last executing test programs:

42.063471759s ago: executing program 2 (id=2594):
r0 = syz_open_dev$vbi(0x0, 0x2, 0x2)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000001c0)={0x6, @pix={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}})

42.063372124s ago: executing program 2 (id=2595):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000007c0), 0x1, 0x0)
ioctl$SOUND_MIXER_READ_RECSRC(r0, 0x80044dff, &(0x7f0000000840)) (fail_nth: 3)

41.971111774s ago: executing program 2 (id=2597):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/key-users\x00', 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000240)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha512\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, 0x1, 0x4, 0x301, 0x0, 0x0, {0xa, 0x0, 0x5}, [@NFULA_CFG_CMD={0x5, 0x1, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x20000000)
r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg/2:0:0:0\x00', 0x40, 0x0)
ioctl$SG_GET_TIMEOUT(r3, 0x2202, 0x0)
r4 = accept4(r1, 0x0, 0x0, 0x0)
recvmsg$can_raw(r4, &(0x7f0000000640)={0x0, 0x0, &(0x7f000001a4c0)=[{&(0x7f0000019380)=""/4096, 0x1000}], 0x1}, 0x2)
mknod$loop(&(0x7f0000000200)='./file0\x00', 0x2480, 0x0)
r5 = syz_io_uring_setup(0x31c5, &(0x7f0000000140)={0x0, 0xd73c, 0x2}, &(0x7f00000001c0), &(0x7f00000003c0))
syz_io_uring_setup(0x3c60, &(0x7f0000000480)={0x0, 0x974b, 0x27, 0x1, 0x0, 0x0, r5}, &(0x7f00000002c0), &(0x7f0000000300))
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)={0x3c, r7, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_SETUP={0x14, 0x70, [@NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC={0x5, 0x2, 0x1}, @NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC={0x5, 0x6, 0x1}]}]}, 0x3c}}, 0x8004)
syz_emit_ethernet(0x96, &(0x7f0000000280)={@local, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f81fcb", 0x60, 0x3a, 0x0, @private0, @mcast2, {[], @param_prob={0x4, 0x0, 0x0, 0x0, {0x0, 0x6, "4aa1d3", 0x0, 0x0, 0x0, @private1, @ipv4={'\x00', '\xff\xff', @loopback}, [@routing={0x3c}, @srh={0x0, 0x2, 0x4, 0x1, 0x0, 0x0, 0x0, [@ipv4={'\x00', '\xff\xff', @remote}]}, @srh={0x2f}, @dstopts]}}}}}}}, 0x0)
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000000)='ubifs\x00', 0x0, 0x0)

41.76259906s ago: executing program 2 (id=2600):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000180)='.\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x45110, 0x0) (async)
getgroups(0x4, &(0x7f0000000500)=[0x0, 0xee01, 0xee00, 0x0]) (async)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240), 0x400, &(0x7f0000000580)={[{@huge_advise}, {@usrquota_inode_hardlimit={'usrquota_inode_hardlimit', 0x3d, [0x34]}}]})
io_uring_enter(0xffffffffffffffff, 0x6b9d, 0xd3d6, 0x10, &(0x7f00000001c0)={[0xf93]}, 0x8) (async)
syz_io_uring_setup(0x23d, &(0x7f0000000080)={0x0, 0x311a, 0x20}, &(0x7f0000000000)=<r0=>0x0, &(0x7f0000000280)=<r1=>0x0) (async)
r2 = syz_open_dev$video4linux(&(0x7f0000000040), 0x40651, 0x0)
r3 = dup(r2)
ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r3, 0xc0305616, &(0x7f0000000240)={0x0, {0x3, 0x6}}) (async)
syz_io_uring_submit(r0, r1, &(0x7f0000000200)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x77359400}})
syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_TIMEOUT_REMOVE) (async)
syz_io_uring_setup(0x497, &(0x7f0000000000)={0x0, 0x286f, 0x800, 0x2, 0x3bb}, &(0x7f0000000340)=<r4=>0x0, &(0x7f00000000c0)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000100)=@IORING_OP_SYMLINKAT={0x26, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000440)='./bus/file0\x00', &(0x7f0000000480)='./bus\x00', 0x0, 0x0, 0x1}) (async)
r6 = epoll_create(0x93) (async)
r7 = syz_io_uring_setup(0x416f, &(0x7f0000000780)={0x0, 0xfffffffd, 0x10100, 0x200, 0xed}, &(0x7f0000000380), &(0x7f00000000c0)) (async)
r8 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r8, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10) (async)
sendmsg$nl_generic(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="200000005200010a"], 0x20}}, 0x0) (async, rerun: 64)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) (rerun: 64)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r9)
ioctl$DRM_IOCTL_AGP_ALLOC(r3, 0xc0206434, &(0x7f00000003c0)={0x6, <r10=>0x0, 0x99e9bde34d6537b5})
ioctl$DRM_IOCTL_SG_FREE(r3, 0x40106439, &(0x7f0000000400)={0xa91, r10}) (async)
syz_io_uring_submit(r0, r5, &(0x7f0000000100)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x2, 0x0, r6, &(0x7f00000000c0)={0x2000}, 0xffffffffffffffff, 0x3, 0x0, 0x1, {0x0, r9}})
r11 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
poll(&(0x7f0000000000)=[{r11, 0x4}], 0x1, 0x80000000) (async)
readv(r11, &(0x7f0000001f40)=[{0x0}, {&(0x7f00000004c0)=""/36, 0x24}, {&(0x7f0000000540)=""/35, 0x23}, {0x0, 0x2400}, {0x0}], 0x5)

40.961373889s ago: executing program 2 (id=2610):
r0 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000440)={0xffffffffffffffff}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10, 0x0, r0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000c80)={r1, 0x2000012, 0x8ff, 0xb8, &(0x7f00000004c0)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0x7ffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c000000100001040000000000000074a3102b27", @ANYRES32=0x0, @ANYBLOB="00000000141000001c00128009000100626f6e64000000000c0002800800130008"], 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES16=r2, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(r2, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)=@delqdisc={0x2c, 0x25, 0x200, 0x70bd2a, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0xb, 0x10}, {0x2, 0xf}, {0xffef, 0xc}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
pipe(&(0x7f00000000c0)={<r4=>0xffffffffffffffff})
r5 = syz_open_procfs(0x0, &(0x7f00000003c0)='fd\x00')
getdents64(r5, &(0x7f00000000c0)=""/44, 0x2c)
setsockopt$nfc_llcp_NFC_LLCP_RW(r5, 0x118, 0x0, &(0x7f0000000240)=0x6, 0x4)
ioprio_set$uid(0x3, 0x0, 0x0)
io_setup(0x3ff, &(0x7f0000000500)=<r6=>0x0)
io_submit(r6, 0x1, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0}])
sendmsg$ETHTOOL_MSG_TSINFO_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYRESHEX=0x0, @ANYRESDEC=r0, @ANYRES8], 0x34}, 0x1, 0x0, 0x0, 0x40000010}, 0x0)
r7 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000180), 0x129202, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r8 = syz_open_dev$dri(&(0x7f0000000040), 0x20, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r8, 0xc00864bf, &(0x7f0000000140)={<r9=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TRANSFER(r8, 0xc02064cc, &(0x7f0000000080)={r9, r9, 0x9, 0x2, 0x2})
ioctl$SNDCTL_DSP_SETFMT(r7, 0xc0045005, &(0x7f0000000000)=0x1000)
r10 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x4000000084002, 0x0)
r11 = dup(r10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r11, 0x0)
mmap$dsp(&(0x7f00005ce000/0x11000)=nil, 0x11000, 0x0, 0x50, r11, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r7, 0xc0045005, &(0x7f0000000000)=0x4000)

40.760262168s ago: executing program 2 (id=2612):
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd', @ANYRESHEX, @ANYBLOB=',rootmode=', @ANYRESDEC=0x0])
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0)
syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x0)

40.654140555s ago: executing program 32 (id=2612):
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd', @ANYRESHEX, @ANYBLOB=',rootmode=', @ANYRESDEC=0x0])
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0)
syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x0)

24.73117441s ago: executing program 4 (id=2763):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0xc00, &(0x7f0000000080)={[{@quota}, {@usrquota_inode_hardlimit={'usrquota_inode_hardlimit', 0x3d, [0x37]}}]})
chdir(&(0x7f0000000240)='./file0\x00')
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'wg2\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0x3}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x1}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
ioctl$sock_ifreq(r1, 0x8910, &(0x7f0000000000)={'ip6gretap0\x00', @ifru_addrs=@can={0x1d, r4}})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000005040)={'erspan0\x00', &(0x7f0000004fc0)={'ip_vti0\x00', <r5=>0x0, 0x20, 0x8, 0x5, 0x6, {{0xc, 0x4, 0x1, 0x29, 0x30, 0x66, 0x0, 0x8, 0x4, 0x0, @broadcast, @broadcast, {[@timestamp_addr={0x44, 0xc, 0xed, 0x1, 0x3, [{@loopback, 0x4}]}, @ra={0x94, 0x4, 0x1}, @timestamp={0x44, 0x8, 0x32, 0x0, 0x6, [0x5]}, @noop, @end]}}}}})
sendmmsg$inet6(r0, &(0x7f0000005140)=[{{&(0x7f0000002080)={0xa, 0x4e22, 0x5, @private0={0xfc, 0x0, '\x00', 0x1}, 0xffff}, 0x1c, &(0x7f0000004440)=[{&(0x7f0000002180)="413a6c2dafeb3e73afab9dafbce9fc17c06c3be3a611823a8d4051c506db239acb42d96cf8befa79100b45d9b8e4095a3950054af361103f5464b59364ace1923169124a417caead4a70b2ae999c35ced80d48d4f6264cfc27955de740d3b240e4e4f3d4c21bda476b85bcf116101c924f36efb52414b44c0000699e314ed83a246cad7b786ede1178536f80bcfc2ad1fb58550100ebadd56da4151e9953d81e4dc420d70db6689b19ed5edaf6eb932efc7840a33c414cd3c864994f357cb29a0ea35f73c06bf8cc5b5c98004df5b5ff5fe4457f18a5bf345f7860a8c9d002aa1975a4", 0xe3}, {&(0x7f0000002280)="c633b95b7d3548a14d49342ed466b0cbf20e5610a73ba49288a9e95a0e1ac26198b584ecdd20b99fd516abf7c96e6d9ad2b993bb6fa9a2054cd661393eb23326fccad623e676610eea950e753d848f0ed40b34b9997fd99605cbc7999f6a6e8b132c9345e5bc57e9f177cbaedc1dc79749ab3e39cebf02764fbc4a56f2f48d5201a4a15e8248a0bcce649b3ff3d94365f0dceb9d2c1e68c324b0d7593c708fa6f1f23cf97d2c2d23a128e1eb8e9d97112c9faee38dfe186391e0bd6c3fb030b32d2dccbc61f60b824e89d39d02ab", 0xce}, {&(0x7f00000020c0)="d88ff21bdb47768c7eaa6012b2279dac169700ccea5b2364567d4cb72d775abf1a60c245a0459198f8ceee19803305497457c3af73253298b642", 0x3a}, {&(0x7f0000002380)="09b10b1532704f7237fd66af05445ea16e1b70209bba670d49e4411b29af15d52f5bc013304aff13bb29128e31d15c0739a54d0a5d06deddd7298db7e5ee4965c202bc1072d1f0e3ed42adbf302e233fc46c6b58f1c2ae354ad61f3e789fb18cdaddc0fc1f4f399b8b90cc32b137db8c09060bf956dbe88ba8fe8d1028853a9806108d8fe4f2238823c4579aa674abeb973ede00e73077e403721e5e00dca430d19fe54556f18de1d80fb5d392f436cf1945bf770f6091269a4e3269ed054135d77cb054c22aa4a1c9bec2326dc671c5c79321a55e4be431ec6308dbb49a1637c7dce9ad16019efe39345e89c22bc82f9c556b376ed043019c7063945023ef1a6be0dbb7186ce249c6fe50e67b63ace89f714c2402904a455dca2c632745e89ae3bbef398534099c8afb7f4fbe8823d64028281b70c94a4c0871297172765075adf8daac82bdafa7aedad3a72d89bba3338835756bf00738843b8ce2ed0594d40bb67bc16898fd52c8d27f089887b973ed739244e9fc6ff23a60a778297ba54827dbc09fb4c6858b90f5d4ee4966376dbf03da63b2cb6985970d59650fe3f83bfa6b4912ba81b0517b083ee6f8a04612bbe5cb788b3cade5caca8780816e11fd6763f0fdb1dd1f939dea0a7cbfdffacf88d92151b34573445d97225d72619fb42ab76f0c438a6a4cf51014e035f00ba5ddb8ce25a7932ecc21da5d3f7551c85f41c9f41a1afcce5c652d5020008fd41fcd990ea8737962edcb148724837d0e64c2da4adc171d6c92bbea48d6c339f810378fd1873a521f64c0ee51fc9c76b69a30004388deb56a8fdda069f85f8cf7847bf66c316f3230d4d94791157c0972c4543e9e68e6bb623e36ebea92264ba603f07cd7177bd0a6473709eea9b8ae5ce9cead86c38ee80f2b1c4cefd9498683deee74e61da593a45db41eadbadd93ccf9707b134d34a3ae56c745cc89943323bca865c33bd568b7fb279a46b685a92c21f07ce1eac7c4d7387697fd38b75dfb1a04725d47d89a68c8912afa3301f97800df15690644d7ce9608b531c8d21d4d36f308b8573dbb6f6dbf136e15bcda21dd44c2fd2517357506dbd6adef33ab21e2a40041047aac2368aa98973e2642c5ac9c7deed1d3181b2bac8d47f4eaf542d6f8e380a827fb4f58f6c4c6fd71d970bfec213ce789d95058991f77142864a653ef9c37b25821b706004034b91b4fa6636456ad859e527bf7d22a2d0c7829f21236a163a0f83100c009624f11d80fe589bee0b55c4b846d3042b659ac31db859d11f6c8f78cd934189c45be62509afb30d7c92168db543a523787c5da449836ff82a6f17e3e3cdb33925427ba8e29072f7224272cd4d3bb7fcea7a3df3e3f1c1a9482c1cae737b612991d0f26b45da622f6c411120d5e25f8be6619449939673704b9781cd1ad5c65a4611b41acca5948a23c1b72d9ed0cea75fdf966b503ecddc20f3b8961c41a3fd162562f5e45a9884695fdf2e29a3fc053b514571d21114d85bdcfa116465c79c3ceebb9568aaa6d8d67f0c432924844680aa4fcee7c7e4e77bb47e47bb7a57133f65eed65f1c3e71ce4b652ae277d1d3451613549f06f74fd73ff21fe003f460c594fb18a878eb4ec807d7bbe65c3bcab5239124bd01f1d198f67efaf6ae92d1f94b3f523e876b69e547fa7acf76812b8063d1eee481e762744fa909b0c291499c99d42e3b65d8b3e200ed739a17a111f7ce64e05352cf8ab493ba3fc7b1af289bc505c8e9b28eac71b4550b3f763d35f89f659ad373c9596dce2b7a5b1bbd9176b20f6d76633d8b21707adbf7f0424ab70ebaf75d08701ad6678f0db90e83385bcb37f0fe124dc5aa4fa034e39fd90d7ce9b0e8d5960adfaa4dcd68c4b63d1ea4de816519522f062eec31379e4dc652ef597bdd7a3c09d7546bf2d7fa2ff0757d71f61d60f5ac31075e05e19f0be8047e1e6929887d367e75de931ffd18f28b5cc8f88770e9c0bf2eb44d23a1a2cebd4534e39a6cd5d86986c28a5760dbdba81724faaecbc8f0c3e5676f1c8ffc3834c97a9dc5ac93b6552d506d7c964fd6953edbf596d95ab83cdd5c999e31603fb3fc7d6156bd6c9942ca1c107083a6284736e8ebe5eebbfead860a6862869ac5da9e3698237133839e19012d229e70f00181deb46f4a868135eb745bd0ce003f361dc45648e0e65b57ea39545e99ab39678d32b7ad87dfff925d5924cc4960fb6db299cf2be2bfbb95f1b6fe23b054b97aee7f5506b337b56720cb6e934b14421380392824fb9cc26aadb0b95c1d54a81c74936438830ec63da90b8981a8b8c7504513dd564c3ec1cd34cfe422333308fe39e1144d7410f1afde54fcbcb3e91e3ddca23ada9895b22c9c18d5b189693f0bac00da5c3503aebed88315b37be5126c5266f3e276b0a06c7863af1a86e70f67aab840ecd1db1574a0928b5fe468132bab4230849dc09a8f6ccf6c899225d10558e78609df98ab514aa1c7f6cccf60dd7ac80da8e7e08d8793f5055f11297cbf15cd98c6aadc9d68e6037bfc992f9c806553bda8e121f8f585948e0c935f59dbcfe1f291bec99a3d68d7bcfe764acd2135e2130af0575aa4360788ec7df8999722c852a8de716c3d4a56c22d99ed8aa20a540a287a8c8123354c35c9af08b5b8c59f969e882917f3db189ca15c5f9f5f2b2f8ac130f3299c95281932803bf1232b8d04db789a047c0cd4f4c7b20c4075e7fad9e9d38ef0abed9bbdc162f107c30c6e17442cb79be118dd50640f5fcc1e5517de44984edb031adb5b0fd36c6a9fde587454d812e1b7ca8e553e267efb8d8603e1d96a18599b4333b27868e6f36ff4a3d9b16e6e8fb943b9e30e2c60e3164a4c81e2efa7f23223d4f938c2a87788027576d961e8a472ef0301954b495e4639a383356a5131cac94370023c7fb4cb6c5afa96f3a96ec6422f22bf7cd31356492148affe480c5459795830a49e92040a21d801c6eef4d0be9e7a1f8733c327cdbaebd3dc520f754e777960ae89ef0c70ceb354bf0bc27ca7812cf3c9ee3ec37d2be88774d381023d3f77365c85c72c81d2dd1291308576f5b9f452938ba9b3cceaa8f78b342ff622faf8b51c6b873ee53cf19d1198e621674c3f08e5a50487fc348312e0ff1249a1c2396db8a76c40b1b94061435e7c740e946d03b8aaccafb3bbaec093a9e01677aea088712f6d257e9a4165ea5bb827e04fe076618714d0122f7e7247208b2bd2197b7c776b6c8f171498c6f68e56dab53988652de504c9eef657fd9a12452ce69e1d987c5aa0f8fe7a9065007fd5e26d5493647a4fab601d9cef98579e38db85bea8c4e54dd87c3dcf3b1848a9a946f621602500056c0cdc17cacfe2547688d5c3fd8b3903f2e8f5668196b079caf578ba6412903b0a44603e77a476a7f14801359db04323ca0ea57fbd97410f10e9d9ea2ded8119a70d1ea4edcd69ebe4cb8e7ea6625b3d22cc7c2f837768f7617a4cf5289292971d8182ff656c19a2cc1b7d9d15ee119b5dca1792c30b4bf8f2fd623e6385cd580687704c7a81546cfb01ac27d6ed3fb9cde83cc887175a9815fcfb7c765294c1955510487424e4eaf795b3ae114367794a213e2973ab39e311a409227d7acc4379b1a6f5593115c18171b610495bd18874d312535b30108bca0fab3bcc440767d826fce053fa7d5a0b29161fdd0c5b7dbf9003f75e5df6e7577c9578ccd525d85412c8cfb21ab03adbdd1bef6a22cd778d7e7252e12ca896c7558be75938c4874a2c9c889bebf7f2349438f8cc9092550676af5ac57b5de56e436733f50a83667a133ffe1fbbef5d637a63221ad27c132db12ee6b6a4bc5ecca369f88e2da61e54f08757f36fd9787cafe1c655c71c81a39e5046441477dc1f63ac9a90dfcc405edaf5f01a47eeccfb202cd974b00b9474985a4d5f1bc1e9e3e0cb908a7a78d96d8ac2e5b0124b8a9e48e7f42192ce1bf07a8201d595bdcb0c6ee1e2b6f6f86bf13655b13c54aa4c2cb3663290361228843b7af756ac8f924590161313f1f69e28288ec113eed9f09241be4bb44d63749d56b14e463e562581fb7906863e83704dc1cf7269957e8213298600e5443082677b275186a8a917159106a4548807d2317c64ca408b4efdb3bdf3a97fd593758048a72ced9c6bcde491e8dc6d46e04db524038ef32d0986b0f3f21ff8da585bd2a7d26b06586588a469abc3571ad7e81ff9c8f9a6a8f922e792675773c72199075a5718feb3d9946df56a45e8e60226c613ccc7fababc691420a93a4ae403965f044ab3976b570fb6d50a5ac6f5d9b2a1834d380ac8f7a6a5726f6202d5a79ba5d9ba565d2909bcf4eb4e1086c439db9d7379e77def3889e67a0c07d0c882463618d928bc785d9d499ef1c9c86d8e28bff477e578ab197aa3e1b7ed0053bbc47664f115d87e86ffed9dce34ae490f08c9adaf35632b295dcb35998a59eda7cd917bfb432d938880361c4bf37bb187ba340e608092ac7a2a88cba14ff026008cb553cfcffa610708fd5ee9bfed874d7bac8d28fb275af676f6fab1b5e8b8b49fddc92b51dcfa145103467ccee51eb2bc7e9b779485c6934155c05905f614826566824cba264f3fc0887379c090484e7bc593d2e304e6b61e28a6fe36e68b3b089d657e923348a02aac8b649e44ce4a7da98ef25a6f76c8ba8a1a07252d4308f763d079f3ecb727c45a0f6afd9fa8f40c8c3d31bdc636a1766ce6a1a3d7a345dd69fdc9bdfbe5cb57fd83149cd79d18e1112c18e360ab4558cd66686689c40202b11a31d6f14a850d5b6f723267792d195f494aa12823f91548d591ffc76c650f835bbf74cb20e635bcbd2850814259a903f73d27a7c7efb5439c5eec299dda1be5aef5b73d123ebfca9edeb541f6b438b53414e3aed451995abbaaae0d510bdac26dcb6f398d807862600137f46c390261ad4b84f74b7c278a8947620315a11a27a5fd0e3d2eddb8d26c64ad9e0de6c3d1cb5c9d35653ce37e7c2cf9a623bddeb47cc0b08f60b49ab011835b7dc6c8f03ca0f461cf4cdf512eae9b5d78ad2a2d258bfa08b2d50f6d2425dd5e40053b28e13cca209ce5ea1f56b156eeb4c141fb56d34620619fcb0f7bc72c9a99d9ca1bf136b5b478b85eef8896cd5f80db3367f55befa05eb7aafc2dc7b13f5c5386a395fe424c9ff8f13a7fcad175080f04d2f3099fa7da31d0fdf086f618b3f147f282fd433d6403aadcbfc8b4f91903989fb1dd1ff9aff555294435661749b7b69a005d947e62469cd291728bdf18fdcb3a9da659ed5235d44f3718e048e70c59c58861933e8a52db5bbe0bea6b259c39da8e5ce069288fdbb233c68cc3139acfe51888269faaa759668483bc64d39e9a9c17a18b56fe3c7e3a42683c1a80e39f6a5bdd67e81b75d7ab9561c76c143266a6b95802c15bd3add297ab6d707c2b59a8c89d107fcf5616652d7d3bd372d27a91bb3de6e07fcca66282d081f736f33d178f29c64b1717bdf3b669fe0325d4e267716fc8f8fd18e30b6aed25122ddb58dcf6e7b64f271772351634fcde72655afa740fe23f03c7cd4b39eab8612dfc0b910024b755de7ba84dd4a23acdbc09deb1f04cab4f232f5b985fc4559c9621f4a9cbdac08094e54e129fbc9bffeb4bba67a4423495b8e753f84213a4e35836171a73e85772114b5b1d24c918a7b54c1bdd2137e65e6f70989808e65c6bad8f454dc1bb84882118351f4e82b2b660fda6b5940e4f63a1d967140553490e6b87c74fd02c953a2b5fd5c8f5ed06396b8cbe61c8274c9165abee4a0b9", 0x1000}, {&(0x7f0000003380)="84d44d843f4ed0a1cd7fb386bef0d70962d35814ec59b5d9ead0ef8c1922ac9d159964c6d07db1c45bcb024debfda281ae4c1f1844fea45abcbb26e0539b57bd9eec52f1875c19845dc6a01a9f64aadbf57f87e58e0f079243674966af3833ce3ad8e4c273e308f14edd723fc90c96d327ff75274565528f5a98b1404f14cc4978615cfe8a5f113f7720ee43f2d13e677c999ea05ab7b1f484fe17bea50ebf84361ff4065f68ec49eaa21c3b31398bcf26d190a24038021a3f2395ba41", 0xbd}, {&(0x7f0000003440)="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", 0x1000}], 0x6, &(0x7f00000044c0)=[@pktinfo={{0x24, 0x29, 0x32, {@mcast1}}}, @rthdr={{0x38, 0x29, 0x39, {0x33, 0x4, 0x1, 0x4, 0x0, [@mcast1, @private2={0xfc, 0x2, '\x00', 0x1}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x7}}, @dontfrag={{0x14, 0x29, 0x3e, 0x7ff}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0xcd0}}, @pktinfo={{0x24, 0x29, 0x32, {@private0, r4}}}], 0xd0}}, {{&(0x7f0000002100)={0xa, 0x4e21, 0x40, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, &(0x7f0000004600)=[{&(0x7f00000045c0)="0063e65ef0de82d92b7c", 0xa}], 0x1, &(0x7f0000004640)=ANY=[@ANYBLOB="30000000000000002900000036000000330200000000000008010800"/48], 0x30}}, {{0x0, 0x0, &(0x7f00000046c0)=[{&(0x7f0000004680)="81018bbe773d52368bc32bfe80294838bbf874edf71063e39e5acfc1a5fcb40dc6cd6296b42e7219f4afd5a49c", 0x2d}], 0x1, &(0x7f0000004700)=[@dstopts={{0x38, 0x29, 0x37, {0xc1542329258c66a2, 0x3, '\x00', [@enc_lim={0x4, 0x1, 0x7}, @hao={0xc9, 0x10, @mcast1}, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0xffff}}, @flowinfo={{0x14, 0x29, 0xb, 0x1000}}, @dstopts={{0x120, 0x29, 0x37, {0x73, 0x20, '\x00', [@generic={0x0, 0xdb, "1f1be89c8d84983d84d733848fbb3e0e91ca8fff7e4e82abb3fde1b1aa11a5e073dcea01b09738a1702260d6cfe814bbc14fb3416616bdf4ff9c5e3b75c9114cecd936a6645d709f0939ad075b2a4d157b407d619e2bf11b18258548a4b0af3496aec2241fc05f4b0143ffe9eb756a545122fb9b7a3bc3f20b23de102c10a3419416a8b3a02d3cd1db18eb3f97a118e1d50a7bc8f9a9aa66e55e5a73855eb0462551ff2e658bf7c879b00a3bd8e3084eb98e96ad5598b4717a7f9364033d6e9df365b9cf70bf0b0ad023b61dfef097db12d516519a884fee17abf1"}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0xe}}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0x1c}}, @pad1]}}}, @rthdrdstopts={{0x40, 0x29, 0x37, {0x16, 0x5, '\x00', [@pad1, @ra={0x5, 0x2, 0x10}, @enc_lim={0x4, 0x1, 0x9}, @jumbo={0xc2, 0x4, 0xc47}, @enc_lim={0x4, 0x1, 0x7f}, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @padn={0x1, 0x1, [0x0]}]}}}, @dstopts_2292={{0x40, 0x29, 0x4, {0x33, 0x4, '\x00', [@calipso={0x7, 0x20, {0x2, 0x6, 0x2, 0x43, [0x5, 0x6, 0x1]}}]}}}], 0x208}}, {{&(0x7f0000004940)={0xa, 0x4e20, 0x9dee, @rand_addr=' \x01\x00', 0x7fff}, 0x1c, &(0x7f0000004a80)=[{&(0x7f0000004980)}, {&(0x7f00000049c0)="fa138f455584309585544256db7acfdbf9b0e2e5fee2386368984b4b1e68828da5fc37d28111607ccd9f0517aadee47f0489f5a1b199a164840b68837dcff7c2a66c852fc446cebba8c8303a90f9d1dd948fc9f4b8bbb7e9fb6afcf87ab4924043ddf597c96a2c53349a4b90aaff83ff4394f2f7b6f7c1f328ff537d3903b3992ac60500eea1fd675f457ab44717e29b3cbb566861cb999c2a0a0a33bd9cf742cc63d184ae0d35e552bbf7215030110cb751ea4623", 0xb5}], 0x2, &(0x7f0000004ac0)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0xfffffffc}}, @dstopts_2292={{0x70, 0x29, 0x4, {0x21, 0xa, '\x00', [@calipso={0x7, 0x18, {0x1, 0x4, 0x7f, 0x3ff, [0x157, 0x1000]}}, @enc_lim={0x4, 0x1, 0x80}, @calipso={0x7, 0x38, {0x1, 0xc, 0x4d, 0xb3, [0x0, 0x13d94e3e, 0x800, 0x7, 0x0, 0x81]}}]}}}, @dstopts_2292={{0x188, 0x29, 0x4, {0x6f, 0x2d, '\x00', [@enc_lim={0x4, 0x1, 0x6}, @ra={0x5, 0x2, 0x7}, @generic={0x8, 0x6c, "58fcc6e9531df19df4dbcb37b7a5a25f65bf4e1b754f0d7c06d000baa77a5864d8dbdfa753b3242d7f66ce10a137599540e02988b4cbad43d52cea5f491482c6108c9f05464547273483cf186b06727f3258c4c2534a4dda81d54c0342723922c159ea860aff82ccc25bbb69"}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @generic={0x7, 0xf1, "8c3309458f4d15d65f58c80f4e2eab4150e9a11d05060cf7d439721c29ee813201901f4306c4f815b8f2772d3a5ade05c64d082ede5aaa9e27c6a3ff0437306a4c094e884e45e01bb45258ad46550ea3bc9abe5f106c307f3638b909fb318761d4728330f3df4d45c39dfce45f721446c49c0b4177aa424617a6accc732720112f84f1858e8cdcac62e6a8077c912a8ab12ba97cdede2185e014c7afaed741b82e17a17fd9d9ad6f1b0d3baab1ddb69e03f509b4d851111b2447f869f086be8bd2b8ad22211768b106bb64fdc45ef97f76721ac804f1302e05bd4af64b1d99d723dad7f0283b8bcf5501dd7c2bd3795494"}]}}}, @rthdr={{0x28, 0x29, 0x39, {0x2f, 0x2, 0x2, 0x6, 0x0, [@private2={0xfc, 0x2, '\x00', 0x1}]}}}, @hoplimit_2292={{0x14}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x4}}, @rthdr={{0x28, 0x29, 0x39, {0x2e, 0x2, 0x1, 0x0, 0x0, [@mcast1]}}}, @dstopts_2292={{0xe0, 0x29, 0x4, {0x3b, 0x18, '\x00', [@jumbo={0xc2, 0x4, 0x9}, @pad1, @jumbo={0xc2, 0x4, 0x34d7}, @ra={0x5, 0x2, 0x7c9}, @calipso={0x7, 0x38, {0x2, 0xc, 0x33, 0x4, [0x1676, 0x4c3, 0x2, 0x200, 0x6, 0x80]}}, @generic={0xfb, 0x51, "a467b58df2cb01f483ce5d71224aebc0021dd7b17e233d0e216b6210f29270cfb5a867bf211558608740fb65e29dbd38a24af2d2e2376677678a8fb74caf5f87a759fbea47315ef26a26e45be16744d4af"}, @calipso={0x7, 0x20, {0x2, 0x6, 0x3, 0x81, [0x8000000000000000, 0x21d, 0x7]}}]}}}], 0x370}}, {{&(0x7f0000004e40)={0xa, 0x4e24, 0xfffffff8, @private1={0xfc, 0x1, '\x00', 0x1}, 0x8}, 0x1c, &(0x7f0000004f80)=[{&(0x7f0000004e80)="cbb3ea85639a202dfda0986fce8c26f9a5c7039504d02be1c9dc8bd504c127c79ed2d71913319d411239d5c64f4fc93dcbf743661dcc0759d5958a72de40faaededda02c0f804e2547cffffdf48838d3070a750504916722e50d61ab8cb11d9785f40ec164d942a342a06acf8e4e0d5022c5c1a13b7eebcac8183fd25ad2460f3890f3c89883d295a28c96f40e", 0x8d}, {&(0x7f0000004f40)="919ad89067cfb2b81f954e0b8d14b9d4efa14b9119903c2ced43712fbc", 0x1d}], 0x2, &(0x7f0000005080)=[@pktinfo={{0x24, 0x29, 0x32, {@local, r5}}}, @rthdr_2292={{0x78, 0x29, 0x39, {0x84, 0xc, 0x2, 0x2, 0x0, [@remote, @dev={0xfe, 0x80, '\x00', 0x44}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast1]}}}], 0xa0}}], 0x5, 0x40)
mkdir(&(0x7f0000000000)='./file1\x00', 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000002140)='maps\x00')
read$FUSE(r6, &(0x7f0000000000)={0x2020}, 0xfffffc7a)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000200)=@generic={&(0x7f0000000100)='./file1\x00', r6}, 0x18)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r7 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r7, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
r8 = syz_open_dev$vim2m(&(0x7f0000000000), 0x82000000003, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r8, 0xc02c564a, &(0x7f0000000040)={0x0, 0x56595559, 0x2, @stepwise={0x8, 0x8, 0x7ff, 0x4, 0xaeae, 0x84a}})
chdir(&(0x7f00000003c0)='./bus\x00')
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x441, 0x20)

24.731000369s ago: executing program 4 (id=2764):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f00000012c0)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904000001faf40d000905820349"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r1, &(0x7f0000000480)=""/74, 0x4a)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x1380, &(0x7f0000003700)=ANY=[])

21.610994003s ago: executing program 4 (id=2781):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000018c0)={'team0\x00', <r1=>0x0})
fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000040)=0x4)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000022780)=@newlink={0x40, 0x10, 0x49920d862a92143b, 0x100000, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gtp={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GTP_FD1={0x8}]}}}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x40}, 0x1, 0x0, 0x0, 0x8004}, 0x24000800)

21.501348468s ago: executing program 4 (id=2782):
openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi0\x00', 0x8080, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_usbip_server_init(0x3)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, 0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

20.066195289s ago: executing program 4 (id=2791):
syz_emit_ethernet(0xbe, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa0000000000000800450000b00000000000119078000000000000000000004e22009c90780100"/162], 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x3, 0x4000043)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000080)={0x1, @pix_mp={0x400000, 0x5, 0x0, 0x32525942, 0xc, [{0x0, 0xfffffffe}, {}, {0x2, 0x8}, {0x1, 0xfffffffc}, {}, {}, {0xfffffffc}, {0x200}], 0x3, 0xfe, 0x0, 0x0, 0x5}})
syz_open_dev$swradio(&(0x7f0000003900), 0x1, 0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
setrlimit(0x0, &(0x7f0000000000)={0x6, 0x1})
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f00000000c0)='bbr\x00', 0x4)
sendto$inet(r1, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r1, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

19.151351009s ago: executing program 4 (id=2804):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x80800)
sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0xc001)
sendmsg$nl_route_sched(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newqdisc={0x4, 0x24, 0x200, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xffe0, 0xb}, {0xfff2, 0xfff3}, {0xfff2, 0xfff3}}}, 0x24}}, 0x4004001)
arch_prctl$ARCH_SET_CPUID(0x1012, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4040}, 0x20008000)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'geneve1\x00'})
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="d800000010000300"/20, @ANYBLOB="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", @ANYBLOB="00000000000000001c0012800b00010067656e65766500000c00028005000400010000001c001a8018000a80140007d4c2ffb01f21e6c7b65359f0e03365507ebdc027d8588f7218895de50f663aad2eafb140ee5d9beec617c0e0c5e72137620318135d3b2e1a494adc7f7ec77498f75a8d3f091291b8045baa1e3c098e77e135da6fa5de4b0d6599c59f1ce91ae3a1e21e34f4e687e7632a5637bd877ee2d2f45255dcff1ce509c3d67dad450f129a9a3b6672beb2b852499cb5d052a68cdf41f49e1ddbafbd7bf954bfae"], 0x58}, 0x1, 0x2}, 0x0)
ioctl$USBDEVFS_CONNECTINFO(r0, 0x80045520, &(0x7f00000003c0))
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = creat(&(0x7f0000000400)='./file0\x00', 0x4)
ioctl$vim2m_VIDIOC_S_CTRL(r6, 0xc008561c, &(0x7f0000000480)={0x8, 0x4})
timer_create(0x7, &(0x7f0000000100)={0x0, 0x3e, 0x4, @thr={&(0x7f0000000000)="41e39d2157a07663913243c098db5b97d8febe7c7c", &(0x7f00000001c0)="cca7d3faabdbaa5211792b64dfd8ee1bf455afd3ab1db0149e089e2634f264f821e2e35d98baa21b575d5b9426e21959c9eed38bba54ea1e3fe7a7865ac9f8be4f27e293182f3dca9a91d1dc34e2d67444ba1630d78b59b5d39dfe519aa93f3f77bd18f4b43c0a0112fd6cfebab1e9f7f47a278c8fd8dbc1932e4abf922e8eaf6d0096987eb7a2c698ad170dee8d447aef7b87d7b7c54bb8331803557285510ae339125bdbb442ebb7cf9bf7c206bd95e2dea72664388f5efbf567cb8e0c4328a3722bfe1b089de925283ad3d80181461717eff6f358c8eaffb6393534b35d6e0f203c5043764a961efc21151531"}}, &(0x7f0000000380))
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
membarrier(0x40, 0x0)
membarrier(0x20, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r7, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x4000, 0x100000001})
sendmsg$nl_route_sched(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x0, {}, [{0x50, 0x1, [@m_vlan={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{}, 0x5}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)

4.140964659s ago: executing program 1 (id=2925):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000100)={0x1, "ff0f000000000000f5a72d866b0000000000f0ffdefe00"})
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000040)={0x2, "b45b9645882f89327f918b47d5d286c72e4a91d1c081b1b36db2ddf78f5549ad"})
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, &(0x7f0000000100)={0x4, <r3=>r1})
ioctl$DMA_BUF_SET_NAME_A(r3, 0x40086203, &(0x7f00000001c0)='\x02\x00\x00\x00\x05\x00\x00\x00-control\x00')
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x36, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x7, 0x7f, 0xa9, 0x4d, 0x6, 0x5f, 0x9, 0x15, 0xffff2d37, 0xff7fff01, 0x6, 0x5, 0x7, 0x5, 0x6, 0x0, 0x7, 0x3c5b, 0x1, 0x20, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x6, 0x7, 0x5, 0x8, 0x2, 0x10000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x18e, 0x6, 0x6, 0x0, 0x8, 0x4, 0x8, 0x3ff, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff3, 0x129432f6, 0xc8, 0xf1, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x66abcbd2, 0xea4, 0x0, 0x4, 0x1007, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x381, 0x4, 0xb, 0x4, 0x9, 0x8, 0x40, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x200009, 0x3, 0x3, 0x4000009, 0x6, 0x0, 0x3, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x3ff, 0x5, 0xfffffffd, 0x100, 0x4, 0x9, 0x5, 0x0, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x8, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x200, 0x1fd, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x4, 0xa9, 0x5, 0x6, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0xffffffff, 0x5, 0x1c, 0x120000, 0x7ff, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce4, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x2, 0x10000, 0x4, 0x7fff, 0xfffc, 0xa620, 0x1, 0x5, 0x801, 0x2000002, 0x150, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x5, 0xc8, 0x1, 0xfffff000, 0x10000, 0x3, 0x7e, 0x9, 0x9622, 0x7, 0xaf, 0x20000008, 0x5, 0x226, 0x2, 0x5, 0x0, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x530e, 0x6c1b, 0x0, 0x4, 0x5, 0x7ff, 0xd3, 0x200, 0xb, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0) (fail_nth: 4)

4.14077107s ago: executing program 33 (id=2804):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x80800)
sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0xc001)
sendmsg$nl_route_sched(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newqdisc={0x4, 0x24, 0x200, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xffe0, 0xb}, {0xfff2, 0xfff3}, {0xfff2, 0xfff3}}}, 0x24}}, 0x4004001)
arch_prctl$ARCH_SET_CPUID(0x1012, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4040}, 0x20008000)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'geneve1\x00'})
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="d800000010000300"/20, @ANYBLOB="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", @ANYBLOB="00000000000000001c0012800b00010067656e65766500000c00028005000400010000001c001a8018000a80140007d4c2ffb01f21e6c7b65359f0e03365507ebdc027d8588f7218895de50f663aad2eafb140ee5d9beec617c0e0c5e72137620318135d3b2e1a494adc7f7ec77498f75a8d3f091291b8045baa1e3c098e77e135da6fa5de4b0d6599c59f1ce91ae3a1e21e34f4e687e7632a5637bd877ee2d2f45255dcff1ce509c3d67dad450f129a9a3b6672beb2b852499cb5d052a68cdf41f49e1ddbafbd7bf954bfae"], 0x58}, 0x1, 0x2}, 0x0)
ioctl$USBDEVFS_CONNECTINFO(r0, 0x80045520, &(0x7f00000003c0))
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = creat(&(0x7f0000000400)='./file0\x00', 0x4)
ioctl$vim2m_VIDIOC_S_CTRL(r6, 0xc008561c, &(0x7f0000000480)={0x8, 0x4})
timer_create(0x7, &(0x7f0000000100)={0x0, 0x3e, 0x4, @thr={&(0x7f0000000000)="41e39d2157a07663913243c098db5b97d8febe7c7c", &(0x7f00000001c0)="cca7d3faabdbaa5211792b64dfd8ee1bf455afd3ab1db0149e089e2634f264f821e2e35d98baa21b575d5b9426e21959c9eed38bba54ea1e3fe7a7865ac9f8be4f27e293182f3dca9a91d1dc34e2d67444ba1630d78b59b5d39dfe519aa93f3f77bd18f4b43c0a0112fd6cfebab1e9f7f47a278c8fd8dbc1932e4abf922e8eaf6d0096987eb7a2c698ad170dee8d447aef7b87d7b7c54bb8331803557285510ae339125bdbb442ebb7cf9bf7c206bd95e2dea72664388f5efbf567cb8e0c4328a3722bfe1b089de925283ad3d80181461717eff6f358c8eaffb6393534b35d6e0f203c5043764a961efc21151531"}}, &(0x7f0000000380))
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
membarrier(0x40, 0x0)
membarrier(0x20, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r7, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x4000, 0x100000001})
sendmsg$nl_route_sched(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x0, {}, [{0x50, 0x1, [@m_vlan={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{}, 0x5}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)

4.073191675s ago: executing program 1 (id=2927):
bind$alg(0xffffffffffffffff, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-serpent-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)}, {0x0}], 0x2)
syz_open_dev$evdev(0x0, 0x0, 0x60000)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x17)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000880)=@setlink={0x28, 0x13, 0xbaa23f3d13f2d1f5, 0x3, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_TXQLEN={0x8, 0xd, 0x6}]}, 0x28}, 0x1, 0x0, 0x0, 0x40010}, 0x0) (fail_nth: 3)

3.781124046s ago: executing program 1 (id=2928):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$PTP_CLOCK_GETCAPS(r0, 0x80503d01, &(0x7f00000000c0))
r1 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x40080, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x4048aec9, &(0x7f0000000740)={0x1, 0x0, @ioapic={0x8080000, 0x8, 0x0, 0x0, 0x0, [{0x0, 0x0, 0x5}, {0x0, 0x4, 0x0, '\x00', 0x1}, {0x0, 0x4}, {0x81, 0x2}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, '\x00', 0x3}, {0xff}, {0x0, 0x0, 0x0, '\x00', 0x1}, {0x0, 0x0, 0x0, '\x00', 0x2}, {0x8}, {0xfe, 0x0, 0x9}, {}, {0x0, 0x0, 0x1, '\x00', 0x3}, {0x6c}, {}, {0x0, 0x4}, {0x0, 0x1, 0xf3, '\x00', 0x20}, {0x9}, {0x1c, 0x8c, 0x0, '\x00', 0x1}, {0xfe, 0xf4, 0x0, '\x00', 0x9}, {0xfc, 0x0, 0x5, '\x00', 0xfd}, {0xfc, 0x0, 0x0, '\x00', 0xea}, {0x0, 0x1, 0x0, '\x00', 0x3}, {0x0, 0x0, 0x80, '\x00', 0x1}]}})

3.660834805s ago: executing program 1 (id=2929):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f00000012c0)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904000001faf40d0009058203"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r1, 0x0, 0x0)

3.231014241s ago: executing program 0 (id=2932):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
write$dsp(r0, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000180)=0xe3b)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_usb_connect$cdc_ncm(0x3, 0x72, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000", @ANYRESOCT=r1], 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r4, 0x84, 0x7d, &(0x7f0000000180)="41eb18df27020000", 0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r4, 0x84, 0x17, 0x0, 0x13)
r5 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r6 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
read$FUSE(r6, &(0x7f0000003d80)={0x2020}, 0x2020)
sendmsg$can_raw(0xffffffffffffffff, 0x0, 0x20000000)
read$char_usb(r5, 0x0, 0x0)
syz_usb_disconnect(r3)
close_range(r2, 0xffffffffffffffff, 0x0)
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
ioctl$PPPIOCSACTIVE(r7, 0x40107446, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x9, 0x0, 0x2, 0x1}, {0x5, 0xff, 0x7, 0xffff8001}]})

2.770863594s ago: executing program 3 (id=2933):
syz_usb_connect(0x1, 0x3d, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000bdce4208110f80106afc0000000109022b00010000000009043700022ee5cd0009058010ff037f790209050e0320000980070705ab0b78"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r0 = syz_io_uring_setup(0x4172, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r0, 0x567, 0xff00, 0xe00000000000000, 0x0, 0x0)

1.481061396s ago: executing program 3 (id=2935):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x102}}) (fail_nth: 5)

1.390730668s ago: executing program 3 (id=2936):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x102, 0x300}})

1.390606137s ago: executing program 3 (id=2937):
prctl$PR_SET_KEEPCAPS(0x59616d61, 0x1ffffffffffffff)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0xa000101e, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)

1.340757326s ago: executing program 3 (id=2938):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x20400, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000002c0)=0x1)
syz_usb_connect(0x5, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="120100000cb768405e0483020b9901e402010902"], 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x2) (fail_nth: 2)

609.11381ms ago: executing program 1 (id=2942):
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000180), 0x129202, 0x0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
sendto$inet6(r1, &(0x7f00000001c0)='N', 0x1, 0x80, &(0x7f0000000280)={0xa, 0x4e24, 0x0, @private2}, 0x1c)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'rmd160-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000004dc0)={0x0, 0x0, &(0x7f0000004d80)={&(0x7f0000000000)=@deltclass={0x3c, 0x29, 0x400, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xffe0, 0x540f7e52ffe194b3}, {0xfff2, 0xa}, {0xfff3, 0xc}}, [@TCA_RATE={0x6, 0x5, {0x1, 0x4}}, @tclass_kind_options=@c_tbf={0x8}, @tclass_kind_options=@c_sfb={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0x4080)
shutdown(r1, 0x1)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000300)={0x0, 0x4}, 0xf)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7c, &(0x7f00000000c0), &(0x7f0000000180)=0x8)
prctl$PR_MCE_KILL_GET(0x22)
syz_clone(0x4000, &(0x7f0000000040)="1120e2267b978ffd1523e2e68905e5faa69a54ba03ba2ef9be74179ffca566383f482292b15f1138b251d14794d2be193adc3abaecfe07b9df500b4777851d1d97430918", 0x44, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f00000001c0)="970c6e237ad8ecdd1d637791001f7fd366861f1cf66526d23e55f088bd8298e0052822cb7f8ca7384620a34a29fc913454aafdc635d5af38ad11e24380d6a6d121689f342d2b589fee73b32bd538f1b86b43e923f3182123a5acd1405f4202562b79ffd5178f4b1756345809c7c7ebf6e037d8f05896ae5ecf2561b15b643082a5f46746228535cac82b9611682b76604acb41da9546069729e78eb81bf17134da4c0162b25df78573e72ac9367d65")
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0x1000)
mmap$dsp(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x100000f, 0x11, r0, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0x4000)

550.107485ms ago: executing program 5 (id=2944):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f00000000c0)=@ethtool_gfeatures={0x33}}) (fail_nth: 5)

381.265172ms ago: executing program 5 (id=2945):
setreuid(0xee01, 0xee01)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0xfffffffc}, 0x10}, 0x94)

380.597602ms ago: executing program 5 (id=2946):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x102}})
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0x107, 0x100, 0x100, 0x1, 0x4000}}) (fail_nth: 5)

241.170287ms ago: executing program 5 (id=2947):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x2, 0x2)
syz_emit_vhci(&(0x7f0000000180)=@HCI_EVENT_PKT={0x4, @hci_ev_pin_code_req={{0x16, 0x6}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0xf7}}}}, 0x9)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000001c0)={0x6, @pix={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}})

190.093794ms ago: executing program 5 (id=2948):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000400)={0x1, 0x0, [{0x0, 0x0, 0x172d}, {}, {}, {}, {}, {}, {}, {}, {0x3}]}) (fail_nth: 5)

189.69253ms ago: executing program 0 (id=2949):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="01000100"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000ac6bbb1f000000000000"], 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x10)
mq_open(0x0, 0x6e93ebbbcc0884f2, 0x9a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0xffffffffffffffb5)
socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$kcm(0x10, 0x2, 0x0)
openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
r3 = syz_io_uring_setup(0x66e, &(0x7f0000000240)={0x0, 0x0, 0x10100}, &(0x7f0000000380)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)})
io_uring_enter(r3, 0x567, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r2, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2000010, 0x13, 0xffffffffffffffff, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r7 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r6)
sendmsg$NLBL_MGMT_C_ADD(r6, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c80)={0x34, r7, 0x1, 0x70bd25, 0x0, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast1}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @private=0xa010101}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000010}, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000780), r8)
sendmsg$NLBL_MGMT_C_ADD(r8, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000040)={0x34, r9, 0x1, 0x400000, 0x0, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast2}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @remote}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000c80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
r10 = io_uring_setup(0x51d2, &(0x7f0000000400)={0x0, 0x631d, 0x1000, 0x2, 0x402d7})
io_uring_register$IORING_REGISTER_BUFFERS2(r10, 0xf, &(0x7f0000002700)={0x119f, 0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000480)=""/264, 0xf9}, {&(0x7f00000015c0)=""/4096, 0xd8da7}, {&(0x7f0000002a00)=""/88, 0x8}], 0x0}, 0x20)

60.382038ms ago: executing program 0 (id=2950):
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc4}, &(0x7f0000000100)={0x0, "38b80355cffb9334b84b18bacebf3d535c30219dcb950bffffffffffffffffa8ed4d5c0d4d9d945dea458da503ff3cb18f5326e1954664fa48745e1c7eef737a"}, 0x48, 0xffffffffffffffff)
request_key(&(0x7f00000005c0)='pkcs7_test\x00', &(0x7f0000000600)={'syz', 0x2}, &(0x7f0000000640)='logon\x00', r0) (async)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)=ANY=[], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000900)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f00000001c0)='%+9llu \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000280)={r2}, 0x4) (async)
r3 = syz_open_dev$video(&(0x7f0000000000), 0x7, 0x0)
r4 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r4, &(0x7f0000000000), 0x10) (async)
setsockopt$CAN_RAW_FILTER(r4, 0x65, 0x1, 0x0, 0x0) (async, rerun: 32)
ioctl$VIDIOC_QUERYCTRL(r3, 0xc0445624, &(0x7f0000001d00)={0x6071d56f, 0x0, "b058b584c75da73d1f7600450b8add59e9665ce1d040fef200"}) (async, rerun: 32)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x16, 0x11, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000400008500000007000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r5, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000002c0)="b9ff03076003008cb89e08f086dd", 0x0, 0xfe6, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

60.157523ms ago: executing program 0 (id=2951):
r0 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x3180, 0x8000, 0xd9}, &(0x7f0000000340)=<r1=>0x0, &(0x7f00000006c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f00000000c0)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_MSG_RING={0x28, 0x40, 0x0, r0, 0x0, 0x0, 0x0, 0x3})
io_uring_enter(r0, 0x4c6e, 0xc67a, 0x8, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x80}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb}, 0x90)

1.26984ms ago: executing program 0 (id=2952):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000740)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x4e23, @broadcast}, 0x2, 0x0, 0x4}}, 0x2e)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000480)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002cbd70100400000005000000080009000200000008000c00a80a000008000b00000000000600010005"], 0x34}}, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x50, &(0x7f0000000600)={@link_local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2a}, @val={@void, {0x8120}}, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x16, 0x11, 0xff, @remote, @local, {[], {0x0, 0xe22, 0x16, 0x0, @gue={{0x2, 0x0, 0x0, 0x3}, "30b00afe4e79"}}}}}}}, 0x0)

1.033114ms ago: executing program 3 (id=2953):
r0 = socket(0x2, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0x0, 0x0, 0x0, 0x3, 0x1, 0x1}})
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
r2 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0) (async)
pipe2(&(0x7f0000000000)={<r5=>0xffffffffffffffff}, 0x4800) (async)
pipe2(&(0x7f0000000480)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
tee(r5, r6, 0x6d05, 0x0) (async)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x50, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22}) (async, rerun: 64)
io_uring_enter(r2, 0x48e9, 0x0, 0x2, 0x0, 0x0) (async, rerun: 64)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x14, r7, 0x303, 0x0, 0x0, {0x2a}}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000) (async)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f00000000c0)=0xf)
r9 = fcntl$dupfd(r8, 0x0, r8)
ioctl$TCFLSH(r9, 0x400455c8, 0x2) (async, rerun: 32)
ioctl$TIOCSETD(r9, 0x5412, &(0x7f0000000140)=0xffffffc0) (rerun: 32)
ioctl$TIOCSTI(r9, 0x5412, &(0x7f0000000040)=0xfc) (async)
prctl$PR_SET_IO_FLUSHER(0x39, 0x0) (async)
ioctl$TIOCSTI(r9, 0x5412, &(0x7f00000001c0)=0xfe)
ioctl$BLKFRASET(r9, 0x1264, &(0x7f0000000000)=0x1)

916.649µs ago: executing program 0 (id=2954):
unshare(0x6a040000)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=@newlink={0x54, 0x10, 0x401, 0x0, 0x1000000, {0x0, 0x0, 0x0, 0x0, 0x803f}, [@IFLA_LINKINFO={0x34, 0x12, 0x0, 0x1, @ip6gretap={{0x1d}, {0x20, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x14, 0x7, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @IFLA_GRE_IFLAGS={0x6, 0x2, 0x74}]}}}]}, 0x54}}, 0x0) (fail_nth: 5)

144.282µs ago: executing program 1 (id=2955):
r0 = socket$inet6(0xa, 0x3, 0x7)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$dri(&(0x7f0000000000), 0x2, 0x101000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
ioctl$F2FS_IOC_RESIZE_FS(r2, 0x4008f510, &(0x7f0000000100)=0xffffffffffffffff)
syz_emit_ethernet(0xbe, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c20000000800450000b00000000000119078000000000000000000004e20009c907801000000000000007b4b143b7461fd667b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424dbcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b9649a3bfbc1f39cb307b3472eb9cdb042d2643fcbb2c5a57df67d544af6e8dafe09"], 0x0)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000020000000000"], 0x0, 0x1a}, 0x28)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r5 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000180)={<r6=>0x0, 0xd}, &(0x7f0000000300)=0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r3, 0x84, 0xf, &(0x7f00000006c0)={r6, @in6={{0xa, 0x4e23, 0x6, @ipv4={'\x00', '\xff\xff', @private=0xa010100}, 0x7}}, 0x7, 0x401, 0x6, 0x10, 0x3}, &(0x7f0000000340)=0x98)
sendmsg$nl_route_sched(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004000)={&(0x7f0000001340)=@newtaction={0x84, 0x30, 0x200, 0x0, 0x0, {0x0, 0x0, 0x1100}}, 0x84}}, 0x8000)
epoll_create1(0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
close(0x4)
sendmmsg(r1, &(0x7f0000000340), 0x222874f4405e5c0, 0x40840)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@dev, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)
sendmmsg(r0, &(0x7f0000003980)=[{{0x0, 0x0, &(0x7f0000002700)=[{&(0x7f0000001340)="cb75", 0x2}], 0x1, &(0x7f0000000200)=ANY=[@ANYBLOB="1000f85508c8002a4fbeb07c5955e5827367a382b96632f2cc7853985ae633941751f4df85c7e451badc5facc677403a79d9d66354e7230b8588abecbead1126b906ff81b4c40b173b6d41a2a7623daef7f0a5a81cd9ee8cba55a0ad0260290133a0937fbabe3ca2e2d65a3dd76133982da1734ad66a55cb6df10ef4297c4e00000000"], 0x10}}], 0x1, 0x85c)

0s ago: executing program 5 (id=2956):
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x3, 0x4000043)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
syz_open_dev$swradio(&(0x7f0000003900), 0x1, 0x2)
sched_setaffinity(0x0, 0x0, 0x0)
setrlimit(0x0, &(0x7f0000000000)={0x6, 0x1})
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f00000000c0)='bbr\x00', 0x4)
sendto$inet(r1, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r1, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

kernel console output (not intermixed with test programs):

rame+0x77/0x7f
[  353.392075][T13744] RIP: 0033:0x7f05c8d8e9a9
[  353.392090][T13744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  353.392108][T13744] RSP: 002b:00007f05c9bcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  353.392126][T13744] RAX: ffffffffffffffda RBX: 00007f05c8fb5fa0 RCX: 00007f05c8d8e9a9
[  353.392138][T13744] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  353.392149][T13744] RBP: 00007f05c9bcc090 R08: 0000000000000000 R09: 0000000000000000
[  353.392160][T13744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  353.392171][T13744] R13: 0000000000000000 R14: 00007f05c8fb5fa0 R15: 00007ffefb9b7a48
[  353.392196][T13744]  </TASK>
[  353.392213][T13744] ERROR: Out of memory at tomoyo_realpath_from_path.
[  353.471333][T13744] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  353.530707][   T54] usb 9-1: USB disconnect, device number 3
[  353.565092][T13749] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2713'.
[  353.622249][T13752] fuse: Bad value for 'fd'
[  353.727464][T13747] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  353.730089][T13747] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  353.732559][T13747] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  353.737820][T13747] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  353.746308][T13747] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  353.748913][T13747] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  353.756201][T13747] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  353.791823][T13757] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  353.826271][T13761] Bluetooth: MGMT ver 1.23
[  354.738218][T13775] FAULT_INJECTION: forcing a failure.
[  354.738218][T13775] name failslab, interval 1, probability 0, space 0, times 0
[  354.743824][T13775] CPU: 0 UID: 0 PID: 13775 Comm: syz.3.2721 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  354.743847][T13775] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  354.743859][T13775] Call Trace:
[  354.743866][T13775]  <TASK>
[  354.743875][T13775]  dump_stack_lvl+0x16c/0x1f0
[  354.743908][T13775]  should_fail_ex+0x512/0x640
[  354.743936][T13775]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  354.743965][T13775]  should_failslab+0xc2/0x120
[  354.743984][T13775]  __kmalloc_cache_noprof+0x6a/0x3e0
[  354.744008][T13775]  ? lockdep_init_map_type+0x5c/0x280
[  354.744027][T13775]  ? fuse_direct_IO+0x262/0xf40
[  354.744052][T13775]  ? __init_swait_queue_head+0xca/0x150
[  354.744075][T13775]  fuse_direct_IO+0x262/0xf40
[  354.744111][T13775]  ? __pfx_fuse_direct_IO+0x10/0x10
[  354.744137][T13775]  ? __pfx___might_resched+0x10/0x10
[  354.744160][T13775]  ? generic_write_check_limits+0x1f1/0x290
[  354.744202][T13775]  fuse_direct_write_iter+0x4c7/0x840
[  354.744228][T13775]  ? register_lock_class+0x41/0x4c0
[  354.744248][T13775]  ? __pfx_fuse_direct_write_iter+0x10/0x10
[  354.744278][T13775]  ? __lock_acquire+0xb8a/0x1c90
[  354.744300][T13775]  ? kasan_save_stack+0x42/0x60
[  354.744336][T13775]  fuse_file_write_iter+0x66c/0x950
[  354.744368][T13775]  aio_write+0x3b6/0x910
[  354.744398][T13775]  ? __pfx_aio_write+0x10/0x10
[  354.744425][T13775]  ? __lock_acquire+0xb8a/0x1c90
[  354.744458][T13775]  ? __might_fault+0xe3/0x190
[  354.744484][T13775]  ? __might_fault+0x13b/0x190
[  354.744516][T13775]  ? io_submit_one+0x1243/0x1df0
[  354.744544][T13775]  io_submit_one+0x1243/0x1df0
[  354.744575][T13775]  ? __lock_acquire+0xb8a/0x1c90
[  354.744609][T13775]  ? __pfx_io_submit_one+0x10/0x10
[  354.744646][T13775]  ? __might_fault+0xe3/0x190
[  354.744671][T13775]  ? __might_fault+0x13b/0x190
[  354.744719][T13775]  ? __x64_sys_io_submit+0x1a9/0x350
[  354.744736][T13775]  __x64_sys_io_submit+0x1a9/0x350
[  354.744757][T13775]  ? __pfx___x64_sys_io_submit+0x10/0x10
[  354.744774][T13775]  ? fput+0x70/0xf0
[  354.744807][T13775]  do_syscall_64+0xcd/0x4c0
[  354.744828][T13775]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  354.744847][T13775] RIP: 0033:0x7f05c8d8e9a9
[  354.744863][T13775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  354.744880][T13775] RSP: 002b:00007f05c9bcc038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  354.744898][T13775] RAX: ffffffffffffffda RBX: 00007f05c8fb5fa0 RCX: 00007f05c8d8e9a9
[  354.744910][T13775] RDX: 0000200000000780 RSI: 0000000000000002 RDI: 00007f05c9b82000
[  354.744922][T13775] RBP: 00007f05c9bcc090 R08: 0000000000000000 R09: 0000000000000000
[  354.744933][T13775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  354.744944][T13775] R13: 0000000000000000 R14: 00007f05c8fb5fa0 R15: 00007ffefb9b7a48
[  354.744968][T13775]  </TASK>
[  354.847942][    C0] vkms_vblank_simulate: vblank timer overrun
[  354.997633][T13785] FAULT_INJECTION: forcing a failure.
[  354.997633][T13785] name failslab, interval 1, probability 0, space 0, times 0
[  355.002938][T13785] CPU: 3 UID: 0 PID: 13785 Comm: syz.3.2725 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  355.002976][T13785] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  355.002987][T13785] Call Trace:
[  355.002995][T13785]  <TASK>
[  355.003001][T13785]  dump_stack_lvl+0x16c/0x1f0
[  355.003035][T13785]  should_fail_ex+0x512/0x640
[  355.003063][T13785]  ? fs_reclaim_acquire+0xae/0x150
[  355.003087][T13785]  ? tomoyo_encode2+0x100/0x3e0
[  355.003104][T13785]  should_failslab+0xc2/0x120
[  355.003124][T13785]  __kmalloc_noprof+0xd2/0x510
[  355.003152][T13785]  ? d_absolute_path+0x136/0x1a0
[  355.003180][T13785]  tomoyo_encode2+0x100/0x3e0
[  355.003202][T13785]  tomoyo_encode+0x29/0x50
[  355.003220][T13785]  tomoyo_realpath_from_path+0x18f/0x6e0
[  355.003246][T13785]  tomoyo_path_number_perm+0x245/0x580
[  355.003271][T13785]  ? tomoyo_path_number_perm+0x237/0x580
[  355.003300][T13785]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  355.003328][T13785]  ? find_held_lock+0x2b/0x80
[  355.003374][T13785]  ? find_held_lock+0x2b/0x80
[  355.003396][T13785]  ? hook_file_ioctl_common+0x145/0x410
[  355.003424][T13785]  ? __fget_files+0x20e/0x3c0
[  355.003447][T13785]  security_file_ioctl+0x9b/0x240
[  355.003468][T13785]  __x64_sys_ioctl+0xb7/0x210
[  355.003495][T13785]  do_syscall_64+0xcd/0x4c0
[  355.003516][T13785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.003533][T13785] RIP: 0033:0x7f05c8d8e9a9
[  355.003549][T13785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  355.003568][T13785] RSP: 002b:00007f05c9bcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  355.003586][T13785] RAX: ffffffffffffffda RBX: 00007f05c8fb5fa0 RCX: 00007f05c8d8e9a9
[  355.003600][T13785] RDX: 0000200000000480 RSI: 00000000c05064a7 RDI: 0000000000000003
[  355.003610][T13785] RBP: 00007f05c9bcc090 R08: 0000000000000000 R09: 0000000000000000
[  355.003627][T13785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  355.003637][T13785] R13: 0000000000000000 R14: 00007f05c8fb5fa0 R15: 00007ffefb9b7a48
[  355.003661][T13785]  </TASK>
[  355.003693][T13785] ERROR: Out of memory at tomoyo_realpath_from_path.
[  355.142317][T13791] lo speed is unknown, defaulting to 1000
[  355.296388][T13807] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2734'.
[  355.352544][T13804] lo speed is unknown, defaulting to 1000
[  355.438178][T13817] FAULT_INJECTION: forcing a failure.
[  355.438178][T13817] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  355.446328][T13817] CPU: 3 UID: 0 PID: 13817 Comm: syz.4.2738 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  355.446349][T13817] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  355.446358][T13817] Call Trace:
[  355.446363][T13817]  <TASK>
[  355.446369][T13817]  dump_stack_lvl+0x16c/0x1f0
[  355.446397][T13817]  should_fail_ex+0x512/0x640
[  355.446421][T13817]  _copy_to_user+0x32/0xd0
[  355.446437][T13817]  simple_read_from_buffer+0xcb/0x170
[  355.446461][T13817]  proc_fail_nth_read+0x197/0x270
[  355.446483][T13817]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  355.446505][T13817]  ? rw_verify_area+0xcf/0x680
[  355.446523][T13817]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  355.446543][T13817]  vfs_read+0x1e1/0xc60
[  355.446572][T13817]  ? __pfx___mutex_lock+0x10/0x10
[  355.446586][T13817]  ? __pfx_vfs_read+0x10/0x10
[  355.446610][T13817]  ? __fget_files+0x20e/0x3c0
[  355.446629][T13817]  ksys_read+0x12a/0x250
[  355.446648][T13817]  ? __pfx_ksys_read+0x10/0x10
[  355.446673][T13817]  do_syscall_64+0xcd/0x4c0
[  355.446689][T13817]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.446703][T13817] RIP: 0033:0x7fd93198d3bc
[  355.446715][T13817] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  355.446728][T13817] RSP: 002b:00007fd92f7f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  355.446742][T13817] RAX: ffffffffffffffda RBX: 00007fd931bb5fa0 RCX: 00007fd93198d3bc
[  355.446751][T13817] RDX: 000000000000000f RSI: 00007fd92f7f60a0 RDI: 0000000000000005
[  355.446760][T13817] RBP: 00007fd92f7f6090 R08: 0000000000000000 R09: 0000000000000000
[  355.446769][T13817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  355.446777][T13817] R13: 0000000000000000 R14: 00007fd931bb5fa0 R15: 00007fff5ad21318
[  355.446800][T13817]  </TASK>
[  355.667167][ T5955] Bluetooth: hci2: command 0x0c1a tx timeout
[  355.734917][ T5955] Bluetooth: hci3: command 0x0c1a tx timeout
[  355.824880][ T5955] Bluetooth: hci1: command 0x0c1a tx timeout
[  356.037752][ T6014] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  356.207112][ T6014] usb 9-1: config 0 has an invalid interface number: 232 but max is 0
[  356.209775][ T6014] usb 9-1: config 0 has no interface number 0
[  356.211677][ T6014] usb 9-1: config 0 interface 232 has no altsetting 0
[  356.215833][ T6014] usb 9-1: New USB device found, idVendor=14aa, idProduct=0001, bcdDevice= f.79
[  356.219335][ T6014] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  356.222602][ T6014] usb 9-1: Product: syz
[  356.223956][ T6014] usb 9-1: Manufacturer: syz
[  356.225626][ T6014] usb 9-1: SerialNumber: syz
[  356.228659][ T6014] usb 9-1: config 0 descriptor??
[  356.231819][ T6014] dvb-usb: found a 'AVerMedia AverTV DVBT USB1.1' in cold state, will try to load a firmware
[  356.304808][ T6017] usb 8-1: new high-speed USB device number 39 using dummy_hcd
[  356.431636][T13821] FAULT_INJECTION: forcing a failure.
[  356.431636][T13821] name failslab, interval 1, probability 0, space 0, times 0
[  356.436906][T13821] CPU: 1 UID: 0 PID: 13821 Comm: syz.4.2740 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  356.436922][T13821] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  356.436929][T13821] Call Trace:
[  356.436933][T13821]  <TASK>
[  356.436937][T13821]  dump_stack_lvl+0x16c/0x1f0
[  356.436959][T13821]  should_fail_ex+0x512/0x640
[  356.436977][T13821]  ? fs_reclaim_acquire+0xae/0x150
[  356.436992][T13821]  ? tomoyo_encode2+0x100/0x3e0
[  356.437002][T13821]  should_failslab+0xc2/0x120
[  356.437013][T13821]  __kmalloc_noprof+0xd2/0x510
[  356.437029][T13821]  ? d_absolute_path+0x136/0x1a0
[  356.437045][T13821]  tomoyo_encode2+0x100/0x3e0
[  356.437057][T13821]  tomoyo_encode+0x29/0x50
[  356.437067][T13821]  tomoyo_realpath_from_path+0x18f/0x6e0
[  356.437081][T13821]  tomoyo_path_number_perm+0x245/0x580
[  356.437097][T13821]  ? tomoyo_path_number_perm+0x237/0x580
[  356.437113][T13821]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  356.437164][T13821]  ? find_held_lock+0x2b/0x80
[  356.437192][T13821]  ? find_held_lock+0x2b/0x80
[  356.437205][T13821]  ? hook_file_ioctl_common+0x145/0x410
[  356.437221][T13821]  ? __fget_files+0x20e/0x3c0
[  356.437234][T13821]  security_file_ioctl+0x9b/0x240
[  356.437246][T13821]  __x64_sys_ioctl+0xb7/0x210
[  356.437262][T13821]  do_syscall_64+0xcd/0x4c0
[  356.437273][T13821]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.437284][T13821] RIP: 0033:0x7fd93198e9a9
[  356.437294][T13821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  356.437304][T13821] RSP: 002b:00007fd92f7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  356.437315][T13821] RAX: ffffffffffffffda RBX: 00007fd931bb5fa0 RCX: 00007fd93198e9a9
[  356.437323][T13821] RDX: 0000000000000000 RSI: 00000000c0085508 RDI: 0000000000000004
[  356.437329][T13821] RBP: 00007fd92f7f6090 R08: 0000000000000000 R09: 0000000000000000
[  356.437335][T13821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  356.437341][T13821] R13: 0000000000000000 R14: 00007fd931bb5fa0 R15: 00007fff5ad21318
[  356.437355][T13821]  </TASK>
[  356.437365][T13821] ERROR: Out of memory at tomoyo_realpath_from_path.
[  356.461904][ T6017] usb 8-1: Using ep0 maxpacket: 8
[  356.520504][ T6017] usb 8-1: config index 0 descriptor too short (expected 74, got 45)
[  356.523211][ T6017] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  356.527147][ T6017] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  356.530196][ T6017] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 30768, setting to 1024
[  356.533565][ T6017] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  356.536714][ T6017] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  356.540670][ T6017] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  356.543463][ T6017] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.751121][ T6017] usb 8-1: usb_control_msg returned -32
[  356.752874][ T6017] usbtmc 8-1:16.0: can't read capabilities
[  356.837109][    C2] usbtmc 8-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[  356.843208][T13823] usbtmc 8-1:16.0: Unable to send data, error -71
[  356.847237][   T24] usb 8-1: USB disconnect, device number 39
[  356.968864][   T54] hid-generic 0003:0004:0000.0045: unknown main item tag 0x0
[  356.972028][   T54] hid-generic 0003:0004:0000.0045: unknown main item tag 0x0
[  356.975610][   T54] hid-generic 0003:0004:0000.0045: unknown main item tag 0x0
[  356.981553][   T54] hid-generic 0003:0004:0000.0045: hidraw1: USB HID v0.00 Device [syz0] on syz1
[  357.044355][T13833] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2744'.
[  357.259927][ T5955] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  357.265681][ T5955] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  357.271202][ T5955] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  357.276100][ T5955] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  357.279979][ T5955] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  357.385821][T13849] lo speed is unknown, defaulting to 1000
[  357.436706][ T6017] hid-generic 0003:0004:0000.0046: unknown main item tag 0x0
[  357.439060][ T6017] hid-generic 0003:0004:0000.0046: unknown main item tag 0x0
[  357.441372][ T6017] hid-generic 0003:0004:0000.0046: unknown main item tag 0x0
[  357.448564][ T6017] hid-generic 0003:0004:0000.0046: hidraw1: USB HID v0.00 Device [syz0] on syz1
[  357.504922][T13849] chnl_net:caif_netlink_parms(): no params data found
[  357.510090][ T5962] Bluetooth: hci1: unexpected subevent 0x05 length: 18 > 12
[  357.546196][T13862] FAULT_INJECTION: forcing a failure.
[  357.546196][T13862] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  357.551513][T13862] CPU: 1 UID: 0 PID: 13862 Comm: syz.4.2749 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  357.551537][T13862] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  357.551548][T13862] Call Trace:
[  357.551555][T13862]  <TASK>
[  357.551562][T13862]  dump_stack_lvl+0x16c/0x1f0
[  357.551593][T13862]  should_fail_ex+0x512/0x640
[  357.551624][T13862]  strncpy_from_user+0x3b/0x2e0
[  357.551652][T13862]  getname_flags.part.0+0x8f/0x550
[  357.551678][T13862]  getname_flags+0x93/0xf0
[  357.551702][T13862]  do_sys_openat2+0xb8/0x1d0
[  357.551721][T13862]  ? __pfx_do_sys_openat2+0x10/0x10
[  357.551741][T13862]  ? __fget_files+0x20e/0x3c0
[  357.551763][T13862]  __x64_sys_open+0x153/0x1e0
[  357.551783][T13862]  ? __pfx___x64_sys_open+0x10/0x10
[  357.551807][T13862]  ? rcu_is_watching+0x12/0xc0
[  357.551832][T13862]  do_syscall_64+0xcd/0x4c0
[  357.551851][T13862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.551869][T13862] RIP: 0033:0x7fd93198e9a9
[  357.551885][T13862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  357.551902][T13862] RSP: 002b:00007fd92f7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  357.551920][T13862] RAX: ffffffffffffffda RBX: 00007fd931bb5fa0 RCX: 00007fd93198e9a9
[  357.551932][T13862] RDX: 0000000000000000 RSI: 0000000000060142 RDI: 0000200000000000
[  357.551943][T13862] RBP: 00007fd92f7f6090 R08: 0000000000000000 R09: 0000000000000000
[  357.551954][T13862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  357.551964][T13862] R13: 0000000000000000 R14: 00007fd931bb5fa0 R15: 00007fff5ad21318
[  357.551989][T13862]  </TASK>
[  357.665404][T13877] FAULT_INJECTION: forcing a failure.
[  357.665404][T13877] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  357.671118][T13877] CPU: 1 UID: 0 PID: 13877 Comm: syz.4.2753 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  357.671142][T13877] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  357.671153][T13877] Call Trace:
[  357.671160][T13877]  <TASK>
[  357.671167][T13877]  dump_stack_lvl+0x16c/0x1f0
[  357.671200][T13877]  should_fail_ex+0x512/0x640
[  357.671231][T13877]  _copy_from_user+0x2e/0xd0
[  357.671250][T13877]  kstrtouint_from_user+0xd6/0x1d0
[  357.671274][T13877]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  357.671297][T13877]  ? __lock_acquire+0xb8a/0x1c90
[  357.671326][T13877]  proc_fail_nth_write+0x83/0x250
[  357.671353][T13877]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  357.671386][T13877]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  357.671415][T13877]  vfs_write+0x2a0/0x1150
[  357.671447][T13877]  ? __pfx___mutex_lock+0x10/0x10
[  357.671464][T13877]  ? __pfx_vfs_write+0x10/0x10
[  357.671496][T13877]  ? __fget_files+0x20e/0x3c0
[  357.671520][T13877]  ksys_write+0x12a/0x250
[  357.671546][T13877]  ? __pfx_ksys_write+0x10/0x10
[  357.671579][T13877]  do_syscall_64+0xcd/0x4c0
[  357.671599][T13877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.671617][T13877] RIP: 0033:0x7fd93198d45f
[  357.671632][T13877] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  357.671648][T13877] RSP: 002b:00007fd92f7f6030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  357.671666][T13877] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd93198d45f
[  357.671677][T13877] RDX: 0000000000000001 RSI: 00007fd92f7f60a0 RDI: 0000000000000004
[  357.671688][T13877] RBP: 00007fd92f7f6090 R08: 0000000000000000 R09: 0000000000000000
[  357.671699][T13877] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  357.671710][T13877] R13: 0000000000000000 R14: 00007fd931bb5fa0 R15: 00007fff5ad21318
[  357.671734][T13877]  </TASK>
[  357.676462][T13849] bridge0: port 1(bridge_slave_0) entered blocking state
[  357.741425][T13884] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  357.750775][T13849] bridge0: port 1(bridge_slave_0) entered disabled state
[  357.752494][T13884] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  357.755246][T13849] bridge_slave_0: entered allmulticast mode
[  357.761338][T13849] bridge_slave_0: entered promiscuous mode
[  357.761741][T13884] vhci_hcd vhci_hcd.0: Device attached
[  357.783945][T12837] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  357.793691][T13849] bridge0: port 2(bridge_slave_1) entered blocking state
[  357.795991][T13849] bridge0: port 2(bridge_slave_1) entered disabled state
[  357.798378][T13849] bridge_slave_1: entered allmulticast mode
[  357.801647][T13849] bridge_slave_1: entered promiscuous mode
[  357.818689][ T5962] Bluetooth: hci3: command 0x0c1a tx timeout
[  357.822516][T13886] vhci_hcd: connection closed
[  357.822919][T12835] vhci_hcd: stop threads
[  357.829496][T12835] vhci_hcd: release socket
[  357.831521][T12835] vhci_hcd: disconnect device
[  357.851226][T13894] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2757'.
[  357.851999][T13849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  357.859741][T13849] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  357.894851][ T5962] Bluetooth: hci1: command 0x0c1a tx timeout
[  357.902577][T12837] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  357.931410][T13849] team0: Port device team_slave_0 added
[  357.935037][T13849] team0: Port device team_slave_1 added
[  357.990022][T12837] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  357.999000][T13849] batman_adv: batadv0: Adding interface: batadv_slave_0
[  358.001904][T13849] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  358.011124][T13849] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  358.015592][T13849] batman_adv: batadv0: Adding interface: batadv_slave_1
[  358.017785][T13849] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  358.026336][T13849] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  358.084952][T12837] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  358.098473][T13849] hsr_slave_0: entered promiscuous mode
[  358.100987][T13849] hsr_slave_1: entered promiscuous mode
[  358.103103][T13849] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  358.107385][T13849] Cannot create hsr debugfs directory
[  358.230884][T13914] FAULT_INJECTION: forcing a failure.
[  358.230884][T13914] name failslab, interval 1, probability 0, space 0, times 0
[  358.234917][T13914] CPU: 1 UID: 0 PID: 13914 Comm: syz.1.2759 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  358.234931][T13914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  358.234938][T13914] Call Trace:
[  358.234942][T13914]  <TASK>
[  358.234947][T13914]  dump_stack_lvl+0x16c/0x1f0
[  358.234968][T13914]  should_fail_ex+0x512/0x640
[  358.234986][T13914]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  358.235004][T13914]  should_failslab+0xc2/0x120
[  358.235015][T13914]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  358.235031][T13914]  ? __alloc_skb+0x2b2/0x380
[  358.235050][T13914]  __alloc_skb+0x2b2/0x380
[  358.235066][T13914]  ? __pfx___alloc_skb+0x10/0x10
[  358.235081][T13914]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[  358.235099][T13914]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  358.235119][T13914]  netlink_alloc_large_skb+0x69/0x130
[  358.235133][T13914]  netlink_sendmsg+0x6a1/0xdd0
[  358.235147][T13914]  ? __pfx_netlink_sendmsg+0x10/0x10
[  358.235165][T13914]  ____sys_sendmsg+0xa95/0xc70
[  358.235179][T13914]  ? copy_msghdr_from_user+0x10a/0x160
[  358.235196][T13914]  ? __pfx_____sys_sendmsg+0x10/0x10
[  358.235215][T13914]  ___sys_sendmsg+0x134/0x1d0
[  358.235232][T13914]  ? __pfx____sys_sendmsg+0x10/0x10
[  358.235249][T13914]  ? __lock_acquire+0x622/0x1c90
[  358.235274][T13914]  __sys_sendmsg+0x16d/0x220
[  358.235285][T13914]  ? __pfx___sys_sendmsg+0x10/0x10
[  358.235303][T13914]  do_syscall_64+0xcd/0x4c0
[  358.235315][T13914]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.235326][T13914] RIP: 0033:0x7fa7a698e9a9
[  358.235336][T13914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  358.235347][T13914] RSP: 002b:00007fa7a777e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  358.235358][T13914] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698e9a9
[  358.235365][T13914] RDX: 0000000000000000 RSI: 0000200000000d80 RDI: 0000000000000004
[  358.235376][T13914] RBP: 00007fa7a777e090 R08: 0000000000000000 R09: 0000000000000000
[  358.235383][T13914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.235389][T13914] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  358.235402][T13914]  </TASK>
[  358.351265][   T40] audit: type=1326 audit(1753142500.196:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13916 comm="syz.1.2760" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa7a698e9a9 code=0x7ffc0000
[  358.360428][   T40] audit: type=1326 audit(1753142500.196:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13916 comm="syz.1.2760" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa7a698e9a9 code=0x7ffc0000
[  358.371945][   T40] audit: type=1400 audit(1753142500.196:549): avc:  denied  { getopt } for  pid=13916 comm="syz.1.2760" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  358.379804][   T40] audit: type=1326 audit(1753142500.196:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13916 comm="syz.1.2760" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa7a698e9a9 code=0x7ffc0000
[  358.388959][   T40] audit: type=1326 audit(1753142500.196:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13916 comm="syz.1.2760" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa7a698e9a9 code=0x7ffc0000
[  358.399375][   T40] audit: type=1326 audit(1753142500.196:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13916 comm="syz.1.2760" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa7a698e9a9 code=0x7ffc0000
[  358.407478][   T40] audit: type=1326 audit(1753142500.196:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13916 comm="syz.1.2760" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa7a698e9a9 code=0x7ffc0000
[  358.415027][   T40] audit: type=1326 audit(1753142500.196:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13916 comm="syz.1.2760" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa7a698e9a9 code=0x7ffc0000
[  358.422084][   T40] audit: type=1326 audit(1753142500.196:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13916 comm="syz.1.2760" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa7a698e9a9 code=0x7ffc0000
[  358.430704][   T40] audit: type=1326 audit(1753142500.196:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13916 comm="syz.1.2760" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa7a698e9a9 code=0x7ffc0000
[  358.678154][T12837]  (unregistering): Released all slaves
[  359.172412][T13954] FAULT_INJECTION: forcing a failure.
[  359.172412][T13954] name failslab, interval 1, probability 0, space 0, times 0
[  359.178291][T13954] CPU: 3 UID: 0 PID: 13954 Comm: syz.3.2766 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  359.178315][T13954] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.178328][T13954] Call Trace:
[  359.178334][T13954]  <TASK>
[  359.178341][T13954]  dump_stack_lvl+0x16c/0x1f0
[  359.178373][T13954]  should_fail_ex+0x512/0x640
[  359.178401][T13954]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  359.178428][T13954]  should_failslab+0xc2/0x120
[  359.178445][T13954]  __kmalloc_cache_noprof+0x6a/0x3e0
[  359.178469][T13954]  ? __pfx___might_resched+0x10/0x10
[  359.178493][T13954]  ? vhost_task_create+0xe5/0x2e0
[  359.178510][T13954]  ? rcu_is_watching+0x12/0xc0
[  359.178533][T13954]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  359.178586][T13954]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  359.178611][T13954]  vhost_task_create+0xe5/0x2e0
[  359.178630][T13954]  ? __pfx_vhost_task_create+0x10/0x10
[  359.178656][T13954]  ? __pfx_vhost_task_fn+0x10/0x10
[  359.178686][T13954]  kvm_mmu_post_init_vm+0x1b7/0x370
[  359.178712][T13954]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  359.178733][T13954]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  359.178761][T13954]  kvm_vcpu_ioctl+0x5eb/0x1690
[  359.178786][T13954]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  359.178815][T13954]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  359.178836][T13954]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  359.178862][T13954]  ? hook_file_ioctl_common+0x145/0x410
[  359.178890][T13954]  ? selinux_file_ioctl+0x180/0x270
[  359.178907][T13954]  ? selinux_file_ioctl+0xb4/0x270
[  359.178924][T13954]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  359.178947][T13954]  __x64_sys_ioctl+0x18e/0x210
[  359.178972][T13954]  do_syscall_64+0xcd/0x4c0
[  359.178991][T13954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.179022][T13954] RIP: 0033:0x7f05c8d8e9a9
[  359.179038][T13954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.179062][T13954] RSP: 002b:00007f05c9bcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  359.179079][T13954] RAX: ffffffffffffffda RBX: 00007f05c8fb5fa0 RCX: 00007f05c8d8e9a9
[  359.179092][T13954] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  359.179102][T13954] RBP: 00007f05c9bcc090 R08: 0000000000000000 R09: 0000000000000000
[  359.179112][T13954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.179124][T13954] R13: 0000000000000000 R14: 00007f05c8fb5fa0 R15: 00007ffefb9b7a48
[  359.179149][T13954]  </TASK>
[  359.335493][ T5962] Bluetooth: hci2: command tx timeout
[  359.383069][T12837] hsr_slave_0: left promiscuous mode
[  359.399734][T12837] hsr_slave_1: left promiscuous mode
[  359.419485][T12837] veth1_macvtap: left promiscuous mode
[  359.421989][T12837] veth0_macvtap: left promiscuous mode
[  359.424232][T12837] veth1_vlan: left promiscuous mode
[  359.428944][T12837] veth0_vlan: left promiscuous mode
[  359.836676][T13979] FAULT_INJECTION: forcing a failure.
[  359.836676][T13979] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  359.841147][T13979] CPU: 3 UID: 0 PID: 13979 Comm: syz.1.2770 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  359.841161][T13979] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.841168][T13979] Call Trace:
[  359.841175][T13979]  <TASK>
[  359.841182][T13979]  dump_stack_lvl+0x16c/0x1f0
[  359.841214][T13979]  should_fail_ex+0x512/0x640
[  359.841247][T13979]  _copy_from_user+0x2e/0xd0
[  359.841266][T13979]  kvm_arch_vm_ioctl+0xe62/0x1cf0
[  359.841290][T13979]  ? ima_match_policy+0x7ed/0x22d0
[  359.841312][T13979]  ? __pfx_kvm_arch_vm_ioctl+0x10/0x10
[  359.841336][T13979]  ? __lock_acquire+0x622/0x1c90
[  359.841358][T13979]  ? __lock_acquire+0x622/0x1c90
[  359.841382][T13979]  ? __lock_acquire+0x622/0x1c90
[  359.841404][T13979]  ? __lock_acquire+0x622/0x1c90
[  359.841441][T13979]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  359.841468][T13979]  ? is_bpf_text_address+0x94/0x1a0
[  359.841490][T13979]  ? kernel_text_address+0x8d/0x100
[  359.841511][T13979]  ? __kernel_text_address+0xd/0x40
[  359.841530][T13979]  ? unwind_get_return_address+0x59/0xa0
[  359.841549][T13979]  ? arch_stack_walk+0xa6/0x100
[  359.841584][T13979]  ? stack_trace_save+0x8e/0xc0
[  359.841607][T13979]  ? __pfx_stack_trace_save+0x10/0x10
[  359.841631][T13979]  ? stack_depot_save_flags+0x28/0xa40
[  359.841660][T13979]  ? __lock_acquire+0xb8a/0x1c90
[  359.841680][T13979]  ? kasan_save_stack+0x42/0x60
[  359.841705][T13979]  ? kasan_save_stack+0x33/0x60
[  359.841729][T13979]  ? kasan_save_track+0x14/0x30
[  359.841753][T13979]  ? kasan_save_free_info+0x3b/0x60
[  359.841774][T13979]  ? __kasan_slab_free+0x51/0x70
[  359.841799][T13979]  ? kfree+0x2b4/0x4d0
[  359.841821][T13979]  ? tomoyo_path_number_perm+0x470/0x580
[  359.841844][T13979]  ? security_file_ioctl+0x9b/0x240
[  359.841860][T13979]  ? __x64_sys_ioctl+0xb7/0x210
[  359.841882][T13979]  ? do_syscall_64+0xcd/0x4c0
[  359.841903][T13979]  kvm_vm_ioctl+0x19d3/0x3dd0
[  359.841930][T13979]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  359.841971][T13979]  ? kasan_quarantine_put+0x10a/0x240
[  359.841996][T13979]  ? lockdep_hardirqs_on+0x7c/0x110
[  359.842026][T13979]  ? find_held_lock+0x2b/0x80
[  359.842049][T13979]  ? tomoyo_path_number_perm+0x295/0x580
[  359.842078][T13979]  ? tomoyo_path_number_perm+0x18d/0x580
[  359.842107][T13979]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  359.842132][T13979]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  359.842155][T13979]  ? do_vfs_ioctl+0x523/0x1a60
[  359.842178][T13979]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  359.842208][T13979]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  359.842230][T13979]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  359.842254][T13979]  ? hook_file_ioctl_common+0x145/0x410
[  359.842280][T13979]  ? selinux_file_ioctl+0x180/0x270
[  359.842295][T13979]  ? selinux_file_ioctl+0xb4/0x270
[  359.842310][T13979]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  359.842338][T13979]  __x64_sys_ioctl+0x18e/0x210
[  359.842363][T13979]  do_syscall_64+0xcd/0x4c0
[  359.842383][T13979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.842402][T13979] RIP: 0033:0x7fa7a698e9a9
[  359.842417][T13979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.842434][T13979] RSP: 002b:00007fa7a777e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  359.842453][T13979] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698e9a9
[  359.842465][T13979] RDX: 0000200000000040 RSI: 00000000c048ae65 RDI: 0000000000000004
[  359.842477][T13979] RBP: 00007fa7a777e090 R08: 0000000000000000 R09: 0000000000000000
[  359.842488][T13979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.842500][T13979] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  359.842525][T13979]  </TASK>
[  359.904874][ T5962] Bluetooth: hci3: command 0x0c1a tx timeout
[  359.974854][ T5962] Bluetooth: hci1: command 0x0c1a tx timeout
[  360.177141][T13982] FAULT_INJECTION: forcing a failure.
[  360.177141][T13982] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  360.181671][T13982] CPU: 0 UID: 0 PID: 13982 Comm: syz.1.2771 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  360.181687][T13982] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  360.181695][T13982] Call Trace:
[  360.181699][T13982]  <TASK>
[  360.181703][T13982]  dump_stack_lvl+0x16c/0x1f0
[  360.181725][T13982]  should_fail_ex+0x512/0x640
[  360.181744][T13982]  _copy_from_user+0x2e/0xd0
[  360.181756][T13982]  do_devconfig_ioctl+0x117/0x580
[  360.181770][T13982]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[  360.181790][T13982]  ? find_held_lock+0x2b/0x80
[  360.181807][T13982]  comedi_unlocked_ioctl+0x165d/0x2f00
[  360.181825][T13982]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  360.181840][T13982]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  360.181854][T13982]  ? do_vfs_ioctl+0x523/0x1a60
[  360.181869][T13982]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  360.181886][T13982]  ? ioctl_has_perm.constprop.0.isra.0+0x379/0x540
[  360.181898][T13982]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  360.181910][T13982]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  360.181926][T13982]  ? hook_file_ioctl_common+0x145/0x410
[  360.181942][T13982]  ? selinux_file_ioctl+0x180/0x270
[  360.181952][T13982]  ? selinux_file_ioctl+0xb4/0x270
[  360.181963][T13982]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  360.181978][T13982]  __x64_sys_ioctl+0x18e/0x210
[  360.181993][T13982]  do_syscall_64+0xcd/0x4c0
[  360.182005][T13982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.182017][T13982] RIP: 0033:0x7fa7a698e9a9
[  360.182026][T13982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  360.182037][T13982] RSP: 002b:00007fa7a775d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  360.182048][T13982] RAX: ffffffffffffffda RBX: 00007fa7a6bb6080 RCX: 00007fa7a698e9a9
[  360.182055][T13982] RDX: 0000200000000080 RSI: 0000000040946400 RDI: 0000000000000009
[  360.182062][T13982] RBP: 00007fa7a775d090 R08: 0000000000000000 R09: 0000000000000000
[  360.182068][T13982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  360.182075][T13982] R13: 0000000000000000 R14: 00007fa7a6bb6080 R15: 00007ffdc7722478
[  360.182088][T13982]  </TASK>
[  360.258122][    C0] vkms_vblank_simulate: vblank timer overrun
[  360.477672][T13986] FAULT_INJECTION: forcing a failure.
[  360.477672][T13986] name failslab, interval 1, probability 0, space 0, times 0
[  360.481497][T13986] CPU: 0 UID: 0 PID: 13986 Comm: syz.3.2773 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  360.481512][T13986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  360.481519][T13986] Call Trace:
[  360.481523][T13986]  <TASK>
[  360.481528][T13986]  dump_stack_lvl+0x16c/0x1f0
[  360.481551][T13986]  should_fail_ex+0x512/0x640
[  360.481568][T13986]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  360.481594][T13986]  should_failslab+0xc2/0x120
[  360.481613][T13986]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  360.481656][T13986]  ? __alloc_skb+0x2b2/0x380
[  360.481688][T13986]  __alloc_skb+0x2b2/0x380
[  360.481706][T13986]  ? __pfx___alloc_skb+0x10/0x10
[  360.481724][T13986]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  360.481740][T13986]  netlink_alloc_large_skb+0x69/0x130
[  360.481753][T13986]  netlink_sendmsg+0x6a1/0xdd0
[  360.481768][T13986]  ? __pfx_netlink_sendmsg+0x10/0x10
[  360.481786][T13986]  ____sys_sendmsg+0xa95/0xc70
[  360.481800][T13986]  ? copy_msghdr_from_user+0x10a/0x160
[  360.481817][T13986]  ? __pfx_____sys_sendmsg+0x10/0x10
[  360.481837][T13986]  ___sys_sendmsg+0x134/0x1d0
[  360.481855][T13986]  ? __pfx____sys_sendmsg+0x10/0x10
[  360.481871][T13986]  ? __lock_acquire+0x622/0x1c90
[  360.481898][T13986]  __sys_sendmsg+0x16d/0x220
[  360.481908][T13986]  ? __pfx___sys_sendmsg+0x10/0x10
[  360.481923][T13986]  ? fput+0x70/0xf0
[  360.481937][T13986]  do_syscall_64+0xcd/0x4c0
[  360.481949][T13986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.481960][T13986] RIP: 0033:0x7f05c8d8e9a9
[  360.481969][T13986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  360.481981][T13986] RSP: 002b:00007f05c9bcc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  360.481991][T13986] RAX: ffffffffffffffda RBX: 00007f05c8fb5fa0 RCX: 00007f05c8d8e9a9
[  360.481998][T13986] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000009
[  360.482005][T13986] RBP: 00007f05c9bcc090 R08: 0000000000000000 R09: 0000000000000000
[  360.482011][T13986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  360.482017][T13986] R13: 0000000000000000 R14: 00007f05c8fb5fa0 R15: 00007ffefb9b7a48
[  360.482031][T13986]  </TASK>
[  361.114294][T13849] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  361.120584][T13849] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  361.127115][T13849] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  361.132808][T13849] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  361.189560][T13849] 8021q: adding VLAN 0 to HW filter on device bond0
[  361.198351][T13849] 8021q: adding VLAN 0 to HW filter on device team0
[  361.203643][T12848] bridge0: port 1(bridge_slave_0) entered blocking state
[  361.206725][T12848] bridge0: port 1(bridge_slave_0) entered forwarding state
[  361.215366][T12835] bridge0: port 2(bridge_slave_1) entered blocking state
[  361.217700][T12835] bridge0: port 2(bridge_slave_1) entered forwarding state
[  361.354974][ T6301] usb 8-1: new high-speed USB device number 40 using dummy_hcd
[  361.355691][T13849] 8021q: adding VLAN 0 to HW filter on device batadv0
[  361.388776][T13849] veth0_vlan: entered promiscuous mode
[  361.394034][T13849] veth1_vlan: entered promiscuous mode
[  361.414790][ T5962] Bluetooth: hci2: command tx timeout
[  361.417785][T13849] veth0_macvtap: entered promiscuous mode
[  361.421885][T13849] veth1_macvtap: entered promiscuous mode
[  361.431878][T13849] batman_adv: batadv0: Interface activated: batadv_slave_0
[  361.437815][T13849] batman_adv: batadv0: Interface activated: batadv_slave_1
[  361.442607][T13849] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  361.445598][T13849] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  361.448447][T13849] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  361.451237][T13849] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  361.480269][T12837] IPVS: stop unused estimator thread 0...
[  361.499674][T12839] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  361.502130][T12839] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  361.516405][ T6301] usb 8-1: Using ep0 maxpacket: 16
[  361.520363][T12827] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  361.521424][ T6301] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  361.522726][T12827] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  361.527984][ T6301] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  361.531918][ T6301] usb 8-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  361.534849][ T6301] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  361.542787][ T6301] usb 8-1: config 0 descriptor??
[  361.546637][ T6301] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  361.922090][T14034] team0: Device gtp0 is of different type
[  362.031961][T14037] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  362.034058][T14037] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  362.036800][T14037] vhci_hcd vhci_hcd.0: Device attached
[  362.064808][ T5962] Bluetooth: hci1: command 0x0c1a tx timeout
[  362.091395][T14038] vhci_hcd: connection closed
[  362.091626][T12835] vhci_hcd: stop threads
[  362.094545][T12835] vhci_hcd: release socket
[  362.096121][T12835] vhci_hcd: disconnect device
[  363.234064][T14057] FAULT_INJECTION: forcing a failure.
[  363.234064][T14057] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.239513][T14057] CPU: 1 UID: 0 PID: 14057 Comm: syz.1.2789 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  363.239539][T14057] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  363.239552][T14057] Call Trace:
[  363.239558][T14057]  <TASK>
[  363.239567][T14057]  dump_stack_lvl+0x16c/0x1f0
[  363.239599][T14057]  should_fail_ex+0x512/0x640
[  363.239627][T14057]  _copy_from_user+0x2e/0xd0
[  363.239644][T14057]  set_selection_user+0x83/0x140
[  363.239668][T14057]  ? __pfx_set_selection_user+0x10/0x10
[  363.239693][T14057]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  363.239717][T14057]  tioclinux+0x2b1/0x640
[  363.239738][T14057]  vt_ioctl+0x1fdf/0x30a0
[  363.239757][T14057]  ? lockdep_hardirqs_on+0x7c/0x110
[  363.239785][T14057]  ? __pfx_vt_ioctl+0x10/0x10
[  363.239815][T14057]  ? tomoyo_path_number_perm+0x18d/0x580
[  363.239845][T14057]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  363.239869][T14057]  ? do_vfs_ioctl+0x523/0x1a60
[  363.239893][T14057]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  363.239915][T14057]  ? tty_jobctrl_ioctl+0x152/0xe00
[  363.239938][T14057]  ? __pfx_vt_ioctl+0x10/0x10
[  363.239957][T14057]  tty_ioctl+0x65e/0x1640
[  363.239977][T14057]  ? __pfx_tty_ioctl+0x10/0x10
[  363.239995][T14057]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  363.240023][T14057]  ? hook_file_ioctl_common+0x145/0x410
[  363.240053][T14057]  ? selinux_file_ioctl+0x180/0x270
[  363.240072][T14057]  ? selinux_file_ioctl+0xb4/0x270
[  363.240088][T14057]  ? __pfx_tty_ioctl+0x10/0x10
[  363.240104][T14057]  __x64_sys_ioctl+0x18e/0x210
[  363.240127][T14057]  do_syscall_64+0xcd/0x4c0
[  363.240144][T14057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.240159][T14057] RIP: 0033:0x7fa7a698e9a9
[  363.240173][T14057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.240191][T14057] RSP: 002b:00007fa7a777e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  363.240209][T14057] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698e9a9
[  363.240222][T14057] RDX: 0000200000000100 RSI: 000000000000541c RDI: 0000000000000004
[  363.240232][T14057] RBP: 00007fa7a777e090 R08: 0000000000000000 R09: 0000000000000000
[  363.240241][T14057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.240251][T14057] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  363.240273][T14057]  </TASK>
[  363.345340][T14059] FAULT_INJECTION: forcing a failure.
[  363.345340][T14059] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.350752][T14059] CPU: 3 UID: 0 PID: 14059 Comm: syz.1.2790 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  363.350776][T14059] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  363.350788][T14059] Call Trace:
[  363.350795][T14059]  <TASK>
[  363.350802][T14059]  dump_stack_lvl+0x16c/0x1f0
[  363.350835][T14059]  should_fail_ex+0x512/0x640
[  363.350867][T14059]  _copy_to_user+0x32/0xd0
[  363.350888][T14059]  simple_read_from_buffer+0xcb/0x170
[  363.350917][T14059]  proc_fail_nth_read+0x197/0x270
[  363.350945][T14059]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  363.350973][T14059]  ? rw_verify_area+0xcf/0x680
[  363.350996][T14059]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  363.351021][T14059]  vfs_read+0x1e1/0xc60
[  363.351051][T14059]  ? __pfx___mutex_lock+0x10/0x10
[  363.351069][T14059]  ? __pfx_vfs_read+0x10/0x10
[  363.351102][T14059]  ? __fget_files+0x20e/0x3c0
[  363.351126][T14059]  ksys_read+0x12a/0x250
[  363.351151][T14059]  ? __pfx_ksys_read+0x10/0x10
[  363.351177][T14059]  ? fput+0x70/0xf0
[  363.351200][T14059]  do_syscall_64+0xcd/0x4c0
[  363.351220][T14059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.351239][T14059] RIP: 0033:0x7fa7a698d3bc
[  363.351254][T14059] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  363.351270][T14059] RSP: 002b:00007fa7a777e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  363.351287][T14059] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698d3bc
[  363.351300][T14059] RDX: 000000000000000f RSI: 00007fa7a777e0a0 RDI: 0000000000000005
[  363.351311][T14059] RBP: 00007fa7a777e090 R08: 0000000000000000 R09: 0000000000000000
[  363.351322][T14059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.351333][T14059] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  363.351357][T14059]  </TASK>
[  363.495849][ T5962] Bluetooth: hci2: command tx timeout
[  363.519593][T14063] netlink: 'syz.1.2792': attribute type 7 has an invalid length.
[  363.522814][T14063] netlink: 204 bytes leftover after parsing attributes in process `syz.1.2792'.
[  363.528641][   T40] kauditd_printk_skb: 67 callbacks suppressed
[  363.528655][   T40] audit: type=1400 audit(1753142505.376:624): avc:  denied  { ioctl } for  pid=14062 comm="syz.1.2792" path="pid:[4026532878]" dev="nsfs" ino=4026532878 ioctlcmd=0xb702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  363.709776][T14078] FAULT_INJECTION: forcing a failure.
[  363.709776][T14078] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.713973][T14078] CPU: 2 UID: 0 PID: 14078 Comm: syz.1.2797 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  363.713988][T14078] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  363.713994][T14078] Call Trace:
[  363.713999][T14078]  <TASK>
[  363.714003][T14078]  dump_stack_lvl+0x16c/0x1f0
[  363.714024][T14078]  should_fail_ex+0x512/0x640
[  363.714043][T14078]  _copy_from_user+0x2e/0xd0
[  363.714055][T14078]  kvm_vcpu_ioctl+0x366/0x1690
[  363.714071][T14078]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  363.714088][T14078]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  363.714101][T14078]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  363.714121][T14078]  ? selinux_file_ioctl+0x180/0x270
[  363.714130][T14078]  ? selinux_file_ioctl+0xb4/0x270
[  363.714141][T14078]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  363.714160][T14078]  __x64_sys_ioctl+0x18e/0x210
[  363.714176][T14078]  do_syscall_64+0xcd/0x4c0
[  363.714188][T14078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.714199][T14078] RIP: 0033:0x7fa7a698e9a9
[  363.714209][T14078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.714220][T14078] RSP: 002b:00007fa7a777e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  363.714230][T14078] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698e9a9
[  363.714250][T14078] RDX: 0000200000000000 RSI: 000000004048ae9b RDI: 0000000000000005
[  363.714256][T14078] RBP: 00007fa7a777e090 R08: 0000000000000000 R09: 0000000000000000
[  363.714263][T14078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.714269][T14078] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  363.714283][T14078]  </TASK>
[  363.904890][T14083] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  363.907406][T14083] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  363.911035][T14083] vhci_hcd vhci_hcd.0: Device attached
[  363.966867][T14084] vhci_hcd: connection closed
[  363.967129][T12835] vhci_hcd: stop threads
[  363.970293][T12835] vhci_hcd: release socket
[  363.971911][T12835] vhci_hcd: disconnect device
[  364.134782][ T5962] Bluetooth: hci1: command 0x0c1a tx timeout
[  364.138676][   T29] usb 8-1: USB disconnect, device number 40
[  364.331693][   T40] audit: type=1400 audit(1753142506.176:625): avc:  denied  { ioctl } for  pid=14096 comm="syz.3.2803" path="/dev/ptyqa" dev="devtmpfs" ino=137 ioctlcmd=0x5423 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  364.336682][T14097] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14097 comm=syz.3.2803
[  364.454227][   T40] audit: type=1400 audit(1753142506.296:626): avc:  denied  { create } for  pid=14098 comm="syz.4.2804" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  364.462784][   T40] audit: type=1400 audit(1753142506.306:627): avc:  denied  { ioctl } for  pid=14098 comm="syz.4.2804" path="socket:[48794]" dev="sockfs" ino=48794 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  364.794034][T14111] FAULT_INJECTION: forcing a failure.
[  364.794034][T14111] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  364.801252][T14111] CPU: 0 UID: 0 PID: 14111 Comm: syz.0.2805 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  364.801271][T14111] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  364.801279][T14111] Call Trace:
[  364.801283][T14111]  <TASK>
[  364.801287][T14111]  dump_stack_lvl+0x16c/0x1f0
[  364.801308][T14111]  should_fail_ex+0x512/0x640
[  364.801327][T14111]  _copy_from_iter+0x29f/0x16f0
[  364.801340][T14111]  ? __alloc_skb+0x200/0x380
[  364.801358][T14111]  ? __pfx__copy_from_iter+0x10/0x10
[  364.801369][T14111]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  364.801386][T14111]  netlink_sendmsg+0x829/0xdd0
[  364.801401][T14111]  ? __pfx_netlink_sendmsg+0x10/0x10
[  364.801418][T14111]  ____sys_sendmsg+0xa95/0xc70
[  364.801432][T14111]  ? copy_msghdr_from_user+0x10a/0x160
[  364.801449][T14111]  ? __pfx_____sys_sendmsg+0x10/0x10
[  364.801468][T14111]  ___sys_sendmsg+0x134/0x1d0
[  364.801486][T14111]  ? __pfx____sys_sendmsg+0x10/0x10
[  364.801502][T14111]  ? __lock_acquire+0x622/0x1c90
[  364.801527][T14111]  __sys_sendmsg+0x16d/0x220
[  364.801537][T14111]  ? __pfx___sys_sendmsg+0x10/0x10
[  364.801556][T14111]  do_syscall_64+0xcd/0x4c0
[  364.801568][T14111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.801579][T14111] RIP: 0033:0x7f1d5138e9a9
[  364.801588][T14111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  364.801599][T14111] RSP: 002b:00007f1d4f1f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  364.801610][T14111] RAX: ffffffffffffffda RBX: 00007f1d515b6080 RCX: 00007f1d5138e9a9
[  364.801617][T14111] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000003
[  364.801623][T14111] RBP: 00007f1d4f1f6090 R08: 0000000000000000 R09: 0000000000000000
[  364.801630][T14111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  364.801636][T14111] R13: 0000000000000000 R14: 00007f1d515b6080 R15: 00007fffd212f2f8
[  364.801649][T14111]  </TASK>
[  364.880716][T14108] lo speed is unknown, defaulting to 1000
[  365.086367][ T1121] sr 2:0:0:0: [sr0] tag#22 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  365.089866][ T1121] sr 2:0:0:0: [sr0] tag#22 Sense Key : Illegal Request [current] 
[  365.092427][ T1121] sr 2:0:0:0: [sr0] tag#22 Add. Sense: Invalid command operation code
[  365.097243][ T1121] sr 2:0:0:0: [sr0] tag#22 CDB: Write(10) 2a 00 00 00 00 00 00 00 04 00
[  365.100042][ T1121] critical target error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 2 prio class 0
[  365.103711][ T1121] buffer_io_error: 5584 callbacks suppressed
[  365.103723][ T1121] Buffer I/O error on dev sr0, logical block 0, lost async page write
[  365.108809][ T1121] Buffer I/O error on dev sr0, logical block 1, lost async page write
[  365.479360][   T40] audit: type=1400 audit(1753142507.326:628): avc:  denied  { remount } for  pid=14146 comm="syz.3.2814" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  365.574843][ T5962] Bluetooth: hci2: command tx timeout
[  366.244158][T14153] x_tables: duplicate underflow at hook 3
[  366.279362][T14155] FAULT_INJECTION: forcing a failure.
[  366.279362][T14155] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.283801][T14155] CPU: 2 UID: 0 PID: 14155 Comm: syz.1.2817 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  366.283823][T14155] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  366.283834][T14155] Call Trace:
[  366.283842][T14155]  <TASK>
[  366.283849][T14155]  dump_stack_lvl+0x16c/0x1f0
[  366.283883][T14155]  should_fail_ex+0x512/0x640
[  366.283914][T14155]  _copy_to_user+0x32/0xd0
[  366.283928][T14155]  simple_read_from_buffer+0xcb/0x170
[  366.283946][T14155]  proc_fail_nth_read+0x197/0x270
[  366.283963][T14155]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  366.283980][T14155]  ? rw_verify_area+0xcf/0x680
[  366.283994][T14155]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  366.284009][T14155]  vfs_read+0x1e1/0xc60
[  366.284027][T14155]  ? __pfx___mutex_lock+0x10/0x10
[  366.284039][T14155]  ? __pfx_vfs_read+0x10/0x10
[  366.284058][T14155]  ? __fget_files+0x20e/0x3c0
[  366.284072][T14155]  ksys_read+0x12a/0x250
[  366.284087][T14155]  ? __pfx_ksys_read+0x10/0x10
[  366.284103][T14155]  ? fput+0x70/0xf0
[  366.284116][T14155]  do_syscall_64+0xcd/0x4c0
[  366.284128][T14155]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.284140][T14155] RIP: 0033:0x7fa7a698d3bc
[  366.284149][T14155] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  366.284160][T14155] RSP: 002b:00007fa7a777e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  366.284170][T14155] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698d3bc
[  366.284177][T14155] RDX: 000000000000000f RSI: 00007fa7a777e0a0 RDI: 0000000000000004
[  366.284184][T14155] RBP: 00007fa7a777e090 R08: 0000000000000000 R09: 0000000000000000
[  366.284191][T14155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.284197][T14155] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  366.284210][T14155]  </TASK>
[  366.374918][   T40] audit: type=1400 audit(1753142508.216:629): avc:  denied  { map } for  pid=14157 comm="syz.3.2819" path="socket:[48822]" dev="sockfs" ino=48822 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  366.408788][   T40] audit: type=1400 audit(1753142508.256:630): avc:  denied  { setopt } for  pid=14156 comm="syz.1.2818" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  366.443323][T14167] FAULT_INJECTION: forcing a failure.
[  366.443323][T14167] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.447745][T14167] CPU: 3 UID: 0 PID: 14167 Comm: syz.3.2822 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  366.447759][T14167] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  366.447766][T14167] Call Trace:
[  366.447771][T14167]  <TASK>
[  366.447775][T14167]  dump_stack_lvl+0x16c/0x1f0
[  366.447797][T14167]  should_fail_ex+0x512/0x640
[  366.447816][T14167]  _copy_from_user+0x2e/0xd0
[  366.447828][T14167]  video_usercopy+0xedd/0x1720
[  366.447846][T14167]  ? __pfx___video_do_ioctl+0x10/0x10
[  366.447862][T14167]  ? selinux_kernel_read_file+0xf0/0x130
[  366.447875][T14167]  ? __pfx_video_usercopy+0x10/0x10
[  366.447914][T14167]  v4l2_ioctl+0x1bd/0x250
[  366.447937][T14167]  ? __pfx_v4l2_ioctl+0x10/0x10
[  366.447967][T14167]  __x64_sys_ioctl+0x18e/0x210
[  366.447992][T14167]  do_syscall_64+0xcd/0x4c0
[  366.448010][T14167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.448028][T14167] RIP: 0033:0x7f05c8d8e9a9
[  366.448045][T14167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.448062][T14167] RSP: 002b:00007f05c9bcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  366.448082][T14167] RAX: ffffffffffffffda RBX: 00007f05c8fb5fa0 RCX: 00007f05c8d8e9a9
[  366.448095][T14167] RDX: 0000200000000200 RSI: 00000000c0045627 RDI: 0000000000000003
[  366.448106][T14167] RBP: 00007f05c9bcc090 R08: 0000000000000000 R09: 0000000000000000
[  366.448113][T14167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.448119][T14167] R13: 0000000000000000 R14: 00007f05c8fb5fa0 R15: 00007ffefb9b7a48
[  366.448133][T14167]  </TASK>
[  366.806332][   T40] audit: type=1400 audit(1753142508.656:631): avc:  denied  { setopt } for  pid=14175 comm="syz.3.2825" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  366.958809][T14187] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14187 comm=syz.3.2828
[  367.000622][T14189] FAULT_INJECTION: forcing a failure.
[  367.000622][T14189] name failslab, interval 1, probability 0, space 0, times 0
[  367.005884][T14189] CPU: 0 UID: 0 PID: 14189 Comm: syz.3.2829 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  367.005907][T14189] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  367.005919][T14189] Call Trace:
[  367.005926][T14189]  <TASK>
[  367.005933][T14189]  dump_stack_lvl+0x16c/0x1f0
[  367.005966][T14189]  should_fail_ex+0x512/0x640
[  367.005992][T14189]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  367.006022][T14189]  should_failslab+0xc2/0x120
[  367.006040][T14189]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  367.006065][T14189]  ? kfree+0x2b4/0x4d0
[  367.006098][T14189]  ? tomoyo_path_number_perm+0x470/0x580
[  367.006123][T14189]  ? kvm_vm_ioctl+0xbb1/0x3dd0
[  367.006143][T14189]  kvm_vm_ioctl+0xbb1/0x3dd0
[  367.006169][T14189]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  367.006211][T14189]  ? kasan_quarantine_put+0x10a/0x240
[  367.006236][T14189]  ? lockdep_hardirqs_on+0x7c/0x110
[  367.006265][T14189]  ? find_held_lock+0x2b/0x80
[  367.006288][T14189]  ? tomoyo_path_number_perm+0x295/0x580
[  367.006321][T14189]  ? tomoyo_path_number_perm+0x18d/0x580
[  367.006347][T14189]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  367.006372][T14189]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  367.006394][T14189]  ? do_vfs_ioctl+0x523/0x1a60
[  367.006417][T14189]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  367.006447][T14189]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  367.006468][T14189]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  367.006493][T14189]  ? hook_file_ioctl_common+0x145/0x410
[  367.006522][T14189]  ? selinux_file_ioctl+0x180/0x270
[  367.006538][T14189]  ? selinux_file_ioctl+0xb4/0x270
[  367.006555][T14189]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  367.006584][T14189]  __x64_sys_ioctl+0x18e/0x210
[  367.006608][T14189]  do_syscall_64+0xcd/0x4c0
[  367.006628][T14189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.006645][T14189] RIP: 0033:0x7f05c8d8e9a9
[  367.006660][T14189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  367.006676][T14189] RSP: 002b:00007f05c9bcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  367.006694][T14189] RAX: ffffffffffffffda RBX: 00007f05c8fb5fa0 RCX: 00007f05c8d8e9a9
[  367.006706][T14189] RDX: 0000000000000006 RSI: 000000000000ae41 RDI: 0000000000000004
[  367.006717][T14189] RBP: 00007f05c9bcc090 R08: 0000000000000000 R09: 0000000000000000
[  367.006727][T14189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  367.006737][T14189] R13: 0000000000000000 R14: 00007f05c8fb5fa0 R15: 00007ffefb9b7a48
[  367.006761][T14189]  </TASK>
[  367.533935][   T40] audit: type=1400 audit(1753142509.376:632): avc:  denied  { connect } for  pid=14197 comm="syz.1.2833" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  367.586117][T14199] netlink: 172 bytes leftover after parsing attributes in process `syz.1.2833'.
[  367.591622][T14199] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2833'.
[  367.594380][   T40] audit: type=1400 audit(1753142509.436:633): avc:  denied  { write } for  pid=14197 comm="syz.1.2833" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  368.076757][T14204] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2834'.
[  368.215736][T14210] netlink: 88 bytes leftover after parsing attributes in process `syz.0.2837'.
[  368.233254][T14212] fuse: Unknown parameter 'fd0x0000000000000003'
[  368.500982][T14221] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2842'.
[  368.511484][T14222] syz.1.2842: attempt to access beyond end of device
[  368.511484][T14222] nbd1: rw=4096, sector=0, nr_sectors = 1 limit=0
[  368.515902][T14222] XFS (nbd1): SB validate failed with error -5.
[  368.704853][  T837] usb 8-1: new high-speed USB device number 41 using dummy_hcd
[  368.721980][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  368.721993][   T40] audit: type=1400 audit(1753142510.566:636): avc:  denied  { setattr } for  pid=14229 comm="syz.1.2843" name="midiC2D0" dev="devtmpfs" ino=1329 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sound_device_t tclass=chr_file permissive=1
[  368.854771][  T837] usb 8-1: device descriptor read/64, error -71
[  368.865925][T14234] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  368.909375][T14236] FAULT_INJECTION: forcing a failure.
[  368.909375][T14236] name failslab, interval 1, probability 0, space 0, times 0
[  368.914546][T14236] CPU: 2 UID: 0 PID: 14236 Comm: syz.1.2845 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  368.914568][T14236] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  368.914580][T14236] Call Trace:
[  368.914588][T14236]  <TASK>
[  368.914595][T14236]  dump_stack_lvl+0x16c/0x1f0
[  368.914627][T14236]  should_fail_ex+0x512/0x640
[  368.914652][T14236]  ? fs_reclaim_acquire+0xae/0x150
[  368.914673][T14236]  ? tomoyo_encode2+0x100/0x3e0
[  368.914701][T14236]  should_failslab+0xc2/0x120
[  368.914718][T14236]  __kmalloc_noprof+0xd2/0x510
[  368.914746][T14236]  ? d_absolute_path+0x136/0x1a0
[  368.914773][T14236]  tomoyo_encode2+0x100/0x3e0
[  368.914791][T14236]  tomoyo_encode+0x29/0x50
[  368.914805][T14236]  tomoyo_realpath_from_path+0x18f/0x6e0
[  368.914828][T14236]  tomoyo_path_number_perm+0x245/0x580
[  368.914850][T14236]  ? tomoyo_path_number_perm+0x237/0x580
[  368.914876][T14236]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  368.914905][T14236]  ? find_held_lock+0x2b/0x80
[  368.914949][T14236]  ? find_held_lock+0x2b/0x80
[  368.914968][T14236]  ? hook_file_ioctl_common+0x145/0x410
[  368.914992][T14236]  ? __fget_files+0x20e/0x3c0
[  368.915011][T14236]  security_file_ioctl+0x9b/0x240
[  368.915028][T14236]  __x64_sys_ioctl+0xb7/0x210
[  368.915055][T14236]  do_syscall_64+0xcd/0x4c0
[  368.915076][T14236]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.915096][T14236] RIP: 0033:0x7fa7a698e9a9
[  368.915111][T14236] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  368.915126][T14236] RSP: 002b:00007fa7a777e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  368.915141][T14236] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698e9a9
[  368.915152][T14236] RDX: 0000000000000000 RSI: 0000000040046208 RDI: 0000000000000005
[  368.915162][T14236] RBP: 00007fa7a777e090 R08: 0000000000000000 R09: 0000000000000000
[  368.915172][T14236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  368.915181][T14236] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  368.915205][T14236]  </TASK>
[  369.000243][T14236] ERROR: Out of memory at tomoyo_realpath_from_path.
[  369.042418][   T40] audit: type=1400 audit(1753142510.886:637): avc:  denied  { append } for  pid=14237 comm="syz.1.2846" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  369.134828][  T837] usb 8-1: new high-speed USB device number 42 using dummy_hcd
[  369.234145][T14244] fuse: Unknown parameter 'fd0x0000000000000003'
[  369.274782][  T837] usb 8-1: device descriptor read/64, error -71
[  369.385146][  T837] usb usb8-port1: attempt power cycle
[  369.676420][T14246] syzkaller1: entered promiscuous mode
[  369.678806][T14246] syzkaller1: entered allmulticast mode
[  369.734801][  T837] usb 8-1: new high-speed USB device number 43 using dummy_hcd
[  369.765158][  T837] usb 8-1: device descriptor read/8, error -71
[  370.024799][  T837] usb 8-1: new high-speed USB device number 44 using dummy_hcd
[  370.045281][  T837] usb 8-1: device descriptor read/8, error -71
[  370.132719][T14257] FAULT_INJECTION: forcing a failure.
[  370.132719][T14257] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  370.136640][T14257] CPU: 0 UID: 0 PID: 14257 Comm: syz.1.2854 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  370.136654][T14257] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  370.136661][T14257] Call Trace:
[  370.136665][T14257]  <TASK>
[  370.136669][T14257]  dump_stack_lvl+0x16c/0x1f0
[  370.136690][T14257]  should_fail_ex+0x512/0x640
[  370.136710][T14257]  strncpy_from_user+0x3b/0x2e0
[  370.136727][T14257]  getname_flags.part.0+0x8f/0x550
[  370.136743][T14257]  getname_flags+0x93/0xf0
[  370.136759][T14257]  __x64_sys_rename+0x65/0xa0
[  370.136771][T14257]  do_syscall_64+0xcd/0x4c0
[  370.136782][T14257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.136794][T14257] RIP: 0033:0x7fa7a698e9a9
[  370.136803][T14257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.136814][T14257] RSP: 002b:00007fa7a777e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  370.136824][T14257] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698e9a9
[  370.136834][T14257] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000200000000580
[  370.136844][T14257] RBP: 00007fa7a777e090 R08: 0000000000000000 R09: 0000000000000000
[  370.136854][T14257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  370.136863][T14257] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  370.136887][T14257]  </TASK>
[  370.156082][  T837] usb usb8-port1: unable to enumerate USB device
[  370.240977][   T40] audit: type=1400 audit(1753142512.086:638): avc:  denied  { getopt } for  pid=14260 comm="syz.1.2856" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  370.244904][T14261] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1792 sclass=netlink_route_socket pid=14261 comm=syz.1.2856
[  370.386424][T14267] bridge1: entered promiscuous mode
[  371.223105][T14269] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  371.329783][T14277] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2862'.
[  371.380154][T14280] FAULT_INJECTION: forcing a failure.
[  371.380154][T14280] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  371.384192][T14280] CPU: 0 UID: 0 PID: 14280 Comm: syz.0.2863 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  371.384207][T14280] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  371.384215][T14280] Call Trace:
[  371.384219][T14280]  <TASK>
[  371.384224][T14280]  dump_stack_lvl+0x16c/0x1f0
[  371.384247][T14280]  should_fail_ex+0x512/0x640
[  371.384267][T14280]  _copy_from_user+0x2e/0xd0
[  371.384278][T14280]  binder_thread_write+0x13cd/0x4e70
[  371.384299][T14280]  ? __pfx_binder_thread_write+0x10/0x10
[  371.384312][T14280]  ? binder_debug+0xde/0x1a0
[  371.384327][T14280]  ? find_held_lock+0x2b/0x80
[  371.384341][T14280]  ? __might_fault+0xe3/0x190
[  371.384357][T14280]  ? __might_fault+0x13b/0x190
[  371.384377][T14280]  binder_ioctl+0x26a7/0x72c0
[  371.384394][T14280]  ? tomoyo_path_number_perm+0x18d/0x580
[  371.384412][T14280]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  371.384427][T14280]  ? __pfx_binder_ioctl+0x10/0x10
[  371.384439][T14280]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  371.384457][T14280]  ? ioctl_has_perm.constprop.0.isra.0+0x379/0x540
[  371.384468][T14280]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  371.384480][T14280]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  371.384495][T14280]  ? hook_file_ioctl_common+0x145/0x410
[  371.384512][T14280]  ? selinux_file_ioctl+0x180/0x270
[  371.384521][T14280]  ? selinux_file_ioctl+0xb4/0x270
[  371.384532][T14280]  ? __pfx_binder_ioctl+0x10/0x10
[  371.384545][T14280]  __x64_sys_ioctl+0x18e/0x210
[  371.384560][T14280]  do_syscall_64+0xcd/0x4c0
[  371.384572][T14280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.384583][T14280] RIP: 0033:0x7f1d5138e9a9
[  371.384592][T14280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.384603][T14280] RSP: 002b:00007f1d52118038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  371.384614][T14280] RAX: ffffffffffffffda RBX: 00007f1d515b5fa0 RCX: 00007f1d5138e9a9
[  371.384621][T14280] RDX: 00002000000002c0 RSI: 00000000c0306201 RDI: 0000000000000005
[  371.384627][T14280] RBP: 00007f1d52118090 R08: 0000000000000000 R09: 0000000000000000
[  371.384634][T14280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.384640][T14280] R13: 0000000000000000 R14: 00007f1d515b5fa0 R15: 00007fffd212f2f8
[  371.384653][T14280]  </TASK>
[  371.384658][T14280] binder: 14279:14280 ioctl c0306201 2000000002c0 returned -14
[  371.505180][T14282] binder: 14281:14282 ioctl c0306215 2000000002c0 returned -22
[  371.513724][T14284] program syz.3.2865 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  371.546618][T14287] netlink: 'syz.0.2866': attribute type 9 has an invalid length.
[  372.094823][   T24] usb 8-1: new high-speed USB device number 45 using dummy_hcd
[  372.266739][   T24] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  372.270351][   T24] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  372.274479][   T24] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  372.278417][   T24] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  372.280455][T14310] FAULT_INJECTION: forcing a failure.
[  372.280455][T14310] name failslab, interval 1, probability 0, space 0, times 0
[  372.282388][   T24] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  372.287826][T14310] CPU: 0 UID: 0 PID: 14310 Comm: syz.1.2876 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  372.287850][T14310] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  372.287862][T14310] Call Trace:
[  372.287868][T14310]  <TASK>
[  372.287875][T14310]  dump_stack_lvl+0x16c/0x1f0
[  372.287907][T14310]  should_fail_ex+0x512/0x640
[  372.287934][T14310]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  372.287960][T14310]  should_failslab+0xc2/0x120
[  372.287978][T14310]  __kmalloc_cache_noprof+0x6a/0x3e0
[  372.288002][T14310]  ? kasan_save_stack+0x42/0x60
[  372.288027][T14310]  ? fuse_io_alloc+0x47/0x150
[  372.288051][T14310]  ? fuse_direct_IO+0x262/0xf40
[  372.288078][T14310]  fuse_io_alloc+0x47/0x150
[  372.288102][T14310]  fuse_direct_io+0x2fa/0x24f0
[  372.288149][T14310]  ? __pfx_fuse_direct_io+0x10/0x10
[  372.288178][T14310]  ? lockdep_init_map_type+0x5c/0x280
[  372.288201][T14310]  fuse_direct_IO+0x624/0xf40
[  372.288232][T14310]  ? __pfx_aio_complete_rw+0x10/0x10
[  372.288261][T14310]  ? __pfx_fuse_direct_IO+0x10/0x10
[  372.288286][T14310]  ? __pfx___might_resched+0x10/0x10
[  372.288308][T14310]  ? generic_write_check_limits+0x1f1/0x290
[  372.288347][T14310]  fuse_direct_write_iter+0x4c7/0x840
[  372.288373][T14310]  ? register_lock_class+0x41/0x4c0
[  372.288392][T14310]  ? __pfx_fuse_direct_write_iter+0x10/0x10
[  372.288422][T14310]  ? __lock_acquire+0xb8a/0x1c90
[  372.288443][T14310]  ? kasan_save_stack+0x42/0x60
[  372.288479][T14310]  fuse_file_write_iter+0x66c/0x950
[  372.288514][T14310]  aio_write+0x3b6/0x910
[  372.288542][T14310]  ? __pfx_aio_write+0x10/0x10
[  372.288568][T14310]  ? __lock_acquire+0xb8a/0x1c90
[  372.288599][T14310]  ? __might_fault+0xe3/0x190
[  372.288625][T14310]  ? __might_fault+0x13b/0x190
[  372.288656][T14310]  ? io_submit_one+0x1243/0x1df0
[  372.288681][T14310]  io_submit_one+0x1243/0x1df0
[  372.288711][T14310]  ? __lock_acquire+0xb8a/0x1c90
[  372.288731][T14310]  ? __pfx_io_submit_one+0x10/0x10
[  372.288767][T14310]  ? __might_fault+0xe3/0x190
[  372.288791][T14310]  ? __might_fault+0x13b/0x190
[  372.288822][T14310]  ? __x64_sys_io_submit+0x1a9/0x350
[  372.288838][T14310]  __x64_sys_io_submit+0x1a9/0x350
[  372.288858][T14310]  ? __pfx___x64_sys_io_submit+0x10/0x10
[  372.288874][T14310]  ? fput+0x70/0xf0
[  372.288904][T14310]  do_syscall_64+0xcd/0x4c0
[  372.288924][T14310]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.288942][T14310] RIP: 0033:0x7fa7a698e9a9
[  372.288957][T14310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.288975][T14310] RSP: 002b:00007fa7a777e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  372.289016][T14310] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698e9a9
[  372.289028][T14310] RDX: 0000200000000780 RSI: 0000000000000002 RDI: 00007fa7a7734000
[  372.289039][T14310] RBP: 00007fa7a777e090 R08: 0000000000000000 R09: 0000000000000000
[  372.289050][T14310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  372.289061][T14310] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  372.289088][T14310]  </TASK>
[  372.387894][   T24] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  372.390722][   T24] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  372.393195][   T24] usb 8-1: Product: syz
[  372.394516][   T24] usb 8-1: Manufacturer: syz
[  372.398500][   T24] cdc_wdm 8-1:1.0: skipping garbage
[  372.400117][   T24] cdc_wdm 8-1:1.0: skipping garbage
[  372.402735][   T24] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  372.404612][   T24] cdc_wdm 8-1:1.0: Unknown control protocol
[  372.506990][T14313] FAULT_INJECTION: forcing a failure.
[  372.506990][T14313] name failslab, interval 1, probability 0, space 0, times 0
[  372.512109][T14313] CPU: 1 UID: 0 PID: 14313 Comm: syz.1.2877 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  372.512131][T14313] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  372.512142][T14313] Call Trace:
[  372.512150][T14313]  <TASK>
[  372.512157][T14313]  dump_stack_lvl+0x16c/0x1f0
[  372.512190][T14313]  should_fail_ex+0x512/0x640
[  372.512222][T14313]  should_failslab+0xc2/0x120
[  372.512240][T14313]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  372.512265][T14313]  ? lock_acquire+0x179/0x350
[  372.512283][T14313]  ? dst_alloc+0x99/0x1a0
[  372.512311][T14313]  ? __pfx_ip6_dst_gc+0x10/0x10
[  372.512335][T14313]  dst_alloc+0x99/0x1a0
[  372.512363][T14313]  ip6_pol_route+0x96b/0x1230
[  372.512390][T14313]  ? __pfx_ip6_pol_route+0x10/0x10
[  372.512424][T14313]  ? __local_bh_enable_ip+0xa4/0x120
[  372.512451][T14313]  ? __pfx_ip6_pol_route_input+0x10/0x10
[  372.512473][T14313]  fib6_rule_lookup+0x536/0x720
[  372.512503][T14313]  ? __pfx_fib6_rule_lookup+0x10/0x10
[  372.512526][T14313]  ? nf_nat_ipv6_fn+0xff/0x2e0
[  372.512551][T14313]  ? inet6_ehashfn+0x87/0x4f0
[  372.512571][T14313]  ? __pfx_inet6_ehashfn+0x10/0x10
[  372.512593][T14313]  ? ip6table_mangle_hook+0xcb/0x770
[  372.512622][T14313]  ip6_route_input+0x662/0xc00
[  372.512649][T14313]  ? __pfx_ip6_route_input+0x10/0x10
[  372.512671][T14313]  ? lock_acquire+0x179/0x350
[  372.512694][T14313]  ? __pfx___inet6_lookup_established+0x10/0x10
[  372.512723][T14313]  ? tcp_v6_early_demux+0x422/0xbd0
[  372.512752][T14313]  ip6_rcv_finish_core.constprop.0+0x1a0/0x5d0
[  372.512780][T14313]  ipv6_rcv+0x1e8/0x680
[  372.512804][T14313]  ? __pfx_ipv6_rcv+0x10/0x10
[  372.512826][T14313]  __netif_receive_skb_one_core+0x12d/0x1e0
[  372.512853][T14313]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  372.512880][T14313]  ? lock_acquire+0x179/0x350
[  372.512900][T14313]  ? __phys_addr+0xe8/0x180
[  372.512924][T14313]  __netif_receive_skb+0x1d/0x160
[  372.512950][T14313]  netif_receive_skb+0x137/0x7b0
[  372.512974][T14313]  ? __pfx_netif_receive_skb+0x10/0x10
[  372.513032][T14313]  tun_rx_batched.isra.0+0x3ee/0x740
[  372.513065][T14313]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[  372.513105][T14313]  ? tun_get_user+0x1c0d/0x3b80
[  372.513123][T14313]  ? rcu_is_watching+0x12/0xc0
[  372.513151][T14313]  tun_get_user+0x28a2/0x3b80
[  372.513185][T14313]  ? __pfx_tun_get_user+0x10/0x10
[  372.513203][T14313]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  372.513232][T14313]  ? find_held_lock+0x2b/0x80
[  372.513254][T14313]  ? tun_get+0x191/0x370
[  372.513280][T14313]  tun_chr_write_iter+0xdc/0x210
[  372.513303][T14313]  vfs_write+0x6c4/0x1150
[  372.513331][T14313]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  372.513354][T14313]  ? __pfx_vfs_write+0x10/0x10
[  372.513377][T14313]  ? find_held_lock+0x2b/0x80
[  372.513420][T14313]  ksys_write+0x12a/0x250
[  372.513446][T14313]  ? __pfx_ksys_write+0x10/0x10
[  372.513473][T14313]  ? fput+0x70/0xf0
[  372.513501][T14313]  do_syscall_64+0xcd/0x4c0
[  372.513521][T14313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.513540][T14313] RIP: 0033:0x7fa7a698d45f
[  372.513554][T14313] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  372.513571][T14313] RSP: 002b:00007fa7a777e000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  372.513588][T14313] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698d45f
[  372.513600][T14313] RDX: 000000000000004e RSI: 0000200000001600 RDI: 00000000000000c8
[  372.513611][T14313] RBP: 00007fa7a777e090 R08: 0000000000000000 R09: 0000000000000000
[  372.513621][T14313] R10: 000000000000004e R11: 0000000000000293 R12: 0000000000000001
[  372.513632][T14313] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  372.513657][T14313]  </TASK>
[  372.598903][T14306] cdc_wdm 8-1:1.0: Error submitting int urb - -90
[  372.645733][   T24] usb 8-1: USB disconnect, device number 45
[  372.704815][T14315] syz.1.2878: attempt to access beyond end of device
[  372.704815][T14315] nbd1: rw=4096, sector=0, nr_sectors = 1 limit=0
[  372.708910][T14315] XFS (nbd1): SB validate failed with error -5.
[  372.843217][   T40] audit: type=1400 audit(1753142514.686:639): avc:  denied  { getopt } for  pid=14322 comm="syz.1.2879" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  373.321607][T14331] program syz.3.2882 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  373.328353][T14331] ata1.00: invalid transfer count 0
[  373.384821][T14332] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.2882'.
[  373.389095][T14331] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.2882'.
[  373.486828][   T29] IPVS: starting estimator thread 0...
[  373.491772][   T40] audit: type=1400 audit(1753142515.336:640): avc:  denied  { read write } for  pid=14336 comm="syz.3.2884" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  373.498409][   T40] audit: type=1400 audit(1753142515.336:641): avc:  denied  { open } for  pid=14336 comm="syz.3.2884" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  373.504912][   T40] audit: type=1400 audit(1753142515.336:642): avc:  denied  { map } for  pid=14336 comm="syz.3.2884" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  373.511349][   T40] audit: type=1400 audit(1753142515.336:643): avc:  denied  { execute } for  pid=14336 comm="syz.3.2884" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  373.574957][T14338] IPVS: using max 23 ests per chain, 55200 per kthread
[  373.581537][T14345] comedi comedi3: comedi_config --init_data is deprecated
[  373.637097][T14347] FAULT_INJECTION: forcing a failure.
[  373.637097][T14347] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  373.642280][T14347] CPU: 0 UID: 0 PID: 14347 Comm: syz.3.2887 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  373.642302][T14347] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  373.642312][T14347] Call Trace:
[  373.642319][T14347]  <TASK>
[  373.642326][T14347]  dump_stack_lvl+0x16c/0x1f0
[  373.642357][T14347]  should_fail_ex+0x512/0x640
[  373.642387][T14347]  _copy_to_user+0x32/0xd0
[  373.642405][T14347]  simple_read_from_buffer+0xcb/0x170
[  373.642433][T14347]  proc_fail_nth_read+0x197/0x270
[  373.642459][T14347]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  373.642484][T14347]  ? rw_verify_area+0xcf/0x680
[  373.642510][T14347]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  373.642534][T14347]  vfs_read+0x1e1/0xc60
[  373.642562][T14347]  ? __pfx___mutex_lock+0x10/0x10
[  373.642578][T14347]  ? __pfx_vfs_read+0x10/0x10
[  373.642609][T14347]  ? __fget_files+0x20e/0x3c0
[  373.642631][T14347]  ksys_read+0x12a/0x250
[  373.642653][T14347]  ? __pfx_ksys_read+0x10/0x10
[  373.642678][T14347]  ? fput+0x70/0xf0
[  373.642699][T14347]  do_syscall_64+0xcd/0x4c0
[  373.642716][T14347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.642734][T14347] RIP: 0033:0x7f05c8d8d3bc
[  373.642747][T14347] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  373.642763][T14347] RSP: 002b:00007f05c9bcc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  373.642778][T14347] RAX: ffffffffffffffda RBX: 00007f05c8fb5fa0 RCX: 00007f05c8d8d3bc
[  373.642789][T14347] RDX: 000000000000000f RSI: 00007f05c9bcc0a0 RDI: 000000000000000c
[  373.642799][T14347] RBP: 00007f05c9bcc090 R08: 0000000000000000 R09: 0000000000000000
[  373.642809][T14347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  373.642819][T14347] R13: 0000000000000000 R14: 00007f05c8fb5fa0 R15: 00007ffefb9b7a48
[  373.642842][T14347]  </TASK>
[  373.842488][T14350] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  374.234749][   T24] usb 8-1: new high-speed USB device number 46 using dummy_hcd
[  374.407798][   T24] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  374.410506][   T24] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  374.413634][   T24] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  374.416574][   T24] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  374.420015][   T24] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  374.424194][   T24] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  374.427207][   T24] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  374.429703][   T24] usb 8-1: Product: syz
[  374.431079][   T24] usb 8-1: Manufacturer: syz
[  374.435338][   T24] cdc_wdm 8-1:1.0: skipping garbage
[  374.437029][   T24] cdc_wdm 8-1:1.0: skipping garbage
[  374.440705][   T24] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  374.443269][   T24] cdc_wdm 8-1:1.0: Unknown control protocol
[  374.635817][T14355] cdc_wdm 8-1:1.0: Error submitting int urb - -90
[  374.638874][   T24] usb 8-1: USB disconnect, device number 46
[  374.839816][   T40] audit: type=1400 audit(1753142516.686:644): avc:  denied  { setopt } for  pid=14356 comm="syz.0.2890" lport=52327 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  374.848932][   T40] audit: type=1400 audit(1753142516.686:645): avc:  denied  { write } for  pid=14356 comm="syz.0.2890" lport=52327 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  374.928277][T14357] lo speed is unknown, defaulting to 1000
[  374.990691][   T40] audit: type=1326 audit(1753142516.836:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14356 comm="syz.0.2890" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d5138e9a9 code=0x0
[  375.404820][   T29] usb 8-1: new high-speed USB device number 47 using dummy_hcd
[  375.554878][   T29] usb 8-1: Using ep0 maxpacket: 16
[  375.558857][   T29] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  375.562392][   T29] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  375.565484][   T29] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  375.569425][   T29] usb 8-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  375.572225][   T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  375.576434][   T29] usb 8-1: config 0 descriptor??
[  375.796360][T14369] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2893'.
[  375.800755][T14369] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14369 comm=syz.0.2893
[  375.838976][T14372] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  375.841830][T14372] overlayfs: missing 'lowerdir'
[  375.845923][T14372] tmpfs: Unknown parameter '�'
[  375.902945][T14374] FAULT_INJECTION: forcing a failure.
[  375.902945][T14374] name failslab, interval 1, probability 0, space 0, times 0
[  375.909273][T14374] CPU: 0 UID: 0 PID: 14374 Comm: syz.1.2895 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  375.909296][T14374] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  375.909307][T14374] Call Trace:
[  375.909314][T14374]  <TASK>
[  375.909321][T14374]  dump_stack_lvl+0x16c/0x1f0
[  375.909352][T14374]  should_fail_ex+0x512/0x640
[  375.909379][T14374]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  375.909414][T14374]  should_failslab+0xc2/0x120
[  375.909431][T14374]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  375.909455][T14374]  ? vma_merge_new_range+0x37f/0xa00
[  375.909478][T14374]  ? vm_area_alloc+0x1f/0x160
[  375.909505][T14374]  vm_area_alloc+0x1f/0x160
[  375.909527][T14374]  __mmap_region+0xf0a/0x25e0
[  375.909556][T14374]  ? __pfx___mmap_region+0x10/0x10
[  375.909589][T14374]  ? is_bpf_text_address+0x8a/0x1a0
[  375.909609][T14374]  ? bpf_ksym_find+0x127/0x1c0
[  375.909633][T14374]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  375.909658][T14374]  ? is_bpf_text_address+0x94/0x1a0
[  375.909678][T14374]  ? kernel_text_address+0x8d/0x100
[  375.909697][T14374]  ? __kernel_text_address+0xd/0x40
[  375.909764][T14374]  ? mm_get_unmapped_area+0x95/0xe0
[  375.909790][T14374]  mmap_region+0x1ab/0x3f0
[  375.909816][T14374]  ? __get_unmapped_area+0x267/0x440
[  375.909838][T14374]  do_mmap+0xa3e/0x1210
[  375.909863][T14374]  ? __pfx_do_mmap+0x10/0x10
[  375.909884][T14374]  ? __pfx_down_write_killable+0x10/0x10
[  375.909909][T14374]  vm_mmap_pgoff+0x281/0x450
[  375.909932][T14374]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  375.909953][T14374]  ? __fget_files+0x20e/0x3c0
[  375.909978][T14374]  ksys_mmap_pgoff+0x7d/0x5c0
[  375.909997][T14374]  ? __pfx_ksys_write+0x10/0x10
[  375.910024][T14374]  __x64_sys_mmap+0x125/0x190
[  375.910054][T14374]  do_syscall_64+0xcd/0x4c0
[  375.910073][T14374]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.910091][T14374] RIP: 0033:0x7fa7a698e9a9
[  375.910105][T14374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  375.910121][T14374] RSP: 002b:00007fa7a777e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  375.910137][T14374] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698e9a9
[  375.910149][T14374] RDX: b635773f06ebbeef RSI: 0000000000b36000 RDI: 0000200000000000
[  375.910160][T14374] RBP: 00007fa7a777e090 R08: ffffffffffffffff R09: 0000000000000000
[  375.910169][T14374] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000001
[  375.910178][T14374] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  375.910203][T14374]  </TASK>
[  376.205667][T14364] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2891'.
[  376.219950][   T29] usbhid 8-1:0.0: can't add hid device: -71
[  376.221896][   T29] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  376.225416][   T29] usb 8-1: USB disconnect, device number 47
[  376.764518][   T40] audit: type=1400 audit(1753142518.606:647): avc:  denied  { mounton } for  pid=14390 comm="syz.3.2899" path="/161/file0/file0" dev="9p" ino=35913827 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  377.207454][T14410] overlayfs: conflicting lowerdir path
[  377.352707][T14416] FAULT_INJECTION: forcing a failure.
[  377.352707][T14416] name failslab, interval 1, probability 0, space 0, times 0
[  377.357083][T14416] CPU: 2 UID: 0 PID: 14416 Comm: syz.3.2908 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  377.357098][T14416] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  377.357105][T14416] Call Trace:
[  377.357110][T14416]  <TASK>
[  377.357114][T14416]  dump_stack_lvl+0x16c/0x1f0
[  377.357136][T14416]  should_fail_ex+0x512/0x640
[  377.357153][T14416]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  377.357171][T14416]  should_failslab+0xc2/0x120
[  377.357182][T14416]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  377.357199][T14416]  ? alloc_empty_file+0x55/0x1e0
[  377.357224][T14416]  alloc_empty_file+0x55/0x1e0
[  377.357239][T14416]  path_openat+0xda/0x2cb0
[  377.357255][T14416]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.357271][T14416]  ? __pfx_path_openat+0x10/0x10
[  377.357289][T14416]  ? __lock_acquire+0xb8a/0x1c90
[  377.357301][T14416]  do_filp_open+0x20b/0x470
[  377.357318][T14416]  ? __pfx_do_filp_open+0x10/0x10
[  377.357345][T14416]  ? alloc_fd+0x471/0x7d0
[  377.357365][T14416]  do_sys_openat2+0x11b/0x1d0
[  377.357377][T14416]  ? __pfx_do_sys_openat2+0x10/0x10
[  377.357391][T14416]  ? __fget_files+0x20e/0x3c0
[  377.357404][T14416]  __x64_sys_openat+0x174/0x210
[  377.357416][T14416]  ? __pfx___x64_sys_openat+0x10/0x10
[  377.357428][T14416]  ? ksys_write+0x1ac/0x250
[  377.357449][T14416]  do_syscall_64+0xcd/0x4c0
[  377.357464][T14416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.357475][T14416] RIP: 0033:0x7f05c8d8e9a9
[  377.357484][T14416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  377.357495][T14416] RSP: 002b:00007f05c9bcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  377.357506][T14416] RAX: ffffffffffffffda RBX: 00007f05c8fb5fa0 RCX: 00007f05c8d8e9a9
[  377.357513][T14416] RDX: 0000000000000441 RSI: 0000200000000180 RDI: ffffffffffffff9c
[  377.357520][T14416] RBP: 00007f05c9bcc090 R08: 0000000000000000 R09: 0000000000000000
[  377.357527][T14416] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[  377.357533][T14416] R13: 0000000000000000 R14: 00007f05c8fb5fa0 R15: 00007ffefb9b7a48
[  377.357547][T14416]  </TASK>
[  377.691408][T14427] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14427 comm=syz.3.2911
[  377.910904][T14431] fuse: Bad value for 'user_id'
[  377.912546][T14431] fuse: Bad value for 'user_id'
[  377.917368][T14431] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2913'.
[  377.974922][T13920] usb 8-1: new high-speed USB device number 48 using dummy_hcd
[  378.091789][   T40] audit: type=1400 audit(1753142519.936:648): avc:  denied  { watch watch_with_perm watch_reads } for  pid=14440 comm="syz.1.2914" path="/154/bus" dev="tmpfs" ino=828 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  378.121634][   T40] audit: type=1400 audit(1753142519.966:649): avc:  denied  { open } for  pid=14443 comm="syz.1.2915" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=52277 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  378.135000][T13920] usb 8-1: Using ep0 maxpacket: 8
[  378.142845][T13920] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  378.147537][T13920] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  378.151257][T13920] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  378.156860][T13920] usb 8-1: config 0 descriptor??
[  378.170460][T14446] FAULT_INJECTION: forcing a failure.
[  378.170460][T14446] name failslab, interval 1, probability 0, space 0, times 0
[  378.174459][T14446] CPU: 3 UID: 0 PID: 14446 Comm: syz.1.2916 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  378.174473][T14446] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  378.174480][T14446] Call Trace:
[  378.174484][T14446]  <TASK>
[  378.174488][T14446]  dump_stack_lvl+0x16c/0x1f0
[  378.174510][T14446]  should_fail_ex+0x512/0x640
[  378.174527][T14446]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  378.174546][T14446]  should_failslab+0xc2/0x120
[  378.174557][T14446]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  378.174574][T14446]  ? copy_process+0x4b6/0x7650
[  378.174592][T14446]  copy_process+0x4b6/0x7650
[  378.174612][T14446]  ? __pfx_copy_process+0x10/0x10
[  378.174629][T14446]  ? lockdep_init_map_type+0x5c/0x280
[  378.174642][T14446]  ? lockdep_init_map_type+0x5c/0x280
[  378.174652][T14446]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  378.174670][T14446]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  378.174704][T14446]  vhost_task_create+0x1d2/0x2e0
[  378.174725][T14446]  ? __pfx_vhost_task_create+0x10/0x10
[  378.174750][T14446]  ? __pfx_vhost_task_fn+0x10/0x10
[  378.174778][T14446]  kvm_mmu_post_init_vm+0x1b7/0x370
[  378.174803][T14446]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  378.174824][T14446]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  378.174850][T14446]  kvm_vcpu_ioctl+0x5eb/0x1690
[  378.174866][T14446]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  378.174884][T14446]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  378.174897][T14446]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  378.174913][T14446]  ? hook_file_ioctl_common+0x145/0x410
[  378.174931][T14446]  ? selinux_file_ioctl+0x180/0x270
[  378.174941][T14446]  ? selinux_file_ioctl+0xb4/0x270
[  378.174951][T14446]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  378.174966][T14446]  __x64_sys_ioctl+0x18e/0x210
[  378.174982][T14446]  do_syscall_64+0xcd/0x4c0
[  378.174994][T14446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.175005][T14446] RIP: 0033:0x7fa7a698e9a9
[  378.175015][T14446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  378.175026][T14446] RSP: 002b:00007fa7a777e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  378.175037][T14446] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698e9a9
[  378.175045][T14446] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  378.175051][T14446] RBP: 00007fa7a777e090 R08: 0000000000000000 R09: 0000000000000000
[  378.175057][T14446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  378.175063][T14446] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  378.175077][T14446]  </TASK>
[  378.256634][    C3] vkms_vblank_simulate: vblank timer overrun
[  378.297373][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  378.425637][T13920] iowarrior 8-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  378.695303][T14454] FAULT_INJECTION: forcing a failure.
[  378.695303][T14454] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  378.699759][T14454] CPU: 2 UID: 0 PID: 14454 Comm: syz.1.2919 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  378.699782][T14454] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  378.699792][T14454] Call Trace:
[  378.699798][T14454]  <TASK>
[  378.699805][T14454]  dump_stack_lvl+0x16c/0x1f0
[  378.699837][T14454]  should_fail_ex+0x512/0x640
[  378.699866][T14454]  _copy_to_user+0x32/0xd0
[  378.699885][T14454]  simple_read_from_buffer+0xcb/0x170
[  378.699911][T14454]  proc_fail_nth_read+0x197/0x270
[  378.699938][T14454]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  378.699963][T14454]  ? rw_verify_area+0xcf/0x680
[  378.699985][T14454]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  378.700009][T14454]  vfs_read+0x1e1/0xc60
[  378.700035][T14454]  ? __pfx___mutex_lock+0x10/0x10
[  378.700052][T14454]  ? __pfx_vfs_read+0x10/0x10
[  378.700081][T14454]  ? __fget_files+0x20e/0x3c0
[  378.700102][T14454]  ksys_read+0x12a/0x250
[  378.700125][T14454]  ? __pfx_ksys_read+0x10/0x10
[  378.700154][T14454]  ? fput+0x70/0xf0
[  378.700176][T14454]  do_syscall_64+0xcd/0x4c0
[  378.700193][T14454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.700210][T14454] RIP: 0033:0x7fa7a698d3bc
[  378.700223][T14454] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  378.700239][T14454] RSP: 002b:00007fa7a777e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  378.700255][T14454] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698d3bc
[  378.700266][T14454] RDX: 000000000000000f RSI: 00007fa7a777e0a0 RDI: 0000000000000005
[  378.700276][T14454] RBP: 00007fa7a777e090 R08: 0000000000000000 R09: 0000000000000000
[  378.700286][T14454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  378.700295][T14454] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  378.700319][T14454]  </TASK>
[  379.241946][T14467] FAULT_INJECTION: forcing a failure.
[  379.241946][T14467] name failslab, interval 1, probability 0, space 0, times 0
[  379.247199][T14467] CPU: 0 UID: 0 PID: 14467 Comm: syz.1.2924 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  379.247222][T14467] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  379.247233][T14467] Call Trace:
[  379.247241][T14467]  <TASK>
[  379.247248][T14467]  dump_stack_lvl+0x16c/0x1f0
[  379.247280][T14467]  should_fail_ex+0x512/0x640
[  379.247308][T14467]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  379.247336][T14467]  should_failslab+0xc2/0x120
[  379.247355][T14467]  __kmalloc_cache_noprof+0x6a/0x3e0
[  379.247385][T14467]  ? snd_mixer_oss_get_volume1_sw.constprop.0.isra.0+0x319/0x480
[  379.247407][T14467]  ? snd_mixer_oss_get_volume1_sw.constprop.0.isra.0+0x36d/0x480
[  379.247429][T14467]  ? snd_mixer_oss_get_volume1_sw.constprop.0.isra.0+0x9c/0x480
[  379.247455][T14467]  snd_mixer_oss_get_volume1_sw.constprop.0.isra.0+0x9c/0x480
[  379.247481][T14467]  snd_mixer_oss_get_recsrc1_sw+0x104/0x1d0
[  379.247502][T14467]  ? __pfx_snd_mixer_oss_get_recsrc1_sw+0x10/0x10
[  379.247532][T14467]  snd_mixer_oss_ioctl1+0x1880/0x1cf0
[  379.247549][T14467]  ? lockdep_hardirqs_on+0x7c/0x110
[  379.247579][T14467]  ? __pfx_snd_mixer_oss_get_recsrc1_sw+0x10/0x10
[  379.247600][T14467]  ? __pfx_snd_mixer_oss_ioctl1+0x10/0x10
[  379.247624][T14467]  ? tomoyo_path_number_perm+0x18d/0x580
[  379.247655][T14467]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  379.247680][T14467]  ? do_vfs_ioctl+0x523/0x1a60
[  379.247705][T14467]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  379.247732][T14467]  snd_mixer_oss_ioctl_card+0x102/0x170
[  379.247750][T14467]  ? __pfx_snd_mixer_oss_ioctl_card+0x10/0x10
[  379.247772][T14467]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  379.247796][T14467]  snd_pcm_oss_ioctl+0x137c/0x37a0
[  379.247819][T14467]  ? hook_file_ioctl_common+0x145/0x410
[  379.247842][T14467]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  379.247869][T14467]  ? selinux_file_ioctl+0x180/0x270
[  379.247886][T14467]  ? selinux_file_ioctl+0xb4/0x270
[  379.247905][T14467]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  379.247928][T14467]  __x64_sys_ioctl+0x18e/0x210
[  379.247955][T14467]  do_syscall_64+0xcd/0x4c0
[  379.247974][T14467]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.247993][T14467] RIP: 0033:0x7fa7a698e9a9
[  379.248009][T14467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  379.248025][T14467] RSP: 002b:00007fa7a777e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  379.248043][T14467] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698e9a9
[  379.248054][T14467] RDX: 0000200000000840 RSI: 0000000080044dff RDI: 0000000000000003
[  379.248066][T14467] RBP: 00007fa7a777e090 R08: 0000000000000000 R09: 0000000000000000
[  379.248076][T14467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  379.248086][T14467] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  379.248112][T14467]  </TASK>
[  379.400112][T14470] FAULT_INJECTION: forcing a failure.
[  379.400112][T14470] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  379.404333][T14470] CPU: 1 UID: 0 PID: 14470 Comm: syz.1.2925 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  379.404348][T14470] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  379.404355][T14470] Call Trace:
[  379.404360][T14470]  <TASK>
[  379.404365][T14470]  dump_stack_lvl+0x16c/0x1f0
[  379.404386][T14470]  should_fail_ex+0x512/0x640
[  379.404406][T14470]  _copy_to_user+0x32/0xd0
[  379.404418][T14470]  simple_read_from_buffer+0xcb/0x170
[  379.404436][T14470]  proc_fail_nth_read+0x197/0x270
[  379.404453][T14470]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  379.404470][T14470]  ? rw_verify_area+0xcf/0x680
[  379.404484][T14470]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  379.404500][T14470]  vfs_read+0x1e1/0xc60
[  379.404517][T14470]  ? __pfx___mutex_lock+0x10/0x10
[  379.404528][T14470]  ? __pfx_vfs_read+0x10/0x10
[  379.404547][T14470]  ? __fget_files+0x20e/0x3c0
[  379.404561][T14470]  ksys_read+0x12a/0x250
[  379.404576][T14470]  ? __pfx_ksys_read+0x10/0x10
[  379.404592][T14470]  ? __secure_computing+0x28e/0x3b0
[  379.404610][T14470]  do_syscall_64+0xcd/0x4c0
[  379.404622][T14470]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.404633][T14470] RIP: 0033:0x7fa7a698d3bc
[  379.404643][T14470] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  379.404653][T14470] RSP: 002b:00007fa7a777e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  379.404664][T14470] RAX: ffffffffffffffda RBX: 00007fa7a6bb5fa0 RCX: 00007fa7a698d3bc
[  379.404672][T14470] RDX: 000000000000000f RSI: 00007fa7a777e0a0 RDI: 0000000000000009
[  379.404690][T14470] RBP: 00007fa7a777e090 R08: 0000000000000000 R09: 0000000000000000
[  379.404698][T14470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  379.404704][T14470] R13: 0000000000000000 R14: 00007fa7a6bb5fa0 R15: 00007ffdc7722478
[  379.404718][T14470]  </TASK>
[  379.566662][ T5955] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  379.573111][ T5955] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  379.579296][ T5955] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  379.583794][ T5955] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  379.586957][ T5955] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  379.690263][T14473] lo speed is unknown, defaulting to 1000
[  379.831118][T14473] chnl_net:caif_netlink_parms(): no params data found
[  379.907551][T14473] bridge0: port 1(bridge_slave_0) entered blocking state
[  379.910851][T14473] bridge0: port 1(bridge_slave_0) entered disabled state
[  379.913132][T14473] bridge_slave_0: entered allmulticast mode
[  379.916290][T14473] bridge_slave_0: entered promiscuous mode
[  379.920355][T14473] bridge0: port 2(bridge_slave_1) entered blocking state
[  379.923418][T14473] bridge0: port 2(bridge_slave_1) entered disabled state
[  379.926795][T14473] bridge_slave_1: entered allmulticast mode
[  379.930621][T14473] bridge_slave_1: entered promiscuous mode
[  379.986686][T14473] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  379.993370][T14473] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  380.052604][T14473] team0: Port device team_slave_0 added
[  380.060790][T14473] team0: Port device team_slave_1 added
[  380.090790][T14473] batman_adv: batadv0: Adding interface: batadv_slave_0
[  380.092980][T14473] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  380.101265][T14473] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  380.106030][T14473] batman_adv: batadv0: Adding interface: batadv_slave_1
[  380.108186][T14473] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  380.117402][T14473] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  380.160058][T14473] hsr_slave_0: entered promiscuous mode
[  380.163305][T14473] hsr_slave_1: entered promiscuous mode
[  380.166542][T14473] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  380.169693][T14473] Cannot create hsr debugfs directory
[  380.330926][T14473] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  380.335706][T14473] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  380.339829][T14473] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  380.343701][T14473] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  380.357453][T14473] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.360278][T14473] bridge0: port 2(bridge_slave_1) entered forwarding state
[  380.363288][T14473] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.366197][T14473] bridge0: port 1(bridge_slave_0) entered forwarding state
[  380.406771][T14473] 8021q: adding VLAN 0 to HW filter on device bond0
[  380.419562][T12839] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.423146][T12839] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.437940][T14473] 8021q: adding VLAN 0 to HW filter on device team0
[  380.447001][T12839] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.450056][T12839] bridge0: port 1(bridge_slave_0) entered forwarding state
[  380.459331][T12836] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.462008][T12836] bridge0: port 2(bridge_slave_1) entered forwarding state
[  380.585043][T14473] 8021q: adding VLAN 0 to HW filter on device batadv0
[  380.737693][T14473] veth0_vlan: entered promiscuous mode
[  380.740935][  T837] usb 8-1: USB disconnect, device number 48
[  380.750305][T14473] veth1_vlan: entered promiscuous mode
[  380.768468][T14473] veth0_macvtap: entered promiscuous mode
[  380.774254][T14473] veth1_macvtap: entered promiscuous mode
[  380.789440][T14473] batman_adv: batadv0: Interface activated: batadv_slave_0
[  380.796678][T14473] batman_adv: batadv0: Interface activated: batadv_slave_1
[  380.801807][T14473] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  380.804432][T14473] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  380.807212][T14473] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  380.809890][T14473] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  380.840971][T12836] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  380.844127][T12836] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  380.856737][T12835] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  380.859231][T12835] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  380.954583][T14514] netlink: 'syz.5.2926': attribute type 1 has an invalid length.
[  381.094770][  T837] usb 8-1: new low-speed USB device number 49 using dummy_hcd
[  381.256146][  T837] usb 8-1: config 0 has an invalid interface number: 55 but max is 0
[  381.258808][  T837] usb 8-1: config 0 has no interface number 0
[  381.260876][  T837] usb 8-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  381.265106][  T837] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  381.268337][  T837] usb 8-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  381.271839][  T837] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  381.275763][  T837] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  381.279140][  T837] usb 8-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  381.283228][  T837] usb 8-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  381.286348][  T837] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  381.294879][  T837] usb 8-1: config 0 descriptor??
[  381.297081][T14511] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  381.299492][T14511] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  381.303747][  T837] ldusb 8-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  381.511815][   T29] usb 8-1: USB disconnect, device number 49
[  381.513542][    C3] ldusb 8-1:0.55: usb_submit_urb failed (-19)
[  381.519430][   T29] ldusb 8-1:0.55: LD USB Device #0 now disconnected
[  381.655184][ T5955] Bluetooth: hci4: command tx timeout
[  382.052091][T14520] FAULT_INJECTION: forcing a failure.
[  382.052091][T14520] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  382.056673][T14520] CPU: 2 UID: 0 PID: 14520 Comm: syz.3.2935 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  382.056688][T14520] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  382.056695][T14520] Call Trace:
[  382.056699][T14520]  <TASK>
[  382.056703][T14520]  dump_stack_lvl+0x16c/0x1f0
[  382.056724][T14520]  should_fail_ex+0x512/0x640
[  382.056744][T14520]  _copy_to_user+0x32/0xd0
[  382.056756][T14520]  simple_read_from_buffer+0xcb/0x170
[  382.056774][T14520]  proc_fail_nth_read+0x197/0x270
[  382.056791][T14520]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  382.056808][T14520]  ? rw_verify_area+0xcf/0x680
[  382.056822][T14520]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  382.056838][T14520]  vfs_read+0x1e1/0xc60
[  382.056855][T14520]  ? __pfx___mutex_lock+0x10/0x10
[  382.056866][T14520]  ? __pfx_vfs_read+0x10/0x10
[  382.056885][T14520]  ? __fget_files+0x20e/0x3c0
[  382.056919][T14520]  ksys_read+0x12a/0x250
[  382.056945][T14520]  ? __pfx_ksys_read+0x10/0x10
[  382.056969][T14520]  ? fput+0x70/0xf0
[  382.056992][T14520]  do_syscall_64+0xcd/0x4c0
[  382.057012][T14520]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.057032][T14520] RIP: 0033:0x7f05c8d8d3bc
[  382.057047][T14520] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  382.057064][T14520] RSP: 002b:00007f05c9bcc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  382.057081][T14520] RAX: ffffffffffffffda RBX: 00007f05c8fb5fa0 RCX: 00007f05c8d8d3bc
[  382.057093][T14520] RDX: 000000000000000f RSI: 00007f05c9bcc0a0 RDI: 0000000000000005
[  382.057103][T14520] RBP: 00007f05c9bcc090 R08: 0000000000000000 R09: 0000000000000000
[  382.057114][T14520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  382.057125][T14520] R13: 0000000000000000 R14: 00007f05c8fb5fa0 R15: 00007ffefb9b7a48
[  382.057150][T14520]  </TASK>
[  382.444853][   T29] usb 8-1: new high-speed USB device number 50 using dummy_hcd
[  382.606203][   T29] usb 8-1: config 0 has no interfaces?
[  382.609702][   T29] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  382.612566][   T29] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  382.615420][   T29] usb 8-1: Product: syz
[  382.617252][   T29] usb 8-1: Manufacturer: syz
[  382.618727][   T29] usb 8-1: SerialNumber: syz
[  382.621980][   T29] usb 8-1: config 0 descriptor??
[  382.828089][T14527] FAULT_INJECTION: forcing a failure.
[  382.828089][T14527] name failslab, interval 1, probability 0, space 0, times 0
[  382.832011][T14527] CPU: 0 UID: 0 PID: 14527 Comm: syz.3.2938 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  382.832025][T14527] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  382.832032][T14527] Call Trace:
[  382.832037][T14527]  <TASK>
[  382.832041][T14527]  dump_stack_lvl+0x16c/0x1f0
[  382.832062][T14527]  should_fail_ex+0x512/0x640
[  382.832080][T14527]  ? fs_reclaim_acquire+0xae/0x150
[  382.832094][T14527]  ? tomoyo_encode2+0x100/0x3e0
[  382.832104][T14527]  should_failslab+0xc2/0x120
[  382.832115][T14527]  __kmalloc_noprof+0xd2/0x510
[  382.832132][T14527]  ? d_absolute_path+0x136/0x1a0
[  382.832148][T14527]  tomoyo_encode2+0x100/0x3e0
[  382.832160][T14527]  tomoyo_encode+0x29/0x50
[  382.832170][T14527]  tomoyo_realpath_from_path+0x18f/0x6e0
[  382.832185][T14527]  tomoyo_path_number_perm+0x245/0x580
[  382.832201][T14527]  ? tomoyo_path_number_perm+0x237/0x580
[  382.832217][T14527]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  382.832234][T14527]  ? find_held_lock+0x2b/0x80
[  382.832260][T14527]  ? find_held_lock+0x2b/0x80
[  382.832273][T14527]  ? hook_file_ioctl_common+0x145/0x410
[  382.832289][T14527]  ? __fget_files+0x20e/0x3c0
[  382.832302][T14527]  security_file_ioctl+0x9b/0x240
[  382.832314][T14527]  __x64_sys_ioctl+0xb7/0x210
[  382.832330][T14527]  do_syscall_64+0xcd/0x4c0
[  382.832342][T14527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.832353][T14527] RIP: 0033:0x7f05c8d8e9a9
[  382.832363][T14527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  382.832374][T14527] RSP: 002b:00007f05c9bcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  382.832385][T14527] RAX: ffffffffffffffda RBX: 00007f05c8fb5fa0 RCX: 00007f05c8d8e9a9
[  382.832392][T14527] RDX: 0000200000000100 RSI: 0000000000005423 RDI: 0000000000000003
[  382.832398][T14527] RBP: 00007f05c9bcc090 R08: 0000000000000000 R09: 0000000000000000
[  382.832405][T14527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  382.832411][T14527] R13: 0000000000000000 R14: 00007f05c8fb5fa0 R15: 00007ffefb9b7a48
[  382.832428][T14527]  </TASK>
[  382.832439][T14527] ERROR: Out of memory at tomoyo_realpath_from_path.
[  383.008950][   T54] usb 8-1: USB disconnect, device number 50
[  383.030282][T14559] FAULT_INJECTION: forcing a failure.
[  383.030282][T14559] name failslab, interval 1, probability 0, space 0, times 0
[  383.036058][T14559] CPU: 3 UID: 0 PID: 14559 Comm: syz.5.2944 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  383.036081][T14559] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  383.036092][T14559] Call Trace:
[  383.036098][T14559]  <TASK>
[  383.036105][T14559]  dump_stack_lvl+0x16c/0x1f0
[  383.036132][T14559]  should_fail_ex+0x512/0x640
[  383.036163][T14559]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  383.036188][T14559]  should_failslab+0xc2/0x120
[  383.036203][T14559]  __kmalloc_cache_noprof+0x6a/0x3e0
[  383.036223][T14559]  ? dev_ethtool+0x1a2/0x5b90
[  383.036249][T14559]  dev_ethtool+0x1a2/0x5b90
[  383.036270][T14559]  ? __kernel_text_address+0xd/0x40
[  383.036288][T14559]  ? unwind_get_return_address+0x59/0xa0
[  383.036305][T14559]  ? arch_stack_walk+0xa6/0x100
[  383.036324][T14559]  ? __pfx_dev_ethtool+0x10/0x10
[  383.036347][T14559]  ? stack_trace_save+0x8e/0xc0
[  383.036369][T14559]  ? __pfx_stack_trace_save+0x10/0x10
[  383.036390][T14559]  ? stack_depot_save_flags+0x28/0xa40
[  383.036415][T14559]  ? __lock_acquire+0xb8a/0x1c90
[  383.036435][T14559]  ? __lock_acquire+0x622/0x1c90
[  383.036457][T14559]  ? find_held_lock+0x2b/0x80
[  383.036478][T14559]  ? avc_has_extended_perms+0x33a/0x1090
[  383.036500][T14559]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  383.036523][T14559]  ? __lock_acquire+0x622/0x1c90
[  383.036543][T14559]  ? find_held_lock+0x2b/0x80
[  383.036564][T14559]  ? dev_load+0x8e/0x240
[  383.036610][T14559]  dev_ioctl+0x290/0x10e0
[  383.036636][T14559]  sock_do_ioctl+0x19d/0x280
[  383.036655][T14559]  ? __pfx_sock_do_ioctl+0x10/0x10
[  383.036679][T14559]  ? ioctl_has_perm.constprop.0.isra.0+0x379/0x540
[  383.036696][T14559]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  383.036714][T14559]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  383.036732][T14559]  sock_ioctl+0x227/0x6b0
[  383.036750][T14559]  ? __pfx_sock_ioctl+0x10/0x10
[  383.036769][T14559]  ? hook_file_ioctl_common+0x145/0x410
[  383.036792][T14559]  ? selinux_file_ioctl+0x180/0x270
[  383.036806][T14559]  ? selinux_file_ioctl+0xb4/0x270
[  383.036823][T14559]  ? __pfx_sock_ioctl+0x10/0x10
[  383.036845][T14559]  __x64_sys_ioctl+0x18e/0x210
[  383.036868][T14559]  do_syscall_64+0xcd/0x4c0
[  383.036883][T14559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.036917][T14559] RIP: 0033:0x7fd78038e9a9
[  383.036931][T14559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  383.036946][T14559] RSP: 002b:00007fd78129c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  383.036963][T14559] RAX: ffffffffffffffda RBX: 00007fd7805b5fa0 RCX: 00007fd78038e9a9
[  383.036971][T14559] RDX: 0000200000000000 RSI: 0000000000008946 RDI: 0000000000000003
[  383.036978][T14559] RBP: 00007fd78129c090 R08: 0000000000000000 R09: 0000000000000000
[  383.036984][T14559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  383.036991][T14559] R13: 0000000000000000 R14: 00007fd7805b5fa0 R15: 00007ffe7e0e8c48
[  383.037004][T14559]  </TASK>
[  383.202488][T14569] FAULT_INJECTION: forcing a failure.
[  383.202488][T14569] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  383.208677][T14569] CPU: 1 UID: 0 PID: 14569 Comm: syz.5.2946 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  383.208693][T14569] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  383.208701][T14569] Call Trace:
[  383.208705][T14569]  <TASK>
[  383.208710][T14569]  dump_stack_lvl+0x16c/0x1f0
[  383.208732][T14569]  should_fail_ex+0x512/0x640
[  383.208751][T14569]  _copy_to_user+0x32/0xd0
[  383.208764][T14569]  simple_read_from_buffer+0xcb/0x170
[  383.208782][T14569]  proc_fail_nth_read+0x197/0x270
[  383.208799][T14569]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  383.208816][T14569]  ? rw_verify_area+0xcf/0x680
[  383.208830][T14569]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  383.208846][T14569]  vfs_read+0x1e1/0xc60
[  383.208863][T14569]  ? __pfx___mutex_lock+0x10/0x10
[  383.208874][T14569]  ? __pfx_vfs_read+0x10/0x10
[  383.208910][T14569]  ? __fget_files+0x20e/0x3c0
[  383.208925][T14569]  ksys_read+0x12a/0x250
[  383.208940][T14569]  ? __pfx_ksys_read+0x10/0x10
[  383.208956][T14569]  ? fput+0x70/0xf0
[  383.208969][T14569]  do_syscall_64+0xcd/0x4c0
[  383.208981][T14569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.208993][T14569] RIP: 0033:0x7fd78038d3bc
[  383.209002][T14569] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  383.209013][T14569] RSP: 002b:00007fd78129c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  383.209024][T14569] RAX: ffffffffffffffda RBX: 00007fd7805b5fa0 RCX: 00007fd78038d3bc
[  383.209031][T14569] RDX: 000000000000000f RSI: 00007fd78129c0a0 RDI: 0000000000000005
[  383.209037][T14569] RBP: 00007fd78129c090 R08: 0000000000000000 R09: 0000000000000000
[  383.209044][T14569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  383.209050][T14569] R13: 0000000000000000 R14: 00007fd7805b5fa0 R15: 00007ffe7e0e8c48
[  383.209064][T14569]  </TASK>
[  383.366990][T14577] FAULT_INJECTION: forcing a failure.
[  383.366990][T14577] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  383.371273][T14577] CPU: 2 UID: 0 PID: 14577 Comm: syz.5.2948 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  383.371310][T14577] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  383.371321][T14577] Call Trace:
[  383.371328][T14577]  <TASK>
[  383.371333][T14577]  dump_stack_lvl+0x16c/0x1f0
[  383.371354][T14577]  should_fail_ex+0x512/0x640
[  383.371374][T14577]  _copy_to_user+0x32/0xd0
[  383.371388][T14577]  simple_read_from_buffer+0xcb/0x170
[  383.371406][T14577]  proc_fail_nth_read+0x197/0x270
[  383.371424][T14577]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  383.371440][T14577]  ? rw_verify_area+0xcf/0x680
[  383.371454][T14577]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  383.371470][T14577]  vfs_read+0x1e1/0xc60
[  383.371488][T14577]  ? __pfx___mutex_lock+0x10/0x10
[  383.371499][T14577]  ? __pfx_vfs_read+0x10/0x10
[  383.371531][T14577]  ? __fget_files+0x20e/0x3c0
[  383.371546][T14577]  ksys_read+0x12a/0x250
[  383.371562][T14577]  ? __pfx_ksys_read+0x10/0x10
[  383.371578][T14577]  ? fput+0x70/0xf0
[  383.371591][T14577]  do_syscall_64+0xcd/0x4c0
[  383.371604][T14577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.371615][T14577] RIP: 0033:0x7fd78038d3bc
[  383.371624][T14577] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  383.371636][T14577] RSP: 002b:00007fd78129c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  383.371646][T14577] RAX: ffffffffffffffda RBX: 00007fd7805b5fa0 RCX: 00007fd78038d3bc
[  383.371653][T14577] RDX: 000000000000000f RSI: 00007fd78129c0a0 RDI: 0000000000000006
[  383.371660][T14577] RBP: 00007fd78129c090 R08: 0000000000000000 R09: 0000000000000000
[  383.371666][T14577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  383.371672][T14577] R13: 0000000000000000 R14: 00007fd7805b5fa0 R15: 00007ffe7e0e8c48
[  383.371686][T14577]  </TASK>
[  383.584299][T14592] Oops: general protection fault, probably for non-canonical address 0xdffffc000000005f: 0000 [#1] SMP KASAN NOPTI
[  383.588074][T14592] KASAN: null-ptr-deref in range [0x00000000000002f8-0x00000000000002ff]
[  383.591200][T14592] CPU: 2 UID: 0 PID: 14592 Comm: syz.3.2953 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  383.595288][T14592] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  383.598599][T14592] RIP: 0010:h5_recv+0x104/0x910
[  383.600129][T14592] Code: c1 e8 03 4c 01 f0 48 89 44 24 08 48 8d 83 08 03 00 00 48 89 44 24 30 48 c1 e8 03 48 89 44 24 10 e8 e1 c2 4e f9 48 8b 44 24 08 <80> 38 00 0f 85 ae 01 00 00 48 89 ea 48 89 e9 4c 8b bb f8 02 00 00
[  383.606074][T14592] RSP: 0018:ffffc90006affc00 EFLAGS: 00010293
[  383.607962][T14592] RAX: dffffc000000005f RBX: 0000000000000000 RCX: ffffffff886d254a
[  383.610365][T14592] RDX: ffff88802d1b0000 RSI: ffffffff886d258f RDI: 0000000000000005
[  383.612799][T14592] RBP: ffffc90006affd88 R08: 0000000000000005 R09: 0000000000000000
[  383.615778][T14592] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001
[  383.618995][T14592] R13: 0000000000000001 R14: dffffc0000000000 R15: ffffffff8cb35120
[  383.622203][T14592] FS:  00007f05c9bab6c0(0000) GS:ffff8880d6920000(0000) knlGS:0000000000000000
[  383.626220][T14592] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  383.628958][T14592] CR2: 00007f05c8d74740 CR3: 000000010516e000 CR4: 0000000000352ef0
[  383.632135][T14592] Call Trace:
[  383.633564][T14592]  <TASK>
[  383.634866][T14592]  ? __pfx_h5_recv+0x10/0x10
[  383.636822][T14592]  hci_uart_tty_receive+0x254/0x7e0
[  383.639008][T14592]  ? __pfx_hci_uart_tty_receive+0x10/0x10
[  383.641388][T14592]  tty_ioctl+0x583/0x1640
[  383.643192][T14592]  ? __pfx_tty_ioctl+0x10/0x10
[  383.645198][T14592]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  383.647988][T14592]  ? hook_file_ioctl_common+0x145/0x410
[  383.650293][T14592]  ? selinux_file_ioctl+0x180/0x270
[  383.652435][T14592]  ? selinux_file_ioctl+0xb4/0x270
[  383.654574][T14592]  ? __pfx_tty_ioctl+0x10/0x10
[  383.656575][T14592]  __x64_sys_ioctl+0x18e/0x210
[  383.658630][T14592]  do_syscall_64+0xcd/0x4c0
[  383.660586][T14592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.662766][T14592] RIP: 0033:0x7f05c8d8e9a9
[  383.664162][T14592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  383.671364][T14592] RSP: 002b:00007f05c9bab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  383.674067][T14592] RAX: ffffffffffffffda RBX: 00007f05c8fb6080 RCX: 00007f05c8d8e9a9
[  383.676500][T14592] RDX: 0000200000000140 RSI: 0000000000005412 RDI: 000000000000000c
[  383.678859][T14592] RBP: 00007f05c8e10d69 R08: 0000000000000000 R09: 0000000000000000
[  383.681167][T14592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  383.683626][T14592] R13: 0000000000000000 R14: 00007f05c8fb6080 R15: 00007ffefb9b7a48
[  383.686091][T14592]  </TASK>
[  383.687252][T14592] Modules linked in:
[  383.689338][T14592] ---[ end trace 0000000000000000 ]---
[  383.695552][T14592] RIP: 0010:h5_recv+0x104/0x910
[  383.697088][   T40] audit: type=1400 audit(1753142525.536:650): avc:  denied  { read } for  pid=5341 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  383.697224][T14592] Code: c1 e8 03 4c 01 f0 48 89 44 24 08 48 8d 83 08 03 00 00 48 89 44 24 30 48 c1 e8 03 48 89 44 24 10 e8 e1 c2 4e f9 48 8b 44 24 08 <80> 38 00 0f 85 ae 01 00 00 48 89 ea 48 89 e9 4c 8b bb f8 02 00 00
[  383.704034][   T40] audit: type=1400 audit(1753142525.546:651): avc:  denied  { search } for  pid=5341 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  383.704057][   T40] audit: type=1400 audit(1753142525.546:652): avc:  denied  { search } for  pid=5341 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  383.704075][   T40] audit: type=1400 audit(1753142525.546:653): avc:  denied  { add_name } for  pid=5341 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  383.724466][T14602] FAULT_INJECTION: forcing a failure.
[  383.724466][T14602] name failslab, interval 1, probability 0, space 0, times 0
[  383.734038][T14595] lo speed is unknown, defaulting to 1000
[  383.736032][   T40] audit: type=1400 audit(1753142525.546:654): avc:  denied  { create } for  pid=5341 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  383.742878][   T40] audit: type=1400 audit(1753142525.546:655): avc:  denied  { append open } for  pid=5341 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  383.749996][ T5955] Bluetooth: hci4: command tx timeout
[  383.751772][T14592] RSP: 0018:ffffc90006affc00 EFLAGS: 00010293
[  383.752243][   T40] audit: type=1400 audit(1753142525.546:656): avc:  denied  { getattr } for  pid=5341 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  383.754175][T14592] RAX: dffffc000000005f RBX: 0000000000000000 RCX: ffffffff886d254a
[  383.754825][T14602] CPU: 0 UID: 0 PID: 14602 Comm: syz.0.2954 Tainted: G      D             6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  383.754851][T14602] Tainted: [D]=DIE
[  383.754857][T14602] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  383.754867][T14602] Call Trace:
[  383.754873][T14602]  <TASK>
[  383.754879][T14602]  dump_stack_lvl+0x16c/0x1f0
[  383.754909][T14602]  should_fail_ex+0x512/0x640
[  383.754936][T14602]  should_failslab+0xc2/0x120
[  383.754953][T14602]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  383.754977][T14602]  ? skb_clone+0x190/0x3f0
[  383.754992][T14602]  ? netlink_deliver_tap+0x103/0xd30
[  383.755011][T14602]  skb_clone+0x190/0x3f0
[  383.755026][T14602]  netlink_deliver_tap+0xabd/0xd30
[  383.755045][T14602]  netlink_unicast+0x62f/0x850
[  383.755064][T14602]  ? __pfx_netlink_unicast+0x10/0x10
[  383.755085][T14602]  netlink_sendmsg+0x8d1/0xdd0
[  383.755104][T14602]  ? __pfx_netlink_sendmsg+0x10/0x10
[  383.755126][T14602]  ____sys_sendmsg+0xa95/0xc70
[  383.755145][T14602]  ? copy_msghdr_from_user+0x10a/0x160
[  383.755170][T14602]  ? __pfx_____sys_sendmsg+0x10/0x10
[  383.755188][T14602]  ? __pfx_kstrtouint+0x10/0x10
[  383.755210][T14602]  ? kstrtouint_from_user+0x13c/0x1d0
[  383.755231][T14602]  ___sys_sendmsg+0x134/0x1d0
[  383.755256][T14602]  ? __pfx____sys_sendmsg+0x10/0x10
[  383.755284][T14602]  ? rcu_is_watching+0x12/0xc0
[  383.755312][T14602]  __sys_sendmsg+0x16d/0x220
[  383.755327][T14602]  ? __pfx___sys_sendmsg+0x10/0x10
[  383.755348][T14602]  do_syscall_64+0xcd/0x4c0
[  383.755365][T14602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.755387][T14602] RIP: 0033:0x7f1d5138e9a9
[  383.755400][T14602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  383.755416][T14602] RSP: 002b:00007f1d4f1f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  383.755432][T14602] RAX: ffffffffffffffda RBX: 00007f1d515b6080 RCX: 00007f1d5138e9a9
[  383.755443][T14602] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000003
[  383.755452][T14602] RBP: 00007f1d4f1f6090 R08: 0000000000000000 R09: 0000000000000000
[  383.755463][T14602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  383.755472][T14602] R13: 0000000000000000 R14: 00007f1d515b6080 R15: 00007fffd212f2f8
[  383.755488][T14602]  </TASK>
[  383.755513][T14602] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2954'.
[  383.836218][T14592] RDX: ffff88802d1b0000 RSI: ffffffff886d258f RDI: 0000000000000005
[  383.838721][T14592] RBP: ffffc90006affd88 R08: 0000000000000005 R09: 0000000000000000
[  383.841228][T14592] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001
[  383.843619][T14592] R13: 0000000000000001 R14: dffffc0000000000 R15: ffffffff8cb35120
[  383.854579][T14592] FS:  00007f05c9bab6c0(0000) GS:ffff8880d6820000(0000) knlGS:0000000000000000
[  383.857506][T14592] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  383.859629][T14592] CR2: 000055e4f86a2b08 CR3: 000000010516e000 CR4: 0000000000352ef0
[  383.862091][T14592] Kernel panic - not syncing: Fatal exception
[  383.864636][T14592] Kernel Offset: disabled
[  383.866017][T14592] Rebooting in 86400 seconds..

VM DIAGNOSIS:
00:02:05  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffff88806a63fe20 RCX=ffffffff81afd3cd RDX=ffff888058cdc880
RSI=ffffffff81afd3a9 RDI=0000000000000005 RBP=0000000000000001 RSP=ffffc90003d77778
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000002c00
R12=dffffc0000000000 R13=0000000000000003 R14=ffffed100d4c7fc5 R15=ffff88806a43b580
RIP=ffffffff81afd3af RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6720000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f1d52117f98 CR3=000000000e382000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000009 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0800000 Opmask01=0000000000004211 Opmask02=000000007ffeffff Opmask03=0000000000000000
Opmask04=00000000ffffdfff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 353a37622f617461 642f766564752f6e
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 0000560bff0276c0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f25b37d17f0 00007f25b37d17e0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ff00000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000ff0000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6a7d70646c60636d 7078677063636664
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 697d2f1e126a7b6e 7b7c706363666469
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000560bfbc0bdd0 00706d742e353a37 622f617461642f76 6564752f6e75722f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 404d005640515c47 0550491d00050505 05050505051f405f 4c560540494c4300
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6573756f6d2d746e 6576652d313a302d 6273752d322e6463 685f796d6d750035
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e2e65726f632e74 656e2e6c74637379 73203034313d6873 657268745f676f64
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e617020343d7372 6f6e696d5f796361 67656c5f6d756e5f 6964656d6f632e69
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 64656d6f63203233 3d78616d5f736462 6e2032333d706f6f 6c5f78616d203233
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3d6d756e2e646368 5f796d6d75642030 34313d736365735f 74756f656d69745f
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7265747369676572 6e755f7665647465 6e2e65726f632e74 656e2e6c74637379
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2d2f626163006c65 636261243a652d61 32243a00276d002a 692720003a695d00
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffff88806a53b500 RCX=ffffffff81afeab3 RDX=ffff88801dad4880
RSI=ffffffff81afea8d RDI=0000000000000005 RBP=ffffc90000157d08 RSP=ffffc90000157bc0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=fffffbfff1cb9f9e
R12=1ffff9200002af80 R13=0000000000000003 R14=0000000000000001 R15=ffffed100d4a76a1
RIP=ffffffff81afea8f RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6820000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fa7a6bb7bac CR3=0000000114dde000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a6a11d42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a6a11d4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a6a11d49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a6a11d5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a6a11de3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a6a11ec1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a6b86488 00007fa7a6b86480 00007fa7a6b86478 00007fa7a6b86450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a76ed100 00007fa7a6b86440 00007fa7a6b86458 00007fa7a6b864a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a6b86498 00007fa7a6b86490 00007fa7a6b86488 00007fa7a6b86480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000003 0000000000000000 0000000000000000 00000000000000d0
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000039 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff855a56e5 RDI=ffffffff9b0b9e60 RBP=ffffffff9b0b9e20 RSP=ffffc90006aff570
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552032203a555043
R12=0000000000000000 R13=0000000000000039 R14=ffffffff9b0b9e20 R15=ffffffff855a5680
RIP=ffffffff855a570f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f05c9bab6c0 ffffffff 00c00000
GS =0000 ffff8880d6920000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f05c8d74740 CR3=000000010516e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd7805866a3 00007fd7805866a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd78129bf70 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd780411d42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd780411d4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd780411d49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd780411d5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd780411de3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd780411ec1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000003 RBX=ffff8880333c09d8 RCX=0000000000000000 RDX=0000000000000000
RSI=ffffffff8c157360 RDI=ffffffff8c1573a0 RBP=0000000000000000 RSP=ffffc90006c67690
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=00000000000104ff
R12=0000000000000001 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8b869428 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fd78129c6c0 ffffffff 00c00000
GS =0000 ffff8880d6a20000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c2e9859 CR3=000000011b057000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000e08e000c 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd780411d42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd780411d4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd780411d49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd780411d5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd780411de3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd780411ec1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd780586488 00007fd780586480 00007fd780586478 00007fd780586450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd7810ed100 00007fd780586440 00007fd780580004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd780586498 00007fd780586490 00007fd780586488 00007fd780586480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000006 0000000000000000 0000000000000000 0000000000000218
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000