP: 0033:0x7f441eb8e7eb
[   66.106040][ T6872] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   66.106050][ T6872] RSP: 002b:00007f441fa54f30 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   66.106060][ T6872] RAX: ffffffffffffffda RBX: 0000200000bff000 RCX: 00007f441eb8e7eb
[   66.106066][ T6872] RDX: 00007f441fa54f90 RSI: 000000004020ae46 RDI: 0000000000000004
[   66.106073][ T6872] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[   66.106078][ T6872] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f441fa54f90
[   66.106084][ T6872] R13: 00007f441edb6038 R14: 00007f441fa55008 R15: 0000200000c15000
[   66.106098][ T6872]  </TASK>
[   66.106101][ T6872] Mem-Info:
[   66.205133][ T6872] active_anon:9143 inactive_anon:103 isolated_anon:0
[   66.205133][ T6872]  active_file:16814 inactive_file:40587 isolated_file:0
[   66.205133][ T6872]  unevictable:1768 dirty:1833 writeback:0
[   66.205133][ T6872]  slab_reclaimable:11963 slab_unreclaimable:68701
[   66.205133][ T6872]  mapped:24773 shmem:2370 pagetables:1413
[   66.205133][ T6872]  sec_pagetables:296 bounce:0
[   66.205133][ T6872]  kernel_misc_reclaimable:0
[   66.205133][ T6872]  free:454962 free_pcp:14537 free_cma:0
[   66.222877][ T6872] Node 0 active_anon:36572kB inactive_anon:412kB active_file:67256kB inactive_file:162148kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:99092kB dirty:7328kB writeback:0kB shmem:5944kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12816kB pagetables:5224kB sec_pagetables:1184kB all_unreclaimable? no Balloon:0kB
[   66.232882][ T6872] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:112kB pagetables:180kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[   66.242761][ T6872] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   66.252515][ T6872] lowmem_reserve[]: 0 1233 1233 1233 1233
[   66.254540][ T6872] Node 0 DMA32 free:213396kB boost:0kB min:27516kB low:34392kB high:41268kB reserved_highatomic:0KB free_highatomic:0KB active_anon:36448kB inactive_anon:412kB active_file:67256kB inactive_file:162148kB unevictable:3536kB writepending:7328kB present:2080628kB managed:1263540kB mlocked:0kB bounce:0kB free_pcp:38848kB local_pcp:2068kB free_cma:0kB
[   66.266054][ T6872] lowmem_reserve[]: 0 0 0 0 0
[   66.267654][ T6872] Node 1 Normal free:1591092kB boost:0kB min:39720kB low:49648kB high:59576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:3536kB writepending:4kB present:2097152kB managed:1781892kB mlocked:0kB bounce:0kB free_pcp:20092kB local_pcp:7820kB free_cma:0kB
[   66.274017][ T6882] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6882 comm=syz.4.277
[   66.277140][ T6872] lowmem_reserve[]: 0 0 0 0 0
[   66.283995][ T6872] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   66.287970][ T6872] Node 0 DMA32: 579*4kB (UME) 430*8kB (UME) 560*16kB (UME) 837*32kB (UME) 179*64kB (UME) 17*128kB (UME) 22*256kB (UME) 42*512kB (UM) 22*1024kB (UME) 15*2048kB (UME) 19*4096kB (UM) = 213340kB
[   66.297532][ T6872] Node 1 Normal: 27*4kB (UME) 20*8kB (UME) 23*16kB (UME) 42*32kB (UME) 26*64kB (UME) 22*128kB (UME) 10*256kB (UE) 8*512kB (UME) 5*1024kB (UE) 4*2048kB (UM) 382*4096kB (M) = 1591100kB
[   66.304251][ T6872] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   66.308297][ T6872] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   66.311619][ T6872] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   66.315341][ T6872] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   66.318490][ T6872] 59870 total pagecache pages
[   66.320427][ T6872] 103 pages in swap cache
[   66.322156][ T6872] Free swap  = 124584kB
[   66.324171][ T6872] Total swap = 124996kB
[   66.325630][ T6872] 1048443 pages RAM
[   66.327037][ T6872] 0 pages HighMem/MovableOnly
[   66.328979][ T6872] 283245 pages reserved
[   66.330517][ T6872] 0 pages cma reserved
[   66.340480][ T6892] FAULT_INJECTION: forcing a failure.
[   66.340480][ T6892] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.345542][ T6892] CPU: 2 UID: 0 PID: 6892 Comm: syz.0.280 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   66.345557][ T6892] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.345563][ T6892] Call Trace:
[   66.345566][ T6892]  <TASK>
[   66.345571][ T6892]  dump_stack_lvl+0x16c/0x1f0
[   66.345591][ T6892]  should_fail_ex+0x512/0x640
[   66.345603][ T6892]  _copy_from_iter+0x29f/0x16f0
[   66.345616][ T6892]  ? __alloc_skb+0x200/0x380
[   66.345632][ T6892]  ? __pfx__copy_from_iter+0x10/0x10
[   66.345642][ T6892]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[   66.345655][ T6892]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[   66.345672][ T6892]  netlink_sendmsg+0x829/0xdd0
[   66.345684][ T6892]  ? __pfx_netlink_sendmsg+0x10/0x10
[   66.345699][ T6892]  ____sys_sendmsg+0xa95/0xc70
[   66.345711][ T6892]  ? copy_msghdr_from_user+0x10a/0x160
[   66.345727][ T6892]  ? __pfx_____sys_sendmsg+0x10/0x10
[   66.345744][ T6892]  ___sys_sendmsg+0x134/0x1d0
[   66.345760][ T6892]  ? __pfx____sys_sendmsg+0x10/0x10
[   66.345787][ T6892]  ? __mutex_unlock_slowpath+0x100/0x800
[   66.345808][ T6892]  __sys_sendmsg+0x16d/0x220
[   66.345824][ T6892]  ? __pfx___sys_sendmsg+0x10/0x10
[   66.345848][ T6892]  do_syscall_64+0xcd/0x4c0
[   66.345859][ T6892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.345870][ T6892] RIP: 0033:0x7ff70b18ebe9
[   66.345878][ T6892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.345889][ T6892] RSP: 002b:00007ff70bf40038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   66.345899][ T6892] RAX: ffffffffffffffda RBX: 00007ff70b3b5fa0 RCX: 00007ff70b18ebe9
[   66.345905][ T6892] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000003
[   66.345912][ T6892] RBP: 00007ff70bf40090 R08: 0000000000000000 R09: 0000000000000000
[   66.345917][ T6892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.345923][ T6892] R13: 00007ff70b3b6038 R14: 00007ff70b3b5fa0 R15: 00007ffe1f0fc928
[   66.345936][ T6892]  </TASK>
[   66.532202][ T6895] ocfs2: Unknown parameter 'grpquota'
[   66.573108][ T5982] Bluetooth: hci0: command tx timeout
[   66.638201][ T6938] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   66.648125][ T6937] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   66.650320][ T6929] netlink: 12 bytes leftover after parsing attributes in process `syz.1.291'.
[   66.866302][ T6929] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   66.868415][ T6929] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   66.873876][ T6929] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   66.879124][ T6929] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   66.881267][ T6929] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   66.886515][ T6929] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   66.889627][ T6929] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   66.891850][ T6929] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   66.899923][ T6929] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   66.906790][ T6929] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   66.908860][ T6929] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   66.920481][ T6929] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   66.965762][ T6964] FAULT_INJECTION: forcing a failure.
[   66.965762][ T6964] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   66.971479][ T6964] CPU: 2 UID: 0 PID: 6964 Comm: syz.0.296 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   66.971502][ T6964] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.971513][ T6964] Call Trace:
[   66.971519][ T6964]  <TASK>
[   66.971525][ T6964]  dump_stack_lvl+0x16c/0x1f0
[   66.971557][ T6964]  should_fail_ex+0x512/0x640
[   66.971577][ T6964]  should_fail_alloc_page+0xe7/0x130
[   66.971599][ T6964]  prepare_alloc_pages+0x3c2/0x610
[   66.971626][ T6964]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[   66.971645][ T6964]  ? arch_stack_walk+0xa6/0x100
[   66.971676][ T6964]  ? stack_trace_save+0x8e/0xc0
[   66.971699][ T6964]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   66.971716][ T6964]  ? rcu_is_watching+0x12/0xc0
[   66.971745][ T6964]  ? kasan_save_track+0x14/0x30
[   66.971761][ T6964]  ? __kasan_slab_alloc+0x89/0x90
[   66.971778][ T6964]  ? kmem_cache_alloc_noprof+0x1cb/0x3b0
[   66.971794][ T6964]  ? __pmd_alloc+0xbf/0x930
[   66.971815][ T6964]  ? __handle_mm_fault+0xa06/0x2a50
[   66.971840][ T6964]  ? handle_mm_fault+0x589/0xd10
[   66.971864][ T6964]  ? do_user_addr_fault+0x7a6/0x1370
[   66.971880][ T6964]  ? exc_page_fault+0x5c/0xb0
[   66.971904][ T6964]  ? asm_exc_page_fault+0x26/0x30
[   66.971920][ T6964]  ? _copy_to_user+0xb6/0xd0
[   66.971936][ T6964]  ? ksys_msgctl.constprop.0+0x2d6/0x330
[   66.971961][ T6964]  ? do_syscall_64+0xcd/0x4c0
[   66.971975][ T6964]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.971991][ T6964]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   66.972014][ T6964]  ? policy_nodemask+0xea/0x4e0
[   66.972037][ T6964]  alloc_pages_mpol+0x1fb/0x550
[   66.972057][ T6964]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   66.972085][ T6964]  alloc_pages_noprof+0x131/0x390
[   66.972106][ T6964]  pte_alloc_one+0x1c/0x3a0
[   66.972126][ T6964]  __pte_alloc+0x6d/0x3c0
[   66.972145][ T6964]  ? __pfx___pte_alloc+0x10/0x10
[   66.972168][ T6964]  ? do_raw_spin_lock+0x12c/0x2b0
[   66.972189][ T6964]  do_pte_missing+0x285a/0x3ba0
[   66.972216][ T6964]  ? do_raw_spin_unlock+0x172/0x230
[   66.972235][ T6964]  ? _raw_spin_unlock+0x28/0x50
[   66.972258][ T6964]  ? __pmd_alloc+0x3fb/0x930
[   66.972288][ T6964]  __handle_mm_fault+0x152a/0x2a50
[   66.972317][ T6964]  ? mt_find+0x3ef/0xa30
[   66.972336][ T6964]  ? __pfx___handle_mm_fault+0x10/0x10
[   66.972360][ T6964]  ? __pfx_mt_find+0x10/0x10
[   66.972391][ T6964]  ? find_vma+0xbf/0x140
[   66.972410][ T6964]  ? __pfx_find_vma+0x10/0x10
[   66.972433][ T6964]  handle_mm_fault+0x589/0xd10
[   66.972459][ T6964]  ? __bpf_trace_exceptions+0x1/0x40
[   66.972505][ T6964]  do_user_addr_fault+0x7a6/0x1370
[   66.972524][ T6964]  ? rcu_is_watching+0x12/0xc0
[   66.972548][ T6964]  exc_page_fault+0x5c/0xb0
[   66.972573][ T6964]  asm_exc_page_fault+0x26/0x30
[   66.972589][ T6964] RIP: 0010:_copy_to_user+0xb6/0xd0
[   66.972607][ T6964] Code: 89 ee 48 89 ef e8 ba e3 d8 fc 4d 85 ff 75 a8 e8 00 e9 d8 fc 89 de 4c 89 e7 e8 86 46 3f fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb eb 80 66 2e 0f 1f 84 00 00 00 00
[   66.972624][ T6964] RSP: 0018:ffffc90004487d90 EFLAGS: 00050246
[   66.972638][ T6964] RAX: 0000000000000001 RBX: 0000000000000020 RCX: 0000000000000020
[   66.972648][ T6964] RDX: fffff52000890fc2 RSI: ffffc90004487df0 RDI: 0000200000000000
[   66.972659][ T6964] RBP: 0000200000000000 R08: 0000000000000000 R09: fffff52000890fc1
[   66.972670][ T6964] R10: ffffc90004487e0f R11: 0000000000000000 R12: ffffc90004487df0
[   66.972680][ T6964] R13: 0000200000000020 R14: 00007ffffffff000 R15: 0000000000000000
[   66.972708][ T6964]  ksys_msgctl.constprop.0+0x2d6/0x330
[   66.972733][ T6964]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   66.972760][ T6964]  ? __pfx_ksys_msgctl.constprop.0+0x10/0x10
[   66.972810][ T6964]  do_syscall_64+0xcd/0x4c0
[   66.972827][ T6964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.972843][ T6964] RIP: 0033:0x7ff70b18ebe9
[   66.972857][ T6964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.972873][ T6964] RSP: 002b:00007ff70bf40038 EFLAGS: 00000246 ORIG_RAX: 0000000000000047
[   66.972888][ T6964] RAX: ffffffffffffffda RBX: 00007ff70b3b5fa0 RCX: 00007ff70b18ebe9
[   66.972898][ T6964] RDX: 0000200000000000 RSI: 000000000000000c RDI: 0000000000000000
[   66.972908][ T6964] RBP: 00007ff70bf40090 R08: 0000000000000000 R09: 0000000000000000
[   66.972918][ T6964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.972928][ T6964] R13: 00007ff70b3b6038 R14: 00007ff70b3b5fa0 R15: 00007ffe1f0fc928
[   66.972952][ T6964]  </TASK>
[   67.181819][ T6971] FAULT_INJECTION: forcing a failure.
[   67.181819][ T6971] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   67.186905][ T6971] CPU: 0 UID: 0 PID: 6971 Comm: syz.0.299 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   67.186921][ T6971] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.186928][ T6971] Call Trace:
[   67.186932][ T6971]  <TASK>
[   67.186936][ T6971]  dump_stack_lvl+0x16c/0x1f0
[   67.186957][ T6971]  should_fail_ex+0x512/0x640
[   67.186970][ T6971]  should_fail_alloc_page+0xe7/0x130
[   67.186985][ T6971]  prepare_alloc_pages+0x3c2/0x610
[   67.186999][ T6971]  ? find_held_lock+0x2b/0x80
[   67.187015][ T6971]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[   67.187028][ T6971]  ? css_rstat_updated+0x1c2/0x510
[   67.187044][ T6971]  ? __pfx_css_rstat_updated+0x10/0x10
[   67.187062][ T6971]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   67.187076][ T6971]  ? find_held_lock+0x2b/0x80
[   67.187093][ T6971]  ? find_held_lock+0x2b/0x80
[   67.187107][ T6971]  ? rcu_read_unlock+0x17/0x60
[   67.187119][ T6971]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   67.187133][ T6971]  ? policy_nodemask+0xea/0x4e0
[   67.187147][ T6971]  alloc_pages_mpol+0x1fb/0x550
[   67.187160][ T6971]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   67.187172][ T6971]  ? rcu_is_watching+0x12/0xc0
[   67.187187][ T6971]  ? trace_kmem_cache_alloc+0x28/0xc0
[   67.187201][ T6971]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[   67.187214][ T6971]  alloc_pages_noprof+0x131/0x390
[   67.187227][ T6971]  kvm_vm_ioctl+0xc4b/0x4000
[   67.187244][ T6971]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   67.187263][ T6971]  ? kasan_quarantine_put+0x10a/0x240
[   67.187274][ T6971]  ? lockdep_hardirqs_on+0x7c/0x110
[   67.187292][ T6971]  ? find_held_lock+0x2b/0x80
[   67.187313][ T6971]  ? tomoyo_path_number_perm+0x295/0x580
[   67.187328][ T6971]  ? tomoyo_path_number_perm+0x18d/0x580
[   67.187342][ T6971]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   67.187355][ T6971]  ? find_held_lock+0x2b/0x80
[   67.187371][ T6971]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   67.187384][ T6971]  ? do_vfs_ioctl+0x128/0x14f0
[   67.187401][ T6971]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   67.187418][ T6971]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   67.187438][ T6971]  ? hook_file_ioctl_common+0x145/0x410
[   67.187475][ T6971]  ? selinux_file_ioctl+0x180/0x270
[   67.187488][ T6971]  ? selinux_file_ioctl+0xb4/0x270
[   67.187503][ T6971]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   67.187514][ T6971]  __x64_sys_ioctl+0x18e/0x210
[   67.187532][ T6971]  do_syscall_64+0xcd/0x4c0
[   67.187543][ T6971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.187554][ T6971] RIP: 0033:0x7ff70b18ebe9
[   67.187564][ T6971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.187574][ T6971] RSP: 002b:00007ff70bf40038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   67.187585][ T6971] RAX: ffffffffffffffda RBX: 00007ff70b3b5fa0 RCX: 00007ff70b18ebe9
[   67.187592][ T6971] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000005
[   67.187599][ T6971] RBP: 00007ff70bf40090 R08: 0000000000000000 R09: 0000000000000000
[   67.187605][ T6971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.187611][ T6971] R13: 00007ff70b3b6038 R14: 00007ff70b3b5fa0 R15: 00007ffe1f0fc928
[   67.187625][ T6971]  </TASK>
[   67.213461][ T6973] netlink: 16 bytes leftover after parsing attributes in process `syz.1.300'.
[   67.396483][ T6986] FAULT_INJECTION: forcing a failure.
[   67.396483][ T6986] name failslab, interval 1, probability 0, space 0, times 0
[   67.400427][ T6986] CPU: 3 UID: 0 PID: 6986 Comm: syz.0.301 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   67.400442][ T6986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.400449][ T6986] Call Trace:
[   67.400453][ T6986]  <TASK>
[   67.400457][ T6986]  dump_stack_lvl+0x16c/0x1f0
[   67.400477][ T6986]  should_fail_ex+0x512/0x640
[   67.400491][ T6986]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[   67.400505][ T6986]  should_failslab+0xc2/0x120
[   67.400518][ T6986]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[   67.400529][ T6986]  ? __d_alloc+0x32/0xae0
[   67.400544][ T6986]  __d_alloc+0x32/0xae0
[   67.400559][ T6986]  d_alloc_parallel+0x111/0x1480
[   67.400577][ T6986]  ? avc_has_perm_noaudit+0x117/0x3b0
[   67.400596][ T6986]  ? map_id_range_up+0x2ce/0x3b0
[   67.400609][ T6986]  ? __pfx_d_alloc_parallel+0x10/0x10
[   67.400627][ T6986]  ? lockdep_init_map_type+0x5c/0x280
[   67.400638][ T6986]  ? lockdep_init_map_type+0x5c/0x280
[   67.400650][ T6986]  __lookup_slow+0x193/0x460
[   67.400666][ T6986]  ? __pfx___lookup_slow+0x10/0x10
[   67.400683][ T6986]  ? pcpu_next_md_free_region+0x230/0x380
[   67.400702][ T6986]  ? pcpu_next_md_free_region+0x230/0x380
[   67.400718][ T6986]  ? d_lookup+0xe7/0x190
[   67.400736][ T6986]  lookup_one_unlocked+0xd4/0x120
[   67.400753][ T6986]  ovl_lookup_single+0x2ed/0x1270
[   67.400768][ T6986]  ? __pfx_ovl_lookup_single+0x10/0x10
[   67.400783][ T6986]  ovl_lookup_layer+0x3d4/0x480
[   67.400796][ T6986]  ? __pfx_ovl_lookup_layer+0x10/0x10
[   67.400806][ T6986]  ? __kmalloc_noprof+0x242/0x510
[   67.400819][ T6986]  ovl_lookup+0x13f9/0x21a0
[   67.400835][ T6986]  ? __pfx_ovl_lookup+0x10/0x10
[   67.400853][ T6986]  ? do_raw_spin_lock+0x12c/0x2b0
[   67.400867][ T6986]  ? do_raw_spin_unlock+0x172/0x230
[   67.400879][ T6986]  ? _raw_spin_unlock+0x28/0x50
[   67.400896][ T6986]  lookup_one_qstr_excl+0x1d1/0x250
[   67.400911][ T6986]  ? mnt_want_write+0x161/0x450
[   67.400921][ T6986]  do_renameat2+0x5aa/0xc50
[   67.400939][ T6986]  ? __pfx_do_renameat2+0x10/0x10
[   67.400953][ T6986]  ? find_held_lock+0x2b/0x80
[   67.400965][ T6986]  ? __might_fault+0xe3/0x190
[   67.400975][ T6986]  ? __might_fault+0x13b/0x190
[   67.400992][ T6986]  ? getname_flags.part.0+0x1c5/0x550
[   67.401015][ T6986]  __x64_sys_rename+0x7d/0xa0
[   67.401030][ T6986]  do_syscall_64+0xcd/0x4c0
[   67.401040][ T6986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.401069][ T6986] RIP: 0033:0x7ff70b18ebe9
[   67.401079][ T6986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.401089][ T6986] RSP: 002b:00007ff70bf40038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[   67.401100][ T6986] RAX: ffffffffffffffda RBX: 00007ff70b3b5fa0 RCX: 00007ff70b18ebe9
[   67.401106][ T6986] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000200000000580
[   67.401112][ T6986] RBP: 00007ff70bf40090 R08: 0000000000000000 R09: 0000000000000000
[   67.401118][ T6986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.401124][ T6986] R13: 00007ff70b3b6038 R14: 00007ff70b3b5fa0 R15: 00007ffe1f0fc928
[   67.401138][ T6986]  </TASK>
[   67.585868][ T6993] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   67.588076][ T6993] overlayfs: failed to set xattr on upper
[   67.589866][ T6993] overlayfs: ...falling back to redirect_dir=nofollow.
[   67.591974][ T6993] overlayfs: ...falling back to index=off.
[   67.594002][ T6993] overlayfs: ...falling back to uuid=null.
[   68.198855][ T7018] fuse: Bad value for 'group_id'
[   68.200533][ T7018] fuse: Bad value for 'group_id'
[   68.270340][ T7026] netlink: 8 bytes leftover after parsing attributes in process `syz.1.312'.
[   68.273266][ T7026] netlink: 'syz.1.312': attribute type 15 has an invalid length.
[   68.275736][ T7026] netlink: 12 bytes leftover after parsing attributes in process `syz.1.312'.
[   68.285803][ T1198] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   68.288515][ T1198] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   68.291203][ T1198] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   68.294916][ T1198] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   68.330490][ T7038] sp0: Synchronizing with TNC
[   68.333701][ T7038] No control pipe specified
[   68.462959][ T7043] FAULT_INJECTION: forcing a failure.
[   68.462959][ T7043] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   68.467161][ T7043] CPU: 2 UID: 0 PID: 7043 Comm: syz.2.314 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   68.467176][ T7043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.467183][ T7043] Call Trace:
[   68.467187][ T7043]  <TASK>
[   68.467191][ T7043]  dump_stack_lvl+0x16c/0x1f0
[   68.467225][ T7043]  should_fail_ex+0x512/0x640
[   68.467242][ T7043]  should_fail_alloc_page+0xe7/0x130
[   68.467256][ T7043]  prepare_alloc_pages+0x3c2/0x610
[   68.467271][ T7043]  ? rcu_is_watching+0x12/0xc0
[   68.467290][ T7043]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[   68.467304][ T7043]  ? rcu_is_watching+0x12/0xc0
[   68.467317][ T7043]  ? trace_mm_page_alloc+0x11f/0x1a0
[   68.467331][ T7043]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[   68.467344][ T7043]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   68.467356][ T7043]  ? is_bpf_text_address+0x8a/0x1a0
[   68.467368][ T7043]  ? bpf_ksym_find+0x127/0x1c0
[   68.467383][ T7043]  ? is_bpf_text_address+0x94/0x1a0
[   68.467395][ T7043]  ? __kernel_text_address+0xd/0x40
[   68.467407][ T7043]  ? unwind_get_return_address+0x59/0xa0
[   68.467424][ T7043]  alloc_pages_bulk_noprof+0x71c/0x1410
[   68.467435][ T7043]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   68.467449][ T7043]  ? policy_nodemask+0xea/0x4e0
[   68.467462][ T7043]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[   68.467474][ T7043]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   68.467492][ T7043]  kasan_populate_vmalloc+0xf1/0x1f0
[   68.467505][ T7043]  alloc_vmap_area+0x959/0x29c0
[   68.467524][ T7043]  ? __pfx_alloc_vmap_area+0x10/0x10
[   68.467541][ T7043]  __get_vm_area_node+0x1ca/0x330
[   68.467558][ T7043]  __vmalloc_node_range_noprof+0x271/0x14b0
[   68.467574][ T7043]  ? vhost_task_create+0x1d2/0x2e0
[   68.467584][ T7043]  ? local_lock_release+0x99/0x140
[   68.467601][ T7043]  ? vhost_task_create+0x1d2/0x2e0
[   68.467610][ T7043]  ? rcu_read_unlock+0x17/0x60
[   68.467624][ T7043]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   68.467645][ T7043]  ? vhost_task_create+0x1d2/0x2e0
[   68.467655][ T7043]  __vmalloc_node_noprof+0xad/0xf0
[   68.467670][ T7043]  ? vhost_task_create+0x1d2/0x2e0
[   68.467681][ T7043]  copy_process+0x2c70/0x7690
[   68.467702][ T7043]  ? __pfx_copy_process+0x10/0x10
[   68.467718][ T7043]  ? lockdep_init_map_type+0x5c/0x280
[   68.467729][ T7043]  ? lockdep_init_map_type+0x5c/0x280
[   68.467739][ T7043]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   68.467754][ T7043]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   68.467771][ T7043]  vhost_task_create+0x1d2/0x2e0
[   68.467781][ T7043]  ? __pfx_vhost_task_create+0x10/0x10
[   68.467796][ T7043]  ? __pfx_vhost_task_fn+0x10/0x10
[   68.467812][ T7043]  kvm_mmu_post_init_vm+0x1b7/0x380
[   68.467826][ T7043]  kvm_arch_vcpu_ioctl_run+0x66/0x1980
[   68.467842][ T7043]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   68.467859][ T7043]  kvm_vcpu_ioctl+0x5eb/0x1690
[   68.467874][ T7043]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   68.467888][ T7043]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   68.467901][ T7043]  ? do_vfs_ioctl+0x128/0x14f0
[   68.467917][ T7043]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   68.467933][ T7043]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   68.467952][ T7043]  ? hook_file_ioctl_common+0x145/0x410
[   68.467972][ T7043]  ? selinux_file_ioctl+0x180/0x270
[   68.467984][ T7043]  ? selinux_file_ioctl+0xb4/0x270
[   68.467998][ T7043]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   68.468012][ T7043]  __x64_sys_ioctl+0x18e/0x210
[   68.468029][ T7043]  do_syscall_64+0xcd/0x4c0
[   68.468045][ T7043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.468055][ T7043] RIP: 0033:0x7f278738ebe9
[   68.468064][ T7043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.468075][ T7043] RSP: 002b:00007f278824a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   68.468085][ T7043] RAX: ffffffffffffffda RBX: 00007f27875b5fa0 RCX: 00007f278738ebe9
[   68.468092][ T7043] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   68.468098][ T7043] RBP: 00007f278824a090 R08: 0000000000000000 R09: 0000000000000000
[   68.468104][ T7043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.468110][ T7043] R13: 00007f27875b6038 R14: 00007f27875b5fa0 R15: 00007ffcae842b18
[   68.468122][ T7043]  </TASK>
[   68.680537][ T7046] md: md2 stopped.
[   68.795271][ T7051] FAULT_INJECTION: forcing a failure.
[   68.795271][ T7051] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.801031][ T7051] CPU: 3 UID: 0 PID: 7051 Comm: syz.2.317 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   68.801085][ T7051] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.801096][ T7051] Call Trace:
[   68.801102][ T7051]  <TASK>
[   68.801109][ T7051]  dump_stack_lvl+0x16c/0x1f0
[   68.801140][ T7051]  should_fail_ex+0x512/0x640
[   68.801160][ T7051]  _copy_from_user+0x2e/0xd0
[   68.801180][ T7051]  kstrtouint_from_user+0xd6/0x1d0
[   68.801205][ T7051]  ? __pfx_kstrtouint_from_user+0x10/0x10
[   68.801227][ T7051]  ? __lock_acquire+0xb97/0x1ce0
[   68.801266][ T7051]  proc_fail_nth_write+0x83/0x220
[   68.801288][ T7051]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   68.801315][ T7051]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   68.801333][ T7051]  vfs_write+0x2a0/0x1150
[   68.801355][ T7051]  ? __pfx___mutex_lock+0x10/0x10
[   68.801372][ T7051]  ? __pfx_vfs_write+0x10/0x10
[   68.801398][ T7051]  ? __fget_files+0x20e/0x3c0
[   68.801424][ T7051]  ksys_write+0x12a/0x250
[   68.801441][ T7051]  ? __pfx_ksys_write+0x10/0x10
[   68.801467][ T7051]  do_syscall_64+0xcd/0x4c0
[   68.801485][ T7051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.801502][ T7051] RIP: 0033:0x7f278738d69f
[   68.801516][ T7051] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   68.801533][ T7051] RSP: 002b:00007f278824a030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   68.801549][ T7051] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f278738d69f
[   68.801560][ T7051] RDX: 0000000000000001 RSI: 00007f278824a0a0 RDI: 0000000000000004
[   68.801575][ T7051] RBP: 00007f278824a090 R08: 0000000000000000 R09: 0000000000000000
[   68.801585][ T7051] R10: 00000000020a242a R11: 0000000000000293 R12: 0000000000000001
[   68.801595][ T7051] R13: 00007f27875b6038 R14: 00007f27875b5fa0 R15: 00007ffcae842b18
[   68.801623][ T7051]  </TASK>
[   68.823010][ T5982] Bluetooth: hci1: command 0x0c1a tx timeout
[   68.893378][ T5982] Bluetooth: hci3: command 0x0c1a tx timeout
[   68.893469][ T5972] Bluetooth: hci2: command 0x0c1a tx timeout
[   68.900649][ T7045] ------------[ cut here ]------------
[   68.902426][ T7045] ODEBUG: free active (active state 0) object: ffff888036170448 object type: work_struct hint: mddev_delayed_delete+0x0/0x20
[   68.906582][ T6056] ------------[ cut here ]------------
[   68.908272][ T7045] WARNING: CPU: 3 PID: 7045 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0
[   68.908405][ T6056] refcount_t: underflow; use-after-free.
[   68.912370][ T7045] Modules linked in:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   68.917907][ T7045] CPU: 3 UID: 0 PID: 7045 Comm: syz.4.315 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   68.921938][ T6056] WARNING: CPU: 1 PID: 6056 at lib/refcount.c:28 refcount_warn_saturate+0x14a/0x210
[   68.922615][ T7045] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.926347][ T6056] Modules linked in:
[   68.930803][ T7045] RIP: 0010:debug_print_object+0x1a2/0x2b0
[   68.930830][ T7045] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd e0 21 16 8c 4c 89 e6 48 c7 c7 60 16 16 8c e8 2f 44 90 fc 90 <0f> 0b 90 90 58 83 05 d6 44 c1 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[   68.930846][ T7045] RSP: 0018:ffffc90003d17b48 EFLAGS: 00010282
[   68.930861][ T7045] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817a3358
[   68.930873][ T7045] RDX: ffff888056c1c880 RSI: ffffffff817a3365 RDI: 0000000000000001
[   68.930885][ T7045] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[   68.930895][ T7045] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c161d00
[   68.930906][ T7045] R13: ffffffff8bac1840 R14: ffffffff88576780 R15: ffffc90003d17c48
[   68.930918][ T7045] FS:  00005555695ab500(0000) GS:ffff8880d69c4000(0000) knlGS:0000000000000000
[   68.930950][ T7045] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   68.930963][ T7045] CR2: 00007f331b1b1ea8 CR3: 0000000048d42000 CR4: 0000000000352ef0
[   68.930974][ T7045] Call Trace:
[   68.930981][ T7045]  <TASK>
[   68.930987][ T7045]  ? __pfx_mddev_delayed_delete+0x10/0x10
[   68.931013][ T7045]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   68.931039][ T7045]  debug_check_no_obj_freed+0x4b7/0x600
[   68.931069][ T7045]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[   68.931091][ T7045]  ? kasan_quarantine_put+0x10a/0x240
[   68.931114][ T7045]  ? kfree+0x2b4/0x4d0
[   68.931138][ T7045]  ? percpu_ref_exit+0xfb/0x150
[   68.931165][ T7045]  kfree+0x28f/0x4d0
[   68.931187][ T7045]  ? percpu_ref_exit+0xfb/0x150
[   68.931207][ T7045]  ? disk_release+0x2a4/0x410
[   68.931234][ T7045]  ? __pfx_md_free_disk+0x10/0x10
[   68.931253][ T7045]  disk_release+0x2a4/0x410
[   68.931274][ T7045]  ? __pfx_disk_release+0x10/0x10
[   68.931298][ T7045]  device_release+0xa1/0x240
[   68.931319][ T7045]  kobject_put+0x1e7/0x5a0
[   68.931338][ T7045]  ? __pfx_blkdev_release+0x10/0x10
[   68.931361][ T7045]  put_device+0x1f/0x30
[   68.931380][ T7045]  blkdev_release+0x15/0x20
[   68.931400][ T7045]  __fput+0x402/0xb70
[   68.931424][ T7045]  ? _raw_spin_unlock_irq+0x23/0x50
[   68.931447][ T7045]  task_work_run+0x150/0x240
[   68.931467][ T7045]  ? __pfx_task_work_run+0x10/0x10
[   68.933277][ T6056] CPU: 1 UID: 0 PID: 6056 Comm: kworker/1:4 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   68.935571][ T7045]  ? __pfx___do_sys_close_range+0x10/0x10
[   68.941499][ T6056] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.941509][ T6056] Workqueue: md_misc mddev_delayed_delete
[   68.944166][ T7045]  exit_to_user_mode_loop+0xeb/0x110
[   68.944217][ T7045]  do_syscall_64+0x3f6/0x4c0
[   68.944264][ T7045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.944284][ T7045] RIP: 0033:0x7f331af8ebe9
[   68.944299][ T7045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.944315][ T7045] RSP: 002b:00007ffd73ba1858 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   68.944332][ T7045] RAX: 0000000000000000 RBX: 0000000000010b93 RCX: 00007f331af8ebe9
[   68.944345][ T7045] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[   68.944357][ T7045] RBP: 00007f331b1b7da0 R08: 0000000000000001 R09: 0000001773ba1b4f
[   68.944369][ T7045] R10: 0000001b2c420000 R11: 0000000000000246 R12: 00007f331b1b5fac
[   68.944381][ T7045] R13: 00007f331b1b5fa0 R14: ffffffffffffffff R15: 00007ffd73ba1970
[   68.944405][ T7045]  </TASK>
[   68.944415][ T7045] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   68.944425][ T7045] CPU: 3 UID: 0 PID: 7045 Comm: syz.4.315 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[   68.944446][ T7045] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.944455][ T7045] Call Trace:
[   68.944461][ T7045]  <TASK>
[   68.944467][ T7045]  dump_stack_lvl+0x3d/0x1f0
[   68.944494][ T7045]  vpanic+0x6e8/0x7a0
[   68.944521][ T7045]  ? __pfx_vpanic+0x10/0x10
[   68.944552][ T7045]  ? debug_print_object+0x1a2/0x2b0
[   68.944577][ T7045]  panic+0xca/0xd0
[   68.944602][ T7045]  ? __pfx_panic+0x10/0x10
[   68.944635][ T7045]  ? check_panic_on_warn+0x1f/0xb0
[   68.944652][ T7045]  check_panic_on_warn+0xab/0xb0
[   68.944668][ T7045]  __warn+0xf6/0x3c0
[   68.944684][ T7045]  ? debug_print_object+0x1a2/0x2b0
[   68.944705][ T7045]  report_bug+0x3c3/0x580
[   68.944728][ T7045]  ? debug_print_object+0x1a2/0x2b0
[   68.944750][ T7045]  handle_bug+0x184/0x210
[   68.944767][ T7045]  exc_invalid_op+0x17/0x50
[   68.944785][ T7045]  asm_exc_invalid_op+0x1a/0x20
[   68.944801][ T7045] RIP: 0010:debug_print_object+0x1a2/0x2b0
[   68.944822][ T7045] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd e0 21 16 8c 4c 89 e6 48 c7 c7 60 16 16 8c e8 2f 44 90 fc 90 <0f> 0b 90 90 58 83 05 d6 44 c1 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[   68.944838][ T7045] RSP: 0018:ffffc90003d17b48 EFLAGS: 00010282
[   68.944852][ T7045] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817a3358
[   68.944863][ T7045] RDX: ffff888056c1c880 RSI: ffffffff817a3365 RDI: 0000000000000001
[   68.944874][ T7045] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[   68.944884][ T7045] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c161d00
[   68.944894][ T7045] R13: ffffffff8bac1840 R14: ffffffff88576780 R15: ffffc90003d17c48
[   68.944906][ T7045]  ? __pfx_mddev_delayed_delete+0x10/0x10
[   68.944936][ T7045]  ? __warn_printk+0x198/0x350
[   68.944961][ T7045]  ? __warn_printk+0x1a5/0x350
[   68.944990][ T7045]  ? debug_print_object+0x1a1/0x2b0
[   68.945009][ T7045]  ? __pfx_mddev_delayed_delete+0x10/0x10
[   68.945058][ T7045]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   68.945087][ T7045]  debug_check_no_obj_freed+0x4b7/0x600
[   68.945117][ T7045]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[   68.945140][ T7045]  ? kasan_quarantine_put+0x10a/0x240
[   68.945163][ T7045]  ? kfree+0x2b4/0x4d0
[   68.945187][ T7045]  ? percpu_ref_exit+0xfb/0x150
[   68.945216][ T7045]  kfree+0x28f/0x4d0
[   68.945239][ T7045]  ? percpu_ref_exit+0xfb/0x150
[   68.945263][ T7045]  ? disk_release+0x2a4/0x410
[   68.945291][ T7045]  ? __pfx_md_free_disk+0x10/0x10
[   68.945312][ T7045]  disk_release+0x2a4/0x410
[   68.945335][ T7045]  ? __pfx_disk_release+0x10/0x10
[   68.945358][ T7045]  device_release+0xa1/0x240
[   68.945380][ T7045]  kobject_put+0x1e7/0x5a0
[   68.945397][ T7045]  ? __pfx_blkdev_release+0x10/0x10
[   68.945421][ T7045]  put_device+0x1f/0x30
[   68.945441][ T7045]  blkdev_release+0x15/0x20
[   68.945463][ T7045]  __fput+0x402/0xb70
[   68.945490][ T7045]  ? _raw_spin_unlock_irq+0x23/0x50
[   68.945516][ T7045]  task_work_run+0x150/0x240
[   68.945537][ T7045]  ? __pfx_task_work_run+0x10/0x10
[   68.945557][ T7045]  ? __pfx___do_sys_close_range+0x10/0x10
[   68.945589][ T7045]  exit_to_user_mode_loop+0xeb/0x110
[   68.945609][ T7045]  do_syscall_64+0x3f6/0x4c0
[   68.945627][ T7045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.945644][ T7045] RIP: 0033:0x7f331af8ebe9
[   68.945657][ T7045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.945674][ T7045] RSP: 002b:00007ffd73ba1858 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   68.945690][ T7045] RAX: 0000000000000000 RBX: 0000000000010b93 RCX: 00007f331af8ebe9
[   68.945701][ T7045] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[   68.945711][ T7045] RBP: 00007f331b1b7da0 R08: 0000000000000001 R09: 0000001773ba1b4f
[   68.945722][ T7045] R10: 0000001b2c420000 R11: 0000000000000246 R12: 00007f331b1b5fac
[   68.945733][ T7045] R13: 00007f331b1b5fa0 R14: ffffffffffffffff R15: 00007ffd73ba1970
[   68.945756][ T7045]  </TASK>
[   68.947626][ T7045] Kernel Offset: disabled

VM DIAGNOSIS:
07:35:28  Registers:
info registers vcpu 0

CPU#0
RAX=00000000000d798d RBX=0000000000000000 RCX=ffffffff8b92bc29 RDX=0000000000000000
RSI=ffffffff8de4e881 RDI=ffffffff8c161100 RBP=fffffbfff1c52ef8 RSP=ffffffff8e207e08
R8 =0000000000000001 R9 =ffffed100d486655 R10=ffff88806a4332ab R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e2977c0 R14=ffffffff90ab0090 R15=0000000000000000
RIP=ffffffff8b92a78f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d66c4000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f2788248568 CR3=0000000054dc8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff91533ce6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff91533ce6 00007fff91533cec
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ec12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ec12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ec12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ec12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ec12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ec12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ed874a8 00007f441ed874a0 00007f441ed87498 00007f441ed87470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441f8ed100 00007f441ed87460 00007f441ed80004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ed874b8 00007f441ed874b0 00007f441ed874a8 00007f441ed874a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6084021a6e516a26 6e74b66642cf48d1 9d2877dc41133b66 93cbdcfb37b66ac5
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 17cbc79a4690a12c 64d0acf25fb523b0 4a62f8010543b36e 8d069674159b2dd0
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a13b90c600d5356c 8b2f10084f139b0b ff3cf31e4009464a 0dcd58aa5ba42a83
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1b74c43f15c75e5e 72512c6376fcc3df af729f703e4d1c32 26c4e26e5d066666
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffffff97756768 RBX=0000000000000171 RCX=000000000000032d RDX=0000000000000344
RSI=000000000000032d RDI=ffffffff976aeae8 RBP=0000000000000030 RSP=ffffc90004137590
R8 =ffffffff95dd7bc0 R9 =00000000000001bd R10=ffffc90004137730 R11=0000000000000000
R12=ffffffff81974e80 R13=ffffc90004137630 R14=ffffffff81975990 R15=ffffffff976aeae8
RIP=ffffffff81976f33 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d67c4000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c369427 CR3=0000000048d42000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004090001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd73ba1c06
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd73ba1c06 00007ffd73ba1c0c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f331b012e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f331b012e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f331b012e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f331b012e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f331b012ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f331b012fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 aef888bb93f608ca b59518b00d7dcf25 5b563c4d404e8816 94033186053bf586
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d139c696933f9e4b d257074bc73f1186 b4b3d397051c0004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 32601c63e6c382c5 924774a378336416 3744072c40db882d 56c675af0668e85f
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 de414e48d314c662 e2df0fb4d8543ad9 ecbc730c3978f95e 8675acabfb5ac2ae
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5434a00a77245557 6dcc6db8c7b04311 4e42642b10d9b09e ee32601c63e6c382
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 c5924774a3783364 163744072c40db88 2d56c675af0668e8 5fd139c696933f9e
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4bd257074bc73f11 86b4b3d397051cf3 b2e3659f875f64a5 47aef888bb93f608
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000001 RBX=ffff88806a741e80 RCX=ffffffff81af8e41 RDX=ffff8880365c4880
RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc90003d37578
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=dffffc0000000000 R13=ffffed100d4e83d1 R14=0000000000000001 R15=0000000000000003
RIP=ffffffff81bb8cb1 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f278824a6c0 ffffffff 00c00000
GS =0000 ffff8880d68c4000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c34c8fd CR3=00000000516af000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000fff Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006800000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000f8000000000 00000f8000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000f8000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2787412ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2787412fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f27875874a8 00007f27875874a0 00007f2787587498 00007f2787587470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f27880ed100 00007f2787587460 00007f2787587478 00007f27875874c0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f27875874b8 00007f27875874b0 00007f27875874a8 00007f27875874a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000006c RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85636695 RDI=ffffffff9b106160 RBP=ffffffff9b106120 RSP=ffffc90003d174a0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=000000000000006c R14=ffffffff9b106120 R15=ffffffff85636630
RIP=ffffffff856366bf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00005555695ab500 ffffffff 00c00000
GS =0000 ffff8880d69c4000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f331b1b1ea8 CR3=0000000048d42000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff91533ce6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff91533ce6 00007fff91533cec
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ec12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ec12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ec12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ec12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ec12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ec12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ed874a8 00007f441ed874a0 00007f441ed87498 00007f441ed87470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441f8ed100 00007f441ed87460 00007f441ed80004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f441ed874b8 00007f441ed874b0 00007f441ed874a8 00007f441ed874a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6084021a6e516a26 6e74b66642cf48d1 9d2877dc41133b66 93cbdcfb37b66ac5
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 17cbc79a4690a12c 64d0acf25fb523b0 4a62f8010543b36e 8d069674159b2dd0
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a13b90c600d5356c 8b2f10084f139b0b ff3cf31e4009464a 0dcd58aa5ba42a83
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1b74c43f15c75e5e 72512c6376fcc3df af729f703e4d1c32 26c4e26e5d066666
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000