last executing test programs:

38.570504914s ago: executing program 0 (id=3667):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$smc(&(0x7f0000000280), r2)
getsockname$packet(r2, &(0x7f00000004c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00', @ANYRES16=r1, @ANYBLOB="09020000000000f2ff000100000008000600ac1414aa08000b00", @ANYRES32=r3, @ANYBLOB="08000800e000000106000a004e"], 0x34}, 0x1, 0x0, 0x0, 0x4008080}, 0x0)

38.570257869s ago: executing program 0 (id=3668):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000580)='k', 0x1, 0x1, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="ab", 0x1}], 0x1)
shutdown(r0, 0x1)

38.508656106s ago: executing program 0 (id=3669):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x3, &(0x7f0000004240)=0x40000006, 0x4)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000600)=ANY=[], 0x8)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4, &(0x7f0000000000)=0x7f, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x20000001, &(0x7f0000000300)={0xa, 0x4e20, 0x5, @mcast1}, 0x1c)

38.390209305s ago: executing program 0 (id=3670):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000000040)='t\xa3D)\xcb(/\x00\xd9\xf8x\xf2\x9dw$\xaeF\x03\x91\xbe\x13r\xcc\xd7\xec&\x9f\xd4U\x1e$\x93\x938\xaa\x1e\x92\x9fk\xef\xe1\xfe\x11\x89\xf1\x8fX\x8c\xb0l\xda\xd0\xc1#\x89\x97g\xe1\xd2\xdd\xa3lzM:\x17\x06\x1d<\xb2\x8e\xb2\xa1J(\\Q\xef\xfa\xff\xff\xff\xff\xff\xff\xffs\xa6\x98q\xba\x02\xbe\xd0\xa5D\x13]Uo\x84\x00')
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0xf00)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000300)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x8a002, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000080000000d"], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001400)={0x11, 0xc, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x10000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r4}, 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r5}, 0x10)
close(r6)
r7 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r2, r7, &(0x7f0000036000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r7, 0x4138ae84, &(0x7f00000001c0)={{0x80a0000, 0xeeef0000, 0xe, 0x8, 0x3, 0xd2, 0x4, 0x7, 0x0, 0x2e, 0x19, 0x9}, {0x1, 0x2, 0x8, 0x0, 0x40, 0x7, 0x7, 0x16, 0x4, 0x80, 0x3, 0x6}, {0x3000, 0xdddd0000, 0x8, 0x5, 0x1, 0x7, 0x0, 0x4, 0x1, 0xa7, 0x8, 0x81}, {0x6000, 0x100000, 0xd, 0xe6, 0x3, 0x2, 0x1, 0xf6, 0x8, 0x4, 0xe, 0xf1}, {0x4000, 0xd000, 0xe, 0x3, 0x5, 0x2, 0xab, 0x7f, 0x41, 0x83, 0xf7, 0x3}, {0x1000, 0xdddd1000, 0xc, 0xa0, 0xad, 0x8, 0x2, 0x80, 0x80, 0xf, 0x1, 0x7}, {0xffff1000, 0x1000, 0xc, 0x5, 0x0, 0x5, 0x1, 0x3, 0x5, 0x81, 0x3, 0x70}, {0x4, 0x4, 0xe, 0x5, 0xf, 0x7, 0x1, 0x37, 0x2, 0x8, 0xf0, 0x10}, {0x6000, 0x6d}, {0xdddd0000, 0x7}, 0x80000031, 0x0, 0xeeee8000, 0x100200, 0x6, 0x0, 0x3000, [0x2, 0x9, 0x5e, 0x3]})
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r8, 0x401c5820, &(0x7f0000000080)={0x8})
r9 = socket$isdn(0x22, 0x3, 0x23)
recvmsg(r9, &(0x7f0000001640)={&(0x7f0000000000)=@pppol2tp, 0x80, &(0x7f00000014c0)=[{&(0x7f0000000100)=""/56, 0x38}, {&(0x7f00000001c0)}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000000240)=""/153, 0x99}, {&(0x7f0000001340)=""/30, 0x1e}, {&(0x7f0000001380)=""/182, 0xb6}, {&(0x7f0000001440)=""/51, 0x33}, {&(0x7f0000001480)=""/52, 0x34}], 0x8, &(0x7f0000001540)=""/240, 0xf0}, 0x40010041)
r10 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0xc)
lseek(r10, 0x3, 0x1)

38.267738358s ago: executing program 0 (id=3673):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r3, @ANYBLOB="fe000000000000001c0012000c000100626f6e64000000000c0002000800010004"], 0x3c}}, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, 0x0, &(0x7f00000001c0))
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000007c0)=@newlink={0x50, 0x10, 0xf11, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x104}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x20, 0x20}}}}}}, @IFLA_MASTER={0x8}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

38.029993423s ago: executing program 0 (id=3676):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x88880, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x1, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)=@arm64={0x6, 0x4, 0x9, '\x00', 0x1})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000000c0)=0xffff) (fail_nth: 3)

37.994066663s ago: executing program 32 (id=3676):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x88880, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x1, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)=@arm64={0x6, 0x4, 0x9, '\x00', 0x1})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000000c0)=0xffff) (fail_nth: 3)

12.088237723s ago: executing program 1 (id=4076):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r2, 0x4018aee1, &(0x7f0000000080)=@attr_other={0x0, 0x0, 0x5, 0x0})

11.986370436s ago: executing program 1 (id=4078):
mkdir(&(0x7f00000003c0)='./file0\x00', 0x21)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @multicast, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "02080a", 0x8, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[@routing={0x29, 0x0, 0x0, 0xad}]}}}}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x18e)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000000)=0x8, 0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r1, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x3, 0x28, 0x64, 0x0, 0x7, 0x6, 0x0, @remote, @remote}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10, 0x6071, 0x0, 0xe7}}}}}}, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
r2 = open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
lseek(r2, 0x0, 0x3)

11.955133757s ago: executing program 1 (id=4079):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x5, @ipv4={'\x00', '\xff\xff', @empty}, 0x4}, 0x1c)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0xff}, 0x1c)
r1 = fcntl$dupfd(r0, 0x406, r0)
write$cgroup_pid(r1, &(0x7f0000000240), 0xfdef)

11.889457902s ago: executing program 1 (id=4080):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_GET_MSRS_sys(r0, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x0, 0x0, 0x8}]})
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r2, 0x4018aee1, &(0x7f0000000080)=@attr_other={0x0, 0x0, 0x5, 0x0})

11.816617276s ago: executing program 1 (id=4084):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000811}, 0x0) (async)
r0 = socket$netlink(0x10, 0x3, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000080)={0x8})
fstat(r1, &(0x7f0000000300)) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newtaction={0x1ec, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x1d8, 0x1, [@m_skbmod={0x54, 0x1, 0x0, 0x0, {{0xb}, {0x28, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24, 0x2, {{0xffffffff, 0x10001, 0xffffffffffffffff, 0x7, 0x3}, 0xa}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_skbmod={0xf8, 0x1, 0x0, 0x0, {{0xb}, {0x28, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24, 0x2, {{0x6, 0x2, 0x4, 0x8}, 0x7}}]}, {0xa5, 0x6, "196f7e486e61ebe6a3fa0d5a410dc499ffa07d9e41a9ab0b85a968f91977247a86cc31538f62e651c36f758f17c4ff9c8b1bd267a7a29b6938e0164368d1c25df12202ee90c8edd1717ef4a7791a03c57c4d87a68aaec46db32a65f7cc8595cbb1e2d72a96ae02e4ba9647d5c964f7b449694ef67eedb6ec8091cda786a0951398063e27cf20399108344f92eee80f02966e4bf4480b5602a642137e6b968ac816"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_simple={0x88, 0x18, 0x0, 0x0, {{0xb}, {0x10, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0xb, 0x3, 'skbmod\x00'}]}, {0x4e, 0x6, "c08f13fae7096779ffd47a724b8d52d370c6b42abb8265ecfd880dba18f9e9e35dc8038d1f53dfe60de1c9303b07418471751fc2f804d91cad2ba6835f1348c2042ebf7d0d62432a64b7"}, {0xc}, {0xc, 0x8, {0x4, 0x1}}}}]}]}, 0x1ec}, 0x1, 0x0, 0x0, 0x4}, 0x0) (async)
r2 = syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000000000000560000000000000066ba2100b066eeb9e00a00000f"], 0x56}) (async)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a64000000060a010400000000000000000a0004010900010073797a310000000038000480340001800b00010065787468647200002400028008000640000000030800074000000014050002048300000008000340000000eb0900020073797a32"], 0x8c}, 0x1, 0x0, 0x0, 0x4000015}, 0x24000000)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000380)={0x2, 0x102000, 0x1}) (async)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) (async)
ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000002340)={0x0, 0x0, @pic={0x7, 0x10, 0x4, 0x81, 0x0, 0xb, 0x7, 0x9, 0x5d, 0x1, 0x8, 0x40, 0x31, 0x1, 0x5, 0x4b}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_CREATE_PIT2(r5, 0x4040ae77, &(0x7f00000000c0)={0x3})
syz_kvm_setup_cpu$x86(r5, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000003c0)=[@text16={0x10, &(0x7f0000000440)="9a0010fc00b828018ec80f23386766c7442400ee835ee36766c7442402000000006766c744240600000000670f0114240f01708d640f350f1d70006254da0fc737baf80c66b87a87b48c66efbafc0ced", 0x50}], 0x1, 0x44, &(0x7f00000004c0), 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

11.570106778s ago: executing program 1 (id=4086):
clock_adjtime(0x4, &(0x7f0000000000)={0x3ff, 0x0, 0x0, 0xc, 0x400000000000000, 0x0, 0x9, 0x2, 0x0, 0x100, 0x800000000000000, 0x0, 0x9, 0x0, 0x0, 0xfffffffffffffffd, 0xe3, 0x18, 0x1000, 0x79, 0x2, 0x3, 0x0, 0x3})
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000000000000000000000000018"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.088960461s ago: executing program 2 (id=4175):
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x5dc}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

1.088587982s ago: executing program 2 (id=4176):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x842cc0, 0x0)
flock(r0, 0x5)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/locks\x00', 0x0, 0x0)
pread64(r1, &(0x7f00000000c0)=""/131, 0x83, 0x5)

1.030214992s ago: executing program 2 (id=4177):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x842cc0, 0x0)
flock(r0, 0x5)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/locks\x00', 0x0, 0x0)
pread64(r1, &(0x7f00000000c0)=""/131, 0x83, 0x5)
rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')

1.029950071s ago: executing program 2 (id=4178):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000400)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
listen(r0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r1, &(0x7f0000000080), 0x8)
listen(r1, 0x3f4174a8)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
preadv(r1, &(0x7f00000005c0)=[{&(0x7f00000000c0)=""/255, 0xff}, {&(0x7f0000000240)=""/75, 0x4b}, {&(0x7f00000002c0)=""/203, 0xcb}, {&(0x7f0000000040)=""/54, 0x36}, {&(0x7f0000000440)=""/236, 0xec}, {&(0x7f0000000540)=""/87, 0x57}], 0x6, 0x80000000, 0x2)
pipe2(&(0x7f0000000200)={0x0, <r2=>0x0}, 0x0)
pipe2(&(0x7f0000000000)={<r3=>0x0, <r4=>0x0}, 0x0)
tee(r3, r2, 0xff, 0x0)
vmsplice(r4, &(0x7f0000001700)=[{&(0x7f0000001340)="89", 0x1}], 0x1, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x18, 0xf, &(0x7f0000000d80)=ANY=[@ANYBLOB="18080000000000000093730fa90c06b98374872a", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000055090100000000009500000000000000bf9800000000000056080000ffffffff8500000007000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

957.749138ms ago: executing program 4 (id=4180):
r0 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback, 0x3}, 0x31)
sendmmsg$inet6(r0, &(0x7f0000002940), 0x40000000000017d, 0x811) (fail_nth: 3)

957.201467ms ago: executing program 2 (id=4181):
mkdir(&(0x7f0000000280)='./file0\x00', 0x51)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x4047b013, 0x0, 0x80}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003c58b3bd0000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20, 0x0, 0x2, {0x0, 0x1e}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents(r2, 0x0, 0x0)

909.219086ms ago: executing program 4 (id=4182):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f00020000000905050200de7e001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0x40025b0c, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000004c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd604dd30800180601fe8000000000000000000000000000aafe8000000000000000000000000000aa00034001", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="60025300691761a11b830f1d"], 0x0)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r3, 0x40085112, &(0x7f0000000180)=@e={0xff, 0x3, 0x0, 0x1, @generic=0x5, 0x2f, 0x2, 0x5})
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/rcu_expedited', 0x161b82, 0x0)
write$cgroup_int(r4, &(0x7f0000000040), 0x12)
ioctl$SOUND_MIXER_WRITE_VOLUME(r4, 0xc0044d00, &(0x7f0000000040)=0x2c)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)={0x14, r7, 0x301, 0x70bd29, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4008800}, 0x4000800)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl0\x00', &(0x7f00000000c0)={'ip6tnl0\x00', 0x0, 0x29, 0x8, 0x0, 0x9, 0xa, @private2={0xfc, 0x2, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x11}, 0x8, 0x80, 0x6, 0x7}})
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x144, r7, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x12c, 0x2, 0x0, 0x1, [{0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0x4}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x9}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x4}]}, @ETHTOOL_A_STRSET_HEADER={0x4}]}, 0x144}, 0x1, 0x0, 0x0, 0x4000}, 0x800)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000040)={0x0, 0x0, "e907f8f9951e76c13f64323723e7eecdf40c363423eb3d259266ec9c37865c6c1a4640ce1b22bb3327ef4f8a1d34c07c3260049e4f8d3ee0878ae95bc7f52363c468b257ffb3baf7aea4fb76dcfd54f11ed2c41d078b9cf1fc8f72566153c97e4af37017ea6b16b694bb4a6e4606c3fb19d1d2bd3c8c4e97da2213f9d5c3c4891f9150d685a7d7c27df0355808390666e827d61dcc3a633bb0b1250b5a293e3877adc1a1b44b99c93d57fd720a170e7f5670e419dc64febf7ddc73fd4a5a0b6c281e05c541471d8d2a58f5edac665f7f46c7084e17c809268103a2584ab40a68e528329d97afc3612e325c1eb4a3ab2e156a97444800", "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"})
madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x15)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0x1100})
r8 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
r9 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r9, 0xc0045006, &(0x7f0000001440)=0x9)
write$dsp(r8, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)

380.248126ms ago: executing program 3 (id=4184):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x3, 0x0, @empty}}, 0x0, 0x0, 0x3, 0x3, 0x8a}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
epoll_create(0x2)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000100)="98cabca5", 0x4)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x1, 0x8000, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @private0}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback}}, 0x0, 0x0, 0xfffffffc, 0x0, 0x54}, 0x9c)

380.024756ms ago: executing program 4 (id=4185):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x10, &(0x7f0000000100)=[@in={0x2, 0x4e24, @private=0xa010101}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000200)={0x1, [<r2=>0x0]}, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000140)={r2, 0x1}, 0x8)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x10, &(0x7f0000000100)=[@in={0x2, 0x4e24, @private=0xa010101}]}, &(0x7f0000000180)=0x10) (async)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000200)={0x1, [0x0]}, &(0x7f0000000080)=0x8) (async)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000140)={r2, 0x1}, 0x8) (async)

379.912989ms ago: executing program 3 (id=4186):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x6, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000500000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000004c0)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000180)={r0, r2, 0x25, 0x2, @val=@perf_event}, 0x18)
syz_emit_ethernet(0x36, &(0x7f0000003240)=ANY=[], 0x0)

299.531564ms ago: executing program 4 (id=4187):
mkdir(&(0x7f0000000280)='./file0\x00', 0x51)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x2)
r0 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder-control\x00', 0x800, 0x0)
ioctl$BINDER_CTL_ADD(r0, 0xc1086201, &(0x7f0000000300)={'binder1\x00'})
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000006380)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000004200)={0x50, 0x0, r2, {0x7, 0x1f, 0x5, 0x40000000, 0x0, 0x80, 0x0, 0xfffffffd}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003c58b3bd0000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20, 0x0, 0x2, {0x0, 0x1e}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents(r3, 0x0, 0x0)

294.342478ms ago: executing program 3 (id=4188):
syz_emit_ethernet(0x3a, &(0x7f0000000200)={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x17}, @val={@void, {0x8100, 0x5, 0x1, 0x1}}, {@ipv6={0x86dd, @generic={0x5, 0x6, "1cc341", 0x0, 0x16, 0x1, @mcast1, @remote}}}}, 0x0)
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x111001, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_open_dev$swradio(&(0x7f0000000080), 0x0, 0x2)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_emit_ethernet(0x86, &(0x7f0000000000)=ANY=[@ANYBLOB="e7842a3c00900180c200000086dd6012000800503a00fe8000000000000000000000000000bbfe8000000000000000000000000000600008100000110000000000000000000000ffff00000000fc020000000000001af8b375a22a584d16ca559b6f12"], 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000b40)={'wlan0\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r6 = syz_open_dev$radio(&(0x7f0000000100), 0x0, 0x2)
r7 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000240), 0x80, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000340)={'ip6gre0\x00', &(0x7f00000002c0)={'ip6_vti0\x00', <r8=>0x0, 0x29, 0x8, 0x6, 0x0, 0x0, @empty, @rand_addr=' \x01\x00', 0x8, 0x80, 0xd0000000, 0x80}})
sendmsg$nl_route_sched_retired(r7, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000c80)=@newtclass={0x540, 0x28, 0x300, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, r8, {0x9, 0x3}, {0xb, 0x4}, {0x9, 0x4}}, [@c_cbq={{0x8}, {0x408, 0x2, [@TCA_CBQ_RTAB={0x404, 0x6, [0x3, 0x9, 0x6, 0xffffffff, 0x727, 0x2, 0xc, 0x6, 0x8, 0xfff, 0x7, 0x7, 0x8, 0x9, 0x6, 0x1ff, 0x9, 0x2, 0x9, 0x0, 0x9adc, 0x3d, 0x9, 0x10000000, 0xfffffff1, 0x5, 0x1, 0x2, 0xd, 0x2, 0x81, 0x4, 0x3, 0x4, 0x2, 0xffff, 0x9, 0x1, 0x5, 0xfa, 0x3, 0x0, 0x9, 0x5, 0x8000, 0x3, 0xffff, 0xfffff800, 0x8, 0x77, 0x5, 0xb5, 0x6, 0x9000000, 0x48, 0xb96, 0x1, 0xe, 0x97, 0x80, 0x0, 0x7, 0x8, 0x1, 0x3, 0x8, 0x0, 0xf7b, 0x6, 0x6, 0x81, 0x5, 0xf9, 0x4, 0xfffffff7, 0xe, 0xff, 0x80000000, 0x83d, 0xc000, 0x6, 0x5, 0xf, 0xbdf2, 0xffff, 0xf0e, 0xa00, 0x6, 0x505, 0x19, 0x9, 0x7, 0xfff, 0x4, 0x8, 0x4, 0x4, 0xfffff001, 0x2, 0x5, 0xe, 0x6, 0x7, 0x7d, 0x1, 0xf, 0x0, 0x7, 0x98b, 0x5, 0x0, 0x100, 0x9, 0x5, 0xf502, 0x2, 0x0, 0x0, 0x80, 0x8, 0x8, 0x7, 0xe190, 0x1, 0x9, 0x6, 0x2, 0x9, 0x80, 0x2, 0x0, 0xec0, 0x40000, 0x0, 0x3, 0x6bcf6eba, 0x2, 0xe8, 0xffffffff, 0x100, 0x4e2, 0x7, 0xa7d, 0x6, 0x40, 0x401, 0x10, 0x1, 0x9, 0x2, 0x0, 0x200, 0x80000000, 0x4, 0x6, 0x9, 0x7cec741c, 0x3cf, 0x5e, 0x2, 0x101, 0x7, 0x8001, 0xfffffffc, 0x90b6, 0x0, 0x6532, 0x4, 0xb, 0x9, 0xc8a9, 0x7ff, 0x2, 0x5, 0x7, 0x8, 0xfffff48c, 0x5, 0x5, 0x5, 0x236, 0xfffffff8, 0x8000, 0x3160, 0x8, 0x5, 0xd0000000, 0x3, 0x8, 0x7, 0x9, 0xb, 0x3, 0x5, 0xfffffffa, 0xfffffff7, 0x6, 0xfffffff9, 0x7, 0x87, 0x5, 0xc, 0x8, 0x8, 0x9, 0x1, 0x3df, 0x6, 0x7, 0xede, 0x6, 0x80000000, 0xa, 0xfbcf, 0x96, 0x7fff, 0x7, 0x200, 0x7fffffff, 0x4, 0x4, 0xffff0001, 0x9, 0x101, 0x401, 0x8, 0x4, 0x2, 0x4841, 0x80000001, 0x0, 0x7, 0x9, 0x8000, 0x8, 0x8, 0x4, 0x7f, 0x487f, 0x1, 0x4, 0xfff, 0x8, 0x4, 0xb, 0x80000000, 0x5, 0x7f, 0x2b000, 0x800, 0x100, 0xd5f, 0x542a95eb, 0x7, 0x6]}]}}, @c_dsmark={{0xb}, {0xc, 0x2, @TCA_DSMARK_VALUE={0x5, 0x5, 0x9}}}, @c_dsmark={{0xb}, {0xc, 0x2, @TCA_DSMARK_MASK={0x5, 0x4, 0x6}}}, @c_dsmark={{0xb}, {0xc, 0x2, @TCA_DSMARK_VALUE={0x5, 0x5, 0x6}}}, @c_dsmark={{0xb}, {0xc, 0x2, @TCA_DSMARK_VALUE={0x5, 0x5, 0x9}}}, @c_cbq={{0x8}, {0x74, 0x2, [@TCA_CBQ_WRROPT={0x10, 0x2, {0x5, 0x2, 0x8, 0xb, 0x7, 0x6f}}, @TCA_CBQ_LSSOPT={0x18, 0x1, {0x1a, 0x1, 0x15, 0x8, 0x2, 0x1, 0x5}}, @TCA_CBQ_LSSOPT={0x18, 0x1, {0x10, 0x1, 0x1b, 0x7, 0x2, 0xfffffffd, 0x1, 0x4}}, @TCA_CBQ_WRROPT={0x10, 0x2, {0x6, 0xc4, 0x2, 0x2, 0x3, 0x6}}, @TCA_CBQ_WRROPT={0x10, 0x2, {0x4, 0x7, 0x91, 0x0, 0x10, 0xb9d2}}, @TCA_CBQ_RATE={0x10, 0x5, {0xe0, 0x2, 0x6, 0x5, 0x6, 0x3}}]}}, @c_dsmark={{0xb}, {0xc, 0x2, @TCA_DSMARK_MASK={0x5, 0x4, 0x2}}}, @c_dsmark={{0xb}, {0xc, 0x2, @TCA_DSMARK_MASK={0x5, 0x4, 0x3}}}]}, 0x540}, 0x1, 0x0, 0x0, 0x800}, 0x40)
ioctl$VIDIOC_G_TUNER(r6, 0xc054561d, &(0x7f0000000800)={0x0, "ac6d79e4902980361830f64d6a21f3dd62cb20b11a61cc4fa2800b1a57a5ff55", 0x4, 0x4, 0x80, 0x1000, 0x10, 0x0, 0xce3, 0x10})
sendmsg$NL80211_CMD_SET_STATION(r3, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010029bd7000fcdbdf251200000008000300", @ANYRES32=r4, @ANYBLOB="0a00060008021100000100000600bd00ff0000003bdb020634efb5c79580721600026a58fa60f6ffd2dcba76ffe1af0aa89a92c77d6880f021f2875c0011b3d8c1e4f7b4127887b2b01c40cb68ee0694d042ef91ecb811f35c09b1321f854660e12967b8c559fc26337b58b1a2108436ca49070ed3bfec0adfc2a1d7387e16758c724e3afed625e1ffe482e512682ad0fee2414f97979f1d5e3f610a70bf753b9a51d5a9e9cd170534d04ed4b90df071f17de2834216c4448fe4306f2ecea8211861ff3d6ec4335438e1380bb7ecdfbd9d59415b65563fe2e1793432c62ca104bc5a7b1c1f182c66c87a6f0cd40e578ae4f86d9467bd38b88c5fdc7646438dc8a84b1e575c92cded5782aff772b9e1aef7"], 0x30}, 0x1, 0x0, 0x0, 0x400c0}, 0x8844)
r9 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0x4, 0x0)
openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r10 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r10, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc)
setsockopt$inet_msfilter(r10, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e0000001ac1414aa0000000002000000ac1414aa"], 0x18)
r11 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r11, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
connect$inet(r11, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10)
r12 = syz_pidfd_open(r9, 0x0)
pidfd_send_signal(r12, 0x2, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

169.598642ms ago: executing program 4 (id=4189):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000840)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=@bridge_delvlan={0x18, 0x70, 0x1, 0x70bd2b, 0x2, {0x7, 0x0, 0x0, r3}}, 0x18}, 0x1, 0x0, 0x0, 0x24040005}, 0x8000)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f00000006c0)={0xc, {{0x2, 0x4e23, @private=0xa010102}}, {{0x2, 0x0, @local}}}, 0x108)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xf}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x6, 0x3, 0x2, 0x1, 0x6}, 0x6, 0x0, 0xa, 0x4, 0x6, 0x8, 0x18, 0x9, 0x3, 0x4, {0x0, 0x2, 0x9, 0x800, 0x8704, 0x27000000}}}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001300)=@newtfilter={0x74, 0x2c, 0xd2b, 0x800, 0x25dfdbfb, {0x0, 0x0, 0x0, r7, {0x9}, {}, {0x7, 0xb}}, [@filter_kind_options=@f_u32={{0x8}, {0x48, 0x2, [@TCA_U32_SEL={0x44, 0x5, {0xe, 0x1, 0x3, 0x1, 0x4, 0x401, 0xe, 0xfffffffa, [{0x200, 0x500, 0x3, 0xe}, {0x6783, 0x2, 0x8001, 0x10}, {0x40000, 0x53, 0xa9, 0x3}]}}]}}]}, 0x74}}, 0x24044094)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

169.321262ms ago: executing program 3 (id=4190):
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="14000000000019da2cc7be"], 0x18}}], 0x1, 0x40084)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x13, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x49}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmsg$sock(r0, &(0x7f0000000640)={&(0x7f00000002c0)=@rc={0x1f, @none, 0x4}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000340)}, {&(0x7f0000000540)="03b9d4a4e56a110b5824bcccb70a3af712dd38252f73a06900f33bdcbf1a8f803790af851588482ae4ef7a61d5ef84ece1921ce1099b56b9c6ff1e2a3a6b0453f284e85be32666e8786a2a87fb9dc5db109e323d09bf240fabddfee5887ff64f710fee", 0x63}, {&(0x7f00000007c0)="a46c19f56c4f8a21e8068c6321387f24cd64e0033d354a3ad77b959b6c9ec188b030e82549fd347d6f75b4f6367b391d3b4f4e793639cec69bd182a1bce37cb7e65f2a6054c10433a515bad93b2c8c77304a068535e722206ba8e6aa6fafb5f4dad1379af983edb195bd25b112a6a2dd73a551ee40d3c38b19d9f5be464435eaef871c46ab6c85f58e91ec5d2e330b61e429ae434a72fdb365", 0x99}], 0x3}, 0x1)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e", 0xc2}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

119.726025ms ago: executing program 4 (id=4191):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x9, "2313"}, @global=@item_012={0x2, 0x1, 0x0, "e53f"}, @local=@item_4={0x3, 0x2, 0x0, "53743ff6"}, @local=@item_012={0x2, 0x2, 0x2, "9000"}, @global=@item_4={0x3, 0x1, 0x0, "0900be00"}, @main=@item_4={0x3, 0x0, 0x8}, @global=@item_4={0x3, 0x1, 0x5, "a90da1f6"}, @local=@item_4={0x3, 0x2, 0x0, "00000400"}]}}, 0x0}, 0x0)
r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0xa0000)
ioctl$EVIOCGKEYCODE_V2(r1, 0x80284504, &(0x7f0000000100)=""/101)

119.449013ms ago: executing program 3 (id=4192):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000006180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x90, 0x0, 0x0, {0xf7ffffffffffffff, 0x2, 0xfffffffffffffffe, 0x0, 0x0, 0x0, {0x40, 0x3, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x120, 0x6000, 0x0, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x14c0348, 0x0, 0x2, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x3)
ioctl$TIOCGPTPEER(r2, 0x90000915, 0x7) (fail_nth: 3)

106.470712ms ago: executing program 2 (id=4193):
unshare(0x66020280) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1)
ioctl$TCSETS(r0, 0x89f0, &(0x7f00000000c0)={0x8, 0x0, 0x0, 0x7ff, 0x0, "5dee000000594000"}) (async)
socket$inet6(0xa, 0x2, 0x3a)

0s ago: executing program 3 (id=4194):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f00020000000905050200de7e001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0x40025b0c, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000004c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd604dd30800180601fe8000000000000000000000000000aafe8000000000000000000000000000aa00034001", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="60025300691761a11b830f1d"], 0x0)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r3, 0x40085112, &(0x7f0000000180)=@e={0xff, 0x3, 0x0, 0x1, @generic=0x5, 0x2f, 0x2, 0x5})
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/rcu_expedited', 0x161b82, 0x0)
write$cgroup_int(r4, &(0x7f0000000040), 0x12)
ioctl$SOUND_MIXER_WRITE_VOLUME(r4, 0xc0044d00, &(0x7f0000000040)=0x2c)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)={0x14, r7, 0x301, 0x70bd29, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4008800}, 0x4000800)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl0\x00', &(0x7f00000000c0)={'ip6tnl0\x00', 0x0, 0x29, 0x8, 0x0, 0x9, 0xa, @private2={0xfc, 0x2, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x11}, 0x8, 0x80, 0x6, 0x7}})
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x144, r7, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x12c, 0x2, 0x0, 0x1, [{0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0x4}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x9}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x4}]}, @ETHTOOL_A_STRSET_HEADER={0x4}]}, 0x144}, 0x1, 0x0, 0x0, 0x4000}, 0x800)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000040)={0x0, 0x0, "e907f8f9951e76c13f64323723e7eecdf40c363423eb3d259266ec9c37865c6c1a4640ce1b22bb3327ef4f8a1d34c07c3260049e4f8d3ee0878ae95bc7f52363c468b257ffb3baf7aea4fb76dcfd54f11ed2c41d078b9cf1fc8f72566153c97e4af37017ea6b16b694bb4a6e4606c3fb19d1d2bd3c8c4e97da2213f9d5c3c4891f9150d685a7d7c27df0355808390666e827d61dcc3a633bb0b1250b5a293e3877adc1a1b44b99c93d57fd720a170e7f5670e419dc64febf7ddc73fd4a5a0b6c281e05c541471d8d2a58f5edac665f7f46c7084e17c809268103a2584ab40a68e528329d97afc3612e325c1eb4a3ab2e156a97444800", "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"})
madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x15)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0x1100})
r8 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
r9 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r9, 0xc0045006, &(0x7f0000001440)=0x9)
write$dsp(r8, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)

kernel console output (not intermixed with test programs):

: entered promiscuous mode
[  343.281923][T15672] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  343.285471][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  343.366173][T15679] netlink: 'syz.1.3775': attribute type 1 has an invalid length.
[  343.375455][   T53] usb 7-1: USB disconnect, device number 91
[  343.406139][ T5982] Bluetooth: hci1: command tx timeout
[  343.414157][T15684] FAULT_INJECTION: forcing a failure.
[  343.414157][T15684] name failslab, interval 1, probability 0, space 0, times 0
[  343.418573][T15684] CPU: 3 UID: 0 PID: 15684 Comm: syz.2.3778 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  343.418590][T15684] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  343.418597][T15684] Call Trace:
[  343.418602][T15684]  <TASK>
[  343.418607][T15684]  dump_stack_lvl+0x16c/0x1f0
[  343.418644][T15684]  should_fail_ex+0x512/0x640
[  343.418659][T15684]  ? fs_reclaim_acquire+0xae/0x150
[  343.418675][T15684]  ? tomoyo_encode2+0x100/0x3e0
[  343.418688][T15684]  should_failslab+0xc2/0x120
[  343.418701][T15684]  __kmalloc_noprof+0xd2/0x510
[  343.418712][T15684]  ? d_absolute_path+0x136/0x1a0
[  343.418730][T15684]  tomoyo_encode2+0x100/0x3e0
[  343.418745][T15684]  tomoyo_encode+0x29/0x50
[  343.418759][T15684]  tomoyo_realpath_from_path+0x18f/0x6e0
[  343.418776][T15684]  tomoyo_path_number_perm+0x245/0x580
[  343.418788][T15684]  ? tomoyo_path_number_perm+0x237/0x580
[  343.418801][T15684]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  343.418813][T15684]  ? find_held_lock+0x2b/0x80
[  343.418839][T15684]  ? find_held_lock+0x2b/0x80
[  343.418852][T15684]  ? hook_file_ioctl_common+0x145/0x410
[  343.418872][T15684]  ? __fget_files+0x20e/0x3c0
[  343.418886][T15684]  security_file_ioctl+0x9b/0x240
[  343.418901][T15684]  __x64_sys_ioctl+0xb7/0x210
[  343.418918][T15684]  do_syscall_64+0xcd/0x4c0
[  343.418936][T15684]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.418947][T15684] RIP: 0033:0x7fea7638ebe9
[  343.418957][T15684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.418967][T15684] RSP: 002b:00007fea77179038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  343.418977][T15684] RAX: ffffffffffffffda RBX: 00007fea765b5fa0 RCX: 00007fea7638ebe9
[  343.419007][T15684] RDX: 0000200000000180 RSI: 0000000000004610 RDI: 0000000000000003
[  343.419018][T15684] RBP: 00007fea77179090 R08: 0000000000000000 R09: 0000000000000000
[  343.419025][T15684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  343.419031][T15684] R13: 00007fea765b6038 R14: 00007fea765b5fa0 R15: 00007ffdf8eded48
[  343.419045][T15684]  </TASK>
[  343.419057][T15684] ERROR: Out of memory at tomoyo_realpath_from_path.
[  343.499467][T15692] netlink: 'syz.3.3781': attribute type 1 has an invalid length.
[  343.540609][T15692] veth21: entered promiscuous mode
[  343.575838][T15706] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3785'.
[  343.691202][T15715] netlink: 'syz.1.3789': attribute type 1 has an invalid length.
[  343.815262][   T53] usb 7-1: new high-speed USB device number 92 using dummy_hcd
[  343.842893][T15722] FAULT_INJECTION: forcing a failure.
[  343.842893][T15722] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  343.848494][T15722] CPU: 2 UID: 0 PID: 15722 Comm: syz.1.3790 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  343.848510][T15722] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  343.848518][T15722] Call Trace:
[  343.848523][T15722]  <TASK>
[  343.848527][T15722]  dump_stack_lvl+0x16c/0x1f0
[  343.848548][T15722]  should_fail_ex+0x512/0x640
[  343.848560][T15722]  _copy_to_iter+0x29f/0x16f0
[  343.848574][T15722]  ? find_held_lock+0x2b/0x80
[  343.848589][T15722]  ? __pfx__copy_to_iter+0x10/0x10
[  343.848600][T15722]  ? _raw_spin_unlock_irq+0x23/0x50
[  343.848628][T15722]  ? lockdep_hardirqs_on+0x7c/0x110
[  343.848644][T15722]  ? _raw_spin_unlock_irq+0x2e/0x50
[  343.848658][T15722]  ? traverse.part.0.constprop.0+0x2c5/0x640
[  343.848675][T15722]  seq_read_iter+0x719/0x12c0
[  343.848691][T15722]  proc_reg_read_iter+0x21d/0x310
[  343.848708][T15722]  vfs_read+0x8bc/0xc60
[  343.848722][T15722]  ? __pfx_vfs_read+0x10/0x10
[  343.848732][T15722]  ? find_held_lock+0x2b/0x80
[  343.848753][T15722]  __x64_sys_pread64+0x1eb/0x250
[  343.848766][T15722]  ? __pfx___x64_sys_pread64+0x10/0x10
[  343.848781][T15722]  do_syscall_64+0xcd/0x4c0
[  343.848792][T15722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.848803][T15722] RIP: 0033:0x7fac31f8ebe9
[  343.848813][T15722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.848823][T15722] RSP: 002b:00007fac32e3c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  343.848833][T15722] RAX: ffffffffffffffda RBX: 00007fac321b6180 RCX: 00007fac31f8ebe9
[  343.848840][T15722] RDX: 00000000000000d1 RSI: 00002000000024c0 RDI: 0000000000000005
[  343.848847][T15722] RBP: 00007fac32e3c090 R08: 0000000000000000 R09: 0000000000000000
[  343.848853][T15722] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[  343.848859][T15722] R13: 00007fac321b6218 R14: 00007fac321b6180 R15: 00007ffd0984d048
[  343.848873][T15722]  </TASK>
[  344.015278][   T53] usb 7-1: Using ep0 maxpacket: 16
[  344.021327][   T53] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  344.024621][   T53] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  344.030689][   T53] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  344.033527][   T53] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.037529][   T53] usb 7-1: config 0 descriptor??
[  344.042457][   T53] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  344.365331][   T53] usb 9-1: new full-speed USB device number 2 using dummy_hcd
[  344.537568][   T53] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  344.541112][   T53] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  344.544437][   T53] usb 9-1: New USB device found, idVendor=056a, idProduct=00d3, bcdDevice= 0.00
[  344.548329][   T53] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.552146][   T53] usb 9-1: config 0 descriptor??
[  344.554563][T15731] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  344.771287][   T53] usbhid 9-1:0.0: can't add hid device: -71
[  344.773333][   T53] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  344.778922][   T53] usb 9-1: USB disconnect, device number 2
[  344.892687][T15770] kvm: kvm [15769]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xa00000000
[  344.909091][T15770] kvm: kvm [15769]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x250000f7ff
[  344.913513][T15770] kvm: kvm [15769]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x250000ffff
[  344.978996][T15770] kvm: kvm [15769]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x250000ffff
[  344.983511][T15770] kvm: kvm [15769]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x250000f7ff
[  344.992606][T15770] kvm: kvm [15769]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x250000ffff
[  345.000988][T15770] kvm_intel: kvm [15769]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x250000f7ff
[  345.323486][T15777] 9p: Unknown Cache mode or invalid value r:
[  345.485751][ T5982] Bluetooth: hci1: command tx timeout
[  345.830127][T15795] FAULT_INJECTION: forcing a failure.
[  345.830127][T15795] name failslab, interval 1, probability 0, space 0, times 0
[  345.836054][T15795] CPU: 3 UID: 0 PID: 15795 Comm: syz.4.3803 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  345.836076][T15795] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  345.836088][T15795] Call Trace:
[  345.836097][T15795]  <TASK>
[  345.836104][T15795]  dump_stack_lvl+0x16c/0x1f0
[  345.836156][T15795]  should_fail_ex+0x512/0x640
[  345.836175][T15795]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  345.836195][T15795]  should_failslab+0xc2/0x120
[  345.836218][T15795]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  345.836241][T15795]  ? __alloc_skb+0x2b2/0x380
[  345.836269][T15795]  __alloc_skb+0x2b2/0x380
[  345.836293][T15795]  ? __pfx___alloc_skb+0x10/0x10
[  345.836319][T15795]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  345.836350][T15795]  netlink_alloc_large_skb+0x69/0x130
[  345.836378][T15795]  netlink_sendmsg+0x6a1/0xdd0
[  345.836400][T15795]  ? __pfx_netlink_sendmsg+0x10/0x10
[  345.836425][T15795]  ____sys_sendmsg+0xa95/0xc70
[  345.836446][T15795]  ? copy_msghdr_from_user+0x10a/0x160
[  345.836471][T15795]  ? __pfx_____sys_sendmsg+0x10/0x10
[  345.836501][T15795]  ___sys_sendmsg+0x134/0x1d0
[  345.836527][T15795]  ? __pfx____sys_sendmsg+0x10/0x10
[  345.836571][T15795]  ? __mutex_unlock_slowpath+0x100/0x800
[  345.836615][T15795]  __sys_sendmsg+0x16d/0x220
[  345.836641][T15795]  ? __pfx___sys_sendmsg+0x10/0x10
[  345.836683][T15795]  do_syscall_64+0xcd/0x4c0
[  345.836702][T15795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.836722][T15795] RIP: 0033:0x7fa5efd8ebe9
[  345.836737][T15795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  345.836754][T15795] RSP: 002b:00007fa5f0c2e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  345.836773][T15795] RAX: ffffffffffffffda RBX: 00007fa5effb5fa0 RCX: 00007fa5efd8ebe9
[  345.836784][T15795] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  345.836796][T15795] RBP: 00007fa5f0c2e090 R08: 0000000000000000 R09: 0000000000000000
[  345.836807][T15795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  345.836818][T15795] R13: 00007fa5effb6038 R14: 00007fa5effb5fa0 R15: 00007ffd77d330a8
[  345.836842][T15795]  </TASK>
[  345.929032][    C3] vkms_vblank_simulate: vblank timer overrun
[  346.050431][T15806] netlink: 'syz.4.3807': attribute type 1 has an invalid length.
[  346.080028][T15808] netlink: 'syz.4.3808': attribute type 1 has an invalid length.
[  346.098207][T15808] veth3: entered promiscuous mode
[  346.139060][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  346.139071][   T40] audit: type=1400 audit(1754712356.541:578): avc:  denied  { read } for  pid=15809 comm="syz.4.3809" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  346.286016][ T6054] net_ratelimit: 3 callbacks suppressed
[  346.286029][ T6054] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  346.380327][T15813] FAULT_INJECTION: forcing a failure.
[  346.380327][T15813] name failslab, interval 1, probability 0, space 0, times 0
[  346.384363][T15813] CPU: 3 UID: 0 PID: 15813 Comm: syz.3.3810 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  346.384378][T15813] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  346.384384][T15813] Call Trace:
[  346.384392][T15813]  <TASK>
[  346.384397][T15813]  dump_stack_lvl+0x16c/0x1f0
[  346.384440][T15813]  should_fail_ex+0x512/0x640
[  346.384460][T15813]  ? fs_reclaim_acquire+0xae/0x150
[  346.384478][T15813]  ? tomoyo_encode2+0x100/0x3e0
[  346.384492][T15813]  should_failslab+0xc2/0x120
[  346.384504][T15813]  __kmalloc_noprof+0xd2/0x510
[  346.384522][T15813]  tomoyo_encode2+0x100/0x3e0
[  346.384544][T15813]  tomoyo_encode+0x29/0x50
[  346.384562][T15813]  tomoyo_realpath_from_path+0x18f/0x6e0
[  346.384585][T15813]  ? tomoyo_profile+0x47/0x60
[  346.384610][T15813]  tomoyo_path_number_perm+0x245/0x580
[  346.384626][T15813]  ? tomoyo_path_number_perm+0x237/0x580
[  346.384643][T15813]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  346.384656][T15813]  ? find_held_lock+0x2b/0x80
[  346.384696][T15813]  ? find_held_lock+0x2b/0x80
[  346.384714][T15813]  ? hook_file_ioctl_common+0x145/0x410
[  346.384742][T15813]  ? __fget_files+0x20e/0x3c0
[  346.384757][T15813]  security_file_ioctl+0x9b/0x240
[  346.384772][T15813]  __x64_sys_ioctl+0xb7/0x210
[  346.384789][T15813]  do_syscall_64+0xcd/0x4c0
[  346.384807][T15813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.384818][T15813] RIP: 0033:0x7fcc78f8ebe9
[  346.384828][T15813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  346.384843][T15813] RSP: 002b:00007fcc79e46038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  346.384866][T15813] RAX: ffffffffffffffda RBX: 00007fcc791b5fa0 RCX: 00007fcc78f8ebe9
[  346.384877][T15813] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  346.384887][T15813] RBP: 00007fcc79e46090 R08: 0000000000000000 R09: 0000000000000000
[  346.384897][T15813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  346.384906][T15813] R13: 00007fcc791b6038 R14: 00007fcc791b5fa0 R15: 00007ffc36f3cf68
[  346.384919][T15813]  </TASK>
[  346.384932][T15813] ERROR: Out of memory at tomoyo_realpath_from_path.
[  346.569291][   T61] usb 7-1: USB disconnect, device number 92
[  346.675571][T15824] kvm: pic: non byte write
[  347.050092][T15848] netlink: 'syz.4.3821': attribute type 1 has an invalid length.
[  347.175215][   T10] usb 8-1: new high-speed USB device number 81 using dummy_hcd
[  347.325133][   T10] usb 8-1: Using ep0 maxpacket: 16
[  347.327970][   T10] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  347.331093][   T10] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  347.335192][   T10] usb 8-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  347.338490][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  347.342337][   T10] usb 8-1: config 0 descriptor??
[  347.345154][ T6054] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  347.356413][   T10] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  347.555660][T15860] netlink: 'syz.2.3823': attribute type 1 has an invalid length.
[  347.630571][T15868] FAULT_INJECTION: forcing a failure.
[  347.630571][T15868] name failslab, interval 1, probability 0, space 0, times 0
[  347.635039][T15868] CPU: 1 UID: 0 PID: 15868 Comm: syz.1.3826 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  347.635067][T15868] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  347.635074][T15868] Call Trace:
[  347.635079][T15868]  <TASK>
[  347.635084][T15868]  dump_stack_lvl+0x16c/0x1f0
[  347.635122][T15868]  should_fail_ex+0x512/0x640
[  347.635141][T15868]  ? fs_reclaim_acquire+0xae/0x150
[  347.635156][T15868]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  347.635171][T15868]  should_failslab+0xc2/0x120
[  347.635184][T15868]  __kmalloc_noprof+0xd2/0x510
[  347.635199][T15868]  tomoyo_realpath_from_path+0xc2/0x6e0
[  347.635214][T15868]  ? tomoyo_profile+0x47/0x60
[  347.635231][T15868]  tomoyo_path_number_perm+0x245/0x580
[  347.635243][T15868]  ? tomoyo_path_number_perm+0x237/0x580
[  347.635256][T15868]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  347.635269][T15868]  ? find_held_lock+0x2b/0x80
[  347.635295][T15868]  ? find_held_lock+0x2b/0x80
[  347.635307][T15868]  ? hook_file_ioctl_common+0x145/0x410
[  347.635326][T15868]  ? __fget_files+0x20e/0x3c0
[  347.635341][T15868]  security_file_ioctl+0x9b/0x240
[  347.635356][T15868]  __x64_sys_ioctl+0xb7/0x210
[  347.635373][T15868]  do_syscall_64+0xcd/0x4c0
[  347.635391][T15868]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.635402][T15868] RIP: 0033:0x7fac31f8ebe9
[  347.635412][T15868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  347.635422][T15868] RSP: 002b:00007fac32e7e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  347.635433][T15868] RAX: ffffffffffffffda RBX: 00007fac321b5fa0 RCX: 00007fac31f8ebe9
[  347.635440][T15868] RDX: 00002000000001c0 RSI: 000000004008af00 RDI: 0000000000000003
[  347.635447][T15868] RBP: 00007fac32e7e090 R08: 0000000000000000 R09: 0000000000000000
[  347.635453][T15868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  347.635459][T15868] R13: 00007fac321b6038 R14: 00007fac321b5fa0 R15: 00007ffd0984d048
[  347.635473][T15868]  </TASK>
[  347.698058][    C1] hpet: Lost 3 RTC interrupts
[  347.707632][T15868] ERROR: Out of memory at tomoyo_realpath_from_path.
[  347.759570][T15881] comedi comedi2: comedi_config --init_data is deprecated
[  347.791160][T15890] netlink: 'syz.2.3832': attribute type 1 has an invalid length.
[  347.803354][   T40] audit: type=1804 audit(1754712358.201:579): pid=15893 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.3833" name="/newroot/31/file0" dev="tmpfs" ino=188 res=1 errno=0
[  347.810890][   T40] audit: type=1800 audit(1754712358.201:580): pid=15893 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.3833" name="file0" dev="tmpfs" ino=188 res=0 errno=0
[  347.834614][   T40] audit: type=1400 audit(1754712358.231:581): avc:  denied  { accept } for  pid=15895 comm="syz.4.3834" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  347.876596][T15899] tmpfs: Bad value for 'mpol'
[  348.145347][   T61] usb 6-1: new high-speed USB device number 80 using dummy_hcd
[  348.285973][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  348.295176][   T61] usb 6-1: Using ep0 maxpacket: 8
[  348.298222][   T61] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  348.301782][   T61] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  348.304989][   T61] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  348.308270][   T61] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  348.312291][   T61] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  348.315168][   T61] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.365369][ T6054] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  348.524201][   T61] usb 6-1: GET_CAPABILITIES returned 0
[  348.526207][   T61] usbtmc 6-1:16.0: can't read capabilities
[  348.786469][T15914] overlayfs: failed to resolve './file2': -2
[  348.797211][   T40] audit: type=1400 audit(1754712359.201:582): avc:  denied  { add_name } for  pid=15913 comm="syz.4.3841" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  348.804057][   T40] audit: type=1400 audit(1754712359.201:583): avc:  denied  { create } for  pid=15913 comm="syz.4.3841" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  348.810655][   T40] audit: type=1400 audit(1754712359.201:584): avc:  denied  { associate } for  pid=15913 comm="syz.4.3841" name="file1" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  348.818521][   T40] audit: type=1400 audit(1754712359.201:585): avc:  denied  { read write } for  pid=15913 comm="syz.4.3841" name="file1" dev="9p" ino=35913841 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  348.825981][   T40] audit: type=1400 audit(1754712359.201:586): avc:  denied  { open } for  pid=15913 comm="syz.4.3841" path="/34/file0/file1" dev="9p" ino=35913841 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  348.828131][T15926] FAULT_INJECTION: forcing a failure.
[  348.828131][T15926] name failslab, interval 1, probability 0, space 0, times 0
[  348.838852][T15926] CPU: 2 UID: 0 PID: 15926 Comm: syz.2.3844 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  348.838877][T15926] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  348.838888][T15926] Call Trace:
[  348.838895][T15926]  <TASK>
[  348.838902][T15926]  dump_stack_lvl+0x16c/0x1f0
[  348.838933][T15926]  should_fail_ex+0x512/0x640
[  348.838979][T15926]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  348.839002][T15926]  should_failslab+0xc2/0x120
[  348.839023][T15926]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  348.839042][T15926]  ? __alloc_skb+0x2b2/0x380
[  348.839068][T15926]  ? avc_has_perm+0x144/0x1f0
[  348.839096][T15926]  __alloc_skb+0x2b2/0x380
[  348.839120][T15926]  ? __pfx___alloc_skb+0x10/0x10
[  348.839142][T15926]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[  348.839163][T15926]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  348.839190][T15926]  netlink_alloc_large_skb+0x69/0x130
[  348.839219][T15926]  netlink_sendmsg+0x6a1/0xdd0
[  348.839240][T15926]  ? __pfx_netlink_sendmsg+0x10/0x10
[  348.839266][T15926]  ____sys_sendmsg+0xa95/0xc70
[  348.839287][T15926]  ? copy_msghdr_from_user+0x10a/0x160
[  348.839312][T15926]  ? __pfx_____sys_sendmsg+0x10/0x10
[  348.839343][T15926]  ___sys_sendmsg+0x134/0x1d0
[  348.839370][T15926]  ? __pfx____sys_sendmsg+0x10/0x10
[  348.839417][T15926]  ? __mutex_unlock_slowpath+0x100/0x800
[  348.839460][T15926]  __sys_sendmsg+0x16d/0x220
[  348.839486][T15926]  ? __pfx___sys_sendmsg+0x10/0x10
[  348.839529][T15926]  do_syscall_64+0xcd/0x4c0
[  348.839549][T15926]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.839568][T15926] RIP: 0033:0x7fea7638ebe9
[  348.839583][T15926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.839600][T15926] RSP: 002b:00007fea77179038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  348.839614][T15926] RAX: ffffffffffffffda RBX: 00007fea765b5fa0 RCX: 00007fea7638ebe9
[  348.839621][T15926] RDX: 0000000004010000 RSI: 00002000000000c0 RDI: 0000000000000003
[  348.839627][T15926] RBP: 00007fea77179090 R08: 0000000000000000 R09: 0000000000000000
[  348.839633][T15926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  348.839640][T15926] R13: 00007fea765b6038 R14: 00007fea765b5fa0 R15: 00007ffdf8eded48
[  348.839653][T15926]  </TASK>
[  348.946506][T15930] netlink: 'syz.2.3845': attribute type 1 has an invalid length.
[  348.984756][T15933] FAULT_INJECTION: forcing a failure.
[  348.984756][T15933] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  348.990162][T15933] CPU: 1 UID: 0 PID: 15933 Comm: syz.2.3846 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  348.990179][T15933] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  348.990187][T15933] Call Trace:
[  348.990191][T15933]  <TASK>
[  348.990196][T15933]  dump_stack_lvl+0x16c/0x1f0
[  348.990217][T15933]  should_fail_ex+0x512/0x640
[  348.990232][T15933]  _copy_from_user+0x2e/0xd0
[  348.990246][T15933]  kstrtouint_from_user+0xd6/0x1d0
[  348.990262][T15933]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  348.990277][T15933]  ? __lock_acquire+0xb97/0x1ce0
[  348.990303][T15933]  proc_fail_nth_write+0x83/0x220
[  348.990317][T15933]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  348.990334][T15933]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  348.990347][T15933]  vfs_write+0x2a0/0x1150
[  348.990367][T15933]  ? __pfx___mutex_lock+0x10/0x10
[  348.990378][T15933]  ? __pfx_vfs_write+0x10/0x10
[  348.990393][T15933]  ? __fget_files+0x20e/0x3c0
[  348.990410][T15933]  ksys_write+0x12a/0x250
[  348.990422][T15933]  ? __pfx_ksys_write+0x10/0x10
[  348.990437][T15933]  do_syscall_64+0xcd/0x4c0
[  348.990449][T15933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.990461][T15933] RIP: 0033:0x7fea7638d69f
[  348.990470][T15933] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  348.990481][T15933] RSP: 002b:00007fea77179030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  348.990492][T15933] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fea7638d69f
[  348.990499][T15933] RDX: 0000000000000001 RSI: 00007fea771790a0 RDI: 0000000000000004
[  348.990506][T15933] RBP: 00007fea77179090 R08: 0000000000000000 R09: 0000000000000014
[  348.990512][T15933] R10: 0000000000000004 R11: 0000000000000293 R12: 0000000000000001
[  348.990519][T15933] R13: 00007fea765b6038 R14: 00007fea765b5fa0 R15: 00007ffdf8eded48
[  348.990548][T15933]  </TASK>
[  349.408187][ T6020] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  349.813834][T15945] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3851'.
[  349.949874][   T10] usb 8-1: USB disconnect, device number 81
[  350.046589][T15960] netlink: 'syz.3.3857': attribute type 1 has an invalid length.
[  350.057009][T15963] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3858'.
[  350.102297][T15960] veth23: entered promiscuous mode
[  350.127909][T15971] FAULT_INJECTION: forcing a failure.
[  350.127909][T15971] name failslab, interval 1, probability 0, space 0, times 0
[  350.132192][T15971] CPU: 2 UID: 0 PID: 15971 Comm: syz.2.3862 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  350.132207][T15971] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  350.132214][T15971] Call Trace:
[  350.132218][T15971]  <TASK>
[  350.132223][T15971]  dump_stack_lvl+0x16c/0x1f0
[  350.132243][T15971]  should_fail_ex+0x512/0x640
[  350.132253][T15971]  ? fs_reclaim_acquire+0xae/0x150
[  350.132269][T15971]  ? tomoyo_encode2+0x100/0x3e0
[  350.132282][T15971]  should_failslab+0xc2/0x120
[  350.132295][T15971]  __kmalloc_noprof+0xd2/0x510
[  350.132309][T15971]  tomoyo_encode2+0x100/0x3e0
[  350.132325][T15971]  tomoyo_encode+0x29/0x50
[  350.132338][T15971]  tomoyo_mount_acl+0x144/0x850
[  350.132351][T15971]  ? bpf_ksym_find+0x127/0x1c0
[  350.132366][T15971]  ? is_bpf_text_address+0x94/0x1a0
[  350.132380][T15971]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  350.132391][T15971]  ? __kernel_text_address+0xd/0x40
[  350.132404][T15971]  ? unwind_get_return_address+0x59/0xa0
[  350.132417][T15971]  ? arch_stack_walk+0xa6/0x100
[  350.132442][T15971]  ? tomoyo_domain+0xbb/0x150
[  350.132457][T15971]  ? tomoyo_profile+0x47/0x60
[  350.132474][T15971]  tomoyo_mount_permission+0x16d/0x420
[  350.132487][T15971]  ? tomoyo_mount_permission+0x14f/0x420
[  350.132500][T15971]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  350.132522][T15971]  security_sb_mount+0x9b/0x260
[  350.132534][T15971]  path_mount+0x15f/0x1fd0
[  350.132551][T15971]  ? __pfx_path_mount+0x10/0x10
[  350.132565][T15971]  ? kmem_cache_free+0x2d1/0x4d0
[  350.132582][T15971]  ? putname+0x154/0x1a0
[  350.132605][T15971]  ? putname+0x154/0x1a0
[  350.132625][T15971]  ? __x64_sys_mount+0x28d/0x310
[  350.132641][T15971]  __x64_sys_mount+0x28d/0x310
[  350.132661][T15971]  ? __pfx___x64_sys_mount+0x10/0x10
[  350.132679][T15971]  do_syscall_64+0xcd/0x4c0
[  350.132690][T15971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.132701][T15971] RIP: 0033:0x7fea7638ebe9
[  350.132710][T15971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  350.132721][T15971] RSP: 002b:00007fea77179038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  350.132732][T15971] RAX: ffffffffffffffda RBX: 00007fea765b5fa0 RCX: 00007fea7638ebe9
[  350.132739][T15971] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000
[  350.132745][T15971] RBP: 00007fea77179090 R08: 0000000000000000 R09: 0000000000000000
[  350.132751][T15971] R10: 0000000000008021 R11: 0000000000000246 R12: 0000000000000001
[  350.132757][T15971] R13: 00007fea765b6038 R14: 00007fea765b5fa0 R15: 00007ffdf8eded48
[  350.132770][T15971]  </TASK>
[  350.137548][T15973] fuse: Bad value for 'group_id'
[  350.222289][T15973] fuse: Bad value for 'group_id'
[  350.319266][T15989] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3869'.
[  350.423581][T15996] netlink: 'syz.2.3872': attribute type 1 has an invalid length.
[  350.445805][ T6054] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  350.460085][T15996] veth35: entered promiscuous mode
[  350.555997][T16003] FAULT_INJECTION: forcing a failure.
[  350.555997][T16003] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  350.560110][T16003] CPU: 3 UID: 0 PID: 16003 Comm: syz.2.3875 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  350.560129][T16003] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  350.560135][T16003] Call Trace:
[  350.560139][T16003]  <TASK>
[  350.560144][T16003]  dump_stack_lvl+0x16c/0x1f0
[  350.560165][T16003]  should_fail_ex+0x512/0x640
[  350.560178][T16003]  _copy_to_user+0x32/0xd0
[  350.560191][T16003]  simple_read_from_buffer+0xcb/0x170
[  350.560204][T16003]  proc_fail_nth_read+0x197/0x240
[  350.560218][T16003]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  350.560231][T16003]  ? rw_verify_area+0xcf/0x6c0
[  350.560247][T16003]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  350.560259][T16003]  vfs_read+0x1e1/0xc60
[  350.560272][T16003]  ? __pfx___mutex_lock+0x10/0x10
[  350.560282][T16003]  ? __pfx_vfs_read+0x10/0x10
[  350.560296][T16003]  ? __fget_files+0x20e/0x3c0
[  350.560312][T16003]  ksys_read+0x12a/0x250
[  350.560323][T16003]  ? __pfx_ksys_read+0x10/0x10
[  350.560334][T16003]  ? fput+0x9b/0xd0
[  350.560350][T16003]  do_syscall_64+0xcd/0x4c0
[  350.560361][T16003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.560372][T16003] RIP: 0033:0x7fea7638d5fc
[  350.560381][T16003] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  350.560392][T16003] RSP: 002b:00007fea77179030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  350.560402][T16003] RAX: ffffffffffffffda RBX: 00007fea765b5fa0 RCX: 00007fea7638d5fc
[  350.560409][T16003] RDX: 000000000000000f RSI: 00007fea771790a0 RDI: 0000000000000006
[  350.560415][T16003] RBP: 00007fea77179090 R08: 0000000000000000 R09: 0000000000000000
[  350.560421][T16003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  350.560427][T16003] R13: 00007fea765b6038 R14: 00007fea765b5fa0 R15: 00007ffdf8eded48
[  350.560441][T16003]  </TASK>
[  350.910741][ T6020] usb 6-1: USB disconnect, device number 80
[  350.941612][T16012] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3879'.
[  351.055665][T16016] netlink: 'syz.1.3881': attribute type 1 has an invalid length.
[  351.067391][T16018] FAULT_INJECTION: forcing a failure.
[  351.067391][T16018] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  351.067420][T16018] CPU: 0 UID: 0 PID: 16018 Comm: syz.2.3882 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  351.067448][T16018] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  351.067459][T16018] Call Trace:
[  351.067466][T16018]  <TASK>
[  351.067473][T16018]  dump_stack_lvl+0x16c/0x1f0
[  351.067505][T16018]  should_fail_ex+0x512/0x640
[  351.067526][T16018]  _copy_from_user+0x2e/0xd0
[  351.067547][T16018]  kvm_vm_ioctl+0x1745/0x4000
[  351.067576][T16018]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  351.067609][T16018]  ? kasan_quarantine_put+0x10a/0x240
[  351.067626][T16018]  ? lockdep_hardirqs_on+0x7c/0x110
[  351.067656][T16018]  ? find_held_lock+0x2b/0x80
[  351.067678][T16018]  ? tomoyo_path_number_perm+0x295/0x580
[  351.067708][T16018]  ? find_held_lock+0x2b/0x80
[  351.067733][T16018]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  351.067755][T16018]  ? do_vfs_ioctl+0x128/0x14f0
[  351.067780][T16018]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  351.067820][T16018]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  351.067850][T16018]  ? hook_file_ioctl_common+0x145/0x410
[  351.067883][T16018]  ? selinux_file_ioctl+0x180/0x270
[  351.067903][T16018]  ? selinux_file_ioctl+0xb4/0x270
[  351.067926][T16018]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  351.067945][T16018]  __x64_sys_ioctl+0x18e/0x210
[  351.067972][T16018]  do_syscall_64+0xcd/0x4c0
[  351.067991][T16018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.068008][T16018] RIP: 0033:0x7fea7638ebe9
[  351.068022][T16018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  351.068038][T16018] RSP: 002b:00007fea77179038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  351.068055][T16018] RAX: ffffffffffffffda RBX: 00007fea765b5fa0 RCX: 00007fea7638ebe9
[  351.068066][T16018] RDX: 0000200000000180 RSI: 000000004040ae79 RDI: 0000000000000004
[  351.068077][T16018] RBP: 00007fea77179090 R08: 0000000000000000 R09: 0000000000000000
[  351.068087][T16018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  351.068097][T16018] R13: 00007fea765b6038 R14: 00007fea765b5fa0 R15: 00007ffdf8eded48
[  351.068121][T16018]  </TASK>
[  351.132605][T16021] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3883'.
[  351.325809][   T53] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  351.332980][T16033] netlink: 'syz.2.3887': attribute type 1 has an invalid length.
[  351.352105][T16033] bond19: (slave geneve2): making interface the new active one
[  351.356298][T16033] bond19: (slave geneve2): Enslaving as an active interface with an up link
[  351.359104][   T13] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  351.361876][   T13] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  351.364641][   T13] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  351.367068][T16033] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3887'.
[  351.367710][   T13] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  351.378232][T16033] 8021q: adding VLAN 0 to HW filter on device bond19
[  351.439563][T16043] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3889'.
[  351.463096][T16046] FAULT_INJECTION: forcing a failure.
[  351.463096][T16046] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  351.469003][T16046] CPU: 0 UID: 0 PID: 16046 Comm: syz.2.3891 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  351.469019][T16046] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  351.469027][T16046] Call Trace:
[  351.469031][T16046]  <TASK>
[  351.469035][T16046]  dump_stack_lvl+0x16c/0x1f0
[  351.469055][T16046]  should_fail_ex+0x512/0x640
[  351.469068][T16046]  _copy_from_user+0x2e/0xd0
[  351.469080][T16046]  kstrtouint_from_user+0xd6/0x1d0
[  351.469095][T16046]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  351.469110][T16046]  ? __lock_acquire+0xb97/0x1ce0
[  351.469133][T16046]  proc_fail_nth_write+0x83/0x220
[  351.469151][T16046]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  351.469167][T16046]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  351.469178][T16046]  vfs_write+0x2a0/0x1150
[  351.469192][T16046]  ? __pfx___mutex_lock+0x10/0x10
[  351.469202][T16046]  ? __pfx_vfs_write+0x10/0x10
[  351.469217][T16046]  ? __fget_files+0x20e/0x3c0
[  351.469233][T16046]  ksys_write+0x12a/0x250
[  351.469243][T16046]  ? __pfx_ksys_write+0x10/0x10
[  351.469258][T16046]  do_syscall_64+0xcd/0x4c0
[  351.469269][T16046]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.469281][T16046] RIP: 0033:0x7fea7638d69f
[  351.469290][T16046] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  351.469302][T16046] RSP: 002b:00007fea77179030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  351.469312][T16046] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fea7638d69f
[  351.469319][T16046] RDX: 0000000000000001 RSI: 00007fea771790a0 RDI: 0000000000000004
[  351.469325][T16046] RBP: 00007fea77179090 R08: 0000000000000000 R09: 0000000000000000
[  351.469331][T16046] R10: 0000000020004004 R11: 0000000000000293 R12: 0000000000000001
[  351.469338][T16046] R13: 00007fea765b6038 R14: 00007fea765b5fa0 R15: 00007ffdf8eded48
[  351.469351][T16046]  </TASK>
[  351.538058][ T1340] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  351.549031][T16051] /dev/sg0: Can't lookup blockdev
[  351.890492][T16061] netlink: 'syz.4.3894': attribute type 15 has an invalid length.
[  351.893119][T16061] netlink: 'syz.4.3894': attribute type 15 has an invalid length.
[  352.024781][T16068] 8021q: adding VLAN 0 to HW filter on device batadv0
[  352.029620][T16068] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  352.037807][T16068] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3897'.
[  352.050995][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  352.051006][   T40] audit: type=1400 audit(1754712362.451:595): avc:  denied  { ioctl } for  pid=15980 comm="syz.3.3866" path="socket:[62695]" dev="sockfs" ino=62695 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  352.144344][   T40] audit: type=1400 audit(1754712362.541:596): avc:  denied  { lock } for  pid=16067 comm="syz.4.3897" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=61947 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  352.261603][T16082] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3900'.
[  352.292650][T16086] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=52218 sclass=netlink_route_socket pid=16086 comm=syz.1.3902
[  352.304996][T16086] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3902'.
[  352.440386][T16097] tipc: Started in network mode
[  352.442097][T16097] tipc: Node identity ac1414aa, cluster identity 4711
[  352.444489][T16098] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=54 sclass=netlink_route_socket pid=16098 comm=syz.1.3904
[  352.446178][T16097] tipc: Enabled bearer <udp:syz2>, priority 10
[  352.464642][T16103] FAULT_INJECTION: forcing a failure.
[  352.464642][T16103] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  352.469480][T16103] CPU: 0 UID: 0 PID: 16103 Comm: syz.2.3905 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  352.469504][T16103] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  352.469513][T16103] Call Trace:
[  352.469519][T16103]  <TASK>
[  352.469525][T16103]  dump_stack_lvl+0x16c/0x1f0
[  352.469546][T16103]  should_fail_ex+0x512/0x640
[  352.469559][T16103]  _copy_to_iter+0x463/0x16f0
[  352.469573][T16103]  ? avc_has_perm_noaudit+0x117/0x3b0
[  352.469591][T16103]  ? __pfx__copy_to_iter+0x10/0x10
[  352.469604][T16103]  ? __skb_recv_datagram+0x1b2/0x220
[  352.469620][T16103]  ? __pfx___skb_recv_datagram+0x10/0x10
[  352.469635][T16103]  simple_copy_to_iter+0x46/0x90
[  352.469649][T16103]  __skb_datagram_iter+0x129/0x900
[  352.469661][T16103]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  352.469675][T16103]  ? skb_recv_datagram+0x88/0xc0
[  352.469691][T16103]  skb_copy_datagram_iter+0x40/0x50
[  352.469705][T16103]  netlink_recvmsg+0x27e/0xa90
[  352.469723][T16103]  ? __pfx_netlink_recvmsg+0x10/0x10
[  352.469745][T16103]  sock_recvmsg+0x1f6/0x250
[  352.469757][T16103]  ____sys_recvmsg+0x218/0x6b0
[  352.469771][T16103]  ? __pfx_____sys_recvmsg+0x10/0x10
[  352.469787][T16103]  ? __lock_acquire+0x62e/0x1ce0
[  352.469807][T16103]  ___sys_recvmsg+0x114/0x1a0
[  352.469823][T16103]  ? __pfx____sys_recvmsg+0x10/0x10
[  352.469841][T16103]  ? find_held_lock+0x2b/0x80
[  352.469861][T16103]  do_recvmmsg+0x2fe/0x750
[  352.469879][T16103]  ? __pfx_do_recvmmsg+0x10/0x10
[  352.469894][T16103]  ? ksys_write+0x190/0x250
[  352.469908][T16103]  ? __mutex_unlock_slowpath+0x163/0x800
[  352.469929][T16103]  ? __fget_files+0x20e/0x3c0
[  352.469944][T16103]  __x64_sys_recvmmsg+0x22a/0x280
[  352.469961][T16103]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  352.469982][T16103]  do_syscall_64+0xcd/0x4c0
[  352.469993][T16103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.470004][T16103] RIP: 0033:0x7fea7638ebe9
[  352.470013][T16103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  352.470024][T16103] RSP: 002b:00007fea77179038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  352.470035][T16103] RAX: ffffffffffffffda RBX: 00007fea765b5fa0 RCX: 00007fea7638ebe9
[  352.470042][T16103] RDX: 0000000000000063 RSI: 0000200000004d80 RDI: 0000000000000003
[  352.470048][T16103] RBP: 00007fea77179090 R08: 0000000000000000 R09: 0000000000000000
[  352.470054][T16103] R10: 0000000040012000 R11: 0000000000000246 R12: 0000000000000001
[  352.470060][T16103] R13: 00007fea765b6038 R14: 00007fea765b5fa0 R15: 00007ffdf8eded48
[  352.470073][T16103]  </TASK>
[  352.603309][T16115] FAULT_INJECTION: forcing a failure.
[  352.603309][T16115] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  352.607133][T16112] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  352.607702][T16115] CPU: 3 UID: 0 PID: 16115 Comm: syz.1.3908 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  352.607717][T16115] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  352.607724][T16115] Call Trace:
[  352.607729][T16115]  <TASK>
[  352.607733][T16115]  dump_stack_lvl+0x16c/0x1f0
[  352.607753][T16115]  should_fail_ex+0x512/0x640
[  352.607766][T16115]  _copy_from_user+0x2e/0xd0
[  352.607779][T16115]  kvm_vm_ioctl+0x1745/0x4000
[  352.607796][T16115]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  352.607814][T16115]  ? kasan_quarantine_put+0x10a/0x240
[  352.607826][T16115]  ? lockdep_hardirqs_on+0x7c/0x110
[  352.607845][T16115]  ? find_held_lock+0x2b/0x80
[  352.607859][T16115]  ? tomoyo_path_number_perm+0x295/0x580
[  352.607877][T16115]  ? find_held_lock+0x2b/0x80
[  352.607893][T16115]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  352.607906][T16115]  ? do_vfs_ioctl+0x128/0x14f0
[  352.607923][T16115]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  352.607939][T16115]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  352.607958][T16115]  ? hook_file_ioctl_common+0x145/0x410
[  352.607977][T16115]  ? selinux_file_ioctl+0x180/0x270
[  352.607990][T16115]  ? selinux_file_ioctl+0xb4/0x270
[  352.608004][T16115]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  352.608015][T16115]  __x64_sys_ioctl+0x18e/0x210
[  352.608032][T16115]  do_syscall_64+0xcd/0x4c0
[  352.608043][T16115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.608054][T16115] RIP: 0033:0x7fac31f8ebe9
[  352.608064][T16115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  352.608075][T16115] RSP: 002b:00007fac32e7e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  352.608085][T16115] RAX: ffffffffffffffda RBX: 00007fac321b5fa0 RCX: 00007fac31f8ebe9
[  352.608092][T16115] RDX: 0000200000000240 RSI: 000000004040ae79 RDI: 0000000000000004
[  352.608099][T16115] RBP: 00007fac32e7e090 R08: 0000000000000000 R09: 0000000000000000
[  352.608105][T16115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  352.608111][T16115] R13: 00007fac321b6038 R14: 00007fac321b5fa0 R15: 00007ffd0984d048
[  352.608128][T16115]  </TASK>
[  352.615508][ T6020] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  352.624333][T16112] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  352.765524][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  352.782663][T16112] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  352.787047][T16112] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  352.874767][T16112] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  352.881200][T16112] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  352.949236][T16112] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  352.952596][T16112] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  353.116079][ T1146] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  353.118764][ T1146] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  353.129926][ T7845] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  353.132595][ T7845] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  353.142085][ T7845] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  353.144705][ T7845] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  353.154068][ T1148] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  353.157586][ T1148] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  353.210111][ T1146] Bluetooth: hci2: Frame reassembly failed (-84)
[  353.210554][T16162] pim6reg: entered allmulticast mode
[  353.212775][ T1146] Bluetooth: hci2: Frame reassembly failed (-84)
[  353.218504][T16162] pim6reg: left allmulticast mode
[  353.243906][T16160] kvm: kvm [16159]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0x11e) = 0x0
[  353.270538][T16164] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  353.447738][   T24] tipc: Node number set to 2886997162
[  353.460844][T16166] ufs: You didn't specify the type of your ufs filesystem
[  353.460844][T16166] 
[  353.460844][T16166] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  353.460844][T16166] 
[  353.460844][T16166] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  353.470859][T16166] ufs: ufstype=old is supported read-only
[  353.473244][T16166] syz.3.3918: attempt to access beyond end of device
[  353.473244][T16166] nbd3: rw=0, sector=16, nr_sectors = 2 limit=0
[  353.524099][T16168] kvm: kvm [16167]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0x11e) = 0x0
[  353.645565][ T6020] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  353.763536][T16188] 8021q: adding VLAN 0 to HW filter on device bond0
[  353.767616][T16188] bond0: (slave ip6tnl0): The slave device specified does not support setting the MAC address
[  353.771955][T16188] bond0: (slave ip6tnl0): Error -95 calling set_mac_address
[  353.780751][T16188] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  353.785702][T16188] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  353.788838][T16188] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  353.792294][T16188] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  353.795320][T16188] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  353.805654][   T40] audit: type=1400 audit(1754712364.201:597): avc:  denied  { watch watch_reads } for  pid=16183 comm="syz.3.3928" path="/341/file0" dev="fuse" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=file permissive=1
[  353.978687][T16214] FAULT_INJECTION: forcing a failure.
[  353.978687][T16214] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  353.983311][T16214] CPU: 2 UID: 0 PID: 16214 Comm: syz.3.3936 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  353.983329][T16214] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  353.983336][T16214] Call Trace:
[  353.983340][T16214]  <TASK>
[  353.983345][T16214]  dump_stack_lvl+0x16c/0x1f0
[  353.983368][T16214]  should_fail_ex+0x512/0x640
[  353.983381][T16214]  _copy_from_iter+0x29f/0x16f0
[  353.983396][T16214]  ? __pfx__copy_from_iter+0x10/0x10
[  353.983407][T16214]  ? rcu_is_watching+0x12/0xc0
[  353.983422][T16214]  ? rcu_is_watching+0x12/0xc0
[  353.983435][T16214]  ? kfree+0x24f/0x4d0
[  353.983450][T16214]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[  353.983472][T16214]  file_tty_write.constprop.0+0x488/0x9b0
[  353.983492][T16214]  vfs_write+0x6c4/0x1150
[  353.983504][T16214]  ? __pfx_tty_write+0x10/0x10
[  353.983521][T16214]  ? __pfx_vfs_write+0x10/0x10
[  353.983531][T16214]  ? find_held_lock+0x2b/0x80
[  353.983553][T16214]  ksys_write+0x12a/0x250
[  353.983564][T16214]  ? __pfx_ksys_write+0x10/0x10
[  353.983575][T16214]  ? fd_install+0x244/0x750
[  353.983590][T16214]  do_syscall_64+0xcd/0x4c0
[  353.983601][T16214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  353.983612][T16214] RIP: 0033:0x7fcc78f8ebe9
[  353.983621][T16214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  353.983632][T16214] RSP: 002b:00007fcc79e46038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  353.983643][T16214] RAX: ffffffffffffffda RBX: 00007fcc791b5fa0 RCX: 00007fcc78f8ebe9
[  353.983650][T16214] RDX: 0000000000001006 RSI: 0000200000001040 RDI: 0000000000000004
[  353.983656][T16214] RBP: 00007fcc79e46090 R08: 0000000000000000 R09: 0000000000000000
[  353.983662][T16214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  353.983669][T16214] R13: 00007fcc791b6038 R14: 00007fcc791b5fa0 R15: 00007ffc36f3cf68
[  353.983682][T16214]  </TASK>
[  354.162316][T16224] ÿÿÿÿÿÿÇ(
¯J: renamed from lo (while UP)
[  354.328078][T16231] FAULT_INJECTION: forcing a failure.
[  354.328078][T16231] name failslab, interval 1, probability 0, space 0, times 0
[  354.332335][T16231] CPU: 2 UID: 0 PID: 16231 Comm: syz.3.3938 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  354.332358][T16231] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  354.332365][T16231] Call Trace:
[  354.332370][T16231]  <TASK>
[  354.332375][T16231]  dump_stack_lvl+0x16c/0x1f0
[  354.332396][T16231]  should_fail_ex+0x512/0x640
[  354.332406][T16231]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  354.332420][T16231]  should_failslab+0xc2/0x120
[  354.332432][T16231]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  354.332444][T16231]  ? fuse_request_alloc+0x22/0x200
[  354.332457][T16231]  fuse_request_alloc+0x22/0x200
[  354.332468][T16231]  fuse_get_req+0x748/0xfd0
[  354.332479][T16231]  ? arch_stack_walk+0xa6/0x100
[  354.332495][T16231]  ? __pfx_fuse_get_req+0x10/0x10
[  354.332508][T16231]  ? stack_trace_save+0x8e/0xc0
[  354.332523][T16231]  ? __pfx_stack_trace_save+0x10/0x10
[  354.332538][T16231]  ? stack_depot_save_flags+0x29/0x9c0
[  354.332549][T16231]  __fuse_simple_request+0xb8/0xcb0
[  354.332562][T16231]  ? kasan_save_stack+0x42/0x60
[  354.332574][T16231]  fuse_do_getattr+0x281/0x540
[  354.332590][T16231]  ? __pfx_fuse_do_getattr+0x10/0x10
[  354.332617][T16231]  ? rcu_is_watching+0x12/0xc0
[  354.332631][T16231]  ? kasan_quarantine_put+0x10a/0x240
[  354.332641][T16231]  ? lockdep_hardirqs_on+0x7c/0x110
[  354.332658][T16231]  ? make_vfsgid+0xf1/0x140
[  354.332675][T16231]  fuse_permission+0x4eb/0x670
[  354.332692][T16231]  ? __pfx_fuse_permission+0x10/0x10
[  354.332708][T16231]  inode_permission+0x377/0x630
[  354.332725][T16231]  do_faccessat+0x20c/0xba0
[  354.332737][T16231]  ? __pfx_do_faccessat+0x10/0x10
[  354.332747][T16231]  ? ksys_write+0x1ac/0x250
[  354.332758][T16231]  ? __pfx_ksys_write+0x10/0x10
[  354.332772][T16231]  __x64_sys_faccessat+0x74/0xb0
[  354.332784][T16231]  ? lockdep_hardirqs_on+0x7c/0x110
[  354.332799][T16231]  do_syscall_64+0xcd/0x4c0
[  354.332810][T16231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  354.332835][T16231] RIP: 0033:0x7fcc78f8ebe9
[  354.332845][T16231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  354.332856][T16231] RSP: 002b:00007fcc79e25038 EFLAGS: 00000246 ORIG_RAX: 000000000000010d
[  354.332866][T16231] RAX: ffffffffffffffda RBX: 00007fcc791b6090 RCX: 00007fcc78f8ebe9
[  354.332872][T16231] RDX: 0000000000000007 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  354.332879][T16231] RBP: 00007fcc79e25090 R08: 0000000000000000 R09: 0000000000000000
[  354.332885][T16231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  354.332891][T16231] R13: 00007fcc791b6128 R14: 00007fcc791b6090 R15: 00007ffc36f3cf68
[  354.332905][T16231]  </TASK>
[  354.687715][T16250] fuse: Bad value for 'fd'
[  354.775907][T16252] fuse: Bad value for 'fd'
[  354.942112][T16254] __nla_validate_parse: 4 callbacks suppressed
[  354.942124][T16254] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3944'.
[  355.110013][   T40] audit: type=1400 audit(1754712365.511:598): avc:  denied  { getopt } for  pid=16255 comm="syz.1.3945" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  355.245163][ T5982] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  355.245183][ T5975] Bluetooth: hci2: command 0x1003 tx timeout
[  355.397284][T16278] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3953'.
[  355.557525][   T40] audit: type=1400 audit(1754712365.961:599): avc:  denied  { accept } for  pid=16280 comm="syz.1.3955" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  355.559232][T16287] 9pnet_fd: Insufficient options for proto=fd
[  355.605149][   T61] usb 8-1: new high-speed USB device number 82 using dummy_hcd
[  355.648632][   T40] audit: type=1400 audit(1754712366.051:600): avc:  denied  { getopt } for  pid=16291 comm="syz.2.3958" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  355.725994][T16294] FAULT_INJECTION: forcing a failure.
[  355.725994][T16294] name failslab, interval 1, probability 0, space 0, times 0
[  355.730652][T16294] CPU: 2 UID: 0 PID: 16294 Comm: syz.2.3959 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  355.730668][T16294] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  355.730675][T16294] Call Trace:
[  355.730680][T16294]  <TASK>
[  355.730685][T16294]  dump_stack_lvl+0x16c/0x1f0
[  355.730706][T16294]  should_fail_ex+0x512/0x640
[  355.730716][T16294]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  355.730729][T16294]  should_failslab+0xc2/0x120
[  355.730742][T16294]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  355.730753][T16294]  ? schedule+0x2d7/0x3a0
[  355.730767][T16294]  ? fuse_request_alloc+0x22/0x200
[  355.730781][T16294]  fuse_request_alloc+0x22/0x200
[  355.730791][T16294]  fuse_get_req+0x748/0xfd0
[  355.730806][T16294]  ? __pfx_fuse_get_req+0x10/0x10
[  355.730818][T16294]  ? __pfx_autoremove_wake_function+0x10/0x10
[  355.730835][T16294]  ? __pfx_stack_trace_save+0x10/0x10
[  355.730850][T16294]  ? stack_depot_save_flags+0x29/0x9c0
[  355.730862][T16294]  __fuse_simple_request+0xb8/0xcb0
[  355.730897][T16294]  ? kasan_save_stack+0x42/0x60
[  355.730912][T16294]  ? kasan_save_stack+0x33/0x60
[  355.730924][T16294]  fuse_do_getattr+0x281/0x540
[  355.730940][T16294]  ? __pfx_fuse_do_getattr+0x10/0x10
[  355.730967][T16294]  ? rcu_is_watching+0x12/0xc0
[  355.730980][T16294]  ? kasan_quarantine_put+0x10a/0x240
[  355.730990][T16294]  ? lockdep_hardirqs_on+0x7c/0x110
[  355.731010][T16294]  fuse_permission+0x4eb/0x670
[  355.731027][T16294]  ? __pfx_fuse_permission+0x10/0x10
[  355.731042][T16294]  inode_permission+0x377/0x630
[  355.731060][T16294]  inotify_find_inode+0xe6/0x160
[  355.731076][T16294]  __x64_sys_inotify_add_watch+0x20e/0x370
[  355.731093][T16294]  ? __pfx___x64_sys_inotify_add_watch+0x10/0x10
[  355.731114][T16294]  do_syscall_64+0xcd/0x4c0
[  355.731126][T16294]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.731138][T16294] RIP: 0033:0x7fea7638ebe9
[  355.731147][T16294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  355.731158][T16294] RSP: 002b:00007fea77179038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fe
[  355.731168][T16294] RAX: ffffffffffffffda RBX: 00007fea765b5fa0 RCX: 00007fea7638ebe9
[  355.731175][T16294] RDX: 0000000000000010 RSI: 0000200000000280 RDI: 0000000000000005
[  355.731181][T16294] RBP: 00007fea77179090 R08: 0000000000000000 R09: 0000000000000000
[  355.731187][T16294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  355.731193][T16294] R13: 00007fea765b6038 R14: 00007fea765b5fa0 R15: 00007ffdf8eded48
[  355.731206][T16294]  </TASK>
[  355.815284][   T61] usb 8-1: Using ep0 maxpacket: 8
[  355.818435][   T61] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  355.821897][   T61] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  355.824888][   T61] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  355.827933][   T61] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  355.831952][   T61] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  355.834753][   T61] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.064100][   T61] usb 8-1: GET_CAPABILITIES returned 0
[  356.065939][   T61] usbtmc 8-1:16.0: can't read capabilities
[  356.301811][T16308] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3963'.
[  356.654188][T16239] syz.4.3941 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  356.665167][T16239] CPU: 2 UID: 0 PID: 16239 Comm: syz.4.3941 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  356.665184][T16239] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  356.665191][T16239] Call Trace:
[  356.665195][T16239]  <TASK>
[  356.665200][T16239]  dump_stack_lvl+0x16c/0x1f0
[  356.665220][T16239]  dump_header+0x101/0x930
[  356.665235][T16239]  oom_kill_process+0x272/0xa40
[  356.665249][T16239]  out_of_memory+0x350/0x1700
[  356.665264][T16239]  ? __pfx_out_of_memory+0x10/0x10
[  356.665279][T16239]  mem_cgroup_out_of_memory+0x118/0x130
[  356.665295][T16239]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  356.665313][T16239]  ? do_raw_spin_unlock+0x172/0x230
[  356.665328][T16239]  try_charge_memcg+0x72b/0xd50
[  356.665342][T16239]  ? __pfx_try_charge_memcg+0x10/0x10
[  356.665353][T16239]  ? find_held_lock+0x11/0x80
[  356.665367][T16239]  ? rcu_read_unlock+0x17/0x60
[  356.665382][T16239]  charge_memcg+0x8a/0x230
[  356.665394][T16239]  __mem_cgroup_charge+0x2b/0x1e0
[  356.665408][T16239]  shmem_alloc_and_add_folio+0x514/0xc20
[  356.665429][T16239]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  356.665448][T16239]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  356.665462][T16239]  shmem_get_folio_gfp+0x67f/0x1600
[  356.665475][T16239]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  356.665490][T16239]  shmem_write_begin+0x160/0x300
[  356.665502][T16239]  ? __pfx_shmem_write_begin+0x10/0x10
[  356.665512][T16239]  ? timestamp_truncate+0x21e/0x2d0
[  356.665526][T16239]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  356.665545][T16239]  generic_perform_write+0x3c2/0x900
[  356.665566][T16239]  ? __pfx_generic_perform_write+0x10/0x10
[  356.665584][T16239]  ? inode_needs_update_time.part.0+0x191/0x270
[  356.665602][T16239]  shmem_file_write_iter+0x10e/0x140
[  356.665616][T16239]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  356.665628][T16239]  __kernel_write_iter+0x31a/0xa90
[  356.665641][T16239]  ? __pfx___kernel_write_iter+0x10/0x10
[  356.665651][T16239]  ? __up_read+0x1f8/0x750
[  356.665664][T16239]  ? dump_user_range+0x756/0xb70
[  356.665679][T16239]  dump_user_range+0x413/0xb70
[  356.665694][T16239]  ? __pfx_dump_user_range+0x10/0x10
[  356.665706][T16239]  ? elf_coredump_extra_notes_write+0xbd/0x4f0
[  356.665720][T16239]  ? __pfx_writenote+0x10/0x10
[  356.665736][T16239]  elf_core_dump+0x2929/0x3b60
[  356.665756][T16239]  ? __pfx_elf_core_dump+0x10/0x10
[  356.665768][T16239]  ? kasan_save_stack+0x42/0x60
[  356.665778][T16239]  ? kasan_save_stack+0x33/0x60
[  356.665787][T16239]  ? kasan_save_track+0x14/0x30
[  356.665797][T16239]  ? __kasan_kmalloc+0xaa/0xb0
[  356.665806][T16239]  ? vfs_coredump+0x1dc8/0x56d0
[  356.665816][T16239]  ? get_signal+0x22e3/0x26d0
[  356.665829][T16239]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  356.665846][T16239]  ? 0xffffffffff600000
[  356.665878][T16239]  ? vfs_coredump+0x2b9f/0x56d0
[  356.665888][T16239]  vfs_coredump+0x2b9f/0x56d0
[  356.665904][T16239]  ? __pfx_vfs_coredump+0x10/0x10
[  356.665916][T16239]  ? __lock_acquire+0x62e/0x1ce0
[  356.665936][T16239]  ? __lock_acquire+0x62e/0x1ce0
[  356.665953][T16239]  ? lock_acquire+0x179/0x350
[  356.665976][T16239]  ? is_bpf_text_address+0x8a/0x1a0
[  356.665987][T16239]  ? bpf_ksym_find+0x127/0x1c0
[  356.666004][T16239]  ? __kernel_text_address+0xd/0x40
[  356.666016][T16239]  ? unwind_get_return_address+0x59/0xa0
[  356.666028][T16239]  ? arch_stack_walk+0xa6/0x100
[  356.666046][T16239]  ? stack_trace_save+0x8e/0xc0
[  356.666061][T16239]  ? __pfx_stack_trace_save+0x10/0x10
[  356.666075][T16239]  ? stack_depot_save_flags+0x29/0x9c0
[  356.666086][T16239]  ? __lock_acquire+0xb97/0x1ce0
[  356.666129][T16239]  ? proc_coredump_connector+0x2d1/0x4f0
[  356.666144][T16239]  ? __pfx_proc_coredump_connector+0x10/0x10
[  356.666161][T16239]  ? rcu_is_watching+0x12/0xc0
[  356.666176][T16239]  get_signal+0x22e3/0x26d0
[  356.666195][T16239]  ? __pfx_get_signal+0x10/0x10
[  356.666208][T16239]  ? force_sig_fault+0xc4/0x100
[  356.666221][T16239]  ? __pfx_force_sig_fault+0x10/0x10
[  356.666236][T16239]  arch_do_signal_or_restart+0x8f/0x7d0
[  356.666250][T16239]  ? find_held_lock+0x2b/0x80
[  356.666262][T16239]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  356.666285][T16239]  irqentry_exit_to_user_mode+0x12a/0x270
[  356.666303][T16239]  asm_exc_page_fault+0x26/0x30
[  356.666313][T16239] RIP: 0033:0x7fa5efd8ebf1
[  356.666323][T16239] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  356.666333][T16239] RSP: 002b:fffffffffffffe70 EFLAGS: 00010217
[  356.666342][T16239] RAX: 0000000000000000 RBX: 00007fa5effb6180 RCX: 00007fa5efd8ebe9
[  356.666349][T16239] RDX: 0000000000000000 RSI: fffffffffffffe70 RDI: 0000000000008000
[  356.666355][T16239] RBP: 00007fa5efe11e19 R08: 0000000000000000 R09: 0000000000000000
[  356.666362][T16239] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  356.666368][T16239] R13: 00007fa5effb6218 R14: 00007fa5effb6180 R15: 00007ffd77d330a8
[  356.666381][T16239]  </TASK>
[  356.666385][T16239] memory: usage 307200kB, limit 307200kB, failcnt 20409
[  356.689967][T16321] FAULT_INJECTION: forcing a failure.
[  356.689967][T16321] name failslab, interval 1, probability 0, space 0, times 0
[  356.691731][T16239] memory+swap: usage 432060kB, limit 9007199254740988kB, failcnt 0
[  356.693158][T16321] CPU: 0 UID: 0 PID: 16321 Comm: syz.2.3966 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  356.693173][T16321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  356.693179][T16321] Call Trace:
[  356.693183][T16321]  <TASK>
[  356.693188][T16321]  dump_stack_lvl+0x16c/0x1f0
[  356.693208][T16321]  should_fail_ex+0x512/0x640
[  356.693218][T16321]  ? fs_reclaim_acquire+0xae/0x150
[  356.693234][T16321]  ? tomoyo_encode2+0x100/0x3e0
[  356.693247][T16321]  should_failslab+0xc2/0x120
[  356.693260][T16321]  __kmalloc_noprof+0xd2/0x510
[  356.693274][T16321]  tomoyo_encode2+0x100/0x3e0
[  356.693289][T16321]  tomoyo_encode+0x29/0x50
[  356.693302][T16321]  tomoyo_realpath_from_path+0x18f/0x6e0
[  356.693318][T16321]  ? tomoyo_profile+0x47/0x60
[  356.693335][T16321]  tomoyo_path_number_perm+0x245/0x580
[  356.693350][T16321]  ? tomoyo_path_number_perm+0x237/0x580
[  356.693363][T16321]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  356.693375][T16321]  ? find_held_lock+0x2b/0x80
[  356.693400][T16321]  ? find_held_lock+0x2b/0x80
[  356.693413][T16321]  ? hook_file_ioctl_common+0x145/0x410
[  356.693432][T16321]  ? __fget_files+0x20e/0x3c0
[  356.693447][T16321]  security_file_ioctl+0x9b/0x240
[  356.693461][T16321]  __x64_sys_ioctl+0xb7/0x210
[  356.693479][T16321]  do_syscall_64+0xcd/0x4c0
[  356.693490][T16321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.693501][T16321] RIP: 0033:0x7fea7638ebe9
[  356.693510][T16321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  356.693520][T16321] RSP: 002b:00007fea77179038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  356.693531][T16321] RAX: ffffffffffffffda RBX: 00007fea765b5fa0 RCX: 00007fea7638ebe9
[  356.693537][T16321] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  356.693543][T16321] RBP: 00007fea77179090 R08: 0000000000000000 R09: 0000000000000000
[  356.693550][T16321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  356.693556][T16321] R13: 00007fea765b6038 R14: 00007fea765b5fa0 R15: 00007ffdf8eded48
[  356.693569][T16321]  </TASK>
[  356.693578][T16321] ERROR: Out of memory at tomoyo_realpath_from_path.
[  356.694630][T16239] kmem: usage 6028kB, limit 9007199254740988kB, failcnt 0
[  356.845729][ T6020] net_ratelimit: 358 callbacks suppressed
[  356.845741][ T6020] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  356.846054][T16239] Memory cgroup stats for /syz4:
[  356.899818][T16239] cache 308322304
[  356.902572][T16239] rss 86016
[  356.903616][T16239] rss_huge 0
[  356.904678][T16239] shmem 308318208
[  356.905929][T16239] mapped_file 0
[  356.907022][T16239] dirty 0
[  356.907949][T16239] writeback 0
[  356.909024][T16239] workingset_refault_anon 39
[  356.910445][T16239] workingset_refault_file 179
[  356.911926][T16239] swap 127856640
[  356.913060][T16239] swapcached 69632
[  356.914259][T16239] pgpgin 112062
[  356.915484][T16239] pgpgout 36764
[  356.916610][T16239] pgfault 14511
[  356.917733][T16239] pgmajfault 51
[  356.918859][T16239] inactive_anon 70209536
[  356.920249][T16239] active_anon 238206976
[  356.921578][T16239] inactive_file 4096
[  356.922827][T16239] active_file 0
[  356.923972][T16239] unevictable 0
[  356.925234][T16239] hierarchical_memory_limit 314572800
[  356.926952][T16239] hierarchical_memsw_limit 9223372036854771712
[  356.928887][T16239] total_cache 308322304
[  356.930236][T16239] total_rss 86016
[  356.931418][T16239] total_rss_huge 0
[  356.932615][T16239] total_shmem 308318208
[  356.933932][T16239] total_mapped_file 0
[  356.935288][T16239] total_dirty 0
[  356.936405][T16239] total_writeback 0
[  356.937621][T16239] total_workingset_refault_anon 39
[  356.939242][T16239] total_workingset_refault_file 179
[  356.940895][T16239] total_swap 127856640
[  356.942188][T16239] total_swapcached 69632
[  356.943548][T16239] total_pgpgin 112062
[  356.944841][T16239] total_pgpgout 36764
[  356.946205][T16239] total_pgfault 14511
[  356.947488][T16239] total_pgmajfault 51
[  356.948764][T16239] total_inactive_anon 70209536
[  356.950297][T16239] total_active_anon 238206976
[  356.951791][T16239] total_inactive_file 4096
[  356.953216][T16239] total_active_file 0
[  356.954491][T16239] total_unevictable 0
[  356.956657][T16239] anon_cost 0
[  356.957737][T16239] file_cost 0
[  356.958859][T16239] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.3941,pid=16240,uid=0
[  356.963803][T16239] Memory cgroup out of memory: Killed process 16240 (syz.4.3941) total-vm:98252kB, anon-rss:1092kB, file-rss:54120kB, shmem-rss:0kB, UID:0 pgtables:196kB oom_score_adj:0
[  357.023619][T16241] syz.4.3941 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  357.034624][T16241] CPU: 3 UID: 0 PID: 16241 Comm: syz.4.3941 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  357.034643][T16241] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  357.034650][T16241] Call Trace:
[  357.034654][T16241]  <TASK>
[  357.034659][T16241]  dump_stack_lvl+0x16c/0x1f0
[  357.034680][T16241]  dump_header+0x101/0x930
[  357.034694][T16241]  oom_kill_process+0x272/0xa40
[  357.034708][T16241]  out_of_memory+0x350/0x1700
[  357.034723][T16241]  ? __pfx_out_of_memory+0x10/0x10
[  357.034738][T16241]  mem_cgroup_out_of_memory+0x118/0x130
[  357.034755][T16241]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  357.034773][T16241]  ? do_raw_spin_unlock+0x172/0x230
[  357.034788][T16241]  try_charge_memcg+0x72b/0xd50
[  357.034803][T16241]  ? __pfx_try_charge_memcg+0x10/0x10
[  357.034815][T16241]  ? find_held_lock+0x11/0x80
[  357.034828][T16241]  ? rcu_read_unlock+0x17/0x60
[  357.034844][T16241]  charge_memcg+0x8a/0x230
[  357.034856][T16241]  __mem_cgroup_charge+0x2b/0x1e0
[  357.034890][T16241]  shmem_alloc_and_add_folio+0x514/0xc20
[  357.034912][T16241]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  357.034932][T16241]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  357.034945][T16241]  shmem_get_folio_gfp+0x67f/0x1600
[  357.034959][T16241]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  357.034974][T16241]  shmem_write_begin+0x160/0x300
[  357.034986][T16241]  ? __pfx_shmem_write_begin+0x10/0x10
[  357.034997][T16241]  ? timestamp_truncate+0x21e/0x2d0
[  357.035022][T16241]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  357.035043][T16241]  generic_perform_write+0x3c2/0x900
[  357.035065][T16241]  ? __pfx_generic_perform_write+0x10/0x10
[  357.035083][T16241]  ? inode_needs_update_time.part.0+0x191/0x270
[  357.035101][T16241]  shmem_file_write_iter+0x10e/0x140
[  357.035115][T16241]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  357.035128][T16241]  __kernel_write_iter+0x31a/0xa90
[  357.035140][T16241]  ? __pfx___kernel_write_iter+0x10/0x10
[  357.035151][T16241]  ? __up_read+0x1f8/0x750
[  357.035168][T16241]  ? dump_user_range+0x756/0xb70
[  357.035182][T16241]  dump_user_range+0x413/0xb70
[  357.035197][T16241]  ? __pfx_dump_user_range+0x10/0x10
[  357.035209][T16241]  ? elf_coredump_extra_notes_write+0xbd/0x4f0
[  357.035223][T16241]  ? __pfx_writenote+0x10/0x10
[  357.035240][T16241]  elf_core_dump+0x2929/0x3b60
[  357.035260][T16241]  ? __pfx_elf_core_dump+0x10/0x10
[  357.035272][T16241]  ? kasan_save_stack+0x42/0x60
[  357.035282][T16241]  ? kasan_save_stack+0x33/0x60
[  357.035291][T16241]  ? kasan_save_track+0x14/0x30
[  357.035301][T16241]  ? __kasan_kmalloc+0xaa/0xb0
[  357.035310][T16241]  ? vfs_coredump+0x1dc8/0x56d0
[  357.035320][T16241]  ? get_signal+0x22e3/0x26d0
[  357.035333][T16241]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  357.035350][T16241]  ? 0xffffffffff600000
[  357.035383][T16241]  ? vfs_coredump+0x2b9f/0x56d0
[  357.035393][T16241]  vfs_coredump+0x2b9f/0x56d0
[  357.035409][T16241]  ? __pfx_vfs_coredump+0x10/0x10
[  357.035421][T16241]  ? __lock_acquire+0x62e/0x1ce0
[  357.035441][T16241]  ? __lock_acquire+0x62e/0x1ce0
[  357.035458][T16241]  ? lock_acquire+0x179/0x350
[  357.035482][T16241]  ? is_bpf_text_address+0x8a/0x1a0
[  357.035494][T16241]  ? bpf_ksym_find+0x127/0x1c0
[  357.035511][T16241]  ? __kernel_text_address+0xd/0x40
[  357.035523][T16241]  ? unwind_get_return_address+0x59/0xa0
[  357.035536][T16241]  ? arch_stack_walk+0xa6/0x100
[  357.035554][T16241]  ? stack_trace_save+0x8e/0xc0
[  357.035569][T16241]  ? __pfx_stack_trace_save+0x10/0x10
[  357.035583][T16241]  ? stack_depot_save_flags+0x29/0x9c0
[  357.035595][T16241]  ? __lock_acquire+0xb97/0x1ce0
[  357.035635][T16241]  ? proc_coredump_connector+0x2d1/0x4f0
[  357.035650][T16241]  ? __pfx_proc_coredump_connector+0x10/0x10
[  357.035666][T16241]  ? rcu_is_watching+0x12/0xc0
[  357.035682][T16241]  get_signal+0x22e3/0x26d0
[  357.035701][T16241]  ? __pfx_get_signal+0x10/0x10
[  357.035714][T16241]  ? force_sig_fault+0xc4/0x100
[  357.035727][T16241]  ? __pfx_force_sig_fault+0x10/0x10
[  357.035742][T16241]  arch_do_signal_or_restart+0x8f/0x7d0
[  357.035756][T16241]  ? find_held_lock+0x2b/0x80
[  357.035768][T16241]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  357.035791][T16241]  irqentry_exit_to_user_mode+0x12a/0x270
[  357.035809][T16241]  asm_exc_page_fault+0x26/0x30
[  357.035819][T16241] RIP: 0033:0x7fa5efd8ebf1
[  357.035828][T16241] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  357.035839][T16241] RSP: 002b:fffffffffffffe70 EFLAGS: 00010217
[  357.035848][T16241] RAX: 0000000000000000 RBX: 00007fa5effb6180 RCX: 00007fa5efd8ebe9
[  357.035855][T16241] RDX: 0000000000000000 RSI: fffffffffffffe70 RDI: 0000000000008000
[  357.035861][T16241] RBP: 00007fa5efe11e19 R08: 0000000000000000 R09: 0000000000000000
[  357.035868][T16241] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  357.035874][T16241] R13: 00007fa5effb6218 R14: 00007fa5effb6180 R15: 00007ffd77d330a8
[  357.035888][T16241]  </TASK>
[  357.188333][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  357.191251][T16241] memory: usage 299108kB, limit 307200kB, failcnt 21227
[  357.193399][T16241] memory+swap: usage 414348kB, limit 9007199254740988kB, failcnt 0
[  357.196018][T16241] kmem: usage 6016kB, limit 9007199254740988kB, failcnt 0
[  357.198232][T16241] Memory cgroup stats for /syz4:
[  357.198316][T16241] cache 298631168
[  357.201087][T16241] rss 155648
[  357.202191][T16241] rss_huge 0
[  357.203244][T16241] shmem 297836544
[  357.204438][T16241] mapped_file 667648
[  357.205739][T16241] dirty 0
[  357.206692][T16241] writeback 0
[  357.207772][T16241] workingset_refault_anon 57
[  357.209229][T16241] workingset_refault_file 179
[  357.210716][T16241] swap 118304768
[  357.211907][T16241] swapcached 131072
[  357.213231][T16241] pgpgin 115277
[  357.214353][T16241] pgpgout 42326
[  357.215570][T16241] pgfault 14593
[  357.216696][T16241] pgmajfault 77
[  357.217815][T16241] inactive_anon 208957440
[  357.219191][T16241] active_anon 88936448
[  357.220488][T16241] inactive_file 0
[  357.221655][T16241] active_file 794624
[  357.222905][T16241] unevictable 0
[  357.224105][T16241] hierarchical_memory_limit 314572800
[  357.249638][T16241] hierarchical_memsw_limit 9223372036854771712
[  357.251594][T16241] total_cache 298631168
[  357.252898][T16241] total_rss 155648
[  357.254092][T16241] total_rss_huge 0
[  357.255416][T16241] total_shmem 297836544
[  357.256737][T16241] total_mapped_file 667648
[  357.258172][T16241] total_dirty 0
[  357.259293][T16241] total_writeback 0
[  357.260528][T16241] total_workingset_refault_anon 57
[  357.262124][T16241] total_workingset_refault_file 179
[  357.263739][T16241] total_swap 118304768
[  357.265030][T16241] total_swapcached 131072
[  357.266445][T16241] total_pgpgin 115277
[  357.267697][T16241] total_pgpgout 42326
[  357.268956][T16241] total_pgfault 14593
[  357.270234][T16241] total_pgmajfault 77
[  357.271527][T16241] total_inactive_anon 208957440
[  357.273064][T16241] total_active_anon 88936448
[  357.274535][T16241] total_inactive_file 0
[  357.275897][T16241] total_active_file 794624
[  357.277291][T16241] total_unevictable 0
[  357.278541][T16241] anon_cost 0
[  357.279631][T16241] file_cost 0
[  357.280683][T16241] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.3941,pid=16239,uid=0
[  357.286381][T16241] Memory cgroup out of memory: Killed process 16239 (syz.4.3941) total-vm:98252kB, anon-rss:1092kB, file-rss:54032kB, shmem-rss:0kB, UID:0 pgtables:196kB oom_score_adj:0
[  357.357584][T16327] fuse: Bad value for 'fd'
[  357.390517][T16240] syz.4.3941 (16240) used greatest stack depth: 18952 bytes left
[  357.575792][   T53] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  357.607376][T16242] syz.4.3941 (16242) used greatest stack depth: 18776 bytes left
[  357.864936][T16236] syz.4.3941 (16236) used greatest stack depth: 18024 bytes left
[  357.885250][ T6020] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  358.200984][   T40] audit: type=1400 audit(1754712368.601:601): avc:  denied  { mounton } for  pid=16351 comm="syz.2.3977" path="/355/file0" dev="tmpfs" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  358.385794][    T9] usb 8-1: USB disconnect, device number 82
[  358.611650][T16371] netlink: 830 bytes leftover after parsing attributes in process `syz.3.3985'.
[  358.615815][T16371] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.3985'.
[  358.618282][T16367] FAULT_INJECTION: forcing a failure.
[  358.618282][T16367] name failslab, interval 1, probability 0, space 0, times 0
[  358.623737][T16367] CPU: 1 UID: 0 PID: 16367 Comm: syz.1.3983 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  358.623755][T16367] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  358.623762][T16367] Call Trace:
[  358.623767][T16367]  <TASK>
[  358.623772][T16367]  dump_stack_lvl+0x16c/0x1f0
[  358.623793][T16367]  should_fail_ex+0x512/0x640
[  358.623804][T16367]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  358.623824][T16367]  should_failslab+0xc2/0x120
[  358.623838][T16367]  __kmalloc_cache_noprof+0x6a/0x3e0
[  358.623855][T16367]  ? rcu_is_watching+0x12/0xc0
[  358.623869][T16367]  ? vhost_task_create+0xe5/0x2e0
[  358.623882][T16367]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  358.623897][T16367]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  358.623930][T16367]  vhost_task_create+0xe5/0x2e0
[  358.623941][T16367]  ? __pfx_vhost_task_create+0x10/0x10
[  358.623956][T16367]  ? __pfx_vhost_task_fn+0x10/0x10
[  358.623973][T16367]  kvm_mmu_post_init_vm+0x1b7/0x380
[  358.623987][T16367]  kvm_arch_vcpu_ioctl_run+0x66/0x1980
[  358.624003][T16367]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  358.624020][T16367]  kvm_vcpu_ioctl+0x5eb/0x1690
[  358.624035][T16367]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  358.624050][T16367]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  358.624064][T16367]  ? do_vfs_ioctl+0x128/0x14f0
[  358.624081][T16367]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  358.624097][T16367]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  358.624117][T16367]  ? hook_file_ioctl_common+0x145/0x410
[  358.624137][T16367]  ? selinux_file_ioctl+0x180/0x270
[  358.624150][T16367]  ? selinux_file_ioctl+0xb4/0x270
[  358.624164][T16367]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  358.624178][T16367]  __x64_sys_ioctl+0x18e/0x210
[  358.624196][T16367]  do_syscall_64+0xcd/0x4c0
[  358.624207][T16367]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.624218][T16367] RIP: 0033:0x7fac31f8ebe9
[  358.624228][T16367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  358.624239][T16367] RSP: 002b:00007fac32e7e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  358.624250][T16367] RAX: ffffffffffffffda RBX: 00007fac321b5fa0 RCX: 00007fac31f8ebe9
[  358.624257][T16367] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  358.624263][T16367] RBP: 00007fac32e7e090 R08: 0000000000000000 R09: 0000000000000000
[  358.624270][T16367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.624276][T16367] R13: 00007fac321b6038 R14: 00007fac321b5fa0 R15: 00007ffd0984d048
[  358.624290][T16367]  </TASK>
[  358.704413][    C1] hpet: Lost 4 RTC interrupts
[  358.716533][T16373] validate_nla: 65 callbacks suppressed
[  358.716545][T16373] netlink: 'syz.4.3993': attribute type 10 has an invalid length.
[  358.723373][T16373] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  358.728596][T16373] IPv6: NLM_F_CREATE should be specified when creating new route
[  358.811253][   T40] audit: type=1400 audit(1754712369.211:602): avc:  denied  { unmount } for  pid=11593 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  358.925265][ T1340] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  359.197787][T16395] FAULT_INJECTION: forcing a failure.
[  359.197787][T16395] name failslab, interval 1, probability 0, space 0, times 0
[  359.204690][T16395] CPU: 3 UID: 0 PID: 16395 Comm: syz.2.3995 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  359.204707][T16395] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.204714][T16395] Call Trace:
[  359.204720][T16395]  <TASK>
[  359.204725][T16395]  dump_stack_lvl+0x16c/0x1f0
[  359.204746][T16395]  should_fail_ex+0x512/0x640
[  359.204756][T16395]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  359.204770][T16395]  should_failslab+0xc2/0x120
[  359.204782][T16395]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  359.204794][T16395]  ? d_alloc_parallel+0x828/0x1480
[  359.204810][T16395]  ? proc_alloc_inode+0x25/0x200
[  359.204828][T16395]  ? __pfx_proc_alloc_inode+0x10/0x10
[  359.204842][T16395]  proc_alloc_inode+0x25/0x200
[  359.204856][T16395]  alloc_inode+0x64/0x240
[  359.204871][T16395]  new_inode+0x22/0x1c0
[  359.204888][T16395]  proc_pid_make_inode+0x22/0x160
[  359.204903][T16395]  proc_pid_make_base_inode.constprop.0+0x25/0x180
[  359.204921][T16395]  proc_pid_instantiate+0x51/0x1e0
[  359.204937][T16395]  proc_fill_cache+0x361/0x470
[  359.204951][T16395]  ? __pfx_proc_pid_instantiate+0x10/0x10
[  359.204967][T16395]  ? __pfx_proc_fill_cache+0x10/0x10
[  359.204981][T16395]  ? __pfx_vsnprintf+0x10/0x10
[  359.205013][T16395]  ? snprintf+0xc7/0x100
[  359.205036][T16395]  proc_pid_readdir+0x3c9/0x810
[  359.205056][T16395]  ? __pfx_proc_pid_readdir+0x10/0x10
[  359.205075][T16395]  ? down_read_killable+0x220/0x4b0
[  359.205088][T16395]  ? __pfx_down_read_killable+0x10/0x10
[  359.205099][T16395]  ? avc_policy_seqno+0x9/0x20
[  359.205117][T16395]  proc_root_readdir+0xa1/0xd0
[  359.205134][T16395]  iterate_dir+0x293/0xaf0
[  359.205153][T16395]  __x64_sys_getdents+0x13c/0x2b0
[  359.205163][T16395]  ? __pfx___x64_sys_getdents+0x10/0x10
[  359.205174][T16395]  ? __pfx_filldir+0x10/0x10
[  359.205191][T16395]  ? fput+0x9b/0xd0
[  359.205207][T16395]  do_syscall_64+0xcd/0x4c0
[  359.205218][T16395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.205229][T16395] RIP: 0033:0x7fea7638ebe9
[  359.205239][T16395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.205250][T16395] RSP: 002b:00007fea77179038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[  359.205261][T16395] RAX: ffffffffffffffda RBX: 00007fea765b5fa0 RCX: 00007fea7638ebe9
[  359.205267][T16395] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  359.205273][T16395] RBP: 00007fea77179090 R08: 0000000000000000 R09: 0000000000000000
[  359.205280][T16395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.205286][T16395] R13: 00007fea765b6038 R14: 00007fea765b5fa0 R15: 00007ffdf8eded48
[  359.205299][T16395]  </TASK>
[  359.326134][T16401] fuse: Bad value for 'fd'
[  359.463808][T16413] netlink: zone id is out of range
[  359.466380][T16413] netlink: zone id is out of range
[  359.468433][T16413] netlink: zone id is out of range
[  359.470466][T16413] netlink: zone id is out of range
[  359.472503][T16413] netlink: zone id is out of range
[  359.747570][ T1340] usb 8-1: new high-speed USB device number 83 using dummy_hcd
[  359.895239][ T1340] usb 8-1: Using ep0 maxpacket: 8
[  359.898231][ T1340] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  359.902148][ T1340] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  359.905918][ T1340] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  359.908929][ T1340] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  359.913080][ T1340] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  359.916776][ T1340] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  360.125258][ T1340] usb 8-1: GET_CAPABILITIES returned 0
[  360.127043][ T1340] usbtmc 8-1:16.0: can't read capabilities
[  360.239766][T16460] FAULT_INJECTION: forcing a failure.
[  360.239766][T16460] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  360.243871][T16460] CPU: 0 UID: 0 PID: 16460 Comm: syz.2.4021 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  360.243895][T16460] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  360.243902][T16460] Call Trace:
[  360.243906][T16460]  <TASK>
[  360.243911][T16460]  dump_stack_lvl+0x16c/0x1f0
[  360.243931][T16460]  should_fail_ex+0x512/0x640
[  360.243943][T16460]  _copy_from_user+0x2e/0xd0
[  360.243956][T16460]  kvm_vm_ioctl+0x1a36/0x4000
[  360.243974][T16460]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  360.243993][T16460]  ? kasan_quarantine_put+0x10a/0x240
[  360.244004][T16460]  ? lockdep_hardirqs_on+0x7c/0x110
[  360.244021][T16460]  ? find_held_lock+0x2b/0x80
[  360.244039][T16460]  ? tomoyo_path_number_perm+0x295/0x580
[  360.244054][T16460]  ? tomoyo_path_number_perm+0x18d/0x580
[  360.244067][T16460]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  360.244079][T16460]  ? find_held_lock+0x2b/0x80
[  360.244095][T16460]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  360.244109][T16460]  ? do_vfs_ioctl+0x128/0x14f0
[  360.244125][T16460]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  360.244141][T16460]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  360.244161][T16460]  ? hook_file_ioctl_common+0x145/0x410
[  360.244181][T16460]  ? selinux_file_ioctl+0x180/0x270
[  360.244193][T16460]  ? selinux_file_ioctl+0xb4/0x270
[  360.244207][T16460]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  360.244219][T16460]  __x64_sys_ioctl+0x18e/0x210
[  360.244235][T16460]  do_syscall_64+0xcd/0x4c0
[  360.244246][T16460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.244259][T16460] RIP: 0033:0x7fea7638ebe9
[  360.244268][T16460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  360.244278][T16460] RSP: 002b:00007fea77179038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  360.244289][T16460] RAX: ffffffffffffffda RBX: 00007fea765b5fa0 RCX: 00007fea7638ebe9
[  360.244296][T16460] RDX: 0000200000000040 RSI: 00000000c018aec0 RDI: 0000000000000004
[  360.244302][T16460] RBP: 00007fea77179090 R08: 0000000000000000 R09: 0000000000000000
[  360.244308][T16460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  360.244314][T16460] R13: 00007fea765b6038 R14: 00007fea765b5fa0 R15: 00007ffdf8eded48
[  360.244327][T16460]  </TASK>
[  360.812684][T16483] overlayfs: failed to clone upperpath
[  360.937631][   T40] audit: type=1400 audit(1754712371.341:603): avc:  denied  { map } for  pid=16490 comm="syz.4.4032" path="socket:[64950]" dev="sockfs" ino=64950 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  361.235488][T16513] FAULT_INJECTION: forcing a failure.
[  361.235488][T16513] name failslab, interval 1, probability 0, space 0, times 0
[  361.239934][T16513] CPU: 0 UID: 0 PID: 16513 Comm: syz.1.4039 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  361.239950][T16513] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.239956][T16513] Call Trace:
[  361.239961][T16513]  <TASK>
[  361.239966][T16513]  dump_stack_lvl+0x16c/0x1f0
[  361.239986][T16513]  should_fail_ex+0x512/0x640
[  361.239997][T16513]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  361.240021][T16513]  should_failslab+0xc2/0x120
[  361.240034][T16513]  __kmalloc_cache_noprof+0x6a/0x3e0
[  361.240050][T16513]  ? tomoyo_path_number_perm+0x18d/0x580
[  361.240063][T16513]  ? kvm_vcpu_ioctl+0x1101/0x1690
[  361.240079][T16513]  kvm_vcpu_ioctl+0x1101/0x1690
[  361.240095][T16513]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  361.240109][T16513]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  361.240124][T16513]  ? do_vfs_ioctl+0x128/0x14f0
[  361.240140][T16513]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  361.240157][T16513]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  361.240176][T16513]  ? hook_file_ioctl_common+0x145/0x410
[  361.240196][T16513]  ? selinux_file_ioctl+0x180/0x270
[  361.240210][T16513]  ? selinux_file_ioctl+0xb4/0x270
[  361.240223][T16513]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  361.240238][T16513]  __x64_sys_ioctl+0x18e/0x210
[  361.240255][T16513]  do_syscall_64+0xcd/0x4c0
[  361.240266][T16513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.240277][T16513] RIP: 0033:0x7fac31f8ebe9
[  361.240287][T16513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.240298][T16513] RSP: 002b:00007fac32e7e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  361.240308][T16513] RAX: ffffffffffffffda RBX: 00007fac321b5fa0 RCX: 00007fac31f8ebe9
[  361.240315][T16513] RDX: 0000200000000600 RSI: 0000000081a0ae8c RDI: 0000000000000005
[  361.240321][T16513] RBP: 00007fac32e7e090 R08: 0000000000000000 R09: 0000000000000000
[  361.240327][T16513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.240334][T16513] R13: 00007fac321b6038 R14: 00007fac321b5fa0 R15: 00007ffd0984d048
[  361.240347][T16513]  </TASK>
[  361.486576][   T40] audit: type=1400 audit(1754712371.891:604): avc:  denied  { view } for  pid=16519 comm="syz.2.4042" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  361.618796][T16527] fuse: Unknown parameter 'rootmodS'
[  361.991920][T16539] tmpfs: Unknown parameter 'grpquota_block_hÄÿé×Ú+ëL^’©—“²ardlimit'
[  362.054546][   T40] audit: type=1400 audit(1754712372.451:605): avc:  denied  { ioctl } for  pid=16547 comm="syz.4.4053" path="socket:[67702]" dev="sockfs" ino=67702 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  362.055398][ T6054] net_ratelimit: 342 callbacks suppressed
[  362.055408][ T6054] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  362.057752][T16549] bridge0: port 1(bridge_slave_0) entered disabled state
[  362.180869][T16560] FAULT_INJECTION: forcing a failure.
[  362.180869][T16560] name failslab, interval 1, probability 0, space 0, times 0
[  362.184632][T16560] CPU: 1 UID: 0 PID: 16560 Comm: syz.1.4057 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  362.184647][T16560] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  362.184654][T16560] Call Trace:
[  362.184658][T16560]  <TASK>
[  362.184663][T16560]  dump_stack_lvl+0x16c/0x1f0
[  362.184700][T16560]  should_fail_ex+0x512/0x640
[  362.184715][T16560]  ? fs_reclaim_acquire+0xae/0x150
[  362.184730][T16560]  ? tomoyo_encode2+0x100/0x3e0
[  362.184744][T16560]  should_failslab+0xc2/0x120
[  362.184757][T16560]  __kmalloc_noprof+0xd2/0x510
[  362.184772][T16560]  tomoyo_encode2+0x100/0x3e0
[  362.184787][T16560]  tomoyo_encode+0x29/0x50
[  362.184800][T16560]  tomoyo_realpath_from_path+0x18f/0x6e0
[  362.184816][T16560]  ? tomoyo_profile+0x47/0x60
[  362.184833][T16560]  tomoyo_path_number_perm+0x245/0x580
[  362.184844][T16560]  ? tomoyo_path_number_perm+0x237/0x580
[  362.184857][T16560]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  362.184870][T16560]  ? find_held_lock+0x2b/0x80
[  362.184895][T16560]  ? find_held_lock+0x2b/0x80
[  362.184908][T16560]  ? hook_file_ioctl_common+0x145/0x410
[  362.184926][T16560]  ? __fget_files+0x20e/0x3c0
[  362.184941][T16560]  security_file_ioctl+0x9b/0x240
[  362.184955][T16560]  __x64_sys_ioctl+0xb7/0x210
[  362.184973][T16560]  do_syscall_64+0xcd/0x4c0
[  362.184991][T16560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.185001][T16560] RIP: 0033:0x7fac31f8ebe9
[  362.185010][T16560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.185021][T16560] RSP: 002b:00007fac32e7e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  362.185032][T16560] RAX: ffffffffffffffda RBX: 00007fac321b5fa0 RCX: 00007fac31f8ebe9
[  362.185039][T16560] RDX: 0000200000000600 RSI: 000000008208ae63 RDI: 0000000000000004
[  362.185045][T16560] RBP: 00007fac32e7e090 R08: 0000000000000000 R09: 0000000000000000
[  362.185061][T16560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  362.185070][T16560] R13: 00007fac321b6038 R14: 00007fac321b5fa0 R15: 00007ffd0984d048
[  362.185084][T16560]  </TASK>
[  362.250572][    C1] hpet: Lost 3 RTC interrupts
[  362.253030][T16560] ERROR: Out of memory at tomoyo_realpath_from_path.
[  362.347350][   T40] audit: type=1400 audit(1754712372.751:606): avc:  denied  { listen } for  pid=16563 comm="syz.1.4059" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  362.368301][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  362.481162][ T6054] usb 8-1: USB disconnect, device number 83
[  362.531819][T16577] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4063'.
[  362.539206][T16577] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4063'.
[  362.586493][T16585] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4067'.
[  362.667502][T16590] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4069'.
[  362.671916][T16590] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4069'.
[  362.929218][   T40] audit: type=1400 audit(1754712373.331:607): avc:  denied  { mount } for  pid=16603 comm="syz.3.4074" name="/" dev="hugetlbfs" ino=65801 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  362.938337][   T40] audit: type=1400 audit(1754712373.331:608): avc:  denied  { unmount } for  pid=16603 comm="syz.3.4074" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  362.978993][T16611] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4077'.
[  362.982523][T16611] bridge_slave_1: left allmulticast mode
[  362.984760][T16611] bridge_slave_1: left promiscuous mode
[  362.989022][T16611] bridge0: port 2(bridge_slave_1) entered disabled state
[  362.993102][T16611] bridge_slave_0: left allmulticast mode
[  362.996999][T16611] bridge_slave_0: left promiscuous mode
[  362.999477][T16611] bridge0: port 1(bridge_slave_0) entered disabled state
[  363.085401][ T6054] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  363.294340][T16633] block device autoloading is deprecated and will be removed.
[  363.297634][T16628] FAULT_INJECTION: forcing a failure.
[  363.297634][T16628] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.301589][T16628] CPU: 3 UID: 0 PID: 16628 Comm: syz.3.4083 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  363.301605][T16628] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  363.301612][T16628] Call Trace:
[  363.301617][T16628]  <TASK>
[  363.301621][T16628]  dump_stack_lvl+0x16c/0x1f0
[  363.301642][T16628]  should_fail_ex+0x512/0x640
[  363.301655][T16628]  _copy_to_user+0x32/0xd0
[  363.301668][T16628]  simple_read_from_buffer+0xcb/0x170
[  363.301681][T16628]  proc_fail_nth_read+0x197/0x240
[  363.301694][T16628]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  363.301707][T16628]  ? rw_verify_area+0xcf/0x6c0
[  363.301724][T16628]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  363.301736][T16628]  vfs_read+0x1e1/0xc60
[  363.301749][T16628]  ? __pfx___mutex_lock+0x10/0x10
[  363.301759][T16628]  ? __pfx_vfs_read+0x10/0x10
[  363.301773][T16628]  ? __fget_files+0x20e/0x3c0
[  363.301790][T16628]  ksys_read+0x12a/0x250
[  363.301800][T16628]  ? __pfx_ksys_read+0x10/0x10
[  363.301811][T16628]  ? fput+0x9b/0xd0
[  363.301827][T16628]  do_syscall_64+0xcd/0x4c0
[  363.301839][T16628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.301850][T16628] RIP: 0033:0x7fcc78f8d5fc
[  363.301859][T16628] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  363.301870][T16628] RSP: 002b:00007fcc79e46030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  363.301880][T16628] RAX: ffffffffffffffda RBX: 00007fcc791b5fa0 RCX: 00007fcc78f8d5fc
[  363.301887][T16628] RDX: 000000000000000f RSI: 00007fcc79e460a0 RDI: 0000000000000005
[  363.301893][T16628] RBP: 00007fcc79e46090 R08: 0000000000000000 R09: 0000000000000000
[  363.301899][T16628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.301905][T16628] R13: 00007fcc791b6038 R14: 00007fcc791b5fa0 R15: 00007ffc36f3cf68
[  363.301918][T16628]  </TASK>
[  363.362416][    C3] vkms_vblank_simulate: vblank timer overrun
[  363.405173][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  363.437303][   T40] audit: type=1400 audit(1754712373.841:609): avc:  denied  { setattr } for  pid=11593 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  363.646680][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  364.125345][ T1340] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  364.445205][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  364.762741][T16665] FAULT_INJECTION: forcing a failure.
[  364.762741][T16665] name failslab, interval 1, probability 0, space 0, times 0
[  364.767596][T16665] CPU: 1 UID: 0 PID: 16665 Comm: syz.3.4094 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  364.767623][T16665] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  364.767631][T16665] Call Trace:
[  364.767635][T16665]  <TASK>
[  364.767640][T16665]  dump_stack_lvl+0x16c/0x1f0
[  364.767660][T16665]  should_fail_ex+0x512/0x640
[  364.767670][T16665]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  364.767689][T16665]  should_failslab+0xc2/0x120
[  364.767701][T16665]  __kmalloc_cache_noprof+0x6a/0x3e0
[  364.767718][T16665]  ? rcu_is_watching+0x12/0xc0
[  364.767732][T16665]  ? vhost_task_create+0xe5/0x2e0
[  364.767744][T16665]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  364.767759][T16665]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  364.767777][T16665]  vhost_task_create+0xe5/0x2e0
[  364.767787][T16665]  ? __pfx_vhost_task_create+0x10/0x10
[  364.767802][T16665]  ? __pfx_vhost_task_fn+0x10/0x10
[  364.767820][T16665]  kvm_mmu_post_init_vm+0x1b7/0x380
[  364.767834][T16665]  kvm_arch_vcpu_ioctl_run+0x66/0x1980
[  364.767850][T16665]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  364.767868][T16665]  kvm_vcpu_ioctl+0x5eb/0x1690
[  364.767883][T16665]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  364.767897][T16665]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  364.767912][T16665]  ? do_vfs_ioctl+0x128/0x14f0
[  364.767929][T16665]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  364.767945][T16665]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  364.767965][T16665]  ? hook_file_ioctl_common+0x145/0x410
[  364.767985][T16665]  ? selinux_file_ioctl+0x180/0x270
[  364.767998][T16665]  ? selinux_file_ioctl+0xb4/0x270
[  364.768012][T16665]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  364.768026][T16665]  __x64_sys_ioctl+0x18e/0x210
[  364.768043][T16665]  do_syscall_64+0xcd/0x4c0
[  364.768054][T16665]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.768065][T16665] RIP: 0033:0x7fcc78f8ebe9
[  364.768074][T16665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  364.768085][T16665] RSP: 002b:00007fcc79e46038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  364.768095][T16665] RAX: ffffffffffffffda RBX: 00007fcc791b5fa0 RCX: 00007fcc78f8ebe9
[  364.768102][T16665] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  364.768108][T16665] RBP: 00007fcc79e46090 R08: 0000000000000000 R09: 0000000000000000
[  364.768114][T16665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  364.768120][T16665] R13: 00007fcc791b6038 R14: 00007fcc791b5fa0 R15: 00007ffc36f3cf68
[  364.768134][T16665]  </TASK>
[  364.852143][    C1] hpet: Lost 4 RTC interrupts
[  364.987608][T16680] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4101'.
[  365.010334][T16684] FAULT_INJECTION: forcing a failure.
[  365.010334][T16684] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  365.014437][T16684] CPU: 0 UID: 0 PID: 16684 Comm: syz.3.4102 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  365.014452][T16684] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  365.014459][T16684] Call Trace:
[  365.014463][T16684]  <TASK>
[  365.014468][T16684]  dump_stack_lvl+0x16c/0x1f0
[  365.014488][T16684]  should_fail_ex+0x512/0x640
[  365.014501][T16684]  _copy_from_user+0x2e/0xd0
[  365.014514][T16684]  kvm_arch_vcpu_ioctl+0xee9/0x52d0
[  365.014527][T16684]  ? kvm_arch_vcpu_ioctl+0xebd/0x52d0
[  365.014542][T16684]  ? stack_trace_save+0x8e/0xc0
[  365.014558][T16684]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  365.014570][T16684]  ? __lock_acquire+0xb97/0x1ce0
[  365.014586][T16684]  ? __set_test_and_free+0x675/0x8f0
[  365.014603][T16684]  ? kasan_save_stack+0x42/0x60
[  365.014614][T16684]  ? kasan_save_stack+0x33/0x60
[  365.014624][T16684]  ? kasan_save_track+0x14/0x30
[  365.014633][T16684]  ? kasan_save_free_info+0x3b/0x60
[  365.014648][T16684]  ? __kasan_slab_free+0x60/0x70
[  365.014658][T16684]  ? kfree+0x2b4/0x4d0
[  365.014673][T16684]  ? tomoyo_path_number_perm+0x470/0x580
[  365.014687][T16684]  ? __lock_acquire+0xb97/0x1ce0
[  365.014708][T16684]  ? __mutex_trylock_common+0xe9/0x250
[  365.014726][T16684]  ? __pfx___mutex_trylock_common+0x10/0x10
[  365.014743][T16684]  ? __pfx___might_resched+0x10/0x10
[  365.014758][T16684]  ? rcu_is_watching+0x12/0xc0
[  365.014772][T16684]  ? trace_contention_end+0xdd/0x130
[  365.014782][T16684]  ? __mutex_lock+0x1c4/0x10b0
[  365.014815][T16684]  ? kasan_quarantine_put+0x10a/0x240
[  365.014829][T16684]  ? __pfx___mutex_lock+0x10/0x10
[  365.014843][T16684]  ? tomoyo_path_number_perm+0x18d/0x580
[  365.014857][T16684]  ? kvm_vcpu_ioctl+0x1236/0x1690
[  365.014871][T16684]  kvm_vcpu_ioctl+0x1236/0x1690
[  365.014886][T16684]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  365.014901][T16684]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  365.014914][T16684]  ? do_vfs_ioctl+0x128/0x14f0
[  365.014931][T16684]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  365.014947][T16684]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  365.014967][T16684]  ? hook_file_ioctl_common+0x145/0x410
[  365.014991][T16684]  ? selinux_file_ioctl+0x180/0x270
[  365.015003][T16684]  ? selinux_file_ioctl+0xb4/0x270
[  365.015017][T16684]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  365.015032][T16684]  __x64_sys_ioctl+0x18e/0x210
[  365.015049][T16684]  do_syscall_64+0xcd/0x4c0
[  365.015073][T16684]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.015085][T16684] RIP: 0033:0x7fcc78f8ebe9
[  365.015094][T16684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  365.015104][T16684] RSP: 002b:00007fcc79e46038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  365.015115][T16684] RAX: ffffffffffffffda RBX: 00007fcc791b5fa0 RCX: 00007fcc78f8ebe9
[  365.015121][T16684] RDX: 0000200000000200 RSI: 000000004008ae89 RDI: 0000000000000005
[  365.015128][T16684] RBP: 00007fcc79e46090 R08: 0000000000000000 R09: 0000000000000000
[  365.015134][T16684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  365.015140][T16684] R13: 00007fcc791b6038 R14: 00007fcc791b5fa0 R15: 00007ffc36f3cf68
[  365.015154][T16684]  </TASK>
[  365.175259][ T6054] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  365.448178][   T40] audit: type=1400 audit(1754712375.851:610): avc:  denied  { getopt } for  pid=16703 comm="syz.4.4111" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  365.448417][T16704] fuse: Bad value for 'fd'
[  365.485407][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  366.138043][T16717] FAULT_INJECTION: forcing a failure.
[  366.138043][T16717] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  366.142450][T16717] CPU: 3 UID: 0 PID: 16717 Comm: syz.3.4116 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  366.142467][T16717] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  366.142474][T16717] Call Trace:
[  366.142479][T16717]  <TASK>
[  366.142484][T16717]  dump_stack_lvl+0x16c/0x1f0
[  366.142504][T16717]  should_fail_ex+0x512/0x640
[  366.142517][T16717]  should_fail_alloc_page+0xe7/0x130
[  366.142532][T16717]  prepare_alloc_pages+0x3c2/0x610
[  366.142547][T16717]  ? stack_depot_save_flags+0x29/0x9c0
[  366.142559][T16717]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  366.142571][T16717]  ? kasan_save_stack+0x33/0x60
[  366.142582][T16717]  ? kasan_save_track+0x14/0x30
[  366.142591][T16717]  ? __kasan_slab_alloc+0x89/0x90
[  366.142602][T16717]  ? kmem_cache_alloc_noprof+0x1cb/0x3b0
[  366.142612][T16717]  ? ptlock_alloc+0x1f/0x70
[  366.142627][T16717]  ? pte_alloc_one+0x82/0x3a0
[  366.142639][T16717]  ? __pte_alloc+0x6d/0x3c0
[  366.142650][T16717]  ? do_pte_missing+0x285a/0x3ba0
[  366.142665][T16717]  ? __handle_mm_fault+0x152a/0x2a50
[  366.142680][T16717]  ? handle_mm_fault+0x589/0xd10
[  366.142695][T16717]  ? do_user_addr_fault+0x7a6/0x1370
[  366.142705][T16717]  ? exc_page_fault+0x5c/0xb0
[  366.142719][T16717]  ? asm_exc_page_fault+0x26/0x30
[  366.142729][T16717]  ? __put_user_nocheck_4+0x3/0x10
[  366.142745][T16717]  ? ep_send_events+0x2fe/0xc40
[  366.142756][T16717]  ? do_epoll_wait+0x91b/0x1040
[  366.142767][T16717]  ? do_compat_epoll_pwait.part.0+0x26/0x1d0
[  366.142794][T16717]  ? __x64_sys_epoll_pwait+0x20b/0x320
[  366.142808][T16717]  ? do_syscall_64+0xcd/0x4c0
[  366.142818][T16717]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  366.142836][T16717]  ? __lock_acquire+0xb97/0x1ce0
[  366.142854][T16717]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  366.142868][T16717]  ? policy_nodemask+0xea/0x4e0
[  366.142882][T16717]  alloc_pages_mpol+0x1fb/0x550
[  366.142895][T16717]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  366.142907][T16717]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  366.142918][T16717]  ? find_held_lock+0x2b/0x80
[  366.142931][T16717]  ? find_held_lock+0x2b/0x80
[  366.142945][T16717]  folio_alloc_mpol_noprof+0x36/0x2f0
[  366.142960][T16717]  vma_alloc_folio_noprof+0xed/0x1e0
[  366.142975][T16717]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  366.142993][T16717]  do_pte_missing+0x2230/0x3ba0
[  366.143014][T16717]  __handle_mm_fault+0x152a/0x2a50
[  366.143036][T16717]  ? mt_find+0x3ef/0xa30
[  366.143047][T16717]  ? __pfx___handle_mm_fault+0x10/0x10
[  366.143063][T16717]  ? __pfx_mt_find+0x10/0x10
[  366.143080][T16717]  ? find_vma+0xbf/0x140
[  366.143092][T16717]  ? __pfx_find_vma+0x10/0x10
[  366.143105][T16717]  handle_mm_fault+0x589/0xd10
[  366.143122][T16717]  ? __bpf_trace_exceptions+0x1/0x40
[  366.143140][T16717]  do_user_addr_fault+0x7a6/0x1370
[  366.143152][T16717]  ? rcu_is_watching+0x12/0xc0
[  366.143167][T16717]  exc_page_fault+0x5c/0xb0
[  366.143183][T16717]  asm_exc_page_fault+0x26/0x30
[  366.143193][T16717] RIP: 0010:__put_user_nocheck_4+0x3/0x10
[  366.143210][T16717] Code: d9 0f 01 cb 89 01 31 c9 0f 01 ca e9 07 6d 03 00 0f 1f 80 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90
[  366.143221][T16717] RSP: 0018:ffffc9000468fb90 EFLAGS: 00050246
[  366.143230][T16717] RAX: 0000000000000001 RBX: 0000000000000001 RCX: 00002000008c9fc4
[  366.143236][T16717] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff8880317aa8ac
[  366.143243][T16717] RBP: ffff8880317aa840 R08: 0000000000000005 R09: 0000000000000000
[  366.143249][T16717] R10: 0000000000000001 R11: 0000000000000000 R12: dffffc0000000000
[  366.143256][T16717] R13: ffff8880317aa858 R14: ffffc9000468fc00 R15: ffffc9000468fc18
[  366.143269][T16717]  ep_send_events+0x2fe/0xc40
[  366.143285][T16717]  ? __pfx_ep_send_events+0x10/0x10
[  366.143299][T16717]  ? rcu_is_watching+0x12/0xc0
[  366.143314][T16717]  do_epoll_wait+0x91b/0x1040
[  366.143330][T16717]  ? __pfx_do_epoll_wait+0x10/0x10
[  366.143343][T16717]  ? __pfx_ep_autoremove_wake_function+0x10/0x10
[  366.143356][T16717]  ? set_user_sigmask+0x21b/0x2b0
[  366.143369][T16717]  ? __pfx_set_user_sigmask+0x10/0x10
[  366.143382][T16717]  do_compat_epoll_pwait.part.0+0x26/0x1d0
[  366.143396][T16717]  __x64_sys_epoll_pwait+0x20b/0x320
[  366.143411][T16717]  ? __pfx___x64_sys_epoll_pwait+0x10/0x10
[  366.143423][T16717]  ? ksys_write+0x1ac/0x250
[  366.143434][T16717]  ? __pfx_ksys_write+0x10/0x10
[  366.143449][T16717]  do_syscall_64+0xcd/0x4c0
[  366.143460][T16717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.143470][T16717] RIP: 0033:0x7fcc78f8ebe9
[  366.143478][T16717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.143488][T16717] RSP: 002b:00007fcc79e46038 EFLAGS: 00000246 ORIG_RAX: 0000000000000119
[  366.143497][T16717] RAX: ffffffffffffffda RBX: 00007fcc791b5fa0 RCX: 00007fcc78f8ebe9
[  366.143503][T16717] RDX: 0000000000000001 RSI: 00002000008c9fc4 RDI: 0000000000000005
[  366.143510][T16717] RBP: 00007fcc79e46090 R08: 0000000000000000 R09: 0000000000000000
[  366.143516][T16717] R10: fffffffffffffff7 R11: 0000000000000246 R12: 0000000000000001
[  366.143522][T16717] R13: 00007fcc791b6038 R14: 00007fcc791b5fa0 R15: 00007ffc36f3cf68
[  366.143535][T16717]  </TASK>
[  366.305892][    C3] vkms_vblank_simulate: vblank timer overrun
[  366.308552][ T6054] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  366.343767][T16720] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=16720 comm=syz.3.4117
[  366.511390][T16725] netlink: 'syz.3.4119': attribute type 10 has an invalid length.
[  366.515862][T16725] hsr_slave_1: left promiscuous mode
[  366.603467][   T40] audit: type=1400 audit(1754712377.001:611): avc:  denied  { map } for  pid=16733 comm="syz.3.4123" path="/dev/sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  366.610863][   T40] audit: type=1400 audit(1754712377.001:612): avc:  denied  { execute } for  pid=16733 comm="syz.3.4123" path="/dev/sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  366.625524][T16738] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4125'.
[  366.630358][T16738] overlayfs: empty lowerdir
[  367.335433][ T1340] net_ratelimit: 2 callbacks suppressed
[  367.335445][ T1340] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  367.565171][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  367.603243][T16764] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  367.791280][T16766] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4137'.
[  367.795134][T16766] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  367.799480][T16766] netlink: 'syz.4.4137': attribute type 11 has an invalid length.
[  367.801999][T16766] netlink: 'syz.4.4137': attribute type 5 has an invalid length.
[  368.010093][   T40] audit: type=1400 audit(1754712378.411:613): avc:  denied  { execute } for  pid=16770 comm="syz.2.4139" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=66032 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  368.367499][ T6054] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  368.475657][T16778] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4141'.
[  368.479395][T16778] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=16778 comm=syz.3.4141
[  369.415221][ T6054] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  369.673844][   T40] audit: type=1400 audit(1754712380.071:614): avc:  denied  { getopt } for  pid=16794 comm="syz.4.4147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  369.726947][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  369.968609][T16824] @: renamed from vlan0 (while UP)
[  370.059135][   T40] audit: type=1400 audit(1754712380.461:615): avc:  denied  { read } for  pid=16832 comm="syz.4.4162" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  370.447698][ T6054] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  370.794258][T16843] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  370.799395][T16843] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  371.025941][   T34] usb 7-1: new high-speed USB device number 93 using dummy_hcd
[  371.195124][   T34] usb 7-1: Using ep0 maxpacket: 16
[  371.198182][   T34] usb 7-1: config index 0 descriptor too short (expected 65042, got 18)
[  371.200821][   T34] usb 7-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config
[  371.204041][   T34] usb 7-1: config 0 has no interfaces?
[  371.207610][   T34] usb 7-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  371.210479][   T34] usb 7-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  371.213069][   T34] usb 7-1: Product: syz
[  371.214454][   T34] usb 7-1: Manufacturer: syz
[  371.216130][   T34] usb 7-1: SerialNumber: syz
[  371.221561][   T34] usb 7-1: config 0 descriptor??
[  371.427198][   T34] usb 7-1: USB disconnect, device number 93
[  371.481776][T16852] netlink: 172 bytes leftover after parsing attributes in process `syz.3.4166'.
[  371.486696][ T6054] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  371.765496][    T9] usb 8-1: new high-speed USB device number 84 using dummy_hcd
[  371.925177][    T9] usb 8-1: Using ep0 maxpacket: 16
[  371.928927][    T9] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  371.935169][    T9] usb 8-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  371.938536][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  371.942090][    T9] usb 8-1: config 0 descriptor??
[  371.947118][    T9] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  371.969746][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  371.981061][T16858] FAULT_INJECTION: forcing a failure.
[  371.981061][T16858] name failslab, interval 1, probability 0, space 0, times 0
[  371.985285][T16858] CPU: 2 UID: 0 PID: 16858 Comm: syz.2.4169 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  371.985309][T16858] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  371.985321][T16858] Call Trace:
[  371.985328][T16858]  <TASK>
[  371.985336][T16858]  dump_stack_lvl+0x16c/0x1f0
[  371.985367][T16858]  should_fail_ex+0x512/0x640
[  371.985387][T16858]  should_failslab+0xc2/0x120
[  371.985409][T16858]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  371.985426][T16858]  ? lock_acquire+0x179/0x350
[  371.985451][T16858]  ? dst_alloc+0x99/0x1a0
[  371.985478][T16858]  ? __pfx_ip6_dst_gc+0x10/0x10
[  371.985494][T16858]  dst_alloc+0x99/0x1a0
[  371.985519][T16858]  ip6_pol_route+0x96b/0x1230
[  371.985547][T16858]  ? __pfx_ip6_pol_route+0x10/0x10
[  371.985572][T16858]  ? ip6_addr_string+0x29e/0x350
[  371.985618][T16858]  ? __pfx_ip6_pol_route_output+0x10/0x10
[  371.985641][T16858]  fib6_rule_lookup+0x386/0x720
[  371.985666][T16858]  ? __pfx_fib6_rule_lookup+0x10/0x10
[  371.985697][T16858]  ? dev_get_by_index_rcu+0x102/0x140
[  371.985723][T16858]  ip6_route_output_flags+0x1d0/0x640
[  371.985748][T16858]  ip6_dst_lookup_tail.constprop.0+0xa52/0x2140
[  371.985773][T16858]  ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0
[  371.985797][T16858]  ? __pfx_ip6_dst_lookup_tail.constprop.0+0x10/0x10
[  371.985823][T16858]  ? __lock_acquire+0x62e/0x1ce0
[  371.985853][T16858]  ? __pfx_vsnprintf+0x10/0x10
[  371.985885][T16858]  ip6_dst_lookup_flow+0x99/0x1d0
[  371.985908][T16858]  ? __pfx_ip6_dst_lookup_flow+0x10/0x10
[  371.985938][T16858]  ip6_sk_dst_lookup_flow+0x56d/0x970
[  371.985956][T16858]  ? udpv6_sendmsg+0x1605/0x2d20
[  371.985967][T16858]  ? selinux_sk_getsecid+0x7c/0xd0
[  371.985986][T16858]  udpv6_sendmsg+0x19ef/0x2d20
[  371.985997][T16858]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  371.986019][T16858]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  371.986033][T16858]  ? __lock_acquire+0xb97/0x1ce0
[  371.986054][T16858]  ? reacquire_held_locks+0xcd/0x1f0
[  371.986076][T16858]  ? rcu_is_watching+0x12/0xc0
[  371.986090][T16858]  ? __local_bh_enable_ip+0xa4/0x120
[  371.986105][T16858]  ? lockdep_hardirqs_on+0x7c/0x110
[  371.986121][T16858]  ? inet_autobind+0x145/0x1a0
[  371.986132][T16858]  ? __local_bh_enable_ip+0xa4/0x120
[  371.986145][T16858]  ? inet_autobind+0x14a/0x1a0
[  371.986161][T16858]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  371.986173][T16858]  ? inet6_sendmsg+0x105/0x140
[  371.986183][T16858]  inet6_sendmsg+0x105/0x140
[  371.986195][T16858]  ____sys_sendmsg+0x705/0xc70
[  371.986208][T16858]  ? copy_msghdr_from_user+0x10a/0x160
[  371.986224][T16858]  ? __pfx_____sys_sendmsg+0x10/0x10
[  371.986238][T16858]  ? __pfx__kstrtoull+0x10/0x10
[  371.986257][T16858]  ___sys_sendmsg+0x134/0x1d0
[  371.986274][T16858]  ? __pfx____sys_sendmsg+0x10/0x10
[  371.986296][T16858]  ? find_held_lock+0x2b/0x80
[  371.986318][T16858]  __sys_sendmmsg+0x200/0x420
[  371.986335][T16858]  ? __pfx___sys_sendmmsg+0x10/0x10
[  371.986356][T16858]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  371.986379][T16858]  ? fput+0x9b/0xd0
[  371.986394][T16858]  ? ksys_write+0x1ac/0x250
[  371.986404][T16858]  ? __pfx_ksys_write+0x10/0x10
[  371.986417][T16858]  __x64_sys_sendmmsg+0x9c/0x100
[  371.986433][T16858]  ? lockdep_hardirqs_on+0x7c/0x110
[  371.986449][T16858]  do_syscall_64+0xcd/0x4c0
[  371.986460][T16858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.986471][T16858] RIP: 0033:0x7fea7638ebe9
[  371.986480][T16858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.986490][T16858] RSP: 002b:00007fea77179038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  371.986500][T16858] RAX: ffffffffffffffda RBX: 00007fea765b5fa0 RCX: 00007fea7638ebe9
[  371.986507][T16858] RDX: 0000000000000001 RSI: 0000200000000640 RDI: 0000000000000003
[  371.986513][T16858] RBP: 00007fea77179090 R08: 0000000000000000 R09: 0000000000000000
[  371.986519][T16858] R10: 0000000000000891 R11: 0000000000000246 R12: 0000000000000001
[  371.986526][T16858] R13: 00007fea765b6038 R14: 00007fea765b5fa0 R15: 00007ffdf8eded48
[  371.986539][T16858]  </TASK>
[  372.536943][ T6020] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  372.775161][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  373.005137][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  373.575318][ T6054] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  374.045194][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  374.521001][   T10] usb 8-1: USB disconnect, device number 84
[  374.541689][T16898] FAULT_INJECTION: forcing a failure.
[  374.541689][T16898] name failslab, interval 1, probability 0, space 0, times 0
[  374.546841][T16898] CPU: 0 UID: 0 PID: 16898 Comm: syz.3.4183 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  374.546857][T16898] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  374.546863][T16898] Call Trace:
[  374.546867][T16898]  <TASK>
[  374.546872][T16898]  dump_stack_lvl+0x16c/0x1f0
[  374.546894][T16898]  should_fail_ex+0x512/0x640
[  374.546906][T16898]  should_failslab+0xc2/0x120
[  374.546920][T16898]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  374.546931][T16898]  ? __lock_acquire+0x62e/0x1ce0
[  374.546947][T16898]  ? __alloc_skb+0x2b2/0x380
[  374.546965][T16898]  __alloc_skb+0x2b2/0x380
[  374.546984][T16898]  ? __pfx___alloc_skb+0x10/0x10
[  374.547004][T16898]  _sctp_make_chunk+0x51/0x270
[  374.547019][T16898]  sctp_make_control+0x2f/0x2d0
[  374.547033][T16898]  sctp_make_heartbeat+0xa7/0x2e0
[  374.547048][T16898]  ? __pfx_sctp_make_heartbeat+0x10/0x10
[  374.547061][T16898]  ? is_bpf_text_address+0x94/0x1a0
[  374.547077][T16898]  ? sctp_sm_lookup_event+0x15b/0x570
[  374.547090][T16898]  ? __pfx_sctp_sm_lookup_event+0x10/0x10
[  374.547105][T16898]  ? __pfx_sctp_pname+0x10/0x10
[  374.547118][T16898]  sctp_sf_do_prm_requestheartbeat+0x27/0x220
[  374.547130][T16898]  ? __pfx_sctp_pname+0x10/0x10
[  374.547143][T16898]  sctp_do_sm+0x17e/0x5c80
[  374.547155][T16898]  ? __pfx_stack_trace_save+0x10/0x10
[  374.547171][T16898]  ? stack_depot_save_flags+0x29/0x9c0
[  374.547181][T16898]  ? __lock_acquire+0xb97/0x1ce0
[  374.547196][T16898]  ? _parse_integer_limit+0x17f/0x1d0
[  374.547212][T16898]  ? __pfx_sctp_do_sm+0x10/0x10
[  374.547223][T16898]  ? kasan_save_stack+0x33/0x60
[  374.547233][T16898]  ? kasan_save_track+0x14/0x30
[  374.547243][T16898]  ? __kasan_kmalloc+0xaa/0xb0
[  374.547252][T16898]  ? __kmalloc_node_track_caller_noprof+0x221/0x510
[  374.547264][T16898]  ? sctp_setsockopt+0x4ce/0xb870
[  374.547287][T16898]  ? find_held_lock+0x2b/0x80
[  374.547301][T16898]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  374.547320][T16898]  sctp_primitive_REQUESTHEARTBEAT+0x9f/0xd0
[  374.547335][T16898]  sctp_apply_peer_addr_params+0x113/0x3400
[  374.547354][T16898]  sctp_setsockopt+0x7401/0xb870
[  374.547365][T16898]  ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10
[  374.547382][T16898]  ? __pfx_sctp_setsockopt+0x10/0x10
[  374.547393][T16898]  ? find_held_lock+0x2b/0x80
[  374.547408][T16898]  ? selinux_socket_setsockopt+0x6a/0x80
[  374.547419][T16898]  ? sock_common_setsockopt+0x2e/0xf0
[  374.547430][T16898]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  374.547443][T16898]  do_sock_setsockopt+0xf0/0x1d0
[  374.547455][T16898]  __sys_setsockopt+0x1a0/0x230
[  374.547473][T16898]  __x64_sys_setsockopt+0xbd/0x160
[  374.547487][T16898]  ? do_syscall_64+0x91/0x4c0
[  374.547496][T16898]  ? lockdep_hardirqs_on+0x7c/0x110
[  374.547513][T16898]  do_syscall_64+0xcd/0x4c0
[  374.547523][T16898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.547534][T16898] RIP: 0033:0x7fcc78f8ebe9
[  374.547543][T16898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  374.547553][T16898] RSP: 002b:00007fcc79e46038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  374.547564][T16898] RAX: ffffffffffffffda RBX: 00007fcc791b5fa0 RCX: 00007fcc78f8ebe9
[  374.547571][T16898] RDX: 0000000000000009 RSI: 0000000000000084 RDI: 0000000000000003
[  374.547577][T16898] RBP: 00007fcc79e46090 R08: 000000000000009c R09: 0000000000000000
[  374.547583][T16898] R10: 0000200000000a00 R11: 0000000000000246 R12: 0000000000000001
[  374.547589][T16898] R13: 00007fcc791b6038 R14: 00007fcc791b5fa0 R15: 00007ffc36f3cf68
[  374.547602][T16898]  </TASK>
[  374.607880][ T6020] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  374.698118][T16904] Illegal XDP return value 910911234 on prog  (id 237) dev syz_tun, expect packet loss!
[  374.962114][T16924] FAULT_INJECTION: forcing a failure.
[  374.962114][T16924] name failslab, interval 1, probability 0, space 0, times 0
[  374.967326][T16924] CPU: 1 UID: 0 PID: 16924 Comm: syz.3.4192 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  374.967354][T16924] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  374.967361][T16924] Call Trace:
[  374.967366][T16924]  <TASK>
[  374.967370][T16924]  dump_stack_lvl+0x16c/0x1f0
[  374.967391][T16924]  should_fail_ex+0x512/0x640
[  374.967401][T16924]  ? fs_reclaim_acquire+0xae/0x150
[  374.967417][T16924]  should_failslab+0xc2/0x120
[  374.967430][T16924]  __kmalloc_cache_noprof+0x6a/0x3e0
[  374.967447][T16924]  ? md_ioctl+0x81a/0x4650
[  374.967463][T16924]  md_ioctl+0x81a/0x4650
[  374.967477][T16924]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  374.967490][T16924]  ? __pfx_md_ioctl+0x10/0x10
[  374.967503][T16924]  ? do_vfs_ioctl+0x128/0x14f0
[  374.967520][T16924]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  374.967536][T16924]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  374.967556][T16924]  ? __pfx_md_ioctl+0x10/0x10
[  374.967569][T16924]  blkdev_ioctl+0x277/0x6d0
[  374.967584][T16924]  ? __pfx_blkdev_ioctl+0x10/0x10
[  374.967596][T16924]  ? selinux_file_ioctl+0x180/0x270
[  374.967609][T16924]  ? selinux_file_ioctl+0xb4/0x270
[  374.967623][T16924]  ? __pfx_blkdev_ioctl+0x10/0x10
[  374.967637][T16924]  __x64_sys_ioctl+0x18e/0x210
[  374.967655][T16924]  do_syscall_64+0xcd/0x4c0
[  374.967666][T16924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.967677][T16924] RIP: 0033:0x7fcc78f8ebe9
[  374.967686][T16924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  374.967748][T16924] RSP: 002b:00007fcc79e46038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  374.967758][T16924] RAX: ffffffffffffffda RBX: 00007fcc791b5fa0 RCX: 00007fcc78f8ebe9
[  374.967765][T16924] RDX: 0000000000000007 RSI: 0000000090000915 RDI: 0000000000000004
[  374.967772][T16924] RBP: 00007fcc79e46090 R08: 0000000000000000 R09: 0000000000000000
[  374.967778][T16924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  374.967785][T16924] R13: 00007fcc791b6038 R14: 00007fcc791b5fa0 R15: 00007ffc36f3cf68
[  374.967799][T16924]  </TASK>
[  374.967952][ T6020] ------------[ cut here ]------------
[  374.970363][T16926] lo speed is unknown, defaulting to 1000
[  374.972746][ T6020] refcount_t: underflow; use-after-free.
[  374.973011][ T6020] WARNING: CPU: 1 PID: 6020 at lib/refcount.c:28 refcount_warn_saturate+0x14a/0x210
[  375.064911][ T6020] Modules linked in:
[  375.067081][ T6020] CPU: 1 UID: 0 PID: 6020 Comm: kworker/1:4 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  375.073842][ T6020] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  375.078528][ T6020] Workqueue: md_misc mddev_delayed_delete
[  375.080795][ T6020] RIP: 0010:refcount_warn_saturate+0x14a/0x210
[  375.083248][ T6020] Code: ff 89 de e8 a8 f0 d8 fc 84 db 0f 85 66 ff ff ff e8 bb f5 d8 fc c6 05 fc c2 b0 0b 01 90 48 c7 c7 00 80 15 8c e8 47 94 97 fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 98 f5 d8 fc 0f b6 1d d7 c2 b0 0b 31
[  375.091474][ T6020] RSP: 0018:ffffc90003eefc10 EFLAGS: 00010286
[  375.093899][ T6020] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817a3358
[  375.095242][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  375.097097][ T6020] RDX: ffff888029c52440 RSI: ffffffff817a3365 RDI: 0000000000000001
[  375.103221][ T6020] RBP: ffff88804c8be130 R08: 0000000000000001 R09: 0000000000000000
[  375.106454][ T6020] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88804c8be134
[  375.109558][ T6020] R13: dffffc0000000000 R14: ffff88804c8be130 R15: ffffc90003eefd10
[  375.112676][ T6020] FS:  0000000000000000(0000) GS:ffff8880d67c4000(0000) knlGS:0000000000000000
[  375.116246][ T6020] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  375.119280][ T6020] CR2: 00007fcc79e24f98 CR3: 000000000e380000 CR4: 0000000000352ef0
[  375.122371][ T6020] Call Trace:
[  375.123727][ T6020]  <TASK>
[  375.124928][ T6020]  kobject_put+0x230/0x5a0
[  375.126816][ T6020]  process_one_work+0x9cc/0x1b70
[  375.128767][ T6020]  ? __pfx_process_one_work+0x10/0x10
[  375.130917][ T6020]  ? assign_work+0x1a0/0x250
[  375.133171][ T6020]  worker_thread+0x6c8/0xf10
[  375.135007][ T6020]  ? __kthread_parkme+0x19e/0x250
[  375.137078][ T6020]  ? __pfx_worker_thread+0x10/0x10
[  375.139107][ T6020]  kthread+0x3c5/0x780
[  375.140787][ T6020]  ? __pfx_kthread+0x10/0x10
[  375.142623][ T6020]  ? rcu_is_watching+0x12/0xc0
[  375.144578][ T6020]  ? __pfx_kthread+0x10/0x10
[  375.146488][ T6020]  ret_from_fork+0x5d4/0x6f0
[  375.148759][ T6020]  ? __pfx_kthread+0x10/0x10
[  375.150623][ T6020]  ret_from_fork_asm+0x1a/0x30
[  375.152571][ T6020]  </TASK>
[  375.153819][ T6020] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  375.156700][ T6020] CPU: 1 UID: 0 PID: 6020 Comm: kworker/1:4 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  375.161284][ T6020] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  375.165521][ T6020] Workqueue: md_misc mddev_delayed_delete
[  375.167782][ T6020] Call Trace:
[  375.169123][ T6020]  <TASK>
[  375.170308][ T6020]  dump_stack_lvl+0x3d/0x1f0
[  375.172164][ T6020]  vpanic+0x6e8/0x7a0
[  375.173763][ T6020]  ? __pfx_vpanic+0x10/0x10
[  375.175586][ T6020]  ? refcount_warn_saturate+0x14a/0x210
[  375.177768][ T6020]  panic+0xca/0xd0
[  375.179272][ T6020]  ? __pfx_panic+0x10/0x10
[  375.181071][ T6020]  ? check_panic_on_warn+0x1f/0xb0
[  375.183114][ T6020]  check_panic_on_warn+0xab/0xb0
[  375.185097][ T6020]  __warn+0xf6/0x3c0
[  375.186658][ T6020]  ? __pfx_vprintk_emit+0x10/0x10
[  375.188665][ T6020]  ? refcount_warn_saturate+0x14a/0x210
[  375.190889][ T6020]  report_bug+0x3c3/0x580
[  375.192622][ T6020]  ? refcount_warn_saturate+0x14a/0x210
[  375.194811][ T6020]  handle_bug+0x184/0x210
[  375.196523][ T6020]  exc_invalid_op+0x17/0x50
[  375.198335][ T6020]  asm_exc_invalid_op+0x1a/0x20
[  375.200293][ T6020] RIP: 0010:refcount_warn_saturate+0x14a/0x210
[  375.202743][ T6020] Code: ff 89 de e8 a8 f0 d8 fc 84 db 0f 85 66 ff ff ff e8 bb f5 d8 fc c6 05 fc c2 b0 0b 01 90 48 c7 c7 00 80 15 8c e8 47 94 97 fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 98 f5 d8 fc 0f b6 1d d7 c2 b0 0b 31
[  375.210293][ T6020] RSP: 0018:ffffc90003eefc10 EFLAGS: 00010286
[  375.212736][ T6020] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817a3358
[  375.215901][ T6020] RDX: ffff888029c52440 RSI: ffffffff817a3365 RDI: 0000000000000001
[  375.219034][ T6020] RBP: ffff88804c8be130 R08: 0000000000000001 R09: 0000000000000000
[  375.222170][ T6020] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88804c8be134
[  375.225297][ T6020] R13: dffffc0000000000 R14: ffff88804c8be130 R15: ffffc90003eefd10
[  375.228400][ T6020]  ? __warn_printk+0x198/0x350
[  375.230322][ T6020]  ? __warn_printk+0x1a5/0x350
[  375.232253][ T6020]  kobject_put+0x230/0x5a0
[  375.234031][ T6020]  process_one_work+0x9cc/0x1b70
[  375.236018][ T6020]  ? __pfx_process_one_work+0x10/0x10
[  375.238134][ T6020]  ? assign_work+0x1a0/0x250
[  375.239977][ T6020]  worker_thread+0x6c8/0xf10
[  375.241810][ T6020]  ? __kthread_parkme+0x19e/0x250
[  375.243824][ T6020]  ? __pfx_worker_thread+0x10/0x10
[  375.245844][ T6020]  kthread+0x3c5/0x780
[  375.247487][ T6020]  ? __pfx_kthread+0x10/0x10
[  375.249330][ T6020]  ? rcu_is_watching+0x12/0xc0
[  375.251256][ T6020]  ? __pfx_kthread+0x10/0x10
[  375.253082][ T6020]  ret_from_fork+0x5d4/0x6f0
[  375.254920][ T6020]  ? __pfx_kthread+0x10/0x10
[  375.256767][ T6020]  ret_from_fork_asm+0x1a/0x30
[  375.258725][ T6020]  </TASK>
[  375.260528][ T6020] Kernel Offset: disabled
[  375.262209][ T6020] Rebooting in 86400 seconds..

VM DIAGNOSIS:
04:06:25  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000007 RBX=ffff888055f20af0 RCX=00000000691773ed RDX=0000000000000000
RSI=ffff888055f20b68 RDI=ffff888055f20b68 RBP=0000000000000000 RSP=ffffc9000406f4f8
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000003 R11=0000000000000000
R12=ffff888055f20b68 R13=ffff888055f20000 R14=0000000000000003 R15=0000000000000001
RIP=ffffffff81975613 RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555560bfb500 ffffffff 00c00000
GS =0000 ffff8880d66c4000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fa5efd729a0 CR3=0000000032fe8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000020081 Opmask01=00000000ffffffff Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd0984c2e0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd0984d556
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd0984d556 00007ffd0984d55c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac32012e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac32012e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac32012e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac32012e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac32012ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac32012fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 2074657365720064 656c696166202973 2528746174736c00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 0551405640570041 40494c4443050c56 000d514451564900
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000003a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85636695 RDI=ffffffff9b106160 RBP=ffffffff9b106120 RSP=ffffc90003eef580
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=000000000000003a R14=ffffffff9b106120 R15=ffffffff85636630
RIP=ffffffff856366bf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d67c4000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fcc79e24f98 CR3=000000000e380000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004090001 Opmask01=00000000000000ff Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc36f3d476
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc36f3d476 00007ffc36f3d47c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc79012e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc79012e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc79012e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc79012e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc79012ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc79012fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc791874a8 00007fcc791874a0 00007fcc79187498 00007fcc79187470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc79ced100 00007fcc79187460 00007fcc79187478 0000000700080006
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc791874b8 00007fcc791874b0 00007fcc791874a8 00007fcc791874a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000789725 RBX=0000000000000002 RCX=ffffffff8b92bc29 RDX=0000000000000000
RSI=ffffffff8de4e881 RDI=ffffffff8c161100 RBP=ffffed1003c53910 RSP=ffffc90000187df8
R8 =0000000000000001 R9 =ffffed100d4c6655 R10=ffff88806a6332ab R11=0000000000000000
R12=0000000000000002 R13=ffff88801e29c880 R14=ffffffff90ab0090 R15=0000000000000000
RIP=ffffffff8b92a78f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d68c4000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f268bc63e9c CR3=000000000e380000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000080001 Opmask01=0000000000000001 Opmask02=00000000fff7ffdf Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055f4eb562343 000055f4eb562343
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f268bf94050 00007f268bf930c0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f268bf94580 00007f268bf93b20
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f268bc960c0 00007f268bf94ab0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f268bfd2da0 00007f268bf935f0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f268bc966b0 00007f268bc960c0
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f268bf94ab0 00007f268bf94580
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f268bf93b20 00007f268bf94050
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c2c2c2c2c2c2c2c 2c2c2c2c2c2c2c2c 2c2c2c2c2c2c2c2c 2c2c2c2c2c2c2c2c
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692074616d726f66 2064616200707865 6765722073756f69 76657270206f6e00
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 450c584d415e434a 0c484d4e005c5449 4b495e0c5f594345 5a495e5c0c434200
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff8b895fed RDX=ffff88805a314880
RSI=ffffffff8b895ffb RDI=0000000000000005 RBP=ffffc9000443fa78 RSP=ffffc9000443f908
R8 =0000000000000005 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000000
R12=dffffc0000000000 R13=fffff52000887f56 R14=ffffc9000443fab5 R15=0000000000000002
RIP=ffffffff81bb9361 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f3568883c80 ffffffff 00c00000
GS =0000 ffff8880d69c4000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000056465cd03938 CR3=000000004fd58000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c4c0c004 Opmask01=0000000000000001 Opmask02=000000003b3f3ffb Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000006e69622f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000002a2e 2573257325003a25
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffff0f0e0d0c
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 36353d646970006e 69622f7273752f3a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff00ff ffff0000000000ff
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 0000000000ff0000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056465c00662d 000056465cd12e08 000056465cd12e28 6c69665f70006d72
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056465c00662d 000056465cd12e08 000056465cd12e28 6c69665f70006d72
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056465c004902 000056465cd10108 000056465cd10107 4346495f5f00425d
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056465cd0f0b8 0000000000000000 000000000000000f 000056465c00873d
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056465cd09918 0000000000000000 000000000000000f 0000000000875d81
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000