last executing test programs:

58.916224151s ago: executing program 2 (id=420):
socket$inet_udplite(0x2, 0x2, 0x88)
write$UHID_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, {'syz0\x00', 'syz0\x00', 'syz0\x00', 0x0, 0x0, 0x9, 0x372, 0x8, 0x200, 0x1}}, 0x120)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x162500, 0x0)
r1 = dup(r0)
statx(r1, 0x0, 0x5000, 0x800, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000040)=0x6, 0x4)
close_range(r2, 0xffffffffffffffff, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r2, 0xc0105500, &(0x7f0000000000)={0x2, 0x12, 0x303, 0x8001, 0x11, 0x7, 0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000680)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00U\x00=\t\x00\x00\x00\x00\x00\x00\x00\x00\a\x00\x00\x00', @ANYRES32=r5, @ANYBLOB="20000280", @ANYRES32=r3, @ANYBLOB="0000000000000000000000000a000000000000000000001420000100", @ANYRES32], 0x58}}, 0x0)

58.80785913s ago: executing program 2 (id=425):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x14, r1, 0x1}, 0x14}}, 0x0)

58.806550455s ago: executing program 2 (id=427):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0) (async, rerun: 32)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (rerun: 32)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r2}, 0x10) (async)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x65, 0x65, 0x3, [@int={0xe, 0x0, 0x0, 0x1, 0x0, 0x7, 0x0, 0x56, 0x5}, @datasec={0xf, 0x4, 0x0, 0xf, 0x1, [{0x5, 0x3dc2f609, 0x1}, {0x3, 0x7f6}, {0x2, 0x0, 0x10}, {0x5, 0x7, 0x8}], "dc"}, @fwd={0x4}, @func={0x10, 0x0, 0x0, 0xc, 0x5}]}, {0x0, [0x0]}}, &(0x7f0000000080)=""/41, 0x83, 0x29, 0x1, 0x100, 0x10000, @value}, 0x28)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000080)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x74, '\x00', 0x0, @fallback, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, @void, @value}, 0x94)
write$binfmt_misc(r3, &(0x7f00000002c0)="d5ccb0533a4128ddc642aae7b0f5a0e28d1a61880c18be37199a76e5c4e0263e58518173e9da2662386781d4e23ba88be5fbacc39d0b3b4d5d1da812bb576bd4904fbc8bb69e07f7f5e2a06b81ee355282ec2495a0aff8fa7ed7e3bc29cce6c79cae44b1144b8148d6967c4fc682d98b5c9b4be2806398ab30f8a77530dcfce266906892d978e68b63f07723a15dba944557e9bb87d6bba7c505d5cc9c990334f6c451cb27a4c90da273b448e76d76bb3f56fda30e1b7fcfd02720d7ac436ca20d4820da7e14e0e3f47acbf478a177e93e48ab537b363f08bb", 0xd9) (async)
r6 = dup(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r5}, 0x10) (async)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[], [], 0x6b}})

58.637799732s ago: executing program 2 (id=428):
socket$packet(0x11, 0x2, 0x300)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @loopback, 0x1}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0xfffffeffffff7f7e, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000001d40)=[{{0x0, 0x0, &(0x7f0000001800)=[{&(0x7f0000001780)="c1d6", 0x2}], 0x1}}, {{0x0, 0x0, &(0x7f0000001a40)=[{&(0x7f0000001880)='4', 0x1}], 0x1}}], 0x2, 0xc081)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
mkdir(0x0, 0x0)
chdir(0x0)
r1 = open(&(0x7f0000000080)='.\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000000180)=""/173, 0xad)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000006480)={&(0x7f0000c2b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f0000005380)=""/231, 0x107f, 0x0, 0x0}, &(0x7f00000064c0)=0x40)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000640)={&(0x7f0000000580)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x4, [@enum={0x2, 0x1, 0x0, 0x6, 0x4, [{0xf, 0x7}]}]}, {0x0, [0x61, 0x2e]}}, 0x0, 0x30, 0x0, 0x1, 0x6, 0x0, @void, @value}, 0x28)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
sendmsg$nl_route(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYRES64=r1, @ANYRESDEC=r2], 0x24}, 0x1, 0x5502000000000000}, 0x0)
mount$fuseblk(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', &(0x7f0000000340), 0x1000000, &(0x7f0000001100)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0xc000}})
mount$fuseblk(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0xaca060, 0x0)

58.577276369s ago: executing program 2 (id=429):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000940), 0x0)

58.358155823s ago: executing program 2 (id=434):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x78, 0x24, 0xf0b, 0x70bd2a, 0x2001, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x5, 0xd}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0xff, 0xec2, 0x5, 0x2, 0x400}, 0x10000, 0x1, 0x7ff, 0x6, 0xe, 0x14, 0x1f, 0x1b, 0x6, 0x2, {0x6, 0x19d, 0xa9, 0x8, 0x7743, 0xfd1}}}}]}, 0x78}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
r5 = dup3(r4, r3, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000140)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r7=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv4_newaddr={0x48, 0x14, 0x509, 0x0, 0x25dfdbfd, {0x2, 0x20, 0x0, 0xcb, r7}, [@IFA_LOCAL={0x8, 0x2, @private=0xa010101}, @IFA_TARGET_NETNSID={0x8, 0xa, 0x4}, @IFA_RT_PRIORITY={0x8, 0x9, 0x6}, @IFA_RT_PRIORITY={0x8, 0x9, 0x3ff}, @IFA_RT_PRIORITY={0x8, 0x9, 0x5}, @IFA_RT_PRIORITY={0x8, 0x9, 0x106}]}, 0x48}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0x70}}, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x181800, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=@newchain={0x2c, 0x64, 0xb04, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, r1, {0xd, 0xfff3}, {0xffe0, 0xfff3}, {0x2, 0x2}}, [@TCA_RATE={0x6, 0x5, {0xd, 0x4}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x40040)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r1, {0xe}, {}, {0x8, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}}, 0x4000)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r8, &(0x7f00000002c0), 0x40000000000009f, 0x0)

58.297539705s ago: executing program 32 (id=434):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x78, 0x24, 0xf0b, 0x70bd2a, 0x2001, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x5, 0xd}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0xff, 0xec2, 0x5, 0x2, 0x400}, 0x10000, 0x1, 0x7ff, 0x6, 0xe, 0x14, 0x1f, 0x1b, 0x6, 0x2, {0x6, 0x19d, 0xa9, 0x8, 0x7743, 0xfd1}}}}]}, 0x78}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
r5 = dup3(r4, r3, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000140)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r7=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv4_newaddr={0x48, 0x14, 0x509, 0x0, 0x25dfdbfd, {0x2, 0x20, 0x0, 0xcb, r7}, [@IFA_LOCAL={0x8, 0x2, @private=0xa010101}, @IFA_TARGET_NETNSID={0x8, 0xa, 0x4}, @IFA_RT_PRIORITY={0x8, 0x9, 0x6}, @IFA_RT_PRIORITY={0x8, 0x9, 0x3ff}, @IFA_RT_PRIORITY={0x8, 0x9, 0x5}, @IFA_RT_PRIORITY={0x8, 0x9, 0x106}]}, 0x48}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0x70}}, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x181800, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=@newchain={0x2c, 0x64, 0xb04, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, r1, {0xd, 0xfff3}, {0xffe0, 0xfff3}, {0x2, 0x2}}, [@TCA_RATE={0x6, 0x5, {0xd, 0x4}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x40040)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r1, {0xe}, {}, {0x8, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}}, 0x4000)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r8, &(0x7f00000002c0), 0x40000000000009f, 0x0)

53.755921724s ago: executing program 4 (id=533):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000940), 0x0)

53.667384012s ago: executing program 4 (id=536):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x1c, r1, 0x1, 0x0, 0x2000000, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x1c}}, 0x0)

53.607990719s ago: executing program 4 (id=537):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0x18)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r4, &(0x7f0000000740)=[{{&(0x7f0000000080)={0xa, 0x4e21, 0x0, @private2, 0x1ac5}, 0x1c, &(0x7f0000000380)=[{&(0x7f0000000280)="d4", 0x1}], 0x1}}, {{&(0x7f0000000600)={0xa, 0x4e22, 0x5, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7}, 0x1c, &(0x7f0000000680)=[{&(0x7f0000000640)="bad1d1ad56", 0x5}], 0x1}}], 0x2, 0x4000010)
shutdown(r4, 0x1)
syz_emit_ethernet(0x3b6, &(0x7f00000003c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x380, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000050000000026000400"}, {0x18, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x18, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "f5000000000000000000000200000000000000000000000000008879e66485201a0015ca837400"/55}, {0x0, 0x14, "5e14f0e7e72d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fa632dbf04542188b196e213408c"}, {0x3, 0x5, "d5170000dce9674a36da018dff16e70b8b14c4b7a94fe18e88605aa6be1a02a326a6bce65f81ed"}]}}}}}}, 0x0)
migrate_pages(r3, 0x5, &(0x7f0000000040)=0x9, &(0x7f0000000080)=0x272)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000040000000800020005000000"], 0x1c}}, 0x0)

53.428135709s ago: executing program 4 (id=539):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYBLOB="140000001000010000000000000004000000000a20000000000a01030000000000000000010000000900010073797a300000000040000000030a01020000010000000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a30000000003c000000060a010400000000000000000100000008000b40000000000900010073797a300000000014000480100001800a000100726564697200"], 0xc4}}, 0x0)

53.377962082s ago: executing program 4 (id=540):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180040f4ffffffff0600000085a601f30000002300000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r1, 0x8010671f, &(0x7f00000000c0)={&(0x7f0000000440)=""/165, 0xa5})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CAP_MSR_PLATFORM_INFO(r4, 0x4068aea3, &(0x7f0000000380)={0x9f, 0x0, 0x1})
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r6 = openat$cgroup(r1, &(0x7f0000000340)='syz0\x00', 0x200002, 0x0)
r7 = openat$cgroup_ro(r6, &(0x7f0000000500)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x9e8f9000)
ioctl$TCSETS(r5, 0x5420, 0x0)
socket(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'lo\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd2f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r10, {0x0, 0xa}, {0xffff, 0x5}, {0xc, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x4, 0x2, 0x0, 0x0, 0x7, 0x8}, {0x12, 0x3, 0x0, 0x401, 0x8001, 0x10400}, 0xa5, 0x10, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
socket(0x10, 0x3, 0x0)
r11 = socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000700)={'lo\x00'})
r12 = socket$inet(0x2, 0x2, 0x1)
connect$inet(r12, &(0x7f0000000180)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r12, &(0x7f0000000540)=[{{0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="08001497733f5d3e", 0x6c6d}], 0x5}}, {{0x0, 0x0, &(0x7f0000000440), 0x56}}], 0x2, 0x2004000)
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x2}}, './file0\x00'})

53.237951649s ago: executing program 4 (id=541):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=@deltclass={0x44, 0x29, 0x20, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x7, 0xf}, {0xf, 0xf}, {0xffff, 0x8}}, [@TCA_RATE={0x6, 0x5, {0x3, 0xb3}}, @tclass_kind_options=@c_cbs={0x8}, @TCA_RATE={0x6, 0x5, {0x40, 0x2}}, @tclass_kind_options=@c_sfq={0x8}]}, 0x44}}, 0x8000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000640)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x6, 0x9}, {0xfff3, 0x5}, {0x1c, 0xffe0}}}, 0x24}}, 0x44804)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r3, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x6, 0x0, 0x0, 0x2, 0x0, 0x3, 0x0, 0x6, 0x7fffffff})
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000e3a000/0x2000)=nil, 0x2000, 0x17)
madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c006129d87875c629ce414091e5d4483b1f0ddbd252452b12802f20d004a919a0fb41676af53e17f6cc01c55b61ca35dcc18c6b94122e03370722379c50d5407f1c956d8eb970331f1bbbf0f8342ccd28acfde99f9393c45f9ba3693d240de0ee4e3ff0b57f7879770bbd966a73fcfd8faec02fe61a0a83b0b61df423eb2dc5135b9b21ecb5be1364cb9be581ad97a0bcc16a4b342bed937e398e03d12e7f198bda3e4779d81658a54d4c1f89f7e531d218d61afc042ed8cc7e19c7ab126382eb6eab21f36e8e22a8a34fddd630b17beb000000"])
read$FUSE(r4, &(0x7f0000006840)={0x2020, 0x0, 0x0, <r5=>0x0}, 0x2020)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x0, 0x6, 0x2, {0x1000, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2000, 0x0, r5, 0x0, 0x440}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$NS_GET_OWNER_UID(r3, 0xb704, &(0x7f0000000140)=<r6=>0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x86a}}, './file0\x00'})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@uuid_null}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}], [{@fowner_gt={'fowner>', r5}}, {@euid_eq={'euid', 0x3d, r5}}, {@fsmagic={'fsmagic', 0x3d, 0x16c}}, {@subj_user={'subj_user', 0x3d, 'overlay\x00'}}, {@euid_gt={'euid>', r5}}, {@euid_lt={'euid<', r6}}, {@subj_role}]})
syz_extract_tcp_res(&(0x7f00000001c0), 0x2, 0xa)
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0)
syz_emit_ethernet(0xea, &(0x7f0000000840)=ANY=[], 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')

48.877119936s ago: executing program 1 (id=599):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300) (async)
syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0) (async)
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) (async)
sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, 0x0, 0x800)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1) (async)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00001f0000), 0x1000002, 0x0)
r4 = dup(r3)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00') (async)
r5 = open(&(0x7f0000000000)='./bus\x00', 0x44542, 0x2)
sendfile(r4, r5, 0x0, 0x8000fffffffe)
getsockname$packet(r2, &(0x7f00000000c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000180)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0xdd860600, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="d0434b6b60fcd64400"/20, @ANYRES32=r6, @ANYBLOB="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"], 0xec}}, 0x0)

48.788153335s ago: executing program 1 (id=601):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$vbi(&(0x7f0000000000), 0x2, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_udp_int(r2, 0x11, 0x67, &(0x7f0000000000)=0x401, 0x4)
sendmmsg$inet6(r2, &(0x7f0000000740)=[{{&(0x7f0000000100)={0xa, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}], 0x300, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000001500)=@newsa={0x138, 0x10, 0x633, 0x0, 0x0, {{@in=@broadcast, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x2}, {@in6=@loopback, 0x0, 0x32}, @in=@remote, {0xfffffffffffffff2}, {}, {}, 0x0, 0x0, 0xa, 0x4}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}}, 0x0)
ftruncate(0xffffffffffffffff, 0xc17c)
r4 = syz_open_dev$hidraw(&(0x7f0000000280), 0x0, 0x40)
syz_open_dev$hidraw(&(0x7f0000000940), 0x0, 0x0)
ioctl$HIDIOCGFEATURE(r4, 0x4004480c, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$VIDIOC_S_TUNER(r1, 0x4054561e, &(0x7f0000000800)={0x91f, "91c1b3caea781e4e2e4e8ce090baa774bad44419ddd9817078e809f16b9eeeea", 0x3, 0x4, 0xa6, 0x7, 0x1, 0x0, 0x1, 0x4})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newtaction={0x88, 0x30, 0x800, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0xfffff7e8, 0x5, 0x2, 0x80000000}}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x0, 0x5, 0x0, 0xfffffff7}, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}]}]}, 0x88}}, 0x10000000)

48.707166706s ago: executing program 1 (id=605):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000740)='cgroup2\x00', 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000940), 0x0)

48.706946953s ago: executing program 1 (id=606):
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x159080, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
rmdir(&(0x7f0000000140)='./file1\x00')
chdir(&(0x7f0000001180)='./bus\x00')
rmdir(&(0x7f00000001c0)='./file0\x00')

48.627964465s ago: executing program 1 (id=608):
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1607010, 0x0)
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x87, r2}, './file0\x00'})
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r3)
sendmsg$NLBL_MGMT_C_ADDDEF(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x1c, r4, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @loopback}]}, 0x1c}}, 0x0)

48.568277676s ago: executing program 1 (id=610):
gettid()
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x89fc, &(0x7f0000000900)={'bond0\x00', @random})
r4 = syz_open_dev$usbfs(&(0x7f0000000040), 0x400000001fc, 0x301)
ioctl$USBDEVFS_SUBMITURB(r4, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {}, 0xfffffff8, 0x40, &(0x7f0000000000)={0x4b5a9da54893e123, 0x1, 0x8, 0x2}, 0x8, 0x20400000, 0xc, 0x0, 0x0, 0x20000, 0x0})

38.059629993s ago: executing program 33 (id=541):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=@deltclass={0x44, 0x29, 0x20, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x7, 0xf}, {0xf, 0xf}, {0xffff, 0x8}}, [@TCA_RATE={0x6, 0x5, {0x3, 0xb3}}, @tclass_kind_options=@c_cbs={0x8}, @TCA_RATE={0x6, 0x5, {0x40, 0x2}}, @tclass_kind_options=@c_sfq={0x8}]}, 0x44}}, 0x8000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000640)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x6, 0x9}, {0xfff3, 0x5}, {0x1c, 0xffe0}}}, 0x24}}, 0x44804)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r3, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x6, 0x0, 0x0, 0x2, 0x0, 0x3, 0x0, 0x6, 0x7fffffff})
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000e3a000/0x2000)=nil, 0x2000, 0x17)
madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c006129d87875c629ce414091e5d4483b1f0ddbd252452b12802f20d004a919a0fb41676af53e17f6cc01c55b61ca35dcc18c6b94122e03370722379c50d5407f1c956d8eb970331f1bbbf0f8342ccd28acfde99f9393c45f9ba3693d240de0ee4e3ff0b57f7879770bbd966a73fcfd8faec02fe61a0a83b0b61df423eb2dc5135b9b21ecb5be1364cb9be581ad97a0bcc16a4b342bed937e398e03d12e7f198bda3e4779d81658a54d4c1f89f7e531d218d61afc042ed8cc7e19c7ab126382eb6eab21f36e8e22a8a34fddd630b17beb000000"])
read$FUSE(r4, &(0x7f0000006840)={0x2020, 0x0, 0x0, <r5=>0x0}, 0x2020)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x0, 0x6, 0x2, {0x1000, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2000, 0x0, r5, 0x0, 0x440}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$NS_GET_OWNER_UID(r3, 0xb704, &(0x7f0000000140)=<r6=>0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x86a}}, './file0\x00'})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@uuid_null}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}], [{@fowner_gt={'fowner>', r5}}, {@euid_eq={'euid', 0x3d, r5}}, {@fsmagic={'fsmagic', 0x3d, 0x16c}}, {@subj_user={'subj_user', 0x3d, 'overlay\x00'}}, {@euid_gt={'euid>', r5}}, {@euid_lt={'euid<', r6}}, {@subj_role}]})
syz_extract_tcp_res(&(0x7f00000001c0), 0x2, 0xa)
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0)
syz_emit_ethernet(0xea, &(0x7f0000000840)=ANY=[], 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')

36.80701398s ago: executing program 0 (id=741):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYBLOB="14000000100001000000007fffffff000000000a20000000000a01030000000000000000010000000900010073797a300000000040000000030a01020000010000000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a30000000003c000000060a010400000000000000000100000008000b40000000000900010073797a300000000014000480100001800a000100726564697200"], 0xc4}}, 0x0)

36.748112338s ago: executing program 0 (id=742):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000740)='cgroup2\x00', 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}]})
chdir(&(0x7f00000003c0)='./bus\x00')
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000940), 0x0)

36.698337259s ago: executing program 0 (id=744):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000f0f000000000700000a20000000000a01030000000600000000010000000900010073797a310000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000050900010073797a31000000003c000000050a01020000000000000000010000000c00024000000000000000010900010073797a3100000000040004800b0007"], 0xc4}}, 0x0)

36.697766941s ago: executing program 0 (id=746):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000080))
pipe(&(0x7f0000000000))
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000300)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f00000004c0)={'team0\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000280000002000018008000100", @ANYRES32=<r5=>r4, @ANYBLOB="140002007465616d30"], 0x34}}, 0x0)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000040)=0x9eb9, 0x4)
bind$inet6(r0, &(0x7f0000f65000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0xfffffefffbfbbfbe, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty, 0x6}, 0x1c)
getsockopt$inet6_buf(r0, 0x29, 0x6, 0x0, &(0x7f0000000080))
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCOUTQ(r6, 0x4bfb, &(0x7f0000000000))
r7 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x2024c0, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000140)='./file0/file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r4, @ANYRES8=r5, @ANYRES16=r7, @ANYBLOB=',group_id=', @ANYRES64])
read$FUSE(r8, &(0x7f00000021c0)={0x2020, 0x0, <r9=>0x0}, 0x2020)
write$FUSE_INIT(r8, &(0x7f0000000040)={0x50, 0x0, r9, {0x7, 0x1f, 0x0, 0x490420}}, 0x50)

36.588058864s ago: executing program 0 (id=748):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) (async)
r1 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
r2 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0)) (async)
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000500)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000200)="c75582abf2ef0e4c0b130817b5786bf907ea9c6f3dfafb756c96961a9faf30eee7ac0ab183d750e6e70b07eb4c750a89db44db506e62b9994d929024f734a79e9a5085807c795b8f", 0x0, 0x48) (async)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000000)="45ff44bbab51dba8a27114154f1632f969758e23f47722217d7271a4e3d5222019d31291128a0e08b5a4b24bff4e3c928980d590ba53765e5048fe87ecbb70dee0f9e05e94883017", 0x0, 0x48)
ioctl$UFFDIO_UNREGISTER(r2, 0x8010aa01, &(0x7f0000000140)={&(0x7f0000ff1000/0xf000)=nil, 0xf000}) (async)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x2010008, 0x0) (async)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2000000, &(0x7f00000023c0)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@volatile}]}) (async)
pivot_root(&(0x7f0000000040)='./bus\x00', &(0x7f00000000c0)='./file0\x00')

36.377843961s ago: executing program 0 (id=749):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x1c}}, 0xa00000000000000)

36.353386787s ago: executing program 34 (id=749):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x1c}}, 0xa00000000000000)

33.55593079s ago: executing program 35 (id=610):
gettid()
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x89fc, &(0x7f0000000900)={'bond0\x00', @random})
r4 = syz_open_dev$usbfs(&(0x7f0000000040), 0x400000001fc, 0x301)
ioctl$USBDEVFS_SUBMITURB(r4, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {}, 0xfffffff8, 0x40, &(0x7f0000000000)={0x4b5a9da54893e123, 0x1, 0x8, 0x2}, 0x8, 0x20400000, 0xc, 0x0, 0x0, 0x20000, 0x0})

15.046891801s ago: executing program 6 (id=1148):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0xa0}}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYRESDEC=r0, @ANYBLOB="4125570343ca260121bab01539f847c61aac4a00dda4b1aae480d224671b46c37de01cdac00e41b554e83e105d46bdff5f4f6cd0e5273a498e2f2af78b65d818134971186a109799f175fd09c370d0560605", @ANYRESDEC=r0, @ANYRES64=r0, @ANYRES16=0x0], 0x6c}, 0x1, 0x0, 0x0, 0x8841}, 0x24008854)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32, @ANYBLOB="14000b000040000000000000000000000000000014000200fe"], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)
r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)="e9bed67a87ee4623d39c10780000000000000000", 0x14}}, 0x20040814)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = inotify_init1(0x800)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x410001, 0x0)
r5 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
ioctl$VIDIOC_S_FMT(r5, 0xc0d05640, &(0x7f0000000340)={0x1, @pix={0x0, 0x0, 0x33565348, 0x0, 0x0, 0x0, 0x3, 0xfeedcafe, 0x3, 0x0, 0x0, 0x2}})
inotify_add_watch(r3, &(0x7f0000000000)='.\x00', 0x8)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000000080)={{0x1, 0x1, 0x18, r2, {0xee00, 0xffffffffffffffff}}, './file0\x00'})
close_range(r2, r4, 0x0)

14.925103848s ago: executing program 6 (id=1151):
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2100000, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r0)
r1 = syz_open_dev$dri(&(0x7f0000001a80), 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f0000000300)={0x0, 0xfffffffffffffe7a, r2, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r0, 0xc06864ce, &(0x7f0000000600)={r3, 0x0, 0x0, 0x0, 0x0, [<r4=>0x0]})
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xae, 0x2000, 0x34325241, 0x0, [r4, 0x0, 0x0, r4], [0x2b8, 0xfffffffd], [0x0, 0x0, 0x0, 0xffffffff]})
rmdir(&(0x7f0000000140)='./file1\x00')
chdir(&(0x7f0000001180)='./bus\x00')
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_MGMT_C_PROTOCOLS(r5, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000440)={0x60, r6, 0x400, 0x70bd28, 0x25dfdbff, {}, [@NLBL_MGMT_A_DOMAIN={0x13, 0x1, '/dev/dri/card#\x00'}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @private=0xa010101}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @private0}, @NLBL_MGMT_A_DOMAIN={0xb, 0x1, ')+@+(/\x00'}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x3}]}, 0x60}, 0x1, 0x0, 0x0, 0x6881}, 0x8000)
rmdir(&(0x7f00000001c0)='./file0\x00')

14.877610411s ago: executing program 6 (id=1152):
mlockall(0x7)
mremap(&(0x7f0000a89000/0x2000)=nil, 0x2000, 0x1000, 0x4, &(0x7f0000c13000/0x1000)=nil)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x700000e, 0x50032, 0xffffffffffffffff, 0x0)
syz_clone(0x80000480, 0x0, 0x0, 0x0, 0x0, 0x0)
mlockall(0x7)

14.786272975s ago: executing program 6 (id=1154):
r0 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00') (async)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000340)='./file0/../file0/../file0/../file0\x00', &(0x7f00000003c0)='./file0\x00')
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r0, 0x0, 0x0)
r3 = epoll_create1(0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x58, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x2c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'syz_tun\x00'}]}]}]}], {0x14}}, 0x80}}, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb080045000030fffc0000082f"], 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000000)) (async)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000000))
r6 = openat$cgroup(r2, &(0x7f0000000400)='syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r6, &(0x7f0000000200)='pids.events\x00', 0x300, 0x0) (async)
r7 = openat$cgroup_ro(r6, &(0x7f0000000200)='pids.events\x00', 0x300, 0x0)
preadv(r7, &(0x7f0000000a00)=[{&(0x7f0000000ac0)=""/155, 0x68}], 0x1, 0x0, 0x0)

14.783528353s ago: executing program 6 (id=1155):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x148501, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349f7f2})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = dup(r3)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r4, 0x4068aea3, &(0x7f0000000280)={0xbe, 0x0, 0x1})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f00000cb000/0x18000)=nil, &(0x7f0000000480)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r4, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000ebffff044d564b"])
r5 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000100)=@o_path={&(0x7f0000000080)='./file0\x00', 0x0, 0x18, r0}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r4}, &(0x7f0000000040), &(0x7f0000000140)=r5}, 0x20)
writev(r0, &(0x7f0000001400), 0x0)

14.476746926s ago: executing program 6 (id=1161):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000600)={0x26, 'aead\x00', 0x0, 0x0, 'generic-gcm-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=[@assoc={0x18, 0x117, 0x4, 0xa3}], 0x18, 0x40}, 0x4)
sendmsg$TIPC_NL_MEDIA_SET(r1, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000000080)=ANY=[@ANYRESOCT=r0], 0x12f4}}, 0x4008000)
recvmmsg(r1, &(0x7f0000000d40)=[{{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000a40)=""/81, 0x51}, {&(0x7f0000000ac0)=""/215, 0xd7}], 0x2}, 0xfffffffd}], 0x2, 0x40010100, 0x0)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x0, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x8, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000180)={r4, r3, 0x0, 0x0, @val=@tracing={0x0, 0x2}}, 0x40)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000240)={r5, 0x0, 0x0}, 0x10)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0010100109050b362f"], 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x6, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
ptrace$getenv(0x4201, r6, 0x0, &(0x7f00000003c0))
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
r8 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$sock_int(r8, 0x1, 0x2d, &(0x7f00000000c0)=0x8, 0x4)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r9 = syz_open_procfs$pagemap(0x0, &(0x7f0000000600))
ioctl$PAGEMAP_SCAN(r9, 0xc0606610, &(0x7f0000000240)={0x60, 0x0, &(0x7f000007e000/0x2000)=nil, &(0x7f0000a93000/0x3000)=nil, 0x1, 0x0, 0x0, 0x3, 0x10, 0xb6, 0x6, 0x9})
socket$nl_route(0x10, 0x3, 0x0)

14.474806367s ago: executing program 36 (id=1161):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000600)={0x26, 'aead\x00', 0x0, 0x0, 'generic-gcm-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=[@assoc={0x18, 0x117, 0x4, 0xa3}], 0x18, 0x40}, 0x4)
sendmsg$TIPC_NL_MEDIA_SET(r1, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000000080)=ANY=[@ANYRESOCT=r0], 0x12f4}}, 0x4008000)
recvmmsg(r1, &(0x7f0000000d40)=[{{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000a40)=""/81, 0x51}, {&(0x7f0000000ac0)=""/215, 0xd7}], 0x2}, 0xfffffffd}], 0x2, 0x40010100, 0x0)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x0, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x8, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000180)={r4, r3, 0x0, 0x0, @val=@tracing={0x0, 0x2}}, 0x40)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000240)={r5, 0x0, 0x0}, 0x10)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0010100109050b362f"], 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x6, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
ptrace$getenv(0x4201, r6, 0x0, &(0x7f00000003c0))
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
r8 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$sock_int(r8, 0x1, 0x2d, &(0x7f00000000c0)=0x8, 0x4)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r9 = syz_open_procfs$pagemap(0x0, &(0x7f0000000600))
ioctl$PAGEMAP_SCAN(r9, 0xc0606610, &(0x7f0000000240)={0x60, 0x0, &(0x7f000007e000/0x2000)=nil, &(0x7f0000a93000/0x3000)=nil, 0x1, 0x0, 0x0, 0x3, 0x10, 0xb6, 0x6, 0x9})
socket$nl_route(0x10, 0x3, 0x0)

1.55717253s ago: executing program 8 (id=1380):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000000)="3296ac2aafea44f875be0542c4b3c57eb6eb682d14d164b2dd8e4cbccccd225e83866ea5e8", 0x0}, 0x20)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x89f1, &(0x7f0000000900)={'ip6gre0\x00', @random="1400002000"})
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)=0x40)
r2 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r2, 0x7a7, &(0x7f0000000080)=0xb0000)
r3 = socket$inet6(0xa, 0x80803, 0x83)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000002c0)={{{@in6=@private1, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xae}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@mcast2, 0x0, 0x32}, 0x0, @in=@multicast1, 0x4000, 0x0, 0x0, 0x0, 0x9}}, 0xe8)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="1e0000000004000004000000860d000004400100", @ANYRES32=0x1, @ANYBLOB="0200"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="02000100000000f7ffffff0000000000000000", @ANYRES32, @ANYBLOB], 0x50)
setsockopt$inet_buf(r4, 0x0, 0x8008000000010, &(0x7f0000005e40)="17000000020001000003d68c5ee17688a2003208020300ecff3f0200000300000a000000009afc5ad9485bbb6a880000d6c8db0000dba67e060180000a0000f10607bdff59100ac45761407a681f009cee4a5acb3da400001fb700674f19b44e09f9315033bf79ac2dff060115003901000000000000ea000000000000000009ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e000"/184, 0xb8)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, &(0x7f0000000000)={@my=0x1})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r5 = io_uring_setup(0x30d3, &(0x7f00000000c0))
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000003c0)="36660fc7b7c1432def66baf80cb880a8b882ef66bafc0ced646d0fc7aa89c3615b0f0093010000002e0f01cb0f23a8263667360fc75b000fc7b10038000066bad00466ed", 0x44}], 0x1, 0x43, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r7, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, 0x0}], 0x1, 0x11, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r7, r8, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x3c, &(0x7f0000000180)=[@cr4={0x1, 0x8}], 0x1)
close_range(r5, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xae)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r9 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(r9, 0x107, 0xc, 0x0, &(0x7f0000000080))
clock_settime(0x0, &(0x7f0000000240)={0x77359400})
clock_adjtime(0x0, &(0x7f0000000640)={0x7, 0x9, 0x380000, 0x8, 0xfffffffffffffff9, 0xfffffffffffffff7, 0x9, 0x0, 0xae, 0x6, 0x7, 0x4, 0xfffffffffffff04f, 0x7, 0x80000000, 0xfffffffffffffff8, 0xffffffffffffffff, 0x6, 0x0, 0x100, 0x4, 0x2, 0x5, 0x3, 0x8, 0x8})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r2, 0x7a8, &(0x7f0000000640)={{@my=0x1}, @local, 0x0, 0x2925, 0x0, 0x20000000, 0xfffffffffffffffd})

1.427221232s ago: executing program 7 (id=1384):
r0 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000140)=@usbdevfs_driver={0x7, 0x1, &(0x7f00000004c0)="fbdea2a5f6c7c91edf284b14f2721521f64ae902acfc80089d8750093656b42a71175a42dd60c57481a7a092575506e54080e0f8352ab6972cc0418344cc1b03232cee8a2ff53a5c6c614ba78dfdc1ecfe506be3f0c46bd0cbd1ee5b3b2c438625a15b969cf5062e4b633efa03e590387cb543294987433f04c59957200c434b5486a18ad469aa203b5f6bf112b8de4702d23b80a21de2acde2f353263a52d5d5ae37704c44c579be0d5c1f24a2afe5a5a68c6037eeae45c547375f63c"})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'veth1_vlan\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=@dellink={0x20, 0x11, 0x101, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r3}}, 0x20}}, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f00000003c0)={0x7, r2, 0x2})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x1e, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x26}]}, &(0x7f0000000100)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', r3, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb, @void, @value}, 0x94)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x3}, 0x58)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fd7000/0x18000)=nil, &(0x7f0000005700)=[@text32={0x20, 0x0}], 0x1, 0xc, 0x0, 0x0)
r8 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
dup2(r8, r9)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000005, 0x12, r9, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000040)={<r10=>0x0, @in6={{0xa, 0x4e24, 0x0, @loopback, 0x6}}, 0x0, 0x162d, 0x1ff, 0x71d, 0x7}, &(0x7f0000000280)=0x98)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r4, 0x84, 0x77, &(0x7f00000002c0)={r10, 0x5, 0x2, [0xffff, 0x3]}, &(0x7f0000000300)=0xc)
r11 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r11, 0x5412, &(0x7f00000000c0)=0xd)
ioctl$USBDEVFS_IOCTL(r0, 0x80045505, &(0x7f0000000340)=@usbdevfs_connect)

1.168029043s ago: executing program 8 (id=1387):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ip_tables_targets\x00')
r1 = syz_open_dev$vbi(&(0x7f00000001c0), 0x1, 0x2)
openat$cgroup_ro(r0, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x0, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
write$binfmt_script(r2, &(0x7f0000000100), 0xfffffd9d)
write$binfmt_script(r2, &(0x7f0000001b00), 0xfffffd9d)
write$cgroup_subtree(r2, &(0x7f0000000040), 0x0)
preadv(r0, &(0x7f0000000040)=[{&(0x7f0000000140)=""/220, 0xdc}], 0x1, 0xa1, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ip_tables_targets\x00') (async)
syz_open_dev$vbi(&(0x7f00000001c0), 0x1, 0x2) (async)
openat$cgroup_ro(r0, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x0, 0x0) (async)
fcntl$dupfd(r1, 0x0, r1) (async)
write$binfmt_script(r2, &(0x7f0000000100), 0xfffffd9d) (async)
write$binfmt_script(r2, &(0x7f0000001b00), 0xfffffd9d) (async)
write$cgroup_subtree(r2, &(0x7f0000000040), 0x0) (async)
preadv(r0, &(0x7f0000000040)=[{&(0x7f0000000140)=""/220, 0xdc}], 0x1, 0xa1, 0x0) (async)

1.097913604s ago: executing program 8 (id=1388):
r0 = fsopen(&(0x7f0000000400)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = creat(&(0x7f00000001c0)='./file0\x00', 0x8)
close(r2)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f000000c400)={0x2020, 0x0, <r4=>0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f00000002c0)={0x50, 0x0, r4, {0x7, 0x1f, 0x0, 0x108b}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f000000a3c0)="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", 0x2000, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x78, 0x0, 0x0, {0x410000003, 0x0, 0x0, {0x0, 0x40000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, r5}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
execve(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f0000000880)={0x30, 0x5, 0x0, {0x0, 0x1, 0x7, 0x1}}, 0x30)
r6 = openat$cgroup_ro(r1, &(0x7f0000000340)='cgroup.stat\x00', 0x300, 0x0)
open_by_handle_at(r6, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000200000007"], 0x100040)
ioctl$sock_inet6_tcp_SIOCATMARK(r6, 0x8905, &(0x7f0000000000))

1.028118894s ago: executing program 7 (id=1390):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6)
recvmmsg(r1, &(0x7f0000000580)=[{{&(0x7f0000000080)=@nl=@unspec, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000100)=""/230, 0xe6}, {&(0x7f0000000240)=""/200, 0xc8}, {&(0x7f0000000340)=""/175, 0xaf}, {&(0x7f0000000400)=""/53, 0x35}, {&(0x7f0000000440)=""/119, 0x77}], 0x5, &(0x7f0000000540)=""/55, 0x37}}], 0x400000000000222, 0x0, 0x0)
writev(r1, &(0x7f0000000040)=[{&(0x7f00000000c0)="c7b9910d", 0x4}], 0x1)
r2 = socket(0xa, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200004c0], 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"]}, 0x2a8)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x0, 0xa4c, @dev={0xfe, 0x80, '\x00', 0xfe}, 0x4}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x20, &(0x7f0000000100), 0x4)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'netpci0\x00'})

378.005444ms ago: executing program 3 (id=1404):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000002000095", @ANYRES32], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'veth1_to_hsr\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r0, r2, 0x25, 0x0, @val=@netfilter}, 0x20)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r3=>0xffffffffffffffff})
shmat(0x0, &(0x7f0000ff9000/0x1000)=nil, 0x6000)
mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x2, 0x1)
mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x2)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0x541b, &(0x7f0000000200)={<r4=>0xffffffffffffffff})
close_range(r4, 0xffffffffffffffff, 0x0)

328.111342ms ago: executing program 3 (id=1406):
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$CDROMREADTOCHDR(r0, 0x5305, &(0x7f0000000480))
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_int(r1, 0x0, 0x34, 0x0, &(0x7f00000001c0)=0x2)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f0000000180)=ANY=[@ANYBLOB="02000000fff5000020000040"])

235.808216ms ago: executing program 8 (id=1408):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000005, 0x3032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mremap(&(0x7f0000241000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040))
ioctl$UFFDIO_WRITEPROTECT(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000800000/0x800000)=nil, 0x802000}, 0x2})
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$UFFDIO_CONTINUE(r2, 0xc018aa06, &(0x7f0000000100)={{&(0x7f0000800000/0x800000)=nil, 0x800000}, 0x1})
mremap(&(0x7f0000b8e000/0x4000)=nil, 0x4000, 0x2000, 0x0, &(0x7f00004e5000/0x2000)=nil)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x9}, 0x1c)
listen(r0, 0x3)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x200000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000240)='kvm_unmap_hva_range\x00', r4}, 0x18)
r5 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000000), 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r5, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r5, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r6=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r5, 0xc02064b6, &(0x7f00000001c0)={r6, <r7=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(0xffffffffffffffff, 0xc02864ca, &(0x7f0000000340)={&(0x7f0000001340), 0x0})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r5, 0xc01064c8, &(0x7f0000000280)={0x1, 0x0, &(0x7f0000000200)=[0x0]})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r5, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000180)=[0x0, 0x0, <r8=>0x0], &(0x7f0000000040), 0x3, r7})
ioctl$DRM_IOCTL_MODE_ATOMIC(r5, 0xc03864bc, &(0x7f0000000380)={0x0, 0x1, &(0x7f00000000c0)=[r7], &(0x7f0000000200), &(0x7f0000000040)=[r8], &(0x7f0000000340)})
setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f0000000000)=0x3, 0x4)
syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "2a8435", 0x14, 0x6, 0x0, @empty, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x4, 0x5, 0xc2}}}}}}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
setitimer(0x0, &(0x7f0000000100)={{}, {0x0, 0x2710}}, 0x0)

235.506007ms ago: executing program 5 (id=1409):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
ioctl$CDROMVOLCTRL(r1, 0x5392, &(0x7f0000000040)={0xa, 0x5, 0x4e}) (async)
r2 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000140), 0x40, 0x0)
ioctl$FBIOBLANK(r2, 0x4611, 0x4)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x66960000)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r3, @ANYBLOB="0000000002000000b705000008000000850000007000000095"], &(0x7f0000000300)='GPL\x00', 0x4, 0x1002, &(0x7f0000002500)=""/4098, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe65, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x4d)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f00000007c0), 0xffffffffffffffff) (async)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$int_in(r5, 0x5452, &(0x7f0000000300)=0x208) (async)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c) (async)
sendto$inet6(r5, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) (async, rerun: 32)
poll(&(0x7f0000000040)=[{r5, 0x680}], 0x1, 0x800) (async, rerun: 32)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) (async, rerun: 32)
setsockopt$inet6_tcp_TLS_TX(r5, 0x6, 0x1, &(0x7f00000001c0)=@gcm_256={{0x303}, "50aa7a2c827c3d20", "41fdc2f67fc12e73c23dac9553e35506e4a881d599378284d35874584413ef8e", "b94cd8c0", "ee29ff353301c065"}, 0x38) (rerun: 32)
r8 = dup(r7)
ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2) (async)
r9 = eventfd(0x1cd)
ioctl$VHOST_NET_SET_BACKEND(r8, 0x4008af30, &(0x7f0000000180)={0x3, r9})
sendto$inet6(r5, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090011006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x1, 0x0, 0x0) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="cf0a0000", @ANYRES16=r4, @ANYBLOB="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"], 0x11c}}, 0x0)

131.660741ms ago: executing program 3 (id=1410):
r0 = socket$packet(0x11, 0x3, 0x300)
syz_open_dev$rtc(0xfffffffffffffffc, 0x0, 0x0)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000000440)=@base={0x1d, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000001c0)={0x58, 0x2, 0x6, 0x201, 0x0, 0x0, {0x0, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x1}]}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}]}, 0x58}, 0x1, 0x0, 0x0, 0xc040}, 0x0)
open(&(0x7f0000000000)='./cgroup\x00', 0x10000, 0xd1)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x3)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x8, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000003c0)={r2, &(0x7f0000000bc0), 0x20000000}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r2, &(0x7f0000000080)}, 0x20)
r3 = socket$netlink(0x10, 0x3, 0x4)
write(r3, &(0x7f00000000c0)="2700000014000707030e0000120f0a0011004ad75147a2c01f52ea064d13620100f5fe0012ff00", 0x27)

131.168206ms ago: executing program 7 (id=1411):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xe, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r1, 0x50009404, &(0x7f0000000140))
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x60}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0x0, 0x8}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0x700}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

131.042936ms ago: executing program 5 (id=1412):
r0 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder-control\x00', 0x2, 0x0)
ioctl$BINDER_CTL_ADD(r0, 0xc1086201, &(0x7f0000000140)={'binder0\x00'})
ioctl$BINDER_CTL_ADD(r0, 0xc1086201, &(0x7f0000000280)={'custom0\x00'})

128.926978ms ago: executing program 7 (id=1413):
r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
unshare(0x62040200)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(r1, 0x0, 0x81, &(0x7f0000000040)={'filter\x00', 0x0, 0x0, 0x0, [], 0x1, 0x0, 0x0, [{}]}, 0x88)
ioctl$VIDIOC_EXPBUF(r0, 0x2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r2=>0xffffffffffffffff})
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f00000001c0)={0x1, r2, 0x2})
r3 = openat$dma_heap(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, &(0x7f0000000040)={0x5, <r4=>r2})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000100)=0x5)
r5 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'bond_slave_1\x00', <r6=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(r5, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="480000006800010000000000000000000a000000000000000c0008800800030000000000060007000200000008000500", @ANYRES32=r6, @ANYBLOB="140006"], 0x48}}, 0x0)

128.388738ms ago: executing program 8 (id=1414):
r0 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000080), &(0x7f00000000c0), 0x0)
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
close(r1)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000100), &(0x7f0000000140), 0x0)
r2 = openat$binfmt(0xffffffffffffff9c, r0, 0x2, 0x0)
write(r2, &(0x7f0000000180)="01010101", 0x4)
close(r2)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f00000001c0), &(0x7f0000000200), 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
close(r3)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000280), &(0x7f00000002c0), 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x1ff)
mkdirat(r3, &(0x7f0000000000)='./file1\x00', 0xa)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000340), &(0x7f0000000380), 0x0)

127.664056ms ago: executing program 5 (id=1415):
r0 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0xc8d03)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000000)={<r1=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r0, 0xc01864cd, &(0x7f0000000180)={&(0x7f0000000080)=[r1], 0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc03064ca, &(0x7f0000000200)={&(0x7f0000000400)=[r1, r1], 0x0, 0x4, 0x2, 0xc})
r2 = fsopen(&(0x7f0000000340)='afs\x00', 0x0)
syz_open_dev$usbmon(&(0x7f0000000000), 0x3, 0x2)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x2881c0, 0x0)
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f0000000080)=0x3)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000140)='source', &(0x7f0000000180)='#%::\x00\xfdM\xab\x89\xff\xda\xc7dw2\xa1\xb2\xabuQQ\x14\x97\xc9\xfae\xc7\xa1U\xe2\xbe\"\xb9t\xa0\x0e\xfa\xdb\xf1\xa5.\xd87\xc3p\xa5l\xf8vC\xe2\xe8 \xd5-<+\x186\xe1\xbd\xc0\xc3\xb5N(vj\xa7+<:\xc4\xe00\x01\xdd \x82\x83\xed\x0e\xc4\x1d\xac\xef7\b\xd3Z5\\A\'\x18\xa2\xc3\xab\xc7`\xc3\v\xf3L\x9d[\a\x00\x11@=\xa1\x9b\xdc\xb1\xef\xc3k<\x97L\xa0\xab\xa6\x1ce5<\x0e\xd25\fo\x8f^N\xbd@\x01\xc0\xb2\x88\xc3\xe2\x96T\xa3\xa5\xeb\x0f\xf2f\xb9$\xd2\x14<L\x19K\xbf\xf7\x9c\xe7 \x12+4.\xa9\xa7\xdc[\xd2\xec\xbe\x1a\xa1\x04\xd3\x9e\x92\x8a\xf7\xdb\xe7f\xdeo\xc1\xa5\xb6T\r)\x1c\xbe\x12\xd1\xef\xc2S\xcci\xc8\x0e\x00]\xe6|\xccK\xc7\r\xfa \x02\xe8\x1b\xc1\x93\xce\x02%\x86\xcb\x94K\v\xe7x\xe3\x06[/\xf9\xa8\x82\x9b\xeeF\x88\xc0f\x82\xb7T\r\x04\xbb\x10\x1d3\xa6', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f00000000c0)='source', &(0x7f0000000280)='source', 0x0)

127.480472ms ago: executing program 3 (id=1416):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x80, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x900, &(0x7f0000000240)={0x85, 0x0, 0x80000}, 0x20)
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x410601, 0x0)
sendto$inet6(r0, &(0x7f0000000040)='l', 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

67.696106ms ago: executing program 3 (id=1417):
r0 = epoll_create1(0x0)
r1 = epoll_create1(0x0)
r2 = fcntl$dupfd(r0, 0x406, r0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r0, &(0x7f00000001c0)={0x20000001})

64.62387ms ago: executing program 5 (id=1418):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x1, {0x0, 0x0, 0x0, r1, {0xfff3, 0x3}, {}, {0x1c, 0x6}}, [@filter_kind_options=@f_u32={{0x8}, {0x48, 0x2, [@TCA_U32_SEL={0x34, 0x5, {0x9, 0xf1, 0x2, 0x7, 0xe, 0xfff9, 0x9, 0x46, [{0x5, 0x3, 0x7fff, 0x4}, {0x5, 0x10, 0x6, 0x9}]}}, @TCA_U32_CLASSID={0x8, 0x1, {0x10, 0xa}}, @TCA_U32_LINK={0x8, 0x3, 0x1}]}}]}, 0x74}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000440)={0xf8, 0x0, 0x1, 0x401, 0x0, 0x0, {0x5, 0x0, 0x7}, [@CTA_SEQ_ADJ_REPLY={0xc, 0x10, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x7}]}, @CTA_FILTER={0x3c, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x10}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x8}, @CTA_FILTER_ORIG_FLAGS={0x8}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x198}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x840}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x54c}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x800}]}, @CTA_TUPLE_ORIG={0x10, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1b}}]}, @CTA_NAT_DST={0x10, 0xd, 0x0, 0x1, [@CTA_NAT_PROTO={0xc, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e23}]}]}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xf, 0x1, 'sane-20000\x00'}}, @CTA_TUPLE_MASTER={0x50, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010101}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x1e}}}}]}, @CTA_PROTOINFO={0x18, 0x4, 0x0, 0x1, @CTA_PROTOINFO_DCCP={0x14, 0x2, 0x0, 0x1, [@CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0x1}, @CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0x3}]}}]}, 0xf8}}, 0x200000c5)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000100)={<r4=>0x0, 0x2c, &(0x7f0000000040)=[@in={0x2, 0x4e23, @private=0xa010101}, @in6={0xa, 0x4e24, 0xdbc, @mcast1, 0x7fff}]}, &(0x7f0000000080)=0x10)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000000)={r4, 0x7f, 0x8, 0x80000001, 0x8}, 0x14)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

63.985299ms ago: executing program 5 (id=1419):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000002007910480000000000610430000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x0, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x14)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001540)=ANY=[@ANYBLOB="b702000008000000bfa300000000000007030000ffffffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000001404000001007d60b7030000000000006a0a00fe40000900850000001f000000b70000000000000095000000000000006623848adf1dc9a764ab51a064caff0c9b27a26293fddf0180000071ff31f1622271d5518193e09483c5a020c334f8c76334d8ce8303b81ddaa52e8756ad60a07d6f27c125e16d024098f755d8583da60f27c162dbba0700002ac9170f50f2568836077b7f711a18ebf608d87b885297b6b6981978d51514b00dcc4a2748b376358c33c9753beab62bdf27dc04e4cb4bc598affd989b1ca58949a54d5827df14feecea46408a05d572077f1252fbb72c3d099c501bc4ded6fca17a3447222c95edb47b770009524edd5fa5c53e9c37251709f1ff7f0000f07bf7f53ce129a9ecd3b4dd15100f2b450f98526a0d8cac7c97fc2f64015306a1bd88345710fb6379b4c53cf55eefb4c0974486a8d25a363adbd83b49e13fbd1757b27020bd9b8cff3f48c9411670c34f23ab8caf7851b290feb3045a1b622f20c4383a0280f040de7667f8b1d0842835e81c35af41e5b5b924275cb1749289b44e9728e7a73f148ac8206afe120c1437490d9900000011000003971b32fdffffffffffffffaf580278e1342aabd1b623f6c4f128858e4eb6b42f2173184c2b99b645f6ec0e14e5d7c95a0008000000f30f6c0000000000ff0000b8f5001a1d2a34dc0973ec302bc23211d3e3b6e6dad65a51e5497a3419cecec38126247b27113ad4c7915c8f82c333a7b350802f0311807010d1ed50c18411aa6900daccc02f4ba4b078f07e41f781eee222c7d071d5a94d82ca9a0846c1af59cee16639b4970f8f0a82c6a712fd5722d677d406160ffaffffffb4e0bde6749aa52c408b74251914c5d3255fd88a42e7ebb69ebcd8eee623e51dbb1f1b548c91a6825c0686fdc16be1cbb72c217fda18bd746253ca66093daf35923300b600000000ac376e0a4649a8a84e1d293a6b109c5e59b366bca5cc3d936c53d4a48c05099e6fc37e5aa23bff8cce0600000000000300a568a8532623d12b40b50ac26f2e8255470a04bfbe7acb581b90991d965a01d1f84cb6b973558e1e3f8118c77ccf0b3c6eb6443870004da10c75723b65f83769ad1f0e4ef6b9ef1cec23264fd8fdac6264af1cb467020bdc12b797b6c156c439105829d2ae1c45f7cfa40df68f536a03353a55a8a8e176e5d48887d31c8e0f77f2c1e68ec7c01bd5a2028a8fc107007f5f4c67600a6ade3deb1f200abe1f753754678dae8b4e3ba3d086d4b95dfc5817e3dafae2d38b522f942cc750399d9029f071fdb1e05882f8a4b8fbd219ccac3a895828b4f22b6527ce31ceb02b7b2b4492510134552f0b076b168394f8417f25cc82ae04007193cbe69de8bf35e4bebd15412426b2020ab1f05fc44ae9ae094c1b81d3ef947692b44d2afb09c7498dedf0f87c38bbcab7357836f03e8a7c392e535694a3ead2de11e6b1781e2a017ac341fda2e563ee95085742f5fee9f95f4741b226e428d20b00bc140000e4b2f5efd0a0b1ceba000830ba8634b5aa26bdbe91614e92fae3c7349531df9bf4c01ebf5d8eb7d53e5f30647661623fbdb3f6c3652c423ce6ecc1be5d4e8133fc32f68ea86a2df1e7df98a0ae216c405d0ae9eed114ff2d6fe27dfdff1cf9194849c4cc0da9533e5983863e526a7dc0d8728f3b573ca4427bdb44df9341e9b8420e896598a156c935c800436a312e7ae3c011e46851ac599f0427729ab9c55ae0ab4c0000000000000000000000000000c87bcc2ac5aed9467b51d92e0993af4beaf1f3d47dcdfab9165f98155d93e383d6b85158b54675c1585037508c1e9461a1c3d1a6e2402045cae150a7016f716eebbdf6afc4414d900be0bdf19f4a273f44f4357380b4387f1c8b104f0e406b2f04e5ed88631be6411f9927fe9f83412b7c5a676ceec8b454ebf6481c98e86b6933a02daea0b4ec0be5b3d916bd70208b4588626c27c318475802e2c62681bd1a331422a6e47bbd40857d52c4894944fae5c5000000000000000000000000e0c47613e950b6aefeae054fc723f62ac7d13941de11b018f1f48ac50335df91c771729f81929128135b2803562c1171ee00a3f4a31281aa363e087d53d86dd85e3ff979a7e72d16fdd7e1a0f07a1c8e6085d280d760f74975ceb3a5be6cfb4da8e0aeb769b8b75f4aad803ed77d34872eed2711aa40a3b38099dc2752e8ec9b520faf39e416752aa0830206736570f5d41a4df848c9052551cf8dcb1be000000000eb2577188e8e96bd825d462350905d3eb916b397d2a46a64081e85661d7a5a2716cc87cb1976d15d9b6418e94f165911803e43830432226c660f4da67bb7c8ceb3755c07197d8b80b8d16b12c2ec63bebe107aa2350a7ae564bf69a6c52a2da1496016dd66a1c1b112"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000880), 0xfffffffffffffddd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0x27, 0x0, &(0x7f0000000140)="3d6ee2e04b91ab10143d9abe86dd", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)

61.374506ms ago: executing program 3 (id=1420):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x10}, {0x0, 0xa}}}, 0x24}}, 0x40044)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x2c240, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000080), 0x10, 0x126540)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000000440)={r1, 0x0, {0x0, 0x0, 0x0, 0x1, 0x7, 0x0, 0xa, 0x18, 0x10, "339f020bbe78b39843d601010000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323695c58d66500", "a1163939c787a16c1ca43f8539f3d3289737f0374c72a964a0193b3e8772fd29f35239d200", "24431a1e77a68e174f000000000000000010e200", [0x2]}})
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0xffffffffffffff7e, 0x24, 0xf0b, 0x4, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {0xfff1}, {0xc, 0xffff}}, [@TCA_RATE={0x6, 0x5, {0x84, 0x3}}]}, 0x2c}}, 0x0)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x32602, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000140)={0x2, &(0x7f0000000080)=[{0x28, 0x0, 0x0, 0xfffff010}, {0x80000006}]}, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000001200))
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
munlockall()
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)=@newtfilter={0x54, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0xfff3}, {}, {0xfff1, 0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x24, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x20, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x1c, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x2c0}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x5c840}, 0x2000c005)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0)
socket(0x2a, 0x2, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x10}, {0x0, 0xa}}}, 0x24}}, 0x40044) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x2c240, 0x0) (async)
syz_open_dev$loop(&(0x7f0000000080), 0x10, 0x126540) (async)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000000440)={r1, 0x0, {0x0, 0x0, 0x0, 0x1, 0x7, 0x0, 0xa, 0x18, 0x10, "339f020bbe78b39843d601010000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323695c58d66500", "a1163939c787a16c1ca43f8539f3d3289737f0374c72a964a0193b3e8772fd29f35239d200", "24431a1e77a68e174f000000000000000010e200", [0x2]}}) (async)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0xffffffffffffff7e, 0x24, 0xf0b, 0x4, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {0xfff1}, {0xc, 0xffff}}, [@TCA_RATE={0x6, 0x5, {0x84, 0x3}}]}, 0x2c}}, 0x0) (async)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x32602, 0x0) (async)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000140)={0x2, &(0x7f0000000080)=[{0x28, 0x0, 0x0, 0xfffff010}, {0x80000006}]}, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000001200)) (async)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) (async)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) (async)
munlockall() (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)=@newtfilter={0x54, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0xfff3}, {}, {0xfff1, 0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x24, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x20, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x1c, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x2c0}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x5c840}, 0x2000c005) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0) (async)

6.569905ms ago: executing program 7 (id=1421):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000003840), 0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000003fc0)={0x0, 0x0, &(0x7f0000003f80)={&(0x7f0000000100)={0x16c, r1, 0x1, 0x0, 0x20000000, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x148, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0xf}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x4}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}]}]}, 0x16c}}, 0x0)

5.68791ms ago: executing program 8 (id=1422):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
tee(r0, r1, 0x9, 0x5)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
recvfrom$packet(0xffffffffffffffff, &(0x7f0000000000)=""/11, 0xb, 0x202, &(0x7f00000000c0)={0x11, 0x16, r2, 0x1, 0x96, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3d}}, 0x14)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'pim6reg1\x00', <r3=>0x0})
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r4=>r0}, './file0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='cma_release\x00', r4, 0x0, 0x7}, 0x18)
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@getqdisc={0x28, 0x26, 0x20, 0x70bd28, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {0xb, 0xc}, {0xa, 0xfff3}, {0xb}}, [{0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x4c088)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r4, 0x84, 0x1e, &(0x7f0000000300)=0xfffff26f, 0x4)
ioctl$SIOCGETSGCNT(r4, 0x89e1, &(0x7f0000000340)={@loopback, @multicast2})
ioctl$PPPIOCGFLAGS(r4, 0x8004745a, &(0x7f0000000380))
r5 = openat$selinux_user(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r5, 0xc020f509, &(0x7f0000000400)={<r6=>r0, 0x5, 0x1, 0xffffffff})
r7 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
setsockopt$SO_TIMESTAMPING(r7, 0x1, 0x41, &(0x7f0000000440)=0x20, 0x4)
ioctl$IOMMU_VFIO_IOAS$GET(r6, 0x3b88, &(0x7f0000000480)={0xc, <r8=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r6, 0x3ba0, &(0x7f00000004c0)={0x48, 0x5, r8})
write$selinux_user(r4, &(0x7f0000000540)={'system_u:object_r:userio_device_t:s0', 0x20, 'system_u\x00'}, 0x2e)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000580)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000700), 0x610000, 0x0)
r11 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000a40), 0x2, 0x0)
clock_gettime(0x0, &(0x7f0000000dc0)={<r12=>0x0, <r13=>0x0})
ioctl$VIDIOC_QUERYBUF_DMABUF(r4, 0xc0585609, &(0x7f0000000e00)={0x1, 0xc, 0x4, 0x100, 0xffffffff, {r12, r13/1000+10000}, {0x3, 0xc, 0xbe, 0xd, 0x7, 0x1b, "2d92207e"}, 0x2, 0x4, {<r14=>0xffffffffffffffff}, 0x10001, 0x0, <r15=>r4})
io_submit(0x0, 0x9, &(0x7f0000000f80)=[&(0x7f00000006c0)={0x0, 0x0, 0x0, 0x3, 0x7ff, r7, &(0x7f00000005c0)="5e8d1c85cbcf96cb91385e2ef7858ca9d6d124ba20c4b0d681cef55702605fd68b1978cbf332faf25576accb5ee21d90204410c74739ddb15c95e4f810d7f208a39480dbc5247728eaeaf3607a511c1f8482cec62fbd91e023e14be3689d3acaebe73b432ca662552f320b19e91948d132d842e4759978cf01c44f69d7b049d9c6d3559ae0ef0d031481899a7bb7353b9eedbe6241a9f9c762700555ee22d694c002fd0b91fa7c88c452a1a3f38a166e26758a1dd1064af4fff69c350dbeb548cb26b669a94278b802fb6e8061833b0d4836", 0xd2, 0x0, 0x0, 0x2, r4}, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x5, 0x2, r10, &(0x7f0000000740)="0470d684b65537b3924405daf02c30c5ffe92295283f58b04aba665861d3c31d75a9c7813868ea192ce334bffc6d9744287f1e1eb2c2d67df5e38e8c8efd1392509fabf02243a421925dad868e3d6e3df9db2cf049793e4952cc42625245f6c0381fee3afa88cde7be926aacd805eb312910c33a673597df4fe23e3edebbe214db3bada6c5ee6a0a82043c5a09e1a80be1c8f98b1876c52de31477e4c1238490f1ca81d777c18e85481f45976aa0c209af1baa6b5c23bb79ab31817ca422a8f823cd0df33acaa83ac4101169188f0f0231ff911a887ae1c5145d5d1a86d4f26a082ae7", 0xe3, 0x8000000000000001, 0x0, 0x2}, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x1, 0x4, r4, &(0x7f0000000880)="f84ba1dc25d46be7f60dca590a7450fc1c768d809b4c931a41e1893d246130cb4cd6b7b5d643b33bc2335230a1370df1c5611ee2e44b6259dabc11eb94cd371c2a8521649a7aae5d22598e4cf17e97317dcc1976464c7d713765bf3d3250dd8c50200458c21dbf755c459b6c6c047ed1578ba911f785daa38a8961801521209a2d70d92c602ba762b506a6cc073bb5ffc3e473edd94933faebea058a57c53097c6e361ad6827401e471653b69c0ab49a1f49f367c82c95df0f", 0xb9, 0x4, 0x0, 0x1, r6}, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x2, 0x8, r4, &(0x7f0000000980)="9f1d4bf7d58a7015becef9c8f8756e869b7c92da601341fd71b6d89e7d2f208cf50593d8bed6043caa1b15e6e624867bb6b449a6cf8fcf6430da5adcdf97ce87dded49aa18f7dcbff8da015107d1e752f588205990e6518df0c42297cabdb01b84542cccb945f114acc43d93bcc8034e87b5", 0x72, 0x80000001, 0x0, 0x1, r6}, &(0x7f0000000b80)={0x0, 0x0, 0x0, 0x1, 0x9, r11, &(0x7f0000000a80)="99f66cb32cd7426806054a86cfc2375a27fe6583b67a10042db479ab8a93643ed68bd68a44ae22ed31b2f932d96de4fa6bcb971b535b904c1639710c83f02c6cbc12652f650db49480eb9935815b9c0bebd34801120629b64b1df83a04b07b1a9f8a0e8d8295332ea293171a21dbb681d7a8e3a2e0caa957f63d0ce290e52019affc6c8b235b579d3f58e8d0401dccb91d46e5783e0ff5977a5e032ca9553922446207c7207dac5f37b54a286bb6b9ca3741b1cfb61c19a932c9f04bde506494d3d057d476a86725", 0xc8, 0xfffffffffffffffb, 0x0, 0x7, r4}, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x87f50423fc30f77a, 0x3, r5, &(0x7f0000000bc0)="0c6257375069587d688849be4cd98fef148a7503e4aaa45cde4c51c8f80628f7975a4e", 0x23, 0x6b90, 0x0, 0x2, r4}, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0xc, 0x53, r4, &(0x7f0000000c40)="4538584cc6ced13b94c227a2df26956ac0acfa3015580830c1d7fd950193e7c4821d531a8d574331bbb5514cd0bf33387f3a8ba3fdbe3925cdd32b2f2d2f7b3c7df3844064d166500e2539c09af7560d40bb3e2a84b3922fb620565299ab8493dd324950073d32510078616baefbfdef27a561d802375d046c8f887bd50eba04aac8b29642a90384e7eedefe1f252e779e6f845c1356ec58d630761ad438b1b57073e576e4b5bad71f0853d5be854a22ce3ad2", 0xb3, 0x2, 0x0, 0x0, r6}, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x1, 0x1, r4, &(0x7f0000000d40)="10c276150b95dedea1f4557daae884c3d17ab52c8b1384b83888641c4fd00190c9a5777bf27191f82dccdf049067c76ea0fbc74ef4a9dd1840dd5fd0cc", 0x3d, 0x6, 0x0, 0x2}, &(0x7f0000000f40)={0x0, 0x0, 0x0, 0x7, 0x4, r14, &(0x7f0000000e80)="0a253e264a989d288d4d8fc40602a2014fc34a0bb88512ab96b1bafaeed6ea47fb22f46fbc158cde1799167f953f02e6fee086be14a3d615d16726600e13f5347b80af05574259e69b6123ed0268c34cdc9d3d0b912629b20696e390ed418146b0f6dfc0161a3ea95b2597ce6f447f95d80bb85e5ec8ef3ed7548fbe3908121680b7a5bc36e0eafc2175ab169039106373fd0f25a50210570295fdf75a8d3172", 0xa0, 0x50, 0x0, 0x2}])
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f0000001000)={{0x1, 0x1, 0x18, <r16=>r15, {0x80000001}}, './file0\x00'})
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r16, 0xc0a85352, &(0x7f0000001040)={{0x10, 0xe}, 'port0\x00', 0x10, 0x28008, 0x7, 0xfffffff7, 0x3, 0x7, 0x800, 0x0, 0x2, 0x5})
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000001140)={'wlan1\x00', <r17=>0x0})
sendmsg$NL80211_CMD_NEW_MPATH(r16, &(0x7f0000001240)={&(0x7f0000001100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000001200)={&(0x7f0000001180)={0x70, 0x0, 0x4, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8, 0x3, r17}, @val={0xc, 0x99, {0x5, 0x66}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x70}, 0x1, 0x0, 0x0, 0x4}, 0x40)
connect$vsock_stream(r4, &(0x7f0000001280)={0x28, 0x0, 0x0, @local}, 0x10)

2.425344ms ago: executing program 5 (id=1423):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000000100), 0x200008, &(0x7f00000004c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="28726f6f746d6f64653d303030309b73babc3030303030303030303034303030302c757365725f69643d", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040), 0x109102, 0x0)
writev(r1, &(0x7f0000002b00)=[{&(0x7f0000002700)='5', 0x1}, {&(0x7f0000000380)}], 0x2)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioprio_set$uid(0x3, 0x0, 0x0)
add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0xfe3a, 0xfffffffffffffffe)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000793000/0x18000)=nil, &(0x7f0000000300)=[@text16={0x10, &(0x7f0000000000)="6567f36fbaa100ec660f150866b91002000066b83e00000066ba000000000f300f01b78944d9f866b8010000000f01c136f20d05a0660f23b82e660fc7b10030", 0x40}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0xa)

0s ago: executing program 7 (id=1424):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x2c, 0x2c, 0x3, [@fwd={0xf}, @func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0x1}]}, @volatile={0xa}]}, {0x0, [0x5f]}}, &(0x7f00000000c0)=""/157, 0x47, 0x9d, 0x0, 0x8, 0x0, @void, @value}, 0x28)
syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x0, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_rsp={{0x7, 0x8, 0x4}, {0x35c3, 0x8}}}}, 0x11)
close(0xffffffffffffffff)

kernel console output (not intermixed with test programs):

1
[  107.619092][ T9141] R13: 0000000000000000 R14: 00007f82b2f45fa0 R15: 00007ffe70364a08
[  107.621203][ T9141]  </TASK>
[  107.622215][    C1] vkms_vblank_simulate: vblank timer overrun
[  107.633162][ T9141] overlayfs: failed to get inode (-12)
[  107.662871][   T57] usb 10-1: Using ep0 maxpacket: 8
[  107.665460][   T57] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  107.668068][   T57] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  107.670603][   T57] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  107.673274][   T57] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  107.676715][   T57] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  107.679093][   T57] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.748543][ T9148] 9pnet_fd: Insufficient options for proto=fd
[  107.757228][ T9150] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  107.830099][ T9152] netlink: 'syz.6.957': attribute type 15 has an invalid length.
[  107.861333][ T9154] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  107.887835][   T57] usb 10-1: GET_CAPABILITIES returned 0
[  107.889365][   T57] usbtmc 10-1:16.0: can't read capabilities
[  107.993377][ T9160] overlayfs: failed to resolve './file1': -2
[  108.092958][   T57] usb 10-1: USB disconnect, device number 4
[  108.531692][ T9168] FAULT_INJECTION: forcing a failure.
[  108.531692][ T9168] name failslab, interval 1, probability 0, space 0, times 0
[  108.535421][ T9168] CPU: 3 UID: 0 PID: 9168 Comm: syz.3.964 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  108.537987][ T9168] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.540739][ T9168] Call Trace:
[  108.541622][ T9168]  <TASK>
[  108.542387][ T9168]  dump_stack_lvl+0x16c/0x1f0
[  108.543740][ T9168]  should_fail_ex+0x497/0x5b0
[  108.544983][ T9168]  ? fs_reclaim_acquire+0xae/0x150
[  108.546298][ T9168]  should_failslab+0xc2/0x120
[  108.547560][ T9168]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  108.548963][ T9168]  ? lockdep_init_map_type+0x16d/0x7d0
[  108.550388][ T9168]  ? security_inode_alloc+0x3b/0x2b0
[  108.551792][ T9168]  security_inode_alloc+0x3b/0x2b0
[  108.553132][ T9168]  inode_init_always_gfp+0xce4/0x1030
[  108.554528][ T9168]  ? __pfx_ovl_inode_set+0x10/0x10
[  108.555860][ T9168]  alloc_inode+0x82/0x230
[  108.557018][ T9168]  iget5_locked+0x33b/0x3d0
[  108.558224][ T9168]  ? __pfx_ovl_inode_test+0x10/0x10
[  108.559599][ T9168]  ? __pfx_ovl_inode_set+0x10/0x10
[  108.560938][ T9168]  ? __pfx_iget5_locked+0x10/0x10
[  108.562258][ T9168]  ? lock_acquire.part.0+0x11b/0x380
[  108.563798][ T9168]  ovl_get_inode+0xceb/0x13c0
[  108.565054][ T9168]  ? __pfx_ovl_get_inode+0x10/0x10
[  108.566339][ T9168]  ? lockref_get+0x15/0x50
[  108.567502][ T9168]  ? do_raw_spin_unlock+0x172/0x230
[  108.568834][ T9168]  ? _raw_spin_unlock+0x28/0x50
[  108.570075][ T9168]  ovl_lookup+0xd4f/0x21f0
[  108.571257][ T9168]  ? __pfx_ovl_lookup+0x10/0x10
[  108.572541][ T9168]  ? lock_acquire.part.0+0x11b/0x380
[  108.574133][ T9168]  ? find_held_lock+0x2d/0x110
[  108.575532][ T9168]  ? do_raw_spin_lock+0x12d/0x2c0
[  108.576976][ T9168]  ? do_raw_spin_unlock+0x172/0x230
[  108.578493][ T9168]  ? _raw_spin_unlock+0x28/0x50
[  108.579797][ T9168]  lookup_one_qstr_excl+0x11d/0x190
[  108.581173][ T9168]  ? mnt_want_write+0x161/0x450
[  108.582464][ T9168]  do_rmdir+0x247/0x410
[  108.583587][ T9168]  ? __pfx_do_rmdir+0x10/0x10
[  108.584831][ T9168]  ? getname_flags.part.0+0x1c5/0x550
[  108.586218][ T9168]  __x64_sys_rmdir+0xc5/0x110
[  108.587465][ T9168]  do_syscall_64+0xcd/0x250
[  108.588661][ T9168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.590215][ T9168] RIP: 0033:0x7f82b2d80849
[  108.591401][ T9168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.592882][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  108.596367][ T9168] RSP: 002b:00007f82b3c0e058 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  108.596386][ T9168] RAX: ffffffffffffffda RBX: 00007f82b2f45fa0 RCX: 00007f82b2d80849
[  108.596393][ T9168] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0
[  108.596399][ T9168] RBP: 00007f82b3c0e0a0 R08: 0000000000000000 R09: 0000000000000000
[  108.596405][ T9168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.596411][ T9168] R13: 0000000000000000 R14: 00007f82b2f45fa0 R15: 00007ffe70364a08
[  108.596425][ T9168]  </TASK>
[  108.613031][ T9168] overlayfs: failed to get inode (-12)
[  108.668048][ T9172] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  108.759984][ T9179] pim6reg1: entered promiscuous mode
[  108.761406][ T9179] pim6reg1: entered allmulticast mode
[  108.766019][ T9182] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  108.769291][ T9182] FAULT_INJECTION: forcing a failure.
[  108.769291][ T9182] name failslab, interval 1, probability 0, space 0, times 0
[  108.774782][ T9182] CPU: 1 UID: 0 PID: 9182 Comm: syz.5.969 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  108.777520][ T9182] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.780325][ T9182] Call Trace:
[  108.781233][ T9182]  <TASK>
[  108.782021][ T9182]  dump_stack_lvl+0x16c/0x1f0
[  108.783290][ T9182]  should_fail_ex+0x497/0x5b0
[  108.784472][ T9182]  ? fs_reclaim_acquire+0xae/0x150
[  108.785845][ T9182]  should_failslab+0xc2/0x120
[  108.787084][ T9182]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[  108.788563][ T9182]  ? __d_alloc+0x31/0xaa0
[  108.789737][ T9182]  __d_alloc+0x31/0xaa0
[  108.790865][ T9182]  d_alloc+0x4a/0x1e0
[  108.791943][ T9182]  d_alloc_parallel+0xe9/0x12b0
[  108.793177][ T9182]  ? trace_lock_acquire+0x14e/0x1f0
[  108.794367][ T9182]  ? __pfx_d_alloc_parallel+0x10/0x10
[  108.795711][ T9182]  ? lockdep_init_map_type+0x16d/0x7d0
[  108.797138][ T9182]  ? lock_acquire.part.0+0x11b/0x380
[  108.798531][ T9182]  ? lockdep_init_map_type+0x16d/0x7d0
[  108.799977][ T9182]  __lookup_slow+0x194/0x460
[  108.801213][ T9182]  ? __pfx___lookup_slow+0x10/0x10
[  108.802545][ T9182]  ? walk_component+0x342/0x5b0
[  108.803801][ T9182]  ? lookup_fast+0x155/0x540
[  108.805018][ T9182]  walk_component+0x350/0x5b0
[  108.806253][ T9182]  path_lookupat+0x17f/0x770
[  108.807488][ T9182]  filename_lookup+0x221/0x5f0
[  108.808740][ T9182]  ? __pfx_filename_lookup+0x10/0x10
[  108.810130][ T9182]  ? __virt_addr_valid+0x5e/0x590
[  108.811465][ T9182]  ? __phys_addr_symbol+0x30/0x80
[  108.812783][ T9182]  ? __check_object_size+0x488/0x710
[  108.814030][ T9182]  vfs_statx+0xf8/0x1c0
[  108.815114][ T9182]  ? __pfx_vfs_statx+0x10/0x10
[  108.816377][ T9182]  ? getname_flags.part.0+0x1c5/0x550
[  108.817787][ T9182]  vfs_fstatat+0x7b/0xf0
[  108.818912][ T9182]  __do_sys_newfstatat+0xa2/0x130
[  108.820233][ T9182]  ? __pfx___do_sys_newfstatat+0x10/0x10
[  108.821724][ T9182]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  108.823306][ T9182]  ? ksys_write+0x1ba/0x250
[  108.824510][ T9182]  ? __pfx_ksys_write+0x10/0x10
[  108.825783][ T9182]  do_syscall_64+0xcd/0x250
[  108.826987][ T9182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.828535][ T9182] RIP: 0033:0x7f2e90580849
[  108.829706][ T9182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.834721][ T9182] RSP: 002b:00007f2e91408058 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[  108.836879][ T9182] RAX: ffffffffffffffda RBX: 00007f2e90745fa0 RCX: 00007f2e90580849
[  108.838894][ T9182] RDX: 0000000020000940 RSI: 00000000200000c0 RDI: ffffffffffffff9c
[  108.840979][ T9182] RBP: 00007f2e914080a0 R08: 0000000000000000 R09: 0000000000000000
[  108.843056][ T9182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.845123][ T9182] R13: 0000000000000000 R14: 00007f2e90745fa0 R15: 00007ffdbd09b218
[  108.847200][ T9182]  </TASK>
[  108.848109][    C1] vkms_vblank_simulate: vblank timer overrun
[  108.930115][ T9186] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  109.020527][ T9197] FAULT_INJECTION: forcing a failure.
[  109.020527][ T9197] name failslab, interval 1, probability 0, space 0, times 0
[  109.023887][ T9197] CPU: 3 UID: 0 PID: 9197 Comm: syz.3.976 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  109.026559][ T9197] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.029190][ T9197] Call Trace:
[  109.030051][ T9197]  <TASK>
[  109.030853][ T9197]  dump_stack_lvl+0x16c/0x1f0
[  109.032092][ T9197]  should_fail_ex+0x497/0x5b0
[  109.033422][ T9197]  ? fs_reclaim_acquire+0xae/0x150
[  109.034776][ T9197]  should_failslab+0xc2/0x120
[  109.036005][ T9197]  __kmalloc_cache_noprof+0x68/0x410
[  109.037381][ T9197]  ? do_raw_spin_lock+0x12d/0x2c0
[  109.038773][ T9197]  inode_doinit_use_xattr+0x54/0x410
[  109.038823][ T9199] gre1: entered promiscuous mode
[  109.040147][ T9197]  inode_doinit_with_dentry+0x51f/0x12c0
[  109.042298][ T9199] team0: Device gre1 is of different type
[  109.043021][ T9197]  ? __pfx_inode_doinit_with_dentry+0x10/0x10
[  109.043039][ T9197]  ? mark_held_locks+0x9f/0xe0
[  109.043053][ T9197]  selinux_d_instantiate+0x26/0x30
[  109.043065][ T9197]  security_d_instantiate+0x142/0x1a0
[  109.043079][ T9197]  d_splice_alias+0x94/0xdf0
[  109.043093][ T9197]  ? ovl_lookup+0xe74/0x21f0
[  109.043106][ T9197]  ovl_lookup+0xe8c/0x21f0
[  109.055354][ T9197]  ? __pfx_ovl_lookup+0x10/0x10
[  109.057106][ T9197]  ? lock_acquire.part.0+0x11b/0x380
[  109.058749][ T9197]  ? find_held_lock+0x2d/0x110
[  109.059952][ T9197]  ? do_raw_spin_lock+0x12d/0x2c0
[  109.061173][ T9197]  ? do_raw_spin_unlock+0x172/0x230
[  109.062459][ T9197]  ? _raw_spin_unlock+0x28/0x50
[  109.063745][ T9197]  lookup_one_qstr_excl+0x11d/0x190
[  109.065001][ T9197]  ? mnt_want_write+0x161/0x450
[  109.066274][ T9197]  do_rmdir+0x247/0x410
[  109.067356][ T9197]  ? __pfx_do_rmdir+0x10/0x10
[  109.068548][ T9197]  ? getname_flags.part.0+0x1c5/0x550
[  109.069956][ T9197]  __x64_sys_rmdir+0xc5/0x110
[  109.071271][ T9197]  do_syscall_64+0xcd/0x250
[  109.072515][ T9197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.074114][ T9197] RIP: 0033:0x7f82b2d80849
[  109.075275][ T9197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.080039][ T9202] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  109.080449][ T9197] RSP: 002b:00007f82b3c0e058 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  109.084665][ T9197] RAX: ffffffffffffffda RBX: 00007f82b2f45fa0 RCX: 00007f82b2d80849
[  109.086716][ T9197] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0
[  109.088762][ T9197] RBP: 00007f82b3c0e0a0 R08: 0000000000000000 R09: 0000000000000000
[  109.090392][ T9203] ntfs3(nullb0): Primary boot signature is not NTFS.
[  109.090819][ T9197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.090828][ T9197] R13: 0000000000000000 R14: 00007f82b2f45fa0 R15: 00007ffe70364a08
[  109.090842][ T9197]  </TASK>
[  109.098179][ T9203] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  109.126578][ T9205] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  109.129738][ T9205] FAULT_INJECTION: forcing a failure.
[  109.129738][ T9205] name failslab, interval 1, probability 0, space 0, times 0
[  109.134562][ T9205] CPU: 1 UID: 0 PID: 9205 Comm: syz.6.979 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  109.137230][ T9205] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.140010][ T9205] Call Trace:
[  109.140903][ T9205]  <TASK>
[  109.141705][ T9205]  dump_stack_lvl+0x16c/0x1f0
[  109.141907][ T9207] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  109.142937][ T9205]  should_fail_ex+0x497/0x5b0
[  109.142977][ T9205]  ? fs_reclaim_acquire+0xae/0x150
[  109.142994][ T9205]  should_failslab+0xc2/0x120
[  109.147799][ T9207] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  109.148519][ T9205]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[  109.153722][ T9205]  ? __d_alloc+0x31/0xaa0
[  109.154872][ T9205]  __d_alloc+0x31/0xaa0
[  109.155966][ T9205]  d_alloc+0x4a/0x1e0
[  109.157019][ T9205]  d_alloc_parallel+0xe9/0x12b0
[  109.158300][ T9205]  ? __pfx_d_alloc_parallel+0x10/0x10
[  109.159718][ T9205]  ? lockdep_init_map_type+0x16d/0x7d0
[  109.161154][ T9205]  ? mark_lock+0xb5/0xc60
[  109.162286][ T9205]  ? lockdep_init_map_type+0x16d/0x7d0
[  109.163852][ T9205]  __lookup_slow+0x194/0x460
[  109.165065][ T9205]  ? __pfx___lookup_slow+0x10/0x10
[  109.166402][ T9205]  ? lookup_one_unlocked+0x133/0x160
[  109.167798][ T9205]  ? d_lookup+0xe9/0x180
[  109.168913][ T9205]  lookup_one_unlocked+0x142/0x160
[  109.170260][ T9205]  ? __pfx_lookup_one_unlocked+0x10/0x10
[  109.171732][ T9205]  ? __pfx_mark_lock+0x10/0x10
[  109.172985][ T9205]  ovl_lookup_single+0x201/0xf90
[  109.174308][ T9205]  ? __pfx_ovl_lookup_single+0x10/0x10
[  109.175723][ T9205]  ? __lock_acquire+0x15a9/0x3c40
[  109.177025][ T9205]  ovl_lookup_layer+0x3a9/0x4a0
[  109.178288][ T9205]  ? __pfx___lock_acquire+0x10/0x10
[  109.179650][ T9205]  ? __pfx_ovl_lookup_layer+0x10/0x10
[  109.181244][ T9205]  ? lock_acquire.part.0+0x11b/0x380
[  109.182641][ T9205]  ovl_lookup+0x4ae/0x21f0
[  109.183815][ T9205]  ? d_alloc_parallel+0x984/0x12b0
[  109.185201][ T9205]  ? __d_lookup_rcu+0x331/0x4c0
[  109.186502][ T9205]  ? __pfx_ovl_lookup+0x10/0x10
[  109.187779][ T9205]  ? find_held_lock+0x2d/0x110
[  109.189037][ T9205]  ? __pfx_d_alloc_parallel+0x10/0x10
[  109.190429][ T9205]  ? lockdep_init_map_type+0x16d/0x7d0
[  109.191860][ T9205]  __lookup_slow+0x24f/0x460
[  109.193069][ T9205]  ? __pfx___lookup_slow+0x10/0x10
[  109.193783][ T5940] Bluetooth: hci3: unexpected event 0x2f length: 509 > 260
[  109.194394][ T9205]  ? walk_component+0x342/0x5b0
[  109.194412][ T9205]  ? lookup_fast+0x155/0x540
[  109.194428][ T9205]  walk_component+0x350/0x5b0
[  109.194438][ T9205]  path_lookupat+0x17f/0x770
[  109.202046][ T9205]  filename_lookup+0x221/0x5f0
[  109.203312][ T9205]  ? __pfx_filename_lookup+0x10/0x10
[  109.204704][ T9205]  ? __virt_addr_valid+0x5e/0x590
[  109.206022][ T9205]  ? __phys_addr_symbol+0x30/0x80
[  109.207349][ T9205]  ? __check_object_size+0x488/0x710
[  109.208727][ T9205]  vfs_statx+0xf8/0x1c0
[  109.209821][ T9205]  ? __pfx_vfs_statx+0x10/0x10
[  109.211091][ T9205]  ? getname_flags.part.0+0x1c5/0x550
[  109.212498][ T9205]  vfs_fstatat+0x7b/0xf0
[  109.213614][ T9205]  __do_sys_newfstatat+0xa2/0x130
[  109.214931][ T9205]  ? __pfx___do_sys_newfstatat+0x10/0x10
[  109.216377][ T9205]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  109.217928][ T9205]  ? ksys_write+0x1ba/0x250
[  109.219123][ T9205]  ? __pfx_ksys_write+0x10/0x10
[  109.220394][ T9205]  do_syscall_64+0xcd/0x250
[  109.221598][ T9205]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.223139][ T9205] RIP: 0033:0x7fdf33780849
[  109.224298][ T9205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.229270][ T9205] RSP: 002b:00007fdf3452a058 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[  109.231433][ T9205] RAX: ffffffffffffffda RBX: 00007fdf33945fa0 RCX: 00007fdf33780849
[  109.233463][ T9205] RDX: 0000000020000940 RSI: 00000000200000c0 RDI: ffffffffffffff9c
[  109.235520][ T9205] RBP: 00007fdf3452a0a0 R08: 0000000000000000 R09: 0000000000000000
[  109.237551][ T9205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.239592][ T9205] R13: 0000000000000000 R14: 00007fdf33945fa0 R15: 00007ffdf5e84cb8
[  109.241650][ T9205]  </TASK>
[  109.242503][    C1] vkms_vblank_simulate: vblank timer overrun
[  109.312645][ T9217] overlayfs: failed to resolve './file0': -2
[  109.313924][ T9215] syzkaller1: entered promiscuous mode
[  109.316377][ T9215] syzkaller1: entered allmulticast mode
[  109.420021][ T9227] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  109.448662][ T9231] FAULT_INJECTION: forcing a failure.
[  109.448662][ T9231] name failslab, interval 1, probability 0, space 0, times 0
[  109.453237][ T9231] CPU: 3 UID: 0 PID: 9231 Comm: syz.7.990 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  109.456033][ T9231] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.458798][ T9231] Call Trace:
[  109.459675][ T9231]  <TASK>
[  109.460106][ T9234] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  109.460452][ T9231]  dump_stack_lvl+0x16c/0x1f0
[  109.463688][ T9231]  should_fail_ex+0x497/0x5b0
[  109.464939][ T9231]  should_failslab+0xc2/0x120
[  109.465903][ T9234] FAULT_INJECTION: forcing a failure.
[  109.465903][ T9234] name failslab, interval 1, probability 0, space 0, times 0
[  109.466245][ T9231]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  109.471158][ T9231]  ? sidtab_sid2str_get+0x8f/0x680
[  109.472493][ T9231]  ? sidtab_sid2str_get+0x17a/0x680
[  109.473825][ T9231]  kmemdup_noprof+0x29/0x60
[  109.475022][ T9231]  sidtab_sid2str_get+0x17a/0x680
[  109.476316][ T9231]  sidtab_entry_to_string+0x33/0x110
[  109.477682][ T9231]  security_sid_to_context_core+0x35c/0x640
[  109.479228][ T9231]  selinux_inode_getsecurity+0x242/0x290
[  109.480717][ T9231]  ? __pfx_selinux_inode_getsecurity+0x10/0x10
[  109.482331][ T9231]  security_inode_getsecurity+0x12f/0x2f0
[  109.483778][ T9231]  vfs_getxattr+0x1a0/0x290
[  109.485118][ T9231]  ? __pfx_vfs_getxattr+0x10/0x10
[  109.486556][ T9231]  ovl_other_xattr_get+0xf6/0x160
[  109.487893][ T9231]  ? __pfx_ovl_other_xattr_get+0x10/0x10
[  109.489349][ T9231]  ? xattr_resolve_name+0x27b/0x3f0
[  109.490730][ T9231]  ? __pfx_ovl_other_xattr_get+0x10/0x10
[  109.492117][ T9231]  __vfs_getxattr+0x13b/0x1a0
[  109.493351][ T9231]  ? __pfx___vfs_getxattr+0x10/0x10
[  109.494707][ T9231]  inode_doinit_use_xattr+0xb5/0x410
[  109.495967][ T9231]  inode_doinit_with_dentry+0x51f/0x12c0
[  109.497339][ T9231]  ? __pfx_inode_doinit_with_dentry+0x10/0x10
[  109.498894][ T9231]  ? mark_held_locks+0x9f/0xe0
[  109.500149][ T9231]  selinux_d_instantiate+0x26/0x30
[  109.501522][ T9231]  security_d_instantiate+0x142/0x1a0
[  109.502969][ T9231]  d_splice_alias+0x94/0xdf0
[  109.504115][ T9231]  ? ovl_lookup+0xe74/0x21f0
[  109.505325][ T9231]  ovl_lookup+0xe8c/0x21f0
[  109.506493][ T9231]  ? __pfx_ovl_lookup+0x10/0x10
[  109.507708][ T9231]  ? lock_acquire.part.0+0x11b/0x380
[  109.509009][ T9231]  ? find_held_lock+0x2d/0x110
[  109.510171][ T9231]  ? do_raw_spin_lock+0x12d/0x2c0
[  109.511515][ T9231]  ? do_raw_spin_unlock+0x172/0x230
[  109.512866][ T9231]  ? _raw_spin_unlock+0x28/0x50
[  109.514069][ T9231]  lookup_one_qstr_excl+0x11d/0x190
[  109.515386][ T9231]  ? mnt_want_write+0x161/0x450
[  109.516619][ T9231]  do_rmdir+0x247/0x410
[  109.517707][ T9231]  ? __pfx_do_rmdir+0x10/0x10
[  109.518966][ T9231]  ? getname_flags.part.0+0x1c5/0x550
[  109.520371][ T9231]  __x64_sys_rmdir+0xc5/0x110
[  109.521616][ T9231]  do_syscall_64+0xcd/0x250
[  109.522872][ T9231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.524384][ T9231] RIP: 0033:0x7f5da2380849
[  109.525521][ T9231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.530377][ T9231] RSP: 002b:00007f5da31cd058 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  109.532530][ T9231] RAX: ffffffffffffffda RBX: 00007f5da2545fa0 RCX: 00007f5da2380849
[  109.534674][ T9231] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0
[  109.536678][ T9231] RBP: 00007f5da31cd0a0 R08: 0000000000000000 R09: 0000000000000000
[  109.538758][ T9231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.540837][ T9231] R13: 0000000000000000 R14: 00007f5da2545fa0 R15: 00007ffeb36a9248
[  109.542831][ T9231]  </TASK>
[  109.543645][ T9234] CPU: 2 UID: 0 PID: 9234 Comm: syz.6.991 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  109.546344][ T9234] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.549145][ T9234] Call Trace:
[  109.550037][ T9234]  <TASK>
[  109.550838][ T9234]  dump_stack_lvl+0x16c/0x1f0
[  109.552087][ T9234]  should_fail_ex+0x497/0x5b0
[  109.552742][ T9231] SELinux: inode_doinit_use_xattr:  getxattr returned 12 for dev=overlay ino=437
[  109.553333][ T9234]  ? fs_reclaim_acquire+0xae/0x150
[  109.553353][ T9234]  should_failslab+0xc2/0x120
[  109.553366][ T9234]  __kmalloc_noprof+0xcb/0x510
[  109.553381][ T9234]  ovl_lookup+0x116a/0x21f0
[  109.553392][ T9234]  ? d_alloc_parallel+0x984/0x12b0
[  109.553410][ T9234]  ? __pfx_ovl_lookup+0x10/0x10
[  109.553426][ T9234]  ? trace_lock_acquire+0x14e/0x1f0
[  109.553441][ T9234]  ? __pfx_d_alloc_parallel+0x10/0x10
[  109.553457][ T9234]  ? lockdep_init_map_type+0x16d/0x7d0
[  109.567541][ T9234]  __lookup_slow+0x24f/0x460
[  109.568781][ T9234]  ? __pfx___lookup_slow+0x10/0x10
[  109.570136][ T9234]  ? walk_component+0x342/0x5b0
[  109.571438][ T9234]  ? lookup_fast+0x155/0x540
[  109.572647][ T9234]  walk_component+0x350/0x5b0
[  109.573888][ T9234]  path_lookupat+0x17f/0x770
[  109.575139][ T9234]  filename_lookup+0x221/0x5f0
[  109.576364][ T9234]  ? __pfx_filename_lookup+0x10/0x10
[  109.577734][ T9234]  ? __virt_addr_valid+0x5e/0x590
[  109.579064][ T9234]  ? __phys_addr_symbol+0x30/0x80
[  109.580413][ T9234]  ? __check_object_size+0x488/0x710
[  109.581842][ T9234]  vfs_statx+0xf8/0x1c0
[  109.582895][ T9234]  ? __pfx_vfs_statx+0x10/0x10
[  109.584124][ T9234]  ? getname_flags.part.0+0x1c5/0x550
[  109.585466][ T9234]  vfs_fstatat+0x7b/0xf0
[  109.586594][ T9234]  __do_sys_newfstatat+0xa2/0x130
[  109.587939][ T9234]  ? __pfx___do_sys_newfstatat+0x10/0x10
[  109.589431][ T9234]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  109.591037][ T9234]  ? ksys_write+0x1ba/0x250
[  109.592237][ T9234]  ? __pfx_ksys_write+0x10/0x10
[  109.593493][ T9234]  do_syscall_64+0xcd/0x250
[  109.594692][ T9234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.596205][ T9234] RIP: 0033:0x7fdf33780849
[  109.597375][ T9234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.602421][ T9234] RSP: 002b:00007fdf3452a058 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[  109.604586][ T9234] RAX: ffffffffffffffda RBX: 00007fdf33945fa0 RCX: 00007fdf33780849
[  109.606518][ T9234] RDX: 0000000020000940 RSI: 00000000200000c0 RDI: ffffffffffffff9c
[  109.608612][ T9234] RBP: 00007fdf3452a0a0 R08: 0000000000000000 R09: 0000000000000000
[  109.610721][ T9234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.612775][ T9234] R13: 0000000000000000 R14: 00007fdf33945fa0 R15: 00007ffdf5e84cb8
[  109.614845][ T9234]  </TASK>
[  109.633144][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  109.647226][   T39] kauditd_printk_skb: 46765 callbacks suppressed
[  109.647236][   T39] audit: type=1400 audit(2000000047.259:47476): avc:  denied  { write } for  pid=9239 comm="syz.7.992" name="urandom" dev="devtmpfs" ino=9 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:urandom_device_t tclass=chr_file permissive=1
[  109.717929][ T9245] xt_ecn: cannot match TCP bits for non-tcp packets
[  109.728169][   T39] audit: type=1400 audit(2000000047.339:47477): avc:  denied  { mount } for  pid=9244 comm="syz.6.994" name="/" dev="nfsd" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfsd_fs_t tclass=filesystem permissive=1
[  109.779007][   T39] audit: type=1400 audit(2000000047.389:47478): avc:  denied  { append } for  pid=9246 comm="syz.6.995" name="card2" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  110.107279][ T5940] bt_err_ratelimited: 23 callbacks suppressed
[  110.107291][ T5940] Bluetooth: hci2: SCO packet for unknown connection handle 3368
[  110.146923][ T9268] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  110.152977][    T9] usb 11-1: new high-speed USB device number 4 using dummy_hcd
[  110.163164][   T39] audit: type=1400 audit(2000000047.779:47479): avc:  denied  { map } for  pid=9269 comm="syz.3.1001" path="/dev/vhost-net" dev="devtmpfs" ino=1300 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  110.195073][ T9275] FAULT_INJECTION: forcing a failure.
[  110.195073][ T9275] name failslab, interval 1, probability 0, space 0, times 0
[  110.198652][ T9275] CPU: 3 UID: 0 PID: 9275 Comm: syz.7.1002 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  110.201287][ T9275] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.204227][ T9275] Call Trace:
[  110.205090][ T9275]  <TASK>
[  110.205857][ T9275]  dump_stack_lvl+0x16c/0x1f0
[  110.206033][ T9277] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  110.207072][ T9275]  should_fail_ex+0x497/0x5b0
[  110.210963][ T9275]  should_failslab+0xc2/0x120
[  110.211331][ T9277] FAULT_INJECTION: forcing a failure.
[  110.211331][ T9277] name failslab, interval 1, probability 0, space 0, times 0
[  110.212179][ T9275]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  110.218256][ T9275]  ? sidtab_sid2str_get+0x8f/0x680
[  110.219598][ T9275]  ? sidtab_sid2str_get+0x17a/0x680
[  110.220945][ T9275]  kmemdup_noprof+0x29/0x60
[  110.222131][ T9275]  sidtab_sid2str_get+0x17a/0x680
[  110.223440][ T9275]  sidtab_entry_to_string+0x33/0x110
[  110.225087][ T9275]  security_sid_to_context_core+0x35c/0x640
[  110.226614][ T9275]  selinux_inode_getsecurity+0x242/0x290
[  110.228068][ T9275]  ? __pfx_selinux_inode_getsecurity+0x10/0x10
[  110.229670][ T9275]  security_inode_getsecurity+0x12f/0x2f0
[  110.231144][ T9275]  vfs_getxattr+0x1a0/0x290
[  110.232320][ T9275]  ? __pfx_vfs_getxattr+0x10/0x10
[  110.233622][ T9275]  ovl_other_xattr_get+0xf6/0x160
[  110.234929][ T9275]  ? __pfx_ovl_other_xattr_get+0x10/0x10
[  110.236367][ T9275]  ? xattr_resolve_name+0x27b/0x3f0
[  110.237727][ T9275]  ? __pfx_ovl_other_xattr_get+0x10/0x10
[  110.239171][ T9275]  __vfs_getxattr+0x13b/0x1a0
[  110.240386][ T9275]  ? __pfx___vfs_getxattr+0x10/0x10
[  110.241738][ T9275]  inode_doinit_use_xattr+0xb5/0x410
[  110.243100][ T9275]  inode_doinit_with_dentry+0x51f/0x12c0
[  110.244545][ T9275]  ? __pfx_inode_doinit_with_dentry+0x10/0x10
[  110.246095][ T9275]  ? mark_held_locks+0x9f/0xe0
[  110.247548][ T9275]  selinux_d_instantiate+0x26/0x30
[  110.248792][ T9275]  security_d_instantiate+0x142/0x1a0
[  110.250116][ T9275]  d_splice_alias+0x94/0xdf0
[  110.251299][ T9275]  ? ovl_lookup+0xe74/0x21f0
[  110.252497][ T9275]  ovl_lookup+0xe8c/0x21f0
[  110.253669][ T9275]  ? __pfx_ovl_lookup+0x10/0x10
[  110.254925][ T9275]  ? lock_acquire.part.0+0x11b/0x380
[  110.256236][ T9275]  ? find_held_lock+0x2d/0x110
[  110.257428][ T9275]  ? do_raw_spin_lock+0x12d/0x2c0
[  110.258715][ T9275]  ? do_raw_spin_unlock+0x172/0x230
[  110.260077][ T9275]  ? _raw_spin_unlock+0x28/0x50
[  110.261359][ T9275]  lookup_one_qstr_excl+0x11d/0x190
[  110.262721][ T9275]  ? mnt_want_write+0x161/0x450
[  110.263996][ T9275]  do_rmdir+0x247/0x410
[  110.265122][ T9275]  ? __pfx_do_rmdir+0x10/0x10
[  110.266362][ T9275]  ? getname_flags.part.0+0x1c5/0x550
[  110.267788][ T9275]  __x64_sys_rmdir+0xc5/0x110
[  110.269053][ T9275]  do_syscall_64+0xcd/0x250
[  110.270240][ T9275]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.271983][ T9275] RIP: 0033:0x7f5da2380849
[  110.273147][ T9275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.274264][ T9264] netlink: 8 bytes leftover after parsing attributes in process `syz.5.998'.
[  110.278111][ T9275] RSP: 002b:00007f5da31cd058 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  110.278133][ T9275] RAX: ffffffffffffffda RBX: 00007f5da2545fa0 RCX: 00007f5da2380849
[  110.278140][ T9275] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0
[  110.278147][ T9275] RBP: 00007f5da31cd0a0 R08: 0000000000000000 R09: 0000000000000000
[  110.278153][ T9275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  110.278159][ T9275] R13: 0000000000000000 R14: 00007f5da2545fa0 R15: 00007ffeb36a9248
[  110.278174][ T9275]  </TASK>
[  110.293978][ T9277] CPU: 1 UID: 0 PID: 9277 Comm: syz.3.1003 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  110.294482][ T9275] SELinux: inode_doinit_use_xattr:  getxattr returned 12 for dev=overlay ino=482
[  110.296914][ T9277] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.296925][ T9277] Call Trace:
[  110.296929][ T9277]  <TASK>
[  110.296934][ T9277]  dump_stack_lvl+0x16c/0x1f0
[  110.296951][ T9277]  should_fail_ex+0x497/0x5b0
[  110.296966][ T9277]  ? fs_reclaim_acquire+0xae/0x150
[  110.296983][ T9277]  should_failslab+0xc2/0x120
[  110.296995][ T9277]  __kmalloc_noprof+0xcb/0x510
[  110.297006][ T9277]  ? __pfx_ovl_lookup_layer+0x10/0x10
[  110.297017][ T9277]  ? trace_kmalloc+0x2d/0xd0
[  110.297030][ T9277]  ? __kmalloc_noprof+0x23b/0x510
[  110.297042][ T9277]  ovl_alloc_entry+0x21/0x70
[  110.297053][ T9277]  ovl_lookup+0x812/0x21f0
[  110.297068][ T9277]  ? __pfx_ovl_lookup+0x10/0x10
[  110.297084][ T9277]  ? trace_lock_acquire+0x14e/0x1f0
[  110.297100][ T9277]  ? __pfx_d_alloc_parallel+0x10/0x10
[  110.297116][ T9277]  ? lockdep_init_map_type+0x16d/0x7d0
[  110.297131][ T9277]  __lookup_slow+0x24f/0x460
[  110.297145][ T9277]  ? __pfx___lookup_slow+0x10/0x10
[  110.297160][ T9277]  ? walk_component+0x342/0x5b0
[  110.297174][ T9277]  ? lookup_fast+0x155/0x540
[  110.297189][ T9277]  walk_component+0x350/0x5b0
[  110.297199][ T9277]  path_lookupat+0x17f/0x770
[  110.297211][ T9277]  filename_lookup+0x221/0x5f0
[  110.297222][ T9277]  ? __pfx_filename_lookup+0x10/0x10
[  110.297242][ T9277]  ? __virt_addr_valid+0x5e/0x590
[  110.297255][ T9277]  ? __phys_addr_symbol+0x30/0x80
[  110.297267][ T9277]  ? __check_object_size+0x488/0x710
[  110.297280][ T9277]  vfs_statx+0xf8/0x1c0
[  110.297293][ T9277]  ? __pfx_vfs_statx+0x10/0x10
[  110.297305][ T9277]  ? getname_flags.part.0+0x1c5/0x550
[  110.297320][ T9277]  vfs_fstatat+0x7b/0xf0
[  110.297333][ T9277]  __do_sys_newfstatat+0xa2/0x130
[  110.342812][ T9277]  ? __pfx___do_sys_newfstatat+0x10/0x10
[  110.344253][ T9277]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  110.345840][ T9277]  ? ksys_write+0x1ba/0x250
[  110.347048][ T9277]  ? __pfx_ksys_write+0x10/0x10
[  110.348330][ T9277]  do_syscall_64+0xcd/0x250
[  110.349912][ T9277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.351464][ T9277] RIP: 0033:0x7f82b2d80849
[  110.352636][ T9277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.357614][ T9277] RSP: 002b:00007f82b3c0e058 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[  110.359783][ T9277] RAX: ffffffffffffffda RBX: 00007f82b2f45fa0 RCX: 00007f82b2d80849
[  110.361840][ T9277] RDX: 0000000020000940 RSI: 00000000200000c0 RDI: ffffffffffffff9c
[  110.363896][ T9277] RBP: 00007f82b3c0e0a0 R08: 0000000000000000 R09: 0000000000000000
[  110.365939][ T9277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.367990][ T9277] R13: 0000000000000000 R14: 00007f82b2f45fa0 R15: 00007ffe70364a08
[  110.370024][ T9277]  </TASK>
[  110.370924][    C1] vkms_vblank_simulate: vblank timer overrun
[  110.370962][    T9] usb 11-1: Using ep0 maxpacket: 16
[  110.375124][    T9] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  110.378037][    T9] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  110.380569][    T9] usb 11-1: New USB device found, idVendor=056a, idProduct=0013, bcdDevice= 0.00
[  110.383329][    T9] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.387556][    T9] usb 11-1: config 0 descriptor??
[  110.425980][   T39] audit: type=1400 audit(2000000048.039:47480): avc:  denied  { associate } for  pid=9281 comm="syz.7.1004" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  110.444801][   T39] audit: type=1400 audit(2000000048.059:47481): avc:  denied  { read } for  pid=9281 comm="syz.7.1004" name="bus" dev="9p" ino=37618016 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  110.447908][ T9283] (syz.7.1004,9283,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  110.454335][ T9283] (syz.7.1004,9283,1):ocfs2_fill_super:1178 ERROR: status = -22
[  110.494696][ T9289] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  110.622556][ T9302] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  110.715821][ T9318] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  110.717879][ T9319] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1009'.
[  110.727110][   T39] audit: type=1400 audit(2000000048.339:47482): avc:  denied  { mount } for  pid=9308 comm="syz.7.1009" name="/" dev="hugetlbfs" ino=29402 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  110.766956][ T9324] FAULT_INJECTION: forcing a failure.
[  110.766956][ T9324] name failslab, interval 1, probability 0, space 0, times 0
[  110.770397][ T9324] CPU: 1 UID: 0 PID: 9324 Comm: syz.3.1012 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  110.773945][ T9324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.776894][ T9324] Call Trace:
[  110.777772][ T9324]  <TASK>
[  110.778582][ T9324]  dump_stack_lvl+0x16c/0x1f0
[  110.779904][ T9324]  should_fail_ex+0x497/0x5b0
[  110.781358][ T9324]  ? fs_reclaim_acquire+0xae/0x150
[  110.782740][ T9324]  should_failslab+0xc2/0x120
[  110.783989][ T9324]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  110.785684][ T9324]  ? security_context_to_sid_core+0x73b/0x870
[  110.787301][ T9324]  kstrdup+0x53/0x100
[  110.788376][ T9324]  security_context_to_sid_core+0x73b/0x870
[  110.790027][ T9324]  ? __pfx_security_context_to_sid_core+0x10/0x10
[  110.792326][ T9324]  inode_doinit_use_xattr+0x101/0x410
[  110.794276][ T9324]  inode_doinit_with_dentry+0x51f/0x12c0
[  110.795810][ T9324]  ? __pfx_inode_doinit_with_dentry+0x10/0x10
[  110.797411][ T9324]  ? mark_held_locks+0x9f/0xe0
[  110.798611][ T9324]  selinux_d_instantiate+0x26/0x30
[  110.799979][ T9324]  security_d_instantiate+0x142/0x1a0
[  110.801406][ T9324]  d_splice_alias+0x94/0xdf0
[  110.802562][ T9324]  ? ovl_lookup+0xe74/0x21f0
[  110.803731][ T9324]  ovl_lookup+0xe8c/0x21f0
[  110.804898][ T9324]  ? __pfx_ovl_lookup+0x10/0x10
[  110.806201][ T9324]  ? lock_acquire.part.0+0x11b/0x380
[  110.807709][ T9324]  ? find_held_lock+0x2d/0x110
[  110.808992][ T9324]  ? do_raw_spin_lock+0x12d/0x2c0
[  110.810488][ T9324]  ? do_raw_spin_unlock+0x172/0x230
[  110.811915][ T9324]  ? _raw_spin_unlock+0x28/0x50
[  110.813194][ T9324]  lookup_one_qstr_excl+0x11d/0x190
[  110.814555][ T9324]  ? mnt_want_write+0x161/0x450
[  110.815868][ T9324]  do_rmdir+0x247/0x410
[  110.817035][ T9324]  ? __pfx_do_rmdir+0x10/0x10
[  110.818275][ T9324]  ? getname_flags.part.0+0x1c5/0x550
[  110.819683][ T9324]  __x64_sys_rmdir+0xc5/0x110
[  110.820911][ T9324]  do_syscall_64+0xcd/0x250
[  110.822139][ T9324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.823705][ T9324] RIP: 0033:0x7f82b2d80849
[  110.824869][ T9324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.829735][ T9324] RSP: 002b:00007f82b3c0e058 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  110.831811][ T9324] RAX: ffffffffffffffda RBX: 00007f82b2f45fa0 RCX: 00007f82b2d80849
[  110.833793][ T9324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0
[  110.835840][ T9324] RBP: 00007f82b3c0e0a0 R08: 0000000000000000 R09: 0000000000000000
[  110.837844][ T9324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  110.839885][ T9324] R13: 0000000000000000 R14: 00007f82b2f45fa0 R15: 00007ffe70364a08
[  110.841932][ T9324]  </TASK>
[  110.842829][    C1] vkms_vblank_simulate: vblank timer overrun
[  110.847151][ T9324] SELinux: inode_doinit_use_xattr:  context_to_sid(root:object_r:user_tmpfs_t) returned 12 for dev=overlay ino=2213
[  110.850888][   T39] audit: type=1400 audit(2000000048.459:47483): avc:  denied  { rmdir } for  pid=9323 comm="syz.3.1012" name="file0" dev="overlay" ino=2213 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  110.863519][    T9] usbhid 11-1:0.0: can't add hid device: -71
[  110.865721][    T9] usbhid 11-1:0.0: probe with driver usbhid failed with error -71
[  110.871937][    T9] usb 11-1: USB disconnect, device number 4
[  110.909242][ T9331] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  110.912404][ T9331] FAULT_INJECTION: forcing a failure.
[  110.912404][ T9331] name failslab, interval 1, probability 0, space 0, times 0
[  110.915846][ T9331] CPU: 2 UID: 0 PID: 9331 Comm: syz.3.1014 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  110.918503][ T9331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.921423][ T9331] Call Trace:
[  110.922326][ T9331]  <TASK>
[  110.923147][ T9331]  dump_stack_lvl+0x16c/0x1f0
[  110.924713][ T9331]  should_fail_ex+0x497/0x5b0
[  110.926003][ T9331]  ? fs_reclaim_acquire+0xae/0x150
[  110.927400][ T9331]  should_failslab+0xc2/0x120
[  110.928672][ T9331]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[  110.930206][ T9331]  ? ovl_alloc_inode+0x25/0x190
[  110.931601][ T9331]  ? __pfx_ovl_inode_set+0x10/0x10
[  110.933014][ T9331]  ? __pfx_ovl_alloc_inode+0x10/0x10
[  110.934446][ T9331]  ovl_alloc_inode+0x25/0x190
[  110.935746][ T9331]  alloc_inode+0x5d/0x230
[  110.936964][ T9331]  iget5_locked+0x33b/0x3d0
[  110.938215][ T9331]  ? __pfx_ovl_inode_test+0x10/0x10
[  110.939672][ T9331]  ? __pfx_ovl_inode_set+0x10/0x10
[  110.941105][ T9331]  ? __pfx_iget5_locked+0x10/0x10
[  110.942514][ T9331]  ? lock_acquire.part.0+0x11b/0x380
[  110.944180][ T9331]  ovl_get_inode+0xceb/0x13c0
[  110.945471][ T9331]  ? __pfx_ovl_get_inode+0x10/0x10
[  110.946882][ T9331]  ? lockref_get+0x15/0x50
[  110.948123][ T9331]  ? do_raw_spin_unlock+0x172/0x230
[  110.949553][ T9331]  ? _raw_spin_unlock+0x28/0x50
[  110.951137][ T9331]  ovl_lookup+0xd4f/0x21f0
[  110.952381][ T9331]  ? __pfx_ovl_lookup+0x10/0x10
[  110.953783][ T9331]  ? __pfx_d_alloc_parallel+0x10/0x10
[  110.955245][ T9331]  ? lockdep_init_map_type+0x16d/0x7d0
[  110.956745][ T9331]  __lookup_slow+0x24f/0x460
[  110.958021][ T9331]  ? __pfx___lookup_slow+0x10/0x10
[  110.959445][ T9331]  ? walk_component+0x342/0x5b0
[  110.960836][ T9331]  ? lookup_fast+0x155/0x540
[  110.962145][ T9331]  walk_component+0x350/0x5b0
[  110.963456][ T9331]  path_lookupat+0x17f/0x770
[  110.964719][ T9331]  filename_lookup+0x221/0x5f0
[  110.966019][ T9331]  ? __pfx_filename_lookup+0x10/0x10
[  110.967591][ T9331]  ? __virt_addr_valid+0x5e/0x590
[  110.969269][ T9331]  ? __phys_addr_symbol+0x30/0x80
[  110.970870][ T9331]  ? __check_object_size+0x488/0x710
[  110.972301][ T9331]  vfs_statx+0xf8/0x1c0
[  110.973436][ T9331]  ? __pfx_vfs_statx+0x10/0x10
[  110.974728][ T9331]  ? getname_flags.part.0+0x1c5/0x550
[  110.976151][ T9331]  vfs_fstatat+0x7b/0xf0
[  110.977304][ T9331]  __do_sys_newfstatat+0xa2/0x130
[  110.978653][ T9331]  ? __pfx___do_sys_newfstatat+0x10/0x10
[  110.980305][ T9331]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  110.982003][ T9331]  ? ksys_write+0x1ba/0x250
[  110.983263][ T9331]  ? __pfx_ksys_write+0x10/0x10
[  110.984580][ T9331]  do_syscall_64+0xcd/0x250
[  110.985807][ T9331]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.987431][ T9331] RIP: 0033:0x7f82b2d80849
[  110.988707][ T9331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.995175][ T9331] RSP: 002b:00007f82b3c0e058 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[  110.997352][ T9331] RAX: ffffffffffffffda RBX: 00007f82b2f45fa0 RCX: 00007f82b2d80849
[  110.999452][ T9331] RDX: 0000000020000940 RSI: 00000000200000c0 RDI: ffffffffffffff9c
[  111.001760][ T9331] RBP: 00007f82b3c0e0a0 R08: 0000000000000000 R09: 0000000000000000
[  111.003959][ T9331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.006073][ T9331] R13: 0000000000000000 R14: 00007f82b2f45fa0 R15: 00007ffe70364a08
[  111.008223][ T9331]  </TASK>
[  111.009832][ T9331] overlayfs: failed to get inode (-12)
[  111.323045][   T39] audit: type=1400 audit(2000000048.929:47484): avc:  denied  { append } for  pid=9352 comm="syz.5.1018" name="binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  111.358584][ T9358] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  111.409442][ T9363] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  111.416391][ T9363] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1020'.
[  111.434990][   T39] audit: type=1400 audit(2000000049.049:47485): avc:  denied  { nlmsg_read } for  pid=9362 comm="syz.6.1020" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  111.477858][ T9366] FAULT_INJECTION: forcing a failure.
[  111.477858][ T9366] name failslab, interval 1, probability 0, space 0, times 0
[  111.481494][ T9366] CPU: 0 UID: 0 PID: 9366 Comm: syz.6.1021 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  111.484250][ T9366] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  111.487025][ T9366] Call Trace:
[  111.487902][ T9366]  <TASK>
[  111.488663][ T9366]  dump_stack_lvl+0x16c/0x1f0
[  111.489850][ T9366]  should_fail_ex+0x497/0x5b0
[  111.491098][ T9366]  ? fs_reclaim_acquire+0xae/0x150
[  111.492460][ T9366]  should_failslab+0xc2/0x120
[  111.493720][ T9366]  __kmalloc_noprof+0xcb/0x510
[  111.495001][ T9366]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  111.496502][ T9366]  tomoyo_realpath_from_path+0xb9/0x720
[  111.497945][ T9366]  ? tomoyo_path_perm+0x262/0x460
[  111.499272][ T9366]  ? tomoyo_path_perm+0x262/0x460
[  111.500588][ T9366]  tomoyo_path_perm+0x276/0x460
[  111.501882][ T9366]  ? tomoyo_path_perm+0x262/0x460
[  111.503214][ T9366]  ? __pfx_tomoyo_path_perm+0x10/0x10
[  111.504627][ T9366]  ? do_raw_spin_lock+0x12d/0x2c0
[  111.505946][ T9366]  tomoyo_path_rmdir+0x92/0xe0
[  111.507201][ T9366]  ? __pfx_tomoyo_path_rmdir+0x10/0x10
[  111.508628][ T9366]  security_path_rmdir+0x145/0x2b0
[  111.509967][ T9366]  do_rmdir+0x2b5/0x410
[  111.511067][ T9366]  ? __pfx_do_rmdir+0x10/0x10
[  111.512305][ T9366]  ? getname_flags.part.0+0x1c5/0x550
[  111.513712][ T9366]  __x64_sys_rmdir+0xc5/0x110
[  111.515052][ T9366]  do_syscall_64+0xcd/0x250
[  111.516268][ T9366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.517820][ T9366] RIP: 0033:0x7fdf33780849
[  111.519000][ T9366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.524195][ T9366] RSP: 002b:00007fdf3452a058 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  111.526767][ T9366] RAX: ffffffffffffffda RBX: 00007fdf33945fa0 RCX: 00007fdf33780849
[  111.529213][ T9366] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0
[  111.531294][ T9366] RBP: 00007fdf3452a0a0 R08: 0000000000000000 R09: 0000000000000000
[  111.533358][ T9366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  111.535443][ T9366] R13: 0000000000000000 R14: 00007fdf33945fa0 R15: 00007ffdf5e84cb8
[  111.537490][ T9366]  </TASK>
[  111.539593][ T9366] ERROR: Out of memory at tomoyo_realpath_from_path.
[  111.603477][ T9378] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  111.608159][ T9378] FAULT_INJECTION: forcing a failure.
[  111.608159][ T9378] name failslab, interval 1, probability 0, space 0, times 0
[  111.611610][ T9378] CPU: 2 UID: 0 PID: 9378 Comm: syz.7.1024 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  111.614264][ T9378] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  111.617040][ T9378] Call Trace:
[  111.617903][ T9378]  <TASK>
[  111.618770][ T9378]  dump_stack_lvl+0x16c/0x1f0
[  111.620142][ T9378]  should_fail_ex+0x497/0x5b0
[  111.621377][ T9378]  ? fs_reclaim_acquire+0xae/0x150
[  111.622701][ T9378]  should_failslab+0xc2/0x120
[  111.623949][ T9378]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[  111.625418][ T9378]  ? ovl_alloc_inode+0x25/0x190
[  111.626687][ T9378]  ? __pfx_ovl_inode_set+0x10/0x10
[  111.628006][ T9378]  ? __pfx_ovl_alloc_inode+0x10/0x10
[  111.629597][ T9378]  ovl_alloc_inode+0x25/0x190
[  111.630836][ T9378]  alloc_inode+0x5d/0x230
[  111.631972][ T9378]  iget5_locked+0x33b/0x3d0
[  111.633155][ T9378]  ? __pfx_ovl_inode_test+0x10/0x10
[  111.634541][ T9378]  ? __pfx_ovl_inode_set+0x10/0x10
[  111.635862][ T9378]  ? __pfx_iget5_locked+0x10/0x10
[  111.637208][ T9378]  ? lock_acquire.part.0+0x11b/0x380
[  111.638608][ T9378]  ovl_get_inode+0xceb/0x13c0
[  111.639842][ T9378]  ? __pfx_ovl_get_inode+0x10/0x10
[  111.641196][ T9378]  ? lockref_get+0x15/0x50
[  111.642573][ T9378]  ? do_raw_spin_unlock+0x172/0x230
[  111.643962][ T9378]  ? _raw_spin_unlock+0x28/0x50
[  111.645240][ T9378]  ovl_lookup+0xd4f/0x21f0
[  111.646441][ T9378]  ? __pfx_ovl_lookup+0x10/0x10
[  111.647737][ T9378]  ? __pfx_d_alloc_parallel+0x10/0x10
[  111.649448][ T9378]  ? lockdep_init_map_type+0x16d/0x7d0
[  111.650923][ T9378]  __lookup_slow+0x24f/0x460
[  111.652183][ T9378]  ? __pfx___lookup_slow+0x10/0x10
[  111.653630][ T9378]  ? walk_component+0x342/0x5b0
[  111.654933][ T9378]  ? lookup_fast+0x155/0x540
[  111.656153][ T9378]  walk_component+0x350/0x5b0
[  111.657439][ T9378]  path_lookupat+0x17f/0x770
[  111.658694][ T9378]  filename_lookup+0x221/0x5f0
[  111.659951][ T9378]  ? __pfx_filename_lookup+0x10/0x10
[  111.661351][ T9378]  ? __virt_addr_valid+0x5e/0x590
[  111.662674][ T9378]  ? __phys_addr_symbol+0x30/0x80
[  111.663982][ T9378]  ? __check_object_size+0x488/0x710
[  111.665344][ T9378]  vfs_statx+0xf8/0x1c0
[  111.666418][ T9378]  ? __pfx_vfs_statx+0x10/0x10
[  111.667669][ T9378]  ? getname_flags.part.0+0x1c5/0x550
[  111.669226][ T9378]  vfs_fstatat+0x7b/0xf0
[  111.670331][ T9378]  __do_sys_newfstatat+0xa2/0x130
[  111.671644][ T9378]  ? __pfx___do_sys_newfstatat+0x10/0x10
[  111.673116][ T9378]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  111.674629][ T9378]  ? ksys_write+0x1ba/0x250
[  111.675771][ T9378]  ? __pfx_ksys_write+0x10/0x10
[  111.677121][ T9378]  do_syscall_64+0xcd/0x250
[  111.678331][ T9378]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.679909][ T9378] RIP: 0033:0x7f5da2380849
[  111.681089][ T9378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.686026][ T9378] RSP: 002b:00007f5da31cd058 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[  111.688196][ T9378] RAX: ffffffffffffffda RBX: 00007f5da2545fa0 RCX: 00007f5da2380849
[  111.690325][ T9378] RDX: 0000000020000940 RSI: 00000000200000c0 RDI: ffffffffffffff9c
[  111.692392][ T9378] RBP: 00007f5da31cd0a0 R08: 0000000000000000 R09: 0000000000000000
[  111.694454][ T9378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.696562][ T9378] R13: 0000000000000000 R14: 00007f5da2545fa0 R15: 00007ffeb36a9248
[  111.698748][ T9378]  </TASK>
[  111.701524][ T9378] overlayfs: failed to get inode (-12)
[  111.712877][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  111.802651][ T9393] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  111.817974][ T9395] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  111.987558][ T9405] FAULT_INJECTION: forcing a failure.
[  111.987558][ T9405] name failslab, interval 1, probability 0, space 0, times 0
[  111.990783][ T9405] CPU: 2 UID: 0 PID: 9405 Comm: syz.3.1031 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  111.993444][ T9405] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  111.996246][ T9405] Call Trace:
[  111.997171][ T9405]  <TASK>
[  111.997970][ T9405]  dump_stack_lvl+0x16c/0x1f0
[  111.999347][ T9405]  should_fail_ex+0x497/0x5b0
[  112.000591][ T9405]  ? fs_reclaim_acquire+0xae/0x150
[  112.001968][ T9405]  should_failslab+0xc2/0x120
[  112.003206][ T9405]  __kmalloc_noprof+0xcb/0x510
[  112.004726][ T9405]  ? d_absolute_path+0x137/0x1b0
[  112.006029][ T9405]  tomoyo_encode2+0x100/0x3e0
[  112.007308][ T9405]  tomoyo_encode+0x29/0x50
[  112.008521][ T9405]  tomoyo_realpath_from_path+0x19d/0x720
[  112.009977][ T9405]  tomoyo_path_perm+0x276/0x460
[  112.011259][ T9405]  ? tomoyo_path_perm+0x262/0x460
[  112.012522][ T9405]  ? __pfx_tomoyo_path_perm+0x10/0x10
[  112.013924][ T9405]  ? do_raw_spin_lock+0x12d/0x2c0
[  112.015223][ T9405]  tomoyo_path_rmdir+0x92/0xe0
[  112.016467][ T9405]  ? __pfx_tomoyo_path_rmdir+0x10/0x10
[  112.017919][ T9405]  security_path_rmdir+0x145/0x2b0
[  112.019275][ T9405]  do_rmdir+0x2b5/0x410
[  112.020404][ T9405]  ? __pfx_do_rmdir+0x10/0x10
[  112.021646][ T9405]  ? getname_flags.part.0+0x1c5/0x550
[  112.023147][ T9405]  __x64_sys_rmdir+0xc5/0x110
[  112.024362][ T9405]  do_syscall_64+0xcd/0x250
[  112.025557][ T9405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.027179][ T9405] RIP: 0033:0x7f82b2d80849
[  112.028390][ T9405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.033366][ T9405] RSP: 002b:00007f82b3c0e058 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  112.035532][ T9405] RAX: ffffffffffffffda RBX: 00007f82b2f45fa0 RCX: 00007f82b2d80849
[  112.037593][ T9405] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0
[  112.039727][ T9405] RBP: 00007f82b3c0e0a0 R08: 0000000000000000 R09: 0000000000000000
[  112.041773][ T9405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  112.043837][ T9405] R13: 0000000000000000 R14: 00007f82b2f45fa0 R15: 00007ffe70364a08
[  112.045860][ T9405]  </TASK>
[  112.052220][ T9405] ERROR: Out of memory at tomoyo_realpath_from_path.
[  112.116151][ T9411] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  112.119196][ T9411] FAULT_INJECTION: forcing a failure.
[  112.119196][ T9411] name failslab, interval 1, probability 0, space 0, times 0
[  112.122495][ T9411] CPU: 2 UID: 0 PID: 9411 Comm: syz.3.1033 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  112.125345][ T9411] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.128130][ T9411] Call Trace:
[  112.128990][ T9411]  <TASK>
[  112.129716][ T9411]  dump_stack_lvl+0x16c/0x1f0
[  112.130937][ T9411]  should_fail_ex+0x497/0x5b0
[  112.132141][ T9411]  ? fs_reclaim_acquire+0xae/0x150
[  112.133383][ T9411]  should_failslab+0xc2/0x120
[  112.134575][ T9411]  __kmalloc_cache_noprof+0x68/0x410
[  112.135874][ T9411]  ? __pfx_lock_release+0x10/0x10
[  112.137140][ T9411]  ? do_raw_spin_lock+0x12d/0x2c0
[  112.138433][ T9411]  inode_doinit_use_xattr+0x54/0x410
[  112.139725][ T9411]  inode_doinit_with_dentry+0x51f/0x12c0
[  112.141201][ T9411]  ? __pfx_inode_doinit_with_dentry+0x10/0x10
[  112.142791][ T9411]  ? mark_held_locks+0x9f/0xe0
[  112.144072][ T9411]  selinux_d_instantiate+0x26/0x30
[  112.145411][ T9411]  security_d_instantiate+0x142/0x1a0
[  112.146812][ T9411]  d_splice_alias+0x94/0xdf0
[  112.148030][ T9411]  ovl_lookup+0xe8c/0x21f0
[  112.149208][ T9411]  ? __pfx_ovl_lookup+0x10/0x10
[  112.150474][ T9411]  ? __pfx_d_alloc_parallel+0x10/0x10
[  112.151897][ T9411]  ? lockdep_init_map_type+0x16d/0x7d0
[  112.153322][ T9411]  __lookup_slow+0x24f/0x460
[  112.154602][ T9411]  ? __pfx___lookup_slow+0x10/0x10
[  112.155966][ T9411]  ? walk_component+0x342/0x5b0
[  112.157242][ T9411]  ? lookup_fast+0x155/0x540
[  112.158462][ T9411]  walk_component+0x350/0x5b0
[  112.159701][ T9411]  path_lookupat+0x17f/0x770
[  112.160915][ T9411]  filename_lookup+0x221/0x5f0
[  112.162171][ T9411]  ? __pfx_filename_lookup+0x10/0x10
[  112.163558][ T9411]  ? __virt_addr_valid+0x5e/0x590
[  112.164865][ T9411]  ? __phys_addr_symbol+0x30/0x80
[  112.166178][ T9411]  ? __check_object_size+0x488/0x710
[  112.167559][ T9411]  vfs_statx+0xf8/0x1c0
[  112.168655][ T9411]  ? __pfx_vfs_statx+0x10/0x10
[  112.169909][ T9411]  ? getname_flags.part.0+0x1c5/0x550
[  112.171320][ T9411]  vfs_fstatat+0x7b/0xf0
[  112.172431][ T9411]  __do_sys_newfstatat+0xa2/0x130
[  112.173774][ T9411]  ? __pfx___do_sys_newfstatat+0x10/0x10
[  112.175248][ T9411]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  112.176741][ T9411]  ? ksys_write+0x1ba/0x250
[  112.177931][ T9411]  ? __pfx_ksys_write+0x10/0x10
[  112.179218][ T9411]  do_syscall_64+0xcd/0x250
[  112.180415][ T9411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.181966][ T9411] RIP: 0033:0x7f82b2d80849
[  112.183145][ T9411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.189674][ T9411] RSP: 002b:00007f82b3c0e058 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[  112.192091][ T9411] RAX: ffffffffffffffda RBX: 00007f82b2f45fa0 RCX: 00007f82b2d80849
[  112.194016][ T9411] RDX: 0000000020000940 RSI: 00000000200000c0 RDI: ffffffffffffff9c
[  112.196091][ T9411] RBP: 00007f82b3c0e0a0 R08: 0000000000000000 R09: 0000000000000000
[  112.198318][ T9411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.200671][ T9411] R13: 0000000000000000 R14: 00007f82b2f45fa0 R15: 00007ffe70364a08
[  112.202797][ T9411]  </TASK>
[  112.256884][ T9414] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=9414 comm=syz.7.1035
[  112.351959][ T5940] Bluetooth: hci2: unknown advertising packet type: 0x2f
[  112.352033][ T5940] Bluetooth: hci2: Dropping invalid advertising data
[  112.357451][ T5940] Bluetooth: hci2: Malformed LE Event: 0x02
[  112.374924][ T9429] FAULT_INJECTION: forcing a failure.
[  112.374924][ T9429] name failslab, interval 1, probability 0, space 0, times 0
[  112.378359][ T9429] CPU: 1 UID: 0 PID: 9429 Comm: syz.5.1041 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  112.380988][ T9429] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.383781][ T9429] Call Trace:
[  112.384661][ T9429]  <TASK>
[  112.385446][ T9429]  dump_stack_lvl+0x16c/0x1f0
[  112.386696][ T9429]  should_fail_ex+0x497/0x5b0
[  112.387939][ T9429]  ? fs_reclaim_acquire+0xae/0x150
[  112.389306][ T9429]  should_failslab+0xc2/0x120
[  112.390538][ T9429]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  112.391945][ T9429]  ? alloc_empty_file+0x73/0x1e0
[  112.393270][ T9429]  alloc_empty_file+0x73/0x1e0
[  112.394488][ T9429]  dentry_open+0x59/0x470
[  112.395633][ T9429]  ovl_path_open+0x198/0x1f0
[  112.396859][ T9429]  ovl_dir_read_merged+0x359/0x5d0
[  112.398203][ T9429]  ? __pfx_ovl_dir_read_merged+0x10/0x10
[  112.399691][ T9429]  ? __pfx_lock_release+0x10/0x10
[  112.401039][ T9429]  ? __pfx_ovl_fill_merge+0x10/0x10
[  112.402437][ T9429]  ? avc_has_perm_noaudit+0x143/0x3a0
[  112.403851][ T9429]  ovl_check_empty_dir+0xb0/0x4d0
[  112.405164][ T9429]  ? __pfx_avc_has_perm+0x10/0x10
[  112.406485][ T9429]  ? __pfx_ovl_check_empty_dir+0x10/0x10
[  112.407911][ T9429]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  112.409299][ T9429]  ovl_do_remove+0xc5/0xde0
[  112.410443][ T9429]  ? lock_acquire+0x2f/0xb0
[  112.411593][ T9429]  ? __pfx_may_link+0x10/0x10
[  112.412817][ T9429]  ? __pfx_ovl_do_remove+0x10/0x10
[  112.414153][ T9429]  vfs_rmdir+0x203/0x690
[  112.415320][ T9429]  do_rmdir+0x3a2/0x410
[  112.416418][ T9429]  ? __pfx_do_rmdir+0x10/0x10
[  112.417698][ T9429]  ? getname_flags.part.0+0x1c5/0x550
[  112.419144][ T9429]  __x64_sys_rmdir+0xc5/0x110
[  112.420444][ T9429]  do_syscall_64+0xcd/0x250
[  112.421652][ T9429]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.423195][ T9429] RIP: 0033:0x7f2e90580849
[  112.424361][ T9429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.429222][ T9429] RSP: 002b:00007f2e91408058 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  112.431379][ T9429] RAX: ffffffffffffffda RBX: 00007f2e90745fa0 RCX: 00007f2e90580849
[  112.433419][ T9429] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0
[  112.435471][ T9429] RBP: 00007f2e914080a0 R08: 0000000000000000 R09: 0000000000000000
[  112.437508][ T9429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  112.439555][ T9429] R13: 0000000000000000 R14: 00007f2e90745fa0 R15: 00007ffdbd09b218
[  112.441610][ T9429]  </TASK>
[  112.442506][    C1] vkms_vblank_simulate: vblank timer overrun
[  112.752906][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  112.788677][ T9471] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  112.902007][ T9488] 9pnet_virtio: no channels available for device syz
[  112.921445][ T9487] lo speed is unknown, defaulting to 1000
[  113.008053][ T9507] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  113.179745][ T9537] fuse: Bad value for 'fd'
[  113.232437][ T9542] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1069'.
[  113.240115][ T9546] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  113.346549][ T9550] /dev/nbd7: Can't open blockdev
[  113.528384][ T9566] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1078'.
[  113.735031][ T9571] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  113.794125][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  114.450756][ T9594] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  114.601579][ T9605] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1094'.
[  114.661278][ T9610] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1096'.
[  114.666061][ T9610] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  114.675833][ T9610] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  114.833025][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  114.880393][ T9610] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  114.889876][ T9610] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  115.093338][   T39] kauditd_printk_skb: 30 callbacks suppressed
[  115.093352][   T39] audit: type=1400 audit(2000000052.709:47516): avc:  denied  { listen } for  pid=9611 comm="syz.5.1097" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  115.102067][   T39] audit: type=1400 audit(2000000052.709:47517): avc:  denied  { accept } for  pid=9611 comm="syz.5.1097" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  115.144406][   T39] audit: type=1400 audit(2000000052.759:47518): avc:  denied  { lock } for  pid=9614 comm="syz.7.1098" path="socket:[30792]" dev="sockfs" ino=30792 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  115.153334][ T9615] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  115.195326][ T9618] Option 'n4:v®êšmäÛÌð¨áçžRÝfÍêËR­Oq±rúsJ)º¿rq' to dns_resolver key: bad/missing value
[  115.201600][ T9619] overlay: Unknown parameter 'smackfshat'
[  115.238575][ T9621] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  115.271268][ T9625] netlink: 80 bytes leftover after parsing attributes in process `syz.5.1102'.
[  115.302487][ T9610] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  115.305967][ T9610] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  115.391800][ T9634] mkiss: ax0: crc mode is auto.
[  115.841132][ T9643] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1107'.
[  115.883480][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  115.995425][ T9653] FAULT_INJECTION: forcing a failure.
[  115.995425][ T9653] name failslab, interval 1, probability 0, space 0, times 0
[  116.000055][ T9653] CPU: 3 UID: 0 PID: 9653 Comm: syz.5.1110 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  116.003261][ T9653] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  116.007094][ T9653] Call Trace:
[  116.008051][ T9653]  <TASK>
[  116.008824][ T9653]  dump_stack_lvl+0x16c/0x1f0
[  116.010052][ T9653]  should_fail_ex+0x497/0x5b0
[  116.011292][ T9653]  ? fs_reclaim_acquire+0xae/0x150
[  116.012669][ T9653]  should_failslab+0xc2/0x120
[  116.014193][ T9653]  __kmalloc_noprof+0xcb/0x510
[  116.015493][ T9653]  ? d_absolute_path+0x137/0x1b0
[  116.016773][ T9653]  tomoyo_encode2+0x100/0x3e0
[  116.018007][ T9653]  tomoyo_encode+0x29/0x50
[  116.019192][ T9653]  tomoyo_realpath_from_path+0x19d/0x720
[  116.020636][ T9653]  tomoyo_check_open_permission+0x2ad/0x3c0
[  116.022198][ T9653]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  116.024517][ T9653]  ? __pfx_hook_file_open+0x10/0x10
[  116.026437][ T9653]  ? lock_acquire+0x2f/0xb0
[  116.028124][ T9653]  tomoyo_file_open+0x6b/0x90
[  116.029853][ T9653]  security_file_open+0x84/0x1e0
[  116.031685][ T9653]  do_dentry_open+0x57e/0x1ea0
[  116.033440][ T9653]  dentry_open+0xdd/0x470
[  116.034995][ T9653]  ovl_path_open+0x198/0x1f0
[  116.036727][ T9653]  ovl_dir_read_merged+0x359/0x5d0
[  116.038599][ T9653]  ? __pfx_ovl_dir_read_merged+0x10/0x10
[  116.040710][ T9653]  ? __pfx_lock_release+0x10/0x10
[  116.042300][ T9653]  ? __pfx_ovl_fill_merge+0x10/0x10
[  116.043752][ T9653]  ? avc_has_perm_noaudit+0x143/0x3a0
[  116.045214][ T9653]  ovl_check_empty_dir+0xb0/0x4d0
[  116.046521][ T9653]  ? __pfx_avc_has_perm+0x10/0x10
[  116.047807][ T9653]  ? __pfx_ovl_check_empty_dir+0x10/0x10
[  116.049153][ T9653]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  116.050597][ T9653]  ovl_do_remove+0xc5/0xde0
[  116.051781][ T9653]  ? lock_acquire+0x2f/0xb0
[  116.052885][ T9653]  ? __pfx_may_link+0x10/0x10
[  116.054497][ T9653]  ? __pfx_ovl_do_remove+0x10/0x10
[  116.056376][ T9653]  vfs_rmdir+0x203/0x690
[  116.057676][ T9653]  do_rmdir+0x3a2/0x410
[  116.058781][ T9653]  ? __pfx_do_rmdir+0x10/0x10
[  116.059992][ T9653]  ? getname_flags.part.0+0x1c5/0x550
[  116.061356][ T9653]  __x64_sys_rmdir+0xc5/0x110
[  116.062616][ T9653]  do_syscall_64+0xcd/0x250
[  116.063912][ T9653]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.065451][ T9653] RIP: 0033:0x7f2e90580849
[  116.066611][ T9653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.071533][ T9653] RSP: 002b:00007f2e91408058 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  116.073901][ T9653] RAX: ffffffffffffffda RBX: 00007f2e90745fa0 RCX: 00007f2e90580849
[  116.076134][ T9653] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0
[  116.078175][ T9653] RBP: 00007f2e914080a0 R08: 0000000000000000 R09: 0000000000000000
[  116.080220][ T9653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  116.082269][ T9653] R13: 0000000000000000 R14: 00007f2e90745fa0 R15: 00007ffdbd09b218
[  116.084826][ T9653]  </TASK>
[  116.090062][ T9653] ERROR: Out of memory at tomoyo_realpath_from_path.
[  116.132080][   T39] audit: type=1400 audit(2000000053.739:47519): avc:  denied  { create } for  pid=9659 comm="syz.5.1112" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  116.260114][ T9683] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  116.417156][ T9692] FAULT_INJECTION: forcing a failure.
[  116.417156][ T9692] name failslab, interval 1, probability 0, space 0, times 0
[  116.421494][ T9692] CPU: 2 UID: 0 PID: 9692 Comm: syz.7.1121 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  116.424197][ T9692] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  116.426998][ T9692] Call Trace:
[  116.427875][ T9692]  <TASK>
[  116.428664][ T9692]  dump_stack_lvl+0x16c/0x1f0
[  116.429928][ T9692]  should_fail_ex+0x497/0x5b0
[  116.431172][ T9692]  ? fs_reclaim_acquire+0xae/0x150
[  116.433031][ T9692]  should_failslab+0xc2/0x120
[  116.434783][ T9692]  __kmalloc_noprof+0xcb/0x510
[  116.436168][ T9692]  ovl_cache_entry_new+0x3d/0x730
[  116.437483][ T9692]  ovl_fill_merge+0x2b5/0xa80
[  116.438725][ T9692]  offset_readdir+0x6df/0xaa0
[  116.439958][ T9692]  ? rwsem_read_trylock+0x12d/0x250
[  116.441402][ T9692]  ? __pfx_rwsem_read_trylock+0x10/0x10
[  116.442836][ T9692]  ? iterate_dir+0x424/0xb40
[  116.444049][ T9692]  ? __pfx_offset_readdir+0x10/0x10
[  116.445409][ T9692]  ? down_read_killable+0xcc/0x380
[  116.446768][ T9692]  ? __pfx_down_read_killable+0x10/0x10
[  116.448206][ T9692]  ? selinux_file_permission+0x11f/0x580
[  116.449681][ T9692]  iterate_dir+0x52f/0xb40
[  116.450883][ T9692]  ovl_dir_read_merged+0x3f1/0x5d0
[  116.452617][ T9692]  ? __pfx_ovl_dir_read_merged+0x10/0x10
[  116.454704][ T9692]  ? __pfx_lock_release+0x10/0x10
[  116.456081][ T9692]  ? __pfx_ovl_fill_merge+0x10/0x10
[  116.457440][ T9692]  ? avc_has_perm_noaudit+0x143/0x3a0
[  116.458851][ T9692]  ovl_check_empty_dir+0xb0/0x4d0
[  116.460160][ T9692]  ? __pfx_avc_has_perm+0x10/0x10
[  116.461553][ T9692]  ? __pfx_ovl_check_empty_dir+0x10/0x10
[  116.463012][ T9692]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  116.464472][ T9692]  ovl_do_remove+0xc5/0xde0
[  116.465657][ T9692]  ? lock_acquire+0x2f/0xb0
[  116.466965][ T9692]  ? __pfx_may_link+0x10/0x10
[  116.468346][ T9692]  ? __pfx_ovl_do_remove+0x10/0x10
[  116.469681][ T9692]  vfs_rmdir+0x203/0x690
[  116.470811][ T9692]  do_rmdir+0x3a2/0x410
[  116.472195][ T9692]  ? __pfx_do_rmdir+0x10/0x10
[  116.473921][ T9692]  ? getname_flags.part.0+0x1c5/0x550
[  116.475617][ T9692]  __x64_sys_rmdir+0xc5/0x110
[  116.476844][ T9692]  do_syscall_64+0xcd/0x250
[  116.478030][ T9692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.479566][ T9692] RIP: 0033:0x7f5da2380849
[  116.480732][ T9692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.485981][ T9692] RSP: 002b:00007f5da31cd058 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  116.488142][ T9692] RAX: ffffffffffffffda RBX: 00007f5da2545fa0 RCX: 00007f5da2380849
[  116.490188][ T9692] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0
[  116.492646][ T9692] RBP: 00007f5da31cd0a0 R08: 0000000000000000 R09: 0000000000000000
[  116.495488][ T9692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  116.497749][ T9692] R13: 0000000000000000 R14: 00007f5da2545fa0 R15: 00007ffeb36a9248
[  116.499794][ T9692]  </TASK>
[  116.554271][ T9694] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1122'.
[  116.557659][ T9694] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1122'.
[  116.761776][ T9696] team0 (unregistering): Port device team_slave_0 removed
[  116.770026][ T9696] team0 (unregistering): Port device team_slave_1 removed
[  116.922880][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  116.946541][   T39] audit: type=1400 audit(2000000054.559:47520): avc:  denied  { connect } for  pid=9701 comm="syz.7.1125" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  117.052494][ T9708] 9pnet_fd: Insufficient options for proto=fd
[  117.055477][ T9708] overlay: Unknown parameter 'fowner'
[  117.184477][   T39] audit: type=1400 audit(2000000054.799:47521): avc:  denied  { mount } for  pid=9714 comm="syz.5.1129" name="/" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  117.198314][ T9719] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  117.202114][ T9719] netlink: 'syz.7.1130': attribute type 28 has an invalid length.
[  117.204825][ T9719] netlink: 40 bytes leftover after parsing attributes in process `syz.7.1130'.
[  117.207957][   T39] audit: type=1400 audit(2000000054.819:47522): avc:  denied  { unmount } for  pid=8395 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  117.266683][ T9724] fuse: Bad value for 'fd'
[  117.271962][ T9724] tls_set_device_offload_rx: netdev not found
[  117.282047][ T9726] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1133'.
[  117.429795][ T9740] nbd: must specify at least one socket
[  117.460856][ T9742] nlmon0: entered allmulticast mode
[  117.518430][ T9726] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  117.519080][ T9747] overlayfs: missing 'workdir'
[  117.581407][ T9751] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  117.609801][   T39] audit: type=1326 audit(2000000055.219:47523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9752 comm="syz.7.1144" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5da2380849 code=0x0
[  117.950451][ T9788] random: crng reseeded on system resumption
[  117.963279][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  118.103758][ T9788] Unrecognized hibernate image header format!
[  118.106623][ T9788] PM: hibernation: Image mismatch: architecture specific data
[  118.148167][   T39] audit: type=1400 audit(2000000055.759:47524): avc:  denied  { setopt } for  pid=9795 comm="syz.5.1156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  118.172085][ T9800] netlink: 'syz.3.1158': attribute type 11 has an invalid length.
[  118.208738][ T9802] wireguard0: entered promiscuous mode
[  118.210236][ T9802] wireguard0: entered allmulticast mode
[  118.248350][ T1256] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.365565][ T1256] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.396746][ T9815] lo speed is unknown, defaulting to 1000
[  118.400853][ T5948] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  118.405390][ T5948] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  118.408284][ T5948] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  118.411353][ T5948] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  118.414190][ T5948] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  118.416356][ T5948] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  118.428040][   T39] audit: type=1400 audit(2000000056.039:47525): avc:  denied  { mount } for  pid=9814 comm="syz.5.1166" name="/" dev="rpc_pipefs" ino=30664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  118.442905][ T9816] lo speed is unknown, defaulting to 1000
[  118.463691][ T9822] netlink: 'syz.7.1168': attribute type 17 has an invalid length.
[  118.468794][ T1256] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.472527][ T9822] __nla_validate_parse: 3 callbacks suppressed
[  118.472536][ T9822] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1168'.
[  118.476825][ T9822] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1168'.
[  118.486966][ T5313] hid (null): invalid report_size 48347
[  118.488924][ T9820] vim2m vim2m.0: Fourcc format (0x31384142) invalid.
[  118.491919][ T9820] pim6reg1: entered promiscuous mode
[  118.492733][ T5313] hid-generic 0209:0007:0007.0007: invalid report_size 48347
[  118.494368][ T9820] pim6reg1: entered allmulticast mode
[  118.495522][ T5313] hid-generic 0209:0007:0007.0007: item 0 2 1 7 parsing failed
[  118.495798][ T5313] hid-generic 0209:0007:0007.0007: probe with driver hid-generic failed with error -22
[  118.503445][ T9820] tmpfs: Bad value for 'mpol'
[  118.551942][ T1256] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.567840][ T9830] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1170'.
[  118.575248][ T9830] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1170'.
[  118.578408][ T9831] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1170'.
[  118.584225][ T9816] chnl_net:caif_netlink_parms(): no params data found
[  118.630056][ T9816] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.632053][ T9816] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.634565][ T9816] bridge_slave_0: entered allmulticast mode
[  118.636635][ T9816] bridge_slave_0: entered promiscuous mode
[  118.639207][ T9816] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.641107][ T9816] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.646166][ T9816] bridge_slave_1: entered allmulticast mode
[  118.649966][ T9816] bridge_slave_1: entered promiscuous mode
[  118.675494][ T9816] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  118.677827][ T9847] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1175'.
[  118.682266][ T9816] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  118.713426][ T9852] binder: 9851:9852 ioctl c0306201 20000680 returned -22
[  118.715339][ T9853] binder: 9851:9853 ioctl c0306201 20000680 returned -22
[  118.736482][ T9816] team0: Port device team_slave_0 added
[  118.759285][ T9816] team0: Port device team_slave_1 added
[  118.792583][ T9816] batman_adv: batadv0: Adding interface: batadv_slave_0
[  118.794722][ T9816] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  118.801384][ T9816] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  118.825627][ T1256] bridge_slave_1: left allmulticast mode
[  118.827193][ T1256] bridge_slave_1: left promiscuous mode
[  118.828721][ T1256] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.832308][ T1256] bridge_slave_0: left allmulticast mode
[  118.834333][ T1256] bridge_slave_0: left promiscuous mode
[  118.836020][ T1256] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.871338][ T9874] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  118.992986][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  119.102652][ T1256] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  119.106840][ T1256] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  119.110132][ T1256] bond0 (unregistering): Released all slaves
[  119.114627][ T9816] batman_adv: batadv0: Adding interface: batadv_slave_1
[  119.116618][ T9816] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.123714][ T9816] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  119.191683][ T9816] hsr_slave_0: entered promiscuous mode
[  119.195768][ T9816] hsr_slave_1: entered promiscuous mode
[  119.198791][ T9816] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  119.201246][ T9816] Cannot create hsr debugfs directory
[  119.293595][ T5948] Bluetooth: hci3: unexpected event 0x01 length: 4 > 1
[  119.311066][ T9816] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  119.319308][ T9816] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  119.322702][ T9816] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  119.326192][ T9816] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  119.406680][ T9816] 8021q: adding VLAN 0 to HW filter on device bond0
[  119.434533][ T9816] 8021q: adding VLAN 0 to HW filter on device team0
[  119.441529][   T71] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.443462][   T71] bridge0: port 1(bridge_slave_0) entered forwarding state
[  119.449554][   T71] bridge0: port 2(bridge_slave_1) entered blocking state
[  119.451688][   T71] bridge0: port 2(bridge_slave_1) entered forwarding state
[  119.479794][ T1256] hsr_slave_0: left promiscuous mode
[  119.481757][ T1256] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  119.485365][ T1256] batman_adv: batadv0: Removing interface: batadv_slave_0
[  119.489073][ T1256] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  119.491340][ T1256] batman_adv: batadv0: Removing interface: batadv_slave_1
[  119.526398][ T1256] veth1_macvtap: left promiscuous mode
[  119.528323][ T1256] veth0_macvtap: left promiscuous mode
[  119.530189][ T1256] veth1_vlan: left promiscuous mode
[  119.532019][ T1256] veth0_vlan: left promiscuous mode
[  120.033329][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  120.144013][ T1256] team0 (unregistering): Port device team_slave_1 removed
[  120.227442][ T1256] team0 (unregistering): Port device team_slave_0 removed
[  120.418043][ T9911] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1192'.
[  120.470137][ T9912] overlayfs: failed to resolve './file0': -2
[  120.489887][   T39] kauditd_printk_skb: 5 callbacks suppressed
[  120.489897][   T39] audit: type=1400 audit(2000000058.099:47531): avc:  denied  { setopt } for  pid=9910 comm="syz.5.1192" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  120.496743][   T39] audit: type=1400 audit(2000000058.099:47532): avc:  denied  { connect } for  pid=9910 comm="syz.5.1192" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  120.526321][ T5948] Bluetooth: hci0: command tx timeout
[  120.960940][ T9896] ip6gretap0: entered promiscuous mode
[  120.963748][ T9896] macsec2: entered promiscuous mode
[  120.967760][ T9896] ip6gretap0: left promiscuous mode
[  120.990851][ T9909] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  120.999003][ T9914] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1192'.
[  121.009462][ T9816] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  121.012171][ T9816] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  121.120012][ T9816] 8021q: adding VLAN 0 to HW filter on device batadv0
[  121.135975][ T9938] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1196'.
[  121.154667][ T9938] bond3: entered promiscuous mode
[  121.167553][ T9938] gretap2: entered promiscuous mode
[  121.169792][ T9938] bond3: (slave gretap2): Enslaving as an active interface with an up link
[  121.201847][ T9938] bond3 (unregistering): (slave gretap2): Releasing backup interface
[  121.206479][ T9938] gretap2: left promiscuous mode
[  121.211008][ T9938] bond3 (unregistering): Released all slaves
[  121.280504][ T9816] veth0_vlan: entered promiscuous mode
[  121.295349][ T9816] veth1_vlan: entered promiscuous mode
[  121.307448][ T9816] veth0_macvtap: entered promiscuous mode
[  121.313901][ T9816] veth1_macvtap: entered promiscuous mode
[  121.320082][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.323131][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.325621][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.328275][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.330763][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.333501][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.335918][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.338591][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.341100][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.344160][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.346693][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.349379][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.351872][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.354939][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.358304][ T9816] batman_adv: batadv0: Interface activated: batadv_slave_0
[  121.361393][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.369115][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.371676][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.375321][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.377693][ T9964] No such timeout policy "syz1"
[  121.377886][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.377896][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.385048][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.387691][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.390218][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.393057][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.395583][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.398255][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.400779][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.403583][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.407809][ T9816] batman_adv: batadv0: Interface activated: batadv_slave_1
[  121.413652][ T9816] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  121.415954][ T9816] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  121.418213][ T9816] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  121.420499][ T9816] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  121.427864][ T9964] netlink: 'syz.3.1199': attribute type 1 has an invalid length.
[  121.476908][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.479795][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.488161][ T9971] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  121.494931][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.496992][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.504844][   T39] audit: type=1400 audit(2000000059.119:47533): avc:  denied  { mounton } for  pid=9816 comm="syz-executor" path="/syzkaller.lO5gRB/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=31418 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  121.519589][   T39] audit: type=1400 audit(2000000059.129:47534): avc:  denied  { mount } for  pid=9816 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  121.527305][ T9974] kAFS: No cell specified
[  121.528573][   T39] audit: type=1400 audit(2000000059.139:47535): avc:  denied  { mounton } for  pid=9816 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  122.113052][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  122.385809][T10042] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  122.418015][   T39] audit: type=1400 audit(2000000060.029:47536): avc:  denied  { ioctl } for  pid=10044 comm="syz.3.1212" path="/dev/btrfs-control" dev="devtmpfs" ino=1335 ioctlcmd=0x9439 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  122.441082][T10047] overlayfs: failed to resolve './file0': -2
[  122.592968][ T5940] Bluetooth: hci0: command tx timeout
[  122.733059][T10065] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1219'.
[  122.759516][T10064] block nbd8: shutting down sockets
[  122.767689][T10070] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  122.811975][T10072] vlan2: entered allmulticast mode
[  122.813932][T10072] bond0: entered allmulticast mode
[  122.815328][T10072] bond_slave_0: entered allmulticast mode
[  122.816966][T10072] bond_slave_1: entered allmulticast mode
[  122.820361][T10072] bond0: left allmulticast mode
[  122.821792][T10072] bond_slave_0: left allmulticast mode
[  122.823592][T10072] bond_slave_1: left allmulticast mode
[  122.922950][   T30] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  123.054632][T10098] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  123.093149][   T30] usb 10-1: Using ep0 maxpacket: 8
[  123.097295][   T30] usb 10-1: config index 0 descriptor too short (expected 301, got 45)
[  123.100485][   T30] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  123.104264][   T30] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  123.107776][   T30] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 800
[  123.111332][   T30] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  123.116008][   T30] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  123.119243][   T30] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  123.152955][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  123.199555][   T39] audit: type=1400 audit(2000000060.809:47537): avc:  denied  { unmount } for  pid=9816 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  123.274873][T10101] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  123.329163][   T30] usb 10-1: usb_control_msg returned -32
[  123.330712][   T30] usbtmc 10-1:16.0: can't read capabilities
[  123.407685][   T39] audit: type=1400 audit(2000000061.019:47538): avc:  denied  { remove_name } for  pid=10105 comm="syz.3.1233" name="file0" dev="9p" ino=37617924 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  123.413650][   T39] audit: type=1400 audit(2000000061.019:47539): avc:  denied  { rename } for  pid=10105 comm="syz.3.1233" name="file0" dev="9p" ino=37617924 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  123.417047][T10106] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10106 comm=syz.3.1233
[  123.419550][   T39] audit: type=1400 audit(2000000061.029:47540): avc:  denied  { create } for  pid=10105 comm="syz.3.1233" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=fifo_file permissive=1
[  123.473288][T10103] nbd8: detected capacity change from 0 to 131072
[  123.483080][ T5951] block nbd8: Send control failed (result -89)
[  123.485828][ T5951] block nbd8: Request send failed, requeueing
[  123.490202][ T5940] block nbd8: Receive control failed (result -32)
[  123.492239][  T124] block nbd8: Dead connection, failed to find a fallback
[  123.495634][  T124] block nbd8: shutting down sockets
[  123.497800][  T124] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  123.501492][  T124] Buffer I/O error on dev nbd8, logical block 0, async page read
[  123.505967][ T5951] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  123.509763][ T5951] Buffer I/O error on dev nbd8, logical block 0, async page read
[  123.512597][ T5951] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  123.515965][ T5951] Buffer I/O error on dev nbd8, logical block 0, async page read
[  123.518623][ T5951] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  123.521620][ T5951] Buffer I/O error on dev nbd8, logical block 0, async page read
[  123.524381][ T5951] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  123.527252][ T5951] Buffer I/O error on dev nbd8, logical block 0, async page read
[  123.529820][ T5951] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  123.532888][ T5951] Buffer I/O error on dev nbd8, logical block 0, async page read
[  123.534331][    C1] usbtmc 10-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.535433][ T5951] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  123.540902][ T5951] Buffer I/O error on dev nbd8, logical block 0, async page read
[  123.543390][ T5951] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  123.545665][ T5951] Buffer I/O error on dev nbd8, logical block 0, async page read
[  123.547588][ T5951] ldm_validate_partition_table(): Disk read failed.
[  123.549255][ T5951] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  123.551525][ T5951] Buffer I/O error on dev nbd8, logical block 0, async page read
[  123.553747][ T5951] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  123.556115][ T5951] Buffer I/O error on dev nbd8, logical block 0, async page read
[  123.558219][ T5951] Dev nbd8: unable to read RDB block 0
[  123.559851][ T5951]  nbd8: unable to read partition table
[  123.571815][T10107] ldm_validate_partition_table(): Disk read failed.
[  123.574784][T10107] Dev nbd8: unable to read RDB block 0
[  123.576885][T10107]  nbd8: unable to read partition table
[  123.583206][ T5951] ldm_validate_partition_table(): Disk read failed.
[  123.584973][ T5951] Dev nbd8: unable to read RDB block 0
[  123.586549][ T5951]  nbd8: unable to read partition table
[  123.592335][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=256, location=256
[  123.595316][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=65535, location=65535
[  123.597969][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=65279, location=65279
[  123.600466][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=65534, location=65534
[  123.606046][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=65278, location=65278
[  123.608536][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=65533, location=65533
[  123.611293][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=65277, location=65277
[  123.615305][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=65385, location=65385
[  123.617805][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=65129, location=65129
[  123.620312][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=65383, location=65383
[  123.622940][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=65127, location=65127
[  123.625534][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=512, location=512
[  123.628462][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=256, location=256
[  123.630988][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=32767, location=32767
[  123.634007][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=32511, location=32511
[  123.636553][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=32766, location=32766
[  123.639107][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=32510, location=32510
[  123.641699][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=32765, location=32765
[  123.645230][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=32509, location=32509
[  123.647830][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=32617, location=32617
[  123.650396][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=32361, location=32361
[  123.653159][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=32615, location=32615
[  123.655742][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=32359, location=32359
[  123.658316][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=512, location=512
[  123.661222][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=256, location=256
[  123.663813][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=16383, location=16383
[  123.666371][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=16127, location=16127
[  123.668936][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=16382, location=16382
[  123.671534][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=16126, location=16126
[  123.674223][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=16381, location=16381
[  123.676808][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=16125, location=16125
[  123.679395][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=16233, location=16233
[  123.681986][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=15977, location=15977
[  123.684745][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=16231, location=16231
[  123.687247][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=15975, location=15975
[  123.688647][T10116] usbtmc 10-1:16.0: INITIATE_ABORT_BULK_OUT returned 0
[  123.689788][T10107] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=512, location=512
[  123.694408][T10107] UDF-fs: warning (device nbd8): udf_fill_super: No partition found (1)
[  123.852069][T10118] overlay: Unknown parameter 'fsuuid'
[  123.856363][T10120] overlay: Unknown parameter 'fsuuid'
[  123.889298][ T5313] usb 10-1: USB disconnect, device number 5
[  123.986517][T10130] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  124.048824][T10134] overlayfs: failed to resolve './file0': -2
[  124.102147][T10134] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10134 comm=syz.7.1242
[  124.193116][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  124.332319][T10143] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  124.419483][T10148] (unnamed net_device) (uninitialized): option arp_validate: invalid value (22)
[  124.467017][T10153] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1251'.
[  124.471348][T10153] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1251'.
[  124.495543][T10153] trusted_key: encrypted_key: insufficient parameters specified
[  124.497297][T10160] netlink: 528 bytes leftover after parsing attributes in process `syz.3.1254'.
[  124.504653][T10160] netlink: 528 bytes leftover after parsing attributes in process `syz.3.1254'.
[  124.614717][T10184] pim6reg: entered allmulticast mode
[  124.622191][T10186] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1260'.
[  124.683790][ T5940] Bluetooth: hci0: command 0x040f tx timeout
[  124.733224][   T30] usb 13-1: new low-speed USB device number 2 using dummy_hcd
[  124.752392][T10201] (unnamed net_device) (uninitialized): peer notification delay (10) is not a multiple of miimon (100), value rounded to 0 ms
[  124.762829][T10201] bond1: entered promiscuous mode
[  124.764586][T10201] bond1: entered allmulticast mode
[  124.767116][T10201] 8021q: adding VLAN 0 to HW filter on device bond1
[  124.773979][T10200] veth0_to_team: mtu less than device minimum
[  124.797866][T10204] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1266'.
[  124.804023][T10205] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1266'.
[  124.874964][   T30] usb 13-1: device descriptor read/64, error -71
[  125.123494][   T30] usb 13-1: new low-speed USB device number 3 using dummy_hcd
[  125.232875][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  125.252842][   T30] usb 13-1: device descriptor read/64, error -71
[  125.307757][T10242] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1278'.
[  125.310398][T10242] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1278'.
[  125.363499][   T30] usb usb13-port1: attempt power cycle
[  125.487736][T10255] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  125.563443][T10260] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[  125.566574][T10261] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x2
[  125.568765][T10261] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x2
[  125.570452][T10261] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x2
[  125.572289][T10261] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x2
[  125.576152][T10261] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x2
[  125.577885][T10261] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x2
[  125.580635][   T39] kauditd_printk_skb: 14 callbacks suppressed
[  125.580646][   T39] audit: type=1400 audit(2000000001.670:47555): avc:  denied  { accept } for  pid=10262 comm="syz.7.1285" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  125.590995][   T39] audit: type=1400 audit(2000000001.680:47556): avc:  denied  { wake_alarm } for  pid=10262 comm="syz.7.1285" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  125.595606][T10263] xt_AUDIT: Audit type out of range (valid range: 0..2)
[  125.634205][T10265] Bluetooth: hci1: Frame reassembly failed (-84)
[  125.640690][ T1143] Bluetooth: hci1: Frame reassembly failed (-84)
[  125.702924][   T30] usb 13-1: new low-speed USB device number 4 using dummy_hcd
[  125.723335][   T30] usb 13-1: device descriptor read/8, error -71
[  125.803678][   T39] audit: type=1400 audit(2000000001.900:47557): avc:  denied  { sendto } for  pid=29 comm="ksoftirqd/1" saddr=fe80::1c daddr=ff02::2 netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1
[  125.972983][   T30] usb 13-1: new low-speed USB device number 5 using dummy_hcd
[  125.976659][   T39] audit: type=1400 audit(2000000002.070:47558): avc:  denied  { connect } for  pid=10273 comm="syz.3.1290" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  125.979543][T10274] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1290'.
[  126.003243][   T30] usb 13-1: device descriptor read/8, error -71
[  126.113410][   T30] usb usb13-port1: unable to enumerate USB device
[  126.221311][T10276] cgroup: fork rejected by pids controller in /syz3
[  126.447805][   T39] audit: type=1404 audit(2000000002.540:47559): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  126.463598][   T39] audit: type=1400 audit(2000000002.560:47560): avc:  denied  { recv } for  pid=34 comm="ksoftirqd/3" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=33884 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=0
[  126.470044][   T39] audit: type=1400 audit(2000000002.560:47561): avc:  denied  { create } for  pid=10317 comm="syz.3.1293" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=0
[  126.475402][   T39] audit: type=1400 audit(2000000002.560:47562): avc:  denied  { write } for  pid=10317 comm="syz.3.1293" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=0
[  126.481391][   T39] audit: type=1400 audit(2000000002.560:47563): avc:  denied  { watch watch_reads } for  pid=10317 comm="syz.3.1293" path=2F6D656D66643A2D42D54E49C56A9A707070F00884A26D202864656C6574656429 dev="tmpfs" ino=3096 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=0
[  126.490571][   T39] audit: type=1400 audit(2000000002.560:47564): avc:  denied  { create } for  pid=10317 comm="syz.3.1293" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=0
[  126.529091][T10320] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=63248 sclass=netlink_route_socket pid=10320 comm=syz.7.1294
[  126.581514][T10325] fuse: Bad value for 'fd'
[  126.762908][ T5948] Bluetooth: hci0: command 0x040f tx timeout
[  126.877349][T10352] lo speed is unknown, defaulting to 1000
[  126.899413][T10352] /dev/nullb0: Can't open blockdev
[  127.050861][T10370] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8276 sclass=netlink_route_socket pid=10370 comm=syz.7.1309
[  127.050917][T10371] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8276 sclass=netlink_route_socket pid=10371 comm=syz.7.1309
[  127.148551][T10383] pim6reg527: entered allmulticast mode
[  127.200140][T10380] rtc_cmos 00:05: Alarms can be up to one day in the future
[  127.262332][T10389] autofs4:pid:10389:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(2863311530.2147592874), cmd(0xc0189374)
[  127.266875][T10389] autofs4:pid:10389:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189374)
[  127.634182][ T5313] rtc_cmos 00:05: Alarms can be up to one day in the future
[  127.637952][ T5313] rtc_cmos 00:05: Alarms can be up to one day in the future
[  127.641413][ T5313] rtc_cmos 00:05: Alarms can be up to one day in the future
[  127.642755][ T5940] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  127.673355][ T5313] rtc_cmos 00:05: Alarms can be up to one day in the future
[  127.675878][ T5313] rtc rtc0: __rtc_set_alarm: err=-22
[  127.795040][T10415] x_tables: duplicate underflow at hook 1
[  127.805236][T10415] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.807376][T10415] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.551954][T10383] kexec: Could not allocate control_code_buffer
[  128.630184][T10468] netlink: 'syz.5.1338': attribute type 12 has an invalid length.
[  128.636884][T10470] SELinux: failure in selinux_parse_skb(), unable to parse packet
[  128.832787][ T5940] Bluetooth: hci0: command 0x040f tx timeout
[  128.922767][   T64] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  129.082648][   T64] usb 10-1: Using ep0 maxpacket: 8
[  129.085361][   T64] usb 10-1: config 0 has an invalid interface number: 1 but max is 0
[  129.087457][   T64] usb 10-1: config 0 has no interface number 0
[  129.089249][   T64] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  129.092057][   T64] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  129.094667][   T64] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.097739][   T64] usb 10-1: config 0 descriptor??
[  129.102642][   T64] iowarrior 10-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  129.189265][T10487] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  129.192367][T10487] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  129.362384][   T25] usb 10-1: USB disconnect, device number 6
[  129.402689][    C0] net_ratelimit: 30 callbacks suppressed
[  129.402709][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  129.581064][T10531] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[  129.582876][T10531] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  129.587667][T10531] vhci_hcd vhci_hcd.0: Device attached
[  129.594411][T10533] vhci_hcd: connection closed
[  129.595837][   T12] vhci_hcd: stop threads
[  129.599172][   T12] vhci_hcd: release socket
[  129.601416][   T12] vhci_hcd: disconnect device
[  129.734968][T10546] pimreg4: entered allmulticast mode
[  130.132779][T10572] lo speed is unknown, defaulting to 1000
[  130.160688][T10572] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  130.164576][T10572] overlayfs: failed to set xattr on upper
[  130.166977][T10572] overlayfs: ...falling back to redirect_dir=nofollow.
[  130.169519][T10572] overlayfs: ...falling back to index=off.
[  130.171692][T10572] overlayfs: ...falling back to uuid=null.
[  130.174213][T10572] overlayfs: ...falling back to xino=off.
[  130.432578][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  131.083401][   T39] kauditd_printk_skb: 182 callbacks suppressed
[  131.083417][   T39] audit: type=1400 audit(2000000007.180:47747): avc:  denied  { setopt } for  pid=10606 comm="syz.3.1378" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  131.122029][   T39] audit: type=1400 audit(2000000007.210:47748): avc:  denied  { ioctl } for  pid=10608 comm="syz.3.1379" path="/dev/fuse" dev="devtmpfs" ino=105 ioctlcmd=0xe502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  131.172237][   T39] audit: type=1400 audit(2000000007.260:47749): avc:  denied  { unmount } for  pid=8395 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  131.175014][T10612] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10612 comm=syz.3.1379
[  131.181151][   T39] audit: type=1326 audit(2000000007.280:47750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10610 comm="syz.8.1380" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6c7180849 code=0x7ffc0000
[  131.184727][T10612] __nla_validate_parse: 9 callbacks suppressed
[  131.184742][T10612] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1379'.
[  131.189407][   T39] audit: type=1326 audit(2000000007.280:47751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10610 comm="syz.8.1380" exe="/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7ff6c7180849 code=0x7ffc0000
[  131.203627][T10612] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  131.204426][   T39] audit: type=1326 audit(2000000007.300:47752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10610 comm="syz.8.1380" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6c7180849 code=0x7ffc0000
[  131.207154][T10612] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  131.207211][T10612] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  131.207242][T10612] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  131.212768][T10612] vxlan0: entered promiscuous mode
[  131.221616][   T39] audit: type=1326 audit(2000000007.300:47753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10610 comm="syz.8.1380" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff6c7180849 code=0x7ffc0000
[  131.236311][   T39] audit: type=1326 audit(2000000007.300:47754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10610 comm="syz.8.1380" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6c7180849 code=0x7ffc0000
[  131.244981][   T39] audit: type=1326 audit(2000000007.300:47755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10610 comm="syz.8.1380" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6c7180849 code=0x7ffc0000
[  131.253164][   T39] audit: type=1326 audit(2000000007.300:47756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10610 comm="syz.8.1380" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff6c7180849 code=0x7ffc0000
[  131.273551][T10615] netlink: 144 bytes leftover after parsing attributes in process `syz.5.1381'.
[  131.516668][T10633] PKCS7: Unknown OID: [4] 5.25.43183(bad)
[  131.518248][T10633] PKCS7: Only support pkcs7_signedData type
[  131.581565][T10637] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1386'.
[  131.859920][T10658] syz.5.1391: attempt to access beyond end of device
[  131.859920][T10658] nbd5: rw=0, sector=0, nr_sectors = 1 limit=0
[  131.864440][T10658] (syz.5.1391,10658,0):ocfs2_get_sector:1769 ERROR: status = -5
[  131.867129][T10658] (syz.5.1391,10658,0):ocfs2_sb_probe:749 ERROR: status = -5
[  131.869885][T10658] (syz.5.1391,10658,0):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  131.875560][T10658] (syz.5.1391,10658,0):ocfs2_fill_super:1178 ERROR: status = -5
[  132.090587][T10671] netlink: 'syz.3.1395': attribute type 11 has an invalid length.
[  132.143605][T10676] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1397'.
[  132.191737][T10679] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10679 comm=syz.5.1398
[  132.228687][T10681] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1399'.
[  132.310714][T10690] bridge: RTM_NEWNEIGH with unconfigured vlan 1 on bridge0
[  132.515210][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  132.523619][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  132.525379][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  132.612752][T10731] lo speed is unknown, defaulting to 1000
[  132.758268][T10759] fuse: Bad value for 'fd'
[  132.865093][ T5940] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  132.868010][ T5940] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  133.562445][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:22 syzkaller kern.err kernel: [  133.562445][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:22 syzkaller daemon.info dhcpcd[5652]: eth12: using IPv4LL address 169.254.105.99
May 18 03:33:22 syzkaller daemon.info dhcpcd[5652]: eth12: adding route to 169.254.0.0/16
May 18 03:33:22 syzkaller daemon.info dhcpcd[5652]: lapb17: using IPv4LL address 169.254.132.115
May 18 03:33:22 syzkaller daemon.info dhcpcd[5652]: lapb17: adding route to 169.254.0.0/16
May 18 03:33:22 syzkaller daemon.err dhcpcd[5652]: ps_root_recvmsg: Invalid argument
[  134.592566][    C1] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:23 syzkaller kern.err kernel: [  134.592566][    C1] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:23 syzkaller daemon.err dhcpcd[10830]: ps_bpf_start_bpf: bpf_open: Invalid argument
May 18 03:33:23 syzkaller daemon.err dhcpcd[10830]: ps_root_recvmsg: Invalid argument
May 18 03:33:23 syzkaller daemon.err dhcpcd[5652]: ps_sendpsmmsg: Connection refused
May 18 03:33:23 syzkaller daemon.err dhcpcd[5652]: ps_root_recvmsgcb: failed to send message to pid 10595: Connection refused
May 18 03:33:23 syzkaller daemon.err dhcpcd[10831]: ps_bpf_start_bpf: bpf_open: Invalid argument
May 18 03:33:23 syzkaller daemon.err dhcpcd[10831]: ps_root_recvmsg: Invalid argument
May 18 03:33:23 syzkaller daemon.warn dhcpcd[5652]: eth10: no IPv6 Routers available
May 18 03:33:23 syzkaller daemon.err dhcpcd[10832]: ps_bpf_start_bpf: bpf_open: Invalid argument
May 18 03:33:23 syzkaller daemon.err dhcpcd[10832]: ps_root_recvmsg: Invalid argument
May 18 03:33:24 syzkaller daemon.info dhcpcd[5652]: lapb19: probing for an IPv4LL address
May 18 03:33:24 syzkaller daemon.err dhcpcd[10833]: ps_bpf_start_bpf: bpf_open: Invalid argument
May 18 03:33:24 syzkaller daemon.err dhcpcd[10833]: ps_root_recvmsg: Invalid argument
May 18 03:33:24 syzkaller daemon.warn dhcpcd[5652]: eth11: no IPv6 Routers available
[  135.642351][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:24 syzkaller kern.err kernel: [  135.642351][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:24 syzkaller daemon.warn dhcpcd[5652]: eth13: no IPv6 Routers available
[  136.272574][   T39] kauditd_printk_skb: 801 callbacks suppressed
[  136.272584][   T39] audit: type=1400 audit(2000000004.840:48558): avc:  denied  { recv } for  pid=5313 comm="kworker/1:2" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=33884 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=0
[  136.284264][   T39] audit: type=1400 audit(2000000004.850:48559): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
May 18 03:33:24 [  136.291637][   T39] audit: type=1400 audit(2000000004.850:48560): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
syzkaller kern.warn kernel: [  136.272574][   T39] kauditd_printk_skb: 801 callbacks suppressed
May 18 03:33:24 syzkaller kern.notice kernel: [  136.272584][   T39] audit: type=1400 audit(2000000004.840:48558): avc:  denied  { recv } for  pid=5313 comm="kworker/1:2" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=33884 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=
[  136.310034][   T39] audit: type=1400 audit(2000000004.870:48561): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
May 18 03:33:24 [  136.317885][   T39] audit: type=1400 audit(2000000004.890:48562): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
syzkaller kern.notice kernel: [  136.284264][   [  136.325157][   T39] audit: type=1400 audit(2000000004.890:48563): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
T39] audit: type=1400 audit(2000000004.850:48559): avc:  denied  { read } for  p[  136.332843][   T39] audit: type=1400 audit(2000000004.900:48564): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
id=5334 comm="syslogd" name="log" dev="sda1" ino[  136.340085][   T39] audit: type=1400 audit(2000000004.900:48565): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:obj[  136.347746][   T39] audit: type=1400 audit(2000000004.910:48566): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
ect_r:var_t tclass
May 18 03:33:24 syzkaller kern.notice kernel: [  136.291637][  136.355256][   T39] audit: type=1400 audit(2000000004.920:48567): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
[   T39] audit: type=1400 audit(2000000004.850:48560): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
May 18 03:33:24 syzkaller kern.notice kernel: [  136.310034][   T39] audit: type=1400 audit(2000000004.870:48561): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
May 18 03:33:24 syzkaller kern.notice kernel: [  136.317885][   T39] audit: type=1400 audit(2000000004.890:48562): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
May 18 03:33:24 syzkaller kern.notice kernel: [  136.325157][   T39] audit: type=1400 audit(2000000004.890:48563): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
May 18 03:33:24 syzkaller kern.notice kernel: [  136.332843][   T39] audit: type=1400 audit(2000000004.900:48564): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
May 18 03:33:24 syzkaller kern.notice kernel: [  136.340085][   T39] audit: type=1400 audit(2000000004.900:48565): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
May 18 03:33:24 syzkaller kern.notice kernel: [  136.347746][   T39] audit: type=1400 audit(2000000004.910:48566): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
May 18 03:33:24 syzkaller daemon.warn dhcpcd[5652]: eth12: no IPv6 Routers available
May 18 03:33:24 syzkaller kern.notice kernel: [  136.355256][   T39] audit: type=1400 audit(2000000004.920:48567): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
May 18 03:33:24 syzkaller daemon.err dhcpcd[5652]: ps_root_recvmsg: Invalid argument
[  136.672270][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:25 syzkaller kern.err kernel: [  136.672270][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:25 syzkaller daemon.err dhcpcd[5652]: ps_sendpsmmsg: Connection refused
May 18 03:33:25 syzkaller daemon.err dhcpcd[5652]: ps_root_recvmsgcb: failed to send message to pid 10833: Connection refused
May 18 03:33:25 syzkaller daemon.err dhcpcd[10834]: ps_bpf_start_bpf: bpf_open: Invalid argument
May 18 03:33:25 syzkaller daemon.err dhcpcd[10834]: ps_root_recvmsg: Invalid argument
[  137.712416][    C2] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:26 syzkaller kern.err kernel: [  137.712416][    C2] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:26 syzkaller daemon.err dhcpcd[5652]: ps_root_recvmsg: Invalid argument
[  138.752272][    C3] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:27 syzkaller kern.err kernel: [  138.752272][    C3] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:27 syzkaller daemon.err dhcpcd[10835]: ps_bpf_start_bpf: bpf_open: Invalid argument
May 18 03:33:27 syzkaller daemon.err dhcpcd[10835]: ps_root_recvmsg: Invalid argument
May 18 03:33:28 syzkaller daemon.err dhcpcd[10836]: ps_bpf_start_bpf: bpf_open: Invalid argument
May 18 03:33:28 syzkaller daemon.err dhcpcd[10836]: ps_root_recvmsg: Invalid argument
[  139.792026][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:28 syzkaller kern.err kernel: [  139.792026][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:28 syzkaller daemon.info dhcpcd[5652]: lapb19: using IPv4LL address 169.254.22.81
May 18 03:33:28 syzkaller daemon.info dhcpcd[5652]: lapb19: adding route to 169.254.0.0/16
May 18 03:33:28 syzkaller daemon.err dhcpcd[5652]: ps_root_recvmsg: Invalid argument
May 18 03:33:28 syzkaller daemon.err dhcpcd[10844]: ps_bpf_start_bpf: bpf_open: Invalid argument
May 18 03:33:28 syzkaller daemon.err dhcpcd[10844]: ps_root_recvmsg: Invalid argument
May 18 03:33:28 syzkaller daemon.err dhcpcd[10845]: ps_bpf_start_bpf: bpf_open: Invalid argument
May 18 03:33:28 syzkaller daemon.err dhcpcd[10845]: ps_root_recvmsg: Invalid argument
[  140.832043][    C2] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:29 syzkaller kern.err kernel: [  140.832043][    C2] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:30 syzkaller daemon.err dhcpcd[5652]: ps_root_recvmsg: Invalid argument[  141.837099][   T39] kauditd_printk_skb: 131 callbacks suppressed
[  141.837109][   T39] audit: type=1400 audit(2000000010.400:48699): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0

[  141.845728][   T39] audit: type=1400 audit(2000000010.410:48700): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
May 18 03:33:30 syzkaller kern.warn kernel: [  141.837099][   T39] kauditd_printk_skb: 131 callbacks suppressed
[  141.854842][   T39] audit: type=1400 audit(2000000010.420:48701): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
May 18 03:33:30 syzkaller kern.notice kernel: [  141.837109][   T39] audit: type=1400 audit(2000000010.400:48699): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
[  141.867919][   T39] audit: type=1400 audit(2000000010.440:48702): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
May 18 03:33:30 syzkaller kern.notice kernel: [  141.845728][   T39] audit: type=1400 audit(2000000010.410:48700): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
[  141.882713][   T39] audit: type=1400 audit(2000000010.450:48703): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
May 18 03:33:30 syzkaller kern.notice kernel: [  141.854842][   T39] audit: type=1400 audit(2000000010.420:48701): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
[  141.896730][   T39] audit: type=1400 audit(2000000010.460:48704): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
May 18 03:33:30 syzkaller kern.notice kernel: [  141.867919][   T39] audit: type=1400 audit(2000000010.440:48702): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
May 18 03:33:30 syzkaller kern.notice kernel: [  141.882713][   T39] audit: type=1400 audit(2000000010.450:48703): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
May 18 03:33:30 syzkaller kern.notice kernel: [  141.896730][   T39] audit: type=1400 audit(2000000010.460:48704): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
[  141.923793][   T39] audit: type=1400 audit(2000000010.470:48705): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
[  141.929463][   T39] audit: type=1400 audit(2000000010.470:48706): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
May 18 03:33:30 [  141.937537][   T39] audit: type=1400 audit(2000000010.500:48707): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
syzkaller kern.n[  141.945368][   T39] audit: type=1400 audit(2000000010.500:48708): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
otice kernel: [  141.923793][   T39] audit: type=1400 audit(2000000010.470:48705): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
May 18 03:33:30 syzkaller kern.notice kernel: [  141.929463][   T39] audit: type=1400 audit(2000000010.470:48706): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
May 18 03:33:30 syzkaller kern.notice kernel: [  141.937537][   T39] audit: type=1400 audit(2000000010.500:48707): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
May 18 03:33:30 syzkaller kern.notice kernel: [  141.945368][   T39] audit: type=1400 audit(2000000010.500:48708): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass
[  142.911883][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:31 syzkaller kern.err kernel: [  142.911883][    C0] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:31 syzkaller daemon.err dhcpcd[10846]: ps_bpf_start_bpf: bpf_open: Invalid argument
May 18 03:33:31 syzkaller daemon.err dhcpcd[10846]: ps_root_recvmsg: Invalid argument
[  143.952092][    C3] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
May 18 03:33:32 syzkaller kern.err kernel: [  143.952092][    C3] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  144.033191][ T5950] Bluetooth: hci2: hardware error 0x00
[  144.035786][   T64] ------------[ cut here ]------------
[  144.037820][   T64] WARNING: CPU: 3 PID: 64 at kernel/workqueue.c:2257 __queue_work+0xc3a/0x1080
[  144.040115][   T64] Modules linked in:
[  144.041221][   T64] CPU: 3 UID: 0 PID: 64 Comm: kworker/3:1 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  144.045303][   T64] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.045324][   T64] Workqueue: events l2cap_chan_timeout
[  144.049541][   T64] RIP: 0010:__queue_work+0xc3a/0x1080
May 18 03:33:32 [  144.050978][   T64] Code: 07 83 c0 03 38 d0 7c 09 84 d2 74 05 e8 3f d1 99 00 8b 5b 2c 31 ff 83 e3 20 89 de e8 60 eb 36 00 85 db 75 60 e8 17 e9 36 00 90 <0f> 0b 90 e9 f9 f7 ff ff e8 09 e9 36 00 90 0f 0b 90 e9 7e f6 ff ff
syzkaller kern.e[  144.056255][   T64] RSP: 0018:ffffc90000b0fab8 EFLAGS: 00010093
rr kernel: [  14[  144.058176][   T64] RAX: 0000000000000000 RBX: ffff88801b0a0c00 RCX: ffffffff81599d2a
4.033191][ T5950[  144.060648][   T64] RDX: ffff88802037a440 RSI: ffffffff8157dc09 RDI: ffff88801b0a0c08
] Bluetooth: hci[  144.063043][   T64] RBP: ffff8880660d48e8 R08: 0000000000000005 R09: 0000000000000000
2: hardware erro[  144.065388][   T64] R10: 0000000000200000 R11: 0000000000000004 R12: ffff88804f726000
r 0x00[  144.067976][   T64] R13: 0000000000000008 R14: ffff8880660d48f0 R15: ffff88804f726000
[  144.070152][   T64] FS:  0000000000000000(0000) GS:ffff88806a900000(0000) knlGS:0000000000000000
[  144.072438][   T64] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  144.074078][   T64] CR2: 00007f7a0e2f2440 CR3: 000000002919e000 CR4: 0000000000352ef0

[  144.076158][   T64] DR0: 0000000000000000 DR1: 0000000000000097 DR2: 0000000000000000
[  144.078229][   T64] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  144.080246][   T64] Call Trace:
[  144.080253][   T64]  <TASK>
[  144.080259][   T64]  ? __warn+0xea/0x3c0
[  144.080271][   T64]  ? __queue_work+0xc3a/0x1080
[  144.080284][   T64]  ? report_bug+0x3c0/0x580
[  144.080299][   T64]  ? handle_bug+0x54/0xa0
May 18 03:33:32 [  144.086595][   T64]  ? exc_invalid_op+0x17/0x50
syzkaller kern.w[  144.088158][   T64]  ? asm_exc_invalid_op+0x1a/0x20
arn kernel: [  1[  144.089869][   T64]  ? kthread_data+0x4a/0xc0
44.035786][   T6[  144.091394][   T64]  ? __queue_work+0xc39/0x1080
4] ------------[[  144.093009][   T64]  ? __queue_work+0xc3a/0x1080
 cut here ]-----[  144.094631][   T64]  ? __queue_work+0xc39/0x1080
-------[  144.096293][   T64]  ? clear_pending_if_disabled+0xa9/0x210
[  144.097962][   T64]  ? __pfx_clear_pending_if_disabled+0x10/0x10
[  144.099605][   T64]  __queue_delayed_work+0x21b/0x2e0

[  144.103587][   T64]  queue_delayed_work_on+0x12a/0x150
[  144.103610][   T64]  l2cap_chan_del+0x5a0/0x8f0
[  144.103623][   T64]  l2cap_chan_close+0xff/0xa30
[  144.103635][   T64]  ? __pfx_l2cap_chan_close+0x10/0x10
[  144.103648][   T64]  ? rcu_is_watching+0x12/0xc0
[  144.103662][   T64]  ? trace_lock_acquire+0x14e/0x1f0
[  144.103680][   T64]  l2cap_chan_timeout+0x196/0x310
[  144.103692][   T64]  process_one_work+0x9c5/0x1ba0
[  144.103707][   T64]  ? __pfx_psi_avgs_work+0x10/0x10
[  144.103720][   T64]  ? __pfx_process_one_work+0x10/0x10
[  144.103730][   T64]  ? rcu_is_watching+0x12/0xc0
[  144.103746][   T64]  ? assign_work+0x1a0/0x250
[  144.103758][   T64]  worker_thread+0x6c8/0xf00
[  144.103772][   T64]  ? __kthread_parkme+0x148/0x220
[  144.103786][   T64]  ? __pfx_worker_thread+0x10/0x10
[  144.103797][   T64]  kthread+0x2c1/0x3a0
[  144.103808][   T64]  ? _raw_spin_unlock_irq+0x23/0x50
[  144.103819][   T64]  ? __pfx_kthread+0x10/0x10
[  144.103832][   T64]  ret_from_fork+0x45/0x80
[  144.103842][   T64]  ? __pfx_kthread+0x10/0x10
[  144.103855][   T64]  ret_from_fork_asm+0x1a/0x30
[  144.103875][   T64]  </TASK>
[  144.103880][   T64] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  144.103887][   T64] CPU: 3 UID: 0 PID: 64 Comm: kworker/3:1 Not tainted 6.12.0-syzkaller-11716-gd8b78066f4c9 #0
[  144.103900][   T64] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.103907][   T64] Workqueue: events l2cap_chan_timeout
[  144.103920][   T64] Call Trace:
[  144.103924][   T64]  <TASK>
[  144.103927][   T64]  dump_stack_lvl+0x3d/0x1f0
[  144.103941][   T64]  panic+0x71d/0x800
[  144.103955][   T64]  ? __pfx_panic+0x10/0x10
[  144.103969][   T64]  ? show_trace_log_lvl+0x29d/0x3d0
[  144.103984][   T64]  ? check_panic_on_warn+0x1f/0xb0
[  144.103994][   T64]  ? __queue_work+0xc3a/0x1080
[  144.104004][   T64]  check_panic_on_warn+0xab/0xb0
[  144.104014][   T64]  __warn+0xf6/0x3c0
[  144.104022][   T64]  ? __queue_work+0xc3a/0x1080
[  144.104034][   T64]  report_bug+0x3c0/0x580
[  144.104047][   T64]  handle_bug+0x54/0xa0
[  144.104060][   T64]  exc_invalid_op+0x17/0x50
[  144.104073][   T64]  asm_exc_invalid_op+0x1a/0x20
[  144.104086][   T64] RIP: 0010:__queue_work+0xc3a/0x1080
[  144.104097][   T64] Code: 07 83 c0 03 38 d0 7c 09 84 d2 74 05 e8 3f d1 99 00 8b 5b 2c 31 ff 83 e3 20 89 de e8 60 eb 36 00 85 db 75 60 e8 17 e9 36 00 90 <0f> 0b 90 e9 f9 f7 ff ff e8 09 e9 36 00 90 0f 0b 90 e9 7e f6 ff ff
[  144.104107][   T64] RSP: 0018:ffffc90000b0fab8 EFLAGS: 00010093
[  144.104114][   T64] RAX: 0000000000000000 RBX: ffff88801b0a0c00 RCX: ffffffff81599d2a
[  144.104121][   T64] RDX: ffff88802037a440 RSI: ffffffff8157dc09 RDI: ffff88801b0a0c08
[  144.104127][   T64] RBP: ffff8880660d48e8 R08: 0000000000000005 R09: 0000000000000000
[  144.104134][   T64] R10: 0000000000200000 R11: 0000000000000004 R12: ffff88804f726000
[  144.104140][   T64] R13: 0000000000000008 R14: ffff8880660d48f0 R15: ffff88804f726000
[  144.104149][   T64]  ? kthread_data+0x4a/0xc0
[  144.104162][   T64]  ? __queue_work+0xc39/0x1080
[  144.104174][   T64]  ? __queue_work+0xc39/0x1080
[  144.104185][   T64]  ? clear_pending_if_disabled+0xa9/0x210
[  144.104202][   T64]  ? __pfx_clear_pending_if_disabled+0x10/0x10
[  144.104217][   T64]  __queue_delayed_work+0x21b/0x2e0
[  144.104229][   T64]  queue_delayed_work_on+0x12a/0x150
[  144.104242][   T64]  l2cap_chan_del+0x5a0/0x8f0
[  144.104253][   T64]  l2cap_chan_close+0xff/0xa30
[  144.104264][   T64]  ? __pfx_l2cap_chan_close+0x10/0x10
[  144.104277][   T64]  ? rcu_is_watching+0x12/0xc0
[  144.104289][   T64]  ? trace_lock_acquire+0x14e/0x1f0
[  144.104305][   T64]  l2cap_chan_timeout+0x196/0x310
[  144.104318][   T64]  process_one_work+0x9c5/0x1ba0
[  144.104332][   T64]  ? __pfx_psi_avgs_work+0x10/0x10
[  144.104344][   T64]  ? __pfx_process_one_work+0x10/0x10
[  144.104354][   T64]  ? rcu_is_watching+0x12/0xc0
[  144.104369][   T64]  ? assign_work+0x1a0/0x250
[  144.104381][   T64]  worker_thread+0x6c8/0xf00
[  144.104394][   T64]  ? __kthread_parkme+0x148/0x220
[  144.104408][   T64]  ? __pfx_worker_thread+0x10/0x10
[  144.104418][   T64]  kthread+0x2c1/0x3a0
[  144.104429][   T64]  ? _raw_spin_unlock_irq+0x23/0x50
[  144.104439][   T64]  ? __pfx_kthread+0x10/0x10
[  144.104452][   T64]  ret_from_fork+0x45/0x80
[  144.104461][   T64]  ? __pfx_kthread+0x10/0x10
[  144.104473][   T64]  ret_from_fork_asm+0x1a/0x30
[  144.104492][   T64]  </TASK>
[  144.105101][   T64] Kernel Offset: disabled

VM DIAGNOSIS:
00:05:12  Registers:
info registers vcpu 0

CPU#0
RAX=00000000001ba711 RBX=0000000000000000 RCX=ffffffff8b299bf9 RDX=0000000000000000
RSI=ffffffff8b6ce000 RDI=ffffffff8bd1e580 RBP=fffffbfff1bd2f08 RSP=ffffffff8de07e20
R8 =0000000000000001 R9 =ffffed100d4c6fed R10=ffff88806a637f6b R11=0000000000000001
R12=0000000000000000 R13=ffffffff8de97840 R14=ffffffff905f6a90 R15=0000000000000000
RIP=ffffffff8b29afdf RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000561cce2ec600 CR3=000000000df7e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=000000000000cdb2 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffffe00 Opmask01=0000000000000000 Opmask02=0000000001e1f9ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000002d3a6f07 0000000000000002
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 402fea7f00000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc3f2af880 0000003000000010
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e6970726100656c 69666f7270000920
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000c0fe
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1600000000000000 00000000000002ff
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1600000000000000 00000000000002ff
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000056 1cd4a30000000056 1cce2cd630000072 656c6c616b7a7973
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6864203a73250070 6475646e65735f70 636864203a732500 73646e6f63657320
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4d41051f56000055 4150414b40565f55 464d41051f560000 56414b4a46405605
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000200000059 0000000000000000 00000000361c070c 6c5f226fb1080f9d
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000065676173 73656d5f70636864
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000060021 0000000000000000 000000009153a0a3 77576d5e70626827
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 725f247ba01fd079 72610fe77f6f777f 65676173f77fefff 7f7f6f7ff16b6fbf
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 0000726565666965
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 00006d5f65636864
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
info registers vcpu 1

CPU#1
RAX=0000000080000001 RBX=ffffc90005ea7bc8 RCX=0000000000000000 RDX=0000000000000002
RSI=ffffc90005ea7bb8 RDI=0000000000000001 RBP=ffffc90005ea0000 RSP=ffffc90005ea7768
R8 =ffffc90005ea780c R9 =ffffffff90fed67e R10=ffffc90005ea77d8 R11=000000000000e6ff
R12=ffffc90005ea7828 R13=ffffc90005ea77d8 R14=ffffc90005ea7bc8 R15=ffffc90005ea7bc0
RIP=ffffffff813e0d84 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000559108dca300 CR3=000000000df7e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000400000 Opmask01=00000000ffffffff Opmask02=00000000fff80000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd07eff250 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c5f5f0045544156 4952505f4342494c
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000042494c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6362696c5f5f0045 5441564952505f43
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f6e3a6d5e007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4b1f485e005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000145ac9 RBX=0000000000000002 RCX=ffffffff8b299bf9 RDX=0000000000000000
RSI=ffffffff8b6ce000 RDI=ffffffff8bd1e580 RBP=ffffed1003ad3000 RSP=ffffc90000197e08
R8 =0000000000000001 R9 =ffffed100d506fed R10=ffff88806a837f6b R11=0000000000000000
R12=0000000000000002 R13=ffff88801d698000 R14=ffffffff905f6a90 R15=0000000000000000
RIP=ffffffff8b29afdf RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000561cce2ed680 CR3=0000000032544000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f33fb310d00
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555721428e0 0000555572142120
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555721428e0 0000555572142120
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0d80040100000c08 06060137a8000200 070c808008000de0 030010000dd00300
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0102c00002000700 30656c69662f2e01 ffffffffffffffff 00080007000c0008
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0404014df6400200 07004350495401ff fffffffffffffff5 0803800305800402
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00070031656c6966 2f2e01ffffffffff ffffffef08018003 0100000008060380
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010e100000040401 4cec180400040e04 0c08000300100001 800404012b904002
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00070031656c6966 2f2e01ffffffffff ffffffef08018003 0100000008060380
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0404014df6400200 07004350495401ff fffffffffffffff5 0803800305800402
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0102c00002000700 30656c69662f2e01 ffffffffffffffff ef08058003001000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff85113de0 RDI=ffffffff9ab14ba0 RBP=ffffffff9ab14b60 RSP=ffffc90000b0f380
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000008
R12=0000000000000000 R13=0000000000000060 R14=fffffbfff35629c6 R15=dffffc0000000000
RIP=ffffffff85113e07 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f7a0e2f2440 CR3=000000002919e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000097 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002000000 Opmask01=00000000ffffffff Opmask02=00000000fff80000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd07eff250 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c5f5f0045544156 4952505f4342494c
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000042494c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6362696c5f5f0045 5441564952505f43
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f6e3a6d5e007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4b1f485e005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000