last executing test programs:

1m1.57103093s ago: executing program 1 (id=2373):
r0 = semget$private(0x0, 0x4000000009, 0x0)
r1 = creat(&(0x7f00000000c0)='./bus\x00', 0x118)
r2 = open(&(0x7f0000000380)='./bus\x00', 0x0, 0x0)
r3 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f0000000000)={0x28, 0x2, 0x0, {0x2, 0x0, 0x9}}, 0x28)
sendfile(r3, r2, 0x0, 0x4000000053d2)
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000072"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r4)
r5 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r5, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x30004081)
r6 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0f000000040000000400000016"], 0x50)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000100)=ANY=[@ANYRES32=r7, @ANYRES32=r6, @ANYBLOB='&\x00'/12], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r7}, &(0x7f00000001c0), &(0x7f0000000080)=r4}, 0x20)
recvmsg$kcm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000480)=""/99, 0x63}], 0x1}, 0x21)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r8, 0xffffffffffffffff, 0x0)
semop(r0, &(0x7f0000000200), 0x53)

1m0.690850629s ago: executing program 1 (id=2377):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x88}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r2, &(0x7f00000001c0)=[{&(0x7f0000000380)="26f6", 0x2}], 0x1)
close(r0)

1m0.569516439s ago: executing program 1 (id=2378):
r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r1=>0x0})
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)={0x24, r0, 0x1, 0x70bd28, 0x1, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r1}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}]}, 0x24}}, 0x80)

1m0.490072765s ago: executing program 1 (id=2381):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x70bd2a, 0x25dfdbfd, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40008c0}, 0x4400)
prctl$PR_GET_NAME(0x10, &(0x7f0000000040)=""/38)
r1 = open(&(0x7f00000002c0)='.\x00', 0x500, 0x104)
fcntl$notify(r1, 0x402, 0x8000003d)
getdents(r1, &(0x7f0000000300)=""/215, 0xd7)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x200000e, 0x110, r2, 0x454ed000)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r4 = dup(r3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r4, 0x2000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
r5 = fsopen(&(0x7f00000000c0)='exfat\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000ac0)='gid', &(0x7f0000000440)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k', 0x0)
write$binfmt_aout(r4, 0x0, 0xffffffdb)
prctl$PR_GET_NAME(0x10, &(0x7f0000000b00)=""/4096)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ptrace(0x8, 0x0)

1m0.019065035s ago: executing program 1 (id=2391):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000340)='./file0\x00', 0x0)
setpgid(r0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x6280, 0x4)
r2 = socket$kcm(0x11, 0x3, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
getpeername$packet(r3, 0x0, &(0x7f0000000500))
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000340)={0x0, <r4=>0x0}, &(0x7f0000000540)=0xc)
setresuid(r4, r4, r4)
statx(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x6000, 0x20, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
fchownat(r1, &(0x7f0000000280)='./file0\x00', r4, r5, 0x100)
setpgid(0x0, r0)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000002000000010000000000001010000000000063efec4f9176fb7d8cbc9069797f7050830984cc93feb4ef97d3e24c9e6e4c38b08d5ff399b64e1e9d5ac678fb7f81cc2e03161ca76cefdc87d42b07168d687d34e729a54a6e8737e2a2e808e54b01c72095ef62"], 0x0, 0x26, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r7, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)={0x18, r8, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8811}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x9, 0x8, 0x8, 0x90, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r6, 0x5, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000000)={[{@subsystem='hugetlb'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x40000, 0x0)
ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x74, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x30, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}, {0x18, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0x4}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xbc}}, 0x20050800)
ioctl$KVM_GET_MSR_INDEX_LIST(r9, 0xc004ae02, &(0x7f00000000c0)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4e85f8fe47d9877d)

59.530485854s ago: executing program 1 (id=2398):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x70bd2a, 0x25dfdbfd, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40008c0}, 0x4400)
prctl$PR_GET_NAME(0x10, &(0x7f0000000040)=""/38)
r1 = open(&(0x7f00000002c0)='.\x00', 0x500, 0x104)
fcntl$notify(r1, 0x402, 0x8000003d)
getdents(r1, &(0x7f0000000300)=""/215, 0xd7)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x200000e, 0x110, r2, 0x454ed000)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r4 = dup(r3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r4, 0x2000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
r5 = fsopen(&(0x7f00000000c0)='exfat\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000ac0)='gid', &(0x7f0000000440)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k', 0x0)
write$binfmt_aout(r4, 0x0, 0xffffffdb)
prctl$PR_GET_NAME(0x10, &(0x7f0000000b00)=""/4096)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ptrace(0x8, 0x0)

44.532814958s ago: executing program 32 (id=2398):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x70bd2a, 0x25dfdbfd, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40008c0}, 0x4400)
prctl$PR_GET_NAME(0x10, &(0x7f0000000040)=""/38)
r1 = open(&(0x7f00000002c0)='.\x00', 0x500, 0x104)
fcntl$notify(r1, 0x402, 0x8000003d)
getdents(r1, &(0x7f0000000300)=""/215, 0xd7)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x200000e, 0x110, r2, 0x454ed000)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r4 = dup(r3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r4, 0x2000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
r5 = fsopen(&(0x7f00000000c0)='exfat\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000ac0)='gid', &(0x7f0000000440)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k', 0x0)
write$binfmt_aout(r4, 0x0, 0xffffffdb)
prctl$PR_GET_NAME(0x10, &(0x7f0000000b00)=""/4096)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ptrace(0x8, 0x0)

3.117706193s ago: executing program 0 (id=3098):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000000)={'gre0\x00', &(0x7f0000000280)={'syztnl2\x00', <r3=>0x0, 0xf800, 0x1, 0xb, 0xffffffff, {{0x24, 0x4, 0x1, 0x13, 0x90, 0x64, 0x0, 0x11, 0x2f, 0x0, @rand_addr=0x64010100, @loopback, {[@timestamp={0x44, 0x2c, 0xf6, 0x0, 0x6, [0x3, 0x2, 0x5, 0x7, 0x82, 0xd, 0x9, 0x0, 0x648b, 0x4]}, @cipso={0x86, 0xa, 0x3, [{0x6, 0x4, "ae38"}]}, @timestamp_prespec={0x44, 0x44, 0x78, 0x3, 0x3, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x1}, {@loopback, 0x50000}, {@loopback, 0x9}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x7}, {@local, 0xffff}, {@dev={0xac, 0x14, 0x14, 0x37}}, {@empty, 0xc31}, {@loopback, 0x3}]}]}}}}})
pipe(&(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write(r5, &(0x7f0000000340), 0x11000)
vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
bind$can_j1939(r2, &(0x7f00000001c0)={0x1d, r3, 0x1, {0x2, 0xf0, 0x1}, 0xfd}, 0x18)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000280)=[{0xc}, {0x6, 0x0, 0x0, 0x7fff7ff7}]})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000100)="b9ff03316844268cb89e14f086dd", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60}, 0x50)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r7 = dup(r6)
fadvise64(r7, 0x0, 0xfffffffffffffffc, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x36)

1.540076406s ago: executing program 0 (id=3109):
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
r2 = io_uring_setup(0x59a1, &(0x7f0000000140)={0x0, 0x7d69, 0x8000, 0x0, 0xb0, 0x0, r1})
r3 = syz_io_uring_setup(0xd1, &(0x7f0000000480)={0x0, 0x7ab9, 0x100, 0x22, 0x352, 0x0, r2}, &(0x7f0000000080)=<r4=>0x0, &(0x7f0000000100))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000000)=0x103, 0x0, 0x4)
r5 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
r6 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
r7 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_int(r7, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4)
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x33, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x6}]}, 0x10)
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x44, &(0x7f0000000000)={0x0, 0x0}, 0x10)
close_range(r5, r6, 0x0)
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000780)='loginuid\x00')
read$FUSE(r8, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xffff, @void, @value}, 0x94)
io_uring_enter(r3, 0x47ba, 0x0, 0x0, 0x0, 0x0)

1.399455179s ago: executing program 0 (id=3113):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000ccb000)={0x2, 0x4e20, @local}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f00000039c0)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b05, &(0x7f0000000100)={'wlan0\x00'})
r3 = socket$kcm(0x29, 0x5, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000040), 0xb, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r4, 0xc0405602, &(0x7f0000000080)={0x14, 0x1, 0x3, "3a8e07ca5de21f00000000000000000000004b5c00", 0x33424752})
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f0000000180)={r0, r1})
sendmsg$rds(r3, &(0x7f0000002940)={0x0, 0x0, &(0x7f0000002800)=[{&(0x7f0000002980)=""/4112, 0xfffffe09}], 0x1}, 0x0)
write(r3, 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]})
open_tree(0xffffffffffffff9c, 0x0, 0x89901)

1.040445151s ago: executing program 4 (id=3120):
r0 = syz_open_dev$evdev(&(0x7f00000012c0), 0x1, 0x0)
ioctl$EVIOCGID(r0, 0x80084502, &(0x7f0000001300)=""/30)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="00fddbdf250900020073797a30000000000800410072786500140033006c6f00"/56], 0x38}, 0x1, 0x0, 0x0, 0x40008c0}, 0x4400)

959.922497ms ago: executing program 4 (id=3121):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newtfilter={0xa0, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x70, 0x2, [@TCA_BASIC_EMATCHES={0x6c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x60, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{}, {0x0, 0x0, 0x1}}}, @TCF_EM_META={0x4c, 0x2, 0x0, 0x0, {{0x0, 0x4, 0x4}, [@TCA_EM_META_HDR={0xc}, @TCA_EM_META_LVALUE={0x4}, @TCA_EM_META_RVALUE={0x10, 0x3, [@TCF_META_TYPE_INT=0x9, @TCF_META_TYPE_INT=0x3, @TCF_META_TYPE_INT=0x8001]}, @TCA_EM_META_LVALUE={0xf, 0x2, [@TCF_META_TYPE_INT=0x9, @TCF_META_TYPE_VAR="f0fae8c25a9809"]}, @TCA_EM_META_LVALUE={0xd, 0x2, [@TCF_META_TYPE_VAR="dbaa851172c2a80a8f"]}]}}]}]}]}}]}, 0xa0}}, 0x0)

890.21426ms ago: executing program 4 (id=3123):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x800}, 0x10)
r2 = syz_io_uring_setup(0x95, &(0x7f0000000140)={0x0, 0x1, 0x0, 0x0, 0x3}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000100)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f00000004c0)={0x20102, 0x0, 0x28}, &(0x7f0000000500)='./file0\x00', 0x18})
io_uring_enter(r2, 0x4536, 0x6aaf, 0x0, 0x0, 0x0)
sendmsg$tipc(r1, &(0x7f0000000300)={&(0x7f0000000040)=@name={0x1e, 0x2, 0x3, {{0x40, 0x2}, 0x2}}, 0x10, 0x0, 0xfec8, 0x0, 0x0, 0x4008001}, 0x48045)
r5 = socket$kcm(0x10, 0x2, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000140)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "2a8435", 0x28, 0x6, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x4, 0xa, 0xc2, 0x100, 0x0, 0x0, {[@nop, @exp_smc={0xfe, 0x6}, @timestamp={0x8, 0xa, 0x9, 0x7}]}}}}}}}}, 0x0)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000300)="d8000000180081054e81f782db4cb904021d080406037c09e8fe55a10a0015400200142603600e122f00160006000500a8000600200006400700027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdfb8951f215ce3bbce81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92782f9ffcdb020e6f3baf26d57a000000000000", 0xd8}], 0x1, 0x0, 0x0, 0x4a0f0000}, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r6 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r7 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt(r7, 0x84, 0x83, &(0x7f00000002c0)="1a00000002000000", 0x8)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x400, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x0, 0x4}, {0x2, 0x8}, {0x6, 0x9}}, ["", "", ""]}, 0x24}}, 0x40004)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="340000003e000900000000000008000003000000040004001c000180180010"], 0x34}}, 0x84)
pipe2$watch_queue(&(0x7f0000000000)={<r9=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r9, 0x5761, &(0x7f0000000180)={0x3, 0x0, [{0x4, 0x0, 0x0, [0x3c17, 0x1000, 0x9, 0x5, 0x8, 0xbad, 0x3, 0xfffffffb]}, {0x1, 0x5, 0x8001, [0x1, 0x9b, 0x5, 0x2, 0xffffffff, 0x6, 0xf, 0xfffffffe]}, {0x4, 0xffffffff, 0x785c, [0x7, 0x7, 0x3, 0xbd, 0x5, 0x9, 0x9, 0x3]}]})
ioctl$RTC_WKALM_SET(r6, 0x4028700f, &(0x7f0000000140)={0x6, 0x0, {0x20, 0x37, 0x9, 0x10, 0x2, 0xee6d, 0x0, 0xf7, 0x1}})

890.037156ms ago: executing program 3 (id=3124):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000040), 0xd22, 0x1a1802)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000000)={0x0, &(0x7f00000001c0), 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f0000000240)={0x0, 0x0, 0x0, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000300)={r2, 0x0, 0x9, 0x1, 0x0, [<r3=>0x0], [0x9, 0x0, 0x0, 0x8], [0x3, 0x0, 0xfe, 0xd], [0x9da, 0x0, 0xfffffffffffffffd, 0x80000000000000]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f0000000080)={r3, 0x0, <r4=>0xffffffffffffffff})
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1000004, 0x13, r4, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})

707.002762ms ago: executing program 3 (id=3125):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00')
pread64(r1, &(0x7f0000000080)=""/237, 0xed, 0x0)

619.312931ms ago: executing program 4 (id=3126):
r0 = openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$UI_SET_PHYS(r0, 0x4008556c, &(0x7f0000000180)='syz1\x00')

619.018403ms ago: executing program 3 (id=3127):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x88}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r2, &(0x7f00000001c0)=[{&(0x7f0000000380)="26f6", 0x2}], 0x1)
close(r0)

617.297258ms ago: executing program 4 (id=3128):
read$FUSE(0xffffffffffffffff, &(0x7f0000000540)={0x2020}, 0x2020)
syz_emit_vhci(&(0x7f0000002a00)=@HCI_EVENT_PKT={0x4, @hci_ev_mode_change={{0x14, 0x6}, {0x1, 0xc9}}}, 0x9)
syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000000000001860000000000000000000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700), 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/tcp\x00')
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
write$binfmt_misc(r0, &(0x7f0000000000)="180c4552", 0x4)

559.923017ms ago: executing program 3 (id=3129):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='coredump_filter\x00')
writev(r1, &(0x7f0000000100)=[{&(0x7f00000004c0)='4', 0x1}], 0x9)
r2 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="000000001f0000001a"])
mkdir(&(0x7f0000000180)='./file0\x00', 0x334)
unshare(0x20000400)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r3 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r3, 0x0, 0x11)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, &(0x7f00000003c0)={{0x7e}, 'port0\x00', 0x511e36599023629, 0x1000, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r4, 0x0)
r5 = syz_io_uring_setup(0x24fa, &(0x7f00000002c0)={0x0, 0xfffffffd, 0x10100, 0x1, 0x2, 0x0, r4}, &(0x7f0000000140)=<r6=>0x0, &(0x7f0000000200)=<r7=>0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r8, &(0x7f00000001c0)=ANY=[@ANYBLOB='2'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r8, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x2})
io_uring_enter(r5, 0x2d41, 0x0, 0x0, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x15, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000000000007bc23c22c47a74cfb5af100f84c60e0e144f0f04bfffe66a22d132a161eea53a46a5316f6800"/75], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f00000002c0)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r10 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r10, 0x1, 0x34, &(0x7f00000000c0)=r9, 0x4)
dup(0xffffffffffffffff)
ioctl$FITHAW(r10, 0xc0045878)
sendmsg$nl_xfrm(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000240)=ANY=[@ANYBLOB="d200000021000100000000000100000000000000000000000000000000000000fe8000000000000000000000000000bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000050001100ac1414aa000000000000000000000000fe8000000000000000000000000000aa00000000000000000000000000000000fc020000000000000000000000000000ff000000033500fb07000200"], 0xa0}}, 0x0)

500.085767ms ago: executing program 0 (id=3130):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f00000007c0)=ANY=[@ANYRESHEX, @ANYRES32=r0, @ANYBLOB="4e3a101eac6f94bd87ec7302eea90c803f76415085af3a0cc5d57270af23f335011b81ee13738c1f9f3e009dae29e6906fd6bd5a728670993126f21738ec9cf1aa87ce04a4d80879fb7487db026c5a8b8d895cd58e16a42719b7bbacd85f6f36d4b6da68fa2231cc64fb93b8b1641f71bc3854eec1a7eba3db75725087f8a895a3d5391bab0af92a9a2ff1f56425e18e3a21f362b202c308b5c5f4c0d0ab1372b410ccc198d9e73a7e0de8e06012533937dd33c60a54d6805f456018ca05e6525190b8ef291f9a96db7e191bf274c4412ae14dee41674984db88220cbd657aec12663a1967753d0d", @ANYRES32=r0, @ANYBLOB="83304d", @ANYBLOB="6131a3a77aee06a8c8ed32b7b6eeb7569b2f8daa4b5984eff7a3487ed755231132a7814219c12887965ca77ec5ce473ca47d43a8c54000d67149a5c03f78d4fe3d0fdd564ef57306dcc47c3182acebbad0308c82c40e32d3f8a5fca5a196b8d3b757aeed7f6e05834afba897f23eb3fb1b84b3fe5005739e1e6bca818609250ca5b35d67348a832e7463484083e8299fc4"], 0x0)
write$binfmt_script(r2, &(0x7f0000000480)={'#! ', '', [{0x20, '\x00'}, {}, {}, {}, {0x20, 'blkio.bfq.time_recursive\x00'}, {0x20, ',}'}, {0x20, '\x165)!#'}, {0x20, 'blkio.bfq.time_recursive\x00'}]}, 0x46)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f0000000b40)=[{&(0x7f0000000080)=""/124, 0x7c}, {&(0x7f0000000580)=""/244, 0xf4}, {&(0x7f0000000980)=""/200, 0xc8}, {&(0x7f0000000bc0)=""/174, 0xae}, {&(0x7f0000000a80)=""/149, 0x95}, {&(0x7f00000001c0)=""/28, 0x1c}, {&(0x7f0000000300)=""/21, 0x15}], 0x7, 0x0, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000280), 0x284502, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r3, 0x3b85, &(0x7f0000000040)={0x28, 0x62cd04bf2e29beed, r4, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000, 0x5})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r3, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r4, 0x0, <r5=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r3, 0x3ba0, &(0x7f0000000100)={0x48, 0x7, r5, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x334e8b})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r3, 0x3ba0, &(0x7f0000000740)={0xffffffffffffff66, 0x7, r5, 0x0, 0x0, 0x0, 0x20005, 0x19575f, 0x2de4c0, 0x8000000})
getsockname$netrom(r2, 0x0, &(0x7f00000006c0))
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000000308"], 0x30}}, 0x20008004)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x10001, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000500)="ba610066b800a0000066ef0f66be3000b86c008ee80f79c90f01debaf80c66b8c0ca058366efbafc0cb80068ef6766c7442400000000006766c74424023d0d00006766c744240600000000670f011424660f3839880050baa10066ed0f01d1", 0x5f}], 0x1, 0x1, 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000440)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, 0xffffffffffffffff, 0x0, 0x9}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000400)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="24000000200001030000000000000000020000000000000000000000080017"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
bind$packet(r8, &(0x7f00000000c0)={0x11, 0x6, 0x0, 0x1, 0x3, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x14)
getsockopt$sock_linger(r7, 0x1, 0x3b, &(0x7f00000002c0), &(0x7f0000000780)=0x8)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

499.835389ms ago: executing program 2 (id=3131):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0, 0x300})

499.624592ms ago: executing program 4 (id=3132):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca0000c441f96ec80fc4c60066400fe2def3ad46c7045300101000f00fc01ec422e10399c5c1202066410f6f15040000000000e1f563df", 0xdc000006, 0x0}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
sysfs$1(0x64, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x66b8, 0x80000001, 0x7, 0x2, 0x0, 0x2, 0x0, 0xfffffffffffffffa, 0x0, 0x100008, 0x0, 0x248a, 0x9, 0x7, 0x0, 0x0, 0x3ff, 0xf, 0x0, 0x4, 0x5999, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0, 0x2be, 0xffffffffffffffff})
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYRESHEX=r0], 0x0}, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

427.939189ms ago: executing program 2 (id=3133):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000040), 0xd22, 0x1a1802)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000000)={0x0, &(0x7f00000001c0), 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f0000000240)={0x0, 0x0, 0x0, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000300)={r2, 0x0, 0x9, 0x1, 0x0, [<r3=>0x0], [0x9, 0x0, 0x0, 0x8], [0x3, 0x0, 0xfe, 0xd], [0x9da, 0x0, 0xfffffffffffffffd, 0x80000000000000]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f0000000080)={r3, 0x0, <r4=>0xffffffffffffffff})
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1000004, 0x13, r4, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})

288.456646ms ago: executing program 2 (id=3134):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r0, 0x7a4, 0x0)

288.130693ms ago: executing program 2 (id=3135):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r1, 0x0, 0x8, &(0x7f00000000c0)=0x9, 0x4)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x68, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}}}}}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

201.152737ms ago: executing program 0 (id=3136):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = syz_open_procfs(0x0, 0x0)
pread64(r1, &(0x7f0000000080)=""/237, 0xed, 0x0)

200.342517ms ago: executing program 2 (id=3137):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="66643d63f5276523414c52398a41763eee33ee17f947664cff7f4e145f556a1d097dddd96aba388f5ec65d3369cbb27f542d5e407fb1199d5e6c66f4bbfb852378d5", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',yroup_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000400)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha1-avx2)\x00'}, 0x58)
r2 = syz_io_uring_setup(0x6375, &(0x7f0000000140)={0x0, 0xca65, 0x10000, 0x2}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000300)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x3, r1, 0x0, 0x0, 0x0, 0x80800})
io_uring_enter(r2, 0x3516, 0xc2de, 0x8, 0x0, 0x0)
r5 = socket$inet(0x2, 0x80001, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r5, 0x0, 0x61, &(0x7f0000000380)=ANY=[@ANYBLOB="6d616e676c650000000000000000000000000000c36f9c00000000000000000000000002000000000000000000000000000007000000000000000000000000000000000000000e000000c200"], 0x48)
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r6=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r6}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000042c0), 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
getdents64(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000000)={@multicast2, @empty}, 0x8)
socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r7, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r7, &(0x7f0000000100)="07000000010000", 0x7)
r8 = socket$inet(0xa, 0x801, 0x883)
r9 = accept4(r8, 0x0, 0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r9, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00D\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32, @ANYBLOB="0800010002000000"], 0x20}, 0x1, 0x0, 0x0, 0x20000044}, 0x8000)

199.920767ms ago: executing program 3 (id=3138):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000000)="0c000000010001", 0x7)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="18000000030000000000000026d0000095002b000000000093adffa87d2255f674412d020000000000005ab527ee3697f1ec4436dd1164aa93cc5800075557165397000a63f6b9b3f427f6ba6b34f98125f30e697fffffffffffffffa30b273683626e0003254d570dca6b78ad833488cfe4109eaf009edd3e69613d3cd6aaa300006eee8501000000520a0000151d010000000100bf00000000cc587424363dc6ad7f3bbd424c6e6cafbe9309aba218a52001a3cd000041f0db74596fd72c002a60c1bc7dc8c38b7d2e13c50424b9dd1145d03ff45f70685c6bd9ff41c69b7de4758c1096a1dc52f29e470a000517ebc406e89dcbb7677e6528b0856e31ed9474ac24cf609068f645ce971fc0480737a55ebb0bd701f7ff21e88b3cfc22df01e4bac9d97328fa2a82b5e8741e02056d933bed759ff232cebc68b91af50479387467824262852c7939db5672d07cdbe8e14abf56497e5d56d06c759da324a39f7f51b870b2851c3f0a1aab71587a21c8f1b3369ebfcba105a6ccdd01b0f04edb256c604f068773f6ff000000000000006ffbfe5ca32142b0195531458b7d1e341c6f864f983d745f5865aad41d2915aae7602a2d6cd415e8351ebc4223f54d6bec664709ff03f1aa3dc7f1580ace9bf2afd28d7157e67fb98d121ad6eb372713255012e028cb2654d493a0b4b35faae176c89b745eda2967199cc936859a537e8e4871d4acf3e3dc10e13ef227f627a40000ad1fa253d33fa74f172d3407ae4e1e347c0cff28235a3cbb5d33b09bc30cf2880c586272c3f4d79bc36305745cb1cb385e6add14652003c7cdd3324f07d134d3ed07f1c10900000009dd872ec66ea6c718bbd1aa59114000f0be4c6f8df084c5e9734ae30aa9afdc719bf01ab03a9b1074407136b4506000f0916a39d3057d50183612b39e73aeeb6eaf14652dda68e98ef938e6515a94a71836469e2051d9b7eb85f3f2d5ae2c51944da8d7391d6d6b97419a3b7660df4c5124ca425d374b371867a79b31c6617fc3327191fbf514573f0e30d1d60be2168fe6c2f3dccd599a2cb77f124e22f87673675805494db821f39b50d938d5fd8c6b2a3a324c257b84000000b749ccd74089ed6b86f81ca3d247d8f71d290ed1b1a11f7a67125170c88c3b6a50696332226401b110da9c786eeca22debc99335583b54c13c3130978fa069af8223b38ced735c2d905f51ca85ffa4add5647489b3960127696cf2f16625c0c102000000000000009ef52134842e64171f3963841086e3797a4825d081f2d987f05c5341877386ec55d7dc958fd235d6071619a65d4b82d9c162f3556076b80550d961ca74f1ffdaccf0ea5f02e0fca8b27ff3983ab74fd3d560700a1fbb44e77e312b3b129e000302d613916c9bcf9f0000fac73adb6bfb27f88dba816020be760f7b45e001efada800000000000000fdaf4660402f7b3b79a433e08074ea2462974ab2cbd247eb1cfa2638f56daee57ed14bc74de0fd87a9ce638190f3570e0b4c80ef682df22237270955afb6008846557ee3bc09fda6dbb6542e597300eb82a184c96ffde5a30e5433d86666cb045bdd02c804c22ff2635c7bfbf5c0d586cda5e1e88a4d41dee7cc74f822278d124638fec58faeb48afe324369cc51204158bb440df2a694f4cdcaa4f65c22f000000000000000000000000000d503d79906958102000000000000000000001ffff0ef89b2a635edb2dd163e863315e84498dfb52b7f54da6398cbedaa42cc17c4563c859656a357770289a61faa95a82bf1cfb7f2fd7252e9322abe282c3344fc6738b4467893b9bf0d1c8130ae6b226900110635376413c29f7c6f7b7e29b9f4bddd5e328661f4046e01f7d7dc22174e5e627a6f608ad53a4168d4d8f7fbc71104512efe8e5d7d934aa289b4db2b870000000000000000000000000000000000000000009b777883a0f9cf4ad155110cd3ace2b322ac31bfa27847dc99c8a69a1ea5b98e525e6393ad7fd9795170e7b11e4fa990b9386910a6a1a66a70eaff01247603c2ff49d3979676bffb3049166ab84a0f061991bd57c2566c10c282352a5105b6164e3f2491e4793e590dcc71de10da96fdff40dd44a2c9882d3aa0f8a797b8fea6efcfb5046b7679f15559cdaa977504c40b2f777acb907ebf5fc14add71d0bca37405ded69b77ab4a3d7487fd50c5e22ade17556abb722d9c085b189b5fd1f30e8dc813f60400fde1f88d830b11002135e8e7262f299ed7923bfbe00ad88be179e56b41ff3792cee2fc37eee739c3e3af923e8738d93d583a9cf00b946960fc38cf85aae7cf708f9a9d166f2e352a06d99b8be476d1cc2a53a859ae4fdab2a987925d12422474ac044ffe9fe2bf9bf9bbdf36c4ca89c516647542ac45545337829fa7039d155ebda42d4c14f4ca7f8b5d5842658c62d0a03092b94fa1b19f190000000000000000000000000000009e75a32b9fafeffd890f2759b0fe3add33fa43a4c3995458f86a926ad56b23571c46728c039cd3b4bb7d69dfa27782b953a7b81cc161912b3e5716360686e126311a7e21bfa2efd0f57b90c203528c8f620d3c7b31c7abcffae382f53500f7cd5d00159e5f741d3e2d2cbd1a04b3f39b50a4683daa7d117b7f4a149c954d69d8ab001339e464c8eb5f0c63899010757c9a3b69f4920531b83f71d5a34ef9405819afee15b77c015ea755c95127ff2274bb9a8463ce4b8c08ad70596ad2b2b044e660ed144b9dce372450ea69d25da2b6deed67fac26e765aa7d5532ba1044f62db049486acde2294127cb767c23da7d8f9844d3be5b6aa83ee4ce1876af5130efe1b64ccb6bbd349bcc0e8deec8ab3bd1b35bbc8ab8a152771744baa576b9223d26b5603a7f091be1264cabaf661fe2dbe7990a61f710f923f2337818a3983d06c11a6bee7fccb78a53c56db5c18f920d2194374db665dcadf53b8d0014e682ec721d67a7ab6c817fe53c86f8900000000000000000000000000000060b7b827c56e973a2ab5bc5c558ada68c4ec3762f5957b20b919af5d53c87de056a397bdcb614c34761e2c815698e1f9f5521a385c2910850929040a4eba573e91ca21fc855358120ecd79a5d7007693ef3ff9d2b993d114443d53c53094e516f675b2a7074584714e7a2015e05e507811b4ca89c39281c9ada5f58ceb55893cca783ab09c9a19836a3a2c715b10436a5731549e364679ecd8461a68433ab52b1108831edb9654dc602183c1170d6881647f6dca15d57fb76357d815c5f1000000000000000000f49e327c0b6e511494466cec78650f0a6267"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r2 = socket$kcm(0x29, 0x2, 0x0)
sendmmsg$inet(r2, &(0x7f0000004140)=[{{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f00000004c0)="f779", 0x2}], 0x1}}], 0x1, 0x0)
r3 = socket$inet6(0xa, 0x803, 0x6)
connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000180)={r3, r1})
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="00004c07eaffff0500a3ed1c6a437c3b", @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
read$FUSE(r4, &(0x7f00000021c0)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r4, &(0x7f0000004200)={0x50, 0x0, r5}, 0x50)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
syz_fuse_handle_req(r4, &(0x7f00000042c0), 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
getdents64(r6, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000280)={0x0, r3}, 0x8)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x2d, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000000640)='syzkaller\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x40, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close(r7)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sendmsg$inet(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000780)='}', 0x1}], 0x1}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r10}, &(0x7f0000000000), &(0x7f00000002c0)=r7}, 0x20)
recvmsg$unix(r8, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000340)=""/229, 0xec1}], 0x1}, 0x0)
r11 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r11, 0x3b81, &(0x7f0000000080)={0xc, 0x0, <r12=>0x0})
ioctl$IOMMU_VFIO_IOAS$SET(r11, 0x3b88, &(0x7f0000000200)={0xc, r12})
ioctl$IOMMU_VFIO_IOMMU_GET_INFO(r11, 0x3b70, &(0x7f00000001c0)={0x40, 0x0, 0x0, 0x0, {}, {{}, 0x0, 0x0, [{}]}})
syz_fuse_handle_req(r4, &(0x7f00000067c0), 0x2000, &(0x7f00000087c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="4000000000000000000000000000000000000000000000000000000000000018f0ff002f00000098a1ebf3fcdacc24c3ab164dc42f49c923242c248205003e"], 0x0, 0x0, 0x0, 0x0})

85.955658ms ago: executing program 2 (id=3139):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = socket$tipc(0x1e, 0x5, 0x0)
getsockopt$TIPC_SOCK_RECVQ_DEPTH(r0, 0x10f, 0x84, &(0x7f0000000340), &(0x7f0000000c80)=0x4)
mount(&(0x7f0000000100)=@sg0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='tmpfs\x00', 0x194a86ab5f5fe92a, &(0x7f0000000240)='\x00')
socket$kcm(0x2, 0x7, 0x106)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
ioctl$MON_IOCQ_URB_LEN(r2, 0x9201)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x122}}, 0x4008090)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
rt_sigtimedwait(&(0x7f00000002c0)={[0x400]}, 0x0, &(0x7f0000000380), 0x8)
mount$overlay(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chroot(&(0x7f00000001c0)='./file0\x00')
syz_open_dev$tty1(0xc, 0x4, 0x1)
pipe2$9p(&(0x7f0000000000), 0x80800)
listxattr(&(0x7f0000000280)='./file0\x00', &(0x7f0000000400)=""/206, 0xce)

85.760343ms ago: executing program 0 (id=3140):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020}, 0x2020)
write$FUSE_INIT(r0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
syz_fuse_handle_req(r0, &(0x7f00000042c0), 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r1, 0xffffffffffffffff, 0x0)

0s ago: executing program 3 (id=3141):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[], 0xb4}}, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="580000000206010800000000000300000000000005000400008000000900020073797a31000000000c0007800500150000000000050005000a000000050001000600000013000300686173683a6e65742c6966616365"], 0x58}}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
r2 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r2, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
accept4(r2, 0x0, 0x0, 0x0)
setsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000080)="441f0803", 0x1f)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup(r4)
r5 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000240), 0x2, 0x0)
write$cgroup_freezer_state(r5, &(0x7f0000000040)='FROZEN\x00', 0x7)
mkdirat$cgroup(r3, &(0x7f0000000100)='syz0\x00', 0x1ff)
setreuid(0xee01, 0xee01)

kernel console output (not intermixed with test programs):

isk_device_t tclass=blk_file permissive=1
[  553.004162][T13410] ,mems_allowed=0-1
[  553.004856][   T40] audit: type=1400 audit(1747169818.835:24798): avc:  denied  { read write open } for  pid=12887 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  553.006724][T13410] 
[  553.008054][   T40] audit: type=1400 audit(1747169818.835:24799): avc:  denied  { ioctl } for  pid=12887 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  553.009626][T13410] CPU: 2 UID: 0 PID: 13410 Comm: syz.3.2577 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  553.009644][T13410] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  553.009667][T13410] Call Trace:
[  553.009683][T13410]  <TASK>
[  553.009689][T13410]  dump_stack_lvl+0x16c/0x1f0
[  553.009709][T13410]  warn_alloc+0x248/0x3a0
[  553.009722][T13410]  ? __pfx_warn_alloc+0x10/0x10
[  553.009733][T13410]  ? kfree+0x2b6/0x4d0
[  553.009752][T13410]  ? __get_vm_area_node+0x208/0x330
[  553.009791][T13410]  __vmalloc_node_range_noprof+0xd31/0x1540
[  553.009814][T13410]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  553.009838][T13410]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  553.009861][T13410]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  553.009872][T13410]  vmalloc_user_noprof+0x6b/0x90
[  553.009887][T13410]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  553.009897][T13410]  vb2_vmalloc_alloc+0x135/0x3f0
[  553.009908][T13410]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  553.009930][T13410]  __vb2_queue_alloc+0x8c6/0x1280
[  553.009954][T13410]  vb2_core_reqbufs+0xa90/0xfe0
[  553.009974][T13410]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  553.010000][T13410]  __vb2_init_fileio+0x3f1/0x1100
[  553.010020][T13410]  ? vb2_fop_write+0xe6/0x3f0
[  553.010036][T13410]  __vb2_perform_fileio+0x9c2/0x1660
[  553.010050][T13410]  ? __pfx___vb2_perform_fileio+0x10/0x10
[  553.010065][T13410]  vb2_fop_write+0x207/0x3f0
[  553.010083][T13410]  v4l2_write+0x226/0x360
[  553.010098][T13410]  vfs_write+0x25f/0x1180
[  553.010115][T13410]  ? __pfx_v4l2_write+0x10/0x10
[  553.010130][T13410]  ? __pfx_vfs_write+0x10/0x10
[  553.010145][T13410]  ? find_held_lock+0x2b/0x80
[  553.010160][T13410]  ? __fget_files+0x204/0x3c0
[  553.010173][T13410]  ? __fget_files+0x20e/0x3c0
[  553.010184][T13410]  ? __fget_files+0x1a0/0x3c0
[  553.010197][T13410]  __x64_sys_pwrite64+0x1f4/0x250
[  553.010208][T13410]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  553.010218][T13410]  ? rcu_is_watching+0x12/0xc0
[  553.010236][T13410]  do_syscall_64+0xcd/0x260
[  553.010253][T13410]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  553.010265][T13410] RIP: 0033:0x7fd2b758e969
[  553.010274][T13410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  553.010285][T13410] RSP: 002b:00007fd2b842e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  553.010295][T13410] RAX: ffffffffffffffda RBX: 00007fd2b77b5fa0 RCX: 00007fd2b758e969
[  553.010302][T13410] RDX: 00000000ffffff74 RSI: 0000200000000000 RDI: 0000000000000003
[  553.010309][T13410] RBP: 00007fd2b842e090 R08: 0000000000000000 R09: 0000000000000000
[  553.010315][T13410] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002
[  553.010321][T13410] R13: 0000000000000000 R14: 00007fd2b77b5fa0 R15: 00007ffdf76575b8
[  553.010335][T13410]  </TASK>
[  553.011893][T13410] Mem-Info:
[  553.049930][   T40] audit: type=1400 audit(1747169818.885:24800): avc:  denied  { read } for  pid=13414 comm="syz.2.2580" name="loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  553.052199][T13410] active_anon:5258 inactive_anon:0 isolated_anon:0
[  553.052199][T13410]  active_file:16957 inactive_file:40777 isolated_file:0
[  553.052199][T13410]  unevictable:1768 dirty:512 writeback:0
[  553.052199][T13410]  slab_reclaimable:12302 slab_unreclaimable:75494
[  553.052199][T13410]  mapped:25396 shmem:2401 pagetables:653
[  553.052199][T13410]  sec_pagetables:317 bounce:0
[  553.052199][T13410]  kernel_misc_reclaimable:0
[  553.052199][T13410]  free:461120 free_pcp:908 free_cma:0
[  553.053773][   T40] audit: type=1400 audit(1747169818.885:24801): avc:  denied  { read open } for  pid=13414 comm="syz.2.2580" path="/dev/loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  553.056211][T13410] Node 0 active_anon:21032kB inactive_anon:0kB active_file:67828kB inactive_file:162904kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:101584kB dirty:2040kB writeback:0kB shmem:6068kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11760kB pagetables:2612kB sec_pagetables:1268kB all_unreclaimable? no Balloon:0kB
[  553.056243][T13410] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:8kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:144kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  553.057429][T13415] loop2: detected capacity change from 0 to 7
[  553.057955][T13415] Dev loop2: unable to read RDB block 7
[  553.057969][T13415]  loop2: AHDI p1
[  553.057981][T13415] loop2: partition table partially beyond EOD, truncated
[  553.065108][   T40] audit: type=1400 audit(1747169818.905:24802): avc:  denied  { read append } for  pid=13414 comm="syz.2.2580" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  553.066089][T13410] Node 0 
[  553.067101][   T40] audit: type=1400 audit(1747169818.905:24803): avc:  denied  { read append open } for  pid=13414 comm="syz.2.2580" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  553.069008][T13410] DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  553.069038][T13410] lowmem_reserve[]: 0
[  553.084469][T13278] 8021q: adding VLAN 0 to HW filter on device batadv0
[  553.088950][T13410]  1238
[  553.094445][T13417] binder: 13416:13417 ioctl c0306201 200000000740 returned -22
[  553.097399][T13410]  1238 1238 1238
[  553.299584][T13410] Node 0 DMA32 free:239284kB boost:0kB min:27576kB low:34468kB high:41360kB reserved_highatomic:0KB active_anon:21032kB inactive_anon:0kB active_file:67828kB inactive_file:162904kB unevictable:3536kB writepending:2040kB present:2080628kB managed:1268544kB mlocked:0kB bounce:0kB free_pcp:3240kB local_pcp:952kB free_cma:0kB
[  553.308875][T13410] lowmem_reserve[]: 0 0 0 0 0
[  553.310499][T13410] Node 1 Normal free:1588388kB boost:0kB min:39660kB low:49572kB high:59484kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:3536kB writepending:8kB present:2097152kB managed:1781964kB mlocked:0kB bounce:0kB free_pcp:196kB local_pcp:4kB free_cma:0kB
[  553.320366][T13410] lowmem_reserve[]: 0 0 0 0 0
[  553.321698][T13426] bond1 (unregistering): Released all slaves
[  553.321914][T13410] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  553.327748][T13410] Node 0 DMA32: 7*4kB (E) 530*8kB (ME) 686*16kB (UME) 710*32kB (UME) 430*64kB (UME) 61*128kB (UME) 45*256kB (UM) 23*512kB (UM) 19*1024kB (UME) 10*2048kB (UM) 25*4096kB (UM) = 238924kB
[  553.333695][T13410] Node 1 Normal: 29*4kB (UME) 30*8kB (UME) 28*16kB (UME) 190*32kB (UME) 67*64kB (UME) 26*128kB (UME) 6*256kB (UE) 5*512kB (ME) 3*1024kB (UE) 5*2048kB (UME) 380*4096kB (M) = 1588388kB
[  553.339319][T13410] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  553.342191][T13410] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  553.345060][T13410] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  553.348005][T13410] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  553.351604][T13410] 60131 total pagecache pages
[  553.353301][T13410] 0 pages in swap cache
[  553.354772][T13410] Free swap  = 124996kB
[  553.356169][T13410] Total swap = 124996kB
[  553.357554][T13410] 1048443 pages RAM
[  553.358852][T13410] 0 pages HighMem/MovableOnly
[  553.360870][T13410] 281976 pages reserved
[  553.362289][T13410] 0 pages cma reserved
[  553.595584][T13448] binder: 13446:13448 unknown command 0
[  553.597373][T13448] binder: 13446:13448 ioctl c0306201 200000000740 returned -22
[  553.684736][T13455] netlink: 'syz.3.2595': attribute type 9 has an invalid length.
[  553.800685][T13278] veth0_vlan: entered promiscuous mode
[  553.813693][T13278] veth1_vlan: entered promiscuous mode
[  553.857669][T13278] veth0_macvtap: entered promiscuous mode
[  553.866499][T13278] veth1_macvtap: entered promiscuous mode
[  553.888043][T13278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  553.892329][T13278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  553.896283][T13278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  553.902466][T13278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  553.906115][T13278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  553.909319][T13278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  553.915687][T13278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  553.918985][T13278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  553.925547][T13278] batman_adv: batadv0: Interface activated: batadv_slave_0
[  553.945441][T13278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  553.948648][T13278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  553.953719][T13278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  553.957011][T13278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  553.961734][T13278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  553.965166][T13278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  553.968129][T13278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  553.973864][T13278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  553.977806][T13278] batman_adv: batadv0: Interface activated: batadv_slave_1
[  553.986795][T13278] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  553.989462][T13278] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  553.992911][T13278] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  553.995654][T13278] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  554.058283][ T1145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  554.060864][ T1145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  554.085825][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  554.088388][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  554.123828][T13466] fuse: Unknown parameter 'group_id00000000000000000000'
[  554.410086][T12708] Bluetooth: hci4: command tx timeout
[  554.620262][T13491] geneve2: entered promiscuous mode
[  554.622003][T13491] geneve2: entered allmulticast mode
[  554.623695][T13493] FAULT_INJECTION: forcing a failure.
[  554.623695][T13493] name failslab, interval 1, probability 0, space 0, times 0
[  554.623716][T13493] CPU: 2 UID: 0 PID: 13493 Comm: syz.3.2608 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  554.623730][T13493] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  554.623737][T13493] Call Trace:
[  554.623756][T13493]  <TASK>
[  554.623761][T13493]  dump_stack_lvl+0x16c/0x1f0
[  554.623791][T13493]  should_fail_ex+0x512/0x640
[  554.623813][T13493]  should_failslab+0xc2/0x120
[  554.623826][T13493]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  554.623839][T13493]  ? sidtab_sid2str_get+0x17a/0x680
[  554.623859][T13493]  kmemdup_noprof+0x29/0x60
[  554.623872][T13493]  sidtab_sid2str_get+0x17a/0x680
[  554.623890][T13493]  sidtab_entry_to_string+0x33/0x110
[  554.623908][T13493]  security_sid_to_context_core+0x35c/0x640
[  554.623927][T13493]  avc_audit_post_callback+0x109/0x8f0
[  554.623946][T13493]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  554.623963][T13493]  ? skb_put+0x138/0x1b0
[  554.623980][T13493]  ? audit_log_n_string+0x253/0x540
[  554.624002][T13493]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  554.624019][T13493]  common_lsm_audit+0x24e/0x300
[  554.624036][T13493]  ? __pfx_common_lsm_audit+0x10/0x10
[  554.624056][T13493]  slow_avc_audit+0x186/0x210
[  554.624068][T13493]  ? __pfx_slow_avc_audit+0x10/0x10
[  554.624082][T13493]  ? find_held_lock+0x2b/0x80
[  554.624097][T13493]  ? avc_has_extended_perms+0x33a/0x1090
[  554.624110][T13493]  avc_has_extended_perms+0xa40/0x1090
[  554.624130][T13493]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  554.624142][T13493]  ? kasan_quarantine_put+0x10a/0x240
[  554.624160][T13493]  ? lockdep_hardirqs_on+0x7c/0x110
[  554.624176][T13493]  ? find_held_lock+0x2b/0x80
[  554.624193][T13493]  ? tomoyo_path_number_perm+0x18d/0x580
[  554.624212][T13493]  ? __pfx___might_resched+0x10/0x10
[  554.624232][T13493]  ioctl_has_perm.constprop.0.isra.0+0x2f4/0x450
[  554.624252][T13493]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  554.624275][T13493]  ? hook_file_ioctl_common+0x145/0x410
[  554.624290][T13493]  ? selinux_file_ioctl+0x180/0x270
[  554.624307][T13493]  selinux_file_ioctl+0x180/0x270
[  554.624326][T13493]  security_file_ioctl+0xc6/0x240
[  554.624343][T13493]  __x64_sys_ioctl+0xb7/0x200
[  554.624360][T13493]  do_syscall_64+0xcd/0x260
[  554.624376][T13493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  554.624388][T13493] RIP: 0033:0x7fd2b758e969
[  554.624397][T13493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  554.624408][T13493] RSP: 002b:00007fd2b842e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  554.624418][T13493] RAX: ffffffffffffffda RBX: 00007fd2b77b5fa0 RCX: 00007fd2b758e969
[  554.624426][T13493] RDX: 0000200000000400 RSI: 0000000000004c0a RDI: 0000000000000003
[  554.624432][T13493] RBP: 00007fd2b842e090 R08: 0000000000000000 R09: 0000000000000000
[  554.624439][T13493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  554.624445][T13493] R13: 0000000000000000 R14: 00007fd2b77b5fa0 R15: 00007ffdf76575b8
[  554.624460][T13493]  </TASK>
[  554.625266][T13493] loop2: detected capacity change from 0 to 7
[  554.691329][T13495] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  554.692864][T13493] Dev loop2: unable to read RDB block 7
[  554.732970][T13493]  loop2: unable to read partition table
[  554.734871][T13493] loop2: partition table beyond EOD, truncated
[  554.736808][T13493] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  554.899094][T13500] syzkaller0: entered promiscuous mode
[  554.900956][T13500] syzkaller0: entered allmulticast mode
[  554.918214][T13502] bond1 (unregistering): Released all slaves
[  555.153834][T13514] binder: 13512:13514 unknown command 0
[  555.155605][T13514] binder: 13512:13514 ioctl c0306201 200000000740 returned -22
[  555.174819][T13516] xt_l2tp: wrong L2TP version: 0
[  555.279577][T13515] IPv6: NLM_F_CREATE should be specified when creating new route
[  555.283344][T13515] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  555.285896][T13515] IPv6: NLM_F_CREATE should be set when creating new route
[  555.288451][T13515] IPv6: NLM_F_CREATE should be set when creating new route
[  555.328960][T13524] program syz.2.2620 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  555.695213][T13537] loop2: detected capacity change from 0 to 7
[  555.698175][T13537] Dev loop2: unable to read RDB block 7
[  555.701719][T13537]  loop2: AHDI p1
[  555.703372][T13537] loop2: partition table partially beyond EOD, truncated
[  555.881177][T13543] binder: 13542:13543 unknown command 0
[  555.883053][T13543] binder: 13542:13543 ioctl c0306201 200000000740 returned -22
[  555.955747][T13546] hfsplus: unable to find HFS+ superblock
[  556.126936][T13554] ip6t_srh: unknown srh invflags 7863
[  556.482813][T12708] Bluetooth: hci4: command tx timeout
[  556.905414][T13570] netlink: 14212 bytes leftover after parsing attributes in process `syz.4.2638'.
[  556.970530][T13575] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2640'.
[  556.973342][T13575] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2640'.
[  556.979964][T13575] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  556.982900][T13575] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  556.985584][T13575] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  556.988175][T13575] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  556.993084][T13575] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2640'.
[  556.995870][T13575] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2640'.
[  557.032218][T13576] ip6tnl0: entered promiscuous mode
[  557.035303][T13576] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2641'.
[  557.261715][T13599] syzkaller0: entered promiscuous mode
[  557.263436][T13599] syzkaller0: entered allmulticast mode
[  557.378483][T13608] netlink: 'syz.3.2653': attribute type 9 has an invalid length.
[  557.385421][T13604] syzkaller0: entered promiscuous mode
[  557.387572][T13604] syzkaller0: entered allmulticast mode
[  557.400603][T13607] program syz.4.2652 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  557.556477][T13616] batman_adv: batadv0: Adding interface: dummy0
[  557.558530][T13616] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  557.567496][T13616] batman_adv: batadv0: Interface activated: dummy0
[  557.575810][T13616] net_ratelimit: 4 callbacks suppressed
[  557.575821][T13616] batadv0: mtu less than device minimum
[  557.579819][T13616] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  557.583436][T13616] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  557.587192][T13616] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  557.590926][T13616] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  557.594547][T13616] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  557.598186][T13616] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  557.603090][T13616] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  557.607220][T13616] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  557.611108][T13616] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  557.769003][T13622] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2658'.
[  557.772608][T13622] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2658'.
[  557.980256][   T40] kauditd_printk_skb: 863 callbacks suppressed
[  557.980352][   T40] audit: type=1400 audit(1747169823.825:25667): avc:  denied  { prog_load } for  pid=13628 comm="syz.3.2661" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  557.995093][   T40] audit: type=1400 audit(1747169823.825:25668): avc:  denied  { bpf } for  pid=13628 comm="syz.3.2661" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  558.002901][   T40] audit: type=1400 audit(1747169823.825:25669): avc:  denied  { perfmon } for  pid=13628 comm="syz.3.2661" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  558.012473][   T40] audit: type=1400 audit(1747169823.825:25670): avc:  denied  { perfmon } for  pid=13628 comm="syz.3.2661" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  558.022396][   T40] audit: type=1400 audit(1747169823.825:25671): avc:  denied  { perfmon } for  pid=13628 comm="syz.3.2661" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  558.028923][   T40] audit: type=1400 audit(1747169823.825:25672): avc:  denied  { perfmon } for  pid=13628 comm="syz.3.2661" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  558.036142][   T40] audit: type=1400 audit(1747169823.825:25673): avc:  denied  { bpf } for  pid=13628 comm="syz.3.2661" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  558.043078][   T40] audit: type=1400 audit(1747169823.825:25674): avc:  denied  { bpf } for  pid=13628 comm="syz.3.2661" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  558.050524][   T40] audit: type=1400 audit(1747169823.825:25675): avc:  denied  { bpf } for  pid=13628 comm="syz.3.2661" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  558.057663][   T40] audit: type=1400 audit(1747169823.835:25676): avc:  denied  { prog_run } for  pid=13628 comm="syz.3.2661" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  559.141444][T13631] bridge0: entered promiscuous mode
[  559.143141][T13631] macvlan2: entered promiscuous mode
[  559.146804][T13631] bridge0: port 3(macvlan2) entered blocking state
[  559.149009][T13631] bridge0: port 3(macvlan2) entered disabled state
[  559.151294][T13631] macvlan2: entered allmulticast mode
[  559.153668][T13631] bridge0: entered allmulticast mode
[  559.156369][T13631] macvlan2: left allmulticast mode
[  559.158113][T13631] bridge0: left allmulticast mode
[  559.160527][T13631] bridge0: left promiscuous mode
[  560.216309][T13633] netlink: 80 bytes leftover after parsing attributes in process `syz.4.2663'.
[  560.582923][T13665] netlink: 80 bytes leftover after parsing attributes in process `syz.3.2675'.
[  560.616755][T13667] fuse: Bad value for 'fd'
[  560.634537][T13669] libceph: resolve '4' (ret=-3): failed
[  560.709153][T13675] Bluetooth: MGMT ver 1.23
[  561.019376][T13698] IPv6: NLM_F_REPLACE set, but no existing node found!
[  561.075942][T13700] binder: 13699:13700 ioctl c0306201 200000000480 returned -22
[  561.180106][T13708] netlink: 'syz.4.2694': attribute type 1 has an invalid length.
[  561.198695][T13710] netlink: 'syz.4.2694': attribute type 1 has an invalid length.
[  561.399766][    T9] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  561.539981][    T9] usb 8-1: device descriptor read/64, error -71
[  561.657033][T13743] FAULT_INJECTION: forcing a failure.
[  561.657033][T13743] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  561.662358][T13743] CPU: 0 UID: 0 PID: 13743 Comm: syz.0.2707 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  561.662384][T13743] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  561.662394][T13743] Call Trace:
[  561.662401][T13743]  <TASK>
[  561.662408][T13743]  dump_stack_lvl+0x16c/0x1f0
[  561.662458][T13743]  should_fail_ex+0x512/0x640
[  561.662493][T13743]  _copy_from_user+0x2e/0xd0
[  561.662519][T13743]  lo_ioctl+0x513/0x28e0
[  561.662544][T13743]  ? __pfx_common_lsm_audit+0x10/0x10
[  561.662577][T13743]  ? slow_avc_audit+0x18b/0x210
[  561.662596][T13743]  ? __pfx_slow_avc_audit+0x10/0x10
[  561.662619][T13743]  ? __pfx_lo_ioctl+0x10/0x10
[  561.662642][T13743]  ? find_held_lock+0x2b/0x80
[  561.662664][T13743]  ? avc_has_extended_perms+0x33a/0x1090
[  561.662685][T13743]  ? avc_has_extended_perms+0xa4b/0x1090
[  561.662702][T13743]  ? avc_has_extended_perms+0x47c/0x1090
[  561.662727][T13743]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  561.662747][T13743]  ? kasan_quarantine_put+0x10a/0x240
[  561.662774][T13743]  ? lockdep_hardirqs_on+0x7c/0x110
[  561.662801][T13743]  ? find_held_lock+0x2b/0x80
[  561.662829][T13743]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  561.662854][T13743]  ? blkdev_common_ioctl+0x1dd/0x2480
[  561.662903][T13743]  ? __pfx_lo_ioctl+0x10/0x10
[  561.662926][T13743]  blkdev_ioctl+0x277/0x6d0
[  561.662943][T13743]  ? __pfx_blkdev_ioctl+0x10/0x10
[  561.662959][T13743]  ? selinux_file_ioctl+0x180/0x270
[  561.662986][T13743]  ? selinux_file_ioctl+0xb4/0x270
[  561.663013][T13743]  ? __pfx_blkdev_ioctl+0x10/0x10
[  561.663033][T13743]  __x64_sys_ioctl+0x193/0x200
[  561.663059][T13743]  do_syscall_64+0xcd/0x260
[  561.663085][T13743]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  561.663102][T13743] RIP: 0033:0x7f5c8fb8e969
[  561.663118][T13743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  561.663134][T13743] RSP: 002b:00007f5c909f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  561.663150][T13743] RAX: ffffffffffffffda RBX: 00007f5c8fdb5fa0 RCX: 00007f5c8fb8e969
[  561.663161][T13743] RDX: 0000200000000400 RSI: 0000000000004c0a RDI: 0000000000000003
[  561.663171][T13743] RBP: 00007f5c909f7090 R08: 0000000000000000 R09: 0000000000000000
[  561.663183][T13743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  561.663192][T13743] R13: 0000000000000000 R14: 00007f5c8fdb5fa0 R15: 00007ffe890fb9e8
[  561.663211][T13743]  </TASK>
[  561.746048][    C0] vkms_vblank_simulate: vblank timer overrun
[  561.799764][    T9] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  561.930494][    T9] usb 8-1: device descriptor read/64, error -71
[  562.005219][T13753] fuse: Invalid rootmode
[  562.013779][T13751] __nla_validate_parse: 1 callbacks suppressed
[  562.013788][T13751] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2712'.
[  562.026261][T13751] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2712'.
[  562.051299][    T9] usb usb8-port1: attempt power cycle
[  562.077462][T13755] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5123 sclass=netlink_route_socket pid=13755 comm=syz.4.2714
[  562.083123][T13755] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2714'.
[  562.086061][T13755] netlink: 'syz.4.2714': attribute type 30 has an invalid length.
[  562.093307][T13755] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  562.096101][T13755] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  562.098658][T13755] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  562.101285][T13755] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  562.206829][T13762] fuse: Unknown parameter '0x0000000000000004'
[  562.293247][T13767] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  562.391286][    T9] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  562.419498][    T9] usb 8-1: device descriptor read/8, error -71
[  562.469804][T13773] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2722'.
[  562.658962][T13779] xt_ipcomp: unknown flags 12
[  562.679843][    T9] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  562.731346][    T9] usb 8-1: device descriptor read/8, error -71
[  562.850813][    T9] usb usb8-port1: unable to enumerate USB device
[  562.946689][T13790] misc userio: Begin command sent, but we're already running
[  562.949278][T13790] misc userio: Begin command sent, but we're already running
[  562.954126][T13790] misc userio: Begin command sent, but we're already running
[  562.956461][T13790] misc userio: Begin command sent, but we're already running
[  562.958881][T13790] misc userio: Begin command sent, but we're already running
[  562.961340][T13790] misc userio: Begin command sent, but we're already running
[  562.963806][T13790] misc userio: Begin command sent, but we're already running
[  562.966153][T13790] misc userio: Begin command sent, but we're already running
[  562.968429][T13790] misc userio: Begin command sent, but we're already running
[  562.970945][T13790] misc userio: Begin command sent, but we're already running
[  562.973286][T13790] misc userio: Begin command sent, but we're already running
[  562.975740][T13790] misc userio: Begin command sent, but we're already running
[  562.978111][T13790] misc userio: Begin command sent, but we're already running
[  562.980655][T13790] misc userio: Begin command sent, but we're already running
[  562.983100][T13790] misc userio: Begin command sent, but we're already running
[  562.985437][T13790] misc userio: Begin command sent, but we're already running
[  562.987842][T13790] misc userio: Begin command sent, but we're already running
[  562.989963][   T40] kauditd_printk_skb: 863 callbacks suppressed
[  562.989973][   T40] audit: type=1400 audit(1747169828.835:26538): avc:  denied  { read open } for  pid=13788 comm="syz.2.2728" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  562.990211][T13790] misc userio: Begin command sent, but we're already running
[  562.992044][   T40] audit: type=1400 audit(1747169828.835:26539): avc:  denied  { read write } for  pid=13788 comm="syz.2.2728" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  563.009784][T13790] misc userio: Begin command sent, but we're already running
[  563.016881][   T40] audit: type=1400 audit(1747169828.835:26540): avc:  denied  { read open } for  pid=13788 comm="syz.2.2728" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  563.025250][   T40] audit: type=1400 audit(1747169828.835:26541): avc:  denied  { ioctl } for  pid=13788 comm="syz.2.2728" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  563.034717][   T40] audit: type=1400 audit(1747169828.835:26542): avc:  denied  { read write } for  pid=13788 comm="syz.2.2728" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  563.040794][T13795] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2729'.
[  563.043770][   T40] audit: type=1400 audit(1747169828.835:26543): avc:  denied  { read open } for  pid=13788 comm="syz.2.2728" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  563.044726][T13795] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2729'.
[  563.053956][   T40] audit: type=1400 audit(1747169828.835:26544): avc:  denied  { read write } for  pid=13788 comm="syz.2.2728" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  563.062217][   T40] audit: type=1400 audit(1747169828.835:26545): avc:  denied  { read open } for  pid=13788 comm="syz.2.2728" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  563.066361][T13795] binder: 13789:13795 unknown command 0
[  563.069531][   T40] audit: type=1400 audit(1747169828.835:26546): avc:  denied  { read write } for  pid=13788 comm="syz.2.2728" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  563.069556][   T40] audit: type=1400 audit(1747169828.835:26547): avc:  denied  { read open } for  pid=13788 comm="syz.2.2728" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  563.071398][T13795] binder: 13789:13795 ioctl c0306201 200000000740 returned -22
[  563.251602][T13798] netlink: 'syz.4.2730': attribute type 2 has an invalid length.
[  563.272764][T13798] syzkaller0: entered promiscuous mode
[  563.274513][T13798] syzkaller0: entered allmulticast mode
[  563.585508][T13802] Invalid logical block size (32)
[  563.741603][T13806] fuse: Bad value for 'fd'
[  564.071333][ T5282] Bluetooth: hci0: unexpected event for opcode 0x0c1c
[  564.088122][T13821] nfs: Unknown parameter 'fdbinderfs/binder0'
[  564.650818][T13841] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2747'.
[  564.724071][T13845] bond1 (unregistering): Released all slaves
[  564.878657][T13852] FAULT_INJECTION: forcing a failure.
[  564.878657][T13852] name failslab, interval 1, probability 0, space 0, times 0
[  564.883307][T13852] CPU: 3 UID: 0 PID: 13852 Comm: syz.4.2749 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  564.883323][T13852] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  564.883330][T13852] Call Trace:
[  564.883334][T13852]  <TASK>
[  564.883339][T13852]  dump_stack_lvl+0x16c/0x1f0
[  564.883359][T13852]  should_fail_ex+0x512/0x640
[  564.883374][T13852]  ? fs_reclaim_acquire+0xae/0x150
[  564.883390][T13852]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  564.883408][T13852]  should_failslab+0xc2/0x120
[  564.883420][T13852]  __kmalloc_noprof+0xd2/0x510
[  564.883434][T13852]  tomoyo_realpath_from_path+0xc2/0x6e0
[  564.883452][T13852]  ? tomoyo_profile+0x47/0x60
[  564.883464][T13852]  tomoyo_path_perm+0x274/0x460
[  564.883478][T13852]  ? tomoyo_path_perm+0x260/0x460
[  564.883492][T13852]  ? __pfx_tomoyo_path_perm+0x10/0x10
[  564.883507][T13852]  ? __lock_acquire+0xaa4/0x1ba0
[  564.883539][T13852]  ? __pfx___mutex_trylock_common+0x10/0x10
[  564.883558][T13852]  ? __pfx___might_resched+0x10/0x10
[  564.883575][T13852]  security_inode_getattr+0x116/0x290
[  564.883591][T13852]  vfs_getattr+0x25/0x60
[  564.883605][T13852]  loop_query_min_dio_size.isra.0+0x120/0x260
[  564.883622][T13852]  ? __pfx_loop_query_min_dio_size.isra.0+0x10/0x10
[  564.883646][T13852]  ? filemap_write_and_wait_range+0x7d/0x130
[  564.883663][T13852]  loop_configure+0xac7/0x1a30
[  564.883687][T13852]  ? __lock_acquire+0xaa4/0x1ba0
[  564.883705][T13852]  ? __pfx_loop_configure+0x10/0x10
[  564.883734][T13852]  lo_ioctl+0xf6c/0x28e0
[  564.883753][T13852]  ? __pfx_common_lsm_audit+0x10/0x10
[  564.883773][T13852]  ? slow_avc_audit+0x18b/0x210
[  564.883785][T13852]  ? __pfx_slow_avc_audit+0x10/0x10
[  564.883798][T13852]  ? __pfx_lo_ioctl+0x10/0x10
[  564.883813][T13852]  ? find_held_lock+0x2b/0x80
[  564.883827][T13852]  ? avc_has_extended_perms+0x33a/0x1090
[  564.883840][T13852]  ? avc_has_extended_perms+0xa4b/0x1090
[  564.883851][T13852]  ? avc_has_extended_perms+0x47c/0x1090
[  564.883866][T13852]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  564.883878][T13852]  ? kasan_quarantine_put+0x10a/0x240
[  564.883896][T13852]  ? lockdep_hardirqs_on+0x7c/0x110
[  564.883912][T13852]  ? find_held_lock+0x2b/0x80
[  564.883929][T13852]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  564.883942][T13852]  ? blkdev_common_ioctl+0x1dd/0x2480
[  564.883972][T13852]  ? __pfx_lo_ioctl+0x10/0x10
[  564.883986][T13852]  blkdev_ioctl+0x277/0x6d0
[  564.883999][T13852]  ? __pfx_blkdev_ioctl+0x10/0x10
[  564.884010][T13852]  ? selinux_file_ioctl+0x180/0x270
[  564.884027][T13852]  ? selinux_file_ioctl+0xb4/0x270
[  564.884045][T13852]  ? __pfx_blkdev_ioctl+0x10/0x10
[  564.884057][T13852]  __x64_sys_ioctl+0x193/0x200
[  564.884073][T13852]  do_syscall_64+0xcd/0x260
[  564.884091][T13852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  564.884103][T13852] RIP: 0033:0x7fe2eb18e969
[  564.884112][T13852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  564.884123][T13852] RSP: 002b:00007fe2ebf25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  564.884133][T13852] RAX: ffffffffffffffda RBX: 00007fe2eb3b5fa0 RCX: 00007fe2eb18e969
[  564.884141][T13852] RDX: 0000200000000400 RSI: 0000000000004c0a RDI: 0000000000000003
[  564.884147][T13852] RBP: 00007fe2ebf25090 R08: 0000000000000000 R09: 0000000000000000
[  564.884154][T13852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  564.884160][T13852] R13: 0000000000000000 R14: 00007fe2eb3b5fa0 R15: 00007ffebf3d6868
[  564.884174][T13852]  </TASK>
[  564.884182][T13852] ERROR: Out of memory at tomoyo_realpath_from_path.
[  564.992715][T13852] loop2: detected capacity change from 0 to 7
[  564.995362][T13852] Dev loop2: unable to read RDB block 7
[  564.997109][T13852]  loop2: unable to read partition table
[  564.998931][T13852] loop2: partition table beyond EOD, truncated
[  565.000976][T13852] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  565.153337][T13858] netlink: 'syz.0.2751': attribute type 10 has an invalid length.
[  565.155781][T13858] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2751'.
[  565.158673][T13858] batadv0: entered promiscuous mode
[  565.169777][T13858] batadv0: entered allmulticast mode
[  565.171988][T13858] bridge0: port 3(batadv0) entered blocking state
[  565.174204][T13858] bridge0: port 3(batadv0) entered disabled state
[  565.182023][T13858] bridge0: port 3(batadv0) entered blocking state
[  565.184177][T13858] bridge0: port 3(batadv0) entered forwarding state
[  565.214628][T13858] batman_adv: batadv0: Adding interface: dummy0
[  565.216658][T13858] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  565.224593][T13858] batman_adv: batadv0: Interface activated: dummy0
[  565.235053][T13858] net_ratelimit: 10 callbacks suppressed
[  565.235065][T13858] batadv0: mtu less than device minimum
[  565.239433][T13858] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  565.243267][T13858] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  565.247056][T13858] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  565.250843][T13858] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  565.254561][T13858] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  565.258345][T13858] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  565.262200][T13858] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  565.266119][T13858] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  565.269909][T13858] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  565.281594][T13861] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  565.366292][T13867] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2754'.
[  565.396305][T13870] fuse: Bad value for 'fd'
[  565.501221][ T1144] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  565.504018][ T1144] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  565.677440][T13882] syzkaller0: entered promiscuous mode
[  565.679914][T13882] syzkaller0: entered allmulticast mode
[  565.712249][T13883] syzkaller0: entered promiscuous mode
[  565.713975][T13883] syzkaller0: entered allmulticast mode
[  565.779792][    T9] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  565.929821][T12708] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  565.945770][    T9] usb 5-1: Using ep0 maxpacket: 8
[  565.953791][    T9] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  565.958053][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  565.964341][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  565.967532][    T9] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  565.973168][    T9] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  565.976020][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  566.214511][    T9] usb 5-1: GET_CAPABILITIES returned 0
[  566.217556][    T9] usbtmc 5-1:16.0: can't read capabilities
[  566.304270][T13894] netlink: 'syz.3.2765': attribute type 10 has an invalid length.
[  566.312021][T13894] 8021q: adding VLAN 0 to HW filter on device batadv0
[  566.317485][T13894] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  567.321163][T13896] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  567.460221][T13901] fuse: Bad value for 'fd'
[  568.004691][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  568.006834][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  568.358955][T13897] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  568.382371][   T40] kauditd_printk_skb: 574 callbacks suppressed
[  568.382383][   T40] audit: type=1400 audit(1747169834.225:27122): avc:  denied  { read write } for  pid=12706 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  568.394451][   T40] audit: type=1400 audit(1747169834.225:27123): avc:  denied  { read write open } for  pid=12706 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  568.402255][   T40] audit: type=1400 audit(1747169834.225:27124): avc:  denied  { ioctl } for  pid=12706 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  568.426037][   T40] audit: type=1400 audit(1747169834.265:27125): avc:  denied  { read } for  pid=13906 comm="syz.3.2769" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  568.434214][   T40] audit: type=1400 audit(1747169834.265:27126): avc:  denied  { read open } for  pid=13906 comm="syz.3.2769" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  568.442428][   T40] audit: type=1400 audit(1747169834.265:27127): avc:  denied  { ioctl } for  pid=13906 comm="syz.3.2769" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  568.449993][   T40] audit: type=1400 audit(1747169834.285:27128): avc:  denied  { read write } for  pid=13278 comm="syz-executor" name="loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  568.457482][   T40] audit: type=1400 audit(1747169834.285:27129): avc:  denied  { read write open } for  pid=13278 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  568.466665][   T40] audit: type=1400 audit(1747169834.285:27130): avc:  denied  { ioctl } for  pid=13278 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=662 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  568.493067][   T40] audit: type=1400 audit(1747169834.335:27131): avc:  denied  { read write } for  pid=13906 comm="syz.3.2769" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  568.625138][  T837] usb 5-1: USB disconnect, device number 17
[  568.676873][T13919] Invalid logical block size (85)
[  568.786882][T13927] netlink: 'syz.3.2777': attribute type 21 has an invalid length.
[  568.827165][T13930] netlink: 'syz.2.2779': attribute type 39 has an invalid length.
[  568.896455][T13936] loop2: detected capacity change from 0 to 7
[  568.898766][T13936] Dev loop2: unable to read RDB block 7
[  568.902219][T13936]  loop2: AHDI p1
[  568.903468][T13936] loop2: partition table partially beyond EOD, truncated
[  569.236356][T13957] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2789'.
[  569.262670][T13957] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2789'.
[  569.315446][T13962] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2792'.
[  569.317781][T13961] netlink: 'syz.2.2790': attribute type 10 has an invalid length.
[  569.320733][T13961] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2790'.
[  569.321189][T13963] fuse: Bad value for 'fd'
[  569.323723][T13961] batadv0: entered promiscuous mode
[  569.324342][T13962] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2792'.
[  569.329320][T13961] batadv0: entered allmulticast mode
[  569.331630][T13961] bridge0: port 3(batadv0) entered blocking state
[  569.333737][T13961] bridge0: port 3(batadv0) entered disabled state
[  569.336851][T13961] bridge0: port 3(batadv0) entered blocking state
[  569.339032][T13961] bridge0: port 3(batadv0) entered forwarding state
[  569.446026][T13973] netlink: 'syz.2.2796': attribute type 9 has an invalid length.
[  569.600019][T12708] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  569.609877][T12708] Bluetooth: hci0: command 0x0c1a tx timeout
[  569.620063][T13984] fuse: Bad value for 'fd'
[  569.628154][T13979] FAULT_INJECTION: forcing a failure.
[  569.628154][T13979] name failslab, interval 1, probability 0, space 0, times 0
[  569.639800][T13979] CPU: 1 UID: 0 PID: 13979 Comm: syz.0.2799 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  569.639819][T13979] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  569.639826][T13979] Call Trace:
[  569.639830][T13979]  <TASK>
[  569.639834][T13979]  dump_stack_lvl+0x16c/0x1f0
[  569.639854][T13979]  should_fail_ex+0x512/0x640
[  569.639870][T13979]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  569.639883][T13979]  should_failslab+0xc2/0x120
[  569.639896][T13979]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  569.639906][T13979]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  569.639918][T13979]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  569.639934][T13979]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  569.639948][T13979]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  569.639963][T13979]  mmu_topup_memory_caches+0x25/0x170
[  569.639981][T13979]  kvm_mmu_load+0xd9/0x22a0
[  569.640004][T13979]  ? kvm_apic_has_interrupt+0xb5/0x190
[  569.640018][T13979]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  569.640033][T13979]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  569.640049][T13979]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  569.640064][T13979]  ? __pfx_kvm_mmu_load+0x10/0x10
[  569.640080][T13979]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  569.640092][T13979]  ? kvm_check_and_inject_events+0x71c/0x1310
[  569.640111][T13979]  vcpu_run+0x3446/0x5390
[  569.640127][T13979]  ? __lock_acquire+0xaa4/0x1ba0
[  569.640149][T13979]  ? __pfx_vcpu_run+0x10/0x10
[  569.640166][T13979]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  569.640182][T13979]  ? __local_bh_enable_ip+0xa4/0x120
[  569.640199][T13979]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  569.640215][T13979]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  569.640235][T13979]  kvm_vcpu_ioctl+0x5e9/0x1680
[  569.640254][T13979]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  569.640275][T13979]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  569.640295][T13979]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  569.640317][T13979]  ? hook_file_ioctl_common+0x145/0x410
[  569.640332][T13979]  ? selinux_file_ioctl+0x180/0x270
[  569.640349][T13979]  ? selinux_file_ioctl+0xb4/0x270
[  569.640367][T13979]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  569.640384][T13979]  __x64_sys_ioctl+0x193/0x200
[  569.640401][T13979]  do_syscall_64+0xcd/0x260
[  569.640418][T13979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  569.640429][T13979] RIP: 0033:0x7f5c8fb8e969
[  569.640439][T13979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  569.640449][T13979] RSP: 002b:00007f5c909f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  569.640460][T13979] RAX: ffffffffffffffda RBX: 00007f5c8fdb5fa0 RCX: 00007f5c8fb8e969
[  569.640467][T13979] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  569.640473][T13979] RBP: 00007f5c909f7090 R08: 0000000000000000 R09: 0000000000000000
[  569.640480][T13979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  569.640486][T13979] R13: 0000000000000000 R14: 00007f5c8fdb5fa0 R15: 00007ffe890fb9e8
[  569.640512][T13979]  </TASK>
[  569.749954][ T1142] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  569.752946][ T1142] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  569.784562][T13995] loop2: detected capacity change from 0 to 7
[  569.787047][T13995] Dev loop2: unable to read RDB block 7
[  569.788835][T13995]  loop2: unable to read partition table
[  569.790776][T13995] loop2: partition table beyond EOD, truncated
[  569.792715][T13995] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  569.810703][T13998] tipc: Can't bind to reserved service type 1
[  569.912177][T14005] Invalid logical block size (63)
[  569.913027][T14004] overlayfs: conflicting options: metacopy=off,verity=on
[  569.993032][T14008] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2809'.
[  570.158810][T14019] syzkaller0: entered promiscuous mode
[  570.160679][T14019] syzkaller0: entered allmulticast mode
[  570.180930][T14024] overlayfs: cannot append lower layer
[  570.560201][    C0] net_ratelimit: 13 callbacks suppressed
[  570.560214][    C0] batman_adv: batadv0: Local translation table size (68) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:0c
[  570.567417][    C0] batman_adv: batadv0: Local translation table size (68) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:1c
[  570.572094][    C0] batman_adv: batadv0: Local translation table size (68) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:1b
[  571.330860][T14041] netlink: 14212 bytes leftover after parsing attributes in process `syz.3.2819'.
[  571.364964][T14044] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2821'.
[  571.744434][T14074] loop2: detected capacity change from 0 to 7
[  571.746937][T14074] Dev loop2: unable to read RDB block 7
[  571.749126][T14074]  loop2: AHDI p1
[  571.750415][T14074] loop2: partition table partially beyond EOD, truncated
[  571.800354][T14077] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2833'.
[  571.803862][T14078] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2833'.
[  571.877800][T14082] netlink: 'syz.2.2835': attribute type 10 has an invalid length.
[  571.976568][T14088] fuse: Bad value for 'fd'
[  572.150754][T14097] loop2: detected capacity change from 0 to 7
[  572.154143][T14097] Dev loop2: unable to read RDB block 7
[  572.155856][T14097]  loop2: unable to read partition table
[  572.157586][T14097] loop2: partition table beyond EOD, truncated
[  572.159502][T14097] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  572.228859][T14099] FAULT_INJECTION: forcing a failure.
[  572.228859][T14099] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  572.232899][T14099] CPU: 2 UID: 0 PID: 14099 Comm: syz.2.2842 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  572.232915][T14099] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  572.232921][T14099] Call Trace:
[  572.232925][T14099]  <TASK>
[  572.232929][T14099]  dump_stack_lvl+0x16c/0x1f0
[  572.232949][T14099]  should_fail_ex+0x512/0x640
[  572.232967][T14099]  _copy_from_user+0x2e/0xd0
[  572.232984][T14099]  iommufd_fops_ioctl+0x2e7/0x4e0
[  572.233001][T14099]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  572.233017][T14099]  ? hook_file_ioctl_common+0x145/0x410
[  572.233033][T14099]  ? selinux_file_ioctl+0x180/0x270
[  572.233050][T14099]  ? selinux_file_ioctl+0xb4/0x270
[  572.233067][T14099]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  572.233083][T14099]  __x64_sys_ioctl+0x193/0x200
[  572.233099][T14099]  do_syscall_64+0xcd/0x260
[  572.233116][T14099]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.233128][T14099] RIP: 0033:0x7fe1d418e969
[  572.233137][T14099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  572.233148][T14099] RSP: 002b:00007fe1d5071038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  572.233159][T14099] RAX: ffffffffffffffda RBX: 00007fe1d43b5fa0 RCX: 00007fe1d418e969
[  572.233166][T14099] RDX: 0000200000000080 RSI: 0000000000003ba0 RDI: 0000000000000003
[  572.233172][T14099] RBP: 00007fe1d5071090 R08: 0000000000000000 R09: 0000000000000000
[  572.233179][T14099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  572.233185][T14099] R13: 0000000000000000 R14: 00007fe1d43b5fa0 R15: 00007ffd23f6a148
[  572.233198][T14099]  </TASK>
[  572.385471][T14105] program syz.3.2845 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  572.447182][T14106] syzkaller0: entered promiscuous mode
[  572.448959][T14106] syzkaller0: entered allmulticast mode
[  572.451233][T14109] FAULT_INJECTION: forcing a failure.
[  572.451233][T14109] name failslab, interval 1, probability 0, space 0, times 0
[  572.455304][T14109] CPU: 3 UID: 0 PID: 14109 Comm: syz.4.2846 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  572.455319][T14109] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  572.455326][T14109] Call Trace:
[  572.455330][T14109]  <TASK>
[  572.455335][T14109]  dump_stack_lvl+0x16c/0x1f0
[  572.455355][T14109]  should_fail_ex+0x512/0x640
[  572.455370][T14109]  ? fs_reclaim_acquire+0xae/0x150
[  572.455387][T14109]  ? tomoyo_encode2+0x100/0x3e0
[  572.455408][T14109]  should_failslab+0xc2/0x120
[  572.455426][T14109]  __kmalloc_noprof+0xd2/0x510
[  572.455441][T14109]  ? d_absolute_path+0x136/0x1a0
[  572.455463][T14109]  tomoyo_encode2+0x100/0x3e0
[  572.455481][T14109]  tomoyo_encode+0x29/0x50
[  572.455497][T14109]  tomoyo_realpath_from_path+0x18f/0x6e0
[  572.455518][T14109]  tomoyo_path_number_perm+0x245/0x580
[  572.455532][T14109]  ? tomoyo_path_number_perm+0x237/0x580
[  572.455547][T14109]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  572.455562][T14109]  ? find_held_lock+0x2b/0x80
[  572.455589][T14109]  ? find_held_lock+0x2b/0x80
[  572.455601][T14109]  ? hook_file_ioctl_common+0x145/0x410
[  572.455616][T14109]  ? __fget_files+0x20e/0x3c0
[  572.455629][T14109]  security_file_ioctl+0x9b/0x240
[  572.455646][T14109]  __x64_sys_ioctl+0xb7/0x200
[  572.455662][T14109]  do_syscall_64+0xcd/0x260
[  572.455679][T14109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.455690][T14109] RIP: 0033:0x7fe2eb18e969
[  572.455700][T14109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  572.455718][T14109] RSP: 002b:00007fe2ebf25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  572.455728][T14109] RAX: ffffffffffffffda RBX: 00007fe2eb3b5fa0 RCX: 00007fe2eb18e969
[  572.455735][T14109] RDX: 0000000000000000 RSI: 0000000000007040 RDI: 0000000000000003
[  572.455744][T14109] RBP: 00007fe2ebf25090 R08: 0000000000000000 R09: 0000000000000000
[  572.455751][T14109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  572.455759][T14109] R13: 0000000000000000 R14: 00007fe2eb3b5fa0 R15: 00007ffebf3d6868
[  572.455779][T14109]  </TASK>
[  572.455792][T14109] ERROR: Out of memory at tomoyo_realpath_from_path.
[  572.594859][T14112] fuse: Bad value for 'fd'
[  572.629883][T14115] IPv6: NLM_F_REPLACE set, but no existing node found!
[  572.764096][T14120] FAULT_INJECTION: forcing a failure.
[  572.764096][T14120] name failslab, interval 1, probability 0, space 0, times 0
[  572.768320][T14120] CPU: 2 UID: 0 PID: 14120 Comm: syz.4.2852 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  572.768336][T14120] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  572.768343][T14120] Call Trace:
[  572.768347][T14120]  <TASK>
[  572.768352][T14120]  dump_stack_lvl+0x16c/0x1f0
[  572.768372][T14120]  should_fail_ex+0x512/0x640
[  572.768388][T14120]  ? __kvmalloc_node_noprof+0x122/0x600
[  572.768407][T14120]  should_failslab+0xc2/0x120
[  572.768421][T14120]  __kvmalloc_node_noprof+0x135/0x600
[  572.768438][T14120]  ? __pfx___mutex_lock+0x10/0x10
[  572.768454][T14120]  ? traverse.part.0.constprop.0+0x392/0x640
[  572.768475][T14120]  ? traverse.part.0.constprop.0+0x392/0x640
[  572.768491][T14120]  traverse.part.0.constprop.0+0x392/0x640
[  572.768508][T14120]  ? _kstrtoull+0x145/0x200
[  572.768520][T14120]  ? __pfx__kstrtoull+0x10/0x10
[  572.768533][T14120]  seq_read_iter+0x932/0x12c0
[  572.768555][T14120]  seq_read+0x39e/0x4e0
[  572.768572][T14120]  ? __pfx_seq_read+0x10/0x10
[  572.768593][T14120]  ? avc_policy_seqno+0x9/0x20
[  572.768607][T14120]  ? __pfx_seq_read+0x10/0x10
[  572.768623][T14120]  proc_reg_read+0x240/0x330
[  572.768635][T14120]  ? __pfx_proc_reg_read+0x10/0x10
[  572.768648][T14120]  vfs_read+0x1e1/0xc70
[  572.768669][T14120]  ? __pfx_vfs_read+0x10/0x10
[  572.768686][T14120]  ? find_held_lock+0x2b/0x80
[  572.768700][T14120]  ? __fget_files+0x204/0x3c0
[  572.768717][T14120]  ? __fget_files+0x20e/0x3c0
[  572.768726][T14120]  ? __fget_files+0x1a0/0x3c0
[  572.768739][T14120]  __x64_sys_pread64+0x1f4/0x250
[  572.768757][T14120]  ? __pfx___x64_sys_pread64+0x10/0x10
[  572.768774][T14120]  ? rcu_is_watching+0x12/0xc0
[  572.768791][T14120]  do_syscall_64+0xcd/0x260
[  572.768809][T14120]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.768820][T14120] RIP: 0033:0x7fe2eb18e969
[  572.768830][T14120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  572.768841][T14120] RSP: 002b:00007fe2ebf25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  572.768852][T14120] RAX: ffffffffffffffda RBX: 00007fe2eb3b5fa0 RCX: 00007fe2eb18e969
[  572.768859][T14120] RDX: 0000000000000014 RSI: 0000200000000000 RDI: 0000000000000003
[  572.768866][T14120] RBP: 00007fe2ebf25090 R08: 0000000000000000 R09: 0000000000000000
[  572.768873][T14120] R10: 00000000010000b6 R11: 0000000000000246 R12: 0000000000000001
[  572.768879][T14120] R13: 0000000000000000 R14: 00007fe2eb3b5fa0 R15: 00007ffebf3d6868
[  572.768893][T14120]  </TASK>
[  573.399548][   T40] kauditd_printk_skb: 945 callbacks suppressed
[  573.399561][   T40] audit: type=1400 audit(1747169839.235:28077): avc:  denied  { read write } for  pid=14139 comm="syz.3.2860" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  573.408866][   T40] audit: type=1400 audit(1747169839.235:28078): avc:  denied  { read write open } for  pid=14139 comm="syz.3.2860" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  573.417928][   T40] audit: type=1400 audit(1747169839.245:28079): avc:  denied  { ioctl } for  pid=14139 comm="syz.3.2860" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  573.438193][   T40] audit: type=1400 audit(1747169839.275:28080): avc:  denied  { read write } for  pid=14141 comm="syz.0.2861" name="fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  573.446319][   T40] audit: type=1400 audit(1747169839.285:28081): avc:  denied  { read write open } for  pid=14141 comm="syz.0.2861" path="/dev/fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  573.448541][T14142] fuse: Bad value for 'fd'
[  573.458518][   T40] audit: type=1400 audit(1747169839.285:28082): avc:  denied  { mounton } for  pid=14139 comm="syz.3.2860" path="/152/file0" dev="tmpfs" ino=824 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  573.470638][   T40] audit: type=1400 audit(1747169839.285:28083): avc:  denied  { mounton } for  pid=14141 comm="syz.0.2861" path="/121/file0" dev="tmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  573.477902][   T40] audit: type=1400 audit(1747169839.295:28084): avc:  denied  { mount } for  pid=14139 comm="syz.3.2860" name="/" dev="9p" ino=35913887 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  573.485036][   T40] audit: type=1400 audit(1747169839.295:28085): avc:  denied  { map_create } for  pid=14139 comm="syz.3.2860" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  573.495721][   T40] audit: type=1400 audit(1747169839.305:28086): avc:  denied  { create } for  pid=14141 comm="syz.0.2861" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  573.572695][T14145] io-wq is not configured for unbound workers
[  573.651883][T14147] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  573.850039][T14154] netlink: 'syz.3.2865': attribute type 10 has an invalid length.
[  574.079780][ T5282] Bluetooth: hci0: command 0x0c1a tx timeout
[  574.081748][T12708] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  574.476372][T14166] loop2: detected capacity change from 0 to 7
[  574.478775][T14166] FAULT_INJECTION: forcing a failure.
[  574.478775][T14166] name failslab, interval 1, probability 0, space 0, times 0
[  574.482735][T14166] CPU: 3 UID: 0 PID: 14166 Comm: syz.0.2869 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  574.482754][T14166] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  574.482761][T14166] Call Trace:
[  574.482766][T14166]  <TASK>
[  574.482770][T14166]  dump_stack_lvl+0x16c/0x1f0
[  574.482790][T14166]  should_fail_ex+0x512/0x640
[  574.482805][T14166]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  574.482819][T14166]  should_failslab+0xc2/0x120
[  574.482831][T14166]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  574.482841][T14166]  ? __pfx___might_resched+0x10/0x10
[  574.482857][T14166]  ? alloc_vmap_area+0x613/0x2970
[  574.482873][T14166]  alloc_vmap_area+0x613/0x2970
[  574.482893][T14166]  ? __pfx_alloc_vmap_area+0x10/0x10
[  574.482911][T14166]  __get_vm_area_node+0x1ca/0x330
[  574.482929][T14166]  __vmalloc_node_range_noprof+0x277/0x1540
[  574.482946][T14166]  ? bdev_disk_changed+0x48d/0x1520
[  574.482968][T14166]  ? bdev_disk_changed+0x48d/0x1520
[  574.482989][T14166]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  574.483010][T14166]  ? bdev_disk_changed+0x48d/0x1520
[  574.483027][T14166]  vzalloc_noprof+0x6b/0x90
[  574.483043][T14166]  ? bdev_disk_changed+0x48d/0x1520
[  574.483060][T14166]  bdev_disk_changed+0x48d/0x1520
[  574.483077][T14166]  ? __pfx___mutex_lock+0x10/0x10
[  574.483098][T14166]  ? __pfx_bdev_disk_changed+0x10/0x10
[  574.483119][T14166]  loop_reread_partitions+0x70/0x140
[  574.483135][T14166]  loop_configure+0x146d/0x1a30
[  574.483161][T14166]  ? __pfx_loop_configure+0x10/0x10
[  574.483189][T14166]  lo_ioctl+0xf6c/0x28e0
[  574.483203][T14166]  ? __pfx_common_lsm_audit+0x10/0x10
[  574.483224][T14166]  ? slow_avc_audit+0x18b/0x210
[  574.483236][T14166]  ? __pfx_slow_avc_audit+0x10/0x10
[  574.483249][T14166]  ? __pfx_lo_ioctl+0x10/0x10
[  574.483264][T14166]  ? find_held_lock+0x2b/0x80
[  574.483278][T14166]  ? avc_has_extended_perms+0x33a/0x1090
[  574.483291][T14166]  ? avc_has_extended_perms+0xa4b/0x1090
[  574.483302][T14166]  ? avc_has_extended_perms+0x47c/0x1090
[  574.483317][T14166]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  574.483329][T14166]  ? kasan_quarantine_put+0x10a/0x240
[  574.483345][T14166]  ? lockdep_hardirqs_on+0x7c/0x110
[  574.483362][T14166]  ? find_held_lock+0x2b/0x80
[  574.483379][T14166]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  574.483392][T14166]  ? blkdev_common_ioctl+0x1dd/0x2480
[  574.483421][T14166]  ? __pfx_lo_ioctl+0x10/0x10
[  574.483436][T14166]  blkdev_ioctl+0x277/0x6d0
[  574.483447][T14166]  ? __pfx_blkdev_ioctl+0x10/0x10
[  574.483458][T14166]  ? selinux_file_ioctl+0x180/0x270
[  574.483475][T14166]  ? selinux_file_ioctl+0xb4/0x270
[  574.483493][T14166]  ? __pfx_blkdev_ioctl+0x10/0x10
[  574.483506][T14166]  __x64_sys_ioctl+0x193/0x200
[  574.483522][T14166]  do_syscall_64+0xcd/0x260
[  574.483538][T14166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  574.483550][T14166] RIP: 0033:0x7f5c8fb8e969
[  574.483559][T14166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  574.483570][T14166] RSP: 002b:00007f5c909f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  574.483581][T14166] RAX: ffffffffffffffda RBX: 00007f5c8fdb5fa0 RCX: 00007f5c8fb8e969
[  574.483587][T14166] RDX: 0000200000000400 RSI: 0000000000004c0a RDI: 0000000000000003
[  574.483594][T14166] RBP: 00007f5c909f7090 R08: 0000000000000000 R09: 0000000000000000
[  574.483601][T14166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  574.483607][T14166] R13: 0000000000000000 R14: 00007f5c8fdb5fa0 R15: 00007ffe890fb9e8
[  574.483621][T14166]  </TASK>
[  574.483634][T14166] syz.0.2869: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  574.597903][T14166] CPU: 3 UID: 0 PID: 14166 Comm: syz.0.2869 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  574.597919][T14166] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  574.597926][T14166] Call Trace:
[  574.597930][T14166]  <TASK>
[  574.597935][T14166]  dump_stack_lvl+0x16c/0x1f0
[  574.597954][T14166]  warn_alloc+0x248/0x3a0
[  574.597967][T14166]  ? __pfx_warn_alloc+0x10/0x10
[  574.597979][T14166]  ? kfree+0x2b6/0x4d0
[  574.597997][T14166]  ? __get_vm_area_node+0x208/0x330
[  574.598016][T14166]  __vmalloc_node_range_noprof+0xd31/0x1540
[  574.598037][T14166]  ? bdev_disk_changed+0x48d/0x1520
[  574.598059][T14166]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  574.598080][T14166]  ? bdev_disk_changed+0x48d/0x1520
[  574.598097][T14166]  vzalloc_noprof+0x6b/0x90
[  574.598113][T14166]  ? bdev_disk_changed+0x48d/0x1520
[  574.598130][T14166]  bdev_disk_changed+0x48d/0x1520
[  574.598147][T14166]  ? __pfx___mutex_lock+0x10/0x10
[  574.598168][T14166]  ? __pfx_bdev_disk_changed+0x10/0x10
[  574.598190][T14166]  loop_reread_partitions+0x70/0x140
[  574.598205][T14166]  loop_configure+0x146d/0x1a30
[  574.598231][T14166]  ? __pfx_loop_configure+0x10/0x10
[  574.598259][T14166]  lo_ioctl+0xf6c/0x28e0
[  574.598273][T14166]  ? __pfx_common_lsm_audit+0x10/0x10
[  574.598294][T14166]  ? slow_avc_audit+0x18b/0x210
[  574.598306][T14166]  ? __pfx_slow_avc_audit+0x10/0x10
[  574.598319][T14166]  ? __pfx_lo_ioctl+0x10/0x10
[  574.598334][T14166]  ? find_held_lock+0x2b/0x80
[  574.598349][T14166]  ? avc_has_extended_perms+0x33a/0x1090
[  574.598362][T14166]  ? avc_has_extended_perms+0xa4b/0x1090
[  574.598372][T14166]  ? avc_has_extended_perms+0x47c/0x1090
[  574.598387][T14166]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  574.598399][T14166]  ? kasan_quarantine_put+0x10a/0x240
[  574.598417][T14166]  ? lockdep_hardirqs_on+0x7c/0x110
[  574.598434][T14166]  ? find_held_lock+0x2b/0x80
[  574.598451][T14166]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  574.598463][T14166]  ? blkdev_common_ioctl+0x1dd/0x2480
[  574.598492][T14166]  ? __pfx_lo_ioctl+0x10/0x10
[  574.598507][T14166]  blkdev_ioctl+0x277/0x6d0
[  574.598532][T14166]  ? __pfx_blkdev_ioctl+0x10/0x10
[  574.598543][T14166]  ? selinux_file_ioctl+0x180/0x270
[  574.598560][T14166]  ? selinux_file_ioctl+0xb4/0x270
[  574.598578][T14166]  ? __pfx_blkdev_ioctl+0x10/0x10
[  574.598590][T14166]  __x64_sys_ioctl+0x193/0x200
[  574.598607][T14166]  do_syscall_64+0xcd/0x260
[  574.598624][T14166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  574.598636][T14166] RIP: 0033:0x7f5c8fb8e969
[  574.598646][T14166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  574.598656][T14166] RSP: 002b:00007f5c909f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  574.598668][T14166] RAX: ffffffffffffffda RBX: 00007f5c8fdb5fa0 RCX: 00007f5c8fb8e969
[  574.598675][T14166] RDX: 0000200000000400 RSI: 0000000000004c0a RDI: 0000000000000003
[  574.598682][T14166] RBP: 00007f5c909f7090 R08: 0000000000000000 R09: 0000000000000000
[  574.598688][T14166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  574.598694][T14166] R13: 0000000000000000 R14: 00007f5c8fdb5fa0 R15: 00007ffe890fb9e8
[  574.598708][T14166]  </TASK>
[  574.598712][T14166] Mem-Info:
[  574.698919][T14166] active_anon:5412 inactive_anon:0 isolated_anon:0
[  574.698919][T14166]  active_file:19368 inactive_file:40788 isolated_file:0
[  574.698919][T14166]  unevictable:1768 dirty:544 writeback:0
[  574.698919][T14166]  slab_reclaimable:12680 slab_unreclaimable:78968
[  574.698919][T14166]  mapped:25562 shmem:2401 pagetables:716
[  574.698919][T14166]  sec_pagetables:319 bounce:0
[  574.698919][T14166]  kernel_misc_reclaimable:0
[  574.698919][T14166]  free:451854 free_pcp:2394 free_cma:0
[  574.712765][T14166] Node 0 active_anon:21648kB inactive_anon:0kB active_file:77472kB inactive_file:162948kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:102248kB dirty:2176kB writeback:0kB shmem:6068kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11888kB pagetables:2864kB sec_pagetables:1276kB all_unreclaimable? no Balloon:0kB
[  574.723175][T14166] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:144kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  574.732800][T14166] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  574.741093][T14166] lowmem_reserve[]: 0 1238 1238 1238 1238
[  574.742877][T14166] Node 0 DMA32 free:206508kB boost:0kB min:27576kB low:34468kB high:41360kB reserved_highatomic:0KB active_anon:21556kB inactive_anon:0kB active_file:77472kB inactive_file:162948kB unevictable:3536kB writepending:2176kB present:2080628kB managed:1268544kB mlocked:0kB bounce:0kB free_pcp:7180kB local_pcp:868kB free_cma:0kB
[  574.752231][T14166] lowmem_reserve[]: 0 0 0 0 0
[  574.753761][T14166] Node 1 Normal free:1585860kB boost:0kB min:39660kB low:49572kB high:59484kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781964kB mlocked:0kB bounce:0kB free_pcp:2716kB local_pcp:2240kB free_cma:0kB
[  574.763056][T14166] lowmem_reserve[]: 0 0 0 0 0
[  574.764588][T14166] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  574.768634][T14166] Node 0 DMA32: 287*4kB (UME) 714*8kB (UME) 777*16kB (UME) 796*32kB (UME) 324*64kB (UME) 83*128kB (UME) 33*256kB (UM) 22*512kB (UM) 12*1024kB (UME) 6*2048kB (UM) 21*4096kB (UM) = 206428kB
[  574.774485][T14166] Node 1 Normal: 5*4kB (UME) 30*8kB (UME) 26*16kB (UME) 177*32kB (UME) 68*64kB (UME) 26*128kB (UME) 6*256kB (UE) 5*512kB (ME) 3*1024kB (UE) 4*2048kB (UE) 380*4096kB (M) = 1585860kB
[  574.780178][T14166] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  574.783113][T14166] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  574.786457][T14166] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  574.789417][T14166] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  574.792377][T14166] 62554 total pagecache pages
[  574.793883][T14166] 0 pages in swap cache
[  574.795202][T14166] Free swap  = 124996kB
[  574.796557][T14166] Total swap = 124996kB
[  574.797887][T14166] 1048443 pages RAM
[  574.799172][T14166] 0 pages HighMem/MovableOnly
[  574.801001][T14166] 281976 pages reserved
[  574.802392][T14166] 0 pages cma reserved
[  574.806096][T14154] batadv0: entered promiscuous mode
[  574.807767][T14154] batadv0: entered allmulticast mode
[  574.810614][T14154] bond0: (slave batadv0): Releasing backup interface
[  574.819582][T14154] batman_adv: batadv0: Local translation table size (72) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  574.824431][T14154] bridge0: port 3(batadv0) entered blocking state
[  574.826532][T14154] bridge0: port 3(batadv0) entered disabled state
[  574.829627][T14154] batman_adv: batadv0: Local translation table size (80) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  574.859934][   T13] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  574.862863][   T13] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  574.927755][T14168] __nla_validate_parse: 3 callbacks suppressed
[  574.927812][T14168] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2870'.
[  575.013367][T14178] netlink: 'syz.4.2874': attribute type 9 has an invalid length.
[  575.041805][T14180] fuse: Bad value for 'fd'
[  575.211083][T14191] netlink: 'syz.3.2880': attribute type 10 has an invalid length.
[  575.213933][T14191] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2880'.
[  575.218268][T14191] bridge0: port 3(batadv0) entered blocking state
[  575.220465][T14191] bridge0: port 3(batadv0) entered forwarding state
[  575.223416][T14191] 8021q: adding VLAN 0 to HW filter on device batadv0
[  575.252216][ T5998] batman_adv: batadv0: Local translation table size (80) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  575.539868][ T5998] batman_adv: batadv0: Local translation table size (80) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  575.696433][T14225] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2895'.
[  576.000105][   T76] batman_adv: batadv0: Local translation table size (56) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  576.045925][T14246] FAULT_INJECTION: forcing a failure.
[  576.045925][T14246] name failslab, interval 1, probability 0, space 0, times 0
[  576.051524][T14246] CPU: 0 UID: 0 PID: 14246 Comm: syz.3.2904 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  576.051539][T14246] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  576.051546][T14246] Call Trace:
[  576.051550][T14246]  <TASK>
[  576.051555][T14246]  dump_stack_lvl+0x16c/0x1f0
[  576.051589][T14246]  should_fail_ex+0x512/0x640
[  576.051607][T14246]  ? __kmalloc_noprof+0xbf/0x510
[  576.051619][T14246]  ? _iommufd_object_alloc+0x23/0x1a0
[  576.051633][T14246]  should_failslab+0xc2/0x120
[  576.051650][T14246]  __kmalloc_noprof+0xd2/0x510
[  576.051662][T14246]  ? find_held_lock+0x2b/0x80
[  576.051677][T14246]  _iommufd_object_alloc+0x23/0x1a0
[  576.051691][T14246]  iommufd_test+0x1176/0x6100
[  576.051708][T14246]  ? __pfx_iommufd_test+0x10/0x10
[  576.051721][T14246]  ? find_held_lock+0x2b/0x80
[  576.051734][T14246]  ? __might_fault+0xe3/0x190
[  576.051744][T14246]  ? __might_fault+0xe3/0x190
[  576.051754][T14246]  ? __might_fault+0x13b/0x190
[  576.051770][T14246]  iommufd_fops_ioctl+0x33c/0x4e0
[  576.051785][T14246]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  576.051801][T14246]  ? hook_file_ioctl_common+0x145/0x410
[  576.051817][T14246]  ? selinux_file_ioctl+0x180/0x270
[  576.051834][T14246]  ? selinux_file_ioctl+0xb4/0x270
[  576.051851][T14246]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  576.051867][T14246]  __x64_sys_ioctl+0x193/0x200
[  576.051883][T14246]  do_syscall_64+0xcd/0x260
[  576.051901][T14246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.051912][T14246] RIP: 0033:0x7fd2b758e969
[  576.051921][T14246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  576.051933][T14246] RSP: 002b:00007fd2b842e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  576.051944][T14246] RAX: ffffffffffffffda RBX: 00007fd2b77b5fa0 RCX: 00007fd2b758e969
[  576.051951][T14246] RDX: 0000200000000080 RSI: 0000000000003ba0 RDI: 0000000000000003
[  576.051958][T14246] RBP: 00007fd2b842e090 R08: 0000000000000000 R09: 0000000000000000
[  576.051964][T14246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  576.051971][T14246] R13: 0000000000000000 R14: 00007fd2b77b5fa0 R15: 00007ffdf76575b8
[  576.051984][T14246]  </TASK>
[  576.337372][T14256] program syz.3.2908 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  576.391774][T14258] netlink: 'syz.4.2909': attribute type 10 has an invalid length.
[  576.394309][T14258] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2909'.
[  576.397462][T14258] batadv0: entered promiscuous mode
[  576.399077][T14258] batadv0: entered allmulticast mode
[  576.404798][T14258] bridge0: port 3(batadv0) entered blocking state
[  576.409847][T14258] bridge0: port 3(batadv0) entered disabled state
[  576.412996][T14258] batman_adv: batadv0: Local translation table size (116) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  576.427679][T14258] bridge0: port 3(batadv0) entered blocking state
[  576.429831][T14258] bridge0: port 3(batadv0) entered forwarding state
[  576.481311][T14262] binder: 14261:14262 unknown command 0
[  576.483118][T14262] binder: 14261:14262 ioctl c0306201 200000000740 returned -22
[  576.671095][ T1187] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  576.674098][ T1187] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  576.694528][T14271] fuse: Bad value for 'fd'
[  576.710455][T14275] FAULT_INJECTION: forcing a failure.
[  576.710455][T14275] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  576.714526][T14275] CPU: 3 UID: 0 PID: 14275 Comm: syz.0.2917 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  576.714542][T14275] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  576.714548][T14275] Call Trace:
[  576.714552][T14275]  <TASK>
[  576.714557][T14275]  dump_stack_lvl+0x16c/0x1f0
[  576.714577][T14275]  should_fail_ex+0x512/0x640
[  576.714595][T14275]  _copy_to_user+0x32/0xd0
[  576.714613][T14275]  simple_read_from_buffer+0xcb/0x170
[  576.714632][T14275]  proc_fail_nth_read+0x197/0x270
[  576.714650][T14275]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  576.714668][T14275]  ? rw_verify_area+0xcf/0x680
[  576.714682][T14275]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  576.714699][T14275]  vfs_read+0x1e1/0xc70
[  576.714717][T14275]  ? __pfx___mutex_lock+0x10/0x10
[  576.714733][T14275]  ? __pfx_vfs_read+0x10/0x10
[  576.714753][T14275]  ? __fget_files+0x20e/0x3c0
[  576.714767][T14275]  ksys_read+0x12a/0x240
[  576.714784][T14275]  ? __pfx_ksys_read+0x10/0x10
[  576.714799][T14275]  ? rcu_is_watching+0x12/0xc0
[  576.714817][T14275]  do_syscall_64+0xcd/0x260
[  576.714834][T14275]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.714846][T14275] RIP: 0033:0x7f5c8fb8d37c
[  576.714855][T14275] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  576.714866][T14275] RSP: 002b:00007f5c909f7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  576.714876][T14275] RAX: ffffffffffffffda RBX: 00007f5c8fdb5fa0 RCX: 00007f5c8fb8d37c
[  576.714883][T14275] RDX: 000000000000000f RSI: 00007f5c909f70a0 RDI: 0000000000000004
[  576.714890][T14275] RBP: 00007f5c909f7090 R08: 0000000000000000 R09: 0000000000000000
[  576.714897][T14275] R10: 00000000010000b6 R11: 0000000000000246 R12: 0000000000000001
[  576.714904][T14275] R13: 0000000000000000 R14: 00007f5c8fdb5fa0 R15: 00007ffe890fb9e8
[  576.714917][T14275]  </TASK>
[  576.929073][T14288] fuse: Bad value for 'group_id'
[  576.933633][T14288] fuse: Bad value for 'group_id'
[  577.046620][T14294] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  577.050256][ T1145] batman_adv: batadv0: Local translation table size (56) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  577.055896][ T1145] batman_adv: batadv0: Local translation table size (56) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  577.119832][ T5282] Bluetooth: hci0: command 0x0c1a tx timeout
[  577.121907][T12708] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  577.162612][T14303] fuse: Bad value for 'fd'
[  577.202029][ T5998] batman_adv: batadv0: Local translation table size (56) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  577.286327][T14307] binder: 14306:14307 unknown command 0
[  577.288140][T14307] binder: 14306:14307 ioctl c0306201 200000000740 returned -22
[  577.361845][T14311] macsec1: entered promiscuous mode
[  577.393722][T14313] netlink: 'syz.2.2932': attribute type 10 has an invalid length.
[  577.396320][T14313] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2932'.
[  577.440518][T14309] xt_CHECKSUM: unsupported CHECKSUM operation f4
[  577.474047][T14317] fuse: Bad value for 'group_id'
[  577.475726][T14317] fuse: Bad value for 'group_id'
[  577.634964][T14325] FAULT_INJECTION: forcing a failure.
[  577.634964][T14325] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  577.644891][T14325] CPU: 0 UID: 0 PID: 14325 Comm: syz.4.2937 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  577.644908][T14325] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  577.644915][T14325] Call Trace:
[  577.644919][T14325]  <TASK>
[  577.644924][T14325]  dump_stack_lvl+0x16c/0x1f0
[  577.644958][T14325]  should_fail_ex+0x512/0x640
[  577.644980][T14325]  should_fail_alloc_page+0xe7/0x130
[  577.644994][T14325]  prepare_alloc_pages+0x3c2/0x610
[  577.645011][T14325]  ? rcu_is_watching+0x12/0xc0
[  577.645027][T14325]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  577.645041][T14325]  ? __lock_acquire+0x5ca/0x1ba0
[  577.645062][T14325]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  577.645076][T14325]  ? find_held_lock+0x2b/0x80
[  577.645091][T14325]  ? bpf_ksym_find+0x127/0x1c0
[  577.645107][T14325]  ? __lock_acquire+0xaa4/0x1ba0
[  577.645123][T14325]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  577.645136][T14325]  ? policy_nodemask+0xea/0x4e0
[  577.645150][T14325]  alloc_pages_mpol+0x1fb/0x550
[  577.645163][T14325]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  577.645174][T14325]  ? __page_table_check_ptes_set+0x1ae/0x420
[  577.645187][T14325]  ? find_held_lock+0x2b/0x80
[  577.645203][T14325]  alloc_pages_noprof+0x131/0x390
[  577.645215][T14325]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  577.645232][T14325]  get_free_pages_noprof+0xc/0x40
[  577.645245][T14325]  kasan_populate_vmalloc_pte+0x2d/0x160
[  577.645263][T14325]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  577.645280][T14325]  __apply_to_page_range+0x61a/0xd60
[  577.645298][T14325]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  577.645317][T14325]  ? __pfx___apply_to_page_range+0x10/0x10
[  577.645334][T14325]  ? alloc_vmap_area+0x872/0x2970
[  577.645350][T14325]  alloc_vmap_area+0x919/0x2970
[  577.645370][T14325]  ? __pfx_alloc_vmap_area+0x10/0x10
[  577.645389][T14325]  __get_vm_area_node+0x1ca/0x330
[  577.645407][T14325]  __vmalloc_node_range_noprof+0x277/0x1540
[  577.645424][T14325]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  577.645458][T14325]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  577.645471][T14325]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  577.645492][T14325]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  577.645503][T14325]  vmalloc_user_noprof+0x6b/0x90
[  577.645519][T14325]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  577.645528][T14325]  vb2_vmalloc_alloc+0x135/0x3f0
[  577.645540][T14325]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  577.645557][T14325]  __vb2_queue_alloc+0x8c6/0x1280
[  577.645581][T14325]  vb2_core_reqbufs+0xa90/0xfe0
[  577.645601][T14325]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  577.645626][T14325]  __vb2_init_fileio+0x3f1/0x1100
[  577.645646][T14325]  ? vb2_fop_write+0xe6/0x3f0
[  577.645667][T14325]  __vb2_perform_fileio+0x9c2/0x1660
[  577.645681][T14325]  ? __pfx___vb2_perform_fileio+0x10/0x10
[  577.645695][T14325]  vb2_fop_write+0x207/0x3f0
[  577.645714][T14325]  v4l2_write+0x226/0x360
[  577.645729][T14325]  vfs_write+0x25f/0x1180
[  577.645745][T14325]  ? __pfx_v4l2_write+0x10/0x10
[  577.645760][T14325]  ? __pfx_vfs_write+0x10/0x10
[  577.645775][T14325]  ? find_held_lock+0x2b/0x80
[  577.645789][T14325]  ? __fget_files+0x204/0x3c0
[  577.645802][T14325]  ? __fget_files+0x20e/0x3c0
[  577.645811][T14325]  ? __fget_files+0x1a0/0x3c0
[  577.645825][T14325]  __x64_sys_pwrite64+0x1f4/0x250
[  577.645836][T14325]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  577.645845][T14325]  ? rcu_is_watching+0x12/0xc0
[  577.645862][T14325]  do_syscall_64+0xcd/0x260
[  577.645880][T14325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  577.645891][T14325] RIP: 0033:0x7fe2eb18e969
[  577.645901][T14325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  577.645912][T14325] RSP: 002b:00007fe2ebf25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  577.645934][T14325] RAX: ffffffffffffffda RBX: 00007fe2eb3b5fa0 RCX: 00007fe2eb18e969
[  577.645941][T14325] RDX: 00000000ffffff74 RSI: 0000200000000000 RDI: 0000000000000003
[  577.645948][T14325] RBP: 00007fe2ebf25090 R08: 0000000000000000 R09: 0000000000000000
[  577.645955][T14325] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002
[  577.645962][T14325] R13: 0000000000000000 R14: 00007fe2eb3b5fa0 R15: 00007ffebf3d6868
[  577.645976][T14325]  </TASK>
[  577.828913][T14332] syzkaller0: entered promiscuous mode
[  577.830974][T14332] syzkaller0: entered allmulticast mode
[  577.851241][T14334] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2941'.
[  578.064224][T14345] netlink: 'syz.0.2944': attribute type 39 has an invalid length.
[  578.086994][T14346] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2941'.
[  578.222631][T14348] FAULT_INJECTION: forcing a failure.
[  578.222631][T14348] name failslab, interval 1, probability 0, space 0, times 0
[  578.226812][T14348] CPU: 0 UID: 0 PID: 14348 Comm: syz.4.2945 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  578.226828][T14348] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  578.226835][T14348] Call Trace:
[  578.226839][T14348]  <TASK>
[  578.226844][T14348]  dump_stack_lvl+0x16c/0x1f0
[  578.226865][T14348]  should_fail_ex+0x512/0x640
[  578.226880][T14348]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  578.226896][T14348]  should_failslab+0xc2/0x120
[  578.226908][T14348]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  578.226919][T14348]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  578.226931][T14348]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  578.226947][T14348]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  578.226961][T14348]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  578.226976][T14348]  mmu_topup_memory_caches+0x25/0x170
[  578.226995][T14348]  kvm_mmu_load+0xd9/0x22a0
[  578.227012][T14348]  ? kvm_apic_has_interrupt+0xb5/0x190
[  578.227026][T14348]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  578.227041][T14348]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  578.227058][T14348]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  578.227072][T14348]  ? __pfx_kvm_mmu_load+0x10/0x10
[  578.227088][T14348]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  578.227101][T14348]  ? kvm_check_and_inject_events+0x71c/0x1310
[  578.227120][T14348]  vcpu_run+0x3446/0x5390
[  578.227134][T14348]  ? kvm_mmu_post_init_vm+0x269/0x370
[  578.227153][T14348]  ? __lock_acquire+0xaa4/0x1ba0
[  578.227175][T14348]  ? __pfx_vcpu_run+0x10/0x10
[  578.227193][T14348]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  578.227208][T14348]  ? __local_bh_enable_ip+0xa4/0x120
[  578.227225][T14348]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  578.227241][T14348]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  578.227262][T14348]  kvm_vcpu_ioctl+0x5e9/0x1680
[  578.227280][T14348]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  578.227301][T14348]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  578.227321][T14348]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  578.227344][T14348]  ? hook_file_ioctl_common+0x145/0x410
[  578.227359][T14348]  ? selinux_file_ioctl+0x180/0x270
[  578.227376][T14348]  ? selinux_file_ioctl+0xb4/0x270
[  578.227394][T14348]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  578.227412][T14348]  __x64_sys_ioctl+0x193/0x200
[  578.227428][T14348]  do_syscall_64+0xcd/0x260
[  578.227445][T14348]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  578.227457][T14348] RIP: 0033:0x7fe2eb18e969
[  578.227466][T14348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  578.227476][T14348] RSP: 002b:00007fe2ebf25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  578.227488][T14348] RAX: ffffffffffffffda RBX: 00007fe2eb3b5fa0 RCX: 00007fe2eb18e969
[  578.227495][T14348] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  578.227502][T14348] RBP: 00007fe2ebf25090 R08: 0000000000000000 R09: 0000000000000000
[  578.227508][T14348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  578.227514][T14348] R13: 0000000000000000 R14: 00007fe2eb3b5fa0 R15: 00007ffebf3d6868
[  578.227528][T14348]  </TASK>
[  578.430218][   T40] kauditd_printk_skb: 880 callbacks suppressed
[  578.430230][   T40] audit: type=1400 audit(1747169844.275:28967): avc:  denied  { read write } for  pid=13278 comm="syz-executor" name="loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  578.439602][   T40] audit: type=1400 audit(1747169844.275:28968): avc:  denied  { read write open } for  pid=13278 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  578.447461][   T40] audit: type=1400 audit(1747169844.275:28969): avc:  denied  { ioctl } for  pid=13278 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=662 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  578.479770][   T40] audit: type=1400 audit(1747169844.315:28970): avc:  denied  { create } for  pid=14350 comm="syz.4.2946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  578.486189][   T40] audit: type=1400 audit(1747169844.325:28971): avc:  denied  { connect } for  pid=14350 comm="syz.4.2946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  578.494305][   T40] audit: type=1400 audit(1747169844.325:28972): avc:  denied  { create } for  pid=14350 comm="syz.4.2946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  578.501775][   T40] audit: type=1400 audit(1747169844.325:28973): avc:  denied  { write } for  pid=14350 comm="syz.4.2946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  578.508263][   T40] audit: type=1400 audit(1747169844.325:28974): avc:  denied  { read } for  pid=14350 comm="syz.4.2946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  578.510345][T14351] overlayfs: missing 'lowerdir'
[  578.514765][   T40] audit: type=1400 audit(1747169844.325:28975): avc:  denied  { read } for  pid=14350 comm="syz.4.2946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  578.527943][   T40] audit: type=1400 audit(1747169844.325:28976): avc:  denied  { create } for  pid=14350 comm="syz.4.2946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  578.623092][T14352] SELinux: syz.4.2946 (14352) set checkreqprot to 1. This is no longer supported.
[  579.340229][T14356] fuse: Bad value for 'fd'
[  579.431779][T14360] netlink: 'syz.4.2949': attribute type 10 has an invalid length.
[  579.434346][T14360] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2949'.
[  579.553281][T14368] rtc_cmos 00:05: Alarms can be up to one day in the future
[  579.564440][T14368] loop2: detected capacity change from 0 to 7
[  579.569886][T14368] Dev loop2: unable to read RDB block 7
[  579.571675][T14368]  loop2: unable to read partition table
[  579.573541][T14368] loop2: partition table beyond EOD, truncated
[  579.575511][T14368] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  579.632560][T14371] FAULT_INJECTION: forcing a failure.
[  579.632560][T14371] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  579.636602][T14371] CPU: 3 UID: 0 PID: 14371 Comm: syz.4.2954 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  579.636618][T14371] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  579.636625][T14371] Call Trace:
[  579.636629][T14371]  <TASK>
[  579.636634][T14371]  dump_stack_lvl+0x16c/0x1f0
[  579.636658][T14371]  should_fail_ex+0x512/0x640
[  579.636677][T14371]  _copy_from_user+0x2e/0xd0
[  579.636694][T14371]  copy_msghdr_from_user+0x98/0x160
[  579.636708][T14371]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  579.636727][T14371]  ___sys_sendmsg+0xfe/0x1d0
[  579.636741][T14371]  ? __pfx____sys_sendmsg+0x10/0x10
[  579.636770][T14371]  __sys_sendmsg+0x16d/0x220
[  579.636782][T14371]  ? __pfx___sys_sendmsg+0x10/0x10
[  579.636799][T14371]  ? rcu_is_watching+0x12/0xc0
[  579.636817][T14371]  do_syscall_64+0xcd/0x260
[  579.636835][T14371]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  579.636846][T14371] RIP: 0033:0x7fe2eb18e969
[  579.636856][T14371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  579.636866][T14371] RSP: 002b:00007fe2ebf25038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  579.636877][T14371] RAX: ffffffffffffffda RBX: 00007fe2eb3b5fa0 RCX: 00007fe2eb18e969
[  579.636885][T14371] RDX: 0000000000000000 RSI: 0000200000001240 RDI: 0000000000000003
[  579.636892][T14371] RBP: 00007fe2ebf25090 R08: 0000000000000000 R09: 0000000000000000
[  579.636898][T14371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  579.636905][T14371] R13: 0000000000000000 R14: 00007fe2eb3b5fa0 R15: 00007ffebf3d6868
[  579.636919][T14371]  </TASK>
[  579.731550][T14374] random: crng reseeded on system resumption
[  580.007480][T14383] fuse: Bad value for 'fd'
[  580.365564][T14394] FAULT_INJECTION: forcing a failure.
[  580.365564][T14394] name failslab, interval 1, probability 0, space 0, times 0
[  580.369566][T14394] CPU: 2 UID: 0 PID: 14394 Comm: syz.4.2963 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  580.369583][T14394] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  580.369593][T14394] Call Trace:
[  580.369605][T14394]  <TASK>
[  580.369610][T14394]  dump_stack_lvl+0x16c/0x1f0
[  580.369642][T14394]  should_fail_ex+0x512/0x640
[  580.369667][T14394]  should_failslab+0xc2/0x120
[  580.369695][T14394]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  580.369709][T14394]  ? sidtab_sid2str_get+0x17a/0x680
[  580.369730][T14394]  kmemdup_noprof+0x29/0x60
[  580.369744][T14394]  sidtab_sid2str_get+0x17a/0x680
[  580.369763][T14394]  sidtab_entry_to_string+0x33/0x110
[  580.369781][T14394]  security_sid_to_context_core+0x35c/0x640
[  580.369800][T14394]  avc_audit_post_callback+0x1aa/0x8f0
[  580.369820][T14394]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  580.369837][T14394]  ? skb_put+0x138/0x1b0
[  580.369855][T14394]  ? audit_log_n_string+0x253/0x540
[  580.369877][T14394]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  580.369895][T14394]  common_lsm_audit+0x24e/0x300
[  580.369913][T14394]  ? __pfx_common_lsm_audit+0x10/0x10
[  580.369934][T14394]  slow_avc_audit+0x186/0x210
[  580.369949][T14394]  ? __pfx_slow_avc_audit+0x10/0x10
[  580.369964][T14394]  ? find_held_lock+0x2b/0x80
[  580.369979][T14394]  ? avc_has_extended_perms+0x33a/0x1090
[  580.369992][T14394]  avc_has_extended_perms+0xa40/0x1090
[  580.370009][T14394]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  580.370021][T14394]  ? kasan_quarantine_put+0x10a/0x240
[  580.370038][T14394]  ? lockdep_hardirqs_on+0x7c/0x110
[  580.370056][T14394]  ? find_held_lock+0x2b/0x80
[  580.370073][T14394]  ? tomoyo_path_number_perm+0x18d/0x580
[  580.370093][T14394]  ? __pfx___might_resched+0x10/0x10
[  580.370113][T14394]  ioctl_has_perm.constprop.0.isra.0+0x2f4/0x450
[  580.370134][T14394]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  580.370157][T14394]  ? hook_file_ioctl_common+0x145/0x410
[  580.370173][T14394]  ? selinux_file_ioctl+0x180/0x270
[  580.370190][T14394]  selinux_file_ioctl+0x180/0x270
[  580.370209][T14394]  security_file_ioctl+0xc6/0x240
[  580.370226][T14394]  __x64_sys_ioctl+0xb7/0x200
[  580.370243][T14394]  do_syscall_64+0xcd/0x260
[  580.370260][T14394]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.370272][T14394] RIP: 0033:0x7fe2eb18e969
[  580.370282][T14394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  580.370292][T14394] RSP: 002b:00007fe2ebf25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  580.370304][T14394] RAX: ffffffffffffffda RBX: 00007fe2eb3b5fa0 RCX: 00007fe2eb18e969
[  580.370311][T14394] RDX: 0000200000000400 RSI: 0000000000004c0a RDI: 0000000000000003
[  580.370318][T14394] RBP: 00007fe2ebf25090 R08: 0000000000000000 R09: 0000000000000000
[  580.370324][T14394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  580.370331][T14394] R13: 0000000000000000 R14: 00007fe2eb3b5fa0 R15: 00007ffebf3d6868
[  580.370345][T14394]  </TASK>
[  580.384553][T14395] fuse: Bad value for 'fd'
[  580.414439][T14394] loop2: detected capacity change from 0 to 7
[  580.480806][T14394] Dev loop2: unable to read RDB block 7
[  580.482611][T14394]  loop2: AHDI p1
[  580.483789][T14394] loop2: partition table partially beyond EOD, truncated
[  580.558548][T14403] netlink: 'syz.3.2965': attribute type 3 has an invalid length.
[  580.561798][T14403] netlink: 'syz.3.2965': attribute type 1 has an invalid length.
[  580.564225][T14403] netlink: 216 bytes leftover after parsing attributes in process `syz.3.2965'.
[  580.569821][T14403] NCSI netlink: No device for ifindex 33022
[  580.576714][T14403] netlink: 100 bytes leftover after parsing attributes in process `syz.3.2965'.
[  580.594094][T14405] IPv6: NLM_F_REPLACE set, but no existing node found!
[  580.611131][T14403] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2965'.
[  580.800215][    C0] batman_adv: batadv0: Local translation table size (68) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:1c
[  580.813101][T14423] binder: 14422:14423 unknown command 0
[  580.814907][T14423] binder: 14422:14423 ioctl c0306201 200000000740 returned -22
[  580.924936][T14432] rtc_cmos 00:05: Alarms can be up to one day in the future
[  581.001700][T14437] support for cryptoloop has been removed.  Use dm-crypt instead.
[  581.039859][    C1] batman_adv: batadv0: Local translation table size (56) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  581.282122][T14450] netlink: 'syz.2.2985': attribute type 10 has an invalid length.
[  581.284668][T14450] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2985'.
[  581.357999][T14452] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2986'.
[  581.449974][    C0] batman_adv: batadv0: Local translation table size (68) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:0c
[  581.509459][T14457] workqueue: name exceeds WQ_NAME_LEN. Truncating to: Åå¯ñ!§òµ÷fIZEô¿¹ô,š =©
[  581.561017][T14458] FAULT_INJECTION: forcing a failure.
[  581.561017][T14458] name failslab, interval 1, probability 0, space 0, times 0
[  581.565286][T14458] CPU: 2 UID: 0 PID: 14458 Comm: syz.2.2989 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  581.565303][T14458] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  581.565310][T14458] Call Trace:
[  581.565315][T14458]  <TASK>
[  581.565320][T14458]  dump_stack_lvl+0x116/0x1f0
[  581.565341][T14458]  should_fail_ex+0x512/0x640
[  581.565360][T14458]  ? virtqueue_add_sgs+0x742/0x1b50
[  581.565374][T14458]  should_failslab+0xc2/0x120
[  581.565387][T14458]  __kmalloc_noprof+0xd2/0x510
[  581.565424][T14458]  virtqueue_add_sgs+0x742/0x1b50
[  581.565436][T14458]  ? lock_acquire+0x179/0x350
[  581.565456][T14458]  ? __virt_addr_valid+0x2b4/0x590
[  581.565474][T14458]  ? __pfx_virtqueue_add_sgs+0x10/0x10
[  581.565486][T14458]  ? __virt_addr_valid+0x5e/0x590
[  581.565500][T14458]  ? __phys_addr+0xc6/0x150
[  581.565516][T14458]  ? pack_sg_list.constprop.0+0x255/0x2b0
[  581.565533][T14458]  p9_virtio_request+0x26d/0x6c0
[  581.565551][T14458]  ? __pfx_p9_virtio_request+0x10/0x10
[  581.565565][T14458]  ? p9_client_prepare_req+0x112/0x4d0
[  581.565587][T14458]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  581.565602][T14458]  ? do_mkdirat+0xaa/0x3e0
[  581.565615][T14458]  ? __lock_acquire+0xaa4/0x1ba0
[  581.565634][T14458]  p9_client_rpc+0x341/0xc50
[  581.565652][T14458]  ? __pfx_p9_client_rpc+0x10/0x10
[  581.565670][T14458]  ? idr_alloc_u32+0x20f/0x2f0
[  581.565686][T14458]  ? find_held_lock+0x2b/0x80
[  581.565700][T14458]  ? idr_preload_end+0xc2/0x230
[  581.565719][T14458]  p9_client_attach+0x156/0x2b0
[  581.565738][T14458]  ? __pfx_p9_client_attach+0x10/0x10
[  581.565756][T14458]  ? v9fs_fid_lookup+0x4bd/0xeb0
[  581.565773][T14458]  v9fs_fid_lookup+0x97a/0xeb0
[  581.565788][T14458]  v9fs_vfs_lookup+0x1a1/0x5b0
[  581.565805][T14458]  ? __pfx_v9fs_vfs_lookup+0x10/0x10
[  581.565820][T14458]  ? d_alloc+0x176/0x1e0
[  581.565833][T14458]  ? do_raw_spin_unlock+0x172/0x230
[  581.565846][T14458]  ? _raw_spin_unlock+0x28/0x50
[  581.565862][T14458]  lookup_one_qstr_excl_raw.part.0+0xef/0x160
[  581.565877][T14458]  ? lookup_dcache+0x66/0x170
[  581.565892][T14458]  lookup_one_qstr_excl+0x3e/0x120
[  581.565907][T14458]  filename_create+0x1e7/0x4a0
[  581.565924][T14458]  ? __pfx_filename_create+0x10/0x10
[  581.565940][T14458]  ? find_held_lock+0x2b/0x80
[  581.565958][T14458]  do_mkdirat+0xaa/0x3e0
[  581.565969][T14458]  ? __pfx_do_mkdirat+0x10/0x10
[  581.565980][T14458]  ? getname_flags.part.0+0x1c5/0x550
[  581.565994][T14458]  ? rcu_is_watching+0x12/0xc0
[  581.566010][T14458]  __x64_sys_mkdirat+0x83/0xb0
[  581.566021][T14458]  do_syscall_64+0xcd/0x260
[  581.566038][T14458]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  581.566050][T14458] RIP: 0033:0x7fe1d418e969
[  581.566060][T14458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  581.566071][T14458] RSP: 002b:00007fe1d5071038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  581.566082][T14458] RAX: ffffffffffffffda RBX: 00007fe1d43b5fa0 RCX: 00007fe1d418e969
[  581.566089][T14458] RDX: 00000000000001ff RSI: 0000200000000100 RDI: ffffffffffffff9c
[  581.566096][T14458] RBP: 00007fe1d5071090 R08: 0000000000000000 R09: 0000000000000000
[  581.566103][T14458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  581.566110][T14458] R13: 0000000000000000 R14: 00007fe1d43b5fa0 R15: 00007ffd23f6a148
[  581.566124][T14458]  </TASK>
[  581.746857][T14463] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2991'.
[  581.762095][T14463] bond1 (unregistering): Released all slaves
[  581.829062][T14466] hfsplus: unable to find HFS+ superblock
[  581.925046][T14470] netlink: 'syz.2.2994': attribute type 10 has an invalid length.
[  581.927560][T14470] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2994'.
[  582.033308][T14480] fuse: Bad value for 'fd'
[  582.080059][    C0] batman_adv: batadv0: Local translation table size (68) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:1b
[  582.469767][   T10] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  582.620095][   T10] usb 9-1: Using ep0 maxpacket: 16
[  582.627005][   T10] usb 9-1: config 0 has no interfaces?
[  582.632821][   T10] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  582.636318][   T10] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  582.638816][   T10] usb 9-1: SerialNumber: syz
[  582.644957][   T10] usb 9-1: config 0 descriptor??
[  582.873773][T14501] loop2: detected capacity change from 0 to 7
[  582.880039][T14501] Dev loop2: unable to read RDB block 7
[  582.881807][T14501]  loop2: AHDI p1
[  582.883049][T14501] loop2: partition table partially beyond EOD, truncated
[  582.903573][T14503] netlink: 'syz.3.3006': attribute type 10 has an invalid length.
[  582.906083][T14503] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3006'.
[  582.940685][   T10] batman_adv: batadv0: Local translation table size (56) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  583.088543][T14516] FAULT_INJECTION: forcing a failure.
[  583.088543][T14516] name failslab, interval 1, probability 0, space 0, times 0
[  583.092826][T14516] CPU: 3 UID: 0 PID: 14516 Comm: syz.2.3011 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  583.092842][T14516] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  583.092848][T14516] Call Trace:
[  583.092852][T14516]  <TASK>
[  583.092857][T14516]  dump_stack_lvl+0x16c/0x1f0
[  583.092877][T14516]  should_fail_ex+0x512/0x640
[  583.092892][T14516]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  583.092910][T14516]  should_failslab+0xc2/0x120
[  583.092922][T14516]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  583.092932][T14516]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  583.092944][T14516]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  583.092960][T14516]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  583.092974][T14516]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  583.092989][T14516]  mmu_topup_memory_caches+0x25/0x170
[  583.093008][T14516]  kvm_mmu_load+0xd9/0x22a0
[  583.093025][T14516]  ? kvm_apic_has_interrupt+0xb5/0x190
[  583.093039][T14516]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  583.093054][T14516]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  583.093071][T14516]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  583.093086][T14516]  ? __pfx_kvm_mmu_load+0x10/0x10
[  583.093102][T14516]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  583.093114][T14516]  ? kvm_check_and_inject_events+0x71c/0x1310
[  583.093134][T14516]  vcpu_run+0x3446/0x5390
[  583.093148][T14516]  ? kvm_mmu_post_init_vm+0x269/0x370
[  583.093167][T14516]  ? __lock_acquire+0xaa4/0x1ba0
[  583.093201][T14516]  ? __pfx_vcpu_run+0x10/0x10
[  583.093220][T14516]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  583.093236][T14516]  ? __local_bh_enable_ip+0xa4/0x120
[  583.093254][T14516]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  583.093270][T14516]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  583.093290][T14516]  kvm_vcpu_ioctl+0x5e9/0x1680
[  583.093309][T14516]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  583.093329][T14516]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  583.093350][T14516]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  583.093373][T14516]  ? hook_file_ioctl_common+0x145/0x410
[  583.093413][T14516]  ? selinux_file_ioctl+0x180/0x270
[  583.093436][T14516]  ? selinux_file_ioctl+0xb4/0x270
[  583.093454][T14516]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  583.093472][T14516]  __x64_sys_ioctl+0x193/0x200
[  583.093489][T14516]  do_syscall_64+0xcd/0x260
[  583.093507][T14516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.093519][T14516] RIP: 0033:0x7fe1d418e969
[  583.093528][T14516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  583.093540][T14516] RSP: 002b:00007fe1d5071038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  583.093551][T14516] RAX: ffffffffffffffda RBX: 00007fe1d43b5fa0 RCX: 00007fe1d418e969
[  583.093559][T14516] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  583.093566][T14516] RBP: 00007fe1d5071090 R08: 0000000000000000 R09: 0000000000000000
[  583.093572][T14516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  583.093579][T14516] R13: 0000000000000000 R14: 00007fe1d43b5fa0 R15: 00007ffd23f6a148
[  583.093594][T14516]  </TASK>
[  583.223821][T14523] xt_CT: You must specify a L4 protocol and not use inversions on it
[  583.226457][T14526] xt_CT: You must specify a L4 protocol and not use inversions on it
[  583.303871][T14530] fuse: Unknown parameter 'grou00000000000000000000'
[  583.452172][   T40] kauditd_printk_skb: 855 callbacks suppressed
[  583.452185][   T40] audit: type=1400 audit(1747169849.295:29832): avc:  denied  { name_bind } for  pid=14536 comm="syz.2.3018" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  583.461535][   T40] audit: type=1400 audit(1747169849.295:29833): avc:  denied  { node_bind } for  pid=14536 comm="syz.2.3018" saddr=224.0.0.1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  583.468382][   T40] audit: type=1400 audit(1747169849.295:29834): avc:  denied  { create } for  pid=14538 comm="syz.3.3019" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  583.474908][   T40] audit: type=1400 audit(1747169849.295:29835): avc:  denied  { write } for  pid=14538 comm="syz.3.3019" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  583.498956][   T40] audit: type=1400 audit(1747169849.335:29836): avc:  denied  { read write } for  pid=12706 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  583.506984][   T40] audit: type=1400 audit(1747169849.335:29837): avc:  denied  { read write open } for  pid=12706 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  583.514624][   T40] audit: type=1400 audit(1747169849.335:29838): avc:  denied  { ioctl } for  pid=12706 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  583.523692][   T40] audit: type=1400 audit(1747169849.335:29839): avc:  denied  { prog_load } for  pid=14536 comm="syz.2.3018" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  583.529532][   T40] audit: type=1400 audit(1747169849.335:29840): avc:  denied  { bpf } for  pid=14536 comm="syz.2.3018" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  583.537574][   T40] audit: type=1400 audit(1747169849.355:29841): avc:  denied  { perfmon } for  pid=14536 comm="syz.2.3018" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  583.543399][T14542] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3020'.
[  583.550429][   T10] batman_adv: batadv0: Local translation table size (56) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  583.920392][T14556] macvlan2: entered promiscuous mode
[  584.024618][T14560] mkiss: ax0: crc mode is auto.
[  584.079787][T12708] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  584.080638][ T5282] Bluetooth: hci0: command 0x0c1a tx timeout
[  584.092580][T14563] xt_hashlimit: size too large, truncated to 1048576
[  584.266166][T14569] fuse: Unknown parameter 'group_i00000000000000000000'
[  585.180592][ T7346] usb 9-1: USB disconnect, device number 2
[  585.284411][T14600] input: syz0 as /devices/virtual/input/input20
[  585.662708][T14622] FAULT_INJECTION: forcing a failure.
[  585.662708][T14622] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  585.666788][T14622] CPU: 2 UID: 0 PID: 14622 Comm: syz.4.3051 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  585.666804][T14622] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  585.666811][T14622] Call Trace:
[  585.666815][T14622]  <TASK>
[  585.666820][T14622]  dump_stack_lvl+0x16c/0x1f0
[  585.666840][T14622]  should_fail_ex+0x512/0x640
[  585.666858][T14622]  _copy_from_user+0x2e/0xd0
[  585.666876][T14622]  lo_ioctl+0x513/0x28e0
[  585.666892][T14622]  ? __pfx_common_lsm_audit+0x10/0x10
[  585.666913][T14622]  ? slow_avc_audit+0x18b/0x210
[  585.666924][T14622]  ? __pfx_slow_avc_audit+0x10/0x10
[  585.666938][T14622]  ? __pfx_lo_ioctl+0x10/0x10
[  585.666953][T14622]  ? find_held_lock+0x2b/0x80
[  585.666968][T14622]  ? avc_has_extended_perms+0x33a/0x1090
[  585.666981][T14622]  ? avc_has_extended_perms+0xa4b/0x1090
[  585.666992][T14622]  ? avc_has_extended_perms+0x47c/0x1090
[  585.667007][T14622]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  585.667020][T14622]  ? kasan_quarantine_put+0x10a/0x240
[  585.667037][T14622]  ? lockdep_hardirqs_on+0x7c/0x110
[  585.667054][T14622]  ? find_held_lock+0x2b/0x80
[  585.667071][T14622]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  585.667084][T14622]  ? blkdev_common_ioctl+0x1dd/0x2480
[  585.667113][T14622]  ? __pfx_lo_ioctl+0x10/0x10
[  585.667128][T14622]  blkdev_ioctl+0x277/0x6d0
[  585.667140][T14622]  ? __pfx_blkdev_ioctl+0x10/0x10
[  585.667151][T14622]  ? selinux_file_ioctl+0x180/0x270
[  585.667169][T14622]  ? selinux_file_ioctl+0xb4/0x270
[  585.667187][T14622]  ? __pfx_blkdev_ioctl+0x10/0x10
[  585.667199][T14622]  __x64_sys_ioctl+0x193/0x200
[  585.667216][T14622]  do_syscall_64+0xcd/0x260
[  585.667233][T14622]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  585.667245][T14622] RIP: 0033:0x7fe2eb18e969
[  585.667254][T14622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  585.667265][T14622] RSP: 002b:00007fe2ebf25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  585.667276][T14622] RAX: ffffffffffffffda RBX: 00007fe2eb3b5fa0 RCX: 00007fe2eb18e969
[  585.667283][T14622] RDX: 0000200000000400 RSI: 0000000000004c0a RDI: 0000000000000003
[  585.667290][T14622] RBP: 00007fe2ebf25090 R08: 0000000000000000 R09: 0000000000000000
[  585.667296][T14622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  585.667303][T14622] R13: 0000000000000000 R14: 00007fe2eb3b5fa0 R15: 00007ffebf3d6868
[  585.667318][T14622]  </TASK>
[  585.839344][T14625] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3052'.
[  585.847920][T14627] program syz.2.3053 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  585.978743][T14630] cdrom: dropping to single frame dma
[  586.124810][T14638] IPv6: NLM_F_REPLACE set, but no existing node found!
[  586.135928][T14639] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3057'.
[  586.212838][T14643] fuse: Unknown parameter 'group_i00000000000000000000'
[  586.399422][T14652] cgroup: No subsys list or none specified
[  586.827058][T14675] netlink: 'syz.2.3068': attribute type 12 has an invalid length.
[  586.829509][T14675] netlink: 'syz.2.3068': attribute type 29 has an invalid length.
[  586.832186][T14675] netlink: 148 bytes leftover after parsing attributes in process `syz.2.3068'.
[  586.834853][T14675] netlink: 'syz.2.3068': attribute type 2 has an invalid length.
[  586.837237][T14675] netlink: 43 bytes leftover after parsing attributes in process `syz.2.3068'.
[  586.967152][T14682] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3071'.
[  586.971167][T14682] netlink: 'syz.4.3071': attribute type 19 has an invalid length.
[  586.973987][T14682] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3071'.
[  586.987109][T14682] netlink: 256 bytes leftover after parsing attributes in process `syz.4.3071'.
[  586.990696][T14682] unsupported nlmsg_type 40
[  587.049764][  T836] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  587.156306][T14689] No such timeout policy "syz1"
[  587.163186][T14692] Invalid logical block size (254)
[  587.210312][  T836] usb 5-1: Using ep0 maxpacket: 8
[  587.221706][  T836] usb 5-1: config 2 interface 0 has no altsetting 0
[  587.243017][  T836] usb 5-1: New USB device found, idVendor=04e2, idProduct=1412, bcdDevice=ca.10
[  587.246152][  T836] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  587.259080][  T836] usb 5-1: Product: syz
[  587.261367][  T836] usb 5-1: Manufacturer: syz
[  587.263030][  T836] usb 5-1: SerialNumber: syz
[  587.393992][T14701] xt_time: unknown flags 0xc
[  587.440150][ T5282] Bluetooth: hci3: command 0x0c1a tx timeout
[  587.442282][   T10] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[  587.444848][   T10] Bluetooth: hci3: Error when powering off device on rfkill (-110)
[  587.490120][  T836] usb 5-1: USB disconnect, device number 18
[  587.669493][T14711] loop2: detected capacity change from 0 to 7
[  587.672435][T14711] Dev loop2: unable to read RDB block 7
[  587.674271][T14711]  loop2: unable to read partition table
[  587.676202][T14711] loop2: partition table beyond EOD, truncated
[  587.678216][T14711] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  587.957200][T14721] syzkaller0: entered promiscuous mode
[  587.959125][T14721] syzkaller0: entered allmulticast mode
[  588.063429][T14725] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3084'.
[  588.186644][T14729] loop2: detected capacity change from 0 to 7
[  588.189193][T14729] Dev loop2: unable to read RDB block 7
[  588.191148][T14729]  loop2: unable to read partition table
[  588.193030][T14729] loop2: partition table beyond EOD, truncated
[  588.195022][T14729] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  588.489881][    C2] batman_adv: batadv0: Local translation table size (56) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:0c
[  588.989133][T14726] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  589.015913][   T40] kauditd_printk_skb: 1958 callbacks suppressed
[  589.015925][   T40] audit: type=1400 audit(1747169854.855:31798): avc:  denied  { read write } for  pid=12706 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  589.040322][   T40] audit: type=1400 audit(1747169854.855:31799): avc:  denied  { read write open } for  pid=12706 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  589.047967][   T40] audit: type=1400 audit(1747169854.855:31800): avc:  denied  { ioctl } for  pid=12706 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  589.069985][   T40] audit: type=1400 audit(1747169854.865:31801): avc:  denied  { read write } for  pid=12887 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  589.077565][   T40] audit: type=1400 audit(1747169854.865:31802): avc:  denied  { read write open } for  pid=12887 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  589.086203][T14735] syz.3.3086: attempt to access beyond end of device
[  589.086203][T14735] loop3: rw=0, sector=1, nr_sectors = 1 limit=0
[  589.092064][T14735] qnx4: unable to read the superblock
[  589.100141][   T40] audit: type=1400 audit(1747169854.865:31803): avc:  denied  { ioctl } for  pid=12887 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  589.108035][   T40] audit: type=1400 audit(1747169854.885:31804): avc:  denied  { read write } for  pid=13028 comm="syz-executor" name="loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  589.119946][    C1] batman_adv: batadv0: Local translation table size (56) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  589.129780][   T40] audit: type=1400 audit(1747169854.885:31805): avc:  denied  { read write open } for  pid=13028 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  589.137512][   T40] audit: type=1400 audit(1747169854.885:31806): avc:  denied  { ioctl } for  pid=13028 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  589.169881][   T40] audit: type=1400 audit(1747169854.915:31807): avc:  denied  { mounton } for  pid=14732 comm="syz.3.3086" path="/syzcgroup/unified/syz3" dev="cgroup2" ino=96 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  589.283043][T14745] fuse: Unknown parameter 'user_id00000000000000000000'
[  589.366277][T14750] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3095'.
[  589.394842][T14750] bond2 (unregistering): Released all slaves
[  589.396030][T14752] fuse: Bad value for 'user_id'
[  589.398271][T14752] fuse: Bad value for 'user_id'
[  589.520278][ T5282] Bluetooth: hci1: command 0x0c1a tx timeout
[  589.523358][   T10] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  589.525297][   T10] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[  589.648430][T14766] syzkaller0: entered promiscuous mode
[  589.650507][T14766] syzkaller0: entered allmulticast mode
[  589.760451][    C2] batman_adv: batadv0: Local translation table size (56) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:1b
[  590.226526][T14791] fuse: Bad value for 'user_id'
[  590.228316][T14791] fuse: Bad value for 'user_id'
[  590.401147][    C2] batman_adv: batadv0: Local translation table size (56) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:1c
[  591.217481][T14810] fuse: Bad value for 'fd'
[  591.522075][T14827] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3118'.
[  591.588383][T14830] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3121'.
[  591.594067][T14830] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3121'.
[  591.599778][ T5282] Bluetooth: hci0: command 0x0c1a tx timeout
[  591.601736][   T10] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  591.603670][   T10] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[  591.680199][    C1] batman_adv: batadv0: Local translation table size (80) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:1c
[  591.708859][T14834] netlink: 'syz.4.3123': attribute type 21 has an invalid length.
[  591.711505][T14834] netlink: 128 bytes leftover after parsing attributes in process `syz.4.3123'.
[  591.714881][T14834] netlink: 'syz.4.3123': attribute type 5 has an invalid length.
[  591.717452][T14834] netlink: 'syz.4.3123': attribute type 6 has an invalid length.
[  591.719991][T14834] netlink: 3 bytes leftover after parsing attributes in process `syz.4.3123'.
[  591.809013][T14834] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  591.857205][T14834] rtc_cmos 00:05: Alarms can be up to one day in the future
[  591.928322][T14842] fuse: Unknown parameter '0x0000000000000004'
[  591.997608][T14846] program syz.3.3129 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  592.377923][T14864] fuse: Bad value for 'fd'
[  592.587384][T14872] ------------[ cut here ]------------
[  592.589168][T14872] WARNING: CPU: 2 PID: 14872 at fs/overlayfs/xattrs.c:136 ovl_listxattr+0x371/0x4b0
[  592.592093][T14872] Modules linked in:
[  592.593877][T14872] CPU: 2 UID: 0 PID: 14872 Comm: syz.2.3139 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  592.599456][T14872] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  592.602784][T14872] RIP: 0010:ovl_listxattr+0x371/0x4b0
[  592.604550][T14872] Code: ff ff ff 49 83 ec 08 48 01 c5 48 29 c2 48 01 d3 48 8d 75 08 48 89 ef 4c 01 f2 48 01 dd e8 e7 7e e9 fe eb 43 e8 50 f9 83 fe 90 <0f> 0b 90 49 c7 c4 fb ff ff ff e8 40 f9 83 fe 4c 89 e0 48 83 c4 20
[  592.610592][T14872] RSP: 0018:ffffc9000c027dd0 EFLAGS: 00010287
[  592.612690][T14872] RAX: 00000000000094a6 RBX: 0000000000000012 RCX: ffffc900075f3000
[  592.615266][T14872] RDX: 0000000000080000 RSI: ffffffff83374cf0 RDI: 0000000000000006
[  592.617706][T14872] RBP: ffff888030b86000 R08: 0000000000000006 R09: 0000000000000012
[  592.620341][T14872] R10: 0000000000000011 R11: 0000000000000000 R12: 0000000000000011
[  592.622990][T14872] R13: ffff888056c96758 R14: 0000000000000011 R15: ffff888025594500
[  592.625566][T14872] FS:  00007fe1d50506c0(0000) GS:ffff8880d6bdf000(0000) knlGS:0000000000000000
[  592.628284][T14872] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  592.630346][T14872] CR2: 00007f30c25e0e9c CR3: 00000000279f6000 CR4: 0000000000352ef0
[  592.632786][T14872] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  592.635362][T14872] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  592.637791][T14872] Call Trace:
[  592.638859][T14872]  <TASK>
[  592.639795][T14872]  ? __pfx_ovl_listxattr+0x10/0x10
[  592.639975][T14879] fuse: Unknown parameter '0x0000000000000004'
[  592.641386][T14872]  vfs_listxattr+0xb7/0x140
[  592.641410][T14872]  listxattr+0x69/0x1a0
[  592.646168][T14872]  path_listxattrat+0x151/0x370
[  592.647698][T14872]  ? __pfx_path_listxattrat+0x10/0x10
[  592.649412][T14872]  do_syscall_64+0xcd/0x260
[  592.650829][T14872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.652646][T14872] RIP: 0033:0x7fe1d418e969
[  592.654049][T14872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  592.660131][T14872] RSP: 002b:00007fe1d5050038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c2
[  592.662768][T14872] RAX: ffffffffffffffda RBX: 00007fe1d43b6080 RCX: 00007fe1d418e969
[  592.665243][T14872] RDX: 00000000000000ce RSI: 0000200000000400 RDI: 0000200000000280
[  592.667739][T14872] RBP: 00007fe1d4210ab1 R08: 0000000000000000 R09: 0000000000000000
[  592.670236][T14872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  592.672671][T14872] R13: 0000000000000000 R14: 00007fe1d43b6080 R15: 00007ffd23f6a148
[  592.675170][T14872]  </TASK>
[  592.676182][T14872] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  592.678501][T14872] CPU: 2 UID: 0 PID: 14872 Comm: syz.2.3139 Not tainted 6.15.0-rc6-syzkaller-00051-g405e6c37c89e #0 PREEMPT(full) 
[  592.682138][T14872] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  592.685528][T14872] Call Trace:
[  592.686592][T14872]  <TASK>
[  592.687522][T14872]  dump_stack_lvl+0x3d/0x1f0
[  592.689007][T14872]  panic+0x71c/0x800
[  592.690290][T14872]  ? __pfx_panic+0x10/0x10
[  592.691717][T14872]  ? show_trace_log_lvl+0x29b/0x3e0
[  592.693353][T14872]  ? ovl_listxattr+0x371/0x4b0
[  592.694925][T14872]  check_panic_on_warn+0xab/0xb0
[  592.696453][T14872]  __warn+0xf6/0x3c0
[  592.697720][T14872]  ? ovl_listxattr+0x371/0x4b0
[  592.699234][T14872]  report_bug+0x3c3/0x580
[  592.700570][T14872]  ? ovl_listxattr+0x371/0x4b0
[  592.702048][T14872]  handle_bug+0x184/0x210
[  592.703411][T14872]  exc_invalid_op+0x17/0x50
[  592.704841][T14872]  asm_exc_invalid_op+0x1a/0x20
[  592.706401][T14872] RIP: 0010:ovl_listxattr+0x371/0x4b0
[  592.708037][T14872] Code: ff ff ff 49 83 ec 08 48 01 c5 48 29 c2 48 01 d3 48 8d 75 08 48 89 ef 4c 01 f2 48 01 dd e8 e7 7e e9 fe eb 43 e8 50 f9 83 fe 90 <0f> 0b 90 49 c7 c4 fb ff ff ff e8 40 f9 83 fe 4c 89 e0 48 83 c4 20
[  592.713941][T14872] RSP: 0018:ffffc9000c027dd0 EFLAGS: 00010287
[  592.715835][T14872] RAX: 00000000000094a6 RBX: 0000000000000012 RCX: ffffc900075f3000
[  592.718249][T14872] RDX: 0000000000080000 RSI: ffffffff83374cf0 RDI: 0000000000000006
[  592.720671][T14872] RBP: ffff888030b86000 R08: 0000000000000006 R09: 0000000000000012
[  592.723088][T14872] R10: 0000000000000011 R11: 0000000000000000 R12: 0000000000000011
[  592.725652][T14872] R13: ffff888056c96758 R14: 0000000000000011 R15: ffff888025594500
[  592.728096][T14872]  ? ovl_listxattr+0x370/0x4b0
[  592.729595][T14872]  ? __pfx_ovl_listxattr+0x10/0x10
[  592.731219][T14872]  vfs_listxattr+0xb7/0x140
[  592.732721][T14872]  listxattr+0x69/0x1a0
[  592.734030][T14872]  path_listxattrat+0x151/0x370
[  592.735635][T14872]  ? __pfx_path_listxattrat+0x10/0x10
[  592.737416][T14872]  do_syscall_64+0xcd/0x260
[  592.739143][T14872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.741027][T14872] RIP: 0033:0x7fe1d418e969
[  592.742434][T14872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  592.748591][T14872] RSP: 002b:00007fe1d5050038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c2
[  592.751223][T14872] RAX: ffffffffffffffda RBX: 00007fe1d43b6080 RCX: 00007fe1d418e969
[  592.753711][T14872] RDX: 00000000000000ce RSI: 0000200000000400 RDI: 0000200000000280
[  592.756121][T14872] RBP: 00007fe1d4210ab1 R08: 0000000000000000 R09: 0000000000000000
[  592.758643][T14872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  592.761096][T14872] R13: 0000000000000000 R14: 00007fe1d43b6080 R15: 00007ffd23f6a148
[  592.763693][T14872]  </TASK>
[  592.765368][T14872] Kernel Offset: disabled
[  592.766714][T14872] Rebooting in 86400 seconds..

VM DIAGNOSIS:
20:57:38  Registers:
info registers vcpu 0

CPU#0
RAX=fffffbfff3594e39 RBX=fffffbfff3594e3a RCX=ffffffff8484a350 RDX=0000000000000001
RSI=0000000000000004 RDI=ffffffff9aca71c8 RBP=fffffbfff3594e39 RSP=ffffc90005bc7700
R8 =0000000000000001 R9 =fffffbfff3594e39 R10=ffffffff9aca71cb R11=0000000000000000
R12=0000000000000001 R13=ffffffff9aca1c48 R14=0000000000000079 R15=0000000000000001
RIP=ffffffff8220bc04 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d69df000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f06c284ffe8 CR3=0000000043044000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 302e6f732e637369 6d5f6d617062696c
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00302e6f732e6373 696d5f6d61706269
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff0000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff0000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001da0 0000000000033260
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffff8880261a2f30 RCX=ffffc90005ee7934 RDX=0000000000000001
RSI=ffffffff9aca0ee0 RDI=ffff8880261a2f30 RBP=0000000000000000 RSP=ffffc90005ee78f0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffffffff9aca0ee0 R13=ffffc90005ee7934 R14=0000000000000001 R15=0000000000000001
RIP=ffffffff8b6cf460 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555576578500 ffffffff 00c00000
GS =0000 ffff8880d6adf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fd2b777d2d8 CR3=0000000038e6f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000041004040 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdf7657940 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2b7611a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2b7611a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2b7611a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2b7611aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2b7611b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2b7611c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c69614600646574 7563657845006574 7563657845006465 74746f687370616e
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5300796461655200 656b616873646e61 48006c616974696e 4900656c676e616d
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000003a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854f7a75 RDI=ffffffff9adf9560 RBP=ffffffff9adf9520 RSP=ffffc9000c027740
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=000000000000003a R14=ffffffff9adf9520 R15=ffffffff854f7a10
RIP=ffffffff854f7a9f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fe1d50506c0 ffffffff 00c00000
GS =0000 ffff8880d6bdf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f30c25e0e9c CR3=00000000279f6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000020100001 Opmask01=0000000000000054 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe1d504fbf0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe1d4211a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe1d4211a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe1d4211a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe1d4211aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe1d4211b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe1d4211c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a732520656c6261 7462650064656c69 61662029736e7465 6e28736e74657300
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1f56000540494744 514740004140494c 4443050c564b5140 4b0d564b51405600
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000002435e1 RBX=0000000000000003 RCX=ffffffff8b6d0419 RDX=0000000000000000
RSI=ffffffff8dbe285d RDI=ffffffff8bf48920 RBP=ffffed1003b53000 RSP=ffffc90000197df8
R8 =0000000000000001 R9 =ffffed100d4e65bd R10=ffff88806a732deb R11=0000000000000000
R12=0000000000000003 R13=ffff88801da98000 R14=ffffffff9084ff10 R15=0000000000000000
RIP=ffffffff8b6cecaf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6cdf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000001340 CR3=0000000048ebf000 CR4=00352ef0
DR0=0000000000000007 DR1=0000000000000002 DR2=0000000000000008 DR3=1000000100000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000040000400 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffebf3d6bf0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe2eb211a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe2eb211a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe2eb211a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe2eb211aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe2eb211b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe2eb211c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000