last executing test programs:

2.599196415s ago: executing program 3 (id=945):
r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0xb, 0x2) (async)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r2, 0x40045532, &(0x7f0000000000)=0x7)
syz_open_dev$sndpcmp(&(0x7f0000000b00), 0x0, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r3, 0x4008af12, &(0x7f0000000140)={0x2, 0xb}) (async)
syz_open_dev$sndpcmp(&(0x7f00000000c0), 0x0, 0x0) (async)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000080)={0x5, 0x1, 0x1, "208e07ca7f00000000000000000000000000305c00", 0x33424752}) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="700000001000810500"/20, @ANYRES32=0x0, @ANYBLOB="0580040000000000500012800b00010067656e657665000040000280050008000000000005000d000100000005000d000200000008000b4000001e82060005004e210000140007"], 0x70}}, 0x0)

2.470776411s ago: executing program 3 (id=946):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x60042, 0x0)
write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="7f454c460e02fab7ff7f000000000000020003"], 0x78)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
r2 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x101000)
ioctl$CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000000240)={"5289c966", 0x5, 0x6, 0x1, 0x8, 0x80000001, "6f070990477995a9105de0b8668ee7", "f921996c", "03706812", "d86953f9", ["0d54b798651b2659bf3ca9d3", "dfd618768c27399dbf1e945d", "c494bf5ee586c31a68aadba2", "6f2f640233076b6b5311251a"]})
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0x5})
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r3, &(0x7f0000000440), 0x10)
listen(r3, 0x0)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000000100), 0x10)
sendmmsg$inet(r4, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f00000001c0)="b9c0", 0x2}], 0x1}}], 0x1, 0x20000080)
r5 = accept4$unix(r3, 0x0, 0x0, 0x0)
ppoll(&(0x7f0000000180)=[{r5}], 0x1, &(0x7f0000000200)={0x0, 0x989680}, 0x0, 0xfffffffffffffd71)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r6 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r6, 0xc0045005, &(0x7f0000000080)=0x80)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
ioctl$SNDCTL_SEQ_SYNC(r0, 0x5101)
syz_open_dev$dri(&(0x7f0000000340), 0x8, 0x200602)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[], 0x0)
r7 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000480)="d25a9850cb747da7e78dfd49d3888ffaeaeb9d9a5e23a7262917fb63563faba361ef0951c2f3929d97a38c83e015393ad785bea060d9c8f228475ff7735104f0e0898176050615010490321fdae9b81fda27f61de6d986347de078881be7e229a339c24ef61347d492bf257648bba295de93b792da640bc85ddfc7fdc37997b64328f55de103341764", 0x89, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="ebffffffffffffff"], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
r8 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r7, r8, r7}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)

1.968006393s ago: executing program 2 (id=950):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000), 0x42000, 0x0)
read$FUSE(r0, 0x0, 0x0)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f000001a000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYRES64=r1, @ANYRES8=r1, @ANYBLOB="5cf2040000800400140003006e657464657673696d3000000000000014001680100001800c0003"], 0x50}, 0x1, 0x0, 0x0, 0x8801}, 0x60000090)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x33, &(0x7f000002eff0)={0x85c, &(0x7f0000000000)=[{}]}, 0x10) (async)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x33, &(0x7f000002eff0)={0x85c, &(0x7f0000000000)=[{}]}, 0x10)

1.900478514s ago: executing program 2 (id=952):
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r0 = syz_open_dev$video(&(0x7f00000005c0), 0x20000000005, 0x8100)
ioctl$VIDIOC_ENUMINPUT(r0, 0xc050561a, &(0x7f0000000000)={0x0, "c582a91e7521c40aae1a8f6403f6a61dd63d0cc3eb51cf00a2df96e73d5eff39", 0x1, 0x3ff, 0x5, 0x200, 0x420, 0x4}) (async, rerun: 32)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106) (rerun: 32)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='yeah', 0x39)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
r4 = pidfd_getfd(r3, r3, 0x0)
setns(r4, 0x66020000)
syz_clone(0x50a60080, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
getsockopt$inet_tcp_buf(r1, 0x6, 0x1a, 0x0, &(0x7f0000000100))

1.730770067s ago: executing program 0 (id=954):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0x3)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000000c0)=0xf9)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000240)=0x7)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000200))
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="3400000013000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="000000000000000014001a80100004800c000680080001"], 0x34}}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000300)='rxrpc_client\x00', r4}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000140)='rxrpc_client\x00', r4, 0x0, 0x5}, 0x18)
r5 = socket$kcm(0x21, 0x2, 0xa)
r6 = syz_open_dev$video4linux(&(0x7f0000000000), 0x5, 0x20400)
ioctl$VIDIOC_SUBDEV_S_CROP(r6, 0xc038563c, &(0x7f0000000040)={0x0, 0x0, {0x3, 0xfffffffc, 0x4, 0x6}})
sendmsg$kcm(r5, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0xfffc, 0x2, 0x1c, {0xa, 0x0, 0x4, @dev}}, 0x80, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0xfc00)

1.730409668s ago: executing program 2 (id=955):
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
ioctl$mixer_OSS_ALSAEMULVER(r0, 0x80044df9, &(0x7f0000000100))
r1 = socket(0x10, 0x2, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) (async)
connect$inet6(r2, &(0x7f0000000340)={0xa, 0x3, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c) (async)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000300), 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000080)=@gcm_128={{0x304}, "a6341a1a379332f5", "1fd33c81cf7995313c09de00fd6ded74", "62266bd8", "1e00040000000100"}, 0x28) (async)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r3, 0xc0182101, 0x0) (async)
r4 = syz_io_uring_setup(0x23c, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000040)=<r6=>0x0) (async)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x40, 0x0, r7, 0x0, 0x0, 0x0, 0xebec93e830f96115})
io_uring_enter(r4, 0x7f5f, 0x4000000, 0x0, 0x0, 0x0) (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f00000006c0)={<r8=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r3, 0x40182103, &(0x7f0000000240)={r8, 0x0, r3}) (async)
write$binfmt_script(r2, &(0x7f0000000500)={'#! ', './file0'}, 0xb) (async)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000280)={&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd87}, &(0x7f0000000240)=0x40)
writev(r2, &(0x7f0000000100)=[{&(0x7f0000000a40)="fb", 0x1}], 0x1)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
close_range(r1, r2, 0x0) (async)
r9 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x480)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r3, 0xc0182101, &(0x7f00000005c0)={r8, 0x16, 0x7}) (async)
ioctl$TIOCL_GETMOUSEREPORTING(r9, 0x541c, &(0x7f0000000580)) (async)
socket(0x8, 0x803, 0xfffffffd) (async)
r10 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r10, 0x8933, &(0x7f00000001c0)={'wg1\x00', <r11=>0x0})
sendmsg$nl_route(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000000c0)=ANY=[@ANYBLOB="24000000180083ad0400000000000000020000000000fe020c00000008000400", @ANYRES32=r11], 0x24}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000040)={'gre0\x00', &(0x7f0000000140)={'erspan0\x00', r11, 0x7, 0x10, 0x1, 0x6, {{0x17, 0x4, 0x2, 0x7, 0x5c, 0x64, 0x0, 0xaf, 0x4, 0x0, @multicast1, @rand_addr=0x64010101, {[@timestamp_addr={0x44, 0x34, 0x7c, 0x1, 0x5, [{@local, 0x3}, {@empty, 0x8}, {@remote, 0x81}, {@dev={0xac, 0x14, 0x14, 0x12}, 0x7}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0xfff}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7ff}]}, @timestamp={0x44, 0x8, 0x3c, 0x0, 0x9, [0x5]}, @generic={0x88, 0xa, "68e104e5a73c171e"}]}}}}}) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={0xffffffffffffffff, 0xe0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8, &(0x7f0000000240)=[0x0], &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xda, &(0x7f00000002c0)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000300), &(0x7f0000000340), 0x8, 0x85, 0x8, 0x8, &(0x7f0000000380)}}, 0x10)

1.660886127s ago: executing program 0 (id=956):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
utime(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)={0x9, 0x3})
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
lremovexattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=@random={'trusted.', '\x00'})
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c0000001000010400000202ffffffff00000000", @ANYRES32=0x0, @ANYBLOB="079500007f2a020024001280110001006272696467651f736c617665000000000c000580080025006f3700b8f297d80419397a31"], 0x4c}}, 0x20000095)

1.659895456s ago: executing program 2 (id=957):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCFLSH(r2, 0x4b45, 0x2)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000240)={0x2, 0x4e20, @multicast1}, 0x10)
connect$inet(r3, &(0x7f0000001600)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x22}}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001a00)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='GPL\x00', 0x4, 0xb7, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback=0x3f, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0xffffffff}, 0x8}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCSPGRP(r5, 0x8902, &(0x7f0000000040))
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0)
preadv(r6, &(0x7f00000010c0)=[{&(0x7f0000000380)=""/245, 0xf5}], 0x1, 0x40000004, 0x6)
r7 = socket$kcm(0x29, 0x2, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0)
close(r8)
socket$kcm(0x10, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r8, 0x8b26, &(0x7f0000000080)={'wlan1\x00', @random="000000f900"})
ioctl$sock_kcm_SIOCKCMATTACH(r7, 0x89e0, &(0x7f0000000180)={r3, r4})
write(r7, &(0x7f00000027c0)="f49a8b0035bfa6eff24d1e567ee446cfd78d0e6c0f0408a5e1f78558ee550e85e8f206dd6235787feb5a13c5142461a33991ccf3c03289acfe618054f27040e892d4aeabb8babbca40e172d9e64225320b271bf7971b3c0974c1bf3e71de52988c16a06211d668c0794b477fb474c757e3a817de415cd8700eca28e5f450ee4b588d8d87cf20a0303eb200b63860a9c193fe4e94ee936c696045b8dbbd3fd1c2d06c96cc8921edf309d6d6a48033d23cfeb962cff902b856d95048d92614d73012818054ea2174f88344b0741acec84982cce2a462b0979e0327464524c5b04da6ee7fd95e8c4eff8f2451d60071dc12d2659ffbf132c6ee6d307d88cdd61878679f684ee73f55c58262adde32465f8b5999b9ab8be94bf3c9b3db58ed23fc0c29ea8a3d995361f7c5651afb63d28d421ee431e2499d21ea951eb8a799ab0a101e562b69e2d7f8151af7bbad955769b2207a69b05c858d3729cd0b76df5559ab3d9e4f4364c4e88c2ea77e08e52dfd9a147031d56af969ddf4ff155952cee41e44c2eda9860052d404de35267813c2534b3a7f06504be81322c46185771f5126d34ec2140b9189c6b39b590beb7d93e716d8a42aa091fab2974c5c968eafa4563483cda91458f960cdc7db1dfee5", 0x1ce)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
close(0x4)
ioctl$sock_kcm_SIOCKCMCLONE(r7, 0x89e2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r1}, &(0x7f00000006c0), &(0x7f0000000700)=r0}, 0x20)
r9 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r9, 0x29, 0x15, &(0x7f0000000100)={@mcast1}, 0x14)
recvmsg$unix(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000002380)=[{&(0x7f0000002480)=""/195, 0xc3}], 0x1}, 0x2000)
r10 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_RTOINFO(r8, 0x84, 0x0, &(0x7f0000000280)={0x0, 0xf8, 0x4, 0xf}, &(0x7f00000002c0)=0x10)
socket(0x2, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r10, 0x1, 0x19, &(0x7f0000000040)='bond0\x00', 0x10)

1.653556423s ago: executing program 0 (id=959):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
r1 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r2 = socket$inet_icmp(0x2, 0x2, 0x1)
getsockopt$inet_mreqn(r2, 0x0, 0x20, 0x0, &(0x7f0000002ac0))
r3 = socket(0x29, 0xa, 0x80000000)
sendmsg$SMC_PNETID_GET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f00000005c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000580)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="580000001000370401000000f8dbdf2500000000", @ANYRES32=r4, @ANYBLOB="890c040031810000300012800900010069706970000000002000028008000200ac1414bb06000f000200000004001300050005000100000008001f0006"], 0x58}, 0x1, 0x0, 0x0, 0x44801}, 0x0)
r5 = socket$inet(0x2, 0x2, 0x0)
sendmmsg$inet(r5, &(0x7f0000001680)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @loopback}, 0x10, 0x0, 0x0, &(0x7f00000004c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @empty, @loopback}}}], 0x20}}, {{&(0x7f0000000000)={0x2, 0x4e22, @remote}, 0x10, &(0x7f0000000500)=[{0x0}, {0x0}, {0x0}, {0x0}], 0x4}}], 0x2, 0x4040880)
write$binfmt_register(r1, &(0x7f00000024c0)={0x3a, 'syz1', 0x3a, 'E', 0x3a, 0xf4a, 0x3a, '&\\', 0x3a, '', 0x3a, './file0', 0x3a, [0x46]}, 0x2a)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r6 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r6, 0x1, 0x2, &(0x7f0000000940)=0x3, 0x4)
listen(r6, 0x3)
listen(r6, 0x0)
r7 = eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000300)=r7)
r8 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r8, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
r9 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r9, 0xc08c5332, &(0x7f00000003c0)={0x7, 0xfffffffe, 0x0, 'queue0\x00', 0x8})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r9, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3}})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r8, 0x54a2)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r7})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000100)={0x1, 0x1, 0x0, &(0x7f0000000880)=""/99, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0xfffffffe)
syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0x5867, 0x400, 0xfffffffc, 0x2d0}, &(0x7f00000006c0), &(0x7f00000000c0))

1.653269705s ago: executing program 2 (id=960):
mknodat$null(0xffffffffffffffff, &(0x7f0000000540)='./file0/file0\x00', 0x8000, 0x103)
mprotect(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x100000c)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0xfffffe9f, &(0x7f00000008c0)={&(0x7f00000004c0)=ANY=[@ANYRES32, @ANYRESHEX=r0], 0x18}, 0x1, 0x0, 0x0, 0x28040000}, 0x20048815)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYRESOCT, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xb, 0xc, &(0x7f0000000400)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_MPX_DISABLE_MANAGEMENT(0x2c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x31, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe380}, 0x94)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r3 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x7fff, 0x0, 0x1}}, 0x40)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
r5 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r4, 0x4004af07, &(0x7f0000000240)=r5)
ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f0000000040)={0x1, r5})
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/56, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/231, &(0x7f0000000900)=""/102, &(0x7f0000000680)=""/70, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000740)={0x1, 0x0, [{0x0, 0x73, &(0x7f0000000600)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, r3, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x800000f}, 0x94)
ioctl$sock_x25_SIOCADDRT(r2, 0x541b, &(0x7f0000000300)={@null, 0xf, 'team_slave_1\x00'})
write$P9_RSTATu(0xffffffffffffffff, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], 0x230)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000002240)='9p_client_req\x00', r1}, 0x10)
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r6, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000080)={'macvlan1\x00', 0x1})
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f0000001900), 0x0)

1.652815974s ago: executing program 3 (id=961):
r0 = socket(0x2, 0x80805, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
r2 = syz_genetlink_get_family_id$SEG6(&(0x7f0000003e40), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SEG6_CMD_SETHMAC(r3, &(0x7f0000004440)={0x0, 0x0, &(0x7f0000004400)={&(0x7f0000004380)={0x34, r2, 0x20d, 0x70bd2b, 0x25dfdbfe, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x4}, @SEG6_ATTR_SECRET={0x8, 0x4, [0xffff]}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x6}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x2}]}, 0x34}}, 0x4000)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r4=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000300)={r4, 0x9}, 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001740)={&(0x7f0000000640)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x4, [@struct={0x3, 0x0, 0x0, 0x11}]}, {0x0, [0x0, 0x0]}}, 0x0, 0x28, 0x0, 0x1}, 0x20)
r5 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x80200, 0x0)
ioctl$MEDIA_IOC_G_TOPOLOGY(0xffffffffffffffff, 0xc0487c04, &(0x7f0000000380)={0x0, 0x1, 0x0, &(0x7f0000000040)=[{<r6=>0x80000000}], 0x4, 0x0, &(0x7f00000000c0)=[{}, {}, {}, {}], 0x3, 0x0, &(0x7f0000000280)=[{}, {}, {}], 0x2, 0x0, &(0x7f0000000300)=[{}, {}]})
ioctl$MEDIA_IOC_ENUM_LINKS(0xffffffffffffffff, 0xc0287c02, &(0x7f00000004c0)={0x80000000, &(0x7f0000000400)=[{0x80000000, <r7=>0x0}], &(0x7f0000000440)})
r8 = syz_open_dev$media(&(0x7f00000000c0), 0x0, 0x40400)
ioctl$MEDIA_IOC_ENUM_LINKS(r8, 0xc0287c02, &(0x7f0000000100)={0x80000000, 0x0, &(0x7f0000000140)=[{{<r9=>0x80000000}}]})
ioctl$MEDIA_IOC_ENUM_LINKS(r8, 0xc0287c02, &(0x7f0000000200)={r9, 0x0, 0x0})
r10 = syz_open_dev$media(&(0x7f0000000380), 0x0, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(r10, 0xc0287c02, &(0x7f0000000100)={0x80000000, 0x0, &(0x7f0000000200)=[{{}, {0x80000000, <r11=>0x0}}, {{}, {<r12=>0x80000000, <r13=>0x0}}]})
ioctl$MEDIA_IOC_SETUP_LINK(r10, 0xc0347c03, &(0x7f00000001c0)={{r12, r11, 0x1, [0x0, 0xf7df]}, {r12, r13, 0x4, [0x6]}, 0x1, [0x8, 0x3df]})
ioctl$MEDIA_IOC_SETUP_LINK(r5, 0xc0347c03, &(0x7f0000000500)={{r6, r7, 0x1, [0x7fff, 0x4]}, {r9, r11, 0x0, [0x68d, 0x800]}, 0x0, [0x9d0, 0x8]})

1.575929751s ago: executing program 3 (id=962):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000300)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000100)={0x1, 0x1, 0x0, &(0x7f0000000880)=""/99, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0xfffffffe)
r2 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0x5867, 0x400, 0xfffffffc, 0x2d0}, &(0x7f00000006c0)=<r3=>0x0, &(0x7f00000000c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f00000002c0)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x4, 0x0, &(0x7f0000000100)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r2, 0x100847c0, 0x0, 0x1, 0x0, 0x0) (fail_nth: 26)

1.568413428s ago: executing program 0 (id=963):
r0 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x28}}, 0x10)
pipe2(&(0x7f0000000000), 0x4000)

1.567993683s ago: executing program 0 (id=964):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw(ecb-aes-aesni)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000240)="8981f23689eb65be16f4264404ead301018a823382092e64585a2167af0300000000000000f6ffff76dbc640275e530b44d2800ab564e185804525c47a7d298409a4dff1c7ddb009f8d12c9585d04eaab54744838362c8660b0b6df614166e6c537d8c8be2f704787218942b27431a09129b149c23877f48b3148e9a06f333c54d2f0a8b4ce1624d843e375c606e4d380f03cdd9fe6f41bb8428107ff3499824e4ae10e8c2ecc87f6f352af068459c3e8a4f24d3e926dacce7322a6a32b669bf37057e869df0383dbbeab7140b45cd6fe5ebc2d08bf3e3a93942ac1c39bf", 0x66)
r1 = add_key$user(&(0x7f0000000040), &(0x7f0000000100)={'syz', 0x1}, &(0x7f0000000140)="6f7212162fd555b853cfb579d8334a107f5a785679ea7c990801e89e3e80f8282d0ee0603b04c1a33a43108cedc3a378f5c0601bae3137f502b6b3d730cae5747e221852f7f1ef838ff44cb5", 0x4c, 0xfffffffffffffff9)
keyctl$dh_compute(0x17, &(0x7f0000000080)={r1}, 0x0, 0x0, &(0x7f00000001c0)={0x0})
close(0x3)
r2 = accept$alg(r0, 0x0, 0x0)
sendmmsg$alg(r2, &(0x7f0000003400)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)="5ee527574d07c1b4823cbbf32c4bf37ca2a5673954fb4186c1234e66f8a040848664d1fda14077567836f4576af97ff5742e3559f24e3336a6615eb33bfc333596adf5be826b79f1c6b3557a5be46a9d75e98b1d98bc22ec64a7ee32bd500ddde49307dd3ee1fc45b004040099e97161dd124d8ac5d90dd305fe1d2a09e880ddb1e1dacc611bb319333fdff586314266dedeeb7c2e81a35fa579ac81f27a14b7c155834b0a02a5851691fbd1dadd447fc9db4cf9fa93a20340896e68fa2d8a3f297696d58a6e0ee957c5a5f63c07668712210fdc4dfcc86e101c5132", 0xdc}, {&(0x7f0000000440)="f99f95d05564fa415c43f9c4e74041b3c728033e18e27a0da9f12c156ead8b67303ef197978c94330daa8900cc199459515bb85d7dd138845bbd84245931ac441ca9b185c77458bde4c10433da54bb43b97a47c4ecacd3776c592feacb8734def37397478750e33e", 0x68}], 0x2, &(0x7f00000004c0)=[@assoc={0x18, 0x117, 0x4, 0x6}, @iv={0x98, 0x117, 0x2, 0x7d, "167eaac3ad33d07e678456ed7e37082b5a6f2205476f34facd5f4339fd77083fa38b50e81ba6fa1d7d54874c165349bc705e01a1a04efb6452286edc688b9315c25f4da7407894b16864ff2a11332ebb8ff475ffad39e475c7573739bf973a231de956166f9c992d006724586acf62c0e0c56c1227cd2b84a3787a9642"}], 0xb0, 0x40}, {0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000580)="f96a446b12f1d4f4835d618b3425ce7f6a8a4285c841f80ed68bd98d0ac14f8d92e8cbee519b8915cbbe8817a5fd1237c854f8fcaf3a1964cc637ebfbf9d3f60f3c0041e12dfee4cf19b39", 0x4b}, {&(0x7f0000000600)="670351943f1d6e14a79d942f01b705d91e80c3dca5447939bc8cf220fb6b938e971d2700b46b035e78f4f40665a43af70118dc0f22048716b34ad464856c78306f8c7193cf4a6921dc6f65ae6a638c09928361c6ff83be83dbda3d44cbc83f94ddee75e74d06428a827f1562ad34d746af59178d25a211ff3888d344cbc799072ce92bc4486ac8861db9d927b097eb12e1d3a784a74516a32b", 0x99}, {&(0x7f00000006c0)="cb535b1fa09d2e9a5196b947e1b04aa59f79e62dcc48aead60fb73f307bd7c58fa3cb830e8ce417f9b86d2f0d0bf70b1de04ebd99e7b015d04563d8a977c5ae18d7e1221534a5f6cc60f6d1b77d60fc6512a1be68780a0c381823cd8", 0x5c}], 0x3, &(0x7f0000000740)=[@op={0x18, 0x117, 0x3, 0x1}, @op={0x18}, @iv={0x40, 0x117, 0x2, 0x25, "00fe293e97022affb5b935d48ea7170ea978f2f829421349d3e268031e580ba13dfba5d49b"}], 0x70, 0x4048010}, {0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000007c0)="02e5f5a37b55e2cf11c8a69c0ac835b494e6a340146613d26236da0728484d0dc65db582433c38ca9fc7e918433498c3c7bafd1c2cfab522c9076546ebeb9de25d6ddb38dd70347c4f067e0878fa6a85936e82b1c6a1d0b17729fc2df806200dae33eabea4bc1fe3cecd5244e7f9563d1df1b6e667ea0304520e4c473fc8e1911e", 0x81}, {&(0x7f0000000880)="c9860608ca1dcaff3bb54de1513240aaacb900ac5fb3e5b08b3ed04e66d33896c3ee77adb466b1f7fd1aab4f53b284c530dfcfdb579b7bd978f7476a2bf81a59c3a92088a78fc3f5cf3598625c4f9a9ada5b7a19845b8acacc27f97f2043785a57e8101d8003cc86340462d765cb34f26ff494b709b92dec400627bc840284d23b56b6a61c730a3f5a", 0x89}, {&(0x7f0000000940)="74c2e914b65b442fc0ac01618ba32f38052825c1ae290eb0669138910d0266ced1a302f9fb7df9c4bcc0c255abd2ccb6ebc76f691f8a72aa16d06c0a80e3edb5be6c8fdfbf", 0x45}, {&(0x7f00000009c0)="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", 0x1000}], 0x4, &(0x7f0000001a00)=[@op={0x18, 0x117, 0x3, 0x1}, @iv={0x58, 0x117, 0x2, 0x43, "24a64839bdaaf902d599eb723f1c0e0d6302087c62c3fe1c2b97028dfb8aba944c5a548018ac9a1e46223d2b72dd95d2272d170c5a5667f0878581b7b873e74311fcc8"}, @iv={0xb0, 0x117, 0x2, 0x97, "cec374217c180c17d29ad0d5901d799005fa0bf48cae994733a2e1da6d8916b607ef1ce14503b97d5ef4669c18e6bf67a6903304f94a0f82831c76cf448c6f4901d4e6114a6a0a04dcd41a4f2aeafcff006f47ebdb77d2827b0e94be58f213c36cb90858c081ac71b5bdfef697241d124fcc366139af277ef8f3c2135ac7712124dade03ed7443a48cb3e1b2cbbde925ad9d5908f5e6a9"}, @iv={0x28, 0x117, 0x2, 0xd, "e0b397d133bffbb55516810e0b"}, @op={0x18}, @iv={0xa8, 0x117, 0x2, 0x91, "f9716c832d8520d78c4fbbfc911c878584d778c669f5708dc20cfb874b167ed1f7de6eda978268330a637a99179e79103414675845d3dff6b2dd095fc21112fa6ac0f224da8e300fbe7cfea6f0afd46e5437f538d98a72bc4e22c27d0eb43ef1f0f8a8c5ea67d98e90588bd456f85c02727f30e7ce371d5b4bbd35b323f3fba038ce1159ead8f5a63db84b9bdd6a0498a9"}, @iv={0x18}], 0x220, 0x40040c0}, {0x0, 0x0, &(0x7f0000001f80)=[{&(0x7f0000001c40)="50f947b4145abdc6a1677aaaf7667bba58f80d9741ad0d671b5704efcaf9300334971f4b6990415a561b0e629b19390e029ec32f6f23c1a73fae30a10f959f085170b111be9d20ec7c8554add68369b2e6aecf318450bd101c5a5fdcbe1110f93479c08f839d3f", 0x67}, {&(0x7f0000001cc0)="a73d4e943cbe9c69ceb3ebc7c913484d4ba3fa2d72e7aedd64fd61485f103caa842fcb5fa31158cb33bbdc1b18fc888864dbeaa846aab4337379256379001ab7c1a18f1a43bf215c5c0738254c6728c41084f8ec261f0b924769c64771e9eaf2cd41b05ca6f59c9dbb8dddd25b1f018faac8e95b33a716df099008a30ca73a57153497154bd23b10df78b3eac45b009af28b011860d387c6f99d1e988a59dc8420593d4cdde339eaca1c4531d34dcb9c726f36a600c3eefbd9e704cbc4c36e0b73e635ceb2", 0xc5}, {&(0x7f0000001dc0)="febb63504fa900e64f125be628bb911e159373fc920ba8139542ec7aa0a4e5268a013ba99a20edeb", 0x28}, {&(0x7f0000001e00)="4e55eb2df5428e897664817dd663b89d40be81aff178b726a8bb52f376fb0977fdbbbab78f2ce10eb238eb38222b4f906f71177361be17c91f3184bed9038c25b10848f465abe752ae4fd8f83ddd7a5cf9b4504be4fd4fedb1f57272873aef26aff1cf0fdc59ee23c0abd03fa18a7a796879e92c071a9380451869c759cd65c31890b1591737d32c", 0x88}, {&(0x7f0000001ec0)="3468e7ef9bc951e5841f3ecca21a9e76682d7cefc2c725094f39b6cf2787581992f5d3cb1673d5aff64a4408515c897b5184490ac116da6d3bc5bf2015a23446cdfc8341a753024b8024affcdb006bfd9280655ebf2b74f066adc3db2568e9f9130666b0bbba87aba33274e56f360954b6e0d4ca12b8e2f19d2cdb9e5bf86f3b876896c4a60409aee33b8c843c97de", 0x8f}], 0x5, &(0x7f0000002000)=[@op={0x18}, @op={0x18, 0x117, 0x3, 0x1}], 0x30, 0x8080}, {0x0, 0x0, &(0x7f00000025c0)=[{&(0x7f0000002040)="bf9b04cf5a779a68c43be53078c38725727db5ea0cae0a1286da108e63eff6c496303810be6c32571a9c8c6cf2e9ca0b7381ed2d559f381ac48883626d8e39de8f44b5edd3f31e8b4485a7ec5028c691057bdbdf5655134c8898c46729e87d8dd213ee44536a189844d298e2730618f89964301b1bb82d2ace0b09", 0x7b}, {&(0x7f00000020c0)="66ab41eff574ef81dea379ccb73c93e0423db30a4fc345746e1fc6fa66680c770bf7529df370c135d577c46c9ddafb182b89b4b7a0e8a7a554a7b5fd730afdb000462677c5ea", 0x46}, {&(0x7f0000002140)="059167c81c8d0e729dcf927efa90e6d9d63a1116f09b1bdc684920d02f463bd7fad7cd6ba6c7f7aabd23914f015b4d8c4c68fbfc647ca71b1789a032981103f7bd15347d4b6b9ddc6e0e339797da038b2faab1b585d45de91226ad264f0af99ad7520e29667a91e4395320a79c923b42950fb7dd4aeda2da42c39929a880491634233c863e1d251d65bf9df7eed80c164adad5f5", 0x94}, {&(0x7f0000002200)="8985a9ce9b0d64142e17d9ad49cdb01e4d287425c13e1d4ba8f613a0cb4c32beea16488715258e8e406719f4bafbd59722bf9965afa0452f22681df3353126c0e75cd03350682c0dcd3b858a12f719658e42ca7ff4d500f69ebc676035efbf80386a5656d23e5e0fd2d09778c498144de9b7154efe1e0455df67d0a7da9ecb8358b6a520ef0776e16b23e0fb28f05dd6e09c895ec3047513375a3c7f206df1471b59bafe91baffeecef1ab27267054e254dff3af081b9124095d6dd0ef05f70ed05154", 0xc3}, {&(0x7f0000002300)="ec91e35ffabd699777728ac4b182a6968a9261309cf91332145ecc71bd90b7851d6bbd08c4c084223d077017240b022cb9ee4befcb46ec92fc76a0dd01c46d51667274da85bf056ddc8ae9fc035eb8a7bb6e26b4f2e93cadbca7e2e459ac3680aa4fa3c2929f0cbe35fdca5d9735b46bc4c7a805f09d5728890f75b2044f52839363ba67eec5df8559ec51ecd8ab12a6bd405955d44af13ce096f36156b9c34840", 0xa1}, {&(0x7f00000023c0)="8eff42a8f5d878d2ce8672eef78c39a0dba17e4cdf7af82ba60ac3ed9fe2f9593388e46e7e0dc10bc1f4e4357be401311d4763346768ce33397cce843a4a8bfcc7d95a1c851dd1d0115ae6395f539683ef1f32242055287b56b99acc0426299bc436ed7c1369ab9fe3d279f987c5671e7110ad05b354dad3e581b2edd1628d39fd079fda29bf1bf0030c9113d3a9b82504c02501c9581ffab856a3132fb0ac60234992572fd8e5af10985c4854f1a21f8c3b45d9cbc59c0faa29aec3a1554579c31b4fb63ea1e035040049c8bcece5b27970eafa60103f8df7c1dd35b4dafbcc4176", 0xe2}, {&(0x7f00000024c0)="a7743550fb3d2b8faaae953ce4dee248e372fbbb73b876baec5832031e17a15a2ebf678718f7e193e80ea2825a4c7567e0eec159e4ab017c37f45395969c53e4023a929056aa081cc14b164c68ba", 0x4e}, {&(0x7f0000002540)="6a913e125d1142492087bc303f7c9af6ab98b22e52ce7bd807f25cfdc81a9cbd872726e399454932242dfbb3b746710a0c3ec954d79e22e48dfa429fd4b9006c2051c0d3d9efdbf3e948199a000bdb94f06432a886270109bdc9b91e7491214518d5ee95c690", 0x66}], 0x8, 0x0, 0x0, 0x1}, {0x0, 0x0, &(0x7f00000026c0)=[{&(0x7f0000002640)="a9c1713537390e1a31124e89660029392d793a", 0x13}, {&(0x7f0000002680)="519cddf5d3bc4c56894e9251bf39560286e172d74d64140b129dc5bc85663479f5a973fe922701d1286499f9ee9723ffcac7132d08d7ebee", 0x38}], 0x2}, {0x0, 0x0, &(0x7f0000002a40)=[{&(0x7f0000002700)="34544252bb6d31df7559741b74e5e1a14b1c40cbd4493d121814be98a13037aba1418f188272313d86f70e4f70c8253ce4f0edbf26635ab43ee1e3d93e6cd7293adc2ced13f78053423d51b81b519c9ff4d1ae6d1f138d580151767693e70abb96f19fa6bef2159056ad99d191d183d300ce790097c16a36b3498c4277811b3dc183270d53", 0x85}, {&(0x7f00000027c0)="e146a40855d3dd24078f7cce6874a9c82ae1002dc0728c0685a3133bfaaef3152930d5ce26e497248a82804f51ce0d988dcc438d765b61d4d3501e8f62f2129f0d0ca673c20e4156c3ad8bfb871027296ecf443e919be33c84e811b177232ffb15aa57cf5810ec9ffa6a98ff5b7f20cbe1ba3d0c1e47d060", 0x78}, {&(0x7f0000002840)="8538b0d09d940e5606a1944123116f9a1b1d800a418a9f0738bcc92a5a65666bf60a75297217185e86548e16ea24112c897992b2bf3548d443034bc4f17e5acc620dcdd78f05391f0e69e91a6c651ebb0e36f7697b0eb6f5c87307aacfa212e84fc74dd3f5e01948570a7cf5ac3ef03e140d9ee1d7e93a599b4ec9c5d768966bcde499fbfcc609f4945e39cc32892a3d313cb93153b7f3a3b54b9ef464e137cff9685e1f42", 0xa5}, {&(0x7f0000002900)="cfa8997a7f62826b2ed8b8361a3c0dca1b185908c4203e3ac6c15cdb4b62e2a4e2af5ae95c167325d790ce126460e1e6964fb5", 0x33}, {&(0x7f0000002940)="5dad96d71b018b5b17556c409a59adf6a25da3d3bc3c05eaaa70e8d1faab50ed269b12e379b73374a22c72445756ea92015f2eec38da0acb0e499fe0d9e6de0107435768730a58d3db5e418ebf500ccc3cb4d00a1688c638d49ec4bbce83bf5e22a4538b4abb16582f366b6703158b", 0x6f}, {&(0x7f00000029c0)="a34dfc524d89c385c2ad6d6e4fc1a770767c68d6dfd482d169ad54a8f5ebe2ddbd990560eb099eb2e988412797edcd09c0873edc67cef88ac9637306a9c7555691303e4e39dea9e233013662060eb5175129bc0c739008acbe07e83de8358fa4ee0d", 0x62}], 0x6, 0x0, 0x0, 0x80}, {0x0, 0x0, &(0x7f0000002b40)=[{&(0x7f0000002ac0)="02282920ee488dc8d6df5bec9c2c08939a3ed1872b928e95ee241c63cb97abdf3d80789e5146f4aa04e93b6a2cdaff1aec2b160b81e42b6c5c4416decca1de500ade5852c7d26536c07997cc681f36d36d75ece1f0124400b830a3cea52b293bb190c121ffd7e71672820bae2230a98b8c", 0x71}], 0x1, &(0x7f0000002b80)=[@op={0x18, 0x117, 0x3, 0x1}, @iv={0xf0, 0x117, 0x2, 0xdc, "72fcd4f5deee2cf43a129e718fa4f7d5a86e7e2af622ffd3ac169cd1953c54b33864039ba9319a541d9ae75ce0ca2757ee917fbe5bc38ef786a9617edcbb8d33d8ae0d5c57d9e833c2787804672506779e2b4ba81a57835339fd12afa33c8e142865840393b7635f08ce5372fdb84c1c1ca2c725c9c44e4892371b2a85d11fc5b1b7e0fb1edf6c3ce0ea973adb48d942ad5e9301af1735c801c532c821712d25b273949ffe67236b82285997898383552ffd21d51d6fbc32d0a5fde84db935da5e91bb36e9e694742bc35e84a02cecaf584c0460bc38b61088e10e73"}, @assoc={0x18, 0x117, 0x4, 0x8}, @op={0x18, 0x117, 0x3, 0x1}], 0x138, 0x80}, {0x0, 0x0, &(0x7f00000032c0)=[{&(0x7f0000002cc0)="336337c8fc08d2c1a6ac9f063823d9e6691af9907e835a8b351ff2765382c1e83040fc49e17875f181f85ba4c50905798ae08a3ffe0880ab0a22f604fbd81ed22e2865f6a580aa003dcc938702b32b0101df7d3cdd1d494d83e57b491127e4febb89b04ca32ce0d5fb5e896e4d6de2ce0e505641e60fa49129b3693066370560b1565817f8bf65ba8a6b646f954040b6", 0x90}, {&(0x7f0000002d80)="9efbef7f736ea7a2c3d8dc78", 0xc}, {&(0x7f0000002dc0)="f435ecc5d11b6a444c600b6f9e74a469932b52ebd5a12b5c3beaf5909862b9bc06027abc84b9b7360bd7ed6e98783f433506940cc11d1846c64adbd7f3892c4c56505367e39e0469bd0689e658a45915aae4525cc82e1cddc0d9b3dfbc62dc4bd1624bc1fdab9563e17f1dd92872d6280d3cb23872fe9ba5c68c324e2e5aca958755d59462272c1470fc54abd488bb9676bdc27944de11b7cbc91ab2eaf68bcfe04370a1d626d6335ea795bcf91eaa153ed778b12ecc30e7571f89cc1bbb9f7b079556cdfabb4957da5a37", 0xcb}, {&(0x7f0000002ec0)="1059fa40f19b018843798880904c418ee4ab21eb7d3ac3dcf52d4f1362008c", 0x1f}, {&(0x7f0000002f00)="b338e11f17534b0a2abf332337c76080f0e859892357227b03f99dc10f3ae915d05c5af33d6f46b5ed66b88fc3d872b6183767e0fffd06af60cfa259efa1300d2e03bbc7d9a05c7f5bd59c3bb72bb05a6dbbd7b4d272d4f941e52a4813d374c38732982daa91fd976b6c1dbfae5a698cddcc5580817aa1b17dbf41d74b3f8a35e35ae6cf162da8b739feefda0cf817d4115bf6e813d08f57db", 0x99}, {&(0x7f0000002fc0)="c35a1d291a2882c144bb7330752c340bbc5c6ac90977985569190b502cd9fd51fba733fff686dd509f8f2818d0bf30b64c2d81e2de3be04a72d479d0ee904263b385d5980c8618b05930db3bce2ddcf9264b5f0da2dcb8678d83819e1d4d8a96c5cb6e6fea1ff3fee6cdfeec314aec80d3ba4b608f58b88b20551fde912c735f2539a6ddbccd06a2d6a73c9ec5142181bfcbc49a6274893ac938cdd0243ad49a5dd128c8f8fe460c7229b070e0c606a8baa1f7882427c32081630cc0eef116ddf1d69dbcf869", 0xc6}, {&(0x7f00000030c0)}, {&(0x7f0000003100)="bd1ac1a2b9b09f69f874f7694814d549f876dcbb3353c3fdb730b72a21add6dd9c724fd93904fb91385e176a88ce63b48f266d87534b3c4cdaa567b7052c1756a2b7876750f0a674796e8f666048253036fe138daf167214ad5cd3618386f7cc29e0b9bab4d8f304624248dbfc35f30a98ee9958282355", 0x77}, {&(0x7f0000003180)="7452490e79405d20df71bd7d1b5deee11a7bd785444b3823d9b082e1e2d6ca6555fd459e3a4d6837ff748d509b4fb25ac1ca24bc005d93c707e59e7ed08a38080ae658513c77fe1bf98f1ac4b5ae72139b015e1fff17f8fc513ca1cf25bedb530f8ac30cb25651b4861529417d4ab4763909e86856ff8442c792cbb43aaac10647db74cd6e368022154da452578da552f2", 0x91}, {&(0x7f0000003240)="bb1d705adbd0dda3c570c5536834d98fc9c2afb005a094a60adc351f10b627275c36ac3fcc3f7a69122a95f325f00be44dbf8a2b6225b303a5aa08b25a392ada26593bccff9b3bc5b32e", 0x4a}], 0xa, &(0x7f0000003380)=[@assoc={0x18, 0x117, 0x4, 0x6}, @op={0x18}, @assoc={0x18, 0x117, 0x4, 0x8001}, @op={0x18, 0x117, 0x3, 0x1}, @op={0x18, 0x117, 0x3, 0x1}], 0x78, 0xd1}], 0x9, 0x10)

1.564525227s ago: executing program 2 (id=965):
modify_ldt$read(0x1100, 0x0, 0xfffffffffffffe5e)
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r1 = syz_usb_connect(0x3, 0x36, &(0x7f0000000bc0)=ANY=[@ANYRESOCT=r0, @ANYRESDEC, @ANYRES16], 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r2, &(0x7f0000001980)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r2, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_OPENQRY(r3, 0x4b4c, &(0x7f0000000080))
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f0000000040)=ANY=[], 0x118)
mkdirat$cgroup(r4, &(0x7f00000003c0)='syz0\x00', 0x1ff)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x310c00, &(0x7f00000014c0)=ANY=[@ANYRES32=r0])
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000c00)='./file0\x00', 0x505881, 0x18)
getdents64(r5, &(0x7f0000000100)=""/134, 0x86)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'veth0_to_team\x00', <r6=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000400)=ANY=[@ANYBLOB="68f6ff000000000000000000f900965489ab9a0dc34a49a6000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000400012800c0001006d6163766c616e00300002800800010010000000100005800a000400aaaaaaaaaabb000008000300030000000a000400aaaaaaaab1aa000008000500", @ANYRES32=r6], 0x68}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000240), 0xffffffffffffffff)
r10 = syz_open_dev$sndpcmp(&(0x7f0000000b00), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r10, 0xc2604110, &(0x7f0000000300)={0x0, [[0x9ef8], [0x10000], [0x7]], '\x00', [{0xffffffff}, {0x0, 0x10}, {0x1}, {0x0, 0x80000000, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x1, 0x1}, {0x0, 0x5f, 0x1}, {}, {}, {0x0, 0x3}, {0x0, 0xfffffffe}], '\x00', 0x1000})
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), r11)
r13 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f00000004c0)={'ipvlan1\x00', <r14=>0x0})
sendmsg$ETHTOOL_MSG_DEBUG_SET(r11, &(0x7f0000002b80)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000002e40)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r12, @ANYBLOB="01002dbd7000fbdbdf25080000000c00018008000100", @ANYRES64=r1, @ANYBLOB="2c7c23fda572b54f0c000208258809e0d2e483a786c71a07205d30097b2999c8160d78ba9e11f6a8c40900000000010000faff04000000000000004331476160fc3f34315a9f95137c84a236e6339e31b2c994eb5bb2d328f904739997d1daa83cda2aba24eb9f24edab5e0dc2abad10"], 0x2c}, 0x1, 0x0, 0x0, 0x20002001}, 0xc084)
sendmsg$MPTCP_PM_CMD_ANNOUNCE(r8, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="b61227a4", @ANYRES16=r9, @ANYBLOB="00012bbd7000fbdbdf25080000003800068014000400fc000000000000000000000000000000060005004e24000008000700", @ANYRES32=r14, @ANYBLOB="060005004e210000"], 0x4c}, 0x1, 0x0, 0x0, 0x1}, 0x40c0)
sendmsg$nl_route_sched(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@delchain={0x24, 0x11, 0x1, 0x1f, 0x0, {0x0, 0x0, 0x0, r6, {0x2}}}, 0x24}}, 0x0)
recvmmsg(r4, &(0x7f0000002bc0)=[{{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000500)=""/174, 0xfe0b}, {&(0x7f00000005c0)=""/84, 0x54}, {&(0x7f00000006c0)=""/131, 0x83}, {&(0x7f00000007c0)=""/67, 0x43}, {&(0x7f0000000480)=""/53, 0x35}, {&(0x7f0000000640)=""/2, 0x2}], 0x6, &(0x7f00000008c0)=""/135, 0x87}, 0xfffffff9}, {{&(0x7f0000000980)=@xdp, 0x80, &(0x7f0000000e00)=[{&(0x7f0000000a00)=""/105, 0x69}, {&(0x7f0000000a80)=""/16, 0x10}, {&(0x7f0000000ac0)=""/228, 0xe4}, {&(0x7f0000000c40)=""/97, 0x61}, {&(0x7f0000000cc0)=""/184, 0xb8}, {&(0x7f0000000d80)=""/87, 0x57}], 0x6, &(0x7f0000000e80)=""/88, 0x58}, 0x8}, {{&(0x7f0000002d00)=@tipc=@name, 0x80, &(0x7f00000011c0)=[{&(0x7f0000000f80)=""/136, 0x88}, {&(0x7f0000002f00)=""/208, 0xd0}, {&(0x7f0000000bc0)}, {&(0x7f0000001180)=""/47, 0x2f}], 0x4, &(0x7f0000001200)=""/202, 0xca}, 0x8}, {{&(0x7f0000001300)=@isdn, 0x80, &(0x7f0000001480)=[{&(0x7f0000001380)=""/252, 0xfc}], 0x1}, 0x4}, {{&(0x7f0000000f00)=@tipc=@id, 0x80, &(0x7f0000002a40)=[{&(0x7f0000001540)=""/189, 0xbd}, {&(0x7f0000001600)=""/230, 0xe6}, {&(0x7f0000001700)=""/122, 0x7a}, {&(0x7f0000001780)=""/87, 0x57}, {&(0x7f0000002d80)=""/89, 0x66}, {&(0x7f0000001880)=""/188, 0xbc}, {&(0x7f00000029c0)=""/78, 0x4e}], 0x7, &(0x7f0000002ac0)=""/100, 0x64}, 0x2}], 0x5, 0x101, 0x0)

1.510253482s ago: executing program 3 (id=966):
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48) (async, rerun: 64)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000006e969c00000000"], 0x48) (async, rerun: 64)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000006c0)={0x7, <r2=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x7, 0x1c, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bca900000000000035090200000300ffe5000d0000000000b702000000000000739af0ff00000000c509000000010000c3aaf0fff1000000bf8720000000000037080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018220000", @ANYRES64=r1, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf9800000000000056080000000000008500000007000000b70000000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mremap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil) (async)
readv(r1, &(0x7f0000000580)=[{&(0x7f0000000380)=""/192, 0xc0}, {&(0x7f0000000440)=""/175, 0xaf}, {&(0x7f0000000500)=""/119, 0x77}, {&(0x7f00000002c0)=""/28, 0x1c}], 0x4) (async)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r5)
sendmsg$TIPC_CMD_ENABLE_BEARER(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$int_in(r3, 0x5452, &(0x7f0000000500)=0xfffffffffffffa7c)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r3) (async)
socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8922, &(0x7f0000002280)={'syzkaller0\x00'}) (async, rerun: 64)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x88) (async, rerun: 64)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async, rerun: 64)
lsetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=@known='security.selinux\x00', &(0x7f0000000180)='$\x00', 0x2, 0x2) (async)
mount$overlay(0x0, &(0x7f0000000700)='./bus\x00', &(0x7f0000000080), 0xa30400, &(0x7f0000000200)) (async)
chdir(&(0x7f0000000140)='./bus\x00') (async)
r7 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='.\x00', 0x400a00, 0x30)
fsetxattr$system_posix_acl(r7, &(0x7f0000000100)='system.posix_acl_default\x00', 0x0, 0x4c, 0x2) (async)
read$FUSE(r0, &(0x7f0000004140)={0x2020}, 0x2020)

1.510006756s ago: executing program 3 (id=967):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup3(r0, r3, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000000)=0x2, 0x4)
r5 = syz_usb_connect(0x1, 0x36, &(0x7f00000000c0)=ANY=[@ANYRES8=r4, @ANYRES32=r3], &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r6 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r5)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)
socket$nl_netfilter(0x10, 0x3, 0xc)
pwrite64(r6, &(0x7f0000000100)="7d445cdf9cb4b7f7c9", 0x9, 0x4)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
close_range(r7, 0xffffffffffffffff, 0x0)

1.44870821s ago: executing program 0 (id=968):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000140)={[0xffeffffffffffffa]}, 0x8, 0x0)
io_setup(0x206, &(0x7f0000000200)=<r1=>0x0)
io_submit(r1, 0x47f, &(0x7f00000005c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f00000003c0)="951aa14bd6f68579cac67c83bf8d4500e5cea1bb1596d4ee6645fa16fa7cacb9214070a622a2c57b89075f59b85c7b5b2c41edc9d2cd5a2c95ed1c2cf72425be9c1a2df1b60a309bc3228d7e85b300f0d7a042a40166b9208e9d2e423c32ad8e47adedf5dc425c6bcb031fb2230835d41afc23476eae602bad3246417e5ac757", 0x80}])
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r2, 0x400455c8, 0x0)
syz_usb_connect(0x2, 0xfffffffffffffe86, 0x0, 0x0)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)
syz_open_dev$ptys(0xc, 0x3, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)={{0x14}, [@NFT_MSG_NEWRULE={0x78, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_EXPRESSIONS={0x4c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x16}, @NFTA_CT_DIRECTION={0x5}]}}}, {0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xd}, @NFTA_CT_SREG={0x8, 0x4, 0x1, 0x0, 0xc}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0xa0}, 0x1, 0x0, 0x0, 0x840}, 0x0)
close(r4)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)

516.217068ms ago: executing program 1 (id=972):
r0 = socket$nl_route(0x10, 0x3, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000200, 0x0, 0xee01, &(0x7f0000000040)='./file0\x00')
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r1, 0x4b47, &(0x7f00000000c0)={0xfe, 0x7d, 0x20f})
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r2 = io_uring_setup(0x1694, &(0x7f0000000080))
r3 = socket$l2tp(0x2, 0x2, 0x73)
getpeername$l2tp(r3, &(0x7f0000000180), &(0x7f0000000200)=0x10)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'tunl0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_QUANTUM={0x8, 0x6, 0x2000007}]}}]}, 0x40}}, 0x4000010)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r2, 0x10, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000002700)=""/4096, 0x1a00}], 0x0, 0x11a}, 0x20)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'macvlan1\x00', <r7=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYRESHEX=r0, @ANYRES32=r7, @ANYBLOB="000000000000000024001280110001006272696467655f736c61766500080001000000"], 0x44}}, 0x0)

465.788553ms ago: executing program 1 (id=973):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x3, 0x4}}, 0x9)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000300)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000100)={0x1, 0x1, 0x0, &(0x7f0000000880)=""/99, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680))
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newsa={0x1a0, 0x10, 0x1, 0x70bd2d, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64}, {@in, 0x0, 0x32}, @in6=@dev={0xfe, 0x80, '\x00', 0x2c}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x8000000, 0x200}, {0x0, 0x0, 0x2}, 0x0, 0x0, 0xa, 0x1, 0x0, 0xcd}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x70bd25, 0x0, 0x0, 0x70bd28, 0xeaa}}, @algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}, 0x0, 0x18}}]}, 0x1a0}}, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000900)={0x6, 0x0, [{0x100000, 0x8d, &(0x7f0000000380)=""/141}, {0x6000, 0xb1, &(0x7f0000000440)=""/177}, {0x10000, 0x66, &(0x7f0000000500)=""/102}, {0x80a0002, 0x7c, &(0x7f0000000580)=""/124}, {0xdddd0000, 0x96, &(0x7f0000000700)=""/150}, {0x0, 0xb9, &(0x7f00000007c0)=""/185}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0xfffffffe)
r3 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0x5867, 0x400, 0xfffffffc, 0x2d0}, &(0x7f00000006c0)=<r4=>0x0, &(0x7f00000000c0)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f00000002c0)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x4, 0x0, &(0x7f0000000100)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r3, 0x100847c0, 0x0, 0x1, 0x0, 0x0)

240.584072ms ago: executing program 1 (id=974):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000300)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000100)={0x1, 0x1, 0x0, &(0x7f0000000880)=""/99, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0xfffffffe)
r2 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0x5867, 0x400, 0xfffffffc, 0x2d0}, &(0x7f00000006c0)=<r3=>0x0, &(0x7f00000000c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f00000002c0)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x4, 0x0, &(0x7f0000000100)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r2, 0x100847c0, 0x0, 0x1, 0x0, 0x0) (fail_nth: 27)

100.588586ms ago: executing program 1 (id=975):
r0 = userfaultfd(0x80001) (async)
r1 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000300)={'vxcan1\x00', <r4=>0x0})
bind$can_raw(r3, &(0x7f0000000000)={0x1d, r4}, 0x10) (async)
setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, 0x0, 0x0) (async)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000580)=ANY=[@ANYBLOB="84000000", @ANYRES16=r5, @ANYBLOB="01002abd7000fedbdf253b00040008000300", @ANYRES32=r6, @ANYBLOB="680033008000e100ffffffffffff0802110000005050505050500000030000000000000001000140010003010e0406d897000002003c04"], 0x84}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000080) (async)
r7 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000000)=0xe) (async, rerun: 32)
writev(r7, &(0x7f0000000240)=[{&(0x7f0000000940)='\r', 0x1}], 0x1) (rerun: 32)
r8 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = openat$cgroup_ro(r8, &(0x7f0000000140)='pids.events\x00', 0x275a, 0x0)
write$UHID_INPUT(r9, &(0x7f00000007c0)={0x8, {"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", 0x1000}}, 0x1006) (async)
ioctl$UFFDIO_ZEROPAGE(r8, 0xc020aa04, &(0x7f0000000080)={{&(0x7f0000fff000/0x1000)=nil, 0x1000}})
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r9, 0x0, {0x2a00, 0x80010000, 0x0, 0x7d, 0x0, 0x0, 0x0, 0x1e, 0x1c, "fee8a2ab78fc5e3ed1e00d96072000001ea8a1d91bec8d4b5a6d80b8785d9600010000000000000094d75396dccd0ff600000000a81b00", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "9001001c551265406c7f306003d8a0f4bd0000000300", [0x1]}}) (async, rerun: 32)
r10 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) (rerun: 32)
write$P9_RREAD(r10, &(0x7f0000000400)=ANY=[@ANYRESHEX=r0, @ANYBLOB="00ce9ee93e7ba209f1d176d3a0b9d6166d6c22170931b3a6aa4724809b6c7fb19cff7b1555be7d1939dcec5f7774284c8d08273ab11b9e4af2c48abb8dbb2077dbd261a3409dcdea1f9e34c679a4feb4eec8a165bc6fd3063a172587dbded9c7f212f33d19b59676a374c4fe"], 0x100b) (async)
r11 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$bt_hci(r11, 0x0, 0x1, 0x0, &(0x7f0000006940)) (async)
setresuid(0x0, 0x0, 0xffffffffffffffff) (async, rerun: 32)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r3) (async, rerun: 32)
r12 = syz_io_uring_setup(0xbd9, &(0x7f0000000640)={0x0, 0xec23, 0x488, 0x3, 0x15f, 0x0, r10}, &(0x7f0000000140)=<r13=>0x0, &(0x7f0000000100)=<r14=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r13, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) (async, rerun: 32)
syz_io_uring_submit(r13, r14, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4000, @fd_index=0x4, 0x4, &(0x7f0000001740)=[{&(0x7f0000000740)=""/4096, 0x1000}], 0x1}) (async, rerun: 32)
io_uring_enter(r12, 0x847ba, 0x0, 0xe, 0x0, 0x0)

100.432767ms ago: executing program 1 (id=976):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000100)={0x20, 0x1, 0x13, 0x1, 0x0, 0x2, 0x0})
syz_emit_ethernet(0x66, &(0x7f0000000c00)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00\x00\b', 0x30, 0x3a, 0xff, @local, @mcast2, {[], @ndisc_redir={0x87, 0x0, 0x0, '\x00', @local, @mcast2={0xe}, [{0x1, 0x1, "2025b07f3c58"}]}}}}}}, 0x0)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
recvfrom$inet6(r1, &(0x7f0000000040)=""/73, 0x49, 0x2101, &(0x7f00000000c0)={0xa, 0x4e21, 0xb, @empty, 0x10000}, 0x1c)

0s ago: executing program 1 (id=977):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000000440)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000080)={0x50, 0x0, r2, {0x7, 0x29, 0x9, 0xffffffff9080edc4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x9}}, 0x50)
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x18)
syz_fuse_handle_req(r1, &(0x7f00000083c0)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

0s ago: executing program 1 (id=978):
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f00000000c0)={0x2, 'vxcan1\x00', 0x4}, 0x18)
write$cgroup_int(r0, &(0x7f0000000240)=0x2, 0x12)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, &(0x7f0000000100)="f20faef3c74424005e000000c7442402d0000000c7442406000000000f011424f0428365dd6c0fc735cb9900003e260f78af00000000f2467db30f20c035020000000f22c0450f009292000000470f7906c40112537000", 0x57}], 0x1, 0x6, &(0x7f00000001c0)=[@cstype3={0x5, 0xd}], 0x1)
r1 = accept4$nfc_llcp(r0, 0x0, &(0x7f0000000040), 0x80000)
ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000080)) (async)
ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000080)=<r2=>0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r3) (async)
r4 = dup(r3)
write$UHID_INPUT(r4, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x1006) (async)
write$UHID_INPUT(r4, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x1006)
setpriority(0x1, 0x0, 0x5)
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x28c81, 0x0)
ioctl$SNAPSHOT_ATOMIC_RESTORE(r5, 0x3304) (async)
ioctl$SNAPSHOT_ATOMIC_RESTORE(r5, 0x3304)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x160b, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @osf={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x4}]}}}, {0x28, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NAT_TYPE={0x8}, @NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0x14}, @NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}, 0x1, 0x0, 0x0, 0x850}, 0x4040080) (async)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x160b, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @osf={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x4}]}}}, {0x28, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NAT_TYPE={0x8}, @NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0x14}, @NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}, 0x1, 0x0, 0x0, 0x850}, 0x4040080)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r1, 0x50009417, &(0x7f0000000280)={{r0}, r2, 0x1a, @unused=[0x401, 0x4, 0x1ff, 0x40], @name="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"})

kernel console output (not intermixed with test programs):

00246 R12: 0000000000000001
[   78.715739][ T7754] R13: 00007f495e3e6038 R14: 00007f495e3e5fa0 R15: 00007ffff94759e8
[   78.715767][ T7754]  </TASK>
[   78.817794][    C1] vkms_vblank_simulate: vblank timer overrun
[   78.874842][   T40] audit: type=1400 audit(1760322997.940:612): avc:  denied  { bind } for  pid=7759 comm="syz.1.532" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   78.880907][ T7758] netlink: 'syz.0.531': attribute type 4 has an invalid length.
[   78.886028][ T7758] netlink: 17 bytes leftover after parsing attributes in process `syz.0.531'.
[   78.892883][ T7758] netlink: 20 bytes leftover after parsing attributes in process `syz.0.531'.
[   79.102313][ T7786] FAULT_INJECTION: forcing a failure.
[   79.102313][ T7786] name failslab, interval 1, probability 0, space 0, times 0
[   79.108081][ T7786] CPU: 1 UID: 0 PID: 7786 Comm: syz.0.540 Not tainted syzkaller #0 PREEMPT(full) 
[   79.108105][ T7786] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.108116][ T7786] Call Trace:
[   79.108122][ T7786]  <TASK>
[   79.108129][ T7786]  dump_stack_lvl+0x16c/0x1f0
[   79.108155][ T7786]  should_fail_ex+0x512/0x640
[   79.108175][ T7786]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   79.108201][ T7786]  should_failslab+0xc2/0x120
[   79.108226][ T7786]  kmem_cache_alloc_noprof+0x75/0x6e0
[   79.108248][ T7786]  ? skb_clone+0x190/0x3f0
[   79.108273][ T7786]  ? skb_clone+0x190/0x3f0
[   79.108292][ T7786]  skb_clone+0x190/0x3f0
[   79.108313][ T7786]  netlink_deliver_tap+0xabd/0xd30
[   79.108341][ T7786]  netlink_unicast+0x64c/0x870
[   79.108368][ T7786]  ? __pfx_netlink_unicast+0x10/0x10
[   79.108402][ T7786]  netlink_sendmsg+0x8c8/0xdd0
[   79.108429][ T7786]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.108463][ T7786]  ____sys_sendmsg+0xa98/0xc70
[   79.108489][ T7786]  ? copy_msghdr_from_user+0x10a/0x160
[   79.108509][ T7786]  ? __pfx_____sys_sendmsg+0x10/0x10
[   79.108538][ T7786]  ? __pfx__kstrtoull+0x10/0x10
[   79.108572][ T7786]  ___sys_sendmsg+0x134/0x1d0
[   79.108594][ T7786]  ? __pfx____sys_sendmsg+0x10/0x10
[   79.108628][ T7786]  ? find_held_lock+0x2b/0x80
[   79.108663][ T7786]  __sys_sendmmsg+0x200/0x420
[   79.108686][ T7786]  ? __pfx___sys_sendmmsg+0x10/0x10
[   79.108717][ T7786]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   79.108750][ T7786]  ? fput+0x9b/0xd0
[   79.108766][ T7786]  ? ksys_write+0x1ac/0x250
[   79.108788][ T7786]  ? __pfx_ksys_write+0x10/0x10
[   79.108814][ T7786]  __x64_sys_sendmmsg+0x9c/0x100
[   79.108834][ T7786]  ? lockdep_hardirqs_on+0x7c/0x110
[   79.108854][ T7786]  do_syscall_64+0xcd/0xfa0
[   79.108877][ T7786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.108894][ T7786] RIP: 0033:0x7fd56c98eec9
[   79.108908][ T7786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.108925][ T7786] RSP: 002b:00007fd56d75a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   79.108942][ T7786] RAX: ffffffffffffffda RBX: 00007fd56cbe5fa0 RCX: 00007fd56c98eec9
[   79.108953][ T7786] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000003
[   79.108964][ T7786] RBP: 00007fd56d75a090 R08: 0000000000000000 R09: 0000000000000000
[   79.108974][ T7786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.108984][ T7786] R13: 00007fd56cbe6038 R14: 00007fd56cbe5fa0 R15: 00007ffd1ee5ac58
[   79.109010][ T7786]  </TASK>
[   79.109119][ T7786] netlink: 20 bytes leftover after parsing attributes in process `syz.0.540'.
[   79.247378][   T40] audit: type=1400 audit(1760322998.310:613): avc:  denied  { module_load } for  pid=7787 comm="syz.0.541" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[   79.324186][ T7793] netlink: 20 bytes leftover after parsing attributes in process `syz.0.543'.
[   79.427312][ T7798] netlink: 'syz.0.545': attribute type 2 has an invalid length.
[   79.526333][ T7802] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[   79.535847][ T5944] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   79.536251][   T64] Bluetooth: hci4: command 0x1003 tx timeout
[   79.879368][ T7814] FAULT_INJECTION: forcing a failure.
[   79.879368][ T7814] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   79.883488][ T7814] CPU: 2 UID: 0 PID: 7814 Comm: syz.1.551 Not tainted syzkaller #0 PREEMPT(full) 
[   79.883502][ T7814] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.883509][ T7814] Call Trace:
[   79.883513][ T7814]  <TASK>
[   79.883518][ T7814]  dump_stack_lvl+0x16c/0x1f0
[   79.883536][ T7814]  should_fail_ex+0x512/0x640
[   79.883552][ T7814]  _copy_from_user+0x2e/0xd0
[   79.883567][ T7814]  copy_msghdr_from_user+0x98/0x160
[   79.883580][ T7814]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   79.883595][ T7814]  ? kfree+0x252/0x6d0
[   79.883606][ T7814]  ? __pfx__kstrtoull+0x10/0x10
[   79.883625][ T7814]  ___sys_sendmsg+0xfe/0x1d0
[   79.883638][ T7814]  ? __pfx____sys_sendmsg+0x10/0x10
[   79.883663][ T7814]  ? __pfx___might_resched+0x10/0x10
[   79.883677][ T7814]  __sys_sendmmsg+0x200/0x420
[   79.883691][ T7814]  ? __pfx___sys_sendmmsg+0x10/0x10
[   79.883708][ T7814]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   79.883728][ T7814]  ? fput+0x9b/0xd0
[   79.883738][ T7814]  ? ksys_write+0x1ac/0x250
[   79.883751][ T7814]  ? __pfx_ksys_write+0x10/0x10
[   79.883766][ T7814]  __x64_sys_sendmmsg+0x9c/0x100
[   79.883779][ T7814]  ? lockdep_hardirqs_on+0x7c/0x110
[   79.883791][ T7814]  do_syscall_64+0xcd/0xfa0
[   79.883805][ T7814]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.883816][ T7814] RIP: 0033:0x7f495e18eec9
[   79.883825][ T7814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.883835][ T7814] RSP: 002b:00007f495f0ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   79.883846][ T7814] RAX: ffffffffffffffda RBX: 00007f495e3e5fa0 RCX: 00007f495e18eec9
[   79.883853][ T7814] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000003
[   79.883860][ T7814] RBP: 00007f495f0ef090 R08: 0000000000000000 R09: 0000000000000000
[   79.883866][ T7814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.883872][ T7814] R13: 00007f495e3e6038 R14: 00007f495e3e5fa0 R15: 00007ffff94759e8
[   79.883886][ T7814]  </TASK>
[   80.539976][ T7840] netlink: 20 bytes leftover after parsing attributes in process `syz.1.559'.
[   80.576042][ T7845] FAULT_INJECTION: forcing a failure.
[   80.576042][ T7845] name failslab, interval 1, probability 0, space 0, times 0
[   80.579957][ T7845] CPU: 0 UID: 0 PID: 7845 Comm: syz.1.561 Not tainted syzkaller #0 PREEMPT(full) 
[   80.579971][ T7845] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.579978][ T7845] Call Trace:
[   80.579982][ T7845]  <TASK>
[   80.579986][ T7845]  dump_stack_lvl+0x16c/0x1f0
[   80.580003][ T7845]  should_fail_ex+0x512/0x640
[   80.580017][ T7845]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[   80.580032][ T7845]  should_failslab+0xc2/0x120
[   80.580048][ T7845]  kmem_cache_alloc_node_noprof+0x78/0x770
[   80.580061][ T7845]  ? __alloc_skb+0x2b2/0x380
[   80.580076][ T7845]  ? __alloc_skb+0x2b2/0x380
[   80.580086][ T7845]  ? __pfx_avc_has_perm+0x10/0x10
[   80.580096][ T7845]  __alloc_skb+0x2b2/0x380
[   80.580107][ T7845]  ? __pfx___alloc_skb+0x10/0x10
[   80.580117][ T7845]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[   80.580131][ T7845]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[   80.580148][ T7845]  netlink_alloc_large_skb+0x69/0x140
[   80.580163][ T7845]  netlink_sendmsg+0x698/0xdd0
[   80.580179][ T7845]  ? __pfx_netlink_sendmsg+0x10/0x10
[   80.580198][ T7845]  ____sys_sendmsg+0xa98/0xc70
[   80.580214][ T7845]  ? copy_msghdr_from_user+0x10a/0x160
[   80.580226][ T7845]  ? __pfx_____sys_sendmsg+0x10/0x10
[   80.580244][ T7845]  ? kfree+0x252/0x6d0
[   80.580252][ T7845]  ? __pfx__kstrtoull+0x10/0x10
[   80.580272][ T7845]  ___sys_sendmsg+0x134/0x1d0
[   80.580285][ T7845]  ? __pfx____sys_sendmsg+0x10/0x10
[   80.580310][ T7845]  ? __pfx___might_resched+0x10/0x10
[   80.580324][ T7845]  __sys_sendmmsg+0x200/0x420
[   80.580338][ T7845]  ? __pfx___sys_sendmmsg+0x10/0x10
[   80.580355][ T7845]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   80.580374][ T7845]  ? fput+0x9b/0xd0
[   80.580384][ T7845]  ? ksys_write+0x1ac/0x250
[   80.580397][ T7845]  ? __pfx_ksys_write+0x10/0x10
[   80.580413][ T7845]  __x64_sys_sendmmsg+0x9c/0x100
[   80.580425][ T7845]  ? lockdep_hardirqs_on+0x7c/0x110
[   80.580438][ T7845]  do_syscall_64+0xcd/0xfa0
[   80.580452][ T7845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.580463][ T7845] RIP: 0033:0x7f495e18eec9
[   80.580472][ T7845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.580482][ T7845] RSP: 002b:00007f495f0ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   80.580493][ T7845] RAX: ffffffffffffffda RBX: 00007f495e3e5fa0 RCX: 00007f495e18eec9
[   80.580500][ T7845] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000003
[   80.580506][ T7845] RBP: 00007f495f0ef090 R08: 0000000000000000 R09: 0000000000000000
[   80.580512][ T7845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.580518][ T7845] R13: 00007f495e3e6038 R14: 00007f495e3e5fa0 R15: 00007ffff94759e8
[   80.580533][ T7845]  </TASK>
[   80.790908][ T7854] netlink: 20 bytes leftover after parsing attributes in process `syz.1.565'.
[   80.860300][ T7863] FAULT_INJECTION: forcing a failure.
[   80.860300][ T7863] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.864645][ T7863] CPU: 2 UID: 0 PID: 7863 Comm: syz.3.568 Not tainted syzkaller #0 PREEMPT(full) 
[   80.864661][ T7863] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.864669][ T7863] Call Trace:
[   80.864673][ T7863]  <TASK>
[   80.864678][ T7863]  dump_stack_lvl+0x16c/0x1f0
[   80.864696][ T7863]  should_fail_ex+0x512/0x640
[   80.864712][ T7863]  _copy_from_user+0x2e/0xd0
[   80.864727][ T7863]  copy_msghdr_from_user+0x98/0x160
[   80.864742][ T7863]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   80.864762][ T7863]  ___sys_sendmsg+0xfe/0x1d0
[   80.864780][ T7863]  ? __pfx____sys_sendmsg+0x10/0x10
[   80.864792][ T7863]  ? __lock_acquire+0x622/0x1c90
[   80.864825][ T7863]  __sys_sendmsg+0x16d/0x220
[   80.864838][ T7863]  ? __pfx___sys_sendmsg+0x10/0x10
[   80.864857][ T7863]  ? fput+0x9b/0xd0
[   80.864869][ T7863]  do_syscall_64+0xcd/0xfa0
[   80.864884][ T7863]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.864896][ T7863] RIP: 0033:0x7f565618eec9
[   80.864905][ T7863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.864917][ T7863] RSP: 002b:00007f5657053038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.864928][ T7863] RAX: ffffffffffffffda RBX: 00007f56563e5fa0 RCX: 00007f565618eec9
[   80.864936][ T7863] RDX: 0000000000008004 RSI: 0000200000000040 RDI: 0000000000000004
[   80.864942][ T7863] RBP: 00007f5657053090 R08: 0000000000000000 R09: 0000000000000000
[   80.864949][ T7863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.864955][ T7863] R13: 00007f56563e6038 R14: 00007f56563e5fa0 R15: 00007ffe15c9ac28
[   80.864970][ T7863]  </TASK>
[   81.113200][ T7876] bridge0: port 3(veth0_to_bridge) entered blocking state
[   81.117210][ T7876] bridge0: port 3(veth0_to_bridge) entered disabled state
[   81.120095][ T7876] veth0_to_bridge: entered allmulticast mode
[   81.123964][ T7876] veth0_to_bridge: entered promiscuous mode
[   81.126946][ T7876] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[   81.132711][ T7876] bridge0: port 3(veth0_to_bridge) entered blocking state
[   81.135103][ T7876] bridge0: port 3(veth0_to_bridge) entered forwarding state
[   81.213998][ T7887] FAULT_INJECTION: forcing a failure.
[   81.213998][ T7887] name failslab, interval 1, probability 0, space 0, times 0
[   81.219722][ T7887] CPU: 3 UID: 0 PID: 7887 Comm: syz.2.578 Not tainted syzkaller #0 PREEMPT(full) 
[   81.219745][ T7887] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.219762][ T7887] Call Trace:
[   81.219768][ T7887]  <TASK>
[   81.219775][ T7887]  dump_stack_lvl+0x16c/0x1f0
[   81.219801][ T7887]  should_fail_ex+0x512/0x640
[   81.219822][ T7887]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[   81.219847][ T7887]  should_failslab+0xc2/0x120
[   81.219873][ T7887]  kmem_cache_alloc_node_noprof+0x78/0x770
[   81.219893][ T7887]  ? __alloc_skb+0x2b2/0x380
[   81.219917][ T7887]  ? __alloc_skb+0x2b2/0x380
[   81.219933][ T7887]  ? __pfx_avc_has_perm+0x10/0x10
[   81.219949][ T7887]  __alloc_skb+0x2b2/0x380
[   81.219966][ T7887]  ? __pfx___alloc_skb+0x10/0x10
[   81.219983][ T7887]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[   81.220006][ T7887]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[   81.220034][ T7887]  netlink_alloc_large_skb+0x69/0x140
[   81.220058][ T7887]  netlink_sendmsg+0x698/0xdd0
[   81.220084][ T7887]  ? __pfx_netlink_sendmsg+0x10/0x10
[   81.220114][ T7887]  ____sys_sendmsg+0xa98/0xc70
[   81.220140][ T7887]  ? copy_msghdr_from_user+0x10a/0x160
[   81.220159][ T7887]  ? __pfx_____sys_sendmsg+0x10/0x10
[   81.220196][ T7887]  ___sys_sendmsg+0x134/0x1d0
[   81.220218][ T7887]  ? __pfx____sys_sendmsg+0x10/0x10
[   81.220236][ T7887]  ? __lock_acquire+0x622/0x1c90
[   81.220287][ T7887]  __sys_sendmsg+0x16d/0x220
[   81.220309][ T7887]  ? __pfx___sys_sendmsg+0x10/0x10
[   81.220343][ T7887]  do_syscall_64+0xcd/0xfa0
[   81.220363][ T7887]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.220379][ T7887] RIP: 0033:0x7f7caf98eec9
[   81.220388][ T7887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.220399][ T7887] RSP: 002b:00007f7cb0751038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   81.220410][ T7887] RAX: ffffffffffffffda RBX: 00007f7cafbe5fa0 RCX: 00007f7caf98eec9
[   81.220416][ T7887] RDX: 0000000000008004 RSI: 0000200000000040 RDI: 0000000000000004
[   81.220422][ T7887] RBP: 00007f7cb0751090 R08: 0000000000000000 R09: 0000000000000000
[   81.220428][ T7887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.220434][ T7887] R13: 00007f7cafbe6038 R14: 00007f7cafbe5fa0 R15: 00007ffe87c55258
[   81.220447][ T7887]  </TASK>
[   81.346599][ T7891] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   81.465872][   T61] cfg80211: failed to load regulatory.db
[   81.624625][   T24] usb 5-1: new low-speed USB device number 6 using dummy_hcd
[   81.714571][   T61] usb 6-1: new low-speed USB device number 8 using dummy_hcd
[   81.788579][   T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   81.791789][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   81.796464][   T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   81.801367][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   81.806347][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   81.812277][   T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   81.815602][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   81.819979][   T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   81.825042][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   81.829584][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   81.835244][   T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   81.838436][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   81.842885][   T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   81.848013][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   81.852642][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   81.860106][   T24] usb 5-1: string descriptor 0 read error: -22
[   81.862954][   T24] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   81.867202][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   81.878115][   T61] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[   81.880573][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   81.883910][   T61] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   81.885105][   T24] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   81.887824][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   81.894171][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   81.899627][   T61] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[   81.901961][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   81.905453][   T61] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   81.909174][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   81.912599][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   81.917221][   T61] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[   81.919748][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   81.923160][   T61] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   81.927026][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   81.931302][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   81.939364][   T61] usb 6-1: string descriptor 0 read error: -22
[   81.942046][   T61] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   81.946032][   T61] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   81.956524][   T61] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux1
[   82.105086][ T7893] FAULT_INJECTION: forcing a failure.
[   82.105086][ T7893] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.109436][ T7893] CPU: 0 UID: 0 PID: 7893 Comm: syz.0.581 Not tainted syzkaller #0 PREEMPT(full) 
[   82.109451][ T7893] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.109458][ T7893] Call Trace:
[   82.109463][ T7893]  <TASK>
[   82.109467][ T7893]  dump_stack_lvl+0x16c/0x1f0
[   82.109485][ T7893]  should_fail_ex+0x512/0x640
[   82.109501][ T7893]  _copy_from_user+0x2e/0xd0
[   82.109515][ T7893]  adu_write+0x4f3/0xee0
[   82.109533][ T7893]  ? __pfx_adu_write+0x10/0x10
[   82.109543][ T7893]  ? avc_policy_seqno+0x9/0x20
[   82.109553][ T7893]  ? selinux_file_permission+0x126/0x660
[   82.109571][ T7893]  ? __pfx_default_wake_function+0x10/0x10
[   82.109589][ T7893]  ? bpf_lsm_file_permission+0x9/0x10
[   82.109603][ T7893]  ? security_file_permission+0x71/0x210
[   82.109619][ T7893]  ? rw_verify_area+0xcf/0x6c0
[   82.109633][ T7893]  ? __pfx_adu_write+0x10/0x10
[   82.109643][ T7893]  vfs_write+0x2a0/0x11d0
[   82.109660][ T7893]  ? __pfx_vfs_write+0x10/0x10
[   82.109672][ T7893]  ? find_held_lock+0x2b/0x80
[   82.109682][ T7893]  ? __fget_files+0x204/0x3c0
[   82.109699][ T7893]  ? __fget_files+0x20e/0x3c0
[   82.109712][ T7893]  ? __fget_files+0x190/0x3c0
[   82.109732][ T7893]  __x64_sys_pwrite64+0x1eb/0x250
[   82.109747][ T7893]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[   82.109765][ T7893]  do_syscall_64+0xcd/0xfa0
[   82.109779][ T7893]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.109791][ T7893] RIP: 0033:0x7fd56c98eec9
[   82.109800][ T7893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.109810][ T7893] RSP: 002b:00007fd56d75a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[   82.109821][ T7893] RAX: ffffffffffffffda RBX: 00007fd56cbe5fa0 RCX: 00007fd56c98eec9
[   82.109827][ T7893] RDX: 0000000000000009 RSI: 0000200000000100 RDI: 0000000000000004
[   82.109834][ T7893] RBP: 00007fd56d75a090 R08: 0000000000000000 R09: 0000000000000000
[   82.109840][ T7893] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[   82.109846][ T7893] R13: 00007fd56cbe6038 R14: 00007fd56cbe5fa0 R15: 00007ffd1ee5ac58
[   82.109860][ T7893]  </TASK>
[   82.110665][  T841] usb 5-1: USB disconnect, device number 6
[   82.261775][ T7900] netlink: 'syz.1.583': attribute type 1 has an invalid length.
[   82.333741][   T61] usb 6-1: USB disconnect, device number 8
[   82.645446][ T7902] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7902 comm=syz.0.584
[   82.825242][ T7906] __nla_validate_parse: 1 callbacks suppressed
[   82.825259][ T7906] netlink: 20 bytes leftover after parsing attributes in process `syz.0.586'.
[   82.864174][ T7908] netlink: 224 bytes leftover after parsing attributes in process `syz.1.587'.
[   82.868399][ T7908] IPv6: Can't replace route, no match found
[   82.869353][ T7910] FAULT_INJECTION: forcing a failure.
[   82.869353][ T7910] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.876410][ T7910] CPU: 2 UID: 0 PID: 7910 Comm: syz.0.588 Not tainted syzkaller #0 PREEMPT(full) 
[   82.876425][ T7910] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.876432][ T7910] Call Trace:
[   82.876436][ T7910]  <TASK>
[   82.876450][ T7910]  dump_stack_lvl+0x16c/0x1f0
[   82.876469][ T7910]  should_fail_ex+0x512/0x640
[   82.876484][ T7910]  _copy_from_iter+0x29f/0x1720
[   82.876501][ T7910]  ? __alloc_skb+0x200/0x380
[   82.876513][ T7910]  ? __pfx__copy_from_iter+0x10/0x10
[   82.876525][ T7910]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[   82.876539][ T7910]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[   82.876558][ T7910]  netlink_sendmsg+0x820/0xdd0
[   82.876575][ T7910]  ? __pfx_netlink_sendmsg+0x10/0x10
[   82.876594][ T7910]  ____sys_sendmsg+0xa98/0xc70
[   82.876610][ T7910]  ? copy_msghdr_from_user+0x10a/0x160
[   82.876622][ T7910]  ? __pfx_____sys_sendmsg+0x10/0x10
[   82.876640][ T7910]  ? kfree+0x252/0x6d0
[   82.876650][ T7910]  ? __pfx__kstrtoull+0x10/0x10
[   82.876669][ T7910]  ___sys_sendmsg+0x134/0x1d0
[   82.876682][ T7910]  ? __pfx____sys_sendmsg+0x10/0x10
[   82.876708][ T7910]  ? __pfx___might_resched+0x10/0x10
[   82.876722][ T7910]  __sys_sendmmsg+0x200/0x420
[   82.876736][ T7910]  ? __pfx___sys_sendmmsg+0x10/0x10
[   82.876753][ T7910]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   82.876777][ T7910]  ? fput+0x9b/0xd0
[   82.876787][ T7910]  ? ksys_write+0x1ac/0x250
[   82.876800][ T7910]  ? __pfx_ksys_write+0x10/0x10
[   82.876815][ T7910]  __x64_sys_sendmmsg+0x9c/0x100
[   82.876827][ T7910]  ? lockdep_hardirqs_on+0x7c/0x110
[   82.876840][ T7910]  do_syscall_64+0xcd/0xfa0
[   82.876854][ T7910]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.876865][ T7910] RIP: 0033:0x7fd56c98eec9
[   82.876874][ T7910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.876885][ T7910] RSP: 002b:00007fd56d75a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   82.876895][ T7910] RAX: ffffffffffffffda RBX: 00007fd56cbe5fa0 RCX: 00007fd56c98eec9
[   82.876902][ T7910] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000003
[   82.876908][ T7910] RBP: 00007fd56d75a090 R08: 0000000000000000 R09: 0000000000000000
[   82.876915][ T7910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.876921][ T7910] R13: 00007fd56cbe6038 R14: 00007fd56cbe5fa0 R15: 00007ffd1ee5ac58
[   82.876935][ T7910]  </TASK>
[   82.976338][   T40] kauditd_printk_skb: 4 callbacks suppressed
[   82.976349][   T40] audit: type=1400 audit(1760323002.040:618): avc:  denied  { append } for  pid=7913 comm="syz.1.590" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   83.764660][   T24] usb 5-1: new low-speed USB device number 7 using dummy_hcd
[   83.916162][   T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   83.919126][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   83.923152][   T40] audit: type=1400 audit(1760323002.980:619): avc:  denied  { append } for  pid=7933 comm="syz.3.597" name="comedi3" dev="devtmpfs" ino=1305 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   83.923436][   T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   83.925071][ T7934] netlink: 4 bytes leftover after parsing attributes in process `syz.3.597'.
[   83.940737][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   83.945274][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   83.950515][   T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   83.953452][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   83.957835][   T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   83.962507][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   83.967109][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   83.972213][   T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   83.975239][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   83.979351][   T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   83.983815][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   83.988304][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   83.995366][   T24] usb 5-1: string descriptor 0 read error: -22
[   83.997871][   T24] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   84.001393][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   84.011414][   T24] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   84.027018][ T7936] openvswitch: netlink: Missing key (keys=40, expected=200000)
[   84.089940][ T7938] netlink: 20 bytes leftover after parsing attributes in process `syz.1.599'.
[   84.199228][ T7944] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[   84.202414][ T7944] UDF-fs: Scanning with blocksize 2048 failed
[   84.206116][ T7944] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[   84.210555][ T7944] UDF-fs: Scanning with blocksize 4096 failed
[   84.245086][ T7932] FAULT_INJECTION: forcing a failure.
[   84.245086][ T7932] name failslab, interval 1, probability 0, space 0, times 0
[   84.249842][ T7932] CPU: 0 UID: 0 PID: 7932 Comm: syz.0.596 Not tainted syzkaller #0 PREEMPT(full) 
[   84.249860][ T7932] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.249867][ T7932] Call Trace:
[   84.249872][ T7932]  <TASK>
[   84.249876][ T7932]  dump_stack_lvl+0x16c/0x1f0
[   84.249894][ T7932]  should_fail_ex+0x512/0x640
[   84.249907][ T7932]  ? __kmalloc_cache_noprof+0x5f/0x780
[   84.249921][ T7932]  should_failslab+0xc2/0x120
[   84.249937][ T7932]  __kmalloc_cache_noprof+0x72/0x780
[   84.249950][ T7932]  ? dummy_urb_enqueue+0xa3/0x920
[   84.249963][ T7932]  ? dummy_urb_enqueue+0xa3/0x920
[   84.249973][ T7932]  dummy_urb_enqueue+0xa3/0x920
[   84.249990][ T7932]  ? usb_hcd_map_urb_for_dma+0x359/0x1360
[   84.250010][ T7932]  usb_hcd_submit_urb+0x25b/0x1c60
[   84.250028][ T7932]  ? find_held_lock+0x2b/0x80
[   84.250040][ T7932]  usb_submit_urb+0x89f/0x1990
[   84.250056][ T7932]  adu_write+0x7fd/0xee0
[   84.250072][ T7932]  ? __pfx_adu_write+0x10/0x10
[   84.250083][ T7932]  ? avc_policy_seqno+0x9/0x20
[   84.250092][ T7932]  ? selinux_file_permission+0x126/0x660
[   84.250107][ T7932]  ? __pfx_default_wake_function+0x10/0x10
[   84.250125][ T7932]  ? bpf_lsm_file_permission+0x9/0x10
[   84.250139][ T7932]  ? security_file_permission+0x71/0x210
[   84.250155][ T7932]  ? rw_verify_area+0xcf/0x6c0
[   84.250168][ T7932]  ? __pfx_adu_write+0x10/0x10
[   84.250177][ T7932]  vfs_write+0x2a0/0x11d0
[   84.250194][ T7932]  ? __pfx_vfs_write+0x10/0x10
[   84.250206][ T7932]  ? find_held_lock+0x2b/0x80
[   84.250215][ T7932]  ? __fget_files+0x204/0x3c0
[   84.250232][ T7932]  ? __fget_files+0x20e/0x3c0
[   84.250245][ T7932]  ? __fget_files+0x190/0x3c0
[   84.250262][ T7932]  __x64_sys_pwrite64+0x1eb/0x250
[   84.250277][ T7932]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[   84.250295][ T7932]  do_syscall_64+0xcd/0xfa0
[   84.250309][ T7932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.250321][ T7932] RIP: 0033:0x7fd56c98eec9
[   84.250330][ T7932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.250340][ T7932] RSP: 002b:00007fd56d75a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[   84.250350][ T7932] RAX: ffffffffffffffda RBX: 00007fd56cbe5fa0 RCX: 00007fd56c98eec9
[   84.250357][ T7932] RDX: 0000000000000009 RSI: 0000200000000100 RDI: 0000000000000004
[   84.250363][ T7932] RBP: 00007fd56d75a090 R08: 0000000000000000 R09: 0000000000000000
[   84.250369][ T7932] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[   84.250375][ T7932] R13: 00007fd56cbe6038 R14: 00007fd56cbe5fa0 R15: 00007ffd1ee5ac58
[   84.250390][ T7932]  </TASK>
[   84.250399][ T7932] usb 5-1: Couldn't submit interrupt_out_urb -12
[   84.290324][ T7950] FAULT_INJECTION: forcing a failure.
[   84.290324][ T7950] name failslab, interval 1, probability 0, space 0, times 0
[   84.294199][  T841] usb 5-1: USB disconnect, device number 7
[   84.295355][ T7950] CPU: 2 UID: 0 PID: 7950 Comm: syz.1.603 Not tainted syzkaller #0 PREEMPT(full) 
[   84.295370][ T7950] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.295377][ T7950] Call Trace:
[   84.295381][ T7950]  <TASK>
[   84.295385][ T7950]  dump_stack_lvl+0x16c/0x1f0
[   84.295402][ T7950]  should_fail_ex+0x512/0x640
[   84.295416][ T7950]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   84.295431][ T7950]  should_failslab+0xc2/0x120
[   84.295448][ T7950]  kmem_cache_alloc_noprof+0x75/0x6e0
[   84.295461][ T7950]  ? skb_clone+0x190/0x3f0
[   84.295477][ T7950]  ? skb_clone+0x190/0x3f0
[   84.295488][ T7950]  skb_clone+0x190/0x3f0
[   84.295501][ T7950]  netlink_deliver_tap+0xabd/0xd30
[   84.295518][ T7950]  netlink_unicast+0x64c/0x870
[   84.295534][ T7950]  ? __pfx_netlink_unicast+0x10/0x10
[   84.295553][ T7950]  netlink_sendmsg+0x8c8/0xdd0
[   84.295569][ T7950]  ? __pfx_netlink_sendmsg+0x10/0x10
[   84.295588][ T7950]  ____sys_sendmsg+0xa98/0xc70
[   84.295605][ T7950]  ? copy_msghdr_from_user+0x10a/0x160
[   84.295617][ T7950]  ? __pfx_____sys_sendmsg+0x10/0x10
[   84.295634][ T7950]  ? kfree+0x252/0x6d0
[   84.295643][ T7950]  ? __pfx__kstrtoull+0x10/0x10
[   84.295663][ T7950]  ___sys_sendmsg+0x134/0x1d0
[   84.295677][ T7950]  ? __pfx____sys_sendmsg+0x10/0x10
[   84.295706][ T7950]  ? __pfx___might_resched+0x10/0x10
[   84.295720][ T7950]  __sys_sendmmsg+0x200/0x420
[   84.295736][ T7950]  ? __pfx___sys_sendmmsg+0x10/0x10
[   84.295753][ T7950]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   84.295773][ T7950]  ? fput+0x9b/0xd0
[   84.295783][ T7950]  ? ksys_write+0x1ac/0x250
[   84.295796][ T7950]  ? __pfx_ksys_write+0x10/0x10
[   84.295811][ T7950]  __x64_sys_sendmmsg+0x9c/0x100
[   84.295823][ T7950]  ? lockdep_hardirqs_on+0x7c/0x110
[   84.295836][ T7950]  do_syscall_64+0xcd/0xfa0
[   84.295850][ T7950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.295861][ T7950] RIP: 0033:0x7f495e18eec9
[   84.295869][ T7950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.295880][ T7950] RSP: 002b:00007f495f0ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   84.295891][ T7950] RAX: ffffffffffffffda RBX: 00007f495e3e5fa0 RCX: 00007f495e18eec9
[   84.295898][ T7950] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000003
[   84.295904][ T7950] RBP: 00007f495f0ef090 R08: 0000000000000000 R09: 0000000000000000
[   84.295910][ T7950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   84.295916][ T7950] R13: 00007f495e3e6038 R14: 00007f495e3e5fa0 R15: 00007ffff94759e8
[   84.295931][ T7950]  </TASK>
[   84.295942][ T7950] netlink: 20 bytes leftover after parsing attributes in process `syz.1.603'.
[   84.367000][   T40] audit: type=1400 audit(1760323003.430:620): avc:  denied  { ioctl } for  pid=7953 comm="syz.2.604" path="socket:[19747]" dev="sockfs" ino=19747 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   84.367685][ T7954] netlink: 4 bytes leftover after parsing attributes in process `syz.2.604'.
[   84.368952][   T40] audit: type=1400 audit(1760323003.430:621): avc:  denied  { bind } for  pid=7953 comm="syz.2.604" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   84.440211][ T7962] FAULT_INJECTION: forcing a failure.
[   84.440211][ T7962] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.473017][ T7962] CPU: 0 UID: 0 PID: 7962 Comm: syz.1.605 Not tainted syzkaller #0 PREEMPT(full) 
[   84.473038][ T7962] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.473045][ T7962] Call Trace:
[   84.473049][ T7962]  <TASK>
[   84.473053][ T7962]  dump_stack_lvl+0x16c/0x1f0
[   84.473070][ T7962]  should_fail_ex+0x512/0x640
[   84.473086][ T7962]  _copy_from_iter+0x29f/0x1720
[   84.473101][ T7962]  ? __alloc_skb+0x200/0x380
[   84.473114][ T7962]  ? __pfx__copy_from_iter+0x10/0x10
[   84.473126][ T7962]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[   84.473141][ T7962]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[   84.473160][ T7962]  netlink_sendmsg+0x820/0xdd0
[   84.473177][ T7962]  ? __pfx_netlink_sendmsg+0x10/0x10
[   84.473196][ T7962]  ____sys_sendmsg+0xa98/0xc70
[   84.473212][ T7962]  ? copy_msghdr_from_user+0x10a/0x160
[   84.473225][ T7962]  ? __pfx_____sys_sendmsg+0x10/0x10
[   84.473247][ T7962]  ___sys_sendmsg+0x134/0x1d0
[   84.473260][ T7962]  ? __pfx____sys_sendmsg+0x10/0x10
[   84.473271][ T7962]  ? __lock_acquire+0x622/0x1c90
[   84.473301][ T7962]  __sys_sendmsg+0x16d/0x220
[   84.473314][ T7962]  ? __pfx___sys_sendmsg+0x10/0x10
[   84.473336][ T7962]  do_syscall_64+0xcd/0xfa0
[   84.473350][ T7962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.473361][ T7962] RIP: 0033:0x7f495e18eec9
[   84.473370][ T7962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.473381][ T7962] RSP: 002b:00007f495f0ce038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   84.473392][ T7962] RAX: ffffffffffffffda RBX: 00007f495e3e6090 RCX: 00007f495e18eec9
[   84.473399][ T7962] RDX: 0000000000008004 RSI: 0000200000000040 RDI: 0000000000000004
[   84.473405][ T7962] RBP: 00007f495f0ce090 R08: 0000000000000000 R09: 0000000000000000
[   84.473411][ T7962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.473418][ T7962] R13: 00007f495e3e6128 R14: 00007f495e3e6090 R15: 00007ffff94759e8
[   84.473432][ T7962]  </TASK>
[   84.606161][ T7964] netlink: 'syz.1.606': attribute type 1 has an invalid length.
[   84.608598][ T7964] netlink: 'syz.1.606': attribute type 1 has an invalid length.
[   84.611910][ T7964] netlink: 20 bytes leftover after parsing attributes in process `syz.1.606'.
[   84.625375][   T40] audit: type=1400 audit(1760323003.690:622): avc:  denied  { create } for  pid=7965 comm="syz.2.607" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   84.633763][   T40] audit: type=1400 audit(1760323003.690:623): avc:  denied  { ioctl } for  pid=7965 comm="syz.2.607" path="socket:[17313]" dev="sockfs" ino=17313 ioctlcmd=0x8941 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   84.753210][ T7974] netlink: 20 bytes leftover after parsing attributes in process `syz.1.610'.
[   84.793929][ T7976] SELinux:  Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped).
[   84.793925][   T40] audit: type=1400 audit(1760323003.850:624): avc:  denied  { mac_admin } for  pid=7975 comm="syz.1.611" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   84.807237][   T40] audit: type=1400 audit(1760323003.870:625): avc:  denied  { relabelto } for  pid=7975 comm="syz.1.611" name="183" dev="tmpfs" ino=984 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[   84.818614][   T40] audit: type=1400 audit(1760323003.870:626): avc:  denied  { associate } for  pid=7975 comm="syz.1.611" name="183" dev="tmpfs" ino=984 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:crond_var_run_t:s0"
[   84.841843][ T7979] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[   84.865169][ T7980] netlink: 16 bytes leftover after parsing attributes in process `syz.1.611'.
[   85.135498][ T6004] usb 5-1: new low-speed USB device number 8 using dummy_hcd
[   85.286465][ T6004] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   85.289605][ T6004] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   85.294061][ T6004] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   85.299140][ T6004] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   85.303656][ T6004] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   85.310859][ T6004] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   85.313991][ T6004] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   85.318928][ T6004] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   85.323702][ T6004] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   85.328430][ T6004] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   85.333992][ T6004] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   85.337201][ T6004] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   85.341649][ T6004] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   85.346846][ T6004] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   85.352102][ T6004] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   85.354599][   T40] audit: type=1400 audit(1760323004.410:627): avc:  denied  { remove_name } for  pid=5932 comm="syz-executor" name="binderfs" dev="tmpfs" ino=988 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[   85.360220][ T6004] usb 5-1: string descriptor 0 read error: -22
[   85.370776][ T6004] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   85.375123][ T6004] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   85.385275][ T6004] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   85.409537][ T7986] netlink: 20 bytes leftover after parsing attributes in process `syz.1.615'.
[   85.412580][ T7986] FAULT_INJECTION: forcing a failure.
[   85.412580][ T7986] name failslab, interval 1, probability 0, space 0, times 0
[   85.416714][ T7986] CPU: 2 UID: 0 PID: 7986 Comm: syz.1.615 Not tainted syzkaller #0 PREEMPT(full) 
[   85.416727][ T7986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.416740][ T7986] Call Trace:
[   85.416743][ T7986]  <TASK>
[   85.416748][ T7986]  dump_stack_lvl+0x16c/0x1f0
[   85.416765][ T7986]  should_fail_ex+0x512/0x640
[   85.416780][ T7986]  should_failslab+0xc2/0x120
[   85.416797][ T7986]  kmem_cache_alloc_node_noprof+0x78/0x770
[   85.416810][ T7986]  ? __alloc_skb+0x2b2/0x380
[   85.416826][ T7986]  ? __alloc_skb+0x2b2/0x380
[   85.416835][ T7986]  ? __pfx_mod_delayed_work_on+0x10/0x10
[   85.416852][ T7986]  __alloc_skb+0x2b2/0x380
[   85.416863][ T7986]  ? __pfx___alloc_skb+0x10/0x10
[   85.416877][ T7986]  ? __lock_acquire+0xb8a/0x1c90
[   85.416892][ T7986]  __ipv6_ifa_notify+0x1f1/0xd60
[   85.416907][ T7986]  ? __pfx___ipv6_ifa_notify+0x10/0x10
[   85.416927][ T7986]  ? inet6_rtm_newaddr+0x15e8/0x1c70
[   85.416941][ T7986]  inet6_rtm_newaddr+0x15e8/0x1c70
[   85.416960][ T7986]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[   85.416975][ T7986]  ? __lock_acquire+0x622/0x1c90
[   85.416995][ T7986]  ? find_held_lock+0x2b/0x80
[   85.417005][ T7986]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[   85.417019][ T7986]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[   85.417033][ T7986]  ? rtnetlink_rcv_msg+0x93a/0xe90
[   85.417049][ T7986]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[   85.417063][ T7986]  rtnetlink_rcv_msg+0x95e/0xe90
[   85.417078][ T7986]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   85.417095][ T7986]  ? ref_tracker_free+0x37c/0x830
[   85.417111][ T7986]  netlink_rcv_skb+0x158/0x420
[   85.417125][ T7986]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   85.417139][ T7986]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   85.417166][ T7986]  ? netlink_deliver_tap+0x1ae/0xd30
[   85.417189][ T7986]  netlink_unicast+0x5aa/0x870
[   85.417212][ T7986]  ? __pfx_netlink_unicast+0x10/0x10
[   85.417245][ T7986]  netlink_sendmsg+0x8c8/0xdd0
[   85.417272][ T7986]  ? __pfx_netlink_sendmsg+0x10/0x10
[   85.417305][ T7986]  ____sys_sendmsg+0xa98/0xc70
[   85.417330][ T7986]  ? copy_msghdr_from_user+0x10a/0x160
[   85.417350][ T7986]  ? __pfx_____sys_sendmsg+0x10/0x10
[   85.417379][ T7986]  ? kfree+0x252/0x6d0
[   85.417393][ T7986]  ? __pfx__kstrtoull+0x10/0x10
[   85.417425][ T7986]  ___sys_sendmsg+0x134/0x1d0
[   85.417447][ T7986]  ? __pfx____sys_sendmsg+0x10/0x10
[   85.417494][ T7986]  ? __pfx___might_resched+0x10/0x10
[   85.417517][ T7986]  __sys_sendmmsg+0x200/0x420
[   85.417541][ T7986]  ? __pfx___sys_sendmmsg+0x10/0x10
[   85.417569][ T7986]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   85.417601][ T7986]  ? fput+0x9b/0xd0
[   85.417617][ T7986]  ? ksys_write+0x1ac/0x250
[   85.417638][ T7986]  ? __pfx_ksys_write+0x10/0x10
[   85.417664][ T7986]  __x64_sys_sendmmsg+0x9c/0x100
[   85.417683][ T7986]  ? lockdep_hardirqs_on+0x7c/0x110
[   85.417703][ T7986]  do_syscall_64+0xcd/0xfa0
[   85.417725][ T7986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.417748][ T7986] RIP: 0033:0x7f495e18eec9
[   85.417762][ T7986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.417778][ T7986] RSP: 002b:00007f495f0ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   85.417795][ T7986] RAX: ffffffffffffffda RBX: 00007f495e3e5fa0 RCX: 00007f495e18eec9
[   85.417806][ T7986] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000003
[   85.417817][ T7986] RBP: 00007f495f0ef090 R08: 0000000000000000 R09: 0000000000000000
[   85.417827][ T7986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   85.417838][ T7986] R13: 00007f495e3e6038 R14: 00007f495e3e5fa0 R15: 00007ffff94759e8
[   85.417864][ T7986]  </TASK>
[   85.584847][ T7989] FAULT_INJECTION: forcing a failure.
[   85.584847][ T7989] name failslab, interval 1, probability 0, space 0, times 0
[   85.589757][ T7989] CPU: 2 UID: 0 PID: 7989 Comm: syz.2.616 Not tainted syzkaller #0 PREEMPT(full) 
[   85.589780][ T7989] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.589791][ T7989] Call Trace:
[   85.589798][ T7989]  <TASK>
[   85.589805][ T7989]  dump_stack_lvl+0x16c/0x1f0
[   85.589831][ T7989]  should_fail_ex+0x512/0x640
[   85.589851][ T7989]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   85.589876][ T7989]  should_failslab+0xc2/0x120
[   85.589901][ T7989]  kmem_cache_alloc_noprof+0x75/0x6e0
[   85.589921][ T7989]  ? skb_clone+0x190/0x3f0
[   85.589947][ T7989]  ? skb_clone+0x190/0x3f0
[   85.589965][ T7989]  skb_clone+0x190/0x3f0
[   85.589985][ T7989]  netlink_deliver_tap+0xabd/0xd30
[   85.590013][ T7989]  netlink_unicast+0x64c/0x870
[   85.590038][ T7989]  ? __pfx_netlink_unicast+0x10/0x10
[   85.590070][ T7989]  netlink_sendmsg+0x8c8/0xdd0
[   85.590096][ T7989]  ? __pfx_netlink_sendmsg+0x10/0x10
[   85.590128][ T7989]  ____sys_sendmsg+0xa98/0xc70
[   85.590153][ T7989]  ? copy_msghdr_from_user+0x10a/0x160
[   85.590172][ T7989]  ? __pfx_____sys_sendmsg+0x10/0x10
[   85.590224][ T7989]  ___sys_sendmsg+0x134/0x1d0
[   85.590245][ T7989]  ? __pfx____sys_sendmsg+0x10/0x10
[   85.590262][ T7989]  ? __lock_acquire+0x622/0x1c90
[   85.590316][ T7989]  __sys_sendmsg+0x16d/0x220
[   85.590336][ T7989]  ? __pfx___sys_sendmsg+0x10/0x10
[   85.590372][ T7989]  do_syscall_64+0xcd/0xfa0
[   85.590393][ T7989]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.590409][ T7989] RIP: 0033:0x7f7caf98eec9
[   85.590422][ T7989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.590438][ T7989] RSP: 002b:00007f7cb0751038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   85.590455][ T7989] RAX: ffffffffffffffda RBX: 00007f7cafbe5fa0 RCX: 00007f7caf98eec9
[   85.590465][ T7989] RDX: 0000000000008004 RSI: 0000200000000040 RDI: 0000000000000004
[   85.590477][ T7989] RBP: 00007f7cb0751090 R08: 0000000000000000 R09: 0000000000000000
[   85.590486][ T7989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.590498][ T7989] R13: 00007f7cafbe6038 R14: 00007f7cafbe5fa0 R15: 00007ffe87c55258
[   85.590523][ T7989]  </TASK>
[   85.699061][ T6004] usb 5-1: USB disconnect, device number 8
[   85.813965][ T8005] befs: (nullb0): No write support. Marking filesystem read-only
[   85.819160][ T8005] befs: (nullb0): invalid magic header
[   86.025814][    T9] usb 6-1: new low-speed USB device number 9 using dummy_hcd
[   86.187670][    T9] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[   86.190600][    T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   86.195160][    T9] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   86.199453][    T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   86.203388][    T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   86.208078][    T9] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[   86.211022][    T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   86.215453][    T9] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   86.219176][    T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   86.222935][    T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   86.227387][    T9] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[   86.229675][    T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   86.233018][    T9] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   86.236919][    T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   86.240374][    T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   86.246240][    T9] usb 6-1: string descriptor 0 read error: -22
[   86.248771][    T9] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   86.252468][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   86.262031][    T9] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   86.558982][  T843] usb 6-1: USB disconnect, device number 9
[   87.033718][ T8019] XFS (nbd2): SB validate failed with error -5.
[   87.085526][ T8026] FAULT_INJECTION: forcing a failure.
[   87.085526][ T8026] name failslab, interval 1, probability 0, space 0, times 0
[   87.091073][ T8026] CPU: 3 UID: 0 PID: 8026 Comm: syz.2.629 Not tainted syzkaller #0 PREEMPT(full) 
[   87.091097][ T8026] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.091109][ T8026] Call Trace:
[   87.091115][ T8026]  <TASK>
[   87.091122][ T8026]  dump_stack_lvl+0x16c/0x1f0
[   87.091149][ T8026]  should_fail_ex+0x512/0x640
[   87.091170][ T8026]  ? __kmalloc_cache_noprof+0x5f/0x780
[   87.091193][ T8026]  should_failslab+0xc2/0x120
[   87.091219][ T8026]  __kmalloc_cache_noprof+0x72/0x780
[   87.091239][ T8026]  ? rtnl_newlink+0x11b/0x2000
[   87.091266][ T8026]  ? __pfx_rtnl_newlink+0x10/0x10
[   87.091307][ T8026]  ? rtnl_newlink+0x11b/0x2000
[   87.091327][ T8026]  rtnl_newlink+0x11b/0x2000
[   87.091357][ T8026]  ? __pfx_rtnl_newlink+0x10/0x10
[   87.091376][ T8026]  ? find_held_lock+0x2b/0x80
[   87.091395][ T8026]  ? avc_has_perm_noaudit+0x117/0x3b0
[   87.091417][ T8026]  ? avc_has_perm_noaudit+0x149/0x3b0
[   87.091443][ T8026]  ? __lock_acquire+0x622/0x1c90
[   87.091479][ T8026]  ? find_held_lock+0x2b/0x80
[   87.091494][ T8026]  ? __pfx_rtnl_newlink+0x10/0x10
[   87.091514][ T8026]  ? __pfx_rtnl_newlink+0x10/0x10
[   87.091535][ T8026]  ? rtnetlink_rcv_msg+0x93a/0xe90
[   87.091558][ T8026]  ? __pfx_rtnl_newlink+0x10/0x10
[   87.091580][ T8026]  rtnetlink_rcv_msg+0x95e/0xe90
[   87.091605][ T8026]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   87.091635][ T8026]  ? ref_tracker_free+0x37c/0x830
[   87.091662][ T8026]  netlink_rcv_skb+0x158/0x420
[   87.091686][ T8026]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   87.091709][ T8026]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   87.091742][ T8026]  ? netlink_deliver_tap+0x1ae/0xd30
[   87.091768][ T8026]  netlink_unicast+0x5aa/0x870
[   87.091794][ T8026]  ? __pfx_netlink_unicast+0x10/0x10
[   87.091826][ T8026]  netlink_sendmsg+0x8c8/0xdd0
[   87.091854][ T8026]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.091889][ T8026]  ____sys_sendmsg+0xa98/0xc70
[   87.091914][ T8026]  ? copy_msghdr_from_user+0x10a/0x160
[   87.091935][ T8026]  ? __pfx_____sys_sendmsg+0x10/0x10
[   87.091972][ T8026]  ___sys_sendmsg+0x134/0x1d0
[   87.091995][ T8026]  ? __pfx____sys_sendmsg+0x10/0x10
[   87.092019][ T8026]  ? __lock_acquire+0x622/0x1c90
[   87.092073][ T8026]  __sys_sendmsg+0x16d/0x220
[   87.092095][ T8026]  ? __pfx___sys_sendmsg+0x10/0x10
[   87.092126][ T8026]  ? fput+0x9b/0xd0
[   87.092147][ T8026]  do_syscall_64+0xcd/0xfa0
[   87.092170][ T8026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.092188][ T8026] RIP: 0033:0x7f7caf98eec9
[   87.092202][ T8026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.092219][ T8026] RSP: 002b:00007f7cb0751038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   87.092237][ T8026] RAX: ffffffffffffffda RBX: 00007f7cafbe5fa0 RCX: 00007f7caf98eec9
[   87.092248][ T8026] RDX: 0000000000008004 RSI: 0000200000000040 RDI: 0000000000000004
[   87.092259][ T8026] RBP: 00007f7cb0751090 R08: 0000000000000000 R09: 0000000000000000
[   87.092269][ T8026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.092279][ T8026] R13: 00007f7cafbe6038 R14: 00007f7cafbe5fa0 R15: 00007ffe87c55258
[   87.092305][ T8026]  </TASK>
[   88.262072][ T8045] __nla_validate_parse: 6 callbacks suppressed
[   88.262082][ T8045] netlink: 20 bytes leftover after parsing attributes in process `syz.3.637'.
[   88.269062][ T8045] FAULT_INJECTION: forcing a failure.
[   88.269062][ T8045] name failslab, interval 1, probability 0, space 0, times 0
[   88.273110][ T8045] CPU: 3 UID: 0 PID: 8045 Comm: syz.3.637 Not tainted syzkaller #0 PREEMPT(full) 
[   88.273125][ T8045] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.273132][ T8045] Call Trace:
[   88.273136][ T8045]  <TASK>
[   88.273141][ T8045]  dump_stack_lvl+0x16c/0x1f0
[   88.273158][ T8045]  should_fail_ex+0x512/0x640
[   88.273171][ T8045]  ? __kmalloc_noprof+0xca/0x880
[   88.273185][ T8045]  should_failslab+0xc2/0x120
[   88.273201][ T8045]  __kmalloc_noprof+0xdd/0x880
[   88.273212][ T8045]  ? fib6_info_alloc+0x40/0x160
[   88.273229][ T8045]  ? fib6_info_alloc+0x40/0x160
[   88.273241][ T8045]  fib6_info_alloc+0x40/0x160
[   88.273255][ T8045]  ip6_route_info_create+0x14c/0x870
[   88.273269][ T8045]  ip6_route_add.part.0+0x22/0x1d0
[   88.273280][ T8045]  ip6_route_add+0x45/0x60
[   88.273291][ T8045]  addrconf_prefix_route+0x2fd/0x510
[   88.273304][ T8045]  ? __pfx_addrconf_prefix_route+0x10/0x10
[   88.273316][ T8045]  ? nlmsg_notify+0xac/0x220
[   88.273343][ T8045]  inet6_rtm_newaddr+0xec7/0x1c70
[   88.273362][ T8045]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[   88.273377][ T8045]  ? __lock_acquire+0x622/0x1c90
[   88.273398][ T8045]  ? find_held_lock+0x2b/0x80
[   88.273408][ T8045]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[   88.273422][ T8045]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[   88.273436][ T8045]  ? rtnetlink_rcv_msg+0x93a/0xe90
[   88.273452][ T8045]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[   88.273466][ T8045]  rtnetlink_rcv_msg+0x95e/0xe90
[   88.273480][ T8045]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   88.273498][ T8045]  ? ref_tracker_free+0x37c/0x830
[   88.273514][ T8045]  netlink_rcv_skb+0x158/0x420
[   88.273527][ T8045]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   88.273541][ T8045]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   88.273560][ T8045]  ? netlink_deliver_tap+0x1ae/0xd30
[   88.273576][ T8045]  netlink_unicast+0x5aa/0x870
[   88.273592][ T8045]  ? __pfx_netlink_unicast+0x10/0x10
[   88.273611][ T8045]  netlink_sendmsg+0x8c8/0xdd0
[   88.273627][ T8045]  ? __pfx_netlink_sendmsg+0x10/0x10
[   88.273649][ T8045]  ____sys_sendmsg+0xa98/0xc70
[   88.273665][ T8045]  ? copy_msghdr_from_user+0x10a/0x160
[   88.273677][ T8045]  ? __pfx_____sys_sendmsg+0x10/0x10
[   88.273695][ T8045]  ? kfree+0x252/0x6d0
[   88.273704][ T8045]  ? __pfx__kstrtoull+0x10/0x10
[   88.273725][ T8045]  ___sys_sendmsg+0x134/0x1d0
[   88.273738][ T8045]  ? __pfx____sys_sendmsg+0x10/0x10
[   88.273764][ T8045]  ? __pfx___might_resched+0x10/0x10
[   88.273777][ T8045]  __sys_sendmmsg+0x200/0x420
[   88.273791][ T8045]  ? __pfx___sys_sendmmsg+0x10/0x10
[   88.273809][ T8045]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   88.273829][ T8045]  ? fput+0x9b/0xd0
[   88.273839][ T8045]  ? ksys_write+0x1ac/0x250
[   88.273852][ T8045]  ? __pfx_ksys_write+0x10/0x10
[   88.273867][ T8045]  __x64_sys_sendmmsg+0x9c/0x100
[   88.273880][ T8045]  ? lockdep_hardirqs_on+0x7c/0x110
[   88.273893][ T8045]  do_syscall_64+0xcd/0xfa0
[   88.273911][ T8045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.273921][ T8045] RIP: 0033:0x7f565618eec9
[   88.273931][ T8045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.273941][ T8045] RSP: 002b:00007f5657053038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   88.273952][ T8045] RAX: ffffffffffffffda RBX: 00007f56563e5fa0 RCX: 00007f565618eec9
[   88.273958][ T8045] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000003
[   88.273965][ T8045] RBP: 00007f5657053090 R08: 0000000000000000 R09: 0000000000000000
[   88.273971][ T8045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   88.273977][ T8045] R13: 00007f56563e6038 R14: 00007f56563e5fa0 R15: 00007ffe15c9ac28
[   88.273991][ T8045]  </TASK>
[   88.398272][ T8047] netlink: 312 bytes leftover after parsing attributes in process `syz.3.638'.
[   88.401307][ T8048] netlink: 312 bytes leftover after parsing attributes in process `syz.3.638'.
[   88.409325][ T8050] FAULT_INJECTION: forcing a failure.
[   88.409325][ T8050] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   88.413909][ T8050] CPU: 2 UID: 0 PID: 8050 Comm: syz.0.639 Not tainted syzkaller #0 PREEMPT(full) 
[   88.413930][ T8050] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.413940][ T8050] Call Trace:
[   88.413946][ T8050]  <TASK>
[   88.413952][ T8050]  dump_stack_lvl+0x16c/0x1f0
[   88.413984][ T8050]  should_fail_ex+0x512/0x640
[   88.414008][ T8050]  _copy_to_user+0x32/0xd0
[   88.414031][ T8050]  simple_read_from_buffer+0xcb/0x170
[   88.414054][ T8050]  proc_fail_nth_read+0x197/0x240
[   88.414080][ T8050]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   88.414105][ T8050]  ? rw_verify_area+0xcf/0x6c0
[   88.414123][ T8050]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   88.414148][ T8050]  vfs_read+0x1e4/0xcf0
[   88.414171][ T8050]  ? __pfx___mutex_lock+0x10/0x10
[   88.414192][ T8050]  ? __pfx_vfs_read+0x10/0x10
[   88.414219][ T8050]  ? __fget_files+0x20e/0x3c0
[   88.414247][ T8050]  ksys_read+0x12a/0x250
[   88.414267][ T8050]  ? __pfx_ksys_read+0x10/0x10
[   88.414294][ T8050]  do_syscall_64+0xcd/0xfa0
[   88.414315][ T8050]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.414331][ T8050] RIP: 0033:0x7fd56c98d8dc
[   88.414344][ T8050] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   88.414360][ T8050] RSP: 002b:00007fd56d75a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   88.414375][ T8050] RAX: ffffffffffffffda RBX: 00007fd56cbe5fa0 RCX: 00007fd56c98d8dc
[   88.414385][ T8050] RDX: 000000000000000f RSI: 00007fd56d75a0a0 RDI: 0000000000000005
[   88.414395][ T8050] RBP: 00007fd56d75a090 R08: 0000000000000000 R09: 0000000000000000
[   88.414404][ T8050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.414413][ T8050] R13: 00007fd56cbe6038 R14: 00007fd56cbe5fa0 R15: 00007ffd1ee5ac58
[   88.414437][ T8050]  </TASK>
[   88.430460][   T40] kauditd_printk_skb: 5 callbacks suppressed
[   88.430471][   T40] audit: type=1400 audit(1760323007.480:633): avc:  denied  { ioctl } for  pid=8051 comm="syz.3.640" path="socket:[19824]" dev="sockfs" ino=19824 ioctlcmd=0x8903 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   88.473771][ T8054] GUP no longer grows the stack in syz.0.641 (8054): 200000ffe000-200001000000 (200000ffa000)
[   88.480141][   T40] audit: type=1400 audit(1760323007.530:634): avc:  denied  { unlink } for  pid=8053 comm="syz.0.641" name="#7" dev="tmpfs" ino=1201 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   88.487497][ T8054] CPU: 2 UID: 0 PID: 8054 Comm: syz.0.641 Not tainted syzkaller #0 PREEMPT(full) 
[   88.487522][ T8054] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.487534][ T8054] Call Trace:
[   88.487541][ T8054]  <TASK>
[   88.487549][ T8054]  dump_stack_lvl+0x16c/0x1f0
[   88.487575][ T8054]  gup_vma_lookup+0x1d2/0x220
[   88.487604][ T8054]  __get_user_pages+0x241/0x3530
[   88.487643][ T8054]  ? find_held_lock+0x2b/0x80
[   88.487662][ T8054]  ? __pfx___get_user_pages+0x10/0x10
[   88.487697][ T8054]  get_user_pages_remote+0x243/0xab0
[   88.487726][ T8054]  ? mast_spanning_rebalance.isra.0+0x2060/0x2060
[   88.487749][ T8054]  ? __pfx_get_user_pages_remote+0x10/0x10
[   88.487776][ T8054]  __access_remote_vm+0x250/0xaa0
[   88.487794][ T8054]  ? do_raw_spin_lock+0x12c/0x2b0
[   88.487810][ T8054]  ? __pfx___access_remote_vm+0x10/0x10
[   88.487825][ T8054]  ? environ_read+0x214/0x450
[   88.487842][ T8054]  environ_read+0x31e/0x450
[   88.487857][ T8054]  ? __pfx_environ_read+0x10/0x10
[   88.487871][ T8054]  vfs_read+0x1e4/0xcf0
[   88.487887][ T8054]  ? __pfx___mutex_lock+0x10/0x10
[   88.487901][ T8054]  ? __pfx_vfs_read+0x10/0x10
[   88.487918][ T8054]  ? __fget_files+0x20e/0x3c0
[   88.487937][ T8054]  ksys_read+0x12a/0x250
[   88.487950][ T8054]  ? __pfx_ksys_read+0x10/0x10
[   88.487964][ T8054]  ? __secure_computing+0x28e/0x3b0
[   88.487987][ T8054]  do_syscall_64+0xcd/0xfa0
[   88.488002][ T8054]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.488014][ T8054] RIP: 0033:0x7fd56c98eec9
[   88.488024][ T8054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.488036][ T8054] RSP: 002b:00007fd56d75a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   88.488048][ T8054] RAX: ffffffffffffffda RBX: 00007fd56cbe5fa0 RCX: 00007fd56c98eec9
[   88.488055][ T8054] RDX: 0000000000002020 RSI: 00002000000037c0 RDI: 0000000000000000
[   88.488062][ T8054] RBP: 00007fd56ca11f91 R08: 0000000000000000 R09: 0000000000000000
[   88.488068][ T8054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   88.488075][ T8054] R13: 00007fd56cbe6038 R14: 00007fd56cbe5fa0 R15: 00007ffd1ee5ac58
[   88.488090][ T8054]  </TASK>
[   88.578556][   T40] audit: type=1400 audit(1760323007.530:635): avc:  denied  { mount } for  pid=8053 comm="syz.0.641" name="/" dev="overlay" ino=1196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   88.585938][   T40] audit: type=1400 audit(1760323007.570:636): avc:  denied  { unmount } for  pid=5930 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   88.603559][ T8058] netlink: 700 bytes leftover after parsing attributes in process `syz.1.644'.
[   88.609654][ T8060] netlink: 20 bytes leftover after parsing attributes in process `syz.0.643'.
[   88.884573][  T843] usb 5-1: new low-speed USB device number 9 using dummy_hcd
[   89.036380][  T843] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   89.039503][  T843] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   89.043940][  T843] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   89.048947][  T843] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   89.053475][  T843] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   89.059028][  T843] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   89.061878][  T843] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   89.065962][  T843] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   89.070045][  T843] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   89.073677][  T843] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   89.078830][  T843] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   89.081571][  T843] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   89.085292][  T843] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   89.090044][  T843] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   89.094648][  T843] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   89.102075][  T843] usb 5-1: string descriptor 0 read error: -22
[   89.105011][  T843] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   89.108841][  T843] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   89.124372][  T843] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   89.422278][  T843] usb 5-1: USB disconnect, device number 9
[   90.357091][ T8070] bond2: entered allmulticast mode
[   90.359548][ T8070] 8021q: adding VLAN 0 to HW filter on device bond2
[   90.403268][ T8076] netlink: 20 bytes leftover after parsing attributes in process `syz.1.649'.
[   90.407542][ T8076] FAULT_INJECTION: forcing a failure.
[   90.407542][ T8076] name failslab, interval 1, probability 0, space 0, times 0
[   90.412668][ T8076] CPU: 1 UID: 0 PID: 8076 Comm: syz.1.649 Not tainted syzkaller #0 PREEMPT(full) 
[   90.412689][ T8076] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.412699][ T8076] Call Trace:
[   90.412705][ T8076]  <TASK>
[   90.412713][ T8076]  dump_stack_lvl+0x16c/0x1f0
[   90.412737][ T8076]  should_fail_ex+0x512/0x640
[   90.412758][ T8076]  ? __kmalloc_noprof+0xca/0x880
[   90.412779][ T8076]  should_failslab+0xc2/0x120
[   90.412805][ T8076]  __kmalloc_noprof+0xdd/0x880
[   90.412823][ T8076]  ? fib6_info_alloc+0x40/0x160
[   90.412849][ T8076]  ? fib6_info_alloc+0x40/0x160
[   90.412869][ T8076]  fib6_info_alloc+0x40/0x160
[   90.412891][ T8076]  ip6_route_info_create+0x14c/0x870
[   90.412912][ T8076]  ip6_route_add.part.0+0x22/0x1d0
[   90.412932][ T8076]  ip6_route_add+0x45/0x60
[   90.412955][ T8076]  addrconf_prefix_route+0x2fd/0x510
[   90.412978][ T8076]  ? __pfx_addrconf_prefix_route+0x10/0x10
[   90.412997][ T8076]  ? nlmsg_notify+0xac/0x220
[   90.413044][ T8076]  inet6_rtm_newaddr+0x100c/0x1c70
[   90.413074][ T8076]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[   90.413096][ T8076]  ? __lock_acquire+0x622/0x1c90
[   90.413129][ T8076]  ? find_held_lock+0x2b/0x80
[   90.413142][ T8076]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[   90.413163][ T8076]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[   90.413183][ T8076]  ? rtnetlink_rcv_msg+0x93a/0xe90
[   90.413205][ T8076]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[   90.413226][ T8076]  rtnetlink_rcv_msg+0x95e/0xe90
[   90.413247][ T8076]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   90.413274][ T8076]  ? ref_tracker_free+0x37c/0x830
[   90.413300][ T8076]  netlink_rcv_skb+0x158/0x420
[   90.413321][ T8076]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   90.413345][ T8076]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   90.413380][ T8076]  ? netlink_deliver_tap+0x1ae/0xd30
[   90.413407][ T8076]  netlink_unicast+0x5aa/0x870
[   90.413434][ T8076]  ? __pfx_netlink_unicast+0x10/0x10
[   90.413467][ T8076]  netlink_sendmsg+0x8c8/0xdd0
[   90.413494][ T8076]  ? __pfx_netlink_sendmsg+0x10/0x10
[   90.413526][ T8076]  ____sys_sendmsg+0xa98/0xc70
[   90.413553][ T8076]  ? copy_msghdr_from_user+0x10a/0x160
[   90.413573][ T8076]  ? __pfx_____sys_sendmsg+0x10/0x10
[   90.413601][ T8076]  ? kfree+0x252/0x6d0
[   90.413616][ T8076]  ? __pfx__kstrtoull+0x10/0x10
[   90.413649][ T8076]  ___sys_sendmsg+0x134/0x1d0
[   90.413671][ T8076]  ? __pfx____sys_sendmsg+0x10/0x10
[   90.413716][ T8076]  ? __pfx___might_resched+0x10/0x10
[   90.413739][ T8076]  __sys_sendmmsg+0x200/0x420
[   90.413762][ T8076]  ? __pfx___sys_sendmmsg+0x10/0x10
[   90.413791][ T8076]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   90.413824][ T8076]  ? fput+0x9b/0xd0
[   90.413841][ T8076]  ? ksys_write+0x1ac/0x250
[   90.413862][ T8076]  ? __pfx_ksys_write+0x10/0x10
[   90.413887][ T8076]  __x64_sys_sendmmsg+0x9c/0x100
[   90.413907][ T8076]  ? lockdep_hardirqs_on+0x7c/0x110
[   90.413928][ T8076]  do_syscall_64+0xcd/0xfa0
[   90.413956][ T8076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.413974][ T8076] RIP: 0033:0x7f495e18eec9
[   90.413988][ T8076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.414005][ T8076] RSP: 002b:00007f495f0ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   90.414023][ T8076] RAX: ffffffffffffffda RBX: 00007f495e3e5fa0 RCX: 00007f495e18eec9
[   90.414034][ T8076] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000003
[   90.414045][ T8076] RBP: 00007f495f0ef090 R08: 0000000000000000 R09: 0000000000000000
[   90.414055][ T8076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   90.414066][ T8076] R13: 00007f495e3e6038 R14: 00007f495e3e5fa0 R15: 00007ffff94759e8
[   90.414093][ T8076]  </TASK>
[   90.562966][ T8078] netlink: 20 bytes leftover after parsing attributes in process `syz.2.650'.
[   90.580959][   T40] audit: type=1400 audit(1760323009.640:637): avc:  denied  { create } for  pid=8079 comm="syz.1.651" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   90.599982][ T8080] nvme_fabrics: missing parameter 'transport=%s'
[   90.602214][ T8080] nvme_fabrics: missing parameter 'nqn=%s'
[   90.605238][   T40] audit: type=1400 audit(1760323009.670:638): avc:  denied  { write } for  pid=8079 comm="syz.1.651" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   90.641023][   T40] audit: type=1400 audit(1760323009.700:639): avc:  denied  { execute } for  pid=8084 comm="syz.2.653" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   90.676669][ T8093] netlink: 20 bytes leftover after parsing attributes in process `syz.1.655'.
[   91.329799][ T8099] netlink: 12 bytes leftover after parsing attributes in process `syz.2.657'.
[   91.363214][ T8102] netlink: 64 bytes leftover after parsing attributes in process `syz.2.658'.
[   91.367040][ T8102] overlayfs: conflicting options: nfs_export=on,metacopy=on
[   91.534383][ T8109] FAULT_INJECTION: forcing a failure.
[   91.534383][ T8109] name failslab, interval 1, probability 0, space 0, times 0
[   91.538474][ T8109] CPU: 0 UID: 0 PID: 8109 Comm: syz.3.660 Not tainted syzkaller #0 PREEMPT(full) 
[   91.538489][ T8109] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   91.538496][ T8109] Call Trace:
[   91.538500][ T8109]  <TASK>
[   91.538504][ T8109]  dump_stack_lvl+0x16c/0x1f0
[   91.538521][ T8109]  should_fail_ex+0x512/0x640
[   91.538534][ T8109]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[   91.538549][ T8109]  should_failslab+0xc2/0x120
[   91.538565][ T8109]  kmem_cache_alloc_node_noprof+0x78/0x770
[   91.538577][ T8109]  ? __alloc_skb+0x2b2/0x380
[   91.538592][ T8109]  ? __alloc_skb+0x2b2/0x380
[   91.538601][ T8109]  __alloc_skb+0x2b2/0x380
[   91.538612][ T8109]  ? __pfx___alloc_skb+0x10/0x10
[   91.538623][ T8109]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[   91.538645][ T8109]  netlink_ack+0x15d/0xb80
[   91.538663][ T8109]  netlink_rcv_skb+0x332/0x420
[   91.538676][ T8109]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   91.538692][ T8109]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   91.538711][ T8109]  ? netlink_deliver_tap+0x1ae/0xd30
[   91.538727][ T8109]  netlink_unicast+0x5aa/0x870
[   91.538742][ T8109]  ? __pfx_netlink_unicast+0x10/0x10
[   91.538761][ T8109]  netlink_sendmsg+0x8c8/0xdd0
[   91.538777][ T8109]  ? __pfx_netlink_sendmsg+0x10/0x10
[   91.538796][ T8109]  ____sys_sendmsg+0xa98/0xc70
[   91.538812][ T8109]  ? copy_msghdr_from_user+0x10a/0x160
[   91.538825][ T8109]  ? __pfx_____sys_sendmsg+0x10/0x10
[   91.538842][ T8109]  ? kfree+0x252/0x6d0
[   91.538851][ T8109]  ? __pfx__kstrtoull+0x10/0x10
[   91.538870][ T8109]  ___sys_sendmsg+0x134/0x1d0
[   91.538888][ T8109]  ? __pfx____sys_sendmsg+0x10/0x10
[   91.538913][ T8109]  ? __pfx___might_resched+0x10/0x10
[   91.538927][ T8109]  __sys_sendmmsg+0x200/0x420
[   91.538941][ T8109]  ? __pfx___sys_sendmmsg+0x10/0x10
[   91.538958][ T8109]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   91.538978][ T8109]  ? fput+0x9b/0xd0
[   91.538987][ T8109]  ? ksys_write+0x1ac/0x250
[   91.539000][ T8109]  ? __pfx_ksys_write+0x10/0x10
[   91.539016][ T8109]  __x64_sys_sendmmsg+0x9c/0x100
[   91.539028][ T8109]  ? lockdep_hardirqs_on+0x7c/0x110
[   91.539040][ T8109]  do_syscall_64+0xcd/0xfa0
[   91.539054][ T8109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.539065][ T8109] RIP: 0033:0x7f565618eec9
[   91.539074][ T8109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.539085][ T8109] RSP: 002b:00007f5657053038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   91.539096][ T8109] RAX: ffffffffffffffda RBX: 00007f56563e5fa0 RCX: 00007f565618eec9
[   91.539103][ T8109] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000003
[   91.539109][ T8109] RBP: 00007f5657053090 R08: 0000000000000000 R09: 0000000000000000
[   91.539115][ T8109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   91.539121][ T8109] R13: 00007f56563e6038 R14: 00007f56563e5fa0 R15: 00007ffe15c9ac28
[   91.539135][ T8109]  </TASK>
[   91.663383][ T8113] netlink: 'syz.2.662': attribute type 21 has an invalid length.
[   91.673415][   T40] audit: type=1400 audit(1760323010.730:640): avc:  denied  { connect } for  pid=8115 comm="syz.3.663" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   91.843422][ T8129] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   91.846767][ T8129] IPv6: NLM_F_CREATE should be set when creating new route
[   91.849789][ T8129] IPv6: NLM_F_CREATE should be set when creating new route
[   91.852737][ T8129] IPv6: NLM_F_CREATE should be set when creating new route
[   91.936918][   T40] audit: type=1400 audit(1760323011.000:641): avc:  denied  { mounton } for  pid=8136 comm="syz.1.670" path="/proc/703/task" dev="proc" ino=20880 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[   91.941241][ T8138] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input11
[   91.946812][   T40] audit: type=1400 audit(1760323011.000:642): avc:  denied  { mount } for  pid=8136 comm="syz.1.670" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   91.959535][ T8137] netlink: zone id is out of range
[   91.961499][ T8137] netlink: zone id is out of range
[   91.961773][ T8138] netlink: zone id is out of range
[   91.963782][ T8137] netlink: zone id is out of range
[   91.966933][ T8138] netlink: zone id is out of range
[   91.967860][ T8137] netlink: zone id is out of range
[   91.983620][ T8138] netlink: zone id is out of range
[   91.986684][ T8138] netlink: zone id is out of range
[   92.162115][ T8164] erspan0: entered promiscuous mode
[   92.164697][ T8164] erspan0: left promiscuous mode
[   92.403043][ T8180] FAULT_INJECTION: forcing a failure.
[   92.403043][ T8180] name failslab, interval 1, probability 0, space 0, times 0
[   92.408606][ T8180] CPU: 2 UID: 0 PID: 8180 Comm: syz.0.685 Not tainted syzkaller #0 PREEMPT(full) 
[   92.408629][ T8180] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   92.408639][ T8180] Call Trace:
[   92.408645][ T8180]  <TASK>
[   92.408653][ T8180]  dump_stack_lvl+0x16c/0x1f0
[   92.408677][ T8180]  should_fail_ex+0x512/0x640
[   92.408698][ T8180]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   92.408723][ T8180]  should_failslab+0xc2/0x120
[   92.408749][ T8180]  kmem_cache_alloc_noprof+0x75/0x6e0
[   92.408769][ T8180]  ? skb_clone+0x190/0x3f0
[   92.408794][ T8180]  ? skb_clone+0x190/0x3f0
[   92.408812][ T8180]  skb_clone+0x190/0x3f0
[   92.408833][ T8180]  netlink_deliver_tap+0xabd/0xd30
[   92.408860][ T8180]  netlink_unicast+0x71f/0x870
[   92.408886][ T8180]  ? __pfx_netlink_unicast+0x10/0x10
[   92.408908][ T8180]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[   92.408941][ T8180]  netlink_ack+0x696/0xb80
[   92.408978][ T8180]  netlink_rcv_skb+0x332/0x420
[   92.409000][ T8180]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   92.409023][ T8180]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   92.409054][ T8180]  ? netlink_deliver_tap+0x1ae/0xd30
[   92.409080][ T8180]  netlink_unicast+0x5aa/0x870
[   92.409106][ T8180]  ? __pfx_netlink_unicast+0x10/0x10
[   92.409137][ T8180]  netlink_sendmsg+0x8c8/0xdd0
[   92.409164][ T8180]  ? __pfx_netlink_sendmsg+0x10/0x10
[   92.409195][ T8180]  ____sys_sendmsg+0xa98/0xc70
[   92.409221][ T8180]  ? copy_msghdr_from_user+0x10a/0x160
[   92.409239][ T8180]  ? __pfx_____sys_sendmsg+0x10/0x10
[   92.409266][ T8180]  ? kfree+0x252/0x6d0
[   92.409280][ T8180]  ? __pfx__kstrtoull+0x10/0x10
[   92.409311][ T8180]  ___sys_sendmsg+0x134/0x1d0
[   92.409333][ T8180]  ? __pfx____sys_sendmsg+0x10/0x10
[   92.409375][ T8180]  ? __pfx___might_resched+0x10/0x10
[   92.409399][ T8180]  __sys_sendmmsg+0x200/0x420
[   92.409422][ T8180]  ? __pfx___sys_sendmmsg+0x10/0x10
[   92.409451][ T8180]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   92.409483][ T8180]  ? fput+0x9b/0xd0
[   92.409500][ T8180]  ? ksys_write+0x1ac/0x250
[   92.409519][ T8180]  ? __pfx_ksys_write+0x10/0x10
[   92.409545][ T8180]  __x64_sys_sendmmsg+0x9c/0x100
[   92.409566][ T8180]  ? lockdep_hardirqs_on+0x7c/0x110
[   92.409585][ T8180]  do_syscall_64+0xcd/0xfa0
[   92.409607][ T8180]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.409625][ T8180] RIP: 0033:0x7fd56c98eec9
[   92.409639][ T8180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.409656][ T8180] RSP: 002b:00007fd56d75a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   92.409674][ T8180] RAX: ffffffffffffffda RBX: 00007fd56cbe5fa0 RCX: 00007fd56c98eec9
[   92.409684][ T8180] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000003
[   92.409694][ T8180] RBP: 00007fd56d75a090 R08: 0000000000000000 R09: 0000000000000000
[   92.409705][ T8180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   92.409714][ T8180] R13: 00007fd56cbe6038 R14: 00007fd56cbe5fa0 R15: 00007ffd1ee5ac58
[   92.409740][ T8180]  </TASK>
[   92.524105][    C2] vkms_vblank_simulate: vblank timer overrun
[   92.668572][ T8190] No buffer was provided with the request
[   92.977794][ T8221] FAULT_INJECTION: forcing a failure.
[   92.977794][ T8221] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.982294][ T8221] CPU: 3 UID: 0 PID: 8221 Comm: syz.3.698 Not tainted syzkaller #0 PREEMPT(full) 
[   92.982310][ T8221] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   92.982317][ T8221] Call Trace:
[   92.982321][ T8221]  <TASK>
[   92.982325][ T8221]  dump_stack_lvl+0x16c/0x1f0
[   92.982358][ T8221]  should_fail_ex+0x512/0x640
[   92.982380][ T8221]  _copy_from_user+0x2e/0xd0
[   92.982394][ T8221]  copy_msghdr_from_user+0x98/0x160
[   92.982413][ T8221]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   92.982427][ T8221]  ? kfree+0x252/0x6d0
[   92.982438][ T8221]  ? __pfx__kstrtoull+0x10/0x10
[   92.982457][ T8221]  ___sys_sendmsg+0xfe/0x1d0
[   92.982470][ T8221]  ? __pfx____sys_sendmsg+0x10/0x10
[   92.982495][ T8221]  ? __pfx___might_resched+0x10/0x10
[   92.982509][ T8221]  __sys_sendmmsg+0x200/0x420
[   92.982523][ T8221]  ? __pfx___sys_sendmmsg+0x10/0x10
[   92.982540][ T8221]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   92.982560][ T8221]  ? fput+0x9b/0xd0
[   92.982570][ T8221]  ? ksys_write+0x1ac/0x250
[   92.982583][ T8221]  ? __pfx_ksys_write+0x10/0x10
[   92.982599][ T8221]  __x64_sys_sendmmsg+0x9c/0x100
[   92.982612][ T8221]  ? lockdep_hardirqs_on+0x7c/0x110
[   92.982624][ T8221]  do_syscall_64+0xcd/0xfa0
[   92.982638][ T8221]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.982649][ T8221] RIP: 0033:0x7f565618eec9
[   92.982658][ T8221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.982669][ T8221] RSP: 002b:00007f5657053038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   92.982680][ T8221] RAX: ffffffffffffffda RBX: 00007f56563e5fa0 RCX: 00007f565618eec9
[   92.982687][ T8221] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000003
[   92.982693][ T8221] RBP: 00007f5657053090 R08: 0000000000000000 R09: 0000000000000000
[   92.982699][ T8221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   92.982706][ T8221] R13: 00007f56563e6038 R14: 00007f56563e5fa0 R15: 00007ffe15c9ac28
[   92.982720][ T8221]  </TASK>
[   93.030944][ T8224] netlink: 'syz.1.699': attribute type 5 has an invalid length.
[   93.253525][ T8247] FAULT_INJECTION: forcing a failure.
[   93.253525][ T8247] name failslab, interval 1, probability 0, space 0, times 0
[   93.258123][ T8247] CPU: 2 UID: 0 PID: 8247 Comm: syz.0.707 Not tainted syzkaller #0 PREEMPT(full) 
[   93.258138][ T8247] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.258145][ T8247] Call Trace:
[   93.258148][ T8247]  <TASK>
[   93.258153][ T8247]  dump_stack_lvl+0x16c/0x1f0
[   93.258170][ T8247]  should_fail_ex+0x512/0x640
[   93.258183][ T8247]  ? __kmalloc_noprof+0xca/0x880
[   93.258197][ T8247]  should_failslab+0xc2/0x120
[   93.258213][ T8247]  __kmalloc_noprof+0xdd/0x880
[   93.258224][ T8247]  ? io_cache_alloc_new+0x45/0xf0
[   93.258242][ T8247]  ? io_cache_alloc_new+0x45/0xf0
[   93.258255][ T8247]  io_cache_alloc_new+0x45/0xf0
[   93.258269][ T8247]  __io_prep_rw+0x21d/0x1090
[   93.258285][ T8247]  ? find_held_lock+0x2b/0x80
[   93.258296][ T8247]  ? __pfx___io_prep_rw+0x10/0x10
[   93.258312][ T8247]  ? __io_alloc_req_refill+0x18f/0x5e0
[   93.258331][ T8247]  ? __io_alloc_req_refill+0x33a/0x5e0
[   93.258349][ T8247]  io_prep_rw+0x76/0x2c0
[   93.258365][ T8247]  ? __pfx_io_prep_rw+0x10/0x10
[   93.258385][ T8247]  io_prep_readv+0x20/0xa0
[   93.258396][ T8247]  io_submit_sqes+0x855/0x2710
[   93.258416][ T8247]  __do_sys_io_uring_enter+0xd69/0x1630
[   93.258430][ T8247]  ? __fget_files+0x20e/0x3c0
[   93.258444][ T8247]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[   93.258458][ T8247]  ? fput+0x9b/0xd0
[   93.258467][ T8247]  ? ksys_write+0x1ac/0x250
[   93.258480][ T8247]  ? __pfx_ksys_write+0x10/0x10
[   93.258498][ T8247]  do_syscall_64+0xcd/0xfa0
[   93.258512][ T8247]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.258523][ T8247] RIP: 0033:0x7fd56c98eec9
[   93.258532][ T8247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.258543][ T8247] RSP: 002b:00007fd56d75a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   93.258554][ T8247] RAX: ffffffffffffffda RBX: 00007fd56cbe5fa0 RCX: 00007fd56c98eec9
[   93.258560][ T8247] RDX: 0000000000000000 RSI: 00000000100847c0 RDI: 0000000000000005
[   93.258567][ T8247] RBP: 00007fd56d75a090 R08: 0000000000000000 R09: 0000000000000000
[   93.258573][ T8247] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   93.258579][ T8247] R13: 00007fd56cbe6038 R14: 00007fd56cbe5fa0 R15: 00007ffd1ee5ac58
[   93.258594][ T8247]  </TASK>
[   93.354786][    C2] vkms_vblank_simulate: vblank timer overrun
[   93.541352][ T8254] __nla_validate_parse: 12 callbacks suppressed
[   93.541364][ T8254] netlink: 20 bytes leftover after parsing attributes in process `syz.0.710'.
[   93.546870][ T8254] FAULT_INJECTION: forcing a failure.
[   93.546870][ T8254] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.553720][ T8254] CPU: 0 UID: 0 PID: 8254 Comm: syz.0.710 Not tainted syzkaller #0 PREEMPT(full) 
[   93.553735][ T8254] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.553742][ T8254] Call Trace:
[   93.553747][ T8254]  <TASK>
[   93.553752][ T8254]  dump_stack_lvl+0x16c/0x1f0
[   93.553768][ T8254]  should_fail_ex+0x512/0x640
[   93.553785][ T8254]  _copy_to_user+0x32/0xd0
[   93.553801][ T8254]  simple_read_from_buffer+0xcb/0x170
[   93.553816][ T8254]  proc_fail_nth_read+0x197/0x240
[   93.553832][ T8254]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   93.553849][ T8254]  ? rw_verify_area+0xcf/0x6c0
[   93.553861][ T8254]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   93.553876][ T8254]  vfs_read+0x1e4/0xcf0
[   93.553891][ T8254]  ? __pfx___mutex_lock+0x10/0x10
[   93.553905][ T8254]  ? __pfx_vfs_read+0x10/0x10
[   93.553922][ T8254]  ? __fget_files+0x20e/0x3c0
[   93.553941][ T8254]  ksys_read+0x12a/0x250
[   93.553953][ T8254]  ? __pfx_ksys_read+0x10/0x10
[   93.553971][ T8254]  do_syscall_64+0xcd/0xfa0
[   93.553985][ T8254]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.553996][ T8254] RIP: 0033:0x7fd56c98d8dc
[   93.554005][ T8254] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   93.554016][ T8254] RSP: 002b:00007fd56d75a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   93.554026][ T8254] RAX: ffffffffffffffda RBX: 00007fd56cbe5fa0 RCX: 00007fd56c98d8dc
[   93.554033][ T8254] RDX: 000000000000000f RSI: 00007fd56d75a0a0 RDI: 0000000000000005
[   93.554039][ T8254] RBP: 00007fd56d75a090 R08: 0000000000000000 R09: 0000000000000000
[   93.554045][ T8254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   93.554051][ T8254] R13: 00007fd56cbe6038 R14: 00007fd56cbe5fa0 R15: 00007ffd1ee5ac58
[   93.554066][ T8254]  </TASK>
[   93.637681][   T40] kauditd_printk_skb: 20 callbacks suppressed
[   93.637697][   T40] audit: type=1400 audit(1760323012.700:663): avc:  denied  { mount } for  pid=8255 comm="syz.0.711" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[   93.683080][   T40] audit: type=1400 audit(1760323012.740:664): avc:  denied  { unmount } for  pid=5930 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[   93.722568][ T8258] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[   93.725929][   T13] Bluetooth: hci4: Frame reassembly failed (-84)
[   93.728184][   T13] Bluetooth: hci4: Frame reassembly failed (-84)
[   93.927798][ T8261] netlink: 20 bytes leftover after parsing attributes in process `syz.3.713'.
[   93.966254][   T40] audit: type=1400 audit(1760323013.030:665): avc:  denied  { read write } for  pid=8263 comm="syz.3.714" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   93.974091][   T40] audit: type=1400 audit(1760323013.030:666): avc:  denied  { open } for  pid=8263 comm="syz.3.714" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   94.297939][   T40] audit: type=1400 audit(1760323013.360:667): avc:  denied  { ioctl } for  pid=8289 comm="syz.3.721" path="socket:[20099]" dev="sockfs" ino=20099 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[   94.298438][ T8290] netlink: 20 bytes leftover after parsing attributes in process `syz.3.721'.
[   94.364414][ T8295] netlink: 'syz.3.722': attribute type 1 has an invalid length.
[   94.403512][ T8299] netlink: 20 bytes leftover after parsing attributes in process `syz.3.724'.
[   95.090418][ T8318] program syz.3.731 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   95.263610][ T8324] netlink: 20 bytes leftover after parsing attributes in process `syz.3.734'.
[   95.346840][ T8331] FAULT_INJECTION: forcing a failure.
[   95.346840][ T8331] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.352161][ T8331] CPU: 3 UID: 0 PID: 8331 Comm: syz.1.737 Not tainted syzkaller #0 PREEMPT(full) 
[   95.352184][ T8331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.352195][ T8331] Call Trace:
[   95.352202][ T8331]  <TASK>
[   95.352210][ T8331]  dump_stack_lvl+0x16c/0x1f0
[   95.352236][ T8331]  should_fail_ex+0x512/0x640
[   95.352262][ T8331]  _copy_to_iter+0x29f/0x1710
[   95.352292][ T8331]  ? __pfx__copy_to_iter+0x10/0x10
[   95.352321][ T8331]  ? mark_held_locks+0x49/0x80
[   95.352348][ T8331]  eventfd_read+0x491/0x610
[   95.352370][ T8331]  ? __pfx_eventfd_read+0x10/0x10
[   95.352391][ T8331]  ? selinux_file_permission+0x126/0x660
[   95.352419][ T8331]  ? bpf_lsm_file_permission+0x9/0x10
[   95.352441][ T8331]  ? security_file_permission+0x71/0x210
[   95.352468][ T8331]  ? rw_verify_area+0xcf/0x6c0
[   95.352488][ T8331]  ? __pfx_eventfd_read+0x10/0x10
[   95.352508][ T8331]  __io_read+0x357/0x14b0
[   95.352525][ T8331]  ? __io_import_rw_buffer+0x245/0x6f0
[   95.352560][ T8331]  io_read+0x8d/0x1f0
[   95.352577][ T8331]  ? __pfx_io_read+0x10/0x10
[   95.352602][ T8331]  __io_issue_sqe+0xe8/0x7c0
[   95.352630][ T8331]  io_issue_sqe+0x85/0x1000
[   95.352653][ T8331]  io_submit_sqes+0x94d/0x2710
[   95.352687][ T8331]  __do_sys_io_uring_enter+0xd69/0x1630
[   95.352707][ T8331]  ? __fget_files+0x20e/0x3c0
[   95.352727][ T8331]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[   95.352748][ T8331]  ? fput+0x9b/0xd0
[   95.352763][ T8331]  ? ksys_write+0x1ac/0x250
[   95.352784][ T8331]  ? __pfx_ksys_write+0x10/0x10
[   95.352814][ T8331]  do_syscall_64+0xcd/0xfa0
[   95.352837][ T8331]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.352860][ T8331] RIP: 0033:0x7f495e18eec9
[   95.352875][ T8331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.352892][ T8331] RSP: 002b:00007f495f0ef038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   95.352909][ T8331] RAX: ffffffffffffffda RBX: 00007f495e3e5fa0 RCX: 00007f495e18eec9
[   95.352921][ T8331] RDX: 0000000000000000 RSI: 00000000100847c0 RDI: 0000000000000005
[   95.352931][ T8331] RBP: 00007f495f0ef090 R08: 0000000000000000 R09: 0000000000000000
[   95.352941][ T8331] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   95.352951][ T8331] R13: 00007f495e3e6038 R14: 00007f495e3e5fa0 R15: 00007ffff94759e8
[   95.352978][ T8331]  </TASK>
[   95.541432][   T40] audit: type=1400 audit(1760323014.600:668): avc:  denied  { read } for  pid=8340 comm="syz.3.740" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   95.550708][   T40] audit: type=1400 audit(1760323014.600:669): avc:  denied  { open } for  pid=8340 comm="syz.3.740" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   95.774798][   T64] Bluetooth: hci4: command 0x1003 tx timeout
[   95.775051][ T5944] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   95.863757][   T40] audit: type=1400 audit(1760323014.920:670): avc:  denied  { bind } for  pid=8345 comm="syz.0.742" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   95.906653][   T40] audit: type=1400 audit(1760323014.970:671): avc:  denied  { read } for  pid=8345 comm="syz.0.742" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   96.090858][ T8356] netlink: 20 bytes leftover after parsing attributes in process `syz.2.745'.
[   96.448538][ T8368] kvm: kvm [8367]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x9d00
[   96.452027][ T8368] kvm: kvm [8367]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x9d00
[   96.759567][ T8372] Mount JFS Failure: -5
[   96.760919][ T8372] jfs_mount failed w/return code = -5
[   96.768576][   T40] audit: type=1400 audit(1760323015.830:672): avc:  denied  { read write } for  pid=8371 comm="syz.1.751" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   96.772012][ T8375] netlink: 20 bytes leftover after parsing attributes in process `syz.2.752'.
[   96.819005][ T8372] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   96.822364][ T8372] block device autoloading is deprecated and will be removed.
[   96.830120][ T8372] fuse: Bad value for 'fd'
[   96.890758][ T8383] netlink: 20 bytes leftover after parsing attributes in process `syz.1.755'.
[   97.071389][ T8396] team0: No ports can be present during mode change
[   97.284580][   T54] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[   97.434573][   T54] usb 6-1: Using ep0 maxpacket: 16
[   97.438154][   T54] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   97.441720][   T54] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   97.445044][   T54] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   97.449086][   T54] usb 6-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[   97.451973][   T54] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   97.457856][   T54] usb 6-1: config 0 descriptor??
[   97.877485][ T8394] netlink: 504 bytes leftover after parsing attributes in process `syz.1.759'.
[   97.911870][ T8394] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   97.915779][ T8394] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   98.047549][   T54] usbhid 6-1:0.0: can't add hid device: -71
[   98.049590][   T54] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[   98.057591][   T54] usb 6-1: USB disconnect, device number 10
[   98.956278][   T40] kauditd_printk_skb: 5 callbacks suppressed
[   98.956295][   T40] audit: type=1400 audit(1760323018.020:678): avc:  denied  { create } for  pid=8433 comm="syz.3.772" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   99.245318][ T8463] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[   99.247544][ T8463] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   99.251734][ T8463] vhci_hcd vhci_hcd.0: Device attached
[   99.256948][ T8466] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(7)
[   99.259316][ T8466] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   99.262006][ T8467] vhci_hcd vhci_hcd.0: pdev(3) rhport(2) sockfd(10)
[   99.264911][ T8467] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   99.268247][ T8467] vhci_hcd vhci_hcd.0: Device attached
[   99.268976][ T8466] vhci_hcd vhci_hcd.0: Device attached
[   99.274344][ T8469] vhci_hcd: connection closed
[   99.274391][ T8468] vhci_hcd: connection closed
[   99.276590][   T60] vhci_hcd: stop threads
[   99.276706][ T8464] vhci_hcd: connection closed
[   99.276948][   T60] vhci_hcd: release socket
[   99.276962][   T60] vhci_hcd: disconnect device
[   99.282443][   T60] vhci_hcd: stop threads
[   99.287906][   T60] vhci_hcd: release socket
[   99.289333][   T60] vhci_hcd: disconnect device
[   99.290884][   T60] vhci_hcd: stop threads
[   99.292142][   T60] vhci_hcd: release socket
[   99.293404][   T60] vhci_hcd: disconnect device
[   99.401943][ T8476] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3413 sclass=netlink_route_socket pid=8476 comm=syz.0.782
[   99.407723][ T8476] netlink: 20 bytes leftover after parsing attributes in process `syz.0.782'.
[   99.440262][ T8478] F2FS-fs (loop0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[   99.443704][ T8478] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   99.447563][ T8478] F2FS-fs (loop0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[   99.450159][ T8478] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[   99.674712][ T8484] bond1: Unable to set up delay as MII monitoring is disabled
[   99.679371][ T8484] bond1 (unregistering): Released all slaves
[   99.923995][   T40] audit: type=1400 audit(1760323018.980:679): avc:  denied  { write } for  pid=8501 comm="syz.0.790" path="socket:[23086]" dev="sockfs" ino=23086 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   99.924314][ T8502] ieee802154 phy0 wpan0: encryption failed: -22
[   99.938358][   T40] audit: type=1400 audit(1760323019.000:680): avc:  denied  { append } for  pid=8501 comm="syz.0.790" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   99.955975][   T40] audit: type=1400 audit(1760323019.020:681): avc:  denied  { connect } for  pid=8508 comm="syz.3.793" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   99.982615][   T40] audit: type=1400 audit(1760323019.040:682): avc:  denied  { create } for  pid=8511 comm="syz.2.794" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   99.992748][   T40] audit: type=1400 audit(1760323019.050:683): avc:  denied  { ioctl } for  pid=8501 comm="syz.0.790" path="/dev/nvram" dev="devtmpfs" ino=631 ioctlcmd=0x7041 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   99.996467][ T8512] tipc: Started in network mode
[  100.003169][ T8512] tipc: Node identity b275596d00b5, cluster identity 4711
[  100.006559][ T8512] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  100.011391][ T8512] syzkaller0: entered promiscuous mode
[  100.013875][ T8512] syzkaller0: entered allmulticast mode
[  100.031510][ T8512] tipc: Resetting bearer <eth:syzkaller0>
[  100.050691][   T40] audit: type=1400 audit(1760323019.110:684): avc:  denied  { bind } for  pid=8511 comm="syz.2.794" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  100.072007][ T8519] netlink: 8 bytes leftover after parsing attributes in process `syz.3.796'.
[  100.108506][   T40] audit: type=1400 audit(1760323019.170:685): avc:  denied  { append } for  pid=8521 comm="syz.3.797" name="usbmon3" dev="devtmpfs" ino=746 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  100.208243][ T8511] tipc: Resetting bearer <eth:syzkaller0>
[  100.221323][ T8511] tipc: Disabling bearer <eth:syzkaller0>
[  100.357141][ T8511] delete_channel: no stack
[  100.382197][ T8527] Failed to initialize the IGMP autojoin socket (err -2)
[  100.412904][   T40] audit: type=1400 audit(1760323019.470:686): avc:  denied  { ioctl } for  pid=8530 comm="syz.2.801" path="ipc:[4026532879]" dev="nsfs" ino=4026532879 ioctlcmd=0xb701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  100.424888][ T8531] geneve3: entered promiscuous mode
[  100.427371][ T8531] geneve3: entered allmulticast mode
[  100.438103][ T8532] geneve3: entered promiscuous mode
[  100.439821][ T8532] geneve3: entered allmulticast mode
[  100.453947][ T8534] Failed to initialize the IGMP autojoin socket (err -2)
[  100.703593][ T8555] netlink: 4 bytes leftover after parsing attributes in process `syz.2.808'.
[  100.809260][ T8559] syz.0.810 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  100.824008][ T8559] netlink: 12 bytes leftover after parsing attributes in process `syz.0.810'.
[  100.867814][ T8559] veth3: entered promiscuous mode
[  100.948143][ T8570] netlink: 4 bytes leftover after parsing attributes in process `syz.0.814'.
[  100.949646][ T8571] veth0: entered promiscuous mode
[  100.966917][   T40] audit: type=1400 audit(1760323020.030:687): avc:  denied  { watch watch_with_perm watch_reads } for  pid=8572 comm="syz.2.815" path="/140/bus" dev="tmpfs" ino=753 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  100.968320][ T8573] netlink: 8 bytes leftover after parsing attributes in process `syz.2.815'.
[  100.997157][ T8570] veth0 (unregistering): left promiscuous mode
[  101.180818][ T8584] netlink: 12 bytes leftover after parsing attributes in process `syz.0.818'.
[  101.185103][ T8584] netlink: 'syz.0.818': attribute type 10 has an invalid length.
[  101.187793][ T8584] batman_adv: batadv0: Removing interface: batadv_slave_0
[  101.192298][ T8584] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  101.385548][ T8593] netlink: 4 bytes leftover after parsing attributes in process `syz.2.821'.
[  101.691808][ T8619] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  102.334827][   T54] usb 6-1: new low-speed USB device number 11 using dummy_hcd
[  102.486913][   T54] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 32, setting to 8
[  102.493108][   T54] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x82 is Bulk; changing to Interrupt
[  102.499417][   T54] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x3 is Bulk; changing to Interrupt
[  102.509554][   T54] usb 6-1: string descriptor 0 read error: -22
[  102.513427][   T54] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  102.517436][   T54] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  102.531822][ T8642] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  102.736805][ T8642] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  102.739896][ T8642] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  102.944931][   T54] cdc_ncm 6-1:1.0: failed GET_NTB_PARAMETERS
[  102.947710][   T54] cdc_ncm 6-1:1.0: bind() failure
[  102.954601][   T54] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  102.957671][   T54] cdc_ncm 6-1:1.1: bind() failure
[  102.961996][   T54] usb 6-1: USB disconnect, device number 11
[  103.147416][ T8650] autofs4:pid:8650:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(40960.1), cmd(0xc0189374)
[  103.152640][ T8650] autofs4:pid:8650:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189374)
[  103.653067][ T8662] netlink: 60 bytes leftover after parsing attributes in process `syz.2.845'.
[  103.687994][ T8664] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=36 sclass=netlink_tcpdiag_socket pid=8664 comm=syz.1.843
[  103.694150][ T8664] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=44 sclass=netlink_tcpdiag_socket pid=8664 comm=syz.1.843
[  103.733921][ T8666] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=6688 sclass=netlink_route_socket pid=8666 comm=syz.2.846
[  104.023138][   T40] kauditd_printk_skb: 11 callbacks suppressed
[  104.023155][   T40] audit: type=1400 audit(1760323023.080:699): avc:  denied  { setattr } for  pid=8672 comm="syz.3.849" name="X25" dev="sockfs" ino=25609 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  104.034748][ T6001] usb 6-1: new low-speed USB device number 12 using dummy_hcd
[  104.128256][ T8682] random: crng reseeded on system resumption
[  104.139647][ T8682] PM: hibernation: Image mismatch: memory size
[  104.147802][ T8682] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8682 comm=syz.3.852
[  104.208203][ T6001] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  104.210675][ T6001] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  104.214107][ T6001] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  104.220174][ T6001] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  104.224615][ T6001] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  104.230841][ T6001] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  104.233622][ T6001] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  104.237850][ T6001] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  104.242503][ T6001] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  104.246297][ T6001] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  104.250837][ T6001] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  104.253800][ T6001] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  104.258973][ T6001] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  104.264337][ T6001] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  104.269029][ T6001] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  104.275761][ T6001] usb 6-1: string descriptor 0 read error: -22
[  104.278465][ T6001] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  104.282518][ T6001] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  104.293649][ T6001] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  104.550382][   T40] audit: type=1400 audit(1760323023.610:700): avc:  denied  { read } for  pid=8696 comm="syz.3.858" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  104.640187][   T40] audit: type=1400 audit(1760323023.700:701): avc:  denied  { map } for  pid=8702 comm="syz.2.860" path="pipe:[22238]" dev="pipefs" ino=22238 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  104.649828][   T40] audit: type=1400 audit(1760323023.700:702): avc:  denied  { execute } for  pid=8702 comm="syz.2.860" path="pipe:[22238]" dev="pipefs" ino=22238 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  104.737243][ T8715] netlink: 16 bytes leftover after parsing attributes in process `syz.3.864'.
[  104.752968][  T843] usb 6-1: USB disconnect, device number 12
[  105.145201][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  105.256880][ T8739] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8739 comm=syz.2.872
[  105.268566][   T40] audit: type=1400 audit(1760323024.330:703): avc:  denied  { lock } for  pid=8742 comm="syz.0.873" path="socket:[24697]" dev="sockfs" ino=24697 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  105.309823][   T40] audit: type=1400 audit(1760323024.370:704): avc:  denied  { create } for  pid=8747 comm="syz.0.874" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_dnrt_socket permissive=1
[  105.560378][ T8771] binder: 8770:8771 ioctl 4018620d 0 returned -22
[  105.814325][   T40] audit: type=1400 audit(1760323024.870:705): avc:  denied  { create } for  pid=8774 comm="syz.3.883" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  105.820860][   T40] audit: type=1400 audit(1760323024.870:706): avc:  denied  { write } for  pid=8774 comm="syz.3.883" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  106.163913][ T8783] netlink: 24 bytes leftover after parsing attributes in process `syz.3.886'.
[  106.191965][ T8783] sch_tbf: burst 88 is lower than device veth3 mtu (1514) !
[  106.201396][   T40] audit: type=1400 audit(1760323025.260:707): avc:  denied  { getopt } for  pid=8782 comm="syz.3.886" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  106.307847][ T8788] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«=
[  106.308002][ T8789] netlink: 'syz.3.888': attribute type 6 has an invalid length.
[  106.312587][ T8789] netlink: 'syz.3.888': attribute type 7 has an invalid length.
[  106.315324][ T8789] netlink: 'syz.3.888': attribute type 8 has an invalid length.
[  106.373092][ T8794] trusted_key: syz.2.890 sent an empty control message without MSG_MORE.
[  106.449961][ T8800] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=56 sclass=netlink_route_socket pid=8800 comm=syz.3.892
[  106.458106][ T8800] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  106.578988][   T40] audit: type=1400 audit(1760323025.640:708): avc:  denied  { bind } for  pid=8812 comm="syz.2.897" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  106.632399][ T8818] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  106.634531][ T8818] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  106.637184][ T8818] vhci_hcd vhci_hcd.0: Device attached
[  106.815260][   T54] vhci_hcd: vhci_device speed not set
[  106.851154][ T8837] Failed to initialize the IGMP autojoin socket (err -2)
[  106.874607][   T54] usb 43-1: new low-speed USB device number 2 using vhci_hcd
[  106.879793][ T8819] vhci_hcd: connection closed
[  106.880339][   T60] vhci_hcd: stop threads
[  106.883068][   T60] vhci_hcd: release socket
[  106.885435][   T60] vhci_hcd: disconnect device
[  106.902408][ T8838] netlink: 'syz.2.902': attribute type 13 has an invalid length.
[  106.909695][ T8838] gretap0: refused to change device tx_queue_len
[  106.912661][ T8838] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  106.987444][ T8840] netlink: 12 bytes leftover after parsing attributes in process `syz.2.903'.
[  107.409769][ T8873] option changes via remount are deprecated (pid=8872 comm=syz.2.912)
[  107.460413][ T8877] dlm: non-version read from control device 0
[  107.466141][ T8876] sp0: Synchronizing with TNC
[  107.471303][ T8876] sp0: Found TNC
[  107.526293][ T8883] netlink: 'syz.0.917': attribute type 1 has an invalid length.
[  107.546566][ T8883] 8021q: adding VLAN 0 to HW filter on device bond1
[  107.737007][  T843] usb 6-1: new low-speed USB device number 13 using dummy_hcd
[  107.888041][  T843] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  107.891166][  T843] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  107.899608][  T843] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  107.904410][  T843] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  107.909290][  T843] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  107.922686][  T843] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  107.926161][  T843] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  107.929858][  T843] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  107.933155][  T843] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  107.937321][  T843] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  107.941623][  T843] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  107.943988][  T843] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  107.947683][  T843] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  107.951259][  T843] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  107.954812][  T843] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  107.960362][  T843] usb 6-1: string descriptor 0 read error: -22
[  107.962330][  T843] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  107.966003][  T843] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  107.973047][  T843] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  108.277756][    T9] usb 6-1: USB disconnect, device number 13
[  108.286241][ T8927] kvm: user requested TSC rate below hardware speed
[  108.624660][   T61] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  108.686043][ T8936] FAULT_INJECTION: forcing a failure.
[  108.686043][ T8936] name failslab, interval 1, probability 0, space 0, times 0
[  108.691428][ T8936] CPU: 1 UID: 0 PID: 8936 Comm: syz.3.934 Not tainted syzkaller #0 PREEMPT(full) 
[  108.691450][ T8936] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.691461][ T8936] Call Trace:
[  108.691469][ T8936]  <TASK>
[  108.691477][ T8936]  dump_stack_lvl+0x16c/0x1f0
[  108.691530][ T8936]  should_fail_ex+0x512/0x640
[  108.691559][ T8936]  ? security_file_permission+0x71/0x210
[  108.691589][ T8936]  should_failslab+0xc2/0x120
[  108.691617][ T8936]  __kmalloc_noprof+0xdd/0x880
[  108.691635][ T8936]  ? __io_read+0x521/0x14b0
[  108.691653][ T8936]  ? io_cache_alloc_new+0x45/0xf0
[  108.691681][ T8936]  ? io_cache_alloc_new+0x45/0xf0
[  108.691703][ T8936]  io_cache_alloc_new+0x45/0xf0
[  108.691733][ T8936]  io_arm_apoll+0x826/0x980
[  108.691749][ T8936]  ? io_read+0xe0/0x1f0
[  108.691768][ T8936]  ? __pfx_io_arm_apoll+0x10/0x10
[  108.691796][ T8936]  ? __io_issue_sqe+0x14a/0x7c0
[  108.691826][ T8936]  io_arm_poll_handler+0x223/0x2b0
[  108.691848][ T8936]  io_queue_async+0xab/0x130
[  108.691878][ T8936]  io_submit_sqes+0x174d/0x2710
[  108.691912][ T8936]  __do_sys_io_uring_enter+0xd69/0x1630
[  108.691938][ T8936]  ? __fget_files+0x20e/0x3c0
[  108.691962][ T8936]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  108.691987][ T8936]  ? fput+0x9b/0xd0
[  108.692005][ T8936]  ? ksys_write+0x1ac/0x250
[  108.692025][ T8936]  ? __pfx_ksys_write+0x10/0x10
[  108.692057][ T8936]  do_syscall_64+0xcd/0xfa0
[  108.692079][ T8936]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.692097][ T8936] RIP: 0033:0x7f565618eec9
[  108.692114][ T8936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.692131][ T8936] RSP: 002b:00007f5657053038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  108.692150][ T8936] RAX: ffffffffffffffda RBX: 00007f56563e5fa0 RCX: 00007f565618eec9
[  108.692163][ T8936] RDX: 0000000000000000 RSI: 00000000100847c0 RDI: 0000000000000005
[  108.692174][ T8936] RBP: 00007f5657053090 R08: 0000000000000000 R09: 0000000000000000
[  108.692184][ T8936] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000002
[  108.692195][ T8936] R13: 00007f56563e6038 R14: 00007f56563e5fa0 R15: 00007ffe15c9ac28
[  108.692221][ T8936]  </TASK>
[  108.808296][   T61] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  108.812826][   T61] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  108.817118][   T61] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  108.820781][   T61] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.829020][ T8929] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  108.834798][   T61] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  109.067337][   T61] usb 5-1: USB disconnect, device number 10
[  109.319200][   T40] kauditd_printk_skb: 14 callbacks suppressed
[  109.319212][   T40] audit: type=1326 audit(1760323028.380:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8964 comm="syz.2.941" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7caf98eec9 code=0x7ffc0000
[  109.329221][   T40] audit: type=1326 audit(1760323028.380:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8964 comm="syz.2.941" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7caf98eec9 code=0x7ffc0000
[  109.338402][   T40] audit: type=1326 audit(1760323028.380:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8964 comm="syz.2.941" exe="/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f7caf98eec9 code=0x7ffc0000
[  109.354702][   T40] audit: type=1326 audit(1760323028.380:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8964 comm="syz.2.941" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7caf98eec9 code=0x7ffc0000
[  109.364828][   T40] audit: type=1326 audit(1760323028.380:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8964 comm="syz.2.941" exe="/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f7caf98eec9 code=0x7ffc0000
[  109.375092][   T40] audit: type=1326 audit(1760323028.380:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8964 comm="syz.2.941" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7caf98eec9 code=0x7ffc0000
[  109.384558][   T40] audit: type=1326 audit(1760323028.390:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8966 comm="syz.2.941" exe="/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f7caf9c1785 code=0x7ffc0000
[  109.392953][   T40] audit: type=1326 audit(1760323028.390:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8964 comm="syz.2.941" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7caf98eec9 code=0x7ffc0000
[  109.400029][   T40] audit: type=1326 audit(1760323028.390:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8964 comm="syz.2.941" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7caf98eec9 code=0x7ffc0000
[  109.407244][   T40] audit: type=1326 audit(1760323028.390:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8964 comm="syz.2.941" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7caf98eec9 code=0x7ffc0000
[  109.519098][ T8969] netlink: 44 bytes leftover after parsing attributes in process `syz.2.941'.
[  109.711734][ T8976] FAULT_INJECTION: forcing a failure.
[  109.711734][ T8976] name failslab, interval 1, probability 0, space 0, times 0
[  109.715678][ T8976] CPU: 2 UID: 0 PID: 8976 Comm: syz.3.944 Not tainted syzkaller #0 PREEMPT(full) 
[  109.715701][ T8976] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.715713][ T8976] Call Trace:
[  109.715720][ T8976]  <TASK>
[  109.715727][ T8976]  dump_stack_lvl+0x16c/0x1f0
[  109.715754][ T8976]  should_fail_ex+0x512/0x640
[  109.715776][ T8976]  ? __kmalloc_noprof+0xca/0x880
[  109.715796][ T8976]  should_failslab+0xc2/0x120
[  109.715812][ T8976]  __kmalloc_noprof+0xdd/0x880
[  109.715823][ T8976]  ? io_cache_alloc_new+0x45/0xf0
[  109.715841][ T8976]  ? io_cache_alloc_new+0x45/0xf0
[  109.715854][ T8976]  io_cache_alloc_new+0x45/0xf0
[  109.715869][ T8976]  __io_prep_rw+0x21d/0x1090
[  109.715887][ T8976]  ? __pfx___io_prep_rw+0x10/0x10
[  109.715902][ T8976]  ? io_arm_apoll+0x543/0x980
[  109.715913][ T8976]  ? io_read+0xe0/0x1f0
[  109.715923][ T8976]  ? __pfx_io_arm_apoll+0x10/0x10
[  109.715935][ T8976]  ? __pfx_io_async_queue_proc+0x10/0x10
[  109.715948][ T8976]  io_prep_rw+0x76/0x2c0
[  109.715964][ T8976]  ? __pfx_io_prep_rw+0x10/0x10
[  109.715985][ T8976]  io_prep_readv+0x20/0xa0
[  109.715995][ T8976]  io_submit_sqes+0x855/0x2710
[  109.716015][ T8976]  __do_sys_io_uring_enter+0xd69/0x1630
[  109.716029][ T8976]  ? __fget_files+0x20e/0x3c0
[  109.716043][ T8976]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  109.716057][ T8976]  ? fput+0x9b/0xd0
[  109.716066][ T8976]  ? ksys_write+0x1ac/0x250
[  109.716079][ T8976]  ? __pfx_ksys_write+0x10/0x10
[  109.716097][ T8976]  do_syscall_64+0xcd/0xfa0
[  109.716111][ T8976]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.716122][ T8976] RIP: 0033:0x7f565618eec9
[  109.716131][ T8976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.716141][ T8976] RSP: 002b:00007f5657053038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  109.716152][ T8976] RAX: ffffffffffffffda RBX: 00007f56563e5fa0 RCX: 00007f565618eec9
[  109.716159][ T8976] RDX: 0000000000000000 RSI: 00000000100847c0 RDI: 0000000000000005
[  109.716165][ T8976] RBP: 00007f5657053090 R08: 0000000000000000 R09: 0000000000000000
[  109.716172][ T8976] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000002
[  109.716178][ T8976] R13: 00007f56563e6038 R14: 00007f56563e5fa0 R15: 00007ffe15c9ac28
[  109.716193][ T8976]  </TASK>
[  110.347418][ T8986] mac80211_hwsim hwsim6 wlan0: entered promiscuous mode
[  110.577745][ T9001] Failed to initialize the IGMP autojoin socket (err -2)
[  110.580014][ T9004] FAULT_INJECTION: forcing a failure.
[  110.580014][ T9004] name failslab, interval 1, probability 0, space 0, times 0
[  110.585807][ T9004] CPU: 3 UID: 0 PID: 9004 Comm: syz.0.953 Not tainted syzkaller #0 PREEMPT(full) 
[  110.585830][ T9004] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.585842][ T9004] Call Trace:
[  110.585848][ T9004]  <TASK>
[  110.585855][ T9004]  dump_stack_lvl+0x16c/0x1f0
[  110.585882][ T9004]  should_fail_ex+0x512/0x640
[  110.585904][ T9004]  ? security_file_permission+0x71/0x210
[  110.585932][ T9004]  should_failslab+0xc2/0x120
[  110.585959][ T9004]  __kmalloc_noprof+0xdd/0x880
[  110.585976][ T9004]  ? __io_read+0x521/0x14b0
[  110.585993][ T9004]  ? io_cache_alloc_new+0x45/0xf0
[  110.586020][ T9004]  ? io_cache_alloc_new+0x45/0xf0
[  110.586041][ T9004]  io_cache_alloc_new+0x45/0xf0
[  110.586065][ T9004]  io_arm_apoll+0x826/0x980
[  110.586084][ T9004]  ? io_read+0xe0/0x1f0
[  110.586100][ T9004]  ? __pfx_io_arm_apoll+0x10/0x10
[  110.586127][ T9004]  ? __io_issue_sqe+0x14a/0x7c0
[  110.586155][ T9004]  io_arm_poll_handler+0x223/0x2b0
[  110.586178][ T9004]  io_queue_async+0xab/0x130
[  110.586207][ T9004]  io_submit_sqes+0x174d/0x2710
[  110.586241][ T9004]  __do_sys_io_uring_enter+0xd69/0x1630
[  110.586266][ T9004]  ? __fget_files+0x20e/0x3c0
[  110.586289][ T9004]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  110.586312][ T9004]  ? fput+0x9b/0xd0
[  110.586329][ T9004]  ? ksys_write+0x1ac/0x250
[  110.586352][ T9004]  ? __pfx_ksys_write+0x10/0x10
[  110.586381][ T9004]  do_syscall_64+0xcd/0xfa0
[  110.586406][ T9004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.586440][ T9004] RIP: 0033:0x7fd56c98eec9
[  110.586455][ T9004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.586471][ T9004] RSP: 002b:00007fd56d75a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  110.586488][ T9004] RAX: ffffffffffffffda RBX: 00007fd56cbe5fa0 RCX: 00007fd56c98eec9
[  110.586498][ T9004] RDX: 0000000000000000 RSI: 00000000100847c0 RDI: 0000000000000005
[  110.586508][ T9004] RBP: 00007fd56d75a090 R08: 0000000000000000 R09: 0000000000000000
[  110.586518][ T9004] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000002
[  110.586528][ T9004] R13: 00007fd56cbe6038 R14: 00007fd56cbe5fa0 R15: 00007ffd1ee5ac58
[  110.586553][ T9004]  </TASK>
[  110.664870][    C3] vkms_vblank_simulate: vblank timer overrun
[  110.817164][ T9021] binfmt_misc: register: failed to install interpreter file ./file0
[  112.004590][   T54] vhci_hcd: vhci_device speed not set
[  112.210661][ T9075] FAULT_INJECTION: forcing a failure.
[  112.210661][ T9075] name failslab, interval 1, probability 0, space 0, times 0
[  112.214682][ T9075] CPU: 0 UID: 0 PID: 9075 Comm: syz.1.974 Not tainted syzkaller #0 PREEMPT(full) 
[  112.214697][ T9075] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.214704][ T9075] Call Trace:
[  112.214707][ T9075]  <TASK>
[  112.214711][ T9075]  dump_stack_lvl+0x16c/0x1f0
[  112.214728][ T9075]  should_fail_ex+0x512/0x640
[  112.214741][ T9075]  ? __kmalloc_noprof+0xca/0x880
[  112.214754][ T9075]  should_failslab+0xc2/0x120
[  112.214771][ T9075]  __kmalloc_noprof+0xdd/0x880
[  112.214782][ T9075]  ? io_cache_alloc_new+0x45/0xf0
[  112.214799][ T9075]  ? io_cache_alloc_new+0x45/0xf0
[  112.214812][ T9075]  io_cache_alloc_new+0x45/0xf0
[  112.214826][ T9075]  __io_prep_rw+0x21d/0x1090
[  112.214842][ T9075]  ? find_held_lock+0x2b/0x80
[  112.214853][ T9075]  ? __pfx___io_prep_rw+0x10/0x10
[  112.214868][ T9075]  ? __io_alloc_req_refill+0x18f/0x5e0
[  112.214888][ T9075]  ? __io_alloc_req_refill+0x33a/0x5e0
[  112.214906][ T9075]  io_prep_rw+0x76/0x2c0
[  112.214922][ T9075]  ? __pfx_io_prep_rw+0x10/0x10
[  112.214942][ T9075]  io_prep_readv+0x20/0xa0
[  112.214952][ T9075]  io_submit_sqes+0x855/0x2710
[  112.214972][ T9075]  __do_sys_io_uring_enter+0xd69/0x1630
[  112.214986][ T9075]  ? __fget_files+0x20e/0x3c0
[  112.215000][ T9075]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  112.215013][ T9075]  ? fput+0x9b/0xd0
[  112.215023][ T9075]  ? ksys_write+0x1ac/0x250
[  112.215054][ T9075]  ? __pfx_ksys_write+0x10/0x10
[  112.215074][ T9075]  do_syscall_64+0xcd/0xfa0
[  112.215088][ T9075]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.215099][ T9075] RIP: 0033:0x7f495e18eec9
[  112.215108][ T9075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.215119][ T9075] RSP: 002b:00007f495f0ef038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  112.215130][ T9075] RAX: ffffffffffffffda RBX: 00007f495e3e5fa0 RCX: 00007f495e18eec9
[  112.215136][ T9075] RDX: 0000000000000000 RSI: 00000000100847c0 RDI: 0000000000000005
[  112.215143][ T9075] RBP: 00007f495f0ef090 R08: 0000000000000000 R09: 0000000000000000
[  112.215149][ T9075] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000002
[  112.215155][ T9075] R13: 00007f495e3e6038 R14: 00007f495e3e5fa0 R15: 00007ffff94759e8
[  112.215170][ T9075]  </TASK>
[  113.134794][   T64] Bluetooth: hci4: command 0x1003 tx timeout
[  113.137767][ T5944] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  113.320790][ T9088] ==================================================================
[  113.320799][ T9088] BUG: KASAN: vmalloc-out-of-bounds in sys_fillrect+0x15d4/0x17b0
[  113.320820][ T9088] Write of size 8 at addr ffffc90005379000 by task syz.1.978/9088
[  113.320829][ T9088] 
[  113.320835][ T9088] CPU: 3 UID: 0 PID: 9088 Comm: syz.1.978 Not tainted syzkaller #0 PREEMPT(full) 
[  113.320847][ T9088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  113.320854][ T9088] Call Trace:
[  113.320857][ T9088]  <TASK>
[  113.320861][ T9088]  dump_stack_lvl+0x116/0x1f0
[  113.320876][ T9088]  print_report+0xcd/0x630
[  113.320891][ T9088]  ? __virt_addr_valid+0x81/0x610
[  113.320904][ T9088]  ? sys_fillrect+0x15d4/0x17b0
[  113.320919][ T9088]  kasan_report+0xe0/0x110
[  113.320934][ T9088]  ? sys_fillrect+0x15d4/0x17b0
[  113.320951][ T9088]  sys_fillrect+0x15d4/0x17b0
[  113.320968][ T9088]  ? __pfx_sys_fillrect+0x10/0x10
[  113.320984][ T9088]  ? __pfx_bit_putcs+0x10/0x10
[  113.320996][ T9088]  ? bit_cursor+0xeca/0x17e0
[  113.321010][ T9088]  drm_fbdev_shmem_defio_fillrect+0x22/0x140
[  113.321026][ T9088]  bit_clear+0x17d/0x220
[  113.321039][ T9088]  ? __pfx_bit_clear+0x10/0x10
[  113.321051][ T9088]  ? __pfx___might_resched+0x10/0x10
[  113.321062][ T9088]  ? fb_get_color_depth+0x120/0x250
[  113.321076][ T9088]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  113.321095][ T9088]  __fbcon_clear+0x483/0x720
[  113.321109][ T9088]  fbcon_scroll+0x48b/0x640
[  113.321121][ T9088]  con_scroll+0x45f/0x690
[  113.321137][ T9088]  do_con_write+0x5575/0x8290
[  113.321153][ T9088]  ? rcu_cleanup_dead_rnp+0x70/0x2e0
[  113.321167][ T9088]  ? __pfx___mutex_lock+0x10/0x10
[  113.321181][ T9088]  ? __pfx_do_con_write+0x10/0x10
[  113.321196][ T9088]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  113.321212][ T9088]  con_write+0x23/0xb0
[  113.321228][ T9088]  n_tty_write+0x41e/0x11e0
[  113.321241][ T9088]  ? __pfx_n_tty_write+0x10/0x10
[  113.321252][ T9088]  ? trace_kmalloc+0x2b/0xd0
[  113.321267][ T9088]  ? __pfx_woken_wake_function+0x10/0x10
[  113.321284][ T9088]  ? kfree+0x252/0x6d0
[  113.321293][ T9088]  ? nvmet_fc_free_fcp_iod+0xb60/0xb70
[  113.321310][ T9088]  ? __pfx_n_tty_write+0x10/0x10
[  113.321321][ T9088]  file_tty_write.constprop.0+0x503/0x9b0
[  113.321339][ T9088]  vfs_write+0x7d3/0x11d0
[  113.321352][ T9088]  ? __pfx_tty_write+0x10/0x10
[  113.321367][ T9088]  ? __pfx_vfs_write+0x10/0x10
[  113.321379][ T9088]  ? find_held_lock+0x2b/0x80
[  113.321393][ T9088]  ksys_write+0x12a/0x250
[  113.321406][ T9088]  ? __pfx_ksys_write+0x10/0x10
[  113.321421][ T9088]  do_syscall_64+0xcd/0xfa0
[  113.321434][ T9088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.321445][ T9088] RIP: 0033:0x7f495e18eec9
[  113.321453][ T9088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.321469][ T9088] RSP: 002b:00007f495f0ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  113.321481][ T9088] RAX: ffffffffffffffda RBX: 00007f495e3e5fa0 RCX: 00007f495e18eec9
[  113.321487][ T9088] RDX: 0000000000001006 RSI: 0000200000001040 RDI: 0000000000000006
[  113.321494][ T9088] RBP: 00007f495e211f91 R08: 0000000000000000 R09: 0000000000000000
[  113.321500][ T9088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  113.321507][ T9088] R13: 00007f495e3e6038 R14: 00007f495e3e5fa0 R15: 00007ffff94759e8
[  113.321517][ T9088]  </TASK>
[  113.321521][ T9088] 
[  113.321524][ T9088] The buggy address belongs to a 0-page vmalloc region starting at 0xffffc90005079000 allocated at drm_gem_shmem_vmap_locked+0x561/0x7e0
[  113.321547][ T9088] Memory state around the buggy address:
[  113.321553][ T9088]  ffffc90005378f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  113.321560][ T9088]  ffffc90005378f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  113.321568][ T9088] >ffffc90005379000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  113.321574][ T9088]                    ^
[  113.321579][ T9088]  ffffc90005379080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  113.321586][ T9088]  ffffc90005379100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  113.321592][ T9088] ==================================================================
[  113.321609][ T9088] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  113.321616][ T9088] CPU: 3 UID: 0 PID: 9088 Comm: syz.1.978 Not tainted syzkaller #0 PREEMPT(full) 
[  113.321628][ T9088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  113.321634][ T9088] Call Trace:
[  113.321638][ T9088]  <TASK>
[  113.321642][ T9088]  dump_stack_lvl+0x3d/0x1f0
[  113.321654][ T9088]  vpanic+0x640/0x6f0
[  113.321667][ T9088]  panic+0xca/0xd0
[  113.321678][ T9088]  ? __pfx_panic+0x10/0x10
[  113.321690][ T9088]  ? sys_fillrect+0x15d4/0x17b0
[  113.321706][ T9088]  ? preempt_schedule_common+0x44/0xc0
[  113.321718][ T9088]  ? preempt_schedule_thunk+0x16/0x30
[  113.321732][ T9088]  ? check_panic_on_warn+0x1f/0xb0
[  113.321745][ T9088]  check_panic_on_warn+0xab/0xb0
[  113.321758][ T9088]  end_report+0x107/0x170
[  113.321773][ T9088]  kasan_report+0xee/0x110
[  113.321788][ T9088]  ? sys_fillrect+0x15d4/0x17b0
[  113.321805][ T9088]  sys_fillrect+0x15d4/0x17b0
[  113.321822][ T9088]  ? __pfx_sys_fillrect+0x10/0x10
[  113.321839][ T9088]  ? __pfx_bit_putcs+0x10/0x10
[  113.321851][ T9088]  ? bit_cursor+0xeca/0x17e0
[  113.321864][ T9088]  drm_fbdev_shmem_defio_fillrect+0x22/0x140
[  113.321880][ T9088]  bit_clear+0x17d/0x220
[  113.321892][ T9088]  ? __pfx_bit_clear+0x10/0x10
[  113.321905][ T9088]  ? __pfx___might_resched+0x10/0x10
[  113.321914][ T9088]  ? fb_get_color_depth+0x120/0x250
[  113.321926][ T9088]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  113.321944][ T9088]  __fbcon_clear+0x483/0x720
[  113.321957][ T9088]  fbcon_scroll+0x48b/0x640
[  113.321969][ T9088]  con_scroll+0x45f/0x690
[  113.321985][ T9088]  do_con_write+0x5575/0x8290
[  113.322001][ T9088]  ? rcu_cleanup_dead_rnp+0x70/0x2e0
[  113.322014][ T9088]  ? __pfx___mutex_lock+0x10/0x10
[  113.322027][ T9088]  ? __pfx_do_con_write+0x10/0x10
[  113.322043][ T9088]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  113.322059][ T9088]  con_write+0x23/0xb0
[  113.322075][ T9088]  n_tty_write+0x41e/0x11e0
[  113.322088][ T9088]  ? __pfx_n_tty_write+0x10/0x10
[  113.322098][ T9088]  ? trace_kmalloc+0x2b/0xd0
[  113.322113][ T9088]  ? __pfx_woken_wake_function+0x10/0x10
[  113.322129][ T9088]  ? kfree+0x252/0x6d0
[  113.322139][ T9088]  ? nvmet_fc_free_fcp_iod+0xb60/0xb70
[  113.322155][ T9088]  ? __pfx_n_tty_write+0x10/0x10
[  113.322166][ T9088]  file_tty_write.constprop.0+0x503/0x9b0
[  113.322184][ T9088]  vfs_write+0x7d3/0x11d0
[  113.322197][ T9088]  ? __pfx_tty_write+0x10/0x10
[  113.322212][ T9088]  ? __pfx_vfs_write+0x10/0x10
[  113.322224][ T9088]  ? find_held_lock+0x2b/0x80
[  113.322238][ T9088]  ksys_write+0x12a/0x250
[  113.322251][ T9088]  ? __pfx_ksys_write+0x10/0x10
[  113.322266][ T9088]  do_syscall_64+0xcd/0xfa0
[  113.322279][ T9088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.322289][ T9088] RIP: 0033:0x7f495e18eec9
[  113.322297][ T9088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.322307][ T9088] RSP: 002b:00007f495f0ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  113.322316][ T9088] RAX: ffffffffffffffda RBX: 00007f495e3e5fa0 RCX: 00007f495e18eec9
[  113.322323][ T9088] RDX: 0000000000001006 RSI: 0000200000001040 RDI: 0000000000000006
[  113.322330][ T9088] RBP: 00007f495e211f91 R08: 0000000000000000 R09: 0000000000000000
[  113.322336][ T9088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  113.322343][ T9088] R13: 00007f495e3e6038 R14: 00007f495e3e5fa0 R15: 00007ffff94759e8
[  113.322353][ T9088]  </TASK>
[  113.323092][ T9088] Kernel Offset: disabled

VM DIAGNOSIS:
02:37:12  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff8161b793 RDX=ffffffff8e097a00
RSI=ffffffff8161b7db RDI=ffffffff93a98fe0 RBP=ffff88806a420000 RSP=ffffc90000007fd0
R8 =0000000000000001 R9 =fffffbfff27531fc R10=ffffffff93a98fe7 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8161b7dc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d69d9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000001000 CR3=0000000051963000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=00000000f8000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe87c555e0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7cafa12fbe
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7cafa12fcb
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7cafa12fc5
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7cafa12fd9
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7cafa1305f
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7cafa1313d
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff8161b793 RDX=ffff88801dea2480
RSI=ffffffff8161b7db RDI=ffffffff93a98fe0 RBP=ffff88806a520000 RSP=ffffc900006a0fd0
R8 =0000000000000001 R9 =fffffbfff27531fc R10=ffffffff93a98fe7 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8161b7dc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6ad9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f495f0ced58 CR3=000000002c394000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001030001 Opmask01=0000000000000000 Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e212fbe
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e212fcb
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e212fc5
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e212fd9
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e21305f
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e21313d
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e3b74a8 00007f495e3b74a0 00007f495e3b7498 00007f495e3b7470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495ef1d100 00007f495e3b7460 00007f495e3b7478 0004000700080006
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e3b74b8 00007f495e3b74b0 00007f495e3b74a8 00007f495e3b74a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff8161b793 RDX=ffff88801dea4900
RSI=ffffffff8161b7db RDI=ffffffff93a98fe0 RBP=ffff88806a620000 RSP=ffffc90000648fd0
R8 =0000000000000001 R9 =fffffbfff27531fc R10=ffffffff93a98fe7 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8161b7dc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6bd9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f495f0cdf98 CR3=000000002c394000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001030001 Opmask01=0000000000000000 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e212fbe
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e212fcb
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e212fc5
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e212fd9
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e21305f
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e21313d
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e3b74a8 00007f495e3b74a0 00007f495e3b7498 00007f495e3b7470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495ef1d100 00007f495e3b7460 00007f495e3b7478 00007f495e3b74c0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e3b74b8 00007f495e3b74b0 00007f495e3b74a8 00007f495e3b74a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000038 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85308555 RDI=ffffffff9ae077e0 RBP=ffffffff9ae077a0 RSP=ffffc90004077150
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000038303954
R12=0000000000000000 R13=0000000000000038 R14=ffffffff9ae077a0 R15=ffffffff853084f0
RIP=ffffffff8530857f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f495f0ef6c0 ffffffff 00c00000
GS =0000 ffff8880d6cd9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000002000 CR3=000000002c394000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000020100001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495f0eebf0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e212fbe
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e212fcb
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e212fc5
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e212fd9
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e21305f
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f495e21313d
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a732520656c6261 7462650064656c69 61662029736e7465 6e28736e74657300
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1f56000540494744 514740004140494c 4443050c564b5140 4b0d564b51405600
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000