last executing test programs:

3.045015086s ago: executing program 0 (id=585):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0x9b, {"a2e3ad09ed0d09f91a5e070987f70e06d038e7ff7fc6e5539b0d3e0e8b089b3f363063030890e0879b9bf8c6e70a9b334a959b669a240d0a0af3988f7ef319520100ffe8d178708c526db51b1b5b31070d0773090acd3b78130daa61d8e8040001000000b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f6709000000a141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7af1d0e54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c01008e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e1a63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0d8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0xfffffffffffffebd}}, 0x1006)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="38000000100003000000000000000000", @ANYRES32=<r5=>0x0, @ANYBLOB="0000000000000100140012800b00010067656e65766500000400028004001a80"], 0x38}, 0x1, 0x2}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000180)={'sit0\x00', 0x0})
getsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f00000001c0)={@local, @multicast2}, &(0x7f0000000200)=0x4055)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000004c0)={<r6=>0x0, @local, @multicast1}, &(0x7f0000000300)=0x34)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r8=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYRES8=<r9=>0xffffffffffffffff, @ANYRES32=r8, @ANYRESOCT=r3], 0x6c}}, 0x4000)
r10 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r11=>0x0})
sendto$packet(r10, &(0x7f0000000000)="4dcdc7c6223e00000000ffff8137", 0xe, 0x0, &(0x7f0000000080)={0x11, 0x0, r11, 0x1, 0x0, 0x6, @dev}, 0x14)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r1, &(0x7f0000000580)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000340)={&(0x7f00000005c0)=ANY=[@ANYBLOB="30020000", @ANYRES16=0x0, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="140002006261746164765f736c6176655f30000008000100", @ANYRES32=0x0, @ANYRES32=r5, @ANYRES32=r0, @ANYBLOB="080003000200000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRESDEC=r4, @ANYRES16, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="7000018014000200766c616e31000000000000000000000014000200726f736530000000000000000000000008000100", @ANYRES32, @ANYBLOB="1400020064766d7270300000000000000000000014000200766c616e300000000000000000000000140002006e696376663000000000000000000000500001801400020070696d367265670000000000000000001400020064766d7270310000000000000000000008000300010000001400020070696d3672656730000000000000000008000100", @ANYRES32=r2, @ANYBLOB="200001801400020076657468305f766c616e00000000000008000100", @ANYRES32=r6, @ANYBLOB="36657230007c000000000008000100000000", @ANYRES32=0x0, @ANYRESDEC=r7, @ANYRESOCT=r9, @ANYBLOB="0800030000000000140002006d6163766c616e3100000000000000000c00018008000100", @ANYRES32=r11, @ANYBLOB], 0x230}, 0x1, 0x0, 0x0, 0x4040800}, 0x4044044)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
mlock(&(0x7f0000bff000/0x400000)=nil, 0x400000)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
r12 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002100)='numa_maps\x00')
read$FUSE(r12, &(0x7f0000002140)={0x2020}, 0x2020)

2.732198084s ago: executing program 1 (id=587):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1}, 0x48)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000040), 0x4)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r1, 0x4b72, &(0x7f0000000e80)={0x0, 0x0, 0x1c, 0x16, 0x200, &(0x7f0000000880)="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"}) (fail_nth: 9)
mount$bind(&(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0)
mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f0000001fc0)='./file0\x00', 0x0, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000004180)={0x2020}, 0x2020)
sendmsg$IPSET_CMD_RENAME(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, 0x0}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
mount(0x0, 0x0, &(0x7f0000000180)='nfs\x00', 0x0, 0x0)

2.731749057s ago: executing program 2 (id=588):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
r1 = socket$kcm(0x29, 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000100)={<r2=>0x0, 0x400}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000001040)={0x993, 0x6, 0x4, 0xffff0000, 0x6, 0xff, 0x4, 0x5, r2}, 0x20)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f00000001c0)={<r3=>0xffffffffffffffff})
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
getsockopt(r4, 0x0, 0x0, 0x0, &(0x7f0000000100))
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
ioctl$UDMABUF_CREATE_LIST(0xffffffffffffffff, 0x40087543, &(0x7f0000000200)=ANY=[@ANYBLOB="000104000021000067"])
sendmsg$kcm(r3, &(0x7f0000005740)={0x0, 0x0, &(0x7f0000003300)=[{&(0x7f0000000300)="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", 0xd01}], 0x1}, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x2000, 0x0, 0x0)
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r6, 0x0, 0x80, &(0x7f0000000280)=@broute={'broute\x00', 0x20, 0x2, 0x238, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200005c0], 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"]}, 0x2b0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e04000418", @ANYRESDEC=0x0, @ANYRES16=0x0], 0x7)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(r7, 0xc01064c1, 0x0)

2.588278647s ago: executing program 2 (id=589):
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000100)=<r1=>0x0)
fcntl$setown(r0, 0x8, r1)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f0000000140))
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
ioctl$VIDIOC_G_FREQUENCY(0xffffffffffffffff, 0xc02c5638, &(0x7f0000000000)={0x0, 0x3, 0x7f})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
keyctl$read(0xb, 0x0, &(0x7f0000000ac0)=""/4096, 0x1000)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/keys\x00', 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[])
read$FUSE(r6, &(0x7f0000002140)={0x2020, 0x0, <r7=>0x0}, 0x2020)
syz_fuse_handle_req(r6, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x900}}}, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000440)={0x50, 0xffffffffffffffda, r7, {0x7, 0x28, 0x0, 0x8002, 0x0, 0x0, 0xffffffff, 0x200}}, 0x50)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
ioctl$TIOCGPTPEER(r8, 0x933, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000440)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r9, @ANYBLOB="38003300c0000000e7ffffffffff080211000000"], 0x54}}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
geteuid()

2.587641662s ago: executing program 0 (id=590):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
r1 = socket$kcm(0x29, 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000100)={<r2=>0x0, 0x400}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000001040)={0x993, 0x6, 0x4, 0xffff0000, 0x6, 0xff, 0x4, 0x5, r2}, 0x20)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f00000001c0)={<r3=>0xffffffffffffffff})
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
getsockopt(r4, 0x0, 0x0, 0x0, &(0x7f0000000100))
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
ioctl$UDMABUF_CREATE_LIST(0xffffffffffffffff, 0x40087543, &(0x7f0000000200)=ANY=[@ANYBLOB="000104000021000067"])
sendmsg$kcm(r3, &(0x7f0000005740)={0x0, 0x0, &(0x7f0000003300)=[{&(0x7f0000000300)="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", 0xd01}], 0x1}, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x2000, 0x0, 0x0)
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r6, 0x0, 0x80, &(0x7f0000000280)=@broute={'broute\x00', 0x20, 0x2, 0x238, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200005c0], 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"]}, 0x2b0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e04000418", @ANYRESDEC=0x0, @ANYRES16=0x0], 0x7)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(r7, 0xc01064c1, 0x0)

2.383426551s ago: executing program 0 (id=591):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x5e, &(0x7f00000007c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="2c003300f0000000ffffffffffff08021100000050505050505000000f037206030303030303750400000000"], 0x48}}, 0x0)

2.378514067s ago: executing program 0 (id=592):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1) (async)
ptrace(0x10, r1)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r1, 0x0, 0x0) (async)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r1, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f00000004c0)={0x0, 0x465f}, 0x8)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r2, 0x4)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000000)={0x0, 0x40000004}, 0x8)
sendmmsg$inet6(r0, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000180)='i', 0x1}], 0x1}}], 0x1, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000000000805d79a66739652bc7e1fff3752f2000000004000500001c0008000f000000000008000200e000000108000100ac1e0001000000000000"], 0x34}}, 0x0) (async)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000000000805d79a66739652bc7e1fff3752f2000000004000500001c0008000f000000000008000200e000000108000100ac1e0001000000000000"], 0x34}}, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000280)=ANY=[], 0xc)

1.699191972s ago: executing program 3 (id=594):
read$FUSE(0xffffffffffffffff, &(0x7f0000000000)={0x2020, 0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x2020)
prlimit64(r0, 0xa, 0x0, &(0x7f0000002040))
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000002080)='\x00', &(0x7f00000020c0)='%', 0x0)
socket$l2tp(0x2, 0x2, 0x73)
r1 = socket$rxrpc(0x21, 0x2, 0x2)
recvfrom$rxrpc(r1, &(0x7f00000022c0)=""/246, 0xf6, 0x60, &(0x7f00000023c0)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e24, @loopback}}, 0x24)

1.679830563s ago: executing program 3 (id=595):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240), 0x0, 0x0, 0x0)
setpriority(0x0, 0x0, 0xffffffffffffffcd)
modify_ldt$write2(0x11, &(0x7f0000000840)={0x0, 0x0, 0x2000}, 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000100)=0x40000000000000, 0x12)
r3 = syz_open_procfs(0x0, &(0x7f00000004c0)='stat\x00')
preadv(r3, &(0x7f0000000280)=[{&(0x7f0000000ac0)=""/100, 0x64}], 0x1, 0x0, 0x0)
epoll_create(0x3ff)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x9, 0x7, 0x2}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r4}, &(0x7f0000000580)=0x2, &(0x7f00000005c0)}, 0x20)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_num_comp_pkts={{0x13, 0x19}, {0x6, [{0xabe285601d0bde58, 0x9}, {0xc9}, {0xc8, 0x7f}, {0xc9, 0x4d}, {}, {0xc9, 0x61}]}}}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x10, 0x4, 0x0, 0x7, 0x0, 0x1}, 0x48)
timer_create(0xb, 0x0, &(0x7f00000000c0))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
r5 = syz_open_procfs(0x0, 0x0)
fchdir(r5)
mount(0x0, &(0x7f0000000080)='.\x00', 0x0, 0x0, 0x0)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
clock_adjtime(0x0, &(0x7f00000001c0))
r6 = syz_io_uring_setup(0x4076, &(0x7f0000000240)={0x0, 0x0, 0x10100}, &(0x7f00000012c0)=<r7=>0x0, &(0x7f00000002c0)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0})
io_uring_enter(r6, 0x567, 0x0, 0x0, 0x0, 0x0)
socket(0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)

1.609200135s ago: executing program 2 (id=596):
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
fcntl$getownex(r1, 0x10, &(0x7f0000000140)={0x0, <r2=>0x0})
r3 = syz_open_procfs(r2, &(0x7f0000000600)='fd/4\x00')
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r3, 0xc0506617, &(0x7f0000000280)={@desc={0x1, 0x0, @desc3}, 0x21, 0x0, '\x00', @c})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x0, 0x7fe2, 0x1}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0x1d, &(0x7f0000000940)=@raw=[@printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x40}}, @map_fd={0x18, 0x5, 0x1, 0x0, r3}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x400}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x5}, @exit, @cb_func={0x18, 0x5, 0x4, 0x0, 0x1}, @call={0x85, 0x0, 0x0, 0x12}], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = dup2(r5, r4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r6}, 0x10)
ioperm(0x0, 0x3d, 0xe)
ioperm(0x0, 0x1, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f0000000480))
r8 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r8, &(0x7f0000000040)=""/93, 0x5d)
lseek(r8, 0x0, 0x0)
r9 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r7}, 0x10)
r10 = openat$incfs(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{0x1, <r11=>0xffffffffffffffff}, &(0x7f0000000240), &(0x7f00000002c0)=r7}, 0x20)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000500)={'ip6_vti0\x00', &(0x7f0000000480)={'ip6_vti0\x00', <r12=>0x0, 0x2f, 0x9, 0x1, 0x81, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x80, 0x10, 0x3ff, 0x7}})
r13 = signalfd(r9, &(0x7f0000000540)={[0x401]}, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@base={0x9, 0x8, 0x80, 0x2, 0x1, r13, 0x0, '\x00', r12, r10, 0x2, 0x4, 0x2}, 0x48)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x6, [@datasec={0x7, 0x1, 0x0, 0xf, 0x2, [{}], "acbc"}, @datasec={0x0, 0x0, 0x0, 0xf, 0x2, [], "4d97"}]}, {0x0, [0x0, 0x0, 0xcc6245b914395a48, 0x30]}}, &(0x7f0000000500)=""/177, 0x46, 0xb1, 0x1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1a, 0x1c, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000500000000000000ffffff7f18110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095000000000000000da3f4ffffffffff152b0000fcffffff180000000100000000000000050000000aa14000fcffffff8230020008000000cc903000000000009500000000000000950000000000000018110000", @ANYRES32=r11, @ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x1000, 0x0, 0x0, 0x40f00, 0x63, '\x00', r12, 0x35, r13, 0x8, &(0x7f0000000580)={0x5, 0x5}, 0x8, 0x10, &(0x7f00000005c0)={0x0, 0x1, 0x3f, 0x7}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x100}, 0x90)
unlink(&(0x7f0000000080)='./cgroup\x00')

1.561342005s ago: executing program 2 (id=597):
r0 = syz_open_dev$vim2m(&(0x7f0000000580), 0x0, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000000)={0x2, @vbi={0x0, 0x0, 0x0, 0x0, [0x200]}})
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000100)={0xffff, 0x2, 0x4, 0x0, 0x8})
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000140), 0xc00, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x10, 0x1)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000005c0)={'batadv0\x00'})
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = syz_open_dev$dri(&(0x7f0000000040), 0x20, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r1, 0xc00864bf, &(0x7f0000000140)={<r2=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(r1, 0xc02864c3, &(0x7f0000000080)={&(0x7f0000000000)=[r2], 0x0, 0x1, 0x9})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
bind$unix(r3, &(0x7f0000000000)=@abs={0x1}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000140)=@abs={0x1, 0x0, 0x4e21}, 0x6e, 0x0}}], 0x2, 0x0)
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r4, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_QUERY(r1, 0xc01864cb, &(0x7f0000000380)={&(0x7f0000000280)=[r2, r2, r2, r2, r2], &(0x7f0000000340)=[0x6, 0x0, 0x5], 0x5})
move_mount(0xffffffffffffffff, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, 0x0, 0x0)
open_tree(r4, &(0x7f0000000300)='./file0\x00', 0x89000)
socket$caif_seqpacket(0x25, 0x5, 0x0)
syz_io_uring_setup(0x5169, &(0x7f0000000400)={0x0, 0x0, 0x4, 0xfffffffe, 0x1b8}, &(0x7f0000000100), &(0x7f0000000680))
syz_init_net_socket$nfc_raw(0x27, 0x0, 0x0)
getrlimit(0xb, &(0x7f0000000000))
syz_init_net_socket$nfc_raw(0x27, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mlock2(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x0)

1.468750743s ago: executing program 0 (id=598):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
r1 = socket$kcm(0x29, 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000100)={<r2=>0x0, 0x400}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000001040)={0x993, 0x6, 0x4, 0xffff0000, 0x6, 0xff, 0x4, 0x5, r2}, 0x20)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f00000001c0)={<r3=>0xffffffffffffffff})
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x11, 0x4, 0x4, 0xc}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
ioctl$UDMABUF_CREATE_LIST(0xffffffffffffffff, 0x40087543, &(0x7f0000000200)=ANY=[@ANYBLOB="000104000021000067"])
sendmsg$kcm(r3, &(0x7f0000005740)={0x0, 0x0, &(0x7f0000003300)=[{&(0x7f0000000300)="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", 0xd01}], 0x1}, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x2000, 0x0, 0x0)
r7 = socket$inet(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r7, 0x0, 0x80, &(0x7f0000000280)=@broute={'broute\x00', 0x20, 0x2, 0x238, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200005c0], 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"]}, 0x2b0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e04000418", @ANYRESDEC=0x0, @ANYRES16=0x0], 0x7)
r8 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(r8, 0xc01064c1, 0x0)

1.292609723s ago: executing program 0 (id=599):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='dctcp\x00', 0x6)
bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e22}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x20004854, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
write$binfmt_aout(r0, &(0x7f00000002c0), 0x20)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_SECURITY_LEVEL(r1, 0x0, 0x2, 0x0, 0xfe51)
pipe(&(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000"], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000c40)=[{}, {}, {0x0, 0x0, 0x10006}]}, 0x90)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000018000000000200000000000000000000001c000000000000000000000008000000", @ANYRES32, @ANYBLOB="7f0000017f00000a0000000800"/28, @ANYRES32, @ANYBLOB="7f000001ac141400000000011c0e0000000000000000000007006fc946f1f569c01801"], 0x230}, 0x0)
r7 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030033000b35d25a806c8c6f94f90424fc60100005000a000200053582c137153e37000c0680050002000300", 0x33fe0}], 0x1}, 0x0)
write$binfmt_script(r3, 0x0, 0xb)
splice(r4, 0x0, r5, 0x0, 0xf3a, 0x0)
splice(r2, 0x0, r5, 0x0, 0x80, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_MSRS(r10, 0x4008ae89, &(0x7f0000000140)=ANY=[@ANYBLOB="0100000000000000014d564b0000deefe715d4b9ba197212bb7b159000ea032cb6"])
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r11, &(0x7f0000000300)={'#! ', '', [{0x20, 'cpuacct.usage_sys\x00'}, {}], 0xa, "744519e0e6740369edd4a809d950b12ede8a542ead518a987fc43b316baa1bbdfb1da1d666e8a30739c51b4674e5031b4eb38c3ac756e07e10ab72db35ed8ea5384f2001667906f378117868f9fd8d7615a957559f1dc89a61ccec671ee697eac5f40b34a1d35a3c2aeed0b34ca793511973f98236a02797e0b5765ba70b24de28a2923c5442614968b24b89da231b987a6f45f5fc9849"}, 0xaf)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r11, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
fcntl$setpipe(r5, 0x407, 0x0)

1.274834708s ago: executing program 3 (id=600):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x5e, &(0x7f00000007c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="2c003300f0000000ffffffffffff08021100000050505050505000000f037206030303030303750400000000"], 0x48}}, 0x0)

1.145418491s ago: executing program 3 (id=601):
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
fcntl$getownex(r1, 0x10, &(0x7f0000000140)={0x0, <r2=>0x0})
r3 = syz_open_procfs(r2, &(0x7f0000000600)='fd/4\x00')
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r3, 0xc0506617, &(0x7f0000000280)={@desc={0x1, 0x0, @desc3}, 0x21, 0x0, '\x00', @c})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x0, 0x7fe2, 0x1}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0x1d, &(0x7f0000000940)=@raw=[@printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x40}}, @map_fd={0x18, 0x5, 0x1, 0x0, r3}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x400}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x5}, @exit, @cb_func={0x18, 0x5, 0x4, 0x0, 0x1}, @call={0x85, 0x0, 0x0, 0x12}], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = dup2(r5, r4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r6}, 0x10)
ioperm(0x0, 0x3d, 0xe)
ioperm(0x0, 0x1, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f0000000480))
r8 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r8, &(0x7f0000000040)=""/93, 0x5d)
lseek(r8, 0x0, 0x0)
r9 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r7}, 0x10)
r10 = openat$incfs(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{0x1, <r11=>0xffffffffffffffff}, &(0x7f0000000240), &(0x7f00000002c0)=r7}, 0x20)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000500)={'ip6_vti0\x00', &(0x7f0000000480)={'ip6_vti0\x00', <r12=>0x0, 0x2f, 0x9, 0x1, 0x81, 0xc3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x10, 0x3ff, 0x7}})
r13 = signalfd(r9, &(0x7f0000000540)={[0x401]}, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@base={0x9, 0x8, 0x80, 0x2, 0x1, r13, 0x0, '\x00', r12, r10, 0x2, 0x4, 0x2}, 0x48)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x6, [@datasec={0x7, 0x1, 0x0, 0xf, 0x2, [{}], "acbc"}, @datasec={0x0, 0x0, 0x0, 0xf, 0x2, [], "4d97"}]}, {0x0, [0x0, 0x0, 0xcc6245b914395a48, 0x30]}}, &(0x7f0000000500)=""/177, 0x46, 0xb1, 0x1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1a, 0x1c, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000500000000000000ffffff7f18110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095000000000000000da3f4ffffffffff152b0000fcffffff180000000100000000000000050000000aa14000fcffffff8230020008000000cc903000000000009500000000000000950000000000000018110000", @ANYRES32=r11, @ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x1000, 0x0, 0x0, 0x40f00, 0x63, '\x00', r12, 0x35, r13, 0x8, &(0x7f0000000580)={0x5, 0x5}, 0x8, 0x10, &(0x7f00000005c0)={0x0, 0x1, 0x3f, 0x7}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x100}, 0x90)
unlink(&(0x7f0000000080)='./cgroup\x00')

982.436815ms ago: executing program 3 (id=602):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@workdir={'workdir', 0x3d, './bus'}}]}) (fail_nth: 21)

686.532983ms ago: executing program 3 (id=603):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="540000000206010100000000000000000000000005000400000000000900020073797a3200000000050001000600000005000500000000000c00078005001500000000000d000300686173683a6d6163"], 0x54}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$midi(&(0x7f0000001740), 0xc0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket(0xa, 0x0, 0x0)
r2 = creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000500)=ANY=[], 0x15)
r5 = dup(0xffffffffffffffff)
write$FUSE_BMAP(r5, &(0x7f0000000100)={0x18}, 0x18)
newfstatat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', &(0x7f0000000400), 0x1000)
write$FUSE_NOTIFY_RETRIEVE(r5, &(0x7f00000000c0)={0x30, 0x5, 0x0, {0x0, 0x0, 0x5}}, 0x30)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',=', @ANYRESHEX=r5, @ANYBLOB=',cache=mmap,k'])
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r6 = open$dir(0x0, 0x64041, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x1c, 0x12, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000004000000000000000900000018110000", @ANYRES32=r2, @ANYBLOB="0000002076c45958692e980014000000b7030000000000008500000083000000bf09000000000000550901000000000095000000000000008500000085000000038a090003380000850000006f000000bf91000000000000b7020000010000008500000084000000b70000000000000095000000000000004ea737c50fc0e9c621521e7a79472f37af98551d926cfdd59f9016f3ae600bbb08189190c236"], &(0x7f0000000480)='syzkaller\x00', 0x5, 0x43, &(0x7f0000000600)=""/67, 0x41000, 0x10, '\x00', 0x0, 0x3, r2, 0x8, &(0x7f00000004c0)={0xa, 0x3}, 0x8, 0x10, &(0x7f0000000680)={0x3, 0x3, 0xde3adb1, 0x80}, 0x10, 0x0, 0xffffffffffffffff, 0x1, &(0x7f00000006c0)=[r5, r5], &(0x7f0000000700)=[{0x2, 0x2, 0x2, 0x6}], 0x10, 0x6}, 0x90)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
ftruncate(r7, 0x5)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r8, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f00000003c0)=ANY=[@ANYBLOB="28000000020301080000000000000000000000000116000009000200000000055b7a0801a9efd9421bc3989fbf5e46cf0200000000000000"], 0x28}}, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
sendfile(r6, r7, 0x0, 0x4000007ffff000)
truncate(&(0x7f00000002c0)='./file0\x00', 0x6b14)
chown(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
open(&(0x7f0000000340)='./file0\x00', 0x0, 0x0)

538.678023ms ago: executing program 2 (id=604):
read$FUSE(0xffffffffffffffff, &(0x7f0000000000)={0x2020, 0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x2020)
prlimit64(r0, 0xa, 0x0, &(0x7f0000002040))
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000002080)='\x00', &(0x7f00000020c0)='%', 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0x2)
recvfrom$rxrpc(r1, &(0x7f00000022c0)=""/246, 0xf6, 0x60, &(0x7f00000023c0)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e24, @loopback}}, 0x24)

459.35243ms ago: executing program 2 (id=605):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000780)={'ip6gre0\x00', &(0x7f0000000700)={'syztnl0\x00', 0x0, 0x29, 0x40, 0x0, 0x4, 0x40, @ipv4={'\x00', '\xff\xff', @empty}, @local, 0x0, 0x7800, 0x3, 0xf}})
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = syz_io_uring_complete(0x0)
unshare(0x20000400)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xff}, 0x48)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r6=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007230000f8ffffffb70300e0ff84556ff7b18a0d7e3d7700feffff00008500000082000000950000000000000000004befb40000000000"], &(0x7f0000000200)='GPL\x00', 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', r6}, 0x90)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GET(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="96f680cbd769253263c0104b458ed049bd7a52c43c0a1947bd1c99a7", @ANYRES16=r8, @ANYBLOB="834700000000000000002a000000"], 0x14}}, 0x0)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r3, &(0x7f00000002c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000480)={0x190, r8, 0x100, 0x7, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x8}, {0x6, 0x11, 0x4}, {0x8, 0x13, 0x8}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0x6, 0x11, 0x9}, {0x8, 0x13, 0x400}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x30000000}, {0x6, 0x11, 0x400}, {0x8, 0x13, 0x6}, {0x5, 0x14, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xb6}, {0x6, 0x11, 0x3}, {0x8, 0x13, 0xffffd493}, {0x5, 0x14, 0x1}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xfffffff8}, {0x6, 0x11, 0x60}, {0x8, 0x13, 0x69}, {0x5, 0x14, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xb7a}, {0x6, 0x11, 0xbcb}, {0x8, 0x13, 0x9f5}, {0x5}}]}, 0x190}, 0x1, 0x0, 0x0, 0x20090}, 0x4)
r9 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
add_key(&(0x7f0000000440)='asymmetric\x00', 0x0, &(0x7f00000008c0)="308010", 0x10, r9)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000100)={0x3, &(0x7f0000000140)=[{0x44}, {}, {0x16, 0x3f}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x141f029329606bb5, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=ANY=[], 0x0}, 0x90)
r10 = socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_fanout(r10, 0x107, 0x12, &(0x7f0000000040), 0x4)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000200)={0x0, 0x1000}, 0x4)

289.233296ms ago: executing program 1 (id=606):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x4, 0xffff, 0x0, 0x1}, 0x48)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, &(0x7f00000002c0)={@ipv4={""/10, ""/2, @multicast1}}, &(0x7f0000000380)=0x14)
r1 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000600)={'team0\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=@newqdisc={0x9c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x6c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_CMD={0x5}]}]}]}}]}, 0x9c}}, 0x0)
r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000003c0), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56, '\x00', r2, 0x0, r4, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffee8, &(0x7f00000003c0)}, 0x80)
r5 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r6 = add_key$user(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x1}, &(0x7f0000000140)="c5", 0x1, r5)
r7 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x1}, &(0x7f0000000480)="03", 0x1, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000000)={r6, 0x0, r7}, &(0x7f0000000600)=""/10, 0xa, &(0x7f0000000340)={&(0x7f00000004c0)={'sm3\x00'}})
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xc, 0x4, 0x4, 0x7, 0x0, r0}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0x2, r8}, 0x38)
bpf$BPF_GET_MAP_INFO(0x3, &(0x7f0000000140)={r8, 0x58, &(0x7f00000000c0)}, 0x10)

192.851836ms ago: executing program 1 (id=607):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
r1 = socket$kcm(0x29, 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000100)={<r2=>0x0, 0x400}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000001040)={0x993, 0x6, 0x4, 0xffff0000, 0x6, 0xff, 0x4, 0x5, r2}, 0x20)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f00000001c0)={<r3=>0xffffffffffffffff})
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x11, 0x4, 0x4, 0xc}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
ioctl$UDMABUF_CREATE_LIST(0xffffffffffffffff, 0x40087543, &(0x7f0000000200)=ANY=[@ANYBLOB="000104000021000067"])
sendmsg$kcm(r3, &(0x7f0000005740)={0x0, 0x0, &(0x7f0000003300)=[{&(0x7f0000000300)="66993056fce60c234263c52d324789339be8e06ebe977a74e1810d9628118d7c369f3ce38af9d736c81445d0fc48db986fc75ae07b96a163dcb9bbe4ae587331384f67d492519357722cd9df8564f1db747d07d009d9158d5b2071394cd8a1dd616e3635965fb9963e8c113c2db1ce88139f1c016a3d7bcdbbc6d390de2aa45668a2be037d5d71fc45e70d3d5aaaa05c39cc0bb1979cc60dad60b8ebc6ef6f3480d1cca58cdc42b7a0952cedda44f8d2bb33a1547d3c420ff7f16289ff44e4a37e403489a31b8df91cfb11d5a1df0a0964fea5566d484a943a066db7421f709493376e520a7b28bdbcf3350d1fabf9a271840b7fb23cd356584d6c9ff48fc0bcd830de6e93aad41240211ab0a0d55ed049f930769252e5fa2ffe06de6c5191b53705b5ac8a10c8b4e00a70a6d978b676c983e08299a11fbb87bd5ee3f8adae454bb286ceb123a2ea37a591751cccfc3c02d74037013bb4d427d14e767e49799bca0e6733aa5b93401a6b3921140ce66ac6b2c43fb1fd52f1d586088fa0c73d8a05acdad0c75b4e97bd96f07d115bed13f4442ea8662e077f26fc5cb84930fea49cd8f18ac702e0ed515767b11bf287db720ea1674876366fb499e55684248a83b267f27eb652f35ca6b31434e9db05e5768a829b7689bd1e0e55f15b9a040c9a93177e09ad0861c362f4b020e732d2a21eb26306c73feb9f7c45717727db0df5fcfa19cc997b7d64a22fad614616da0fccf30a1f9a1ffaf68e798fb650d7e572239ac544db033ee17c013bd624d0f51a4ef10a29326071831a42a8e36d4ac367137dbb2a0af08d95a76a02645ba4dd07208093136c47d772336d513567598e63d6322e3d1e0e5ef738edfe81bd077c1484ab7c26ca25d074c227026133a1891d0a02964f3989341a051a5605d87b5fac515f8d566768bf2b51787b9ed5858d25625b18c1f9fa867aac00dbe11d3a0c7222a4a9fb63dd903b0ec291b48abcd0e849a94437c6010c74fcc5d6120852ac9d23cf695dbb311faf237944f25f8d326e88358dfff8e88503051c934c063a6045669fc815a674150f231adf770f56665274ea58f0e209f78b35a8334bbc20adc8289e4e9609db8b755505b9aca62bba584f007dae3b281917f29f4f31955be04971c9f0338d259878e8e9b87ef595648851bc4415a45a1e2d764f50c78e66ed35eb1efd6e66de47e6e31409f6f31c60b637feee26bd415917934e1df20ac52ad75c07a9c09004088df53ecb6bd24fbdb41a3957063793dab17f32cedbd9ea1852a1ea842ff05944bbd863fd4fb386c0ab5ed72e3e7a0a52f6d1e2ed976bd1c28ffda3931afcaecfad4bfb77592b96d6d6808ad75356f71eaaa647e3a5c07127969b0ee9f53518f2e2fb055576d945dcb24afd9f30b90ac9dd4513f6564e4ca126b2b7ddf42eff67acff62d5dc7d04dffd1d582a9018866167678bccfb6a9632d9611552a0661979ab241afeb77046a460301b1c04e8fd3831286a3aa388ab1030e2d29cf437f846286ce4fbe935a1f57461efd29e3ceee9fa6c9809a0b0c737833bb5c20b548ffa9a73e8c777a29c5cea2f05eb96e9e443ea169075500cce2b2caa421d8945b737e89123046ec9f0384d72224b84c4cee6848f3114f03bc8690ba625628967a816f4f427153b269d512bd05c158f207eefec25dac859f3908de12bf1eb9a86517c8664231755f0f93498c22be0b2285aa5079a4a7c3461a8ab5a81fcb0a179276ce1d2a9a81747498e3198315d227e6a33f7fd510b2df239f12e12d754079878351a56c0b2cbdbdb720382ca78d7eeb47913addb44f216897701a1c6538e6da9c27029f83f57b83a7f7b83a54d18a1738d7571fa2c060a1de3c72f9978d73608ac5bab6d5d9931ba1999656fd195dcbdfb4c44ff30022496e75c132905791252fe0d154c1018f7171aab6e93a5a5154c1b2f42a7348397506485887d9cf572755999efcf3d1c7bc6267b2d28f059b15fce2987e0549acaaa3aa9176355d8aa5c47ce6e48af0a85a050bac8ea3a07e485d68d4344efa4a213d23d4acdcb7c6d6764d2002ed0bb755447c5df1a18a8dcdf6910d48215221a1bd1919f6cec70b730e89b4566b54f831f5cc594d903e73453d8eb13a08482015f9c2f1c1d614e7cc3260b5bfba1beb3b3e550054015ce11eb6f07fd44581d9d9d6b6fa616e47485bd62c50f24356f88ed60f88c781aaa858c5369b70d9e00c8dfd11a8a6d9b83319355887bc671064ce7d02dc5cfc932e2ffe6f26fa1c3abe5d2e0cc50436300944469fbaf19dbae07049305b43db91e0074b96599e2487baf29f17cc1c0330bbe8ff8404a415fa4c93cb195a1a58285f2aaa682042973c5c88bf7084dca1c2851f8873b0d83ca8a3cbf1e9b99ea0291c79357b46777e85fd2bd248c708bf68f96de1f49750bbb9240fefd01433664b561b1527a62767edd89a181f107fda35e6014c7fa34d9f1df13536944b4eaf1b03f9db577cc5a57f117ec2a02ebf6626b904b47cc1229dbab1f528b6c8c32ac81cc6bb04ce62354944f41941042f0db9b1f8e71d42a14994917d2352e9b87c90ccf2ac5fd0f8b5996173347e1f43c1a94d1f16d26126024e5495611694ce8901aee648b52da86f4633f3e15e20519d661ab17193cb2216d9e8758d56396c91a52b40e5817d6f30bf2377e0635cc08cc27c7c2e4e25ed93900b62fa575210fd8d47f4b04693a774869c2ad03e02e197db88e9f0552ef61c3a47fe2255c781f5ff9e54d45cb3b3e85ef20231c32c49f6314e3c5a06c017890df77ed69921f15300bdbb10e62f1a98e53e2a583867fdf2bd62aba4a414a9f93faa4b01daf19f85655bd2f3d4fdb8973bb894efc80a709c39b0d866b23bf7b65dd9268a7f3ed25fd47f066d98b1002ce7dbef290d63a57ae1ae9303db17bb7dfcae89606732b5a99b77b889f46563f37b464e864d59a87f7803db7c60a64c5dbdcb574f9dcbaf8244fe7aadd81c697e22645e6862e86ad360cde1470e64e7b44a816258e1b221be7e84d1a1f16800b3f0b3cf2c77c7a7a3e9f1017d4673b0c6294df987692ade6b351b31b2b9cf0fcd901e087492fe2bd930968d4d47f30ac7d945092dbc8b0f84c5fb7749174f3b30da87660ae76a0dc1ff43e4f49f4e517ed8cf3b428d1707ebd64899c2b3a4e49f3400969692b525321ef9ad4f158a4504e588f943a242b01651e80d13d4e6bbd655b869bb96a793620a84e446b4bd3a613af7ba8e9966aa99b8a2e643bd39ba8db379bb6f4177ee3b5942510b04f96cc940f7cbcf3d30c9f0c0fcb3baba028fa94696c69870e71cfb8f9cc4383d31f481e4a07cd2c18c08b38371df22f9265bcb6f3c9e077e4d31d63b59a2e76efaba2420279d1521260332f03788e605609a21093e9aa36d10cfeb70676beef492b195456de7120630443870dcad514e3f394a27ac827796bcfc87a844321413dfc14e22358f2f0961773d7816ef327ae06240fbdd36575e0e1865af777d1b04496615294014cc3443fba2ed403966620e8f10a240bf9e9f4da3ca584266e7f8a13874aa96faedf8b3a2b27a03b9f3d2ccfecba11059375693ea8b9f3be86232db02e61e43dabf83189d83006f69310a68a589534d397dbae35cebe7e50cfd13c4b2c8753250448142dafef91463473a2f8252076b4004273b3387636ca167cf540bbf438198919a107c72476290a925f5d9303a899044dd421832746bd8916ee0eca99485b70d4640ad064541c73ba87f1791f01f409a78d6a0f4d1834b640db0de96df829f01e612ca5b6328f1505468863ceb83e4247bbeafcc3c4c590e079a9cf7158eec2033464f317622f20a208d5de3a2809df2077444e7fb596ded9752a4acd26e2628198fbc96ea71296e8304fd56d8e86c8c93ebf7d593eebd7fea22c4a86e9bd818b96db8d8e599f520a6f86ec892b30b9dec148ce3590750f1f6ed84d810ba3e05b25618b0771674ffb17e1bdd7d844eb21980da9cc6e553f88f6be77e589e8fb694c2df332471b7b0a1f863e6c90bd8e309b674e9e8a65388d17f2477db00bef256d741857f7070864e8b2a5177ad4d2f392d7287073ba9455650571437e51829ab87dbd0e55aaf95db196ea0234ff50885248bf658a65ccc2515486899cbde7dcb42c761f1953df5668d5a252d962b1ff8f30e59f827612e9248ea7aed5866b5b07462333e1b7f423453560c23b3965a6d652c8a9b191a5104daa17e0b3f95cf181aa7352f844f635e3183adeb6d018338d96b3cfe56501df134aa42b4b00a72ccd81468b231400bbf237cfc54e1136ed5a5f5612d17ae1900684690fe21d214ff6341f4fa3839dbe2592e80b547119c13dacbb827e42189491783351d824083061533c7dd005bb6070e7c89cf083d1f04389d27759b69b051da7d1e7dc3f9c196bc78fefd92aa2655c03ad588243805864152e0b157d2b36151614895425cc047d6a072e6606ca3be0be9aa516162c31d0863c3c5e257c35a8de1e3d27394864b5013750abbed96ebb7675fc3e9cff5b90eca2ade92fd0d49723c9db6b627b530757555bc88c097147b8915047d9d33f7d8b6d69f16bcde3310fcea91dac0dcab1a7b71cc5254b2d02c7ca18d4bda1e95b90f88b86ae84d242cc853308a7ef7a60324ce55ffb6b476876185d6a8e476216c9450b50b4f47964c1a928b410156b514e", 0xd01}], 0x1}, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x2000, 0x0, 0x0)
r7 = socket$inet(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r7, 0x0, 0x80, &(0x7f0000000280)=@broute={'broute\x00', 0x20, 0x2, 0x238, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200005c0], 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"]}, 0x2b0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e04000418", @ANYRESDEC=0x0, @ANYRES16=0x0], 0x7)
r8 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(r8, 0xc01064c1, 0x0)

99.482561ms ago: executing program 1 (id=608):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x40bc5311, &(0x7f0000000140)={0x80, 0x1, 0x0, 0x0, 0x10002})

29.594571ms ago: executing program 1 (id=609):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_FRAME(r0, 0x0, 0x0)

0s ago: executing program 1 (id=610):
r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
syz_open_dev$dri(0x0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x0, 0x5, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0, r1}, 0x10)
r2 = getpid()
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000000)=@framed={{}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x15}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
userfaultfd(0x1)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x0)
eventfd2(0x0, 0x0)
socket$unix(0x1, 0x1, 0x0)
socket$unix(0x1, 0x1, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r5}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0xffffffffffffffff, 0x0, 0x0)
r6 = getpid()
process_vm_readv(r6, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r7 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={@map=0x1, 0x2e, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0}, 0x40)
io_submit(0x0, 0x1, &(0x7f0000004540)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])
write$UHID_INPUT(r7, &(0x7f0000001040)={0x8, {"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", 0x1000}}, 0x1006)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r4, 0x0, 0xe, 0x0, &(0x7f0000000100)='\x00'/14, 0x0, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
getsockopt$ax25_int(r0, 0x101, 0x5, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
prctl$PR_GET_THP_DISABLE(0x2a)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x3}, {0x0, [0x5f]}}, 0x0, 0x1b, 0x0, 0x1}, 0x20)

kernel console output (not intermixed with test programs):

syzkaller-00283-gd3426a6ed9d8 #0
[  105.311578][ T5968] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  105.317209][ T5968] Call Trace:
[  105.319317][ T5968]  <TASK>
[  105.320801][ T5968]  dump_stack_lvl+0x16c/0x1f0
[  105.322957][ T5968]  should_fail_ex+0x497/0x5b0
[  105.325777][ T5968]  ? fs_reclaim_acquire+0xae/0x160
[  105.329273][ T5968]  should_fail_alloc_page+0xe7/0x130
[  105.331856][ T5968]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  105.335312][ T5968]  ? __lock_acquire+0xbdd/0x3cb0
[  105.337893][ T5968]  __alloc_pages_noprof+0x194/0x2460
[  105.341092][ T5968]  ? hlock_class+0x4e/0x130
[  105.344189][ T5968]  ? mark_lock+0xb5/0xc60
[  105.346576][ T5968]  ? __pfx___lock_acquire+0x10/0x10
[  105.349262][ T5968]  ? hlock_class+0x4e/0x130
[  105.351301][ T5968]  ? __lock_acquire+0xbdd/0x3cb0
[  105.353430][ T5968]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  105.357288][ T5968]  ? __pfx___lock_acquire+0x10/0x10
[  105.359998][ T5968]  ? hlock_class+0x4e/0x130
[  105.362684][ T5968]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  105.365991][ T5968]  ? policy_nodemask+0xea/0x4e0
[  105.368886][ T5968]  alloc_pages_mpol_noprof+0x275/0x610
[  105.372003][ T5968]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  105.375870][ T5968]  ? hlock_class+0x4e/0x130
[  105.379584][ T5968]  folio_alloc_mpol_noprof+0x36/0xd0
[  105.383433][ T5968]  vma_alloc_folio_noprof+0xee/0x1b0
[  105.386943][ T5968]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  105.390738][ T5968]  __handle_mm_fault+0x2e35/0x5660
[  105.393708][ T5968]  ? __pfx_mt_find+0x10/0x10
[  105.396592][ T5968]  ? find_held_lock+0x2d/0x110
[  105.399259][ T5968]  ? __pfx___handle_mm_fault+0x10/0x10
[  105.402445][ T5968]  ? find_vma+0xc0/0x140
[  105.405020][ T5968]  ? __pfx_find_vma+0x10/0x10
[  105.407771][ T5968]  handle_mm_fault+0x44e/0x7b0
[  105.410650][ T5968]  ? __pkru_allows_pkey+0x52/0xb0
[  105.413702][ T5968]  do_user_addr_fault+0x7a3/0x13f0
[  105.416795][ T5968]  exc_page_fault+0x5c/0xc0
[  105.419506][ T5968]  asm_exc_page_fault+0x26/0x30
[  105.422438][ T5968] RIP: 0010:rep_stos_alternative+0x40/0x80
[  105.425926][ T5968] Code: ff c7 48 ff c9 75 f6 c3 cc cc cc cc 48 89 07 48 83 c7 08 83 e9 08 74 ef 83 f9 08 73 ef eb de 66 66 2e 0f 1f 84 00 00 00 00 00 <48> 89 07 48 89 47 08 48 89 47 10 48 89 47 18 48 89 47 20 48 89 47
[  105.439728][ T5968] RSP: 0018:ffffc90003657bb8 EFLAGS: 00050202
[  105.442311][ T5968] RAX: 0000000000000000 RBX: 0000000020b39080 RCX: 0000000000000080
[  105.446029][ T5968] RDX: ffff88802fef4880 RSI: ffffffff84812d05 RDI: 0000000020b3a000
[  105.450089][ T5968] RBP: 000000007f4c6000 R08: 0000000000000000 R09: fffffbfff202574b
[  105.466740][ T5968] R10: ffffffff9012ba5f R11: 0000000000000000 R12: 0000000000000000
[  105.471488][ T5968] R13: 0000000000001000 R14: 0000000000b39000 R15: 0000000020b3a080
[  105.475767][ T5968]  ? iov_iter_zero+0x255/0x11c0
[  105.478725][ T5968]  iov_iter_zero+0x265/0x11c0
[  105.482122][ T5968]  ? __pfx___might_resched+0x10/0x10
[  105.484893][ T5968]  ? __pfx_iov_iter_zero+0x10/0x10
[  105.487416][ T5968]  ? inode_security+0x101/0x130
[  105.490010][ T5968]  ? avc_policy_seqno+0x9/0x20
[  105.492795][ T5968]  ? selinux_file_permission+0x125/0x590
[  105.496270][ T5968]  read_iter_zero+0x138/0x340
[  105.499141][ T5968]  vfs_read+0x869/0xbd0
[  105.501449][ T5968]  ? __pfx_vfs_read+0x10/0x10
[  105.504177][ T5968]  ? __fget_files+0x256/0x400
[  105.506623][ T5968]  ? __fget_light+0x173/0x210
[  105.508589][ T5968]  ksys_read+0x12f/0x260
[  105.510153][ T5968]  ? __pfx_ksys_read+0x10/0x10
[  105.512248][ T5968]  do_syscall_64+0xcd/0x250
[  105.514467][ T5968]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.517645][ T5968] RIP: 0033:0x7fb87c3779f9
[  105.519987][ T5968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.529203][ T5968] RSP: 002b:00007fb87d219048 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  105.532419][ T5968] RAX: ffffffffffffffda RBX: 00007fb87c505f80 RCX: 00007fb87c3779f9
[  105.535663][ T5968] RDX: 00000000ffffff1c RSI: 0000000020000080 RDI: 0000000000000006
[  105.538879][ T5968] RBP: 00007fb87d2190a0 R08: 0000000000000000 R09: 0000000000000000
[  105.542134][ T5968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.546245][ T5968] R13: 000000000000000b R14: 00007fb87c505f80 R15: 00007ffcca79dfb8
[  105.549733][ T5968]  </TASK>
[  105.558661][ T5976] netlink: 8 bytes leftover after parsing attributes in process `syz.0.156'.
[  105.568407][   T39] kauditd_printk_skb: 270 callbacks suppressed
[  105.568416][   T39] audit: type=1400 audit(1722746626.716:589): avc:  denied  { read } for  pid=5975 comm="syz.0.156" name="sg0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  105.591463][   T39] audit: type=1400 audit(1722746626.736:590): avc:  denied  { open } for  pid=5975 comm="syz.0.156" path="/dev/sg0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  105.654491][ T5976] program syz.0.156 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  105.662962][ T5976] netlink: 28 bytes leftover after parsing attributes in process `syz.0.156'.
[  105.888524][ T5981] netlink: 28 bytes leftover after parsing attributes in process `syz.2.157'.
[  105.976605][ T5987] netlink: 96 bytes leftover after parsing attributes in process `syz.1.159'.
[  106.032162][   T39] audit: type=1400 audit(1722746627.186:591): avc:  denied  { create } for  pid=5988 comm="syz.0.160" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  106.131992][   T39] audit: type=1400 audit(1722746627.276:592): avc:  denied  { getopt } for  pid=5988 comm="syz.0.160" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  106.163960][   T39] audit: type=1400 audit(1722746627.306:593): avc:  denied  { ioctl } for  pid=5988 comm="syz.0.160" path="socket:[12557]" dev="sockfs" ino=12557 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  106.222952][   T39] audit: type=1400 audit(1722746627.376:594): avc:  denied  { read } for  pid=5992 comm="syz.1.161" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  106.231513][   T39] audit: type=1400 audit(1722746627.376:595): avc:  denied  { open } for  pid=5992 comm="syz.1.161" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  106.254172][   T39] audit: type=1400 audit(1722746627.386:596): avc:  denied  { ioctl } for  pid=5992 comm="syz.1.161" path="/dev/binderfs/binder0" dev="binder" ino=7 ioctlcmd=0x6207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  106.265343][   T39] audit: type=1400 audit(1722746627.386:597): avc:  denied  { set_context_mgr } for  pid=5992 comm="syz.1.161" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  106.461355][   T39] audit: type=1400 audit(1722746627.606:598): avc:  denied  { create } for  pid=6001 comm="syz.2.163" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  107.860969][ T6035] veth1_vlan: entered allmulticast mode
[  107.867264][ T6035] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[  108.082230][  T835] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  108.290456][  T835] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  108.295260][  T835] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  108.300618][  T835] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  108.309922][  T835] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  108.315292][  T835] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.319035][  T835] usb 5-1: Product: syz
[  108.320989][  T835] usb 5-1: Manufacturer: syz
[  108.323234][  T835] usb 5-1: SerialNumber: syz
[  108.330926][  T835] usb 5-1: selecting invalid altsetting 1
[  108.462461][ T5384] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  108.475184][ T6052] netlink: 24 bytes leftover after parsing attributes in process `syz.1.173'.
[  108.642197][ T5384] usb 7-1: Using ep0 maxpacket: 8
[  108.647985][ T5384] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  108.653318][ T5384] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  108.657723][ T5384] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.664897][ T5384] usb 7-1: config 0 descriptor??
[  108.729008][ T6057] kvm: pic: non byte write
[  108.879982][ T5384] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  108.969833][ T6059] FAULT_INJECTION: forcing a failure.
[  108.969833][ T6059] name failslab, interval 1, probability 0, space 0, times 0
[  108.977193][ T6059] CPU: 2 UID: 0 PID: 6059 Comm: syz.3.174 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  108.981893][ T6059] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.987404][ T6059] Call Trace:
[  108.988959][ T6059]  <TASK>
[  108.990284][ T6059]  dump_stack_lvl+0x16c/0x1f0
[  108.992417][ T6059]  should_fail_ex+0x497/0x5b0
[  108.994920][ T6059]  ? fs_reclaim_acquire+0xae/0x160
[  108.997357][ T6059]  should_failslab+0xc2/0x120
[  108.999487][ T6059]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  109.001869][ T6059]  ? ptlock_alloc+0x1f/0x70
[  109.003911][ T6059]  ptlock_alloc+0x1f/0x70
[  109.006013][ T6059]  pte_alloc_one+0x74/0x370
[  109.008358][ T6059]  __pte_alloc+0x6e/0x3a0
[  109.011069][ T6059]  ? __pfx___pte_alloc+0x10/0x10
[  109.013410][ T6059]  ? _raw_spin_unlock+0x28/0x50
[  109.018161][ T6059]  ? __pmd_alloc+0x35e/0x820
[  109.020466][ T6059]  __handle_mm_fault+0x4072/0x5660
[  109.023114][ T6059]  ? __pfx_mt_find+0x10/0x10
[  109.025840][ T6059]  ? __pfx___handle_mm_fault+0x10/0x10
[  109.028162][ T6059]  ? find_vma+0xc0/0x140
[  109.029843][ T6059]  ? __pfx_find_vma+0x10/0x10
[  109.032092][ T6059]  handle_mm_fault+0x44e/0x7b0
[  109.034785][ T6059]  ? __pkru_allows_pkey+0x52/0xb0
[  109.044017][ T6059]  do_user_addr_fault+0x7a3/0x13f0
[  109.047095][ T6059]  exc_page_fault+0x5c/0xc0
[  109.049219][ T6059]  asm_exc_page_fault+0x26/0x30
[  109.051920][ T6059] RIP: 0010:_copy_from_user+0xc1/0xf0
[  109.055546][ T6059] Code: 89 df e8 02 e5 07 fd 4d 85 f6 75 9e e8 88 ea 07 fd 0f ae e8 89 ee 4c 89 ef e8 3b 19 65 fd 0f 01 cb 48 89 e9 4c 89 ef 48 89 de <f3> a4 0f 1f 00 48 89 cb 0f 01 ca e9 73 ff ff ff e8 5a ea 07 fd 48
[  109.065360][ T6059] RSP: 0018:ffffc90003657a38 EFLAGS: 00050246
[  109.068164][ T6059] RAX: 0000000000000001 RBX: 00000000200043c0 RCX: 0000000000000038
[  109.072209][ T6059] RDX: fffff520006caf58 RSI: 00000000200043c0 RDI: ffffc90003657a88
[  109.076315][ T6059] RBP: 0000000000000038 R08: 0000000000000001 R09: fffff520006caf57
[  109.079684][ T6059] R10: ffffc90003657abf R11: 0000000000000000 R12: 00000000200043f8
[  109.084133][ T6059] R13: ffffc90003657a88 R14: 0000000000000000 R15: ffffc90003657a88
[  109.089123][ T6059]  ? _copy_from_user+0xb5/0xf0
[  109.091804][ T6059]  copy_msghdr_from_user+0x99/0x160
[  109.094559][ T6059]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  109.097660][ T6059]  ? find_held_lock+0x2d/0x110
[  109.099889][ T6059]  ___sys_recvmsg+0xdc/0x1a0
[  109.102129][ T6059]  ? __pfx____sys_recvmsg+0x10/0x10
[  109.104610][ T6059]  ? __fget_light+0x173/0x210
[  109.106750][ T6059]  do_recvmmsg+0x2ba/0x750
[  109.108751][ T6059]  ? __pfx_do_recvmmsg+0x10/0x10
[  109.110951][ T6059]  ? vfs_write+0x14d/0x1140
[  109.112984][ T6059]  ? __mutex_unlock_slowpath+0x164/0x650
[  109.115586][ T6059]  __x64_sys_recvmmsg+0x239/0x290
[  109.118024][ T6059]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  109.120494][ T6059]  do_syscall_64+0xcd/0x250
[  109.122602][ T6059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.125233][ T6059] RIP: 0033:0x7f38549779f9
[  109.127180][ T6059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.135895][ T6059] RSP: 002b:00007f3855822048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  109.139717][ T6059] RAX: ffffffffffffffda RBX: 00007f3854b05f80 RCX: 00007f38549779f9
[  109.143828][ T6059] RDX: 040000000000005d RSI: 00000000200043c0 RDI: 0000000000000003
[  109.147643][ T6059] RBP: 00007f38558220a0 R08: 0000000000000000 R09: 0000000000000000
[  109.151553][ T6059] R10: 0000000000018100 R11: 0000000000000246 R12: 0000000000000001
[  109.155082][ T6059] R13: 000000000000000b R14: 00007f3854b05f80 R15: 00007ffedb9bcf78
[  109.158662][ T6059]  </TASK>
[  109.260193][ T6063] netlink: 28 bytes leftover after parsing attributes in process `syz.1.176'.
[  109.469687][ T6069] netlink: 4 bytes leftover after parsing attributes in process `syz.2.171'.
[  110.905850][  T835] cdc_ncm 5-1:1.0: bind() failure
[  110.914128][  T835] cdc_ncm 5-1:1.1: skipping garbage
[  110.916445][  T835] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  110.919079][  T835] cdc_ncm 5-1:1.1: bind() failure
[  110.946326][  T835] usb 5-1: USB disconnect, device number 3
[  111.205860][   T35] usb 7-1: USB disconnect, device number 4
[  111.224293][   T39] kauditd_printk_skb: 23 callbacks suppressed
[  111.224344][   T39] audit: type=1400 audit(1722746632.376:622): avc:  denied  { unmount } for  pid=5349 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  111.235666][   T35] iowarrior 7-1:0.0: I/O-Warror #0 now disconnected
[  111.282278][ T6096] FAULT_INJECTION: forcing a failure.
[  111.282278][ T6096] name failslab, interval 1, probability 0, space 0, times 0
[  111.290180][ T6096] CPU: 0 UID: 0 PID: 6096 Comm: syz.2.186 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  111.294562][ T6096] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  111.299114][ T6096] Call Trace:
[  111.300625][ T6096]  <TASK>
[  111.302020][ T6096]  dump_stack_lvl+0x16c/0x1f0
[  111.304181][ T6096]  should_fail_ex+0x497/0x5b0
[  111.306589][ T6096]  ? fs_reclaim_acquire+0xae/0x160
[  111.308962][ T6096]  should_failslab+0xc2/0x120
[  111.311120][ T6096]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  111.314068][ T6096]  ? __pmd_alloc+0xc3/0x820
[  111.316183][ T6096]  __pmd_alloc+0xc3/0x820
[  111.318467][ T6096]  __handle_mm_fault+0x947/0x5660
[  111.320740][ T6096]  ? __pfx_mt_find+0x10/0x10
[  111.322165][   T39] audit: type=1400 audit(1722746632.466:623): avc:  denied  { mounton } for  pid=6097 comm="syz.1.185" path="/45/bus" dev="tmpfs" ino=268 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  111.322824][ T6096]  ? __pfx___handle_mm_fault+0x10/0x10
[  111.331962][   T39] audit: type=1400 audit(1722746632.476:624): avc:  denied  { unlink } for  pid=6097 comm="syz.1.185" name="#5" dev="tmpfs" ino=272 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  111.333491][ T6098] evm: overlay not supported
[  111.334542][ T6096]  ? find_vma+0xc0/0x140
[  111.334569][ T6096]  ? __pfx_find_vma+0x10/0x10
[  111.334589][ T6096]  handle_mm_fault+0x44e/0x7b0
[  111.334614][ T6096]  ? __pkru_allows_pkey+0x52/0xb0
[  111.334637][ T6096]  do_user_addr_fault+0x7a3/0x13f0
[  111.334659][ T6096]  exc_page_fault+0x5c/0xc0
[  111.334677][ T6096]  asm_exc_page_fault+0x26/0x30
[  111.334701][ T6096] RIP: 0010:__get_user_4+0x11/0x20
[  111.348088][   T39] audit: type=1400 audit(1722746632.476:625): avc:  denied  { mount } for  pid=6097 comm="syz.1.185" name="/" dev="overlay" ino=266 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  111.349917][ T6096] Code: 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <8b> 10 31 c0 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[  111.384539][ T6096] RSP: 0018:ffffc90003687b88 EFLAGS: 00050206
[  111.387355][ T6096] RAX: 00000000200002c0 RBX: 00000000fffffff2 RCX: ffffc90003687af0
[  111.391782][ T6096] RDX: 0000000000000000 RSI: ffffffff817dc479 RDI: ffffffff8bb08500
[  111.396098][ T6096] RBP: 0000000000000002 R08: 0000000000000000 R09: fffffbfff202574b
[  111.400879][ T6096] R10: ffffffff9012ba5f R11: 0000000000000000 R12: 00000000000002c0
[  111.405651][ T6096] R13: 00000000200002c0 R14: ffffc90003687dc8 R15: ffffc90000965100
[  111.410473][ T6096]  ? futex_requeue+0x17e9/0x1cf0
[  111.413651][ T6096]  futex_requeue+0x17f3/0x1cf0
[  111.417706][ T6096]  ? __pfx_futex_requeue+0x10/0x10
[  111.420512][ T6096]  ? ksys_write+0x12f/0x260
[  111.422867][ T6096]  ? find_held_lock+0x2d/0x110
[  111.425504][ T6096]  ? ksys_write+0x21c/0x260
[  111.427940][ T6096]  ? __pfx_lock_release+0x10/0x10
[  111.430967][ T6096]  ? vfs_write+0x14d/0x1140
[  111.433527][ T6096]  do_futex+0x1af/0x350
[  111.435384][ T6096]  ? __pfx_do_futex+0x10/0x10
[  111.437523][ T6096]  __x64_sys_futex+0x1e1/0x4c0
[  111.439531][ T6096]  ? fput+0x32/0x390
[  111.441411][ T6096]  ? __pfx___x64_sys_futex+0x10/0x10
[  111.443590][ T6096]  ? ksys_write+0x1ab/0x260
[  111.445692][ T6096]  ? __pfx_ksys_write+0x10/0x10
[  111.448006][ T6096]  do_syscall_64+0xcd/0x250
[  111.450166][ T6096]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.453066][ T6096] RIP: 0033:0x7f7f5a7779f9
[  111.455259][ T6096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.469980][ T6096] RSP: 002b:00007f7f5b4a9048 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  111.475870][ T6096] RAX: ffffffffffffffda RBX: 00007f7f5a905f80 RCX: 00007f7f5a7779f9
[  111.480210][ T6096] RDX: 0000000000000001 RSI: 000000000000008c RDI: 00000000200002c0
[  111.483699][ T6096] RBP: 00007f7f5b4a90a0 R08: 00000000200000c0 R09: 0000000000000000
[  111.487855][ T6096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.492148][ T6096] R13: 000000000000000b R14: 00007f7f5a905f80 R15: 00007fff267361a8
[  111.495462][ T6096]  </TASK>
[  111.554454][   T39] audit: type=1400 audit(1722746632.696:626): avc:  denied  { read } for  pid=6099 comm="syz.1.187" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  111.568689][   T39] audit: type=1400 audit(1722746632.696:627): avc:  denied  { open } for  pid=6099 comm="syz.1.187" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  111.607226][   T39] audit: type=1400 audit(1722746632.756:628): avc:  denied  { read } for  pid=6099 comm="syz.1.187" name="renderD128" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  111.622202][   T39] audit: type=1400 audit(1722746632.766:629): avc:  denied  { open } for  pid=6099 comm="syz.1.187" path="/dev/dri/renderD128" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  111.637900][   T39] audit: type=1400 audit(1722746632.786:630): avc:  denied  { ioctl } for  pid=6099 comm="syz.1.187" path="/dev/dri/renderD128" dev="devtmpfs" ino=636 ioctlcmd=0x640d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  111.689990][ T6106] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  111.728176][   T39] audit: type=1400 audit(1722746632.866:631): avc:  denied  { connect } for  pid=6099 comm="syz.1.187" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  111.776031][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.779886][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.783641][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.786663][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.790727][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.795005][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.798804][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.803804][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.807140][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.810712][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.815319][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.818930][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.822901][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.826878][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.830804][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.834597][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.840040][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.843985][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.847687][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.853620][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.857944][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.862574][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.867260][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.871758][ T5385] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.882964][ T5385] hid-generic 0000:0000:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  111.898632][ T6109] netlink: 40 bytes leftover after parsing attributes in process `syz.2.189'.
[  112.042958][   T35] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  112.094993][ T6112] fuse: Bad value for 'user_id'
[  112.096956][ T6112] fuse: Bad value for 'user_id'
[  112.229705][   T35] usb 6-1: config 0 has no interfaces?
[  112.232214][   T35] usb 6-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  112.236009][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.241958][   T35] usb 6-1: config 0 descriptor??
[  112.530545][ T6123] tmpfs: Unknown parameter 'smackfsroot'
[  112.624679][   T35] usb 6-1: USB disconnect, device number 6
[  113.284399][ T6131] FAULT_INJECTION: forcing a failure.
[  113.284399][ T6131] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  113.352255][ T6131] CPU: 2 UID: 0 PID: 6131 Comm: syz.1.196 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  113.352294][ T5348] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  113.357313][ T6131] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  113.357329][ T6131] Call Trace:
[  113.357337][ T6131]  <TASK>
[  113.357344][ T6131]  dump_stack_lvl+0x16c/0x1f0
[  113.361941][ T5348] Bluetooth: hci2: Injecting HCI hardware error event
[  113.366811][ T6131]  should_fail_ex+0x497/0x5b0
[  113.366846][ T6131]  _copy_to_user+0x30/0xc0
[  113.366884][ T6131]  put_user_ifreq+0xf4/0x140
[  113.366906][ T6131]  sock_do_ioctl+0x232/0x280
[  113.366925][ T6131]  ? __pfx_sock_do_ioctl+0x10/0x10
[  113.366945][ T6131]  ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x470
[  113.366974][ T6131]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  113.369962][ T5353] Bluetooth: hci2: hardware error 0x00
[  113.370240][ T6131]  sock_ioctl+0x22e/0x6c0
[  113.397373][ T6131]  ? __pfx_sock_ioctl+0x10/0x10
[  113.397410][ T6131]  ? selinux_file_ioctl+0x180/0x270
[  113.397437][ T6131]  ? selinux_file_ioctl+0xb4/0x270
[  113.397464][ T6131]  ? __pfx_sock_ioctl+0x10/0x10
[  113.397485][ T6131]  __x64_sys_ioctl+0x193/0x220
[  113.397510][ T6131]  do_syscall_64+0xcd/0x250
[  113.397533][ T6131]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.397558][ T6131] RIP: 0033:0x7fb87c3779f9
[  113.397572][ T6131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.397589][ T6131] RSP: 002b:00007fb87d219048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  113.397607][ T6131] RAX: ffffffffffffffda RBX: 00007fb87c505f80 RCX: 00007fb87c3779f9
[  113.397620][ T6131] RDX: 0000000020000000 RSI: 0000000000008933 RDI: 0000000000000003
[  113.397632][ T6131] RBP: 00007fb87d2190a0 R08: 0000000000000000 R09: 0000000000000000
[  113.397643][ T6131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.397654][ T6131] R13: 000000000000000b R14: 00007fb87c505f80 R15: 00007ffcca79dfb8
[  113.397668][ T6131]  </TASK>
[  113.722762][ T5348] Bluetooth: hci1: command tx timeout
[  113.936712][ T6157] kvm: emulating exchange as write
[  114.191302][ T6169] FAULT_INJECTION: forcing a failure.
[  114.191302][ T6169] name failslab, interval 1, probability 0, space 0, times 0
[  114.197911][ T6169] CPU: 1 UID: 0 PID: 6169 Comm: syz.0.209 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  114.203084][ T6169] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  114.208019][ T6169] Call Trace:
[  114.209635][ T6169]  <TASK>
[  114.210999][ T6169]  dump_stack_lvl+0x16c/0x1f0
[  114.213266][ T6169]  should_fail_ex+0x497/0x5b0
[  114.215791][ T6169]  ? fs_reclaim_acquire+0xae/0x160
[  114.218244][ T6169]  should_failslab+0xc2/0x120
[  114.220347][ T6169]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  114.222790][ T6169]  ? mas_alloc_nodes+0x176/0x860
[  114.225449][ T6169]  mas_alloc_nodes+0x176/0x860
[  114.228316][ T6169]  mas_node_count_gfp+0x105/0x130
[  114.230719][ T6169]  mas_preallocate+0x3bb/0x1020
[  114.232950][ T6169]  ? __pfx_mas_preallocate+0x10/0x10
[  114.235601][ T6169]  ? anon_vma_name+0x75/0x100
[  114.237855][ T6169]  __split_vma+0x474/0x11c0
[  114.239923][ T6169]  ? __pfx___split_vma+0x10/0x10
[  114.242573][ T6169]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  114.245396][ T6169]  ? percpu_counter_add_batch+0xb5/0x1e0
[  114.248028][ T6169]  do_vmi_align_munmap+0x2bf/0x19c0
[  114.250551][ T6169]  ? mtree_range_walk+0x715/0xbe0
[  114.252930][ T6169]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  114.255431][ T6169]  do_vmi_munmap+0x231/0x410
[  114.257688][ T6169]  do_munmap+0xb0/0xf0
[  114.259600][ T6169]  ? __pfx_do_munmap+0x10/0x10
[  114.261955][ T6169]  ? vfs_write+0x14d/0x1140
[  114.263859][ T6169]  __do_sys_mremap+0xb84/0x1610
[  114.266068][ T6169]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  114.268856][ T6169]  ? __pfx___do_sys_mremap+0x10/0x10
[  114.271360][ T6169]  ? fput+0x32/0x390
[  114.273299][ T6169]  ? ksys_write+0x1ab/0x260
[  114.275529][ T6169]  ? __pfx_ksys_write+0x10/0x10
[  114.278666][ T6169]  do_syscall_64+0xcd/0x250
[  114.281090][ T6169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.283893][ T6169] RIP: 0033:0x7f07a51779f9
[  114.285941][ T6169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.294819][ T6169] RSP: 002b:00007f07a5eeb048 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  114.298746][ T6169] RAX: ffffffffffffffda RBX: 00007f07a5305f80 RCX: 00007f07a51779f9
[  114.302332][ T6169] RDX: 0000000000600000 RSI: 0000000000a00000 RDI: 0000000020000000
[  114.302956][ T6172] netlink: 'syz.3.208': attribute type 10 has an invalid length.
[  114.306254][ T6169] RBP: 00007f07a5eeb0a0 R08: 0000000020a00000 R09: 0000000000000000
[  114.306335][ T6169] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  114.306348][ T6169] R13: 000000000000000b R14: 00007f07a5305f80 R15: 00007ffe2dcdc1c8
[  114.306363][ T6169]  </TASK>
[  114.372176][ T6172] team0: Port device netdevsim0 added
[  114.378369][ T6176] netlink: 'syz.3.208': attribute type 10 has an invalid length.
[  114.398253][ T6176] team0: Port device netdevsim0 removed
[  114.405767][ T6176] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  114.418865][ T5348] Bluetooth: hci2: Invalid handle: 0xb9b0 > 0x0eff
[  114.528764][ T6188] netlink: 28 bytes leftover after parsing attributes in process `syz.3.212'.
[  115.028934][ T6171] block nbd2: shutting down sockets
[  115.238664][ T6203] netlink: 'syz.2.217': attribute type 1 has an invalid length.
[  115.598163][ T6215] netlink: 28 bytes leftover after parsing attributes in process `syz.3.221'.
[  115.652817][ T5353] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  115.657887][ T6219] tipc: Enabling of bearer <ib:vc> rejected, failed to enable media
[  115.670391][ T6219] netlink: 24 bytes leftover after parsing attributes in process `syz.3.222'.
[  115.693652][ T6219] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  115.752708][ T6228] binder: 6226:6228 ioctl c0306201 20000400 returned -14
[  115.809437][ T6231] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  115.812827][ T6231] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  115.824737][ T6231] vhci_hcd vhci_hcd.0: Device attached
[  115.843120][ T6232] vhci_hcd: connection closed
[  115.845328][   T73] vhci_hcd: stop threads
[  115.850182][   T73] vhci_hcd: release socket
[  115.861826][   T73] vhci_hcd: disconnect device
[  116.687539][   T39] kauditd_printk_skb: 46 callbacks suppressed
[  116.687554][   T39] audit: type=1400 audit(1722746637.826:678): avc:  denied  { listen } for  pid=6242 comm="syz.1.227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  116.721677][   T39] audit: type=1400 audit(1722746637.866:679): avc:  denied  { connect } for  pid=6242 comm="syz.1.227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  116.798011][ T6252] netlink: 32 bytes leftover after parsing attributes in process `syz.0.228'.
[  116.833447][   T39] audit: type=1400 audit(1722746637.966:680): avc:  denied  { create } for  pid=6247 comm="syz.0.228" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  116.841997][   T39] audit: type=1400 audit(1722746637.966:681): avc:  denied  { write } for  pid=6247 comm="syz.0.228" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  116.851357][   T39] audit: type=1400 audit(1722746637.966:682): avc:  denied  { nlmsg_write } for  pid=6247 comm="syz.0.228" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  117.031605][ T6254] netlink: 28 bytes leftover after parsing attributes in process `syz.2.230'.
[  117.539101][ T6268] FAULT_INJECTION: forcing a failure.
[  117.539101][ T6268] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.545324][ T6268] CPU: 1 UID: 0 PID: 6268 Comm: syz.1.234 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  117.549824][ T6268] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  117.555012][ T6268] Call Trace:
[  117.556458][ T6268]  <TASK>
[  117.557764][ T6268]  dump_stack_lvl+0x16c/0x1f0
[  117.559814][ T6268]  should_fail_ex+0x497/0x5b0
[  117.561897][ T6268]  _copy_from_user+0x30/0xf0
[  117.564508][ T6268]  memdup_user+0x71/0xd0
[  117.566431][ T6268]  strndup_user+0x78/0xe0
[  117.568702][ T6268]  __do_sys_fsconfig+0x2f1/0xbe0
[  117.570857][ T6268]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  117.573383][ T6268]  do_syscall_64+0xcd/0x250
[  117.575419][ T6268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.578585][ T6268] RIP: 0033:0x7fb87c3779f9
[  117.580840][ T6268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.588935][ T6268] RSP: 002b:00007fb87d219048 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  117.592402][ T6268] RAX: ffffffffffffffda RBX: 00007fb87c505f80 RCX: 00007fb87c3779f9
[  117.596094][ T6268] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000003
[  117.599529][ T6268] RBP: 00007fb87d2190a0 R08: 0000000000000000 R09: 0000000000000000
[  117.602959][ T6268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.606402][ T6268] R13: 000000000000000b R14: 00007fb87c505f80 R15: 00007ffcca79dfb8
[  117.609849][ T6268]  </TASK>
[  117.696207][ T6273] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  117.698486][ T6273] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  117.703570][ T6273] vhci_hcd vhci_hcd.0: Device attached
[  117.716001][ T6274] vhci_hcd: connection closed
[  117.718755][   T73] vhci_hcd: stop threads
[  117.724113][   T73] vhci_hcd: release socket
[  117.742170][   T73] vhci_hcd: disconnect device
[  118.015718][ T6287] netlink: 28 bytes leftover after parsing attributes in process `syz.3.240'.
[  118.600442][ T6299] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.243'.
[  118.643241][ T6299] netlink: 'syz.3.243': attribute type 10 has an invalid length.
[  118.646887][ T6299] netlink: 40 bytes leftover after parsing attributes in process `syz.3.243'.
[  118.731701][ T6299] team0: Port device geneve0 added
[  118.806078][   T39] audit: type=1400 audit(1722746639.956:683): avc:  denied  { write } for  pid=6301 comm="syz.0.244" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  118.821680][   T39] audit: type=1400 audit(1722746639.956:684): avc:  denied  { open } for  pid=6301 comm="syz.0.244" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  118.998040][   T39] audit: type=1400 audit(1722746640.146:685): avc:  denied  { watch } for  pid=6305 comm="syz.3.245" path="/proc/183" dev="proc" ino=11897 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  119.052916][   T39] audit: type=1400 audit(1722746640.146:686): avc:  denied  { watch_reads } for  pid=6305 comm="syz.3.245" path="/proc/183" dev="proc" ino=11897 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  119.325357][   T39] audit: type=1400 audit(1722746640.476:687): avc:  denied  { connect } for  pid=6315 comm="syz.1.248" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  119.359165][ T6316] random: crng reseeded on system resumption
[  119.660682][ T6324] capability: warning: `syz.0.251' uses 32-bit capabilities (legacy support in use)
[  119.813163][ T6328] netlink: 24 bytes leftover after parsing attributes in process `syz.3.253'.
[  119.923457][ T6330] netlink: 60 bytes leftover after parsing attributes in process `syz.1.254'.
[  120.778347][ T6352] FAULT_INJECTION: forcing a failure.
[  120.778347][ T6352] name failslab, interval 1, probability 0, space 0, times 0
[  120.784188][ T6352] CPU: 3 UID: 0 PID: 6352 Comm: syz.2.260 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  120.791008][ T6352] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.796636][ T6352] Call Trace:
[  120.798042][ T6352]  <TASK>
[  120.799409][ T6352]  dump_stack_lvl+0x16c/0x1f0
[  120.801717][ T6352]  should_fail_ex+0x497/0x5b0
[  120.804079][ T6352]  ? fs_reclaim_acquire+0xae/0x160
[  120.807275][ T6352]  should_failslab+0xc2/0x120
[  120.809693][ T6352]  kmem_cache_alloc_node_noprof+0x71/0x310
[  120.812356][ T6352]  ? __alloc_skb+0x2b1/0x380
[  120.816699][ T6352]  __alloc_skb+0x2b1/0x380
[  120.819883][ T6352]  ? __pfx___alloc_skb+0x10/0x10
[  120.822838][ T6352]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  120.826157][ T6352]  netlink_alloc_large_skb+0x69/0x130
[  120.828766][ T6352]  netlink_sendmsg+0x689/0xd70
[  120.831018][ T6352]  ? __pfx_netlink_sendmsg+0x10/0x10
[  120.834709][ T6352]  ? __import_iovec+0x1fd/0x6e0
[  120.836913][ T6352]  ____sys_sendmsg+0xab5/0xc90
[  120.839039][ T6352]  ? copy_msghdr_from_user+0x10b/0x160
[  120.842196][ T6352]  ? __pfx_____sys_sendmsg+0x10/0x10
[  120.844755][ T6352]  ? find_held_lock+0x2d/0x110
[  120.846928][ T6352]  ? __pfx___lock_acquire+0x10/0x10
[  120.849219][ T6352]  ___sys_sendmsg+0x135/0x1e0
[  120.851308][ T6352]  ? __pfx____sys_sendmsg+0x10/0x10
[  120.854277][ T6352]  ? ksys_write+0x21c/0x260
[  120.856799][ T6352]  ? __fget_light+0x173/0x210
[  120.858815][ T6352]  __sys_sendmsg+0x117/0x1f0
[  120.860990][ T6352]  ? __pfx___sys_sendmsg+0x10/0x10
[  120.863444][ T6352]  do_syscall_64+0xcd/0x250
[  120.869246][ T6352]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.873530][ T6352] RIP: 0033:0x7f7f5a7779f9
[  120.875506][ T6352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.885969][ T6352] RSP: 002b:00007f7f5b4a9048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  120.889787][ T6352] RAX: ffffffffffffffda RBX: 00007f7f5a905f80 RCX: 00007f7f5a7779f9
[  120.894179][ T6352] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000007
[  120.897754][ T6352] RBP: 00007f7f5b4a90a0 R08: 0000000000000000 R09: 0000000000000000
[  120.902117][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.906174][ T6352] R13: 000000000000000b R14: 00007f7f5a905f80 R15: 00007fff267361a8
[  120.909543][ T6352]  </TASK>
[  121.247815][ T6363] lo speed is unknown, defaulting to 1000
[  121.250692][ T6363] lo speed is unknown, defaulting to 1000
[  121.260468][ T6363] lo speed is unknown, defaulting to 1000
[  121.276716][ T6363] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  121.304108][ T6363] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  121.375541][ T6363] lo speed is unknown, defaulting to 1000
[  121.381311][ T6363] lo speed is unknown, defaulting to 1000
[  121.385337][ T6363] lo speed is unknown, defaulting to 1000
[  121.390196][ T6363] lo speed is unknown, defaulting to 1000
[  122.572567][   T39] kauditd_printk_skb: 11 callbacks suppressed
[  122.572582][   T39] audit: type=1400 audit(1722746643.716:699): avc:  denied  { search } for  pid=6405 comm="dhcpcd-run-hook" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  122.587016][   T39] audit: type=1400 audit(1722746643.726:700): avc:  denied  { read } for  pid=6407 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=1484 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  122.596940][   T39] audit: type=1400 audit(1722746643.726:701): avc:  denied  { open } for  pid=6407 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1484 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  122.639691][   T39] audit: type=1400 audit(1722746643.726:702): avc:  denied  { getattr } for  pid=6407 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1484 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  122.706660][   T39] audit: type=1400 audit(1722746643.746:703): avc:  denied  { write } for  pid=6405 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1483 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  122.716805][   T39] audit: type=1400 audit(1722746643.746:704): avc:  denied  { add_name } for  pid=6405 comm="dhcpcd-run-hook" name="resolv.conf.lapb4.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  122.731416][   T39] audit: type=1400 audit(1722746643.746:705): avc:  denied  { create } for  pid=6405 comm="dhcpcd-run-hook" name="resolv.conf.lapb4.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  122.741778][   T39] audit: type=1400 audit(1722746643.746:706): avc:  denied  { write open } for  pid=6405 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.lapb4.link" dev="tmpfs" ino=2747 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  122.753962][   T39] audit: type=1400 audit(1722746643.746:707): avc:  denied  { append } for  pid=6405 comm="dhcpcd-run-hook" name="resolv.conf.lapb4.link" dev="tmpfs" ino=2747 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  122.765342][   T39] audit: type=1400 audit(1722746643.746:708): avc:  denied  { getattr } for  pid=6405 comm="dhcpcd-run-hook" path="/tmp/resolv.conf" dev="tmpfs" ino=6 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  122.806561][ T6400] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  122.838999][ T6416] netlink: 28 bytes leftover after parsing attributes in process `syz.1.277'.
[  122.888362][ T6419] FAULT_INJECTION: forcing a failure.
[  122.888362][ T6419] name failslab, interval 1, probability 0, space 0, times 0
[  122.903111][ T6419] CPU: 1 UID: 0 PID: 6419 Comm: syz.3.276 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  122.911036][ T6419] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  122.920519][ T6419] Call Trace:
[  122.922662][ T6419]  <TASK>
[  122.924475][ T6419]  dump_stack_lvl+0x16c/0x1f0
[  122.927198][ T6419]  should_fail_ex+0x497/0x5b0
[  122.930394][ T6419]  ? fs_reclaim_acquire+0xae/0x160
[  122.933402][ T6419]  should_failslab+0xc2/0x120
[  122.935904][ T6419]  __kmalloc_noprof+0xcb/0x400
[  122.938396][ T6419]  ? d_absolute_path+0x137/0x1b0
[  122.940861][ T6419]  tomoyo_encode2+0x100/0x3e0
[  122.944547][ T6419]  tomoyo_encode+0x29/0x50
[  122.946559][ T6419]  tomoyo_realpath_from_path+0x19d/0x720
[  122.949107][ T6419]  tomoyo_path_perm+0x273/0x450
[  122.951293][ T6419]  ? tomoyo_path_perm+0x25f/0x450
[  122.954086][ T6419]  ? __pfx_tomoyo_path_perm+0x10/0x10
[  122.956751][ T6419]  security_file_truncate+0x65/0xb0
[  122.959667][ T6419]  do_ftruncate+0x30e/0x720
[  122.963855][ T6419]  __x64_sys_ftruncate+0xa9/0x110
[  122.967381][ T6419]  do_syscall_64+0xcd/0x250
[  122.971833][ T6419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.975930][ T6419] RIP: 0033:0x7f38549779f9
[  122.978465][ T6419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.989836][ T6419] RSP: 002b:00007f3855801048 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[  122.994381][ T6419] RAX: ffffffffffffffda RBX: 00007f3854b06058 RCX: 00007f38549779f9
[  122.999018][ T6419] RDX: 0000000000000000 RSI: 0000000002007ffb RDI: 000000000000000a
[  123.002769][ T6419] RBP: 00007f38558010a0 R08: 0000000000000000 R09: 0000000000000000
[  123.008621][ T6419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.013116][ T6419] R13: 000000000000006e R14: 00007f3854b06058 R15: 00007ffedb9bcf78
[  123.018474][ T6419]  </TASK>
[  123.083201][ T6419] ERROR: Out of memory at tomoyo_realpath_from_path.
[  123.796125][ T5353] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  123.951060][ T6455] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  124.026128][ T6455] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  124.105994][ T6464] FAULT_INJECTION: forcing a failure.
[  124.105994][ T6464] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  124.111445][ T6464] CPU: 3 UID: 0 PID: 6464 Comm: syz.0.284 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  124.115520][ T6464] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  124.120293][ T6464] Call Trace:
[  124.121565][ T6464]  <TASK>
[  124.122681][ T6464]  dump_stack_lvl+0x16c/0x1f0
[  124.124794][ T6464]  should_fail_ex+0x497/0x5b0
[  124.126914][ T6464]  _copy_from_user+0x30/0xf0
[  124.129153][ T6464]  copy_msghdr_from_user+0x99/0x160
[  124.131507][ T6464]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  124.134162][ T6464]  ? rcu_is_watching+0x12/0xc0
[  124.136745][ T6464]  ? __pfx___lock_acquire+0x10/0x10
[  124.139388][ T6464]  ___sys_recvmsg+0xdc/0x1a0
[  124.141468][ T6464]  ? __pfx____sys_recvmsg+0x10/0x10
[  124.143788][ T6464]  ? find_held_lock+0x2d/0x110
[  124.145954][ T6464]  ? __pfx___might_resched+0x10/0x10
[  124.148382][ T6464]  ? __might_fault+0xe3/0x190
[  124.150540][ T6464]  do_recvmmsg+0x2ba/0x750
[  124.152532][ T6464]  ? __pfx_do_recvmmsg+0x10/0x10
[  124.154783][ T6464]  ? vfs_write+0x14d/0x1140
[  124.157077][ T6464]  ? __mutex_unlock_slowpath+0x164/0x650
[  124.159627][ T6464]  __x64_sys_recvmmsg+0x239/0x290
[  124.161780][ T6464]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  124.164189][ T6464]  do_syscall_64+0xcd/0x250
[  124.166253][ T6464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.168863][ T6464] RIP: 0033:0x7f07a51779f9
[  124.170903][ T6464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.179476][ T6464] RSP: 002b:00007f07a5eca048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  124.183005][ T6464] RAX: ffffffffffffffda RBX: 00007f07a5306058 RCX: 00007f07a51779f9
[  124.186385][ T6464] RDX: 040000000000049e RSI: 0000000020000300 RDI: 0000000000000003
[  124.190024][ T6464] RBP: 00007f07a5eca0a0 R08: 0000000000000000 R09: 0000000000000000
[  124.193632][ T6464] R10: 00001000000000fe R11: 0000000000000246 R12: 0000000000000001
[  124.197272][ T6464] R13: 000000000000006e R14: 00007f07a5306058 R15: 00007ffe2dcdc1c8
[  124.200696][ T6464]  </TASK>
[  124.740448][ T6472] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  124.743215][ T6472] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  124.749042][ T6472] vhci_hcd vhci_hcd.0: Device attached
[  124.791040][ T6478] vhci_hcd: connection closed
[  124.793093][ T1107] vhci_hcd: stop threads
[  124.796847][ T1107] vhci_hcd: release socket
[  124.823179][ T1107] vhci_hcd: disconnect device
[  124.905691][ T6483] xt_time: unknown flags 0x4
[  124.930055][ T6483] netlink: 28 bytes leftover after parsing attributes in process `syz.0.289'.
[  126.235905][ T6528] FAULT_INJECTION: forcing a failure.
[  126.235905][ T6528] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.244999][ T6528] CPU: 1 UID: 0 PID: 6528 Comm: syz.2.298 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  126.251237][ T6528] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.257285][ T6528] Call Trace:
[  126.259339][ T6528]  <TASK>
[  126.261021][ T6528]  dump_stack_lvl+0x16c/0x1f0
[  126.263707][ T6528]  should_fail_ex+0x497/0x5b0
[  126.266277][ T6528]  _copy_from_user+0x30/0xf0
[  126.268662][ T6528]  ucma_bind+0xa7/0x220
[  126.271009][ T6528]  ? __pfx_ucma_bind+0x10/0x10
[  126.273474][ T6528]  ? __might_fault+0xe3/0x190
[  126.275547][ T6528]  ? __pfx_ucma_bind+0x10/0x10
[  126.277683][ T6528]  ucma_write+0x205/0x340
[  126.279648][ T6528]  ? __pfx_ucma_write+0x10/0x10
[  126.282575][ T6528]  ? security_file_permission+0x98/0xc0
[  126.285289][ T6528]  ? __pfx_ucma_write+0x10/0x10
[  126.287448][ T6528]  vfs_write+0x29a/0x1140
[  126.289885][ T6528]  ? __pfx_vfs_write+0x10/0x10
[  126.292398][ T6528]  ? __fget_files+0x256/0x400
[  126.294386][ T6528]  ? __fget_light+0x173/0x210
[  126.296703][ T6528]  ksys_write+0x1f8/0x260
[  126.298959][ T6528]  ? __pfx_ksys_write+0x10/0x10
[  126.301094][ T6528]  do_syscall_64+0xcd/0x250
[  126.303101][ T6528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.306563][ T6528] RIP: 0033:0x7f7f5a7779f9
[  126.308757][ T6528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.316908][ T6528] RSP: 002b:00007f7f5b488048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  126.320158][ T6528] RAX: ffffffffffffffda RBX: 00007f7f5a906058 RCX: 00007f7f5a7779f9
[  126.323146][ T6528] RDX: 0000000000000090 RSI: 0000000020000100 RDI: 0000000000000006
[  126.326654][ T6528] RBP: 00007f7f5b4880a0 R08: 0000000000000000 R09: 0000000000000000
[  126.330067][ T6528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.333237][ T6528] R13: 000000000000006e R14: 00007f7f5a906058 R15: 00007fff267361a8
[  126.336175][ T6528]  </TASK>
[  126.898523][ T6531] netlink: 24 bytes leftover after parsing attributes in process `syz.3.299'.
[  127.115911][ T5348] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  127.233574][ T6538] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  127.237274][ T6538] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  127.263027][ T6538] vhci_hcd vhci_hcd.0: Device attached
[  127.283462][ T6539] vhci_hcd: connection closed
[  127.302018][ T1220] vhci_hcd: stop threads
[  127.307629][ T1220] vhci_hcd: release socket
[  127.309561][ T1220] vhci_hcd: disconnect device
[  127.503334][ T6547] FAULT_INJECTION: forcing a failure.
[  127.503334][ T6547] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  127.522964][ T6547] CPU: 2 UID: 0 PID: 6547 Comm: syz.2.303 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  127.528707][ T6547] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.538765][ T6547] Call Trace:
[  127.540285][ T6547]  <TASK>
[  127.541747][ T6547]  dump_stack_lvl+0x16c/0x1f0
[  127.543824][ T6547]  should_fail_ex+0x497/0x5b0
[  127.546403][ T6547]  _copy_from_user+0x30/0xf0
[  127.548707][ T6547]  copy_msghdr_from_user+0x99/0x160
[  127.551698][ T6547]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  127.554221][ T6547]  ? rcu_is_watching+0x12/0xc0
[  127.556350][ T6547]  ? __pfx___lock_acquire+0x10/0x10
[  127.558661][ T6547]  ___sys_recvmsg+0xdc/0x1a0
[  127.561109][ T6547]  ? __pfx____sys_recvmsg+0x10/0x10
[  127.563370][ T6547]  ? find_held_lock+0x2d/0x110
[  127.565575][ T6547]  ? __pfx___might_resched+0x10/0x10
[  127.568174][ T6547]  ? __might_fault+0xe3/0x190
[  127.570430][ T6547]  do_recvmmsg+0x2ba/0x750
[  127.572613][ T6547]  ? __pfx_do_recvmmsg+0x10/0x10
[  127.575645][ T6547]  ? vfs_write+0x14d/0x1140
[  127.578209][ T6547]  ? __mutex_unlock_slowpath+0x164/0x650
[  127.581261][ T6547]  __x64_sys_recvmmsg+0x239/0x290
[  127.583787][ T6547]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  127.586454][ T6547]  do_syscall_64+0xcd/0x250
[  127.588566][ T6547]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.591281][ T6547] RIP: 0033:0x7f7f5a7779f9
[  127.593389][ T6547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.602486][ T6547] RSP: 002b:00007f7f5b488048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  127.606561][ T6547] RAX: ffffffffffffffda RBX: 00007f7f5a906058 RCX: 00007f7f5a7779f9
[  127.610114][ T6547] RDX: 040000000000049e RSI: 0000000020000300 RDI: 0000000000000003
[  127.613602][ T6547] RBP: 00007f7f5b4880a0 R08: 0000000000000000 R09: 0000000000000000
[  127.617605][ T6547] R10: 00001000000000fe R11: 0000000000000246 R12: 0000000000000001
[  127.621191][ T6547] R13: 000000000000006e R14: 00007f7f5a906058 R15: 00007fff267361a8
[  127.624794][ T6547]  </TASK>
[  127.715614][   T39] kauditd_printk_skb: 46 callbacks suppressed
[  127.715629][   T39] audit: type=1400 audit(1722746648.866:755): avc:  denied  { ioctl } for  pid=6551 comm="syz.1.305" path="socket:[13232]" dev="sockfs" ino=13232 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  127.889371][ T6558] process 'syz.1.305' launched './file0' with NULL argv: empty string added
[  127.941678][ T6560] netlink: 14569 bytes leftover after parsing attributes in process `syz.3.306'.
[  128.054292][   T39] audit: type=1400 audit(1722746649.206:756): avc:  denied  { execute } for  pid=6554 comm="syz.3.306" path="/76/cpuacct.usage_percpu_user" dev="tmpfs" ino=455 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  128.252302][   T30] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  128.442680][   T30] usb 7-1: Using ep0 maxpacket: 8
[  128.449627][   T30] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  128.453397][   T30] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  128.458428][   T30] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  128.464173][   T30] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  128.468612][   T30] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  128.475634][   T30] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  128.478758][   T30] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  128.483213][   T30] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  128.488903][   T30] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  128.494067][   T30] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  128.499914][   T30] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  128.503497][   T30] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  128.508462][   T30] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  128.513427][   T30] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  128.518354][   T30] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  128.528482][   T30] usb 7-1: string descriptor 0 read error: -22
[  128.531466][   T30] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  128.538313][   T30] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.565184][   T30] adutux 7-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  128.697797][   T39] audit: type=1400 audit(1722746649.846:757): avc:  denied  { write } for  pid=6571 comm="syz.1.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  128.938993][   T30] usb 7-1: USB disconnect, device number 5
[  128.978414][ T6587] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  128.981428][ T6587] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  128.989151][ T6587] vhci_hcd vhci_hcd.0: Device attached
[  129.018310][ T6588] vhci_hcd: connection closed
[  129.020107][   T13] vhci_hcd: stop threads
[  129.024879][   T13] vhci_hcd: release socket
[  129.027046][   T13] vhci_hcd: disconnect device
[  129.157301][   T39] audit: type=1400 audit(1722746650.306:758): avc:  denied  { connect } for  pid=6594 comm="syz.1.317" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  129.662437][   T58] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  129.850567][   T58] usb 6-1: Using ep0 maxpacket: 8
[  129.900664][   T58] usb 6-1: New USB device found, idVendor=0421, idProduct=0508, bcdDevice=91.94
[  129.905329][   T58] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  129.909062][   T58] usb 6-1: Product: syz
[  129.910760][   T58] usb 6-1: Manufacturer: syz
[  129.912768][   T58] usb 6-1: SerialNumber: syz
[  129.937178][   T58] usb 6-1: config 0 descriptor??
[  129.954965][   T58] usb 6-1: bad CDC descriptors
[  129.966468][   T58] cdc_acm 6-1:0.0: Zero length descriptor references
[  129.969617][   T58] cdc_acm 6-1:0.0: probe with driver cdc_acm failed with error -22
[  130.902470][ T5348] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  131.267681][   T57] usb 6-1: USB disconnect, device number 7
[  131.392255][  T834] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  131.601461][  T834] usb 7-1: Using ep0 maxpacket: 32
[  131.630581][  T834] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[  131.641531][  T834] usb 7-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  131.645947][  T834] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  131.649626][  T834] usb 7-1: Product: syz
[  131.651447][  T834] usb 7-1: Manufacturer: syz
[  131.654810][  T834] usb 7-1: SerialNumber: syz
[  131.661766][  T834] usb 7-1: config 0 descriptor??
[  131.665737][ T6620] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[  131.671060][  T834] hub 7-1:0.0: bad descriptor, ignoring hub
[  131.679093][  T834] hub 7-1:0.0: probe with driver hub failed with error -5
[  131.685414][  T834] input: syz syz as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input9
[  131.933536][  T834] usb 7-1: USB disconnect, device number 6
[  131.936229][    C0] usbtouchscreen 7-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[  132.401485][ T6632] netlink: 4 bytes leftover after parsing attributes in process `syz.0.327'.
[  132.407182][ T6632] netlink: 12 bytes leftover after parsing attributes in process `syz.0.327'.
[  132.819080][   T39] audit: type=1400 audit(1722746653.966:759): avc:  denied  { mount } for  pid=6638 comm="syz.2.330" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  132.909648][   T39] audit: type=1400 audit(1722746654.056:760): avc:  denied  { unmount } for  pid=5342 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  133.482457][   T39] audit: type=1400 audit(1722746654.636:761): avc:  denied  { create } for  pid=6646 comm="syz.2.333" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  133.564632][   T39] audit: type=1400 audit(1722746654.706:762): avc:  denied  { create } for  pid=6650 comm="syz.2.335" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  133.591188][   T39] audit: type=1400 audit(1722746654.726:763): avc:  denied  { bind } for  pid=6650 comm="syz.2.335" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  133.601900][   T39] audit: type=1400 audit(1722746654.736:764): avc:  denied  { write } for  pid=6650 comm="syz.2.335" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  133.614159][   T39] audit: type=1400 audit(1722746654.766:765): avc:  denied  { write } for  pid=6653 comm="syz.3.336" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  133.678174][   T39] audit: type=1400 audit(1722746654.826:766): avc:  denied  { setattr } for  pid=6653 comm="syz.3.336" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  133.773841][   T39] audit: type=1400 audit(1722746654.926:767): avc:  denied  { create } for  pid=6648 comm="syz.0.334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  133.787287][   T39] audit: type=1400 audit(1722746654.926:768): avc:  denied  { connect } for  pid=6648 comm="syz.0.334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  133.962186][  T834] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  134.152159][  T834] usb 7-1: Using ep0 maxpacket: 32
[  134.157138][  T834] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[  134.182991][  T834] usb 7-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  134.187115][  T834] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.190796][  T834] usb 7-1: Product: syz
[  134.192538][  T834] usb 7-1: Manufacturer: syz
[  134.194938][  T834] usb 7-1: SerialNumber: syz
[  134.200287][  T834] usb 7-1: config 0 descriptor??
[  134.203452][ T6656] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  134.207963][  T834] hub 7-1:0.0: bad descriptor, ignoring hub
[  134.211028][  T834] hub 7-1:0.0: probe with driver hub failed with error -5
[  134.217752][  T834] input: syz syz as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input10
[  134.430445][   T58] usb 7-1: USB disconnect, device number 7
[  134.430485][    C0] usbtouchscreen 7-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[  135.261868][ T6685] netlink: 12 bytes leftover after parsing attributes in process `syz.2.346'.
[  135.262350][   T58] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  135.298181][ T6685] bond1: entered allmulticast mode
[  135.473233][   T58] usb 6-1: Using ep0 maxpacket: 32
[  135.480209][   T58] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[  135.488722][   T58] usb 6-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  135.501031][   T58] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  135.506234][   T58] usb 6-1: Product: syz
[  135.508215][   T58] usb 6-1: Manufacturer: syz
[  135.510195][   T58] usb 6-1: SerialNumber: syz
[  135.521828][   T58] usb 6-1: config 0 descriptor??
[  135.526910][ T6676] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  135.533804][   T58] hub 6-1:0.0: bad descriptor, ignoring hub
[  135.537193][   T58] hub 6-1:0.0: probe with driver hub failed with error -5
[  135.546870][   T58] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input11
[  135.746066][  T834] usb 6-1: USB disconnect, device number 8
[  135.746181][    C3] usbtouchscreen 6-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[  136.394093][ T5348] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  137.123071][ T6720] FAULT_INJECTION: forcing a failure.
[  137.123071][ T6720] name failslab, interval 1, probability 0, space 0, times 0
[  137.128393][ T6720] CPU: 2 UID: 0 PID: 6720 Comm: syz.3.356 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  137.132971][ T6720] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  137.138296][ T6720] Call Trace:
[  137.139922][ T6720]  <TASK>
[  137.141348][ T6720]  dump_stack_lvl+0x16c/0x1f0
[  137.143686][ T6720]  should_fail_ex+0x497/0x5b0
[  137.146225][ T6720]  ? fs_reclaim_acquire+0xae/0x160
[  137.148538][ T6720]  should_failslab+0xc2/0x120
[  137.150540][ T6720]  kmem_cache_alloc_node_noprof+0x71/0x310
[  137.152731][ T6720]  ? __alloc_skb+0x2b1/0x380
[  137.154711][ T6720]  __alloc_skb+0x2b1/0x380
[  137.156646][ T6720]  ? __pfx___alloc_skb+0x10/0x10
[  137.158753][ T6720]  ? __nla_parse+0x40/0x60
[  137.160611][ T6720]  ovs_dp_cmd_get+0x67/0x340
[  137.162502][ T6720]  genl_family_rcv_msg_doit+0x202/0x2f0
[  137.165509][ T6720]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  137.168291][ T6720]  ? __radix_tree_lookup+0x21f/0x2c0
[  137.170468][ T6720]  genl_rcv_msg+0x565/0x800
[  137.172431][ T6720]  ? __pfx_genl_rcv_msg+0x10/0x10
[  137.174663][ T6720]  ? __pfx___lock_acquire+0x10/0x10
[  137.176854][ T6720]  ? __pfx_ovs_dp_cmd_get+0x10/0x10
[  137.178987][ T6720]  netlink_rcv_skb+0x16b/0x440
[  137.181154][ T6720]  ? __pfx_genl_rcv_msg+0x10/0x10
[  137.183384][ T6720]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  137.185743][ T6720]  ? down_read+0xc9/0x330
[  137.187670][ T6720]  ? __pfx_down_read+0x10/0x10
[  137.190302][ T6720]  ? rcu_is_watching+0x12/0xc0
[  137.192697][ T6720]  genl_rcv+0x28/0x40
[  137.194362][ T6720]  netlink_unicast+0x544/0x830
[  137.196407][ T6720]  ? __pfx_netlink_unicast+0x10/0x10
[  137.198610][ T6720]  netlink_sendmsg+0x8b8/0xd70
[  137.201017][ T6720]  ? __pfx_netlink_sendmsg+0x10/0x10
[  137.203250][ T6720]  ? __import_iovec+0x1fd/0x6e0
[  137.205741][ T6720]  ____sys_sendmsg+0xab5/0xc90
[  137.208462][ T6720]  ? copy_msghdr_from_user+0x10b/0x160
[  137.211777][ T6720]  ? __pfx_____sys_sendmsg+0x10/0x10
[  137.213997][ T6720]  ? find_held_lock+0x2d/0x110
[  137.215936][ T6720]  ? __pfx___lock_acquire+0x10/0x10
[  137.219304][ T6720]  ___sys_sendmsg+0x135/0x1e0
[  137.221593][ T6720]  ? __pfx____sys_sendmsg+0x10/0x10
[  137.223885][ T6720]  ? ksys_write+0x21c/0x260
[  137.225923][ T6720]  ? __fget_light+0x173/0x210
[  137.228016][ T6720]  __sys_sendmsg+0x117/0x1f0
[  137.230153][ T6720]  ? __pfx___sys_sendmsg+0x10/0x10
[  137.233071][ T6720]  do_syscall_64+0xcd/0x250
[  137.235257][ T6720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.237855][ T6720] RIP: 0033:0x7f38549779f9
[  137.239821][ T6720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.250632][ T6720] RSP: 002b:00007f3855822048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  137.255234][ T6720] RAX: ffffffffffffffda RBX: 00007f3854b05f80 RCX: 00007f38549779f9
[  137.259662][ T6720] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[  137.264111][ T6720] RBP: 00007f38558220a0 R08: 0000000000000000 R09: 0000000000000000
[  137.268624][ T6720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.273147][ T6720] R13: 000000000000000b R14: 00007f3854b05f80 R15: 00007ffedb9bcf78
[  137.277250][ T6720]  </TASK>
[  138.077204][ T6730] netlink: 16 bytes leftover after parsing attributes in process `syz.3.359'.
[  138.203512][   T39] kauditd_printk_skb: 9 callbacks suppressed
[  138.203527][   T39] audit: type=1400 audit(1722746659.346:778): avc:  denied  { bind } for  pid=6733 comm="syz.2.362" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  138.234975][ T6735] FAULT_INJECTION: forcing a failure.
[  138.234975][ T6735] name failslab, interval 1, probability 0, space 0, times 0
[  138.241715][ T6735] CPU: 1 UID: 0 PID: 6735 Comm: syz.2.362 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  138.246744][ T6735] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  138.251185][ T6735] Call Trace:
[  138.255019][ T6735]  <TASK>
[  138.256391][ T6735]  dump_stack_lvl+0x16c/0x1f0
[  138.258676][ T6735]  should_fail_ex+0x497/0x5b0
[  138.261127][ T6735]  should_failslab+0xc2/0x120
[  138.263726][ T6735]  kmem_cache_alloc_node_noprof+0x71/0x310
[  138.266697][ T6735]  ? __alloc_skb+0x2b1/0x380
[  138.269251][ T6735]  __alloc_skb+0x2b1/0x380
[  138.271272][ T6735]  ? __pfx___alloc_skb+0x10/0x10
[  138.273726][ T6735]  ? net_generic+0xea/0x2a0
[  138.275981][ T6735]  ? __pfx_lock_release+0x10/0x10
[  138.278405][ T6735]  tipc_buf_acquire+0x26/0xe0
[  138.280627][ T6735]  tipc_msg_create+0x39/0x1d0
[  138.283540][ T6735]  tipc_group_proto_xmit+0x150/0x7c0
[  138.286815][ T6735]  tipc_group_cong+0x438/0x530
[  138.289453][ T6735]  ? __pfx_tipc_group_cong+0x10/0x10
[  138.291999][ T6735]  ? kfree+0x12a/0x3b0
[  138.293932][ T6735]  ? tipc_dest_pop+0x223/0x2d0
[  138.295978][ T6735]  tipc_send_group_anycast+0x33e/0x850
[  138.298126][ T6735]  ? __pfx_mark_lock+0x10/0x10
[  138.300323][ T6735]  ? __pfx_tipc_send_group_anycast+0x10/0x10
[  138.303372][ T6735]  ? __pfx_mark_lock+0x10/0x10
[  138.305616][ T6735]  ? avc_has_perm_noaudit+0x119/0x3a0
[  138.308426][ T6735]  ? __pfx_lock_release+0x10/0x10
[  138.311163][ T6735]  ? hlock_class+0x4e/0x130
[  138.313179][ T6735]  ? __lock_acquire+0x1620/0x3cb0
[  138.315471][ T6735]  __tipc_sendmsg+0x126d/0x1970
[  138.318465][ T6735]  ? __pfx___tipc_sendmsg+0x10/0x10
[  138.321399][ T6735]  ? __pfx_mark_lock+0x10/0x10
[  138.323272][ T6735]  ? lock_acquire+0x1b1/0x560
[  138.325335][ T6735]  ? find_held_lock+0x2d/0x110
[  138.327476][ T6735]  ? mark_held_locks+0x9f/0xe0
[  138.329655][ T6735]  ? tipc_sendmsg+0x41/0x70
[  138.331605][ T6735]  tipc_sendmsg+0x4f/0x70
[  138.334073][ T6735]  ____sys_sendmsg+0xab5/0xc90
[  138.336326][ T6735]  ? copy_msghdr_from_user+0x10b/0x160
[  138.338783][ T6735]  ? __pfx_____sys_sendmsg+0x10/0x10
[  138.341233][ T6735]  ? find_held_lock+0x2d/0x110
[  138.343298][ T6735]  ? __pfx___lock_acquire+0x10/0x10
[  138.345627][ T6735]  ___sys_sendmsg+0x135/0x1e0
[  138.347664][ T6735]  ? __pfx____sys_sendmsg+0x10/0x10
[  138.349864][ T6735]  ? ksys_write+0x21c/0x260
[  138.351786][ T6735]  ? __fget_light+0x173/0x210
[  138.353831][ T6735]  __sys_sendmsg+0x117/0x1f0
[  138.355952][ T6735]  ? __pfx___sys_sendmsg+0x10/0x10
[  138.358281][ T6735]  do_syscall_64+0xcd/0x250
[  138.360375][ T6735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.363012][ T6735] RIP: 0033:0x7f7f5a7779f9
[  138.365228][ T6735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.375448][ T6735] RSP: 002b:00007f7f5b4a9048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  138.379279][ T6735] RAX: ffffffffffffffda RBX: 00007f7f5a905f80 RCX: 00007f7f5a7779f9
[  138.383520][ T6735] RDX: 0000000000000000 RSI: 0000000020000540 RDI: 0000000000000005
[  138.386992][ T6735] RBP: 00007f7f5b4a90a0 R08: 0000000000000000 R09: 0000000000000000
[  138.391181][ T6735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.394756][ T6735] R13: 000000000000000b R14: 00007f7f5a905f80 R15: 00007fff267361a8
[  138.398674][ T6735]  </TASK>
[  138.400169][    C1] vkms_vblank_simulate: vblank timer overrun
[  138.673150][ T6747] netlink: 'syz.2.364': attribute type 4 has an invalid length.
[  138.700265][   T57] lo speed is unknown, defaulting to 1000
[  138.776148][ T1381] ieee802154 phy0 wpan0: encryption failed: -22
[  138.779760][ T1381] ieee802154 phy1 wpan1: encryption failed: -22
[  138.903919][   T39] audit: type=1400 audit(1722746660.056:779): avc:  denied  { read } for  pid=6748 comm="syz.1.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  138.927389][   T39] audit: type=1400 audit(1722746660.076:780): avc:  denied  { mount } for  pid=6751 comm="syz.0.366" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  139.704968][   T39] audit: type=1400 audit(1722746660.856:781): avc:  denied  { unmount } for  pid=5339 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  139.811941][   T39] audit: type=1400 audit(1722746660.956:782): avc:  denied  { nlmsg_write } for  pid=6766 comm="syz.0.370" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  139.959246][ T6770] lo speed is unknown, defaulting to 1000
[  140.102064][ T6765] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  140.118704][ T6765] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  140.188209][ T6779] netlink: 28 bytes leftover after parsing attributes in process `syz.0.373'.
[  140.196954][ T6779] atomic_op ffff888048d1b998 conn xmit_atomic 0000000000000000
[  141.016901][ T6787] netlink: 28 bytes leftover after parsing attributes in process `syz.0.375'.
[  141.261299][   T39] audit: type=1400 audit(1722746662.406:783): avc:  denied  { write } for  pid=6792 comm="syz.0.377" name="nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  141.283212][   T39] audit: type=1400 audit(1722746662.416:784): avc:  denied  { getopt } for  pid=6792 comm="syz.0.377" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  141.363661][   T39] audit: type=1400 audit(1722746662.506:785): avc:  denied  { getopt } for  pid=6792 comm="syz.0.377" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  141.389556][   T39] audit: type=1400 audit(1722746662.506:786): avc:  denied  { map } for  pid=6792 comm="syz.0.377" path="/dev/nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  141.817345][ T6797] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x2
[  142.486712][ T6804] netlink: 24 bytes leftover after parsing attributes in process `syz.0.381'.
[  142.612015][ T6807] lo speed is unknown, defaulting to 1000
[  142.654317][   T39] audit: type=1400 audit(1722746663.806:787): avc:  denied  { create } for  pid=6806 comm="syz.0.382" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  142.895714][ T6815] netlink: 8 bytes leftover after parsing attributes in process `syz.1.385'.
[  143.128373][ T6830] x_tables: duplicate underflow at hook 2
[  143.688651][ T6841] syz.2.391: attempt to access beyond end of device
[  143.688651][ T6841] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  143.696550][ T6841] efs: cannot read volume header
[  143.820761][   T39] kauditd_printk_skb: 6 callbacks suppressed
[  143.820776][   T39] audit: type=1400 audit(1722746664.956:794): avc:  denied  { connect } for  pid=6840 comm="syz.2.391" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  143.828579][   T39] audit: type=1400 audit(1722746664.986:795): avc:  denied  { shutdown } for  pid=6840 comm="syz.2.391" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  143.858330][ T6841] 9pnet_fd: Insufficient options for proto=fd
[  144.032191][   T39] audit: type=1400 audit(1722746665.176:796): avc:  denied  { mounton } for  pid=6848 comm="syz.3.393" path="/89/file0" dev="tmpfs" ino=522 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  144.034562][ T6854] syz.3.393: attempt to access beyond end of device
[  144.034562][ T6854] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0
[  144.065777][ T6854] isofs_fill_super: bread failed, dev=nbd3, iso_blknum=16, block=32
[  144.119165][ T6851] team0: Port device team_slave_0 removed
[  144.131321][ T6851] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  144.277916][ T6868] program syz.0.399 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  144.292216][ T6868] FAULT_INJECTION: forcing a failure.
[  144.292216][ T6868] name failslab, interval 1, probability 0, space 0, times 0
[  144.297690][ T6868] CPU: 3 UID: 0 PID: 6868 Comm: syz.0.399 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  144.299601][    C1] vkms_vblank_simulate: vblank timer overrun
[  144.302258][ T6868] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.309862][ T6868] Call Trace:
[  144.311243][ T6868]  <TASK>
[  144.312421][ T6868]  dump_stack_lvl+0x16c/0x1f0
[  144.314488][ T6868]  should_fail_ex+0x497/0x5b0
[  144.318314][ T6868]  ? fs_reclaim_acquire+0xae/0x160
[  144.320995][ T6868]  should_failslab+0xc2/0x120
[  144.323129][ T6868]  __kmalloc_noprof+0xcb/0x400
[  144.325635][ T6868]  bio_kmalloc+0x41/0x70
[  144.331849][ T6868]  blk_rq_map_kern+0x400/0x760
[  144.333871][ T6868]  ? capable+0xd4/0x110
[  144.335653][ T6868]  scsi_ioctl+0x95f/0x1840
[  144.338112][ T6868]  ? __pfx_scsi_ioctl+0x10/0x10
[  144.340810][ T6868]  ? avc_has_perm_noaudit+0x143/0x3a0
[  144.343540][ T6868]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  144.346393][ T6868]  ? do_vfs_ioctl+0x515/0x1ad0
[  144.348801][ T6868]  ? __pfx_avc_has_perm+0x10/0x10
[  144.351395][ T6868]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  144.354251][ T6868]  sg_ioctl+0xb02/0x2760
[  144.356551][ T6868]  ? inode_has_perm+0x16f/0x1d0
[  144.359516][ T6868]  ? file_has_perm+0x286/0x360
[  144.362471][ T6868]  ? __pfx_sg_ioctl+0x10/0x10
[  144.364786][ T6868]  ? __pfx_file_has_perm+0x10/0x10
[  144.367194][ T6868]  ? selinux_file_ioctl+0xb4/0x270
[  144.369415][ T6868]  ? __pfx_sg_ioctl+0x10/0x10
[  144.371405][ T6868]  __x64_sys_ioctl+0x193/0x220
[  144.373949][ T6868]  do_syscall_64+0xcd/0x250
[  144.375917][ T6868]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.378374][ T6868] RIP: 0033:0x7f07a51779f9
[  144.380322][ T6868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.389150][ T6868] RSP: 002b:00007f07a5eeb048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  144.392924][ T6868] RAX: ffffffffffffffda RBX: 00007f07a5305f80 RCX: 00007f07a51779f9
[  144.396707][ T6868] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000003
[  144.400987][ T6868] RBP: 00007f07a5eeb0a0 R08: 0000000000000000 R09: 0000000000000000
[  144.405148][ T6868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.409550][ T6868] R13: 000000000000000b R14: 00007f07a5305f80 R15: 00007ffe2dcdc1c8
[  144.413101][ T6868]  </TASK>
[  144.888130][ T6881] netlink: 28 bytes leftover after parsing attributes in process `syz.3.402'.
[  145.647525][ T6895] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.652893][ T6895] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.659861][ T6895] bridge0: entered allmulticast mode
[  145.853149][  T835] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  145.855783][ T6898] tmpfs: Bad value for 'nr_inodes'
[  145.855783][   T39] audit: type=1400 audit(1722746667.006:797): avc:  denied  { remount } for  pid=6897 comm="syz.1.408" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  146.052359][  T835] usb 7-1: Using ep0 maxpacket: 8
[  146.064331][  T835] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  146.072461][  T835] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  146.077019][  T835] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  146.081590][  T835] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  146.098386][  T835] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  146.110963][  T835] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  146.115685][  T835] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.357551][  T835] usb 7-1: GET_CAPABILITIES returned 0
[  146.359968][  T835] usbtmc 7-1:16.0: can't read capabilities
[  146.567624][   T39] audit: type=1400 audit(1722746667.716:798): avc:  denied  { bind } for  pid=6902 comm="syz.0.410" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  146.568175][ T6893] Bluetooth: MGMT ver 1.23
[  146.574812][   T39] audit: type=1400 audit(1722746667.716:799): avc:  denied  { name_bind } for  pid=6902 comm="syz.0.410" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  146.574862][   T39] audit: type=1400 audit(1722746667.716:800): avc:  denied  { node_bind } for  pid=6902 comm="syz.0.410" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[  146.587847][  T835] usb 7-1: USB disconnect, device number 8
[  146.595087][   T39] audit: type=1400 audit(1722746667.716:801): avc:  denied  { ioctl } for  pid=6892 comm="syz.2.406" path="/dev/fb1" dev="devtmpfs" ino=642 ioctlcmd=0x4620 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  146.608067][   T39] audit: type=1400 audit(1722746667.726:802): avc:  denied  { setopt } for  pid=6902 comm="syz.0.410" lport=20001 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  146.616318][   T39] audit: type=1400 audit(1722746667.726:803): avc:  denied  { connect } for  pid=6902 comm="syz.0.410" lport=20001 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  146.626979][ T6905] netlink: 28 bytes leftover after parsing attributes in process `syz.3.411'.
[  146.794090][ T6911] netlink: 20 bytes leftover after parsing attributes in process `syz.1.412'.
[  147.371850][ T6925] Bluetooth: MGMT ver 1.23
[  147.497312][ T6933] netlink: 68 bytes leftover after parsing attributes in process `syz.0.421'.
[  147.535733][ T6933] netlink: 'syz.0.421': attribute type 2 has an invalid length.
[  148.395681][ T5348] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  148.637857][ T6949] netlink: 68 bytes leftover after parsing attributes in process `syz.2.427'.
[  148.672856][ T6951] FAULT_INJECTION: forcing a failure.
[  148.672856][ T6951] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  148.679525][ T6951] CPU: 0 UID: 0 PID: 6951 Comm: syz.0.428 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  148.684268][ T6951] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  148.688436][ T6951] Call Trace:
[  148.689763][ T6951]  <TASK>
[  148.690931][ T6951]  dump_stack_lvl+0x16c/0x1f0
[  148.692801][ T6951]  should_fail_ex+0x497/0x5b0
[  148.694656][ T6951]  _copy_to_user+0x30/0xc0
[  148.696297][ T6951]  simple_read_from_buffer+0xd0/0x160
[  148.698237][ T6951]  proc_fail_nth_read+0x1b0/0x290
[  148.700315][ T6951]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  148.702749][ T6951]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  148.705122][ T6951]  vfs_read+0x1d4/0xbd0
[  148.707003][ T6951]  ? __fdget_pos+0xeb/0x180
[  148.709007][ T6951]  ? __pfx_vfs_read+0x10/0x10
[  148.710841][ T6951]  ? __pfx___mutex_lock+0x10/0x10
[  148.712937][ T6951]  ? __fget_files+0x256/0x400
[  148.714756][ T6951]  ksys_read+0x12f/0x260
[  148.716174][ T6951]  ? __pfx_ksys_read+0x10/0x10
[  148.717748][ T6951]  do_syscall_64+0xcd/0x250
[  148.719255][ T6951]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.721196][ T6951] RIP: 0033:0x7f07a517643c
[  148.722661][ T6951] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[  148.725197][ T6953] input: syz1 as /devices/virtual/input/input12
[  148.730463][ T6951] RSP: 002b:00007f07a5eeb040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  148.730507][ T6951] RAX: ffffffffffffffda RBX: 00007f07a5305f80 RCX: 00007f07a517643c
[  148.730519][ T6951] RDX: 000000000000000f RSI: 00007f07a5eeb0b0 RDI: 0000000000000004
[  148.743406][ T6951] RBP: 00007f07a5eeb0a0 R08: 0000000000000000 R09: 0000000000000000
[  148.747116][ T6951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  148.750399][ T6951] R13: 000000000000000b R14: 00007f07a5305f80 R15: 00007ffe2dcdc1c8
[  148.753601][ T6951]  </TASK>
[  148.755321][    C0] vxcan1: j1939_tp_rxtimer: 0xffff88802f934c00: rx timeout, send abort
[  148.763129][    C0] vxcan1: j1939_xtp_rx_abort_one: 0xffff88802f934c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  148.934720][ T6965] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  148.988667][ T6965] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  149.327537][ T6974] netlink: 28 bytes leftover after parsing attributes in process `syz.3.437'.
[  149.411075][   T39] kauditd_printk_skb: 33 callbacks suppressed
[  149.411092][   T39] audit: type=1326 audit(1722746670.556:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6978 comm="syz.1.439" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb87c3779f9 code=0x0
[  149.657428][ T6991] netlink: 72 bytes leftover after parsing attributes in process `syz.3.441'.
[  150.662331][  T832] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  150.883764][  T832] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  150.891078][  T832] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  150.898999][  T832] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  150.906131][  T832] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  150.937390][  T832] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  150.943682][  T832] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  150.948577][  T832] usb 6-1: Manufacturer: syz
[  150.953353][  T832] usb 6-1: config 0 descriptor??
[  150.962658][   T35] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  151.142220][   T35] usb 7-1: Using ep0 maxpacket: 32
[  151.148350][   T35] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[  151.178413][   T35] usb 7-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  151.183327][   T35] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.206775][   T35] usb 7-1: Product: syz
[  151.208710][   T35] usb 7-1: Manufacturer: syz
[  151.210638][   T35] usb 7-1: SerialNumber: syz
[  151.219512][   T35] usb 7-1: config 0 descriptor??
[  151.225542][ T7003] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  151.230660][   T35] hub 7-1:0.0: bad descriptor, ignoring hub
[  151.234048][   T35] hub 7-1:0.0: probe with driver hub failed with error -5
[  151.244374][   T35] input: syz syz as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input13
[  151.377443][  T832] appleir 0003:05AC:8243.0004: unknown main item tag 0x0
[  151.383094][  T832] appleir 0003:05AC:8243.0004: No inputs registered, leaving
[  151.397224][  T832] appleir 0003:05AC:8243.0004: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  151.480349][ T5385] usb 7-1: USB disconnect, device number 9
[  151.480448][    C3] usbtouchscreen 7-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[  151.511705][ T7015] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  151.514644][ T7015] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  151.518235][ T7015] vhci_hcd vhci_hcd.0: Device attached
[  151.527827][ T7016] vhci_hcd: connection closed
[  151.528129][   T73] vhci_hcd: stop threads
[  151.531656][   T73] vhci_hcd: release socket
[  151.533536][   T73] vhci_hcd: disconnect device
[  151.675482][  T833] usb 6-1: USB disconnect, device number 9
[  151.695980][ T7003] xt_connbytes: Forcing CT accounting to be enabled
[  151.698860][ T7003] No such timeout policy "syz0"
[  151.786932][   T39] audit: type=1400 audit(1722746672.936:838): avc:  denied  { write } for  pid=7019 comm="syz.3.452" path="socket:[15096]" dev="sockfs" ino=15096 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  151.805282][   T39] audit: type=1400 audit(1722746672.936:839): avc:  denied  { setopt } for  pid=7019 comm="syz.3.452" lport=58698 faddr=::ffff:10.1.1.2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  151.814402][   T39] audit: type=1400 audit(1722746672.946:840): avc:  denied  { accept } for  pid=7019 comm="syz.3.452" lport=58698 faddr=::ffff:10.1.1.2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  152.193949][ T7027] syzkaller1: entered promiscuous mode
[  152.196637][ T7027] syzkaller1: entered allmulticast mode
[  152.479294][ T7045] 9pnet_virtio: no channels available for device syz
[  152.491811][ T7047] netlink: 20 bytes leftover after parsing attributes in process `syz.0.453'.
[  152.509327][   T39] audit: type=1400 audit(1722746673.656:841): avc:  denied  { setopt } for  pid=7025 comm="syz.0.453" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  152.547523][   T39] audit: type=1400 audit(1722746673.686:842): avc:  denied  { setopt } for  pid=7039 comm="syz.3.457" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  153.023763][ T7048] netlink: 'syz.3.457': attribute type 10 has an invalid length.
[  153.248077][   T39] audit: type=1400 audit(1722746674.396:843): avc:  denied  { ioctl } for  pid=7025 comm="syz.0.453" path="socket:[15119]" dev="sockfs" ino=15119 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  153.523897][ T5353] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  153.554081][ T7058] FAULT_INJECTION: forcing a failure.
[  153.554081][ T7058] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.561174][ T7058] CPU: 0 UID: 0 PID: 7058 Comm: syz.1.462 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  153.566252][ T7058] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.570980][ T7058] Call Trace:
[  153.572454][ T7058]  <TASK>
[  153.573834][ T7058]  dump_stack_lvl+0x16c/0x1f0
[  153.575997][ T7058]  should_fail_ex+0x497/0x5b0
[  153.578068][ T7058]  _copy_from_user+0x30/0xf0
[  153.580167][ T7058]  snd_pcm_oss_write2+0x1c6/0x3f0
[  153.582752][ T7058]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  153.585288][ T7058]  ? snd_pcm_kernel_ioctl+0x257/0x2d0
[  153.587754][ T7058]  ? snd_pcm_oss_prepare+0x11e/0x220
[  153.590098][ T7058]  snd_pcm_oss_write+0x733/0xa10
[  153.592823][ T7058]  ? rw_verify_area+0xd0/0x6c0
[  153.595236][ T7058]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  153.597732][ T7058]  vfs_write+0x29a/0x1140
[  153.599948][ T7058]  ? __pfx_vfs_write+0x10/0x10
[  153.602322][ T7058]  ? __fget_files+0x256/0x400
[  153.605183][ T7058]  ? __fget_light+0x173/0x210
[  153.608060][ T7058]  ksys_write+0x12f/0x260
[  153.610409][ T7058]  ? __pfx_ksys_write+0x10/0x10
[  153.612458][ T7058]  do_syscall_64+0xcd/0x250
[  153.614375][ T7058]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.616482][ T7058] RIP: 0033:0x7fb87c3779f9
[  153.617946][ T7058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.625213][ T7058] RSP: 002b:00007fb87d219048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  153.629491][ T7058] RAX: ffffffffffffffda RBX: 00007fb87c505f80 RCX: 00007fb87c3779f9
[  153.633386][ T7058] RDX: 0000000000004000 RSI: 00000000200012c0 RDI: 0000000000000003
[  153.636812][ T7058] RBP: 00007fb87d2190a0 R08: 0000000000000000 R09: 0000000000000000
[  153.640132][ T7058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.643606][ T7058] R13: 000000000000000b R14: 00007fb87c505f80 R15: 00007ffcca79dfb8
[  153.647044][ T7058]  </TASK>
[  153.896947][ T7065] Cannot find set identified by id 498 to match
[  154.422482][   T64] Bluetooth: hci4: Frame reassembly failed (-84)
[  154.944532][   T39] audit: type=1326 audit(1722746676.096:844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7083 comm="syz.1.470" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb87c3779f9 code=0x0
[  155.243029][ T7091] netlink: 28 bytes leftover after parsing attributes in process `syz.0.472'.
[  155.298745][ T7093] netlink: 8 bytes leftover after parsing attributes in process `syz.0.473'.
[  155.310134][ T7093] FAULT_INJECTION: forcing a failure.
[  155.310134][ T7093] name failslab, interval 1, probability 0, space 0, times 0
[  155.316878][ T7093] CPU: 2 UID: 0 PID: 7093 Comm: syz.0.473 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  155.321939][ T7093] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.326791][ T7093] Call Trace:
[  155.328192][ T7093]  <TASK>
[  155.329346][ T7093]  dump_stack_lvl+0x16c/0x1f0
[  155.331239][ T7093]  should_fail_ex+0x497/0x5b0
[  155.333367][ T7093]  ? fs_reclaim_acquire+0xae/0x160
[  155.335763][ T7093]  should_failslab+0xc2/0x120
[  155.337832][ T7093]  kmem_cache_alloc_node_noprof+0x71/0x310
[  155.340310][ T7093]  ? __alloc_skb+0x2b1/0x380
[  155.342136][ T7093]  __alloc_skb+0x2b1/0x380
[  155.344119][ T7093]  ? __pfx___alloc_skb+0x10/0x10
[  155.346235][ T7093]  ? genl_rcv_msg+0x4bd/0x800
[  155.348477][ T7093]  netlink_ack+0x164/0xb90
[  155.350381][ T7093]  netlink_rcv_skb+0x348/0x440
[  155.352207][ T7093]  ? __pfx_genl_rcv_msg+0x10/0x10
[  155.353986][ T7093]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  155.355818][ T7093]  ? down_read+0xc9/0x330
[  155.357762][ T7093]  ? __pfx_down_read+0x10/0x10
[  155.359791][ T7093]  ? netlink_deliver_tap+0x1ae/0xd90
[  155.362133][ T7093]  genl_rcv+0x28/0x40
[  155.363894][ T7093]  netlink_unicast+0x544/0x830
[  155.366029][ T7093]  ? __pfx_netlink_unicast+0x10/0x10
[  155.368389][ T7093]  netlink_sendmsg+0x8b8/0xd70
[  155.370663][ T7093]  ? __pfx_netlink_sendmsg+0x10/0x10
[  155.373692][ T7093]  ? __import_iovec+0x1fd/0x6e0
[  155.376343][ T7093]  ____sys_sendmsg+0xab5/0xc90
[  155.378624][ T7093]  ? copy_msghdr_from_user+0x10b/0x160
[  155.381242][ T7093]  ? __pfx_____sys_sendmsg+0x10/0x10
[  155.384058][ T7093]  ? find_held_lock+0x2d/0x110
[  155.386727][ T7093]  ? __pfx___lock_acquire+0x10/0x10
[  155.389353][ T7093]  ___sys_sendmsg+0x135/0x1e0
[  155.391478][ T7093]  ? __pfx____sys_sendmsg+0x10/0x10
[  155.393818][ T7093]  ? ksys_write+0x21c/0x260
[  155.395833][ T7093]  ? __fget_light+0x173/0x210
[  155.397970][ T7093]  __sys_sendmsg+0x117/0x1f0
[  155.400060][ T7093]  ? __pfx___sys_sendmsg+0x10/0x10
[  155.402405][ T7093]  do_syscall_64+0xcd/0x250
[  155.404430][ T7093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.407253][ T7093] RIP: 0033:0x7f07a51779f9
[  155.409373][ T7093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.419112][ T7093] RSP: 002b:00007f07a5eeb048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  155.422999][ T7093] RAX: ffffffffffffffda RBX: 00007f07a5305f80 RCX: 00007f07a51779f9
[  155.426947][ T7093] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000008
[  155.430834][ T7093] RBP: 00007f07a5eeb0a0 R08: 0000000000000000 R09: 0000000000000000
[  155.434540][ T7093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.438389][ T7093] R13: 000000000000000b R14: 00007f07a5305f80 R15: 00007ffe2dcdc1c8
[  155.442012][ T7093]  </TASK>
[  155.870046][ T7101] bridge_slave_1: left allmulticast mode
[  155.873842][ T7101] bridge_slave_1: left promiscuous mode
[  155.877873][ T7101] bridge0: port 2(bridge_slave_1) entered disabled state
[  155.905339][ T7101] bridge_slave_0: left allmulticast mode
[  155.908400][ T7101] bridge_slave_0: left promiscuous mode
[  155.911370][ T7101] bridge0: port 1(bridge_slave_0) entered disabled state
[  156.016330][ T7104] input: syz0 as /devices/virtual/input/input15
[  156.170177][ T7107] GUP no longer grows the stack in syz.2.477 (7107): 20004000-20008000 (20002000)
[  156.180398][ T7107] CPU: 3 UID: 0 PID: 7107 Comm: syz.2.477 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  156.195130][ T7107] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.200340][ T7107] Call Trace:
[  156.201988][ T7107]  <TASK>
[  156.203596][ T7107]  dump_stack_lvl+0x16c/0x1f0
[  156.206892][ T7107]  gup_vma_lookup+0x1d2/0x220
[  156.208881][ T7107]  __get_user_pages+0x261/0x15c0
[  156.211573][ T7107]  ? __pfx___get_user_pages+0x10/0x10
[  156.214070][ T7107]  get_user_pages_remote+0x25e/0xb30
[  156.216556][ T7107]  ? __pfx_get_user_pages_remote+0x10/0x10
[  156.219194][ T7107]  __access_remote_vm+0x261/0x740
[  156.221720][ T7107]  ? __pfx___access_remote_vm+0x10/0x10
[  156.224401][ T7107]  ? _copy_to_user+0xac/0xc0
[  156.226729][ T7107]  proc_pid_cmdline_read+0x511/0x920
[  156.228973][ T7107]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  156.231439][ T7107]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  156.233857][ T7107]  vfs_readv+0x6cb/0x8a0
[  156.235770][ T7107]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  156.238122][ T7107]  ? __pfx_vfs_readv+0x10/0x10
[  156.240166][ T7107]  ? find_held_lock+0x2d/0x110
[  156.242220][ T7107]  ? __pfx_lock_release+0x10/0x10
[  156.244480][ T7107]  ? __x64_sys_preadv+0x22b/0x310
[  156.246750][ T7107]  __x64_sys_preadv+0x22b/0x310
[  156.249039][ T7107]  ? __pfx___x64_sys_preadv+0x10/0x10
[  156.251512][ T7107]  ? rcu_is_watching+0x12/0xc0
[  156.254141][ T7107]  do_syscall_64+0xcd/0x250
[  156.256528][ T7107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.259582][ T7107] RIP: 0033:0x7f7f5a7779f9
[  156.261973][ T7107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.271643][ T7107] RSP: 002b:00007f7f5b467048 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  156.276258][ T7107] RAX: ffffffffffffffda RBX: 00007f7f5a906130 RCX: 00007f7f5a7779f9
[  156.280396][ T7107] RDX: 0000000000000001 RSI: 00000000200000c0 RDI: 000000000000000e
[  156.284014][ T7107] RBP: 00007f7f5a7e58ee R08: 0000000000000000 R09: 0000000000000000
[  156.287520][ T7107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  156.291024][ T7107] R13: 000000000000006e R14: 00007f7f5a906130 R15: 00007fff267361a8
[  156.294960][ T7107]  </TASK>
[  156.443107][ T5348] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  156.443208][ T5353] Bluetooth: hci4: command 0x1003 tx timeout
[  156.550301][ T7115] FAULT_INJECTION: forcing a failure.
[  156.550301][ T7115] name failslab, interval 1, probability 0, space 0, times 0
[  156.555786][ T7115] CPU: 2 UID: 0 PID: 7115 Comm: syz.0.479 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  156.560450][ T7115] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.565485][ T7115] Call Trace:
[  156.567074][ T7115]  <TASK>
[  156.568428][ T7115]  dump_stack_lvl+0x16c/0x1f0
[  156.570586][ T7115]  should_fail_ex+0x497/0x5b0
[  156.572728][ T7115]  ? fs_reclaim_acquire+0xae/0x160
[  156.574927][ T7115]  should_failslab+0xc2/0x120
[  156.577124][ T7115]  __kmalloc_noprof+0xcb/0x400
[  156.579321][ T7115]  ? tomoyo_encode2+0xca/0x3e0
[  156.581489][ T7115]  tomoyo_encode2+0x100/0x3e0
[  156.583901][ T7115]  tomoyo_encode+0x29/0x50
[  156.586073][ T7115]  tomoyo_realpath_from_path+0x19d/0x720
[  156.588630][ T7115]  tomoyo_mount_acl+0x1af/0x880
[  156.590778][ T7115]  ? hlock_class+0x4e/0x130
[  156.592790][ T7115]  ? __lock_acquire+0x1620/0x3cb0
[  156.595010][ T7115]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  156.597399][ T7115]  ? __pfx___lock_acquire+0x10/0x10
[  156.599522][ T7115]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.602183][ T7115]  ? tomoyo_domain+0xbb/0x150
[  156.604276][ T7115]  ? tomoyo_profile+0x47/0x60
[  156.606336][ T7115]  tomoyo_mount_permission+0x16b/0x410
[  156.608736][ T7115]  ? tomoyo_mount_permission+0x146/0x410
[  156.611518][ T7115]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  156.614579][ T7115]  ? get_current_fs_domain+0x188/0x1f0
[  156.616900][ T7115]  security_sb_mount+0x8d/0xe0
[  156.618874][ T7115]  path_mount+0x129/0x1f20
[  156.620739][ T7115]  ? __pfx_path_mount+0x10/0x10
[  156.622566][ T7115]  ? putname+0x12e/0x170
[  156.624246][ T7115]  ? putname+0x12e/0x170
[  156.626069][ T7115]  __x64_sys_mount+0x294/0x320
[  156.628161][ T7115]  ? __pfx___x64_sys_mount+0x10/0x10
[  156.630136][ T7115]  ? trace_csd_function_exit+0x173/0x1f0
[  156.632111][ T7115]  ? rcu_is_watching+0x12/0xc0
[  156.633846][ T7115]  do_syscall_64+0xcd/0x250
[  156.635559][ T7115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.637848][ T7115] RIP: 0033:0x7f07a51779f9
[  156.639564][ T7115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.647937][ T7115] RSP: 002b:00007f07a5eca048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  156.651435][ T7115] RAX: ffffffffffffffda RBX: 00007f07a5306058 RCX: 00007f07a51779f9
[  156.654496][ T7115] RDX: 0000000020000080 RSI: 0000000020000300 RDI: 0000000000000000
[  156.659378][ T7115] RBP: 00007f07a5eca0a0 R08: 00000000200004c0 R09: 0000000000000000
[  156.663083][ T7115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  156.666535][ T7115] R13: 000000000000006e R14: 00007f07a5306058 R15: 00007ffe2dcdc1c8
[  156.671785][ T7115]  </TASK>
[  156.675806][ T7115] ERROR: Out of memory at tomoyo_realpath_from_path.
[  157.850199][   T39] audit: type=1400 audit(1722746678.996:845): avc:  denied  { execute_no_trans } for  pid=7130 comm="syz.0.485" path="/153/file0" dev="tmpfs" ino=862 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  158.152178][   T30] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  158.308154][ T7138] 9pnet_fd: Insufficient options for proto=fd
[  158.342228][   T30] usb 5-1: Using ep0 maxpacket: 8
[  158.362697][   T30] usb 5-1: config 0 has an invalid interface number: 5 but max is 0
[  158.366145][   T30] usb 5-1: config 0 has no interface number 0
[  158.391156][   T30] usb 5-1: New USB device found, idVendor=1498, idProduct=a090, bcdDevice=f0.ff
[  158.395235][   T30] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  158.398958][   T30] usb 5-1: Product: syz
[  158.401091][   T30] usb 5-1: Manufacturer: syz
[  158.406065][   T30] usb 5-1: SerialNumber: syz
[  158.422528][   T30] usb 5-1: config 0 descriptor??
[  158.532720][   T39] audit: type=1400 audit(1722746679.666:846): avc:  denied  { setopt } for  pid=7141 comm="syz.2.489" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  159.782809][   T39] audit: type=1400 audit(1722746680.936:847): avc:  denied  { append } for  pid=7165 comm="syz.1.497" name="sg0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  159.828553][   T39] audit: type=1326 audit(1722746680.976:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7165 comm="syz.1.497" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb87c3779f9 code=0x0
[  160.658263][  T832] usb 5-1: USB disconnect, device number 4
[  160.716628][ T7180] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[  160.725139][ T7180] mac80211_hwsim hwsim7 wlan1: left allmulticast mode
[  160.946276][ T7188] FAULT_INJECTION: forcing a failure.
[  160.946276][ T7188] name failslab, interval 1, probability 0, space 0, times 0
[  160.967026][ T7188] CPU: 3 UID: 0 PID: 7188 Comm: syz.3.505 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  160.973589][ T7188] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  160.978243][ T7188] Call Trace:
[  160.979755][ T7188]  <TASK>
[  160.981365][ T7188]  dump_stack_lvl+0x16c/0x1f0
[  160.983497][ T7188]  should_fail_ex+0x497/0x5b0
[  160.985519][ T7188]  ? fs_reclaim_acquire+0xae/0x160
[  160.987730][ T7188]  should_failslab+0xc2/0x120
[  160.989601][ T7188]  __kmalloc_noprof+0xcb/0x400
[  160.991513][ T7188]  ? __pfx_lock_acquire+0x10/0x10
[  160.994868][ T7188]  tomoyo_realpath_from_path+0xb9/0x720
[  160.998036][ T7188]  ? tomoyo_profile+0x47/0x60
[  161.000566][ T7188]  tomoyo_path_number_perm+0x245/0x590
[  161.002594][   T39] audit: type=1400 audit(1722746682.116:849): avc:  denied  { map } for  pid=7189 comm="syz.0.506" path="/dev/tty1" dev="devtmpfs" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[  161.003578][ T7188]  ? tomoyo_path_number_perm+0x232/0x590
[  161.013570][ T7188]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  161.016064][ T7188]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  161.016090][ T7188]  ? __fget_files+0x256/0x400
[  161.016117][ T7188]  security_file_ioctl+0x75/0xc0
[  161.016143][ T7188]  __x64_sys_ioctl+0xbb/0x220
[  161.016167][ T7188]  do_syscall_64+0xcd/0x250
[  161.016189][ T7188]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.016212][ T7188] RIP: 0033:0x7f38549779f9
[  161.016226][ T7188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.016243][ T7188] RSP: 002b:00007f3855822048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  161.016264][ T7188] RAX: ffffffffffffffda RBX: 00007f3854b05f80 RCX: 00007f38549779f9
[  161.016276][ T7188] RDX: 0000000020000240 RSI: 000000000000890b RDI: 0000000000000003
[  161.016288][ T7188] RBP: 00007f38558220a0 R08: 0000000000000000 R09: 0000000000000000
[  161.016298][ T7188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  161.016308][ T7188] R13: 000000000000000b R14: 00007f3854b05f80 R15: 00007ffedb9bcf78
[  161.016322][ T7188]  </TASK>
[  161.018768][ T7188] ERROR: Out of memory at tomoyo_realpath_from_path.
[  161.229301][ T7199] FAULT_INJECTION: forcing a failure.
[  161.229301][ T7199] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  161.236886][ T7199] CPU: 3 UID: 0 PID: 7199 Comm: syz.0.510 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  161.240787][ T7199] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.245016][ T7199] Call Trace:
[  161.246409][ T7199]  <TASK>
[  161.247572][ T7199]  dump_stack_lvl+0x16c/0x1f0
[  161.249374][ T7199]  should_fail_ex+0x497/0x5b0
[  161.251189][ T7199]  _copy_from_user+0x30/0xf0
[  161.253094][ T7199]  copy_msghdr_from_user+0x99/0x160
[  161.255464][ T7199]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  161.257880][ T7199]  ? __lock_acquire+0x1620/0x3cb0
[  161.260076][ T7199]  ___sys_sendmsg+0xff/0x1e0
[  161.262071][ T7199]  ? __pfx____sys_sendmsg+0x10/0x10
[  161.264273][ T7199]  ? __pfx___might_resched+0x10/0x10
[  161.266367][ T7199]  ? __might_fault+0xe3/0x190
[  161.284412][ T7199]  __sys_sendmmsg+0x1a1/0x450
[  161.286304][ T7199]  ? __pfx___sys_sendmmsg+0x10/0x10
[  161.288529][ T7199]  ? clockevents_program_event+0x155/0x380
[  161.291019][ T7199]  ? __pfx_sched_clock_cpu+0x10/0x10
[  161.293315][ T7199]  __x64_sys_sendmmsg+0x9c/0x100
[  161.301176][ T7199]  ? lockdep_hardirqs_on+0x7c/0x110
[  161.303464][ T7199]  do_syscall_64+0xcd/0x250
[  161.305455][ T7199]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.307920][ T7199] RIP: 0033:0x7f07a51779f9
[  161.309839][ T7199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.342210][ T6858] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  161.344048][ T7199] RSP: 002b:00007f07a5eeb048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  161.351085][ T7199] RAX: ffffffffffffffda RBX: 00007f07a5305f80 RCX: 00007f07a51779f9
[  161.354631][ T7199] RDX: 0000000004000095 RSI: 0000000020005240 RDI: 0000000000000003
[  161.358109][ T7199] RBP: 00007f07a5eeb0a0 R08: 0000000000000000 R09: 0000000000000000
[  161.374786][ T7199] R10: 000000000401eb94 R11: 0000000000000246 R12: 0000000000000002
[  161.378319][ T7199] R13: 000000000000000b R14: 00007f07a5305f80 R15: 00007ffe2dcdc1c8
[  161.381844][ T7199]  </TASK>
[  161.395415][ T7198] netlink: 8 bytes leftover after parsing attributes in process `syz.3.509'.
[  161.400851][ T7198] netlink: 44 bytes leftover after parsing attributes in process `syz.3.509'.
[  161.480462][ T5348] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  161.516917][   T39] audit: type=1326 audit(1722746682.666:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7201 comm="syz.0.511" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f07a51779f9 code=0x0
[  161.532176][ T6858] usb 6-1: Using ep0 maxpacket: 16
[  161.547729][ T6858] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  161.573214][ T6858] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  161.578825][ T6858] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  161.584367][ T6858] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.590425][ T6858] usb 6-1: config 0 descriptor??
[  161.688396][   T39] audit: type=1400 audit(1722746682.836:851): avc:  denied  { write } for  pid=7201 comm="syz.0.511" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  161.797545][ T7218] raw-gadget.0 gadget.1: fail, usb_ep_set_wedge returned -11
[  162.000161][ T6858] usbhid 6-1:0.0: can't add hid device: -71
[  162.002978][ T6858] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  162.008997][ T6858] usb 6-1: USB disconnect, device number 10
[  162.170235][ T7222] fuse: Bad value for 'user_id'
[  162.172578][ T7222] fuse: Bad value for 'user_id'
[  162.226857][ T7224] syzkaller1: entered promiscuous mode
[  162.229866][ T7224] syzkaller1: entered allmulticast mode
[  162.522347][ T5353] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  162.527673][ T5353] Bluetooth: hci1: Injecting HCI hardware error event
[  162.534567][ T5353] Bluetooth: hci1: hardware error 0x00
[  162.912349][   T57] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  163.095382][   T57] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  163.100637][   T57] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  163.106652][   T57] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  163.110276][ T7244] netlink: 36 bytes leftover after parsing attributes in process `syz.2.520'.
[  163.116060][   T57] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  163.123984][   T57] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.130308][   T57] usb 6-1: Product: syz
[  163.134775][   T57] usb 6-1: Manufacturer: syz
[  163.138877][   T57] usb 6-1: SerialNumber: syz
[  163.153381][   T57] usb 6-1: selecting invalid altsetting 1
[  163.247004][ T7247] omfs: Invalid superblock (0)
[  163.681940][   T57] cdc_ncm 6-1:1.0: bind() failure
[  163.691520][   T57] cdc_ncm 6-1:1.1: skipping garbage
[  163.695162][   T57] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  163.698066][   T57] cdc_ncm 6-1:1.1: bind() failure
[  163.704800][   T57] usb 6-1: USB disconnect, device number 11
[  163.761045][ T7252] netlink: 4 bytes leftover after parsing attributes in process `syz.3.524'.
[  163.960230][ T7255] netlink: 20 bytes leftover after parsing attributes in process `syz.2.525'.
[  164.275302][ T7259] netlink: 8 bytes leftover after parsing attributes in process `syz.2.526'.
[  164.402749][ T7266] fuse: Bad value for 'group_id'
[  164.405361][ T7266] fuse: Bad value for 'group_id'
[  164.655797][ T7289] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  164.704699][ T5353] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  164.784430][ T7295] input: syz0 as /devices/virtual/input/input16
[  164.806699][ T7289] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  164.972390][   T57] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  165.184562][   T57] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  165.191998][   T57] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  165.202615][   T57] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  165.230334][   T57] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  165.234314][   T57] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  165.261252][   T57] usb 7-1: Product: syz
[  165.263511][   T57] usb 7-1: Manufacturer: syz
[  165.265779][   T57] usb 7-1: SerialNumber: syz
[  165.305059][   T57] usb 7-1: selecting invalid altsetting 1
[  165.778353][ T7313] kvm: pic: non byte write
[  166.090573][ T7318] --map-set only usable from mangle table
[  166.358173][   T39] audit: type=1400 audit(1722746687.506:852): avc:  denied  { bind } for  pid=7320 comm="syz.3.540" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  166.470333][ T7323] netlink: 4 bytes leftover after parsing attributes in process `syz.3.541'.
[  166.609575][   T39] audit: type=1400 audit(1722746687.756:853): avc:  denied  { map } for  pid=7325 comm="syz.1.542" path="/dev/bus/usb/003/001" dev="devtmpfs" ino=734 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  166.727955][   T39] audit: type=1400 audit(1722746687.876:854): avc:  denied  { execmod } for  pid=7325 comm="syz.1.542" path="/dev/bus/usb/003/001" dev="devtmpfs" ino=734 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  166.760355][   T39] audit: type=1400 audit(1722746687.876:855): avc:  denied  { execute } for  pid=7325 comm="syz.1.542" path="/dev/bus/usb/003/001" dev="devtmpfs" ino=734 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  166.972427][  T833] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  167.027423][   T39] audit: type=1400 audit(1722746688.176:856): avc:  denied  { ioctl } for  pid=7334 comm="syz.1.545" path="/dev/snapshot" dev="devtmpfs" ino=98 ioctlcmd=0x5407 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  167.162958][  T833] usb 5-1: Using ep0 maxpacket: 32
[  167.169277][  T833] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[  167.178236][  T833] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  167.182397][  T833] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  167.185580][  T833] usb 5-1: Product: syz
[  167.187203][  T833] usb 5-1: Manufacturer: syz
[  167.189121][  T833] usb 5-1: SerialNumber: syz
[  167.193380][  T833] usb 5-1: config 0 descriptor??
[  167.196139][ T7329] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  167.201820][  T833] hub 5-1:0.0: bad descriptor, ignoring hub
[  167.204692][  T833] hub 5-1:0.0: probe with driver hub failed with error -5
[  167.215923][  T833] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input17
[  167.403630][ T6858] usb 5-1: USB disconnect, device number 5
[  167.403641][    C2] usbtouchscreen 5-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[  167.614313][ T7329] xt_connbytes: Forcing CT accounting to be enabled
[  167.617484][ T7329] No such timeout policy "syz0"
[  167.945791][   T57] cdc_ncm 7-1:1.0: bind() failure
[  167.956005][   T57] cdc_ncm 7-1:1.1: skipping garbage
[  167.962371][   T57] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  168.004867][   T57] cdc_ncm 7-1:1.1: bind() failure
[  168.017981][   T57] usb 7-1: USB disconnect, device number 10
[  168.079768][   T39] audit: type=1400 audit(1722746689.226:857): avc:  denied  { map } for  pid=7352 comm="syz.2.552" path="/dev/sg0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  168.246889][ T7357] netlink: 28 bytes leftover after parsing attributes in process `syz.0.554'.
[  168.661382][   T39] audit: type=1400 audit(1722746689.806:858): avc:  denied  { setattr } for  pid=7375 comm="syz.3.561" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  168.756660][ T7382] netlink: 28 bytes leftover after parsing attributes in process `syz.0.564'.
[  169.769635][ T7406] FAULT_INJECTION: forcing a failure.
[  169.769635][ T7406] name failslab, interval 1, probability 0, space 0, times 0
[  169.775758][ T7406] CPU: 0 UID: 0 PID: 7406 Comm: syz.1.570 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  169.779547][ T7406] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.783827][ T7406] Call Trace:
[  169.785296][ T7406]  <TASK>
[  169.786622][ T7406]  dump_stack_lvl+0x16c/0x1f0
[  169.788740][ T7406]  should_fail_ex+0x497/0x5b0
[  169.790815][ T7406]  ? fs_reclaim_acquire+0xae/0x160
[  169.793075][ T7406]  should_failslab+0xc2/0x120
[  169.795224][ T7406]  __kmalloc_node_track_caller_noprof+0xcf/0x430
[  169.798014][ T7406]  ? ovl_mount_dir+0x26/0x1f0
[  169.800076][ T7406]  kstrdup+0x3c/0x70
[  169.801788][ T7406]  ovl_mount_dir+0x26/0x1f0
[  169.803994][ T7406]  ovl_parse_param+0xea7/0x1e10
[  169.806194][ T7406]  ? __pfx_ovl_parse_param+0x10/0x10
[  169.808413][ T7406]  ? trace_kmalloc+0x2d/0xe0
[  169.810239][ T7406]  ? __pfx_ovl_parse_param+0x10/0x10
[  169.812492][ T7406]  vfs_parse_fs_param+0x208/0x3c0
[  169.814556][ T7406]  vfs_parse_fs_string+0xea/0x150
[  169.816948][ T7406]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  169.819345][ T7406]  ? selinux_sb_eat_lsm_opts+0x594/0x700
[  169.821497][ T7406]  ? ovl_next_opt+0x143/0x1c0
[  169.823371][ T7406]  ? __pfx_ovl_next_opt+0x10/0x10
[  169.825497][ T7406]  vfs_parse_monolithic_sep+0x175/0x1f0
[  169.827641][ T7406]  ? __pfx_vfs_parse_monolithic_sep+0x10/0x10
[  169.830238][ T7406]  ? alloc_fs_context+0x59b/0x9c0
[  169.832217][ T7406]  path_mount+0x149f/0x1f20
[  169.834053][ T7406]  ? __pfx_path_mount+0x10/0x10
[  169.836156][ T7406]  ? putname+0x12e/0x170
[  169.838004][ T7406]  ? putname+0x12e/0x170
[  169.839794][ T7406]  __x64_sys_mount+0x294/0x320
[  169.841930][ T7406]  ? __pfx___x64_sys_mount+0x10/0x10
[  169.844469][ T7406]  do_syscall_64+0xcd/0x250
[  169.846609][ T7406]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.849234][ T7406] RIP: 0033:0x7fb87c3779f9
[  169.851134][ T7406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.859641][ T7406] RSP: 002b:00007fb87d219048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  169.863262][ T7406] RAX: ffffffffffffffda RBX: 00007fb87c505f80 RCX: 00007fb87c3779f9
[  169.866630][ T7406] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 0000000000000000
[  169.870022][ T7406] RBP: 00007fb87d2190a0 R08: 0000000020000500 R09: 0000000000000000
[  169.873258][ T7406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  169.876683][ T7406] R13: 000000000000000b R14: 00007fb87c505f80 R15: 00007ffcca79dfb8
[  169.879956][ T7406]  </TASK>
[  170.038882][   T39] audit: type=1400 audit(1722746691.186:859): avc:  denied  { nlmsg_write } for  pid=7413 comm="syz.1.572" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  170.056602][   T39] audit: type=1400 audit(1722746691.196:860): avc:  denied  { getopt } for  pid=7413 comm="syz.1.572" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  170.066709][   T39] audit: type=1400 audit(1722746691.216:861): avc:  denied  { create } for  pid=7413 comm="syz.1.572" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  171.391606][   T39] kauditd_printk_skb: 3 callbacks suppressed
[  171.391622][   T39] audit: type=1400 audit(1722746692.536:865): avc:  denied  { accept } for  pid=7430 comm="syz.2.579" lport=57605 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  171.391719][ T7433] binder: 7431:7433 ioctl 4018620d 0 returned -22
[  171.419433][ T7433] binder: 7431:7433 unknown command 0
[  171.421557][ T7433] binder: 7431:7433 ioctl c0306201 20000080 returned -22
[  171.488965][   T39] audit: type=1400 audit(1722746692.636:866): avc:  denied  { write } for  pid=7437 comm="syz.2.581" name="ppp" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  171.684428][ T7440] autofs: Unknown parameter '00000000000000401777777777777777777777'
[  172.407948][ T7455] FAULT_INJECTION: forcing a failure.
[  172.407948][ T7455] name failslab, interval 1, probability 0, space 0, times 0
[  172.408077][ T7455] CPU: 2 UID: 0 PID: 7455 Comm: syz.1.587 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  172.408099][ T7455] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  172.408123][ T7455] Call Trace:
[  172.408131][ T7455]  <TASK>
[  172.408138][ T7455]  dump_stack_lvl+0x16c/0x1f0
[  172.408167][ T7455]  should_fail_ex+0x497/0x5b0
[  172.408204][ T7455]  ? fs_reclaim_acquire+0xae/0x160
[  172.408223][ T7455]  should_failslab+0xc2/0x120
[  172.408238][ T7455]  __kmalloc_noprof+0xcb/0x400
[  172.408250][ T7455]  vc_do_resize+0x1df/0x10b0
[  172.408264][ T7455]  ? mark_held_locks+0x9f/0xe0
[  172.408277][ T7455]  ? irqentry_exit+0x3b/0x90
[  172.408288][ T7455]  ? __pfx_vc_do_resize+0x10/0x10
[  172.408301][ T7455]  fbcon_do_set_font+0x427/0x910
[  172.408315][ T7455]  fbcon_set_font+0x9c0/0xb60
[  172.408327][ T7455]  ? __pfx_fbcon_set_font+0x10/0x10
[  172.408338][ T7455]  con_font_op+0x7fd/0xf50
[  172.408353][ T7455]  ? __pfx_con_font_op+0x10/0x10
[  172.408367][ T7455]  ? __pfx___might_resched+0x10/0x10
[  172.408380][ T7455]  ? avc_has_extended_perms+0x927/0xf90
[  172.408391][ T7455]  ? __might_fault+0xe3/0x190
[  172.408402][ T7455]  vt_ioctl+0x4ca/0x2f80
[  172.408413][ T7455]  ? __pfx_vt_ioctl+0x10/0x10
[  172.408423][ T7455]  ? kfree+0x12a/0x3b0
[  172.408434][ T7455]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  172.408448][ T7455]  ? do_vfs_ioctl+0x515/0x1ad0
[  172.408461][ T7455]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  172.408473][ T7455]  ? tty_jobctrl_ioctl+0x152/0xe00
[  172.408484][ T7455]  ? __pfx_vt_ioctl+0x10/0x10
[  172.408495][ T7455]  tty_ioctl+0x65d/0x15f0
[  172.408508][ T7455]  ? ioctl_has_perm.constprop.0.isra.0+0x2f0/0x470
[  172.408524][ T7455]  ? __pfx_tty_ioctl+0x10/0x10
[  172.408537][ T7455]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  172.408557][ T7455]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  172.408570][ T7455]  ? selinux_file_ioctl+0x180/0x270
[  172.408584][ T7455]  ? selinux_file_ioctl+0xb4/0x270
[  172.408599][ T7455]  ? __pfx_tty_ioctl+0x10/0x10
[  172.408611][ T7455]  __x64_sys_ioctl+0x193/0x220
[  172.408625][ T7455]  do_syscall_64+0xcd/0x250
[  172.408637][ T7455]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.408651][ T7455] RIP: 0033:0x7fb87c3779f9
[  172.408659][ T7455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.408669][ T7455] RSP: 002b:00007fb87d1f8048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  172.408680][ T7455] RAX: ffffffffffffffda RBX: 00007fb87c506058 RCX: 00007fb87c3779f9
[  172.408687][ T7455] RDX: 0000000020000e80 RSI: 0000000000004b72 RDI: 0000000000000005
[  172.408693][ T7455] RBP: 00007fb87d1f80a0 R08: 0000000000000000 R09: 0000000000000000
[  172.408699][ T7455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.408706][ T7455] R13: 000000000000006e R14: 00007fb87c506058 R15: 00007ffcca79dfb8
[  172.408713][ T7455]  </TASK>
[  173.570882][ T7467] syz.0.592 (7467) used greatest stack depth: 20976 bytes left
[  173.861389][   T39] audit: type=1400 audit(1722746695.006:867): avc:  denied  { setopt } for  pid=7493 comm="syz.0.599" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  173.864677][ T7495] netlink: 203516 bytes leftover after parsing attributes in process `syz.0.599'.
[  173.886827][ T7495] netlink: 6324 bytes leftover after parsing attributes in process `syz.0.599'.
[  174.206941][ T7504] FAULT_INJECTION: forcing a failure.
[  174.206941][ T7504] name failslab, interval 1, probability 0, space 0, times 0
[  174.213988][ T7504] CPU: 3 UID: 0 PID: 7504 Comm: syz.3.602 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  174.219370][ T7504] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  174.226157][ T7504] Call Trace:
[  174.227729][ T7504]  <TASK>
[  174.229069][ T7504]  dump_stack_lvl+0x16c/0x1f0
[  174.231496][ T7504]  should_fail_ex+0x497/0x5b0
[  174.233674][ T7504]  ? fs_reclaim_acquire+0xae/0x160
[  174.236481][ T7504]  should_failslab+0xc2/0x120
[  174.239330][ T7504]  __kmalloc_noprof+0xcb/0x400
[  174.243888][ T7504]  ? down_write_nested+0x152/0x210
[  174.247752][ T7504]  security_sb_alloc+0x1da/0x270
[  174.251311][ T7504]  alloc_super+0x245/0xbd0
[  174.254295][ T7504]  sget_fc+0x116/0xc20
[  174.256555][ T7504]  ? __pfx_set_anon_super_fc+0x10/0x10
[  174.259245][ T7504]  ? __pfx_ovl_fill_super+0x10/0x10
[  174.261875][ T7504]  get_tree_nodev+0x28/0x190
[  174.264696][ T7504]  vfs_get_tree+0x8f/0x380
[  174.267836][ T7504]  path_mount+0x14e6/0x1f20
[  174.270911][ T7504]  ? __pfx_path_mount+0x10/0x10
[  174.273522][ T7504]  ? putname+0x12e/0x170
[  174.276057][ T7504]  ? putname+0x12e/0x170
[  174.278262][ T7504]  __x64_sys_mount+0x294/0x320
[  174.280442][ T7504]  ? __pfx___x64_sys_mount+0x10/0x10
[  174.282569][ T7504]  do_syscall_64+0xcd/0x250
[  174.284607][ T7504]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.287785][ T7504] RIP: 0033:0x7f38549779f9
[  174.290667][ T7504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.301643][ T7504] RSP: 002b:00007f3855822048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  174.306491][ T7504] RAX: ffffffffffffffda RBX: 00007f3854b05f80 RCX: 00007f38549779f9
[  174.310857][ T7504] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 0000000000000000
[  174.315250][ T7504] RBP: 00007f38558220a0 R08: 0000000020000900 R09: 0000000000000000
[  174.319682][ T7504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  174.325354][ T7504] R13: 000000000000000b R14: 00007f3854b05f80 R15: 00007ffedb9bcf78
[  174.333580][ T7504]  </TASK>
[  174.573092][ T7510] 9pnet_fd: Insufficient options for proto=fd
[  174.585361][ T7507] netlink: 20 bytes leftover after parsing attributes in process `syz.3.603'.
[  174.907296][   T39] audit: type=1400 audit(1722746696.046:868): avc:  denied  { write } for  pid=7513 comm="syz.2.605" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  174.931513][   T39] audit: type=1326 audit(1722746696.086:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7513 comm="syz.2.605" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f5a7779f9 code=0x0
[  175.126392][   T39] audit: type=1400 audit(1722746696.276:870): avc:  denied  { create } for  pid=7524 comm="syz.1.610" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  175.444089][ T7528] ==================================================================
[  175.444125][ T7528] BUG: KASAN: global-out-of-bounds in bit_putcs+0xa64/0xdf0
[  175.444157][ T7528] Read of size 1 at addr ffffffff8bb3d3f0 by task syz.1.610/7528
[  175.444172][ T7528] 
[  175.444178][ T7528] CPU: 3 UID: 0 PID: 7528 Comm: syz.1.610 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  175.444199][ T7528] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  175.444211][ T7528] Call Trace:
[  175.444217][ T7528]  <TASK>
[  175.444224][ T7528]  dump_stack_lvl+0x116/0x1f0
[  175.444252][ T7528]  print_report+0xc3/0x620
[  175.444275][ T7528]  ? __virt_addr_valid+0x5e/0x590
[  175.444295][ T7528]  ? __phys_addr+0xc6/0x150
[  175.444315][ T7528]  kasan_report+0xd9/0x110
[  175.444336][ T7528]  ? bit_putcs+0xa64/0xdf0
[  175.444359][ T7528]  ? bit_putcs+0xa64/0xdf0
[  175.444388][ T7528]  bit_putcs+0xa64/0xdf0
[  175.444414][ T7528]  ? __pfx_bit_putcs+0x10/0x10
[  175.444438][ T7528]  ? fb_get_color_depth+0x120/0x250
[  175.444465][ T7528]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  175.444489][ T7528]  ? __pfx_bit_putcs+0x10/0x10
[  175.444513][ T7528]  fbcon_putcs+0x314/0x3d0
[  175.444536][ T7528]  do_update_region+0x1f8/0x3f0
[  175.444559][ T7528]  update_region+0xc1/0x160
[  175.444580][ T7528]  vcs_write+0x7d3/0xdb0
[  175.444602][ T7528]  ? __pfx_vcs_write+0x10/0x10
[  175.444620][ T7528]  ? security_file_permission+0x98/0xc0
[  175.444646][ T7528]  ? __pfx_vcs_write+0x10/0x10
[  175.444666][ T7528]  vfs_write+0x29a/0x1140
[  175.444683][ T7528]  ? __pfx_vfs_write+0x10/0x10
[  175.444709][ T7528]  ? do_futex+0x123/0x350
[  175.444729][ T7528]  ? __fget_files+0x256/0x400
[  175.444755][ T7528]  ? __fget_light+0x173/0x210
[  175.444783][ T7528]  ksys_write+0x12f/0x260
[  175.444801][ T7528]  ? __pfx_ksys_write+0x10/0x10
[  175.444819][ T7528]  do_syscall_64+0xcd/0x250
[  175.444840][ T7528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.444865][ T7528] RIP: 0033:0x7fb87c3779f9
[  175.444879][ T7528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.444896][ T7528] RSP: 002b:00007fb87d1b6048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  175.444914][ T7528] RAX: ffffffffffffffda RBX: 00007fb87c506208 RCX: 00007fb87c3779f9
[  175.444926][ T7528] RDX: 0000000000001006 RSI: 0000000020001040 RDI: 000000000000000d
[  175.444937][ T7528] RBP: 00007fb87c3e58ee R08: 0000000000000000 R09: 0000000000000000
[  175.444948][ T7528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  175.444958][ T7528] R13: 000000000000006e R14: 00007fb87c506208 R15: 00007ffcca79dfb8
[  175.444973][ T7528]  </TASK>
[  175.444979][ T7528] 
[  175.444984][ T7528] The buggy address belongs to the variable:
[  175.444989][ T7528]  type_check_kinds+0x8f0/0xcc0
[  175.445009][ T7528] 
[  175.445013][ T7528] The buggy address belongs to the physical page:
[  175.445019][ T7528] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xbb3d
[  175.445034][ T7528] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  175.445057][ T7528] raw: 00fff00000002000 ffffea00002ecf48 ffffea00002ecf48 0000000000000000
[  175.445073][ T7528] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  175.445082][ T7528] page dumped because: kasan: bad access detected
[  175.445089][ T7528] page_owner info is not present (never set?)
[  175.445094][ T7528] 
[  175.445097][ T7528] Memory state around the buggy address:
[  175.445105][ T7528]  ffffffff8bb3d280: 05 f9 f9 f9 f9 f9 f9 f9 05 f9 f9 f9 f9 f9 f9 f9
[  175.445118][ T7528]  ffffffff8bb3d300: 00 00 00 00 06 f9 f9 f9 f9 f9 f9 f9 00 00 00 00
[  175.445130][ T7528] >ffffffff8bb3d380: 00 00 01 f9 f9 f9 f9 f9 00 00 00 00 00 00 f9 f9
[  175.445141][ T7528]                                                              ^
[  175.445151][ T7528]  ffffffff8bb3d400: f9 f9 f9 f9 00 00 00 00 00 00 f9 f9 f9 f9 f9 f9
[  175.445163][ T7528]  ffffffff8bb3d480: 05 f9 f9 f9 f9 f9 f9 f9 00 00 00 f9 f9 f9 f9 f9
[  175.445173][ T7528] ==================================================================
[  175.445996][ T7528] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  175.446008][ T7528] CPU: 3 UID: 0 PID: 7528 Comm: syz.1.610 Not tainted 6.11.0-rc1-syzkaller-00283-gd3426a6ed9d8 #0
[  175.446030][ T7528] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  175.446043][ T7528] Call Trace:
[  175.446061][ T7528]  <TASK>
[  175.446069][ T7528]  dump_stack_lvl+0x3d/0x1f0
[  175.446097][ T7528]  panic+0x6f5/0x7a0
[  175.446118][ T7528]  ? __pfx_panic+0x10/0x10
[  175.446140][ T7528]  ? preempt_schedule_thunk+0x1a/0x30
[  175.446160][ T7528]  ? preempt_schedule_common+0x44/0xc0
[  175.446183][ T7528]  check_panic_on_warn+0xab/0xb0
[  175.446204][ T7528]  end_report+0x117/0x180
[  175.446226][ T7528]  kasan_report+0xe9/0x110
[  175.446246][ T7528]  ? bit_putcs+0xa64/0xdf0
[  175.446270][ T7528]  ? bit_putcs+0xa64/0xdf0
[  175.446295][ T7528]  bit_putcs+0xa64/0xdf0
[  175.446322][ T7528]  ? __pfx_bit_putcs+0x10/0x10
[  175.446348][ T7528]  ? fb_get_color_depth+0x120/0x250
[  175.446371][ T7528]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  175.446395][ T7528]  ? __pfx_bit_putcs+0x10/0x10
[  175.446420][ T7528]  fbcon_putcs+0x314/0x3d0
[  175.446449][ T7528]  do_update_region+0x1f8/0x3f0
[  175.446469][ T7528]  update_region+0xc1/0x160
[  175.446494][ T7528]  vcs_write+0x7d3/0xdb0
[  175.446517][ T7528]  ? __pfx_vcs_write+0x10/0x10
[  175.446536][ T7528]  ? security_file_permission+0x98/0xc0
[  175.446564][ T7528]  ? __pfx_vcs_write+0x10/0x10
[  175.446584][ T7528]  vfs_write+0x29a/0x1140
[  175.446602][ T7528]  ? __pfx_vfs_write+0x10/0x10
[  175.446617][ T7528]  ? do_futex+0x123/0x350
[  175.446636][ T7528]  ? __fget_files+0x256/0x400
[  175.446663][ T7528]  ? __fget_light+0x173/0x210
[  175.446690][ T7528]  ksys_write+0x12f/0x260
[  175.446705][ T7528]  ? __pfx_ksys_write+0x10/0x10
[  175.446724][ T7528]  do_syscall_64+0xcd/0x250
[  175.446745][ T7528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.446770][ T7528] RIP: 0033:0x7fb87c3779f9
[  175.446783][ T7528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.446800][ T7528] RSP: 002b:00007fb87d1b6048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  175.446817][ T7528] RAX: ffffffffffffffda RBX: 00007fb87c506208 RCX: 00007fb87c3779f9
[  175.446829][ T7528] RDX: 0000000000001006 RSI: 0000000020001040 RDI: 000000000000000d
[  175.446841][ T7528] RBP: 00007fb87c3e58ee R08: 0000000000000000 R09: 0000000000000000
[  175.446853][ T7528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  175.446864][ T7528] R13: 000000000000006e R14: 00007fb87c506208 R15: 00007ffcca79dfb8
[  175.446878][ T7528]  </TASK>
[  175.456118][ T7528] Kernel Offset: disabled

VM DIAGNOSIS:
04:44:56  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff8132ba20 RDX=ffff888028112440
RSI=ffffffff8132ba68 RDI=ffffffff93245880 RBP=0000000000000000 RSP=ffffc90000007fd0
R8 =0000000000000001 R9 =fffffbfff2648b10 R10=ffffffff93245887 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8132ba69 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f95f2770500 ffffffff 00c00000
GS =0000 ffff88806b000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000002cb64000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000005000001 Opmask01=0000000000000000 Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=00000000dfffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc963f3b70 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c5f5f0045544156 4952505f4342494c
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000042494c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6362696c5f5f0045 5441564952505f43
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65746e6f63007325 203a726f72726520 64656e7275746572 2072657672657300
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 40514b4a46005600 051f574a57574005 41404b5750514057 0557405357405600
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 630000313d656461 7373693a725f6d20 61656b633a735f35 323d613d6573616c
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6300002230313624 3124693072223720 6165632030323535 3237613d20206165
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 69792a283a3b3c24 3b24707379283767 6765692a3e383f3d 376e637a2a2a7865
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 697e2a7e55676e6b 797379307855676e 6b797379307e6565 78377e726f7e6465
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000080010003 RBX=0000000000000000 RCX=ffffffff8132ba20 RDX=ffff888022be0000
RSI=ffffffff8132ba68 RDI=ffffffff93245880 RBP=0000000000000001 RSP=ffffc900008b0fd0
R8 =0000000000000001 R9 =fffffbfff2648b10 R10=ffffffff93245887 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8132ba69 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fb87d2196c0 ffffffff 00c00000
GS =0000 ffff88806b100000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020f62000 CR3=00000000252a6000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000015 000000000001df8a
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f25c0cd6d00
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555902e7c9 000055555902e5f0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555559036304 0000555559036300
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 030008000db00303 ffffffff040da003 0a80040d90030a08 000d88030008000d
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100100003ffffff ff04010000000806 0601000800000000 00080007000c0008
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0806060124d40000 0000000000000000 00306e616c7701ff ffffffffffffffdf
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 01058004088be2cc a208000100000008 0606011ed2000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001ffff fffffffffffeff08
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 05b00300080005a8 03088084080005a0 0300080005980300 0800059003020800
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 900303ffffffff04 0780030190100001 8004001000061001 f200100002800300
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff8132ba20 RDX=ffff8880186d8000
RSI=ffffffff8132ba68 RDI=ffffffff93245880 RBP=0000000000000002 RSP=ffffc90000858fd0
R8 =0000000000000001 R9 =fffffbfff2648b10 R10=ffffffff93245887 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8132ba69 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b200000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020041000 CR3=000000004c08e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7f5a7e66e4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7f5a7e66f1
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7f5a7e66eb
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7f5a7e66ff
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7f5a7e6785
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7f5a7e6863
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000850000fffffe 00773d7e0d8ab1f7 6f5584ffe00003b7 fffffff800002307
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000b4ef4b 0000000000000000 0095000000820004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 773d7e0d8ab1f76f 5584ffe00003b7ff fffff80000230700 0000000000a2bf00
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff84fe2920 RDI=ffffffff9519d720 RBP=ffffffff9519d6e0 RSP=ffffc90003af7448
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000032353754
R12=0000000000000000 R13=ffffffff9519d6e0 R14=ffffffff9519d730 R15=0000000000000018
RIP=ffffffff84fe2947 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007fb87d1b66c0 ffffffff 00c00000
GS =0000 ffff88806b300000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020040000 CR3=00000000252a6000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7f5a7e66e4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7f5a7e66f1
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7f5a7e66eb
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7f5a7e66ff
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7f5a7e6785
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7f5a7e6863
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000850000fffffe 00773d7e0d8ab1f7 6f5584ffe00003b7 fffffff800002307
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000b4ef4b 0000000000000000 0095000000820004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 773d7e0d8ab1f76f 5584ffe00003b7ff fffff80000230700 0000000000a2bf00
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000