last executing test programs:

6.229038174s ago: executing program 3 (id=1991):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000001c0)=[@text64={0x40, 0x0}], 0x1, 0x4e, 0x0, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000000)="0f080fae04a200400f01c426660f3a15e6160fc76bdbf08666350f2170260fed9c000066b9230b00000f32", 0x2b}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
r3 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='task_newtask\x00', r3, 0x0, 0x9d7c}, 0x18) (async)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000840)=[@text64={0x40, &(0x7f00000007c0)="48b800000000008000000f23c00f21f835010003000f23f82e430f3248b80a000000000000000f23c00f21f835030007000f23f8470f005aad410f33400f01c966baf80cb812b90b8aef66bafc0c66ed3e0f09f23ef46f", 0x57}], 0x1, 0x41, &(0x7f0000000880)=[@efer={0x2, 0x800}, @efer={0x2, 0x4000}], 0x2)

6.100557516s ago: executing program 3 (id=1993):
syz_emit_ethernet(0x4a, &(0x7f00000002c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x4, 0x100}}}}}}}, 0x0) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x4, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x48) (async)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0x6)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x9) (async)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000140)=0x7f)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x2, 0xf, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfff, @void, @value}, 0x94)

6.049897819s ago: executing program 3 (id=1996):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000780)='devpts\x00', 0x0, 0x0)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
fcntl$setpipe(r0, 0x407, 0x100000)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r0, 0x5760, 0x0)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f0000000000)=0x5)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x2e10f404, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x8000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r3}, 0x0, 0x0, 0xf0ffff}, 0x20)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000bc0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="25000000faffffffffff0500000008000380", @ANYRES32=r5], 0x24}}, 0x0)
sendto(r1, 0x0, 0x0, 0x48050, 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x820061, &(0x7f0000000200)={[{@uid={'uid', 0x3d, 0xee00}}]})

6.049497385s ago: executing program 3 (id=1998):
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000000c0))
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
open(&(0x7f0000000100)='./file0\x00', 0x440, 0x0)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18, 0x0, 0x0, {0x3b9}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000000c0)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000005c0)=ANY=[@ANYBLOB="b900"], 0xb8)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000080), 0x1010412, &(0x7f0000000700)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_fscache}]}})
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x22)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000004, 0x13, r2, 0xbdd8e000)
writev(r3, &(0x7f0000000000)=[{&(0x7f00000006c0)='\t', 0x2000}], 0x1)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_writev(r4, &(0x7f0000000480)=[{&(0x7f0000000200)=""/145, 0x91}], 0x1, &(0x7f00000007c0)=[{&(0x7f00000004c0)=""/41, 0x29}], 0x1, 0x0)
capset(&(0x7f0000000080)={0x20080522, r4}, &(0x7f0000001080)={0x63bb, 0x200000, 0x255, 0x0, 0x7, 0x4})
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_syncookies\x00', 0x2, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000003c0)={0x0, 0xfffffffffffffffe, 0xa7, 0xc, @buffer={0x0, 0x2a, &(0x7f0000000040)=""/42}, &(0x7f0000000140)="686ca5391686717db9fceeef502bb701d894d19b87269f9455534eb17c608471a1505abf51fc136fca16858be8073e4c3a0fffb3816918aaac9a308f67695e4fa6b4327324b1f29d17dec7382842a96529f527540891379a8dbf0def583e9f96425e3b9ac0991b3e8182730d1a9fe767e586ae387b0ae6664a392ead48707d4cde43f879e8365ca6aadb067d2d2c253d7ecfcf15016aca706db95ab35d02798b8311e36f4e7799", &(0x7f00000002c0)=""/143, 0x44, 0x10006, 0x1, &(0x7f0000000380)})

5.980804s ago: executing program 3 (id=2000):
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000003c0)={'ip6_vti0\x00', 0x0})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff02000000000000000000000000000100000000000000003b000000000000000000000000000000860090780000000000000000000000000000ee3f000000002b036f8c006e75021d683910c3090b3188a7c747eb2278a273c1b80029442911892704"], 0xfdef)

5.739973175s ago: executing program 3 (id=2007):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="150000001000000002"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x6, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000000000000000850000007e00000018120000", @ANYRES32=r0, @ANYBLOB="002000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

5.707854503s ago: executing program 32 (id=2007):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="150000001000000002"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x6, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000000000000000850000007e00000018120000", @ANYRES32=r0, @ANYBLOB="002000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

3.079070764s ago: executing program 2 (id=2062):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"]) (async)
chdir(&(0x7f0000000100)='./file0\x00') (async)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async, rerun: 64)
r1 = socket$inet6(0xa, 0x1, 0x84) (rerun: 64)
setsockopt$inet6_int(r1, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4) (async)
sendto$inet6(r1, &(0x7f0000000440)='\x00', 0x1, 0x2404c885, &(0x7f00000000c0)={0xa, 0x3, 0x27b6a97, @private0={0xfc, 0x0, '\x00', 0x6}, 0x8083}, 0x1c) (async)
getsockopt$bt_hci(r1, 0x84, 0x6d, &(0x7f0000002280)=""/4086, &(0x7f0000000040)=0xff6) (async)
mount$9p_virtio(&(0x7f0000000040), &(0x7f00000001c0)='.\x00', &(0x7f0000000280), 0x4, &(0x7f0000000400)={'trans=virtio,', {[{@directio}, {@debug={'debug', 0x3d, 0xffffffffffffffff}}]}})
r2 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
read$FUSE(r2, &(0x7f0000003480)={0x2020}, 0x2020) (async, rerun: 64)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (rerun: 64)
ioctl$KVM_SET_PIT2(r3, 0xaea2, 0x0) (async, rerun: 32)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) (async, rerun: 32)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000380)={'#! ', './file0'}, 0xb)

3.030896021s ago: executing program 2 (id=2065):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
request_key(&(0x7f0000000540)='blacklist\x00', &(0x7f0000000500)={'syz', 0x2}, 0x0, 0x0)
r2 = gettid()
r3 = syz_open_procfs(r2, &(0x7f0000000040)='timerslack_ns\x00')
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x0, 0x0, 0x600}}, 0x30)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
dup3(r4, r5, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={0x30, r6, 0x1, 0xfffffffe, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x2}, @val={0x8}, @val={0xc, 0x99, {0x1, 0x1c}}}}}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0xc800)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000180)={{&(0x7f0000ffb000/0x3000)=nil, 0x3000}})
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)
bind$inet6(r0, &(0x7f0000000380)={0xa, 0x4e20, 0x17a7, @mcast2, 0x5}, 0x1c)

3.028781584s ago: executing program 2 (id=2066):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r2, 0x6, 0x1, &(0x7f0000000000)=0xd, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r1, 0x2000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
write$binfmt_aout(r1, 0x0, 0xffffffdb)
munlockall()
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

2.700956203s ago: executing program 2 (id=2071):
syz_open_procfs(0x0, &(0x7f0000000180)='limits\x00')
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x5a, 0xa, 0x2, "3258ae1e008faa00000000000000000000000000000100000000271e00000020", 0x48524742})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_pin_code_req={{0x16, 0x6}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}}}, 0x9)

2.700853112s ago: executing program 2 (id=2072):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000001000000010000000900010073797a300000000040000000030a01010000000000000000010000000900030073797a310000000014000480080002400000000008000140000000000900010073797a3000c109004c000000060a010400000000000000000100000024000480200001800700010072740000140002800800014000000009080002400000000308000b40000000000900010073797a300000"], 0xd4}, 0x1, 0x0, 0x0, 0x800}, 0x0)

2.630280454s ago: executing program 2 (id=2073):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000880)=ANY=[@ANYRES16=0x0], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000780)={0x84, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r1, 0x5b01, 0x0) (async)
r2 = socket$kcm(0x10, 0x2, 0x0) (async)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'bridge_slave_1\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="7c0000001000010400"/20, @ANYRES32=r5, @ANYBLOB="00000000000000005c001280110001006272696467655f736c61766500000000440005800500050000000000050020000100000005000800000000000600", @ANYRES8=r3], 0x7c}}, 0x0) (async)
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000680)={&(0x7f0000000540)=ANY=[@ANYBLOB="9feb010018000000000000008e0000008e0000000c0000000d000000000000110500000001000000050000000200000604000000100000000600000004000000fdffffff0000000000000001000000000000310003000000fdffff0f02000000100000000100000f0200000003000000ff0f000001000000273c000000000400000d000000000b000000040000000c00000000000000000000000200000003000000000000000000000030512e005f30005f3000"], &(0x7f0000000600)=""/122, 0xb4, 0x7a, 0x0, 0x7f, 0x10000, @value}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="18010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000001000080850000a97d06f909"], &(0x7f00000004c0)='GPL\x00', 0xb4d, 0x11, &(0x7f0000000500)=""/17, 0x40f00, 0x4, '\x00', r5, 0x0, r7, 0x8, &(0x7f00000006c0)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000700)={0x4, 0xe, 0x6, 0x47dc}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000740)=[{0x2, 0x5, 0x7, 0x2}], 0x10, 0x2, @void, @value}, 0x94) (async)
r8 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000340)=ANY=[@ANYBLOB="38000000031401002dbd70000000000009ec010073797a30000000000800410072786500190033006c6f00b10000000000000000000000000000020073797a320000000000004100727865000000330064756d6de4de00000000000000000000e9d9c4fe5f"], 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x0) (async)
r9 = socket$rxrpc(0x21, 0x2, 0xa)
sendfile(r2, r9, &(0x7f00000001c0)=0x81, 0x1ff) (async)
syz_emit_ethernet(0x2a, &(0x7f0000000080)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaaaa08060001080006040101aaaaaaaaaabbac1414bbaaaaaaaaaabbac1e0001"], 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r10 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r10, &(0x7f0000000440)={0x28, 0x0, 0x2710, @host}, 0x10)
listen(r10, 0x0) (async)
r11 = socket$vsock_stream(0x28, 0x1, 0x0)
syz_open_dev$video(&(0x7f0000000840), 0x6, 0x400) (async)
connect$vsock_stream(r11, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10) (async, rerun: 64)
r12 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) (rerun: 64)
close_range(r12, 0xffffffffffffffff, 0x0)
r13 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000240), 0xffffffffffffffff) (async, rerun: 64)
getsockopt$PNPIPE_IFINDEX(r2, 0x113, 0x2, &(0x7f0000000280), &(0x7f00000002c0)=0x4)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r13, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000a80)=ANY=[@ANYBLOB="c4000000d63aa851f138182e5ded9d1d372152cb28df80d99b726a10bdf13018c0e4f5ee2078d6290203a621ee6e4ea39eb6f7c239e1110666041d4db8042171b37f383024a95a0a4add0193b1d4bf97fafeb265441ccaf472f637c0f32f57b9fb3f5648e0ed80c8dd207f1120320ace319f40558b3b2e8f76a18e37048e529ad1", @ANYRES16=0x0, @ANYBLOB="000425bd7000fddbdf25010000000800020007000000080002000200000014000680d6ff05000700000005000500080000002c00068008000700", @ANYRES64=r9, @ANYBLOB='\x00\x00\a\x00', @ANYRES32=r5, @ANYRESHEX=r8], 0xc4}, 0x1, 0x0, 0x0, 0x24008800}, 0x44810)

1.540680742s ago: executing program 1 (id=2098):
r0 = userfaultfd(0x801)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x40)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x610})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
syz_io_uring_submit(r1, 0x0, 0x0)
ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f0000000140)={{&(0x7f0000564000/0x2000)=nil, 0x2000}})

1.090261862s ago: executing program 4 (id=2101):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = dup(r0)
ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000020000000a01"])
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000180)={&(0x7f0000000000), 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x4c, 0x2, 0x6, 0x3, 0x0, 0x0, {0x2, 0x0, 0x1}, [@IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x5}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x33b}, @IPSET_ATTR_BUCKETSIZE={0x5}]}, @IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x4044011)

1.04026339s ago: executing program 4 (id=2102):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000a40), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r1)
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_RESET={{0x2}, 0xde}}}, 0x7)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040), 0xc, &(0x7f00000001c0)={&(0x7f0000000500)={0x184, r2, 0x800, 0x70bd26, 0x25dfdbfe, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x4}, {0x6, 0x16, 0xa}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8}, {0x6, 0x16, 0x3}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x8e09}, {0x6, 0x16, 0x7ff}, {0x5, 0x12, 0x1}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8}, {0x6, 0x16, 0x9}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x10001}, {0x6, 0x16, 0x1ff}, {0x5, 0x12, 0x1}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x7fff}, {0x6, 0x16, 0x6}, {0x5, 0x12, 0x1}}]}, 0x184}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000fcdbdf25120000001800018014000200766574683000000000000000080000000800090000000000080007"], 0x3c}, 0x1, 0x0, 0x0, 0x400c000}, 0x2004c0a0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
r5 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, 0x0, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000980)=@ipv6_getaddr={0x20, 0x16, 0x1, 0x0, 0x0, {}, [@IFA_TARGET_NETNSID={0x8}]}, 0x20}}, 0x0)
ftruncate(r4, 0x6000000)
copy_file_range(r4, 0x0, r4, &(0x7f00000004c0)=0x100, 0x9, 0x0)

1.039836863s ago: executing program 4 (id=2103):
mount$nfs(0x0, &(0x7f0000000640)='.\x00', &(0x7f0000000680), 0x1a0860, &(0x7f00000000c0)=ANY=[@ANYBLOB="fa5e497bfe381543f3247200d6e81a6fecb45853b6089bebfcedb7cf951238979d2e9dda1d0a8ebba40b1ca91b171bf63d4917e5f795bc82a7273afb557dfad4c739ae853f823995ba0217ba4a0d388bbf27f3206d57dcb644faf53d43ad2c4d6db9552387828fe35834809e6d162fe80b30fff4a478186f52ff80677f55d88c245d43fa31bacafcde3c1bb4777c77b228319ca614e817e2c9fbc1c594b068b2fa"]) (async)
r0 = syz_open_dev$I2C(&(0x7f00000002c0), 0x0, 0x0)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000080)={0x1, 0x6, 0x1, &(0x7f0000000040)={0x1a, "9f09b4122a1bf53da14fa6e19a0d29000000000000002000"}})

964.287112ms ago: executing program 4 (id=2104):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="150000001000000002"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x6, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000000000000000850000007e00000018120000", @ANYRES32=r0, @ANYBLOB="000040000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

962.971804ms ago: executing program 4 (id=2105):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x80042, 0x0)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000001580), 0x40, 0x0)
ioctl$CDROM_MEDIA_CHANGED(r2, 0x5325, 0x3) (async, rerun: 64)
ioctl$PTP_PEROUT_REQUEST2(r1, 0x40383d0c, &(0x7f0000000100)={{0x9, 0x7f}, {0x9, 0x1003ff}, 0xfeffffff, 0x1}) (async, rerun: 64)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x5, &(0x7f0000000280)={&(0x7f0000000340)=@newtaction={0x9c, 0x30, 0x48b, 0x0, 0x0, {}, [{0x88, 0x1, [@m_ctinfo={0x30, 0x2, 0x0, 0x0, {{0xb}, {0x3a}, {0x4}, {0xc}, {0xc}}}, @m_nat={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{}, @multicast2, @remote}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x9c}}, 0x0)
ioctl$CDROM_LOCKDOOR(r2, 0x5329, 0x0)

877.65873ms ago: executing program 4 (id=2106):
syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x418000)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x48802, 0x0)
fadvise64(r0, 0x1, 0x3234, 0x4) (async)
r1 = syz_usb_connect$cdc_ncm(0x1, 0x6e, &(0x7f0000000040)=ANY=[], 0x0) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x10, &(0x7f0000000140)={0x9, &(0x7f00000000c0)=[{0x2, 0x1, 0x43, 0xfffffffa}, {0xcc, 0x3, 0xf, 0x3ff}, {0x7, 0x9, 0xff, 0x7}, {0x400, 0x98, 0x6, 0xba}, {0x7f, 0x4, 0x8, 0x401}, {0x0, 0x6, 0xd, 0x80000001}, {0x4, 0x1, 0xff, 0x10}, {0x3, 0x7, 0x6, 0xfffffff8}, {0x8, 0x6, 0x4, 0x400}]})
syz_open_dev$char_usb(0xc, 0xb4, 0x9) (async)
ioctl$VIDIOC_TRY_DECODER_CMD(0xffffffffffffffff, 0xc038563b, 0x0)
syz_usb_connect(0x2, 0x22d, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], &(0x7f00000005c0)={0xa, &(0x7f0000000300)={0xa, 0x6, 0x201, 0x7, 0x2d, 0xea, 0x40, 0x8}, 0x24, &(0x7f0000000380)={0x5, 0xf, 0x24, 0x2, [@wireless={0xb, 0x10, 0x1, 0x2, 0xc2, 0x7, 0x1, 0x3, 0xd}, @ssp_cap={0x14, 0x10, 0xa, 0x0, 0x2, 0x1d, 0xff0f, 0xd8, [0xc000, 0x0]}]}, 0x5, [{0x1d, &(0x7f00000003c0)=@string={0x1d, 0x3, "ea381aa2107eccb5f578ec1c0ee76710cc2ed043d2028f2b88dc25"}}, {0x89, &(0x7f0000000400)=@string={0x89, 0x3, "389aebe68369f8f201b224c6af4045221997f2e2012c1dfe0f05b3a85e114fdd0b47e2f102d8b6266b89f8bc56d5bae8e2a7c1eac0c07b1546d5e8d56213f6311e703fa3e1abfbec15c9da4c38d1b023dec3f94cbb7246d321c06d8531f681ebc5be4c6f57c5078384319d7c1afd0f2453d1d85d7d91d4dc22b64d090dde17bd394642c3b8c263"}}, {0x4, &(0x7f00000004c0)=@lang_id={0x4, 0x3, 0x43f}}, {0x73, &(0x7f0000000500)=@string={0x73, 0x3, "f7575e59c6402d93e6435630d8442c274dcb483bf320879821c5d0f442a1aa88e14657fee584c1905c3d161880ccc940290f69a97a5c24249d213cef6c010921ba2c5c72f946c0653566553563ffa2c03af530c4c6080989b603c6232a47e97d5bc770d236410dcbd4ed1224eacbb5e229"}}, {0x2d, &(0x7f0000000580)=@string={0x2d, 0x3, "f958d6bbb82d187b6868989c6888aa804e5d5501e1d79ec7c51ba559997bdf3c01f22a3d19b461c71abe01"}}]})
add_key(0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x3) (async)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000280)={0x3}, 0x10) (async)
sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f000000ae00)={0x24, 0x12, 0xa01, 0x0, 0x0, {0x80}, [@nested={0xe, 0xa4, 0x0, 0x1, [@generic="9f1a19c663957bba2228"]}]}, 0x24}}, 0x20)
ioctl$TIOCCONS(r2, 0x541d) (async)
syz_usb_disconnect(r1)
syz_usb_connect(0x2, 0x24, &(0x7f0000000340)={{0x12, 0x1, 0x40, 0x5b, 0x61, 0xb0, 0x8, 0x6f8, 0xe034, 0x14f, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x3, 0x4, 0x60, 0x2, [{{0x9, 0x4, 0xc1, 0xf5, 0x0, 0xcd, 0x84, 0x1d, 0x2}}]}}]}}, 0x0)

699.868756ms ago: executing program 1 (id=2108):
r0 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_i', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000002140)={0x2020, 0x0, <r2=>0x0}, 0x2048)
syz_fuse_handle_req(r1, &(0x7f00000042c0)="9ab1446569aa24b774753c9e994c09c24df9d42fa5a228e469b44cecf6f9f5ce5f77c93b1895aaac9cf34b37415f11fe22d6fa0162aa743b242e8fe0a8659e32fb543d7969d6513136a9f332a8074f8ee1e445277ddd5859eb5ac3321eb710be880a441031da9b31f791d54fb3c97cd8ee92b00cbf962be8eb5fd0b7cab207645f59cf87a8c41e2739dd8386b6bb84b627cbf5e09bac876ad4b215f0e510a853c5e8b9f7822b26771d72972290a1f9a6f0a46942be0d0eb7aa5145ff368863b14e9845926088f9f92d554e572926290dc6e6b574aea8c500fbe5697f881c0cec48282c6d07619248da0c3b9aa6f7c778525d1760051e4ba8ef31d3c8d3e1d4214ffa5261ce1fdbc12eba889968137f5c06fea233000296cf18df494b4e7b1bee7dc2f3751c37415d46f6d7ffb3d0f788f2100ee41266e6fba75b61af22e1d7b286507ff100cc34ed28d5a2c8be3231446874bbbde6f3c367ca802d64192ffcce1ea41b2cbc57f7500fc4f8f12fe02690c1c9785bbc35542b59d05600783cf4f4633b374101d8ed395303392b238d198f9f68c8ae928cbf3b558deec6d38ebaa526e749ac4e47dd5b838ec34f2820a1134252ae60159d4e030cf5e5d6f8de799a31e12ae57cfe5a1a3ded525c6e71271271d35a0056265362387a361f21ea0f4b6d46f6a83a8512687e43b31e11b1396d6e9e49cf42b693732e226b55d21a1203022f6be9f8ecccb68de3bf4ce99689514bd752f4e60bd2f8e376d7fae5b5fc8db0f53db8c52746671e361b9319419c1b3f3168b4797ebd2d118ee42dda4bc59dd0251236195c8cdafc0546354eeb28f4c7e71e8245a6ccaddfb858f61039c0ccf5acd924680aab38dd061fc7b123f24ac7f3d3c0cee43b61045bb1efea25af86088a0591f166e2f11ea4089860893b17ca5e3d99ec75131268e2e4e290c2bf15e4dde23284e4bdf6e549c096ce221d9c8a6c0fc78aa6a1c8b547c0e10738de2a1e8663e03ab0ce4594e244989f75b6672de1eee97ba7e6467a0da51c0e75d5866c405b03c4744d8d3fbb01eddba5a0361662269154c2f0e61a9433982eb904ff562896cbfa692eb1e6c644fcf6cbc103a76b712af706a47608d3e2f5d54d47d8e9906ab37ddf04004d32ce00200fc3c274666aeb618b27424d87b6a4b0262de4436b9e6f150bc798394c298b25a2c318fbe786185464057c0bcfcd1917230d78ee1a49eca12068fa676852c1099096c6cb98dfda27fedac41826516e42cc116f0cbb68f0f810418258dc5a65c0e1ada296176e17f8d762894c80542a79383cc1674a4f3d6520633ce80baba214c20628899f9ac826484c887713aed9c5caf13b40a598cb1e81f7b18dae39efc22dc99ff497e11f158edc2716ebe3bcd593691aa26523efc168e1394ab439c9a9270575ef34eeee9084b0a31b2d81d47c964ac61e600f75d9321d7474dde45bb8d0cc46510488ab68486d3ba6cc9c3ddb6f66f2e5d251ee285121e1645a2f5167fc5fb8ac4491c0d9d0423c7a8452efea2f5a30096a0fa47173f3a68500a5c755ea939c838d3be126a87ff6baa5a1fba638a5c64767d17f04201b935fcb1cb6afa175594f410f2ff773194c703e623876051e46bb0850a5016e65f8fa34b96bafdfe851a0756fe26fb63d52113c0935b0867f7dc8a94d887484b15e8f92b6a316a22c04a985cc94e432cd43f44001bcdbd48efcd463c402d3d181298e96db60fdb714b82e146567af5ae3fc0c3f9d241471b4d129f928d286f780facb1e84434610ab3379dfff0f64d57b4a1c2e96c98b693de952d26773d24e7a95eddbc450f79932d5332d27991c7bfbd3bc35bfeb9496fbebccb5e4c35c368e021dea643cb292d794d3d3bbcc960f989bef09763dc73d83cbf907485635265e81f87b712d958a66719230fc6466615a0e3bb998d48159e9e9c51959354a545966bcffa298c7673b4d32b991c886a997236642c0f104f6795feab9f48d0ffc74667f3f3e82473ac892ad25f4b13029b0b27fb1d86991ddc42bbc3fe584ed364e769f3bc72ed8749e7a654ec1a2ec7a01bd2d5caccdc6241a1b1ef2726db54d2c34ab47020b4c729b5994b43deb00ad959950e0051d2c0f27217397055e78f1dd3bd867a45e06c2134ae8981021aae881cc7b2049fe7c82d2127ec81d6430c8116355c8d0ab8b9291c688ed9b8dbb1ed6f1a99bb58a1be8d5737acbf9461b142c8982f52481195d35ef82aed4fa52385ea4ed00a739d01cad7af9f7c27d357748e24f28d22065ccb37300e8f5d8dae5ca79af7a50edc3e05184d1a2a6d59784d5ceeb1f1550a44ea03bee4dc5c27eb78f0032593c7d082e59211f83a8b91aa78bfb7e959328ee63af26a37b79ce5e5139eeebd12e28b2a26ad2fcbdca652524d036b324782d54247a48b9f8200b2d6d2c091c41366d677e3be6e136cec6c3080d608849135c6e3c7d695d2e226ae1ce999d730d7f79116ab85762e55a3e5a66a690ce0a4bb4fd1560c796e2797414b544ef78e29d55e4853fdbf3362085a65c46105f32c360a0a9867b984a5d0297fe0b06a45684ac801a8e66294cef6e5f3c48648884fbb2422fa00488df33a9a0ff1039c81f1939f2cd2f5fe8aa805af2d2332ac37244ed4a7b50265af8062752b0c16511e5f25e8aa2b60645675bc826557bb75474ca4787f6b584b2f83bc25192579104aa0baae79f396df0d31121f90db9acea9695ee0fe0c22df4db503ec8b2437b05f5d35a65722fa82eebd2aff4bcd3316a5cffc4b31913fd02f82130c77f320bf04bf8fa873d0e3f62122d6a5f87d3e908bedafed4a3cb6d9f73ff546f5a2b74a2493b1753e89b682352bb3166563518dcb190c7b3d9fd667c57978a670b192641a674dc92c2401d067b6767aa632ce32a401175c98200a52ab5d80dffa719746d0bff8a84bac4a56e0ab8124fc332b64ea662d01e1b73231a6638f01cf4d699448da228c16951149c8d3dab9a7e3be9a16c7d1ffb061818f8f9cb2b42739fae4a0d70c0701c8dceee785d36ef6413162de1917df01c693ef3e1f517e7fc46245209fee52f5c6a2f50ab3f56d67d1cd987282b24071d8ebb1bc5cd635957b2a7ad92d0650abd5bbc24b75885b6119592a3d715392718e52f9124c4ac95be3582abba4ac3a4049ee49fa8ceb9b59d4e1e2a069c9d482879fd8d27d5ac22ef870542453be22c2ec4ebf1472c19fbfb56aa0a3671297b020e3fe49d201a82a04420e90bda43691dacf92347bcbcae3742cc4abad4c8010c0afa15278795d4d76c482461ae78f30569e1dcf87b9b150d07a2bd81676ec6022422d490759ae1e861a6c4cd1f733bd772d60975a59356c385a4a390429f3d2131e7f616015261df6db3cc3ec261a53be10c4f197e71878984fee00e6d1069f79825194b7af434fb6bb86db18e11977f82928be35054543060cea94ebb4015d061f20f8454e056e7b6e4f9a1621ef2377d77659c20bf358c817519f1801be15ae3b5b42adfab367777a6789635a0dcdd1f2b97edecea0210768af67601d1b95a8850dddb6b1f4b0c2f52c835b0833d81966ad19e49ceb9dc9c729cd8334bc3ee5bb8c74186f5cc3e765b9fdd91d79baaab3d2ab64c15d655d1af7de9cf8d5d7c1baef24577843ce142331743b45b06104b6d0d4392e61ca8c07507ff5f831bbf720854db4debf64182aaebf899ba57626a48748fc2dcf016013d575595d24d383eef2da0ff0c9f6fe9c64b186cd4617e3f37635d7dacb58ec297f3ddb48ce4a5e00cc127267e18a1fdf209e098f2cb2e9c0630d15ec9b867b2b95ecf82ad2c0ba39df9c4d36d492bc9a55c4b767da966e4fd7f4d2fef5e91d0575177c05d240b50757031c76333d43bcc828ab2f0376e29d12d1261ce104a8ea488091326bc451c120c8c04d3e64835c893f55b312e248ad8fc1c32429d68e6b67bf45ab8a1cc3db22f9f01a2266b8349046d3d3e081eaa7f7020c73c0762d11a33b517b8f081da3c61ef63e1d40cd87d69c7ac7491fb61bb57c1fe2d218aff6d39b3e1fc847f0ed894e2f0b4d6a4ad03ba42e28bb1dfab645081f548e64ceb8ce15d2214bd66a14fe594aa447c3537eb493299fef0f9326236ea5dae44e23b34801fe06ee16c79545feaf2528421d6e7f9a256a7914d86bd053dc33c8c2043ba73714f5ff5f0507097a56c40b2190e77877d43be849ee2ac129e582930ced06d359eebb49eda4edb13819f91cecc449c9613d9659906179f8fefa34fecb7d21cdaf09a1ce8d094421da80796c97c02fc56171aaba53fd8a7f55de059044717df164f3571028f16995d51fc8829534cdf58dd134def1e43a34e4f5f372fa8e19d3b85881e99ecd45faa4fccfdb47e094ab06955f3960fac71294dd965f24a97cff36b9966cf1a4c3e96c3e14a3951dcc8a3e9371f7e1ae9df77ddb1a99172174adbee8ea57a0c9872a6d677c2875da88a6a7234bebf68a3cc0532a9809a4de4b4d419bff67b0ba825a7ae6e999087155378357ae67e2dd98697f1d10ffa4497dde6582571670456db995228b97d0ecb2fb30c2ba6c16038c40059815c56b35666cc1c5090f6c38e0f4c12abf79919951b85a2734d32dd12b239912d541f9163387a4aa0be0b7a12d9c6b56dbcf1e9aadcfd72e2664a84d6c5147c72bffe7c3560ccd8c447b748dcd26cc9ca2a85cded742a8dccdfd8e78c96e78d405a19faab9e57183b37583f94b3d416b2920c6b746427ed75c08dc3be02720c1edc4743229153c48f1239b222b9fe2e21c0ae28122bc44f9dc78a59f3485ac8057eb21f0857bcfea2d9ebbbcc197e7880d81515bb1cb7192d97c4258c09926d137e245977db40812b253f99a504bb68137d8d73ca4e7c808d50f1dcc600e6a6db90238ff44e075932fe668c066e6988a6a8b4a8485120c8e4d6511268a75d8f9b0f06689aac8cd621e90c62af1e59aa9efe928e9ea098661b408a2825c4f9aac1efd9d54d163a651054b9ab32719d2be3b176f6795ddad0f1310b9237181689f2f9dd34a41d4d4cd2d7569bf56e6a80bc24d90df3bdde0f9649e699f4ef70c4f3faf9553a231215416bba26c29f17861e0f265e9641b2307ed43d6fde23a378669f4ade874e54c20a5e902205dcaa79a3e8584a3f78a86e703451115a1717df882507c607297afac0a056a0f3509a57502fd2ffff6035d04b91f72f5e1a69ddafaf80f7b2f7a13f38c683988436585e6bc7fc2da328449675c234ec0acf5294ce06c72442beba15e65d6a3e1b5dc3c8f115e1005798383f79b0194f6b7d4b1b32371acbf22340af6e5ee3ea840f7ed451226daef3041fc194e051af2fb450022b394c774273b9575c974c324ecd7268435176ee28c54bb54c8e829232ca636f3bdef60ed460b5ff425936626dd16a3f436f08a863582a79f393378f60f6c8ecdd13d83073bfda2e9f8d0c74a841021cbb8c148e70bfc585627449cdd9fb3045db3ea08a96108b52ee8a4f5048a5d910355789f4bb85c1362955e267e719581c38a2648eaa0b516db6277d2ee3c6e1e1090df3f53a31b747d99887e337dadddab16a297d9e56797007a3d18ce333311c70bb1bf45bdae517ffc589419af643773bb30a1fbff7ecd4a8ae7456a608fe73547c2eda4f070d57dc70b65d867526c946a435ea581497da18646ce569eaf6ccf3474cd6e7aa3d6d4732836ff4167c9153757ce58a34864be6d479f7b4ea1d6480b9ac16c5bff346a74e74133234744df867e16b3d2f1f7db4b21b89019b520917ef863e60f52999d6946b9e09cb60054f49d8a255f02e4b62fff6e6adb9a167ea70a177d00b26f56e29b63138a2ebc30b956161a4ab25d5da1c207c3f762714f651341ae771e17d84fa1c86685f2fcb0a128c2e1208d1930e7ff0d8d55299154112af574b881be8b69cc1721d548ad4dc02632e184c47f9b394bf4a834e60fbead8c8bfbf5087f8454513b0b086ac97bbbb9aa342af9def758fe88f1e4570e65f93fd4a9868665d08fac0cf6ebde786995c433504ca01cdf83311aaae20cc76f819a4344a8ee4e26c1094cb00d2c8a67c733fffcd89e97534cacb08a64d75e8594fa31f0dcfcafb0d1bc184c7067fec6a48ddefd580d4d9a4128d8f70f6fc6562da683904766e982ecd0286064db6844131bb7962a0a497f7b97fefad88a0b128bdf8cca774b1c32cb4af259bfebccda036e7e4ea8962838dbb5c04ffab0a2f1481848a27f06171645daf5246a2e563f3ed60097a9d7023d6ba5c8a58d39f733b12baf0863d82c427460f51cf9e3f77281a42221725b7bb75c2116ab31f704661f090d3eeddd2aa6efc619946b4933c398b635fd04ba3758294965c568997e1ef44b0562804e6c64558f6cfa87662a988c321a856ead51c848528a4954f9ff1948d517d67bc11db66801648848bfb7ee12296428bc3ffec863e9c77ff31ee386197679adab2a0e93bbe0c66ffe9c4b09b636f6216faa373aa8271678cc57ad46898222df7e2d8b14a5b70130596c0430997c4c04d9b5187fd9bb26b71fd19aacc8e08a3239f0eebca7b2873062a19f327a4a282012ebf9898a5ab6310b8623c864d4dada3ded00ad201ce8f3973f90396f5edc1ba466e16247fe6b0ee98acfd53792cc0fea33647b841596655b8d9efbc14b50fe0b588e4c41e2cbd0a700529e7ca91122d3d1b26e52bf44a0c9fe37cdbc352357f13b2adc68e78a00f6dc88a8e6ea54bd0b2c8276f9e1bfebc8655a1f47b72c25ffa97f4463630cc21428ca3bb381a6d3171d28bb946f746f820247bf3f7bb69caaeb5c47026ca9997e586e657a9e1569312bb443299ef4cfeacc9aaf4fc3aaa4a77a21579234d2aab6fd0234398ae07ca7c57ac6d6a51e025744b1430abce27f7f9b0d0e45c051e34d20db95cadcc0e4e327dbd979166b33e39a3951d0b8dd62c0d1542b69583cfc07b127243cac4b052cb29ccb3592972698fa4cd84633d222d78b8741d5f903f8636d95cddfe2ef13829df9ce32705edfda51ded2f0ef38f60a33a2e00373107eef56a01acb5e05d849279b5987343c8bbc73ea660ceaf7c9b90c0a8e1412ff3f517cef8fe604d7a26e085170a76e1bf43f5d1bb77ee771fe841d59fe2cc2874d25bf991b4af6bf9ffe1bfbf3a5587006b60bab5bdfd5a3192e82d474ecab0ab656967856c84cba9469c5823c1d1bf104d2a21c071bb08b2a137883dd9c8f545d6958db8efa45263ae303de76e70f2f6a10e1858e6654004f2a099dc31950ee730c465e0a1822935e309d41650fba489aa3050eedbf3f058d24d1f04fc340966e42d72052d84a66789ccf75000c3fc83b8842badd6b22ddaaaf53ed34e25c1b638e3630d66a7903405052902cf8e7395d54679e2f4a2bf7c8c89b0dc38969376ea164fe97b37b1172e6e8f05a929aa373108e891a64e38e18b432a115a44d754811e03c4f4ae7c525a6b9b92aab0d16967ee1a64eeeb2207c094f6aa96f126d058eff22435a4ae76c31f888ee13b327d2cab4ab5a56abf4cae88c583dd67129271708aa17f4f10886ead0e12734314bd4a49e64349beba4abdf94a1fb23a72cf7e16b5af2f1706d9646a5ff7dbf5c7b1cb2c3781346167b15d4625841d9f3d14392db1d39101d37175c42c522229db0708544058d75cebf3e399cd443d1b943c6f3017a898bd49836a8d92519deb810712aed76602682ef0df2be270734eeda7f289a76f4684baf75702a1ac3da005e62b83f794b934cf882db5d50e5ed4aca868e300d690c0b10daf0a47486e9f49d1b08eac6cf5090ddd2443b1459b2df86ab3447b2b5c6afe8aadb410de6a84b640e326eb882832d1a9cb12e0b8f13aef579f404af8631cdd5a30a031dad19cdf247575dd223229330f19fe4d88c51242217397acf66b86c743de283d5df7212fce59af17eb702eccab192f56f054a33709d41841e4a39638e02b4210559593f9b5c44fd22d9da637ef1a3a0a41c40469990dc4beec30a05b67931c0560d9a59fa875f3e26fd1eb32655aa30c7a1cd3d541716fdaacdda206328f3cbc8f16fc2be26690f18963a16febbaf2cb6c199330579ca067c60b54cbdd211c1350e066448fb50ae28ed58788ac98f0ded3414c8735ab90639916e26ab29102cc2609035e56d9b9d2dbc98118835bcf0e437c77052efe2293d9f19b7197aa1b94b10997b0b1efdef251de8945a97fec885f032c3bee2447335230b866d7aef515b04664d0c59e18233f9a229969e3e17d69716413ca3bc55f5959e340627ea803f7b26f4a74295b295344a3685287093998a1ce75b1ed5d730c9aec812617b4c200a0250c9ef8ef7d2fcfc59ef97422eca746bc6451a5b77307d14c1cfa0ea2c8eb7cf7819644577a6456efec0af058a0e3c8ec371019009462bfe174a11368b57fbe3090208a57b2236b97edc32cda5c6fc988cbaaf91c4020a06a7ad45519eaa761e045fc84d3219b287206282347a031ef1e7b7dbc67de738fa8f9fe71c44201fd1d548f8aebe93bf502d64d4b5f470a419e3fcd87f0616b9813048311ed20ac2efd7f18dcd6889542208b50c28c8c0700f73fa33a964e38d699819cab2098c6ff081266721cdced87ff41948c84037485f30d38a99eeeb3ff4c3049742a29eb09bb35c358e732546267c165a62fee9e25abdafdb8a48785bd432d160797e7a41d580f59d7d8e59b3e6b954d39f86db33b8f7cabde43e8e04cac1fcf9aa6fdbe4326e0d9c782d9a630055b36f85c2b8efebf18f42ef14ee5eb1d33ca322db69704f8bb90bf30eb05908b8d8ed169580923f53a6539cc3b55baa47718053d2ff103c23d90f9cb49ddc7d759950f605bafabcb7953c042c0523b84da994529a87ad68fc6f0709fd7af5fc20e53a17d3f5fd4d25fc5ff6598c6ddfc34668a08ee5e066d81a65e7979c50c08febf76dc5a3a405f551bb8449d94ea0dfdad6dd6dd6d6e4486f4ae1d2523c05f46198d8af4da12873ebdf7d6b5f2d0f1b2d29759ab0d78e34ae6f17b7ab83518cf8b18836ea5630ee934e5ecc123f0d3fe6b803ae1f735d65dcadcaaf6660e02ecad0290f6ead0594733a10b2b1654a44244424fa8b3180b551ac401828203e61603b017106e2256f01b9f26db33897167d9defb54ddfe49334150574493895370bad46cc658667aa9a8ed333c86f112b2a542936af92e2f933254b6fb0b1a599eec3bf2e476ae6714e2486dd31b29e4d26838d84bd7a62c62beab3ba71642278ecaf2e50d70670d9fdff105019791d36321bc57fdfd8f65f2ea1cb188035ecabf6140e777b7e6d2177ac29e9a1a2f87dd54d96184bb1a855bd9efdadfc606f13621f40e07cd8be9c2435c8c90b4ccba5eb7ddcf8cf1f76617c9a9e011abf4a63ffe31df63ecacb8b1d2d653e613cb399ce079392f9ca2e226c60b6e8103447c24c1f80d42e1ee747997602ae3ccff8f9f98ce9b56f6f3e3c0ba507df8b2169539cfc946c42da72644feb9b3b582ce332f8b2eda02192958194903d17b3e9b4bd60d08cd9a7989d946ece6d8dc01d6b66a7851bb11e4b075d38081d3ce7bf1875fec9daf47a589abdb72763c9747b83a28389238b0279c8e41db6521130420851acac463664a97be2190aff921923475f2c1f8a87d1169229e5f10dd0a92221e61358b156020f2c9ca2cb6580743a8d5e3c59e6fd97a7a246211450c7c62f1891cedb434102f8794d81c1caf2c1b4ae18b7c4b9c88de5c51da33e3343cef76da0d00341c2e60c4562c162e41a7efa8290cc9061f3d6a592d5f104c5018f31bcaf912bdd37370fbf8fedf0aa9026c1142299197d67ab026756927b5864ea42c45a82c23c275697d31a1b7900670c9a3c967d12974543c11f20c367a336bea9b9ebe480f9c806528138dff35c5f56b1199b75748e9c5cf50e6a32397dc3eeb04c3636c0848a5e13df8a9758bacea231f34cba13b466360b0dec69f74f8bf9a2dcf3dd94fa3a7d27e8caae00240559d75875ef9c619416593ca0072e7f38caae5a530c62dbe00e38c12cb8b924d63fca4d5c3a4c8f50e8f4f86fc1fe2b163219c46c21eb783e587e18e07ab7e1927a646c4f154c5000cb65ce9528457c3c66f43d9ab7d61580df0ecfb31cb38e4cbcdc3dafcca57311abec6b74048c8b74505ba678a4db07ed7243c70a821aee66a487bf91fd273418f8ef657d1eeb9ea6f095d47641e9f9fa30599e8b9c6b4453a1a5e8afd86fcafb46dd095fa4a98a2b26470e2c799b08c6000f5c3c4e28961463724377f37813f3922484fda986eb7c93ae8365baf648acbb344ca7e044d7ba93e7ba35c31085f3f99c5fdb2f9f2845f00b8590395e8ff730b86f5dd7f52297b8ecd5d5a6bb452bcd12b98d6adb27e7ef0e84b9567c66093ca3edab7e64ac4f56360501d81823ea2b1595f934c5f61c8558304c16154109a983a2af8725c7af91b5bc57e555768aa8115236a6ccc921d472b608eb6b82c4ba3747d79027d7856fae5369aa325df6a76138a5b41a94377eeeb251087e0b8510d8890e3f7a0cffaeddb9d2c29bc89f952489f82ee2e2b485cd297e6d30683701623cf73ee9ee606baeae9c3afba287eff57731b9cfaf034b1f56c8b31a32a1078c4fcab298c3f925a8e7cacceb9edf7ba2e54d31033a25462021e4a3c0bf5af341b462ee4417024da7c12c7f385de3af129aef1338a9c1fd68323d07ff47ec8bcca66b44300624d02c9202a2d093c3c85fd922b57b3bd14162c8ca5690734b7e4e4b8980b73a8e9908a9fa3dd508b30e3b1e1fd4ec388affa27c4bc26ca2820e0a902d51ff94984e8894fa5fca7b8704b7600ca6d6b1b1527ea999fcdf8fe3b290ec0036cad222f92cf8a5a54d0fa91de6e74ef61f60a233c9f15fdc86226c3f688de15ed8f0c3f1bc3afcad87cee47a19384afc6a804f197339ebce4aca211dbe0504a000755d18f20c4ecacd4123acdff7653cbb26456499495662508c8186afb883f5481c6bdf88cf137e263bde9d62f054573e0d1454cc119c95d4d9011332bd77682f79debcf5c21f0be7e9a83a58cec34e7cfb17a8122e030669228e4d3d9e274a678c5b77e6180aacc2fa8eb9952c5b04de6b2c7bee591badab96a3c3248c275b5b8faf5394eacc427a840570033be5006c33ce2d2c6e54f08681c3f74ad2fe54bca6dc62a9d84f6c58509c1e5dd5cfcc7a358493d428de48dfc1bc3f74154801c97e6aae38445045320b4cf66c1e56eb6ea2c1218de65f120b463c5cfb9255b3a25eb6e848cbd977f0605d71c561c2a754f5761c31f84101ee8178782cc8cf70b41a2204c5cb2f3134d572327fe4bbc1792249dfcf0ae7ba5d81fb5ae4a7978d044085f3b7f2e398c05733e2bf456cae898f8b5a81e9c79179bb5ca716713fce643dabe21eaee4386e646e25ad3adc5a4ad40f9bd6743f5f742efb1a674ffdbd2ced56c646ae590eb8f10283b47f57e6f96ad76adebecb24df74020b096fdee3c8d780d563a915f73c8b0246b861cd3a8580d5cf75798e8cf1c5875724661a39277e7165fe48ed8d5e6a20d68239f626fe8ea434a4e6e03ea434ec68c4b92a0fc2af15a135d6cbaeeca39a0c1896dab33daac", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
close(0x3)
write$FUSE_INIT(r1, &(0x7f0000004200)={0x50, 0x0, r2}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x3, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x10b}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = open(&(0x7f00000001c0)='./file0/file0\x00', 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x8802, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r3}})
read(r0, 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$setpipe(r4, 0x407, 0x100000)

699.41168ms ago: executing program 1 (id=2109):
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000003c0)={'ip6_vti0\x00', 0x0})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff02000000000000000000000000000100000000000000000000000000002b000000000000000000860090780000000000000000000000000000ee3f000000002b036f8c006e75021d683910c3090b3188a7c747eb2278a273c1b80029442911892704"], 0xfdef)

560.013107ms ago: executing program 1 (id=2112):
pipe2(&(0x7f0000000000)={0x0, <r0=>0x0}, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000140), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000040)={0x1, @pix={0x7, 0x8, 0x34325241, 0x0, 0x0, 0x0, 0xc, 0x5, 0x1, 0x8, 0x0, 0x3}})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
vmsplice(r3, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r3, 0x0, 0x10000008ebc, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r0, 0xc0305710, &(0x7f0000000340)={0x1, 0x9, 0x1})
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000240)={0x0, <r7=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r7)
getgroups(0x2, &(0x7f0000000380)=[0xffffffffffffffff, <r8=>0xee01])
write$P9_RGETATTR(r0, &(0x7f00000003c0)={0xa0, 0x19, 0x2, {0x0, {0x8, 0x4, 0x1}, 0x3c, r7, r8, 0x7f, 0x1, 0x5, 0x0, 0xf, 0x0, 0x2, 0x1, 0xd, 0xffffffffffffffff, 0x7, 0xc8e, 0x8, 0x7, 0x2baf}}, 0xa0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'bridge_slave_0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)=@newtclass={0x74, 0x28, 0x0, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, r9, {0x4, 0xfff3}, {0x8, 0xe}, {0x1, 0x2}}, [@tclass_kind_options=@c_cake={0x9}, @TCA_RATE={0x6, 0x5, {0x0, 0xb}}, @TCA_RATE={0x6, 0x5, {0xf, 0x3}}, @tclass_kind_options=@c_hfsc={{0x9}, {0x14, 0x2, [@TCA_HFSC_FSC={0x10, 0x2, {0x5c, 0x4, 0x2}}]}}, @tclass_kind_options=@c_ingress={0xc}, @tclass_kind_options=@c_mq={0x7}]}, 0x74}, 0x1, 0x0, 0x0, 0x24000040}, 0x2000c080)
splice(r2, 0x0, r5, 0x0, 0x25a5, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

499.572217ms ago: executing program 1 (id=2116):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f00000000c0)={0x9}, 0x10)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000003240)=@gettaction={0x24, 0x5a, 0x1, 0x70bd2c, 0x1, {}, [@action_gd=@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x18, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x686b}}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x805}, 0x200004c0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x91}, 0x0)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x28, 0x4, 0x6, 0x300, 0x0, 0x0, {0x5, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x480c4}, 0x4)
socket$inet6(0xa, 0x800, 0x7)

440.166671ms ago: executing program 1 (id=2119):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x17)
socket$rds(0x15, 0x5, 0x0)
openat$fb1(0xffffffffffffff9c, &(0x7f00000002c0), 0x2000, 0x0)
bpf$BPF_MAP_FREEZE(0x16, &(0x7f0000000040)=r1, 0x4)
r2 = add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000580)='X', 0x1, 0xfffffffffffffffe)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="b80000001900674c0000000000000000ac141400000000000000000000000000ff01000000000000000000000000000100000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000023000000000000000000000000000000000000000000110000000000000000000000000000000000000000000000000d009a7bf52631a813792285a9a98532a600000000000000000000000000000000000000000076000000000000000000000000000000000000000100000000000000f78a2872f3abf3f74af1ba484de029e5a06a6e5bd43dbf23bd34ddc7cdf623cdbec2b6f461ec9862280a6ca89ab098542175a878c159d147f849a811889731aff2f48b29343aab11ee4d29146f34a81770a5de2f"], 0xb8}}, 0x0)
r3 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000080)={r2, r3, r3}, 0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)={'sha1-generic\x00'}})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f0000000080)=ANY=[@ANYRES64=r0, @ANYRES32=r1, @ANYRES64=r0], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x1a2281)
ioctl$USBDEVFS_CLAIM_PORT(r5, 0x80045518, &(0x7f0000000000)=0x1)
close(r5)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="200000007c00e97800000000ffdbdb250a0000000000000008000500", @ANYRES32=r6, @ANYBLOB], 0x20}}, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
io_submit(0x0, 0x1, &(0x7f0000000200)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
r7 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_G_FMT(r7, 0xc0285629, &(0x7f0000000080)={0x3, @win={{0x2}, 0x9, 0x0, &(0x7f0000000040), 0x0, 0x0}})
r8 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1290015000600142603600e120900040044000000a80016000a0003400200000000000000b94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162f7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d3220a7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000ac81001800090400000000000000000a00000000000000000000001400020000000000000000000000ffffe0000002080010000900"], 0x38}}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x20, 0x10, 0x800, 0x0, 0x0, {0x0, 0x0, 0x0, r6, 0x192, 0x10780}}, 0x20}}, 0x0)
r10 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000ac0), 0x81, 0x0)
ioctl$SNDCTL_TMR_STOP(r10, 0x5403)
socket$netlink(0x10, 0x3, 0x2)

279.877803ms ago: executing program 0 (id=2123):
mkdir(&(0x7f0000000000)='./file1\x00', 0x0)
pipe(&(0x7f00000000c0))
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x2, &(0x7f0000000400))
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000003480)={0x2020}, 0x2020)

210.355924ms ago: executing program 0 (id=2124):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000340)={0x1d, r1, 0x0, {0x1, 0x0, 0x6}, 0x1}, 0x18)
r2 = io_uring_setup(0x7a08, &(0x7f0000000100)={0x0, 0x3, 0x2, 0x2, 0xf})
close_range(r2, 0xffffffffffffffff, 0x0)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)="81b641f1f3843704b6", 0x9}], 0x1}, 0x48005)
close(r0)

209.175292ms ago: executing program 0 (id=2125):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="000000000000000002"], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b08035842b75ec422346f9696f4bb3226b0ca75d135ebd8cae46fb83b71c103e1fdcb1934fd1d28b4916abe2c44e26ea72be426c27052e816212096000155788943b846746ccb492175fc9e01", 0xf4}, {&(0x7f00000003c0)="5453b4b759f9d4f4f33bda880b70e0dadde06223919f4585429ef69078a4956f646ea03bfd4c090a003c01f32b1a175baf38c1eb4572c8b372a4cf9128062e58ff575546876a2804144c3aea98c4a3533396f87e860de8c66bceb0e6b387ec853b7e91c57587d38436637e702ae18eeccefdcd7a3cdd7bfc327b5d619b57d56afe1628b65e2948af5ee0e3f52746a5aff58bb7c6d253a58bf745584d1bc19fe5e42b5534eab9e9d2587b413e81f68b60f56130f82b327f5fe900e3e107bc6b783d1d23a056426d6502133386b51e657046c1c43a2a2c4a7611ee6592a5ee08700d24d832163b3def1f", 0xe9}, {&(0x7f0000000640)="d48c8225ddfdf2c06c27763617468581389d34126760ba3dd0fe077a7c2ce378dd62cafeeb4ba1493766d09fd561d69a5bf8109ffcd3e43d8c16b9c3fa92d4439c5af1fa4775d01dcf0748a24ab51b52fbe75287a4b9aaa18fd479bdd154b4efe531a242d90a1ca2799c242bfd4ddd8271448d3415bd3a907ad340dc2fa2471393212d02eb25242808cffdc4e7a646211c18ac8602f5fc1e4f82b72871a8d42f37988365ff226c1523bf01617976641421438e16378094c94f2e55a44150d9a358d92606afb12f21a63daadbb143d6ccdae88d53521b9fe51ffabb08ff67cb98266e", 0xe2}, {&(0x7f0000000040)="f96be6c391f1f8b23ae44a70a75f4a5ed0e013f80882907ab089ee65d16a6c6f5c666dad31257fb48b66d9", 0x2b}, {&(0x7f0000000740)="f52ec22aafecc37a6d9995f1afb5c1727f223f9b84451a110b1dfbf19cc7ed183ba93f6d55645001887fc999262b9c938e22ef5ec46b4b1b535060dcca5cff1f0e5a1d9b32cef2b6e0a61af7968dc1759c4d901867d7d6e9f2521f6a1578e1cc2fbf58837a2633c0b8299192718c61227412dafd01e899723b33735bbec3e1429117362acc4139fc3565f183bd5568f47f4bc416adb360fdd9c497c2ad2ffe1ad738f4c073f1378d2b455e61844076a4a97ac1e13e2fb300ae69d55c501f96dcc39bf7ed835cc866f0fbd8e936e8374a484f111919dc610e0a36a0ee3df2ab1dc34cea42a4292e2fbaa8", 0xea}, {&(0x7f0000000200)="057322e18609ed78266492c2a2ae3f0c0f3f6394c53de2727898d209dcb274efec9fc9995189ead7bf00148d091675fa045479985e4f644d258d0aa4a69618eb08ba045907a549ed83b88863c73d859acf1d16d599c71547d018aba5064338", 0x5f}], 0x6}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="acc870bde54caaeacb0000108cef4fa7bf44702b284b2e80cb32d33a86853c8c28797cd14c72c87f849f6ccbf3198d11a0b1ef000000000200000088e0e022b04dbd50d36f3c028c27ba0000000000000000000000000033", 0x58}, {0x0}, {&(0x7f0000000e80)="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", 0x1d9}], 0x3}}], 0x2, 0xc0)
sendmsg$NL80211_CMD_STOP_NAN(r0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000980)={0x14, 0x0, 0x100, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8044}, 0x50)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)='\x00', 0x1, 0x20040010, 0x0, 0x0)

149.539142ms ago: executing program 0 (id=2126):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x1e, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}], 0x1001a) (async)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
write$sndseq(r1, &(0x7f0000000080)=[{0x1e, 0x0, 0x8, 0xfd, @time={0x9, 0x4}, {}, {}, @result}], 0x1c) (async)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000500)=@newsa={0x184, 0x10, 0x713, 0x0, 0x0, {{@in=@remote, @in6=@remote}, {@in=@multicast2, 0x0, 0x32}, @in=@rand_addr=0x64010102, {0x0, 0x7f}, {}, {0x0, 0x4}, 0x0, 0x0, 0x2, 0x1}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @algo_aead={0x4c, 0x12, {{'aegis128-generic\x00'}, 0x0, 0x180}}]}, 0x184}, 0x1, 0x0, 0x0, 0x4001}, 0x1000c080)

149.364021ms ago: executing program 0 (id=2127):
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, 0x0, 0x4050)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000026c0)={0x0, 0x0, &(0x7f0000002680)={&(0x7f0000002640)={0x14, 0x38, 0x1, 0x70bd2b, 0x25dfdbff, {0x11}}, 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0x0) (async)
socket$inet6(0xa, 0x3, 0x8000000003c)
r1 = socket$inet6(0xa, 0x3, 0x5) (async)
r2 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000008240), 0x1, 0x0)
write$binfmt_register(r2, &(0x7f0000008280)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x38, 0x3a, 'system_u:object_r:dlm_control_device_t:s0', 0x3a, 'system_u:object_r:dlm_control_device_t:s0', 0x3a, './file0'}, 0x79) (async)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x528, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x588)
syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50) (async)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000440)={&(0x7f0000800000/0x800000)=nil, &(0x7f000051f000/0x4000)=nil, 0x800000, 0x1, 0xfe}) (async)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0) (async)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADDDEST(r3, 0x0, 0x487, 0x0, 0x0)

0s ago: executing program 0 (id=2128):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x4, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @ioapic={0xf000, 0x100, 0x1ff, 0x6, 0x0, [{0x4, 0xbd, 0x5, '\x00', 0x81}, {0x3, 0x71, 0x5, '\x00', 0xc7}, {0x95, 0xc4, 0x6, '\x00', 0x68}, {0x9, 0xf9, 0x4, '\x00', 0x72}, {0x9, 0xfc, 0x10, '\x00', 0x81}, {0xd, 0x8, 0x3, '\x00', 0x8}, {0x9, 0x20, 0x10, '\x00', 0xed}, {0x0, 0x4, 0x5, '\x00', 0xa1}, {0x3, 0x2, 0x7, '\x00', 0x8}, {0x8, 0xe1, 0x7f, '\x00', 0x8}, {0x1, 0xff, 0x2, '\x00', 0x2}, {0xfa, 0x6, 0x10, '\x00', 0xca}, {0x6, 0xe, 0xc, '\x00', 0x7}, {0x3, 0x5, 0x1, '\x00', 0xf2}, {0x7, 0x7, 0xfa, '\x00', 0x9}, {0xff, 0x8, 0x5, '\x00', 0x8c}, {0x80, 0x9, 0x2, '\x00', 0x8}, {0x6, 0x7, 0x8, '\x00', 0x1}, {0x8, 0x3, 0x9, '\x00', 0x7}, {0x5, 0xd, 0xa2, '\x00', 0x3}, {0x1, 0x0, 0x8, '\x00', 0x2}, {0x2, 0x0, 0x7, '\x00', 0xd}, {0x10, 0xf7, 0x8, '\x00', 0x7f}, {0x5, 0x80, 0x8d, '\x00', 0x8}]}})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x7, 0x0, 0x17e, 0x4, 0x10, 0xf1, 0x0, 0x7fffffffffffe, 0x5, 0x0, 0x9, 0x0, 0x5, 0x0, 0xbdb], 0x1, 0x3c4210})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffb, @void, @value}, 0x94)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f00000001c0), 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x1f, &(0x7f0000000040)=0x1, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='br_fdb_add\x00', r3}, 0x18)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040), 0x6)
ioctl$sock_bt_hci(r5, 0x400448e6, &(0x7f0000000500)="d7")
mkdir(&(0x7f00000020c0)='./file0\x00', 0x82)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r6, &(0x7f00000041c0)={0x2020, 0x0, <r7=>0x0}, 0x2020)
syz_fuse_handle_req(r6, &(0x7f0000006280)="897c6500ff3035465c7acb4e06980b05687c1480c7aafe631c0543db2bf0d6f539506e8782da06c1ca018774d72e9e5a3418ab66ee78dad68457b17ec9d47bf7d8272d607c1c0a4bd906f0cee7f8451828d2458596bdd6a459ba18ebaf61b38f5d66c27fa8a024ad7832a85e58689a4c254c94cbcf7208fce6e61d9566459789d15a6f91dd7db7c54cc3a94da956fb290a8a15f849270bc459d9d9f47801be86dd5c9d18382081a993b7bfde5c28adca4c71329afd6be743b076033b5859891703eb65fa256d6f47450b6edacbd05a9bd8b372e90cfc30f32826566dac6c48e6ef001881cbc30482f9ec469e476a101da496b8c0785eaf875d3608b0c49e9d39baaa1041f903a805f0f24aa63722fa2d87b98595fa5cfaf8b79c458de43ee39904e7cac7540a934b4108957785d58807abff186949f1b94cd21b724aff34ac45c7066dcdbd68ea7b766af9d045cd7fafeafc5c5a0c3400ef4e0c71a6fdd5b8d68a6f317644cda9d2fd2c839a82b97b3d909b54c672227bef573c9de1991d65a63017f724d1f7f1575e69db53318a7fd7065b303e751518c8eef04f642dbd4dfa349040a7b5401050ffc2b4ef62803a7c8eaba99e011dfac24d81b2b61e0b0581e53bf520f623eca17f0545c5e59ff15b527475f970f589894ae589145fa4283f7225088ccfeba1d72e9128f8c223ae1840f2edae3dbcdf7e560d5cdf4f71c9ada1931c0f8312c000101b264aaddb9fab166ba8d8903d6098eca20935ca607ea79e936798b3dfb22a7e159abb234cf21f3733dbf263a8ff116092f251659108892b2e21e1b428fd225096a5040270b2d70347013eaa1fd8e452942200283aab092c4ffc5b8b427b5d691a5a773e09da20539ff0f8214331c5d84107ae8a59aeb58efe22d7a079e446f1dfb07510377799bfdc7ee59cabcd76af0fe8a427ac8258ff33bbad5a8061f1cfdfbf375d73d676cc7916d6658ce46a0b17ad6350150f98e3512b513e25ca73f5f5df0a1fb9582ace7906c493fe1fd2889d9aac0b7c29c2b6c205537627bad64df433336a5ace32ca871e51b4dab0fbb00886a1fa81a98b74de0a26cebf65723515ebb807fc3c161ed42d1a7b6b55717613577ea437f3a2967c66ce45ff85a6a35b7cd40625fc575b107d7394e3d2db51d58347276c33e21f50b5a6b5672bf9fda63139bb75aead1fe4ee9a4064af5a5958466aa39faa6d821489fa415224c8d69d3b5922236832c2b1e4f6b8863b32f9aea83fb522a2de081d674502b48f73ce6db98d84136059b4a6676bc85ac6b7626329afa9bc7d3f9f2caa3c4d872744e0a8e02d72a75c6c545b8ec8e15b6fb0fe4185bd0d154960e6fef05ba40e5fe2968eb1301dcc52a03337179e74ba1522af93d77827845f8941c69ed8bb84567e3c63f1cc378a542f1de7007b688ff0a9c69d5861f0b85402c30a2fd391c52bafbe65f8e82135fd38361d7c0b43c982b2f3e7cb09c40c7e215114f4243d670cd576bcd93c1e959345170c75d6c3cf89cf8c2c70dc792e646e7c649d4c5f36bb016c7acd466ad58473d40dfef36394e581065a8581ab852250403cf372ac0065bf757fa3f445424ac0d82aec1938a2ea116bdfd306baa1cb06c62a4a97d66ab1b9489469cb8ba842da12e310caed02c5ef05c0be1e1e8c9c8b87d6871c94c57d164d08672b205c948086a06a545b266b7ad902a908681eb188bc51b6190b5cb9d8ca59b8c4c6e7369c00d6f6119fd5d437239e3d3c89cb81e09e560fb817590106015f08e7b09f1e1e65bfab3b8489fa058e24081978b9e25463d9945bfbca81c08885d4b6d4c62e217bd9e19460762f36c66bc948fe31cde089626fbb310e3c78a8d3f2eac21d374d9b58d887235d3a95721168e4b9475849071d60ecfe7ea5d6c4bf60da3747612ef59bb651270f326c0af31bc8c71361f851de34ccb3c8071b96f1128d7ee79b41246e566edd0272dbd3ccfe472b38e5e03d3ef83218bd498e6de8b4d92cb6f82716449ede7ba845028eccdb9137be8a622ac88ac53118fbc39637fa7a93cd3abc6f7671c7804420d66e94720acbcac916950f9baca77fef4217155ccc2cd0507339a0486f9f468eb28772986ee768c63eba671bf8c52e48a2a5dc2cc24fe925368706c2d712dd1064692b0fb2a32ddfbd4a0ffcf9c2abcedaae6e527bc1d42637aff2a275b76a7a7f010e42e1cc1d27141f6c3585a2bf58c6c5789ce61551d10118a000e3764631ec0b7f4b1a6f22a678133a30940b79dc76f863dd9f6e0d7776300898c97cef286c731c2050928c492439256e481652bff0d202db3cfdc54c9816ceea7895357bfa0362fad79afd09ed55189294d6ead7e898ac091cddbe7efcedb314bc02a18dd5bbddc42e089124758bb491fd1536aab27c5c124567bc325e7028bced5a179a011d1cb9a5ffb61d7af863e91ec8e60495561188b74d158ba1418228d44e92915a22eb1c166ef7d6179e84381ed950ffd747f13e24172942d922ca3109fb8b1e4e6264fa4a4eec75ad0d0e22579d90f45d6cd157300e38ae665eb56457202e25a8dd5877ba99725de288660badd2704345d9bad208c903ba27ea167dd45a77f77b6502b525b2973270582858183c784c324c1366fbba8d410c38bf75b41e067f6a9a017c56595161db4fc5639393fdafb1f148d3f416c1adc5fe1ab9cebe4689855c9b4bda6dcba5d5fa858a1b87d2ad23cdf54dbdf4d14aa4462da0b6f1107f4afa0091c2643508861a4d9f133ba77751941bb8fb756abf1a104205b80d47a3b4a59724d959c8b5833da4f56fb6613231f230a9378c9af741e94fd2c7213ac1d7625559b3f032f6c8df3ab441929720fe43d7c548cc661eed5b3c62b3c61f538ea3228376e2a18c6da2ad906322f64fb4865cde8e1889a8e5237fd6a39bbd6662f1dedc22fbd74e4376fa610cd710703dbd3924a38beae69783d1d5abf36122cbb87129ba719042748f060f4303a3199c5891c5040fd8cdb9761b006bf64cdcb65e5cc50a29994b8c1c34b83760ece12ed9ed7c3d2a7f8911cdf23a1afe0d7db1bf342aa0123dd5cd31339f5c8e160c4efef882602b3eccbe76fb690162b8bfb8a31910bcdf9a4a5dde76c2ac2fcd8678add7a000cfdcab398eb2171c026313eb6eb56b4b87bf8ef93f7f8a1c0bcc3775b681d4229ea561cb52281d8ba4315c3694ed08433596884d5a7ce3a8b1f82359846b7136726e2fe37bf4f7b7e2206cdcdb0705ced9f0dcaaa2ed3a78ea70d2cfeab668eb321400fc955e9aeb7bbcf86cd03f02dd443503a1480d9d9f899f53bd747a95293786798fc59fceb09e686a9328da4f929b6201841bbbefaffcf3386abdf69540e3b46a643ec10f0acf21f27c0053dc13f18485dbc898729dfbeaaa4887b58cd442d7ffa941808cd9658595be8650a815b088621278d89f0d8a4252566b923df3a3cd65c0e4af08fad385927251b31d35f75eaf25e6cf13a579aeeb0bcc0a14ca4a20a6831d532be0b2af3821792a2df95131b7fafef245aa19b214053342aa820c35858d13f84e496294529411015c41ed447b5b51dc44a45d52552a2be1abfc157f3ace7bfa32d5b931421d5a152dd66b7bf549311b08325e5a7201f793037b38990bedeca8a647c08d2478670f8fc2b4e8983ea18bcd514daeeeeb9d7a778f783c76edf01bd4beda4b77b612cd2e865c2e4f58ca7ae06147bf66ae6aee221cf9b9505dc07e6fb6cf4f82dc8c406c78e270210c11cf2531011ed678d9dfe1f49c9a69a95a9f3b0e5b624d9c2664d787ab911b75a4a38d63e9d6c353f8aaf433ff961fe5e34d84936ead0d0bc7954caf84e541f5c6f3f20c9eed21eb0316b82c0dc5182540e63a0af25565496792153d6395adc2b8d68b8bcd93dd110ff5685879db4384ec390d44b89663d43a5de3bdc0e103b7c1b355dc5f6fe3518c93628780ba03f156badea65d1d0af8433c9e8a975fdd19453da662a33fa9f0f5fa15fdb216b483fb48370a967246e0b763df8b3bc7924a6c76c4b114f803dbfa3b312e6815b4eb67be167283a9e482d9a5beac250089d069d4c386b7fda5fc228404a0f58b12ca4dc131c381b49b42b570bcfc0dd663f24afaf65a26a21f6d92f52c9f8de36cb76bacbaa0eef98ba6b7dbbc2629a03bb2b6f83fc5adaf20c217bc8d0f0d2421e01472532bcb546aeb2d483c8f95011a3ba1d2fd8086a717cb015dd53064ef4a80b6d6fdc12d9069223fdf2aa9b192a0e0bdb38436f49d9eedfef3665815633fee4344aff11162526362b70b18e1dbedbb5d8c4698860beccf667851878a25a1e766caae2861f2e23404aac859e62fdfeac06a6057554828d7035806e8ab3ee2fa6d711e5811db61231a22f4672f6a11b27641f350bcab78792362e6ebc1c054a643bbbf2746678c14dc567d1f73e37005c8ab6374c4d8d3106384a2d32c5fcf05cb9ba97cb7fa1aff11505a701bead543e555f3901ef3b693d5b9ebf49518c3509af042b7e84b1b867c22b7e08725220e4338fd074edce428212e6a3563a08e2ccd8ab71910256532904542e93d5c7deb5bf5d49beb3202d4da4f643649e55edbb91188cdcf0883a40c6ed6b8a086fb5c50dc08fee00308420121d4c7431b3cfb80f9c1e099423ac451d67b12e930d9e391d0a799c7d4b54a0d56ea0aae00c1d009e21fb5459416b464b227d66ccc1a68da59d64c1583dee54bbcd7d61ffe541fd0fb7452adba91906918966a7d58019ad1f8fdebeceeed7018837b6e4272eefeec8385abe7207fb2d7061fa6cdc478165a98971f9729b818a73edefed976d5c7c0a651c091cfd1174c020e39330a79144271fe4cbc61ea0ffa274d0d87d06dd08c1d5f8a0364d46ef7b54426bc286330c75fa257afeb2715c2ae511ff53b1189cc59ab80b1325fbdcedfdb8f36ed71f70091116e16b52188b794e637755027caac8db8554f8674b844964c710cacd7a9d6b06baf6fef76159a380e639b0d3e66080a7cf7f86baac01dbe47fe687fcef2f3bfbf6f8fba045181dee688360a11ee56e5fc73ed31c0e2924ae57f0cc93c63a30662a65c5d5f17123ae28cc5b74dd13ed81b03dc7fa61dc575668868c0df12d3553269f04ba79084d070abcdbd4745de80e90e4e3e524f27249b5c4a2f2d4c8b331b0cb6d4efe62a298daacc6eacdfe008c1f912795dbdc37098c42db860953120fda709baa6d46f52eaba781505e68561ca0f281e850532ef8e7c779883e312806e1c357bdef8d0dda005e710cfa6eb8686e8bf3bff036b3fcdc4036541d93530ce6f598442c24170b307ef05f23c93aa0ec96831b532d8120402214a940d1fa01ed649061a4a71308be189cffd729a196754fb8a75f23851189589be1b819f0612cad3dc94ccee88f4ab9ef6ac9c7daad8cf94f5ed9496c4c824e5b4f66ce32a80e7a6ef069a32f6812e656aa5f5742bd432afdf026c86e8f28212c1139dad47d7fc07e5c1a83e993daaa4a4bb5f0c9435ccab2a10f867ffe259dba7a1d9168619b1e3048860a5122e4a5d0b00372eaae861a0cc88549852fffa76e6d78739b654d67df15ea97a9a46b7c382d83191a673aa619b4a10ec05bc681379b0d6df824cb6fe158e9d89ae5dd1ef66976f67972b553db52eb6feef836dca6026293f83a61e117754a7424a3da63bd82d017f87f0603e2a9b8fc550aae611681935ae91f7ca2b5341b05a25208bd28f1a202a7f2a213b1d7411ffb557470aec00c4d13c70163f22a038a189710dd19a47e8db4a87c3fd329a63abca172a9810edad2d8e19ef85b57ea4287cfb3d740d7ea3fa9c80d06e1aa84b317f678ddb3c147ba5e0db432125f59ca4944c8e9050281ca82a3ecf67b2a5df678697a52a7297af1ecb03c586af7b91d74e881964ed95f7be12fa07e2a4e71aab8b913a13996fa33e915144bf00e49b8e7adec5b2c4b8165f54ba3155230e241ee023af77a295ab87c40f63f6092ccee05cb08a265abe8f57c9919bf45064b6c2240ba8011db223a283a4e2292d9b59df8c9a4fdc763f0631007db9976f351717db0e6b5f9c6e5f227c2efa1ae5fe0be1af0b22fc164f9f9678a01fe8b059749fe8a2972455732da1989c609d191544ef9fbb3e58da93ec4a582430523f260b776e4d747312747d18a9bae14740f5dcd35fd1072f8a4d81573b5882203be856b62d7e1d87081a9e431872c9d68864197bbc61f15dd8aeae950d34d6ce97182deebd2ad64cabd1c723baf512acfc7e94675b31369bd60e155af79b97bb734312569f736dcd5b5a78223ffaa0f7e93e1a112cb9f6a5b88fe3cf12c30024c16c6b8380fdf086c662665d3751c11617cc4dbd5b8bc7543301a23fbc90ba8d060193cdc2b68c31c734d516707b759f7db009c8f06e69b40154e1cd8ae444afb28134acdf871136b4fd78bd86d7faaaf618afb25e92d1ee37cdff0595278f9565f5eb109e181e9cacec2f22e32e9f34774ee223fdb992febcc5dbc5cceeda16cbcf1434730d859e7e03d36ff17636a7a7e66956b515894da114f3040909f90ce3cfbb2d7d46e37049c0fb124e0683d662eb427cd7b851ada229451e6e3aaee64b9964ced3036bde5d9d80eb062474f96ecfb9b65fcafc719494ac12ab7df245475f2a5e7f85ca4789833ca373e6214d39176c8f51dde87a4cfe5414a20f68bb9f34709979b99533ba3435c4aa56e525195e10ffd00f8e41aee30a909c07b973bbf733d45500b539ebe2206d438216690998d9e256db1b7ac6bef3e810785e1986985c945a2b820323a592721fcfa444934d0faf8aa439d5efca5dcd77b72d1eb91b3790d50d0a7483e354c415f81d99c133d648c1293e795b3c43f9b47e23ef982e10072ea5baafb0df675e69af1807b225afa0cec3eafbde8535d3ecaa0ea6ddbffe4465207425bb003670320324df0aeeb16b38a043f9c0e85673b36def332fd68b2b1e6edda621d0cadebbced8c7fc8f890489115b457249e8d8103676b3207a472804d33e0fe511ac56cd8dc5333b2333892f87b455940ada78fcf5075c358fce990e6f65f095eb416d876ce6f120b8b02cfa6b176ee269c942f881247c3e464cce2aa65c39137607c585aeb4b5f24f5f8e058c9c8b48003c1809da3e8aad1bee7955c3a976d43fe132e2b16f4758a0a9884e51d13b930675a4361ff366b0fed190ad7b2a00385528951e39cd44ea06d8921b9d613d7626221154cf86249a550198fe4e5b05ad3052b474291da0a0a2f701759859bc0392adf243ad5eca89e6d18e28dff99ef95743bcabe75504be8c715cd6360facf3bb06cb97c29989d4f6ff5083573cefe6ef0b39a252a2678112fa88e5b06c9a6bfc9597cc96e5a49710c4fc120fb0da4945b9d94e46de1e9989d0fc3d8d20df23d815b660c799a903f651b0d013f7fe158f1d297f7fcb6a48780ca5525f1d081ada0aafa83552318b848783306549750b6254cf676c7b934cf7fdab992717f0cdc089b34278f3fb151cadde14d0d3250e85a4b0ff2a2778a219aa40563d3ef575285484424b6d0e7cc8392342e4848c6fc8cb20fa1b450cc4c1fea19f3bbdd9e342e6c49cd7ac893b1eda2e93d1d74d20969465946b398fbc733757741ac822c4a118632cd242a439fc37512cf79b7c629504ccc1e7f2f11798955c3262b5e9695625ba74d8050e20f51d4769e1ab938f487f1bc4b55b5abcaa3ec079c2d0972b2ae9bfb7c5423b959119292ea05f1d79d35afe47e49d97c946b193bffc0a8f607f18a6845cecbbdd98cd351db2b2dce05a4848ba84a6a497b4618950130cb7e76c03d0976eb2fb41d3a42a1430063ed8e5b8c67e80fd4fc1148911958babbcbff33a6505de209b0d9320017fd72bfd027a16564008ab2e1f48a6dd66c9256730e9fda0a606875d0871b2b9b0bc2ed4e1b696dbf0283c8dc72cf4338e595266f5390bc3a21f988353118f2948fc75d050ea076b73508d9ed89bade0ba305c1f4e5daf9d40d2f5e7ababed8d1b1d919c61a6d3fb149c1a9b44e38585a2fe322f83d73a3aecb44da3f0e82942d75d62ed3f91eb44f3411df014f88839e4cb1e21b9b259d4eb4adaf6b0be433d0ed4c87ec77dde5ee9d566e3dd8d928fc1875c63af26c59daba5ae267d9bd5da72b99a03e6a33cc48ed961ab484ff4a46c2d5fa597e626e00b530d7b9a9705e4e08d03f3a7f2a5a5233ad6340e3b5c89db81ca713b6d7d855c6324955f85109b204566f50178cd88abe3fcba25de905e8ea0b75ad51831761ed9b1af2470f976f05ec73bf74d137c207270cfd614170518cdc449aeeb663e114359c8124eaf2499d8cf5dc84a0872301db2e57b50bd285060ec4390d99d4ae3674ca3bb8679c1b08e566ba4f30daec8684a980055eb43cb5a1306c4b52a154682aa96637e06c869278aa2f74ef7345632c11265ef8ac97e953745302556881ba0cb590fef271c0abb193fb84d18ee3f24d9976ae816b857d6f68d1fdfe10b312c799fe014debf875d04bff8b4f387859e97c6bf13f7083c28a2045a0b5eb09c94e781a165965e8617c0efed1701ea9667aeca26d9577ea7b1242e1d91b25d6a66756cc627648a293b9f4345966bc469fafaeddc1118d0972bd5c7751a1f51e5989fd952f314ae10417c97b41e60ebfbc47e496486fa4a89fd16aea7fa1eabebd26eb2a37a3e2b351e0c9d2f67b2e5be0f921adc9b6045b045948e5103af0e5050b9c0799b513c00865deebda730de538f956ceb6164e08bd6f58655a294b4b44fc65309b30f9c00f92ef5bd5b911a3d830f72c258b19521bb8e80db02129954efb61423f518d2c5f36587303890cad9a93fa4f4bcd0e24c67db679c67ea59c1350b8442577632d5e8735833f3daf5a74bc7bd82659a81beba8c889632efe03cd24187aee856cf659e16e195464f52f2b984fc7a299e7b2aa53979a147ebed35705d5e89691666536f2febacfcef9b32d14952f958b72512869e4f6a0a34176918217888b1eb8b89322ebb6bb1dead2b4744e728479880db70e6147edaff6c3f083f18e0696bdbd78cf0bda14d9f42e5c1077ced00041aadff90470aacec0e48e2a5f2a0ed37818a173b96061e8c5bf24c0bde9e09f9e0ddb8e13306ef1d4eb8043ebadde5d7553e5212ecd4691eb426251f9d6720b8276ac543dde02399a35d974b22c1727d4b6df01957cae47443b706d43165e01d6932b136f561ce837431254cfb2a6e7d8070a2d3805aaa15b3c10ccd0cda2e9b418ce9ef380e5d08217752e12b3b892d03a9495c83d78d674612fde5a67738b2d4649ce44606ecce6bf3bd1293eca246a83643e4f1c7ba362b110e07c8479f216e3d4afc4fcb8d0820c8ab702a66d8183e83174597035e92b9b500dee08c80b927b42c3689c7c9617b4112c9e54cbfa51e989b5fd42b80c595d3edd265f138e8128cfbbb0e4f53aa0aa95a2ecda451852e564c42d5de7671560843d08103b9bdceac5fdeb0b1266f72f491265dd2b2b80a225a50955167da1812364ea340d82f61535401bae6f3140a8795d7c318a64cee4676627244930957b2f0b227be21b72d90027e6a5a7af3c59470c74dcdb71d1ef090a0f49c91acd604c792385c8f4e085765292822ee5eca03885fd6bfeaca9b3bbbdeac939f7846a487c5a483ed1e4fbf37c93886ea27bb35c812089b900b77c7c924147e97b6a71533610750bc84921012aa8158b213f7601d934a20bdd1f757b0a33042a683af6b9069f3900059d7f80f9fdcc9f33ece8cf7888dc9e24f1fc6ca0ecccf161c5334c60f440feb3acfc3d115011c176dfa05314c5bcf089e3c82bbe7680a3eefdcdbf3ac27265b779db4f49bade0128eda6e29bc5933ef454601db1b49628fd39ab938794fa46a33937a086ece7050d31a21524e2f0cacb307ed4412a2078636f9cc8e11c5c31cc0f9edd7be6d1e31a1513a58e25215f5a24245cb988589e6d5e5119f4f6557c697fad7d1c3a7e3bae064db4382701e33e48c5b6a52fe9141a385ef2325c6f7781134607e98bfd02c43d6deefaa861700388b40d98e941cfb2ddec209f977e8b9f93d29fdbf85e3010ce7cd622e8c75ce3df535e392052b6d65d5042d2a6e78bbfe5ee146e8b18d4bc7fb024dbba57cbe0402205593766a313950cb719d00c67bb6b3bcaa1015b89e820f11475afce655947113a7c3dcbb52427f090df994fbf076db867e0ab3f6125fb8884c1d13ff3e99fab5fa8b9f0b72cb44db4d0a48d9ec17f9733764e213c40a15ad821ec60e4a88cb2fd9dd9a4f35e6a708f4b74067f4be3f03a95261f6b191df53fa5bb5164e4a164630ad9ce39087aa950ad9e60cd2c44fa2237c49abf858c97737fd21180fd0b9542767150fbed3f39a29e6c3484d9437e15d2439f2a54b2a1ac7e63e6c436658abc3f1dd52d984f6c6901768a8cf2ec98ebf44e90e0fc0c24f8957c62e05d8eacecaf25b178fd710af609a8a1bc4d7955b5f0cb4f48a37685e6304ea5843573a1abff37b5106916c83c8f23f939a0dc43aea8d196191ed6e18dd793990d1f37d7de0bf8fac6f469843724eaab86be8a483be281b8ecf4aa29d9c571951cde8cd8c2aaf4d597ac2cb48f23fad145916920a55d655924940573b64dbd42a280cddc4810434f930183fdbbdc72db1491a4c9d44daf9b1bc2fecd855508648063040faeb125da0e68e6cd2002181118eecff0be1dd8eae726af5d451630cd65119c52abd6dded97f931202f186a18c4ba34bc2c3f6d765e2d8f445e959f26ffb55827cf3ff2cc0289f17b82c8caa5a2d3d54306a300f0ef42bbe4ea9e32c5d4b1173942745cdcfe4f5d1619eefaf8dc600afbc9171d516f7f4b35331d0b9be005132ffad5e9df59710278b842afb626a78b8b8b37fc3a894dc705b2d4e0940cb264e9dc87eaa148e6faf78125462f28a0f1d7b3c65a291b85713fa71ffc478f6601e8716c35489f4a54ed0c70bcfd5502cc91374dc3c982075c5180398bc6b195b36e79dcc4087cb990cc9d964a150e0dcc887d496bdd27c3f298736b9ad8345ba2df46021964cf43c38f9d2e94b77bee2b7bf059e0870ff9f17b9ef1320c0aa88a2fa9781e9017ab64643de9a3df9ed4b8cfd8fa080a2e494409520b795eb1517d224a05e450c4c8ae0e9fd29c0e72d3a592cce55f6dd5107f21214e1a3f9a5448384de06149f959ec0c92790f0ff229ab4971171f1c528ae6d095ec007bf5e7f55d623a68194e9ea8edc3af418075338328f24e7504341c22bef72c2963fc9c3237ba990d29c2c8aa3007395f6d96e95b40ee1b18dbad550bf39d0d98268cb74dde76d987c3169c9067495fb1b88508bbb7e94cbb7dfc15c03b1d5b163132c8a468906f02d422a8cf98d0b432b5779dd962074b72dd27439b2e94312f573435e5aa84664432c1914839cd6e172186ce93eeb1d7cb0659696d9d550eb3b185f8c6ee16e53f78233cbe709f99d2879d63d93f7d0ed133241d2f1ab1eb2c56605ca0f0e01c39ab0ba2370fe5c4e68de0561b517ff9a10023c386236398372c7176e35443e2cf5dd6cbed9f23395f231e6a54f65626cb5860a8b72122c34664119e7c47204ef4a70583a", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
io_uring_setup(0x1e80, &(0x7f00000002c0)={0x0, 0x7584, 0x4000, 0x1, 0x2038a, 0x0, r3})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$FUSE_INIT(r6, &(0x7f0000000780)={0x50, 0x0, r7, {0x7, 0x27, 0x1, 0x801001a, 0x66d, 0x0, 0x0, 0x400, 0x0, 0x0, 0x40, 0x9}}, 0x50)
rename(&(0x7f0000000280)='./file0/../file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00')
syz_fuse_handle_req(r6, &(0x7f00000021c0)="1695367704d10dd832678e4e2d01860484a69eaac410e2d6cf3b3d3925f9a3cb602592377170dffdc4de86f163e390e21d07459b0f058cfc248c4bcbe896f3c68006f3c2cbe07c55b87170871c1d364d740faeb750c8c8acb76aca18bc0c018ed341b55b0ef80cefe95b85756aac978a0e0b5ce59cae6657643e7ada0c1336bab310888351664553c2faa6dd39054e19e23cc7c4b4d33546407f880194aa0761f2a9360c4ba26de342328b92db81ae84fc9c1e9eefb4b7ec3f58a6d5d23b907327b14480a37f3c84305729a91c28807f8809b997235bfa2d4b6f45ee9568bb4a416df34f4140c5e272bfc068ea61a48b365490ccb02772a906dad457f5d2dd1a57cc1209e8897c8115049d7e4e3c756a7f5ad0c004ef66c8bf91f600910e73b4aa5f516bab5cd62ad93642960ab32b7fdaeacb1a9587a389a529c231f8a47a65fb6d27ba6a0eeb46660cd75dbf47df89e9f578eafa6992a12d9d7de56d69fd0e30b15caabd13c28d63921597466292f8c4e87f23d53d52e6e8f1c9295af0743c8c671a49273074ba44dbce9e9b1136a93dbc19d2b8e60cda5f50eba2d814822a68a0fd4ff5e6a25dd5346f96b26b5e1563ebb97829a76fd8c2aa467499fdced91b05b193b68316494f11f5ce97ed8e13d474b03c6f6eda4eff54b0ec362fda53003e6e2a3868a5d57e2426aed5adccdac8e162c6cc20361dd4709889b79b2810ba42f531fdd3746562a00da65b4211fb7d8f482a3610748d3b80d2942d8432471f98c6e9036cb57f3913b31dd8baddd6d85b44e8463b838fcfb6979628c5fa3dbd30688e10b9ede257ebc7b96d4092f38d11b9e6a4d10490a9df1387b3743cf51e206c7dbc0741c408bbebaae7f36d81b5ce5b21bb9fe992c8a0cb3a91ea2df21e571ff094b53b17c46fe22c0cead29144d203294eb42c984790a6b6348ed8b7b0317ee5b2353cc54bcfd808bf0f61f73917584e17bd9259c8a04d2ba3b4f931571947c77035975933471fb1203088dce478eb4e411ddb7b88caeb02e1cda741245df701a2b5c29c48a631eaf18549bd90c70222fd6dafe5550726bb58dd0fbf84ffeeae683a0379505f03740a652025add8e0e4e6b5bfb4bd0876dfe1ecb639acc110eba97294a4e4642aefbcad04ba50d830e945fd9900ee7e02488694041f43cbaa86280c1df64e8f1f81f7cd5130914efd19b58262f3bd2c43bd8b4a5beac09f1ba27020521994465e62c329debb50efe0716d22cf0056febc7cb95aa818e10639077e91cac3c80b37d6eebc6907dde971b578383ee04086a0dad18750ceff6b8d6d373afa93a51fee65fe1318c1ac291b784e45d66962c8b54571bc1e92a996c11561d94af6ecdd37948d35adbd1ad63c1c05c31c7f4afd707aa1956d1444fec1137fb6d81f56566887131777e5fe3e2fafe8af8f21ed34480afe74afb25d8d16f8089fcb851ac49dd826b7f273aa3d771856d712c62397d49c72d93e3c2a5e6b9767fcff0fc5b3d70dcd70ff8bad5dfd7f5a84c194f99450601f970104f9be026852ead21824152dd8f6536fcd01a69177a65f2af266e619d61d20de0c738680fbec29e7c594cad29f009d46d87908c951b2e4ad8d9a67db8be6f570fe5416d9e4dd22a108140a1c95369731807325ee7f4201209a795fa1609ce8fa27384677816f651a96cc08400e1b647bdddfb851313e3ccaa472b9a6a1da3a0936e119a6d7808f09de244d739c39df3ed36004b77cb54b6b1396b718c87fba28cb1439c7d1d140dae1ee2c2a7d647427b1e7472710c7ac4f1fb0fc0c9d15ecce28167d23e2e42474dbf1c63c0819606be9c9b6dc2eb59bf9932568ef408c20e9498cf105e84eee30460d4348f4cdfab623b416adadb4427887d9b1b6b8db75b224e8a55fa0351d21093b2b7e42e6685491cbfce100d602d0281f4bd086b50612f3ccf055fab1aad97a52695a233c3d458be4536b66b0acdda5ce0aaab48bb7d7f39a8af473c4478991f1c4569839eab0c1d684001ee1772290871653a2293bb7754c1eac178c60f86e2a98e1992dee198c76365f2d04d159d7c210c6cc58764e3b7dfb5bc15190555febd01c69cab8f55926c28a13fa4f9060dde1ca2df7e1f71fd99a0c350d7f0e341ece8e0685e9c205b486ef400910211b688f07fb05b542261c74b45f4ac23ff53e9e620ab12dad7b5131f67128bb8ed6a4a70caec437f2157f8bcb3d080091e5715dfc7d7539dd0320c90d0aab6a6d7a447ebeea893a0efa2176292c648c62cedd4138c9d0535ab0621855484fc43e0e3e84357db6951bb21fe2f4e99fa188ebecbc23f73ea879bd304408acd1c470fd112606ccfd7b7970e950ebd363afbba359a51877248a42845097094ff785dc82264225752f3aefa980d9ed5309b48f47a5b5ef49f69808b91bde955277b6525f55436ffeba0bfa8c13f6314c57ec97eea295afc66a9f4ec844474c0da6ff1ef0c6c65c035f3bb74a70ffa668359b58a46af97600c428626b45c81a4e372e198894c02e2bee8010fb4c2c075ea623a6ee24a99e225f809322df6ea6f39b1566b1aee5403d45ba648f94f70976013199b3241744458d030a5319360780897413289d89267c389e04f23de79adf4b864c5ca76efc225eb1ecf6424887f0d8b3ac13cbe9df4eb69f7b702e85fb396dc4a030d57a8c4edd227ee568fb11a9859935ad53dcfdb01727f106af352c569a020b7e405a1ad4c6b39e2e8796fe9f16db3794550f5ef3ecd6af2b2ab0383e6c198f17ada5840bde84ccbaa661d9c456d9ddaf92763ba450098cd5a971d847fd5030a4c9b066ab3b0096dfdf7e5ce2f8349165f94c493b7e4192e85239bb11552f910fb41c5e96ee10fc8dce711e88e0572ce0bbbd9c9f3b7c9dae89f1dfa6af309c4321755a5b19070c8731ac590c30fffb69feeb75f699aebb101d3a30f784f1745182cb4f0bf63a148b521f0a03c691927694ee453b278523e3ed256c150098a932f62c90ac65faa4b9782c27a3ef6ca2b5ecae6a01d8a1d7096bf6a7d1b317a9eab22ef4907c631bcca224f723f5fb9a44d7e1295186cf37fd71343919aa167fa70a505a73e9f52a11cfbd40d8c1087d4ffdfe45a40ed5aebfa4b0c3622c78a914d68dd92f46478711437ff88803ab28cd9ce2223aa0fa37eb9d9a4a7866dec4ca6bb66e794ccac6bd19b11daa0b6d4d42cbcf7d6426b5718030ca51bf92b3d8ea0b11c46ec5c0c6e3805c88b39731b2b751d9928ed1ddba7c66bcc5273d709fd295aa0792384435b98c1f44575c028ff2869074156713931f7e62f8b0f8c7ee9dfeaeb2e096e77600586a47d6f6a2e13a17dfceae46ad84858bf8873f9f1e35fc700aef0a648af168ab0774a3441a203ef325577f2c76f5f0e5808acdc7965bc65e8ad1ca816bc3b67711ea42e619c957d0f26b394be1f3b0c4ac9af8558eaebf5c1c27b6549022513479b4c28dbe3f1c3131cc9211eee768f96a9c8b5e0e6425bef921a355faccf0072ba19b16d88b75feb5dc8fcfc1b7b5973eb9654ca3dcfd482831ff5d1fe09fe7ae43cf129c8c17a6686685a13ed076f34608b7ac16eb8e9de6a44418c4e3f8162e6a679bc9482df96a04b14575ebf093b99bf5cc26495f5dd6e571129d9760de3f801b001a1f3248d14f579bc519de2b656641a88da758a2ed3baf15fdf2739ddb44f0e5892de7ea48e9302129d0c939137b9d0687b296577675bcbf433a53f6a9816797cbfef1ba0caa2b8602387b5a8bae24d3e15d42b34d81708738fd269c3e8cbacdc3ff5ab1d4816a783d7be0f0a8086e345a6b4c231ffd61745f6c45cfceaf6089e70542aea1574e3c78740f77a08eb55b37f03549c1dd318cb5a76094210e8cf800c350d328fbf9442d0437e7affd54b3bfc33da3f24558f3ea8e59da8e61ae60e7e7b4de7179b8cf941d51d420c8eee69143966800dc4f7bcb50a033331fcac02a65e88de28ab219c68388a9da9196e044dd1ebbd3994bf8cc862f6f8b419fa1f4f4e5427f10866b498935fa28b8e6f9c5e48be8b74b9c2262823390480f71aff6cf72281f526265877d223eef9ad7a4be7438f9afb6aff0e80c5125c2c612ceb83f0470ea04479979c0a10fbbd0bed7379e949cc19fe36fbcbcc59a9fe30a2662d3e4d22862e8841b587b8995ef8482bc60fe0863b41752ef3dd44a387eff101595822bf1ce440ff9e5f73e560e4f7fbfe4754d9dabbcd92de02017eb43d3cf7c75e45ba04009a782a68ce11eefd52253c721daa5f37c6408e37b48d1f2e36d7c1793300f2c9039e69a52057486b63c0fa644d00528ce48f2e551ca88e356ac25ae74c73492ed3e6233490acfbe7ed8244f23e2af86e0ade6b78bb34a75a86f6cbadbd39762680cb0821d6d28f18d427df13d0e747f6da54be970e43ef8ca8285dc8bf44e3cecdbf2d8757a9800bb889b846d58cc636a2648809451a95736a0ecec6ea3fe61fb24dcd8a00ac0b8933918189cda555b17e431d99ee190d6d0d9f769e665ec193ba8889ae72a01e18b98cebb75d20ed778e5778ef657ce85d40eafa44b46f293d64023b877e8c5d58587c3abecf9a1ad8d874a4cdba0bfbea61b7eb19e81f7c932be12a83bacc51017b42dbe2931dc11c742a5a942cb6ed9bd9922ad78f55b0f6cbae0e8d4235140263ed8c83ab22e71a0f0a62b6920b5d5109e415254e527546546bd025cf1583e3e8d9d5bf735a4651fa2e5c3c86a185bb77e9b75224cdda8cb0eb21d9e3bb19e286832aa5dce19f055539a0a5caccfd752742a31d0af882c4f02c29cbd90ac2cdf5cc61c448cd09eb7b82b930ca99962c0e5ed84124fe37f7d30aad0296ee340377a7e0aa7413c495ac8ab0b482c4c5f59872efd5a1ceadbc7606e67d3c79a77d095bd82519db0893b9d2bbc2b2f3a7391826840e49424703c006399cde5f2a52a9383e89dfbfca284be4d75dd3aafd8a43dc6c71bd7fde9460647eb5c97707e96ddb9124d6020da38ee7ad743db8fd0377a8711905194c496e39a2132d7bbf35b79f920b6dcaa73625bf8b5320da250513cd45bf42c8072809ad59d69c02f0554cf82b79ff291e42d9227de1948352b0dba0281b69876ae0ca24972a5e75aee7e0a46bd4fc83f5a0dd3f22d666f2d950ca580c6da6dfaaa293beded10d1328613611b6e01d5d8567541e81466467302d8050a3ae4791fbddc1aec749edb68173be5341166c1d5c42d63e7368473e48bafa43459de3fa3a5550a4ac979711dd9a2d6796b0bcf9b5881124ade4b12bf64fa55724976a0da9d642e76a036c430f5fb2c06d599b0f78e978580f8eb763d2846177ff18b9b5cf8c76197ed809ef24212bc5563a1713214ce78e0e6cced6e41578d46a07839795c83c189610244bc1b680535fce39f290da90d719078015d90020b1d4567a97081b48514709df8e327d814e8c15496d90efacae6b13e297ed520d280203896bbc3a23f3b638adf594de03a782bb292a93ef0b14b8b3e13c01787a0b7bfb3abd8ab15eebbc651b7b054d3e56ebb7808de9b9bd067560ec6a6432455b37054292a3d9d32434506bf84b2907560017089de3f60c2deb4dfb7371f96d65a575d446aa1d2df81867135120df4e24e9227f72ff9f8f015a7754948704ecd084a1a93fbeb5a44af086ef73e9fc1c072b7d5473e92558fc2824acf27f1dbe9b019247d3074bf4256a966ceb674a2c4222632c8e4b6c0736de019ccfe4cca40b9b07f8c4df9753cdfb4ad66643ed71510983e29c2b5f9ae7db4913cb74d9dd0461a900810650d0da73f766aa6882385f3bb40644bf43f01faf2aa4cd187659edb0498527f201442b64349afa814b3dae5ce815971f3b11d177e3e1aaf90c7674c097d475640218ad27e63f9071c9081c06d9b5d1f3a070da3eed4f4080190a74063e7f97b5f35706dd1173dcbfa13a70d5362e50d57d0c5105c8d3beb926d93f61699e737ebe1a935839c3aa5b629dc93aa209d9e7774c40de7f59fca1eb274a8280022a15934e5dd2579a8cf5cd16a3b0a1ff3ea712c4258164fe2fa17a4cbfa5630f4041bad4204605eb2e762d610fa17dafa415ed8a678da1d4b5a6618d71d0066d66e3ac10b3ce65137a5a02344abc57f1be4ce0cbf1a2ac66dcb5e94495e863819c627e4704fb479c232b27aa4a5dfca8896a7eb8e0592b6b392ec9fa2767f569d5c1356d7ef7a909d8ee344ba017c75ca664d98f5288230b7f1ffa2fa7a5d07fab5f4b53b7f19c3fb361795fd632fa8a654004d931b4b7fc0890927aec727160cded3c01b7e40e6b81ce015796895f9c007762a1c22acfb9513eccd93c845e91ea8b0960b299b3ce788cbcce5bea9a94325289d2c3573975c512d56e19c4655f849b3652f8b5f9fa6f49e03202f2031debe3c299c3ceceb1febf4b285da9033493088a36f885ed6d3958b8d05cc6be00f3465de8bf6e41796d17e393067585b459b143d592cea102f584e48676a45f896cf662bd6b3b2309aa7f46d2b8ec6597a063f12bcb7a7f29983a0b30d9b2abeca5cfbfc55e941376c616c2834b1c1c9e9473b531c86c3b708478ee95923fe6a8108c2c4dc8a78a9d5e995f6c815b292b986cab0afa233ef10567a49d4e8dc17f438b90b620df4d291b52549ac8e1b69078b62011ed4bb0e288db740817ff07d01e779e11cb8e0606b5ca3aac6c7b262499f5a115acdad8a67b6eb77503318ef3bf0008347b270aa986d9e79e2af174f38a4743250c1091e6053a7a785464483161aad3ef3ad976e5329b71afe9bbfd93d7541a1014db4cc159ac266021e841c665217fa150e130f921ebd4cfb5accdb87f5f9bc0fd94b402289db4d0ac3f0906a689aef044c09fc2c5a00f7795ea935aeb943eb32826bd2176c1d1cb058195e3229d293595ebc07514c6b038a1d964199c59e59d4fc621c54b7bbd3410ccec22f7fb6751527c2aa0940ed2f0c9dcfc4e99ced91d09ba4a37042b5f48b127439cad24df2951ff1e769d3892dc4788dbbe27cce60f7f0138789444712e84e059ac0a4e87557f6c3369fc61b9a843c816df3cb4ec77a11e16390234da24dc0420f6a44554fc7954cc74d63ec030d4d964898e14500d0dacdbb2959f7a8a191773f66448348f36c3f4904187088bcfeafda7dd721236810d04469e93ca4e7926305c25b1ef1380d775008fd238e33e8dd2dc5a9783f97414487a7ef70eba3dcf71331803fad223f65aadfc87d79512bf311c14926d619a089f5e84c46f4a9ff393969f8eacc8fa20acaa9eb01a8aab625853e415d3871e555a11ee71ee93cba85ee9cde60b3962e294c2c840f0a1ba87714bac54f1ca0ebda74daa3e8e19d382b951d64a22da48c632ec5754f42129214a807427e69a93c128b6b0a8697c9ee375818dd79244a38287fe8f66c7cc3aa18aee2fbf804fc1aadcc7d2daf75be82a60276b6902a51f2bbb64c261915b80053fb9635f405f1fa855d1ec8adc0ebe9648b8151eda70ec5ad5f704fa2a337bcfb7ecbc845a11cae7a68d6bc58f107ac7bb0c2f6b83edc48703ba00c94036b9af4ada51d6d78bfe697df06f47573c14cd7191ec52dc0f208ecdcf54669529bba2c2fb7a6b38f6f2b5ec5fe876f03c096ae092b6f881a84b00edd1e9f67449069d876afaa99eb1a446f20656b5104c72ed28bd8553c724785f4e8bfdc33194409960de4969b708ce26e4cd608d21ace0c38e27d54b55369a9e807cfda9a6240466dd94f6150d4b0105f7b9ae392009b2cf146d1dad5d7c8664463d7d60d11b45f30d01db7364e21ac557d37a4c9ad88926c472e98710d2cbfc4b70d6a5dbb128d46909e634761c6f6952bf9021aa5282c391dcee3278a25e3e2ee31a7f6713979a546084fb2e598214c36a3b7618bf23c57bb23b33e9c98dfe5192ef257dc2d891a6f7c11be334fbdab015eedafe1c4aea95ff1fa6d340d0cade542f3f782c1589470fa64c6fd9ac0c31536ecee0ae312f992733beea6fcaf7562dd6e0f2c016f712ce14d93f02a54f577c75b444fd7f46e9bd2cd9cd1f89195781d88f984eca45c97355095d3b48b0d9bd730c7d6f63b1dc78d2344bdb0f18c4e1554822345c11efa2ba32bcef4f29ed05315cf44617a80d7d1392de077bbda08669c8c3cb6c0b12f872f1247bc1d07634bf5bf4acc3a4ecdae7e6acd7c4af9820147afe55500a7270d7eb511f907339e5af54cfaf33e2364f54091ebee2a245ba048452d383cd441604c4dd1c6376e4df8b83ebf6070d2be248174fc1dc0a1352c103325360aeb3ab71cb73bb646ac6247dd68155fd48b90250c3b0f250a74f827780367e117a94094e5005e2f926accaef0b3e36c25e315c1e80cd4c3481f3465d99025c7de91c45bb8dd0a5577174c1f366017d87d2033239a8b6f399a9095845b5fafe9cca113b93f455bb790709b6c93fcbbd0c4bd7b5d621088dca06802e241836291226ad56d40b3b4e90eb68bd5845742baf4cb4a69b4bdb07f02d0bd6fbb5a5fad3af030816b254725e6db4073b7a0536b884c8985c3a159cdb105c73f7e0e03546248336449eff6afeb96cf8ad3617df18ee2247bc2d11ebbe10e0379f5578c41611872c5461541fb4da5be3f3348e0592982a61c352315370a9b452306c9f31f9040ef755ad096a8733dd9daf6bdbcb7a3521ad2282ae4fa7bfdb9cda5997ba3a6652af46c6d0205bb356dfb411e2b931b357723bb70254211819b74a461ed5c126cec6573cda4f6107fc3ebc76483621e9ab5789a5575ea3a91463f76138ea0f3ec9c44e1cddb2de59bef83333d235e922b920e267453676575b38e6415bd136534b8df2360ab489fb69eefd04b66758ab5dd105be7b0635f7194f9e4b158b22b21ac97fda4e804747a9718b40a32531cd5c3fd1d3c1dd8ba5ef9c86d3c8df8c71f81da1a9756e5db4dddf70755053f7129d656a8069fe83c39ab240cf7a73f0f880ec7a791c5115ab262184839b906c238eaabf2268dfcd6560c5bcb70fea00b580ad52e7de0333e6de63ae351952e6e5dee6edf284de0a2f53e2089db13bd5eca5f98883a24eb2e1a58ae199f8db9c60a5b6b85585b2d2a17d6b5406e5668685d95c4718c375db05f7953b363c25d2ed0906eda70eb659845acd31fec9b8e4d5951d12fd50bbb969dd824a78c72622c8311a980f0f2e6a1ddc368879a1f3a07d3c0780e85a4e5d13223a3424782e3f77bf6a1ebf823f468d41b777ff61345064f1096ed653c277bab90ca5afc8ad6d25f4447236cdd82950afff27763f3fef5308f034379f4ad4955cb8cc5280d51b5427de4eba374f64dde2f1e7a6ae628aa4696160a5cf0ae9fc70e307b4eb19c0a5af2c2855710c8e117211d73a7e7f3f7f2ba55d03a4b73d816c9c3fc1edb86ec95ddcd77884a913805ad6549e7a5f776a1c2385dd6d83877727f128207cda29f83462269a7f606fa31934d06a6e0efd238d0a180c754a9d2e85609fd20c880ea0e79cbe887c442f9f682801da783529e1e45eb3e70195fa2711fa291dca43ee0672b7afc14cf87b9506a7ebe223019c856777e1783f6ae1b0ed90486b32e3b6f7ff77be834c7b6676da6c8052fa49450e3e16a6f90ee33742bbfe3dc025832e0bbc7abeb625077b8c1ea07dee89c7dc26fa42514ff9ac21e848e32309bc2862a873fb57796e05923fce42fa2833c73866e22a04497ec13acebcdff6ae1df71dd8756f1febac04f2034c1f3e1d401ddbdb7f2ef676d5c85437830d527a5fb04c9bbf0d892ee1306d2d2df37008916a3a66e70f865cd6d25de16fdb4bb4f2616204cf86a3ffdbf147223968c092a46dc2aae4aedb32fb850b85d4adb87bfada328bce4c2c70ec42affde442179fcc1d3d9f5e4a848c8ba03b0df3065d1b2d5f1b08d0100000051bb54e191a87ea59903084000b4b520fffda111fe831d4bdcf62423c1fcd673b020c5f2c41973dd1b9698054368081f917715e1c1592bc78dd265e051bcda5bf5877821fedfcf7790a58b328cf780f71ee71491e59194504bd5c959eaff4d3a1c7cb28c479f2776256633ef7c0f0e98688b54e8c8634cf57e27e5c1ee1e43573ae23bfbb1ff1bef6cabd33c02ff165c44f0f190426ba8391ba4f03458be3351869c5c5c9d5fa5600edbcce523525b9cd9c3bb040e34771ea277d05cb76302c72fac5edc815412dbbbc651371d70d044c4f89a68da7abd836fb3a495e212b5fd13819c41c9a240405582ae69b7c35b30935af3085d457a4d76a94c9272c5eafcecc4c92dd4f314b04b4739864e626a5bab27fa2f345f052afe3bae2ff4c442c42a1c83091bfcc23a3b5e06a511d02cefcd618a6d9761de00af192cf1aacc902cf3ba98f898c48fbc74b6710db7ac890b4f7ed7377e0fa3b4c46a131e775130a80db5014a79e674c8fc8b45495066e88201d2e320320fa4561abab617d0e67e9e879b0080a8ab404f4eb007a088990aa6a7b29afce5b8dd038ce96d43e1271315f6070e761e759c44fba1ce78730e35ca31e0bf5840cc01289c81613a07c497f288ed70a6d10d9f58fe135558b2a862bd877fcc939d7536e7dc988409290cd73da04a3b1399b0a2637f737d5f86bba4a31019546e2000a3ca57f8291cd9af28299eb93909061200c9738cca998add04e7bb0137ecc460fc3ef72872e7d13c159914fcdf577910e6c5d7a1636b13b78c5088551c614e3c75befb0f37fb89b918f4aad0126a9efd3390d6a0cab97ed0e01c7eae0e798a4142345578beb10d6b61a90b4d1fe836022def90bb8e37e07428a4592e7bf30e935951e492234a8db96f081379e7c4e18c3b6ce4ed1f97698dc1da940f14217e877bb8e0f33b392d801a01c48ec62ce2774d2e4e55e9415c063e1bfa31a8f0633443ec19c5fab977c1485147e46c06f86742278fd071de4a165dff7eddd5390a1e031d80e3d44477f6009c9fc27a7d92b865a292b0d586083f681c2d92da7e7f42eabd076fa7d61eba0c2b406c75f1cec561b1a523dd4c6f344b02ed59bd473d7d30a24144e981fc8da434931adeb841d63bb705485f8f58a180da91af64bad1379356787b37467dc9b4a0d12496e5048e7ccb40a978eebee5eaac4e9dd96faf194aa93a22333d7f68cccde147dce26c9ff18d7c8ffe0d1377c70dd1057d54473b2c2b2b3eea82fb223952c0dc3796efd0cd94afea38341ab9a83c6a9ee77f26bf8dea8510dfc964f9b9b4942c08ade50e43f06e5101f2e6b68b6a7f9cc5443c862b1198627461938daf4bd1fc7b21d6d7fd3f775f0e4a1f60434a242b049f159dbe5de145e741c5c9b4e59a7f5d7de54a6d51cd87845dde819ca74e3abf60356fbcf18bfff3b6ae1c545e243c08f9f41b86e55ed6e71be453843e0bffc5b6bdcfeefd33075ee5110627d4f05e008e54ddd62fb6979d9c2a5e4a2cb45fad7b2d77bd17508952889b30df2124cdc2fe6a749a12c9f6dbbd01226cc4ba2693b7e6a858d3c36ac6519ee70e896588a6df81b0e3be3604bbbe1a845088cf1834a04368dde8b6ee76d0492911dc09b05cf6642e0003cd8faafd398872c1a8dc3e85d3658ec800", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$sock_bt_hci(r5, 0x400448e6, &(0x7f0000000080)="149a80878b391b99")
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[], 0x28}}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

00000000 R11: 0000000000000246 R12: 0000000000000002
[  127.051721][T10188] R13: 0000000000000000 R14: 00007f8b231b5fa0 R15: 00007fff635ffb88
[  127.051741][T10188]  </TASK>
[  127.135648][T10193] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1462'.
[  127.227551][T10198] overlay: ./file0 is not a directory
[  127.229935][T10198] overlay: ./file0 is not a directory
[  127.234130][   T40] audit: type=1400 audit(1748508328.393:829): avc:  denied  { name_connect } for  pid=10197 comm="syz.0.1464" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  127.240725][   T40] audit: type=1400 audit(1748508328.393:830): avc:  denied  { listen } for  pid=10197 comm="syz.0.1464" lport=34004 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  127.285565][   T40] audit: type=1400 audit(1748508328.443:831): avc:  denied  { accept } for  pid=10197 comm="syz.0.1464" lport=34004 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  127.293011][   T40] audit: type=1400 audit(1748508328.443:832): avc:  denied  { getopt } for  pid=10197 comm="syz.0.1464" lport=34004 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  127.413225][   T10] usb 6-1: new full-speed USB device number 10 using dummy_hcd
[  127.523332][    C3] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  127.569302][T10210] loop2: detected capacity change from 0 to 7
[  127.574843][   T10] usb 6-1: not running at top speed; connect to a high speed hub
[  127.575571][T10210]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  127.578821][   T10] usb 6-1: config 1 interface 0 altsetting 9 endpoint 0x2 has invalid maxpacket 1023, setting to 64
[  127.580193][T10210] loop2: partition table partially beyond EOD, 
[  127.584645][   T10] usb 6-1: config 1 interface 0 has no altsetting 0
[  127.585302][T10210] truncated
[  127.589280][   T10] usb 6-1: New USB device found, idVendor=0543, idProduct=e621, bcdDevice= 0.40
[  127.589297][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.589308][   T10] usb 6-1: Product: syz
[  127.589316][   T10] usb 6-1: Manufacturer: syz
[  127.589463][T10210] loop2: p1 size 2989602745 extends beyond EOD, 
[  127.590603][   T10] usb 6-1: SerialNumber: syz
[  127.593528][T10210] truncated
[  127.601088][T10196] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  127.625715][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  127.779885][T10217] FAULT_INJECTION: forcing a failure.
[  127.779885][T10217] name failslab, interval 1, probability 0, space 0, times 0
[  127.784320][T10217] CPU: 3 UID: 0 PID: 10217 Comm: syz.0.1471 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  127.784336][T10217] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.784343][T10217] Call Trace:
[  127.784347][T10217]  <TASK>
[  127.784351][T10217]  dump_stack_lvl+0x16c/0x1f0
[  127.784368][T10217]  should_fail_ex+0x512/0x640
[  127.784385][T10217]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  127.784399][T10217]  should_failslab+0xc2/0x120
[  127.784413][T10217]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  127.784425][T10217]  ? percpu_counter_add_batch+0xb8/0x1f0
[  127.784439][T10217]  ? vm_area_dup+0x23/0x700
[  127.784454][T10217]  vm_area_dup+0x23/0x700
[  127.784466][T10217]  copy_process+0x7f1b/0x9170
[  127.784488][T10217]  ? __pfx_copy_process+0x10/0x10
[  127.784528][T10217]  ? _copy_from_user+0x59/0xd0
[  127.784549][T10217]  kernel_clone+0xfc/0x960
[  127.784562][T10217]  ? get_pid_task+0xfc/0x250
[  127.784578][T10217]  ? __pfx_kernel_clone+0x10/0x10
[  127.784599][T10217]  __do_sys_clone3+0x212/0x290
[  127.784612][T10217]  ? __pfx___do_sys_clone3+0x10/0x10
[  127.784633][T10217]  ? __fget_files+0x20e/0x3c0
[  127.784656][T10217]  do_syscall_64+0xcd/0x4c0
[  127.784671][T10217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.784682][T10217] RIP: 0033:0x7f63fdd8e969
[  127.784691][T10217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.784702][T10217] RSP: 002b:00007f63febdef08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  127.784713][T10217] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f63fdd8e969
[  127.784720][T10217] RDX: 00007f63febdef20 RSI: 0000000000000058 RDI: 00007f63febdef20
[  127.784726][T10217] RBP: 00007f63febdf090 R08: 0000000000000000 R09: 0000000000000058
[  127.784733][T10217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  127.784739][T10217] R13: 0000000000000000 R14: 00007f63fdfb5fa0 R15: 00007ffca5de1c68
[  127.784753][T10217]  </TASK>
[  127.798852][T10220] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1472'.
[  127.815864][   T40] audit: type=1400 audit(1748508328.973:833): avc:  denied  { create } for  pid=10221 comm="syz.0.1473" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  127.849840][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.852490][   T40] audit: type=1400 audit(1748508328.973:834): avc:  denied  { setopt } for  pid=10221 comm="syz.0.1473" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  127.856165][T10225] SELinux: failed to load policy
[  127.857439][   T40] audit: type=1400 audit(1748508328.973:835): avc:  denied  { write } for  pid=10221 comm="syz.0.1473" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  127.860380][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.900682][T10225] SELinux: failed to load policy
[  127.902522][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.905532][T10225] SELinux: failed to load policy
[  127.907153][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.909881][T10225] SELinux: failed to load policy
[  127.911526][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.914733][T10225] SELinux: failed to load policy
[  127.917038][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.919789][T10225] SELinux: failed to load policy
[  127.920751][T10230] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1475'.
[  127.921452][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.927999][T10225] SELinux: failed to load policy
[  127.929658][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.932353][T10225] SELinux: failed to load policy
[  127.934188][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.937093][T10225] SELinux: failed to load policy
[  127.938852][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.941658][T10225] SELinux: failed to load policy
[  127.943608][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.946581][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.949507][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.952431][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.955452][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.958378][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.961288][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.964266][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.967223][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.970148][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.973072][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.976207][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.979176][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.982086][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.985079][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.987952][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.990856][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.993801][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.996754][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  127.999737][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.002659][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.005820][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.008686][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.011547][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.014538][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.017470][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.020393][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.023366][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.023799][   T10] usbhid 6-1:1.0: can't add hid device: -71
[  128.026290][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.028108][   T10] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[  128.030919][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.035411][   T10] usb 6-1: USB disconnect, device number 10
[  128.036338][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.040995][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.045413][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.048322][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.051219][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.054279][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.057429][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.060309][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.063502][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.066410][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.069359][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.072262][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.075274][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.078203][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.081129][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.084189][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.087108][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.089990][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.092898][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.096044][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.098964][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.101953][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.104987][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.107927][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.110844][T10225] SELinux:  policydb string length -1929379832 does not match expected length 8
[  128.220183][T10234] No such timeout policy "syz0"
[  128.274582][T10236] loop2: detected capacity change from 0 to 7
[  128.281893][ T8116]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  128.283967][ T8116] loop2: partition table partially beyond EOD, truncated
[  128.286636][ T8116] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  128.296831][T10236]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  128.298578][T10236] loop2: partition table partially beyond EOD, truncated
[  128.301108][T10236] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  128.323651][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  128.335732][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  128.563412][    C3] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  128.586313][T10251] FAULT_INJECTION: forcing a failure.
[  128.586313][T10251] name failslab, interval 1, probability 0, space 0, times 0
[  128.590254][T10251] CPU: 0 UID: 0 PID: 10251 Comm: syz.0.1481 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  128.590270][T10251] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  128.590278][T10251] Call Trace:
[  128.590282][T10251]  <TASK>
[  128.590287][T10251]  dump_stack_lvl+0x16c/0x1f0
[  128.590306][T10251]  should_fail_ex+0x512/0x640
[  128.590323][T10251]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  128.590338][T10251]  should_failslab+0xc2/0x120
[  128.590352][T10251]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  128.590365][T10251]  ? vm_area_dup+0x23/0x700
[  128.590380][T10251]  vm_area_dup+0x23/0x700
[  128.590392][T10251]  copy_process+0x7f1b/0x9170
[  128.590415][T10251]  ? __pfx_copy_process+0x10/0x10
[  128.590439][T10251]  ? _copy_from_user+0x59/0xd0
[  128.590459][T10251]  kernel_clone+0xfc/0x960
[  128.590471][T10251]  ? get_pid_task+0xfc/0x250
[  128.590487][T10251]  ? __pfx_kernel_clone+0x10/0x10
[  128.590509][T10251]  __do_sys_clone3+0x212/0x290
[  128.590522][T10251]  ? __pfx___do_sys_clone3+0x10/0x10
[  128.590543][T10251]  ? __fget_files+0x20e/0x3c0
[  128.590570][T10251]  do_syscall_64+0xcd/0x4c0
[  128.590587][T10251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.590600][T10251] RIP: 0033:0x7f63fdd8e969
[  128.590609][T10251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.590621][T10251] RSP: 002b:00007f63febdef08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  128.590632][T10251] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f63fdd8e969
[  128.590639][T10251] RDX: 00007f63febdef20 RSI: 0000000000000058 RDI: 00007f63febdef20
[  128.590646][T10251] RBP: 00007f63febdf090 R08: 0000000000000000 R09: 0000000000000058
[  128.590653][T10251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  128.590659][T10251] R13: 0000000000000000 R14: 00007f63fdfb5fa0 R15: 00007ffca5de1c68
[  128.590673][T10251]  </TASK>
[  128.732203][T10260] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1483'.
[  129.144725][   T53] usb 8-1: USB disconnect, device number 19
[  129.184092][T10285] binder: 10284:10285 ioctl c00c6211 0 returned -14
[  129.552312][T10309] FAULT_INJECTION: forcing a failure.
[  129.552312][T10309] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  129.556842][T10309] CPU: 0 UID: 0 PID: 10309 Comm: syz.0.1499 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  129.556859][T10309] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  129.556866][T10309] Call Trace:
[  129.556871][T10309]  <TASK>
[  129.556876][T10309]  dump_stack_lvl+0x16c/0x1f0
[  129.556894][T10309]  should_fail_ex+0x512/0x640
[  129.556913][T10309]  should_fail_alloc_page+0xe7/0x130
[  129.556934][T10309]  prepare_alloc_pages+0x3c2/0x610
[  129.556953][T10309]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  129.556969][T10309]  ? __kasan_slab_alloc+0x89/0x90
[  129.556985][T10309]  ? lock_acquire+0x179/0x350
[  129.557001][T10309]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  129.557014][T10309]  ? find_held_lock+0x2b/0x80
[  129.557026][T10309]  ? page_table_check_set+0x627/0x750
[  129.557045][T10309]  ? __page_table_check_ptes_set+0x1ae/0x420
[  129.557059][T10309]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  129.557079][T10309]  ? policy_nodemask+0xea/0x4e0
[  129.557094][T10309]  alloc_pages_mpol+0x1fb/0x550
[  129.557110][T10309]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  129.557135][T10309]  alloc_pages_noprof+0x131/0x390
[  129.557154][T10309]  pte_alloc_one+0x19/0x380
[  129.557179][T10309]  __pte_alloc+0x6d/0x3c0
[  129.557195][T10309]  ? __pfx___pte_alloc+0x10/0x10
[  129.557209][T10309]  ? __pfx___might_resched+0x10/0x10
[  129.557222][T10309]  ? copy_page_range+0x14ca/0x5710
[  129.557235][T10309]  copy_page_range+0x1bb0/0x5710
[  129.557263][T10309]  ? __pfx_copy_page_range+0x10/0x10
[  129.557278][T10309]  ? __pfx___might_resched+0x10/0x10
[  129.557291][T10309]  ? __vma_enter_locked+0x163/0x3f0
[  129.557305][T10309]  ? copy_process+0x85b9/0x9170
[  129.557319][T10309]  ? down_write+0x14d/0x200
[  129.557336][T10309]  ? up_write+0x1b2/0x520
[  129.557354][T10309]  copy_process+0x8606/0x9170
[  129.557377][T10309]  ? __pfx_copy_process+0x10/0x10
[  129.557402][T10309]  ? _copy_from_user+0x59/0xd0
[  129.557421][T10309]  kernel_clone+0xfc/0x960
[  129.557434][T10309]  ? get_pid_task+0xfc/0x250
[  129.557451][T10309]  ? __pfx_kernel_clone+0x10/0x10
[  129.557472][T10309]  __do_sys_clone3+0x212/0x290
[  129.557486][T10309]  ? __pfx___do_sys_clone3+0x10/0x10
[  129.557507][T10309]  ? __fget_files+0x20e/0x3c0
[  129.557526][T10309]  ? fput+0x70/0xf0
[  129.557543][T10309]  do_syscall_64+0xcd/0x4c0
[  129.557558][T10309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.557570][T10309] RIP: 0033:0x7f63fdd8e969
[  129.557580][T10309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.557591][T10309] RSP: 002b:00007f63febdef08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  129.557602][T10309] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f63fdd8e969
[  129.557609][T10309] RDX: 00007f63febdef20 RSI: 0000000000000058 RDI: 00007f63febdef20
[  129.557616][T10309] RBP: 00007f63febdf090 R08: 0000000000000000 R09: 0000000000000058
[  129.557623][T10309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  129.557629][T10309] R13: 0000000000000000 R14: 00007f63fdfb5fa0 R15: 00007ffca5de1c68
[  129.557644][T10309]  </TASK>
[  129.599613][T10314] (unnamed net_device) (uninitialized): (slave bond_slave_1): Device is not our slave
[  129.603246][    C3] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  129.604414][T10314] (unnamed net_device) (uninitialized): option active_slave: invalid value (bond_slave_1)
[  129.750922][T10325] 9pnet_fd: Insufficient options for proto=fd
[  129.801093][T10331] netlink: 196 bytes leftover after parsing attributes in process `syz.3.1506'.
[  129.813338][ T6973] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  129.957044][T10333] veth1_macvtap: left promiscuous mode
[  129.959453][T10333] macsec0: entered promiscuous mode
[  129.961835][T10333] macsec0: entered allmulticast mode
[  129.965159][ T6973] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  129.968761][ T6973] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  129.970366][T10333] veth1_macvtap: entered promiscuous mode
[  129.973083][ T6973] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  129.975249][T10333] veth1_macvtap: entered allmulticast mode
[  129.976358][T10333] macsec0: left promiscuous mode
[  129.978895][ T6973] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  129.981017][T10333] macsec0: left allmulticast mode
[  129.984385][ T6973] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  129.987335][T10333] veth1_macvtap: left allmulticast mode
[  129.989293][ T6973] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  129.998562][ T6973] usb 7-1: Product: syz
[  130.000384][ T6973] usb 7-1: Manufacturer: syz
[  130.010780][ T6973] cdc_wdm 7-1:1.0: skipping garbage
[  130.013002][ T6973] cdc_wdm 7-1:1.0: skipping garbage
[  130.015590][ T6973] cdc_wdm 7-1:1.0: skipping garbage
[  130.017513][ T6973] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  130.144947][T10336] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1508'.
[  130.147878][T10336] nbd: must specify at least one socket
[  130.174519][T10338] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1509'.
[  130.177504][T10338] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1509'.
[  130.240152][T10346] syz.3.1511: attempt to access beyond end of device
[  130.240152][T10346] loop3: rw=0, sector=16, nr_sectors = 1 limit=0
[  130.244235][T10346] qnx6: unable to read the first superblock
[  130.247138][T10346] syz.3.1511: attempt to access beyond end of device
[  130.247138][T10346] loop3: rw=0, sector=0, nr_sectors = 1 limit=0
[  130.251039][T10346] qnx6: unable to read the first superblock
[  130.252960][T10346] qnx6: unable to read the first superblock
[  130.374837][T10368] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1515'.
[  130.486886][T10372] FAULT_INJECTION: forcing a failure.
[  130.486886][T10372] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  130.491118][T10372] CPU: 1 UID: 0 PID: 10372 Comm: syz.3.1517 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  130.491134][T10372] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  130.491141][T10372] Call Trace:
[  130.491146][T10372]  <TASK>
[  130.491151][T10372]  dump_stack_lvl+0x16c/0x1f0
[  130.491170][T10372]  should_fail_ex+0x512/0x640
[  130.491189][T10372]  should_fail_alloc_page+0xe7/0x130
[  130.491205][T10372]  prepare_alloc_pages+0x3c2/0x610
[  130.491224][T10372]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  130.491239][T10372]  ? __kasan_slab_alloc+0x89/0x90
[  130.491256][T10372]  ? lock_acquire+0x179/0x350
[  130.491272][T10372]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  130.491284][T10372]  ? find_held_lock+0x2b/0x80
[  130.491296][T10372]  ? page_table_check_set+0x627/0x750
[  130.491316][T10372]  ? __page_table_check_ptes_set+0x1ae/0x420
[  130.491329][T10372]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  130.491350][T10372]  ? policy_nodemask+0xea/0x4e0
[  130.491365][T10372]  alloc_pages_mpol+0x1fb/0x550
[  130.491382][T10372]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  130.491399][T10372]  alloc_pages_noprof+0x131/0x390
[  130.491414][T10372]  pte_alloc_one+0x19/0x380
[  130.491431][T10372]  __pte_alloc+0x6d/0x3c0
[  130.491446][T10372]  ? __pfx___pte_alloc+0x10/0x10
[  130.491459][T10372]  ? __pfx___might_resched+0x10/0x10
[  130.491472][T10372]  ? copy_page_range+0x14ca/0x5710
[  130.491485][T10372]  copy_page_range+0x1bb0/0x5710
[  130.491513][T10372]  ? __pfx_copy_page_range+0x10/0x10
[  130.491528][T10372]  ? __pfx___might_resched+0x10/0x10
[  130.491541][T10372]  ? __vma_enter_locked+0x163/0x3f0
[  130.491555][T10372]  ? copy_process+0x85b9/0x9170
[  130.491569][T10372]  ? down_write+0x14d/0x200
[  130.491586][T10372]  ? up_write+0x1b2/0x520
[  130.491604][T10372]  copy_process+0x8606/0x9170
[  130.491627][T10372]  ? __pfx_copy_process+0x10/0x10
[  130.491651][T10372]  ? _copy_from_user+0x59/0xd0
[  130.491676][T10372]  kernel_clone+0xfc/0x960
[  130.491688][T10372]  ? get_pid_task+0xfc/0x250
[  130.491704][T10372]  ? __pfx_kernel_clone+0x10/0x10
[  130.491726][T10372]  __do_sys_clone3+0x212/0x290
[  130.491739][T10372]  ? __pfx___do_sys_clone3+0x10/0x10
[  130.491760][T10372]  ? __fget_files+0x20e/0x3c0
[  130.491784][T10372]  do_syscall_64+0xcd/0x4c0
[  130.491799][T10372]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.491811][T10372] RIP: 0033:0x7f11f358e969
[  130.491821][T10372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.491832][T10372] RSP: 002b:00007f11f4327f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  130.491843][T10372] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f11f358e969
[  130.491850][T10372] RDX: 00007f11f4327f20 RSI: 0000000000000058 RDI: 00007f11f4327f20
[  130.491857][T10372] RBP: 00007f11f4328090 R08: 0000000000000000 R09: 0000000000000058
[  130.491863][T10372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  130.491870][T10372] R13: 0000000000000000 R14: 00007f11f37b5fa0 R15: 00007ffe01ad6f58
[  130.491884][T10372]  </TASK>
[  130.625235][T10381] openvswitch: netlink: Port 10289156 exceeds max allowable 65535
[  130.653242][    C3] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  130.711178][T10389] netlink: 'syz.0.1524': attribute type 1 has an invalid length.
[  130.717661][T10391] Cannot find del_set index 85 as target
[  130.755493][T10393] overlayfs: upper fs does not support file handles, falling back to index=off.
[  130.758598][T10393] overlayfs: NFS export requires "index=on", falling back to nfs_export=off.
[  130.761564][T10393] overlayfs: conflicting lowerdir path
[  130.772932][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  130.772947][   T40] audit: type=1400 audit(1748508331.923:840): avc:  denied  { mount } for  pid=10392 comm="syz.3.1526" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  130.787218][   T40] audit: type=1400 audit(1748508331.943:841): avc:  denied  { remount } for  pid=10392 comm="syz.3.1526" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  130.801627][T10397] loop2: detected capacity change from 0 to 7
[  130.809398][   T40] audit: type=1400 audit(1748508331.963:842): avc:  denied  { unmount } for  pid=5934 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  130.811078][T10397]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  130.817667][T10397] loop2: partition table partially beyond EOD, truncated
[  130.820240][T10397] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  130.847011][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  130.906344][T10406] unknown channel width for channel at 909000KHz?
[  130.909976][T10407] 9pnet_fd: Insufficient options for proto=fd
[  131.073307][   T53] usb 8-1: new high-speed USB device number 20 using dummy_hcd
[  131.166822][T10420] binder: 10419:10420 ioctl c0306201 200000000640 returned -22
[  131.212056][T10422] mkiss: ax0: crc mode is auto.
[  131.223237][   T53] usb 8-1: Using ep0 maxpacket: 8
[  131.226277][   T53] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  131.229228][   T53] usb 8-1: config 0 has no interface number 0
[  131.231244][   T53] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  131.234868][   T53] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  131.237937][   T53] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.241839][   T53] usb 8-1: config 0 descriptor??
[  131.262488][   T53] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  131.683416][    C3] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  131.740705][   T40] audit: type=1400 audit(1748508332.893:843): avc:  denied  { mount } for  pid=10449 comm="syz.0.1545" name="/" dev="ramfs" ino=31289 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  131.745051][T10450] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  131.750120][T10450] overlayfs: failed to set xattr on upper
[  131.751895][T10450] overlayfs: ...falling back to redirect_dir=nofollow.
[  131.751968][   T40] audit: type=1400 audit(1748508332.893:844): avc:  denied  { mounton } for  pid=10449 comm="syz.0.1545" path="/366/file0/bus" dev="ramfs" ino=31292 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[  131.754098][T10450] overlayfs: ...falling back to index=off.
[  131.754110][T10450] overlayfs: ...falling back to uuid=null.
[  131.844889][   T40] audit: type=1400 audit(1748508333.003:845): avc:  denied  { unmount } for  pid=5938 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  131.864250][   T40] audit: type=1400 audit(1748508333.023:846): avc:  denied  { read } for  pid=10457 comm="syz.1.1547" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  132.036106][T10470] __nla_validate_parse: 6 callbacks suppressed
[  132.036117][T10470] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1552'.
[  132.399825][T10489] FAULT_INJECTION: forcing a failure.
[  132.399825][T10489] name failslab, interval 1, probability 0, space 0, times 0
[  132.404616][T10489] CPU: 1 UID: 0 PID: 10489 Comm: syz.0.1557 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  132.404633][T10489] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  132.404640][T10489] Call Trace:
[  132.404644][T10489]  <TASK>
[  132.404663][T10489]  dump_stack_lvl+0x16c/0x1f0
[  132.404699][T10489]  should_fail_ex+0x512/0x640
[  132.404721][T10489]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  132.404736][T10489]  should_failslab+0xc2/0x120
[  132.404750][T10489]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  132.404763][T10489]  ? ptlock_alloc+0x1f/0x70
[  132.404775][T10489]  ptlock_alloc+0x1f/0x70
[  132.404785][T10489]  pte_alloc_one+0x6d/0x380
[  132.404803][T10489]  __pte_alloc+0x6d/0x3c0
[  132.404818][T10489]  ? __pfx___pte_alloc+0x10/0x10
[  132.404832][T10489]  ? __pfx___might_resched+0x10/0x10
[  132.404846][T10489]  ? copy_page_range+0x14ca/0x5710
[  132.404859][T10489]  copy_page_range+0x1bb0/0x5710
[  132.404887][T10489]  ? __pfx_copy_page_range+0x10/0x10
[  132.404903][T10489]  ? __pfx___might_resched+0x10/0x10
[  132.404915][T10489]  ? __vma_enter_locked+0x163/0x3f0
[  132.404930][T10489]  ? copy_process+0x85b9/0x9170
[  132.404943][T10489]  ? down_write+0x14d/0x200
[  132.404960][T10489]  ? up_write+0x1b2/0x520
[  132.404979][T10489]  copy_process+0x8606/0x9170
[  132.405002][T10489]  ? __pfx_copy_process+0x10/0x10
[  132.405026][T10489]  ? _copy_from_user+0x59/0xd0
[  132.405045][T10489]  kernel_clone+0xfc/0x960
[  132.405058][T10489]  ? get_pid_task+0xfc/0x250
[  132.405074][T10489]  ? __pfx_kernel_clone+0x10/0x10
[  132.405096][T10489]  __do_sys_clone3+0x212/0x290
[  132.405109][T10489]  ? __pfx___do_sys_clone3+0x10/0x10
[  132.405130][T10489]  ? __fget_files+0x20e/0x3c0
[  132.405150][T10489]  ? fput+0x70/0xf0
[  132.405166][T10489]  do_syscall_64+0xcd/0x4c0
[  132.405182][T10489]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.405194][T10489] RIP: 0033:0x7f63fdd8e969
[  132.405203][T10489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.405215][T10489] RSP: 002b:00007f63febdef08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  132.405226][T10489] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f63fdd8e969
[  132.405234][T10489] RDX: 00007f63febdef20 RSI: 0000000000000058 RDI: 00007f63febdef20
[  132.405241][T10489] RBP: 00007f63febdf090 R08: 0000000000000000 R09: 0000000000000058
[  132.405248][T10489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  132.405255][T10489] R13: 0000000000000000 R14: 00007f63fdfb5fa0 R15: 00007ffca5de1c68
[  132.405269][T10489]  </TASK>
[  132.565599][ T5978] usb 7-1: USB disconnect, device number 14
[  132.568566][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  132.570599][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  132.616785][T10495] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1559'.
[  132.723245][    C3] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  132.736303][ T5298] Bluetooth: hci2: SCO packet for unknown connection handle 201
[  132.743761][T10505] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1562'.
[  132.774744][   T40] audit: type=1400 audit(1748508333.933:847): avc:  denied  { getattr } for  pid=10506 comm="syz.1.1563" name="/" dev="9p" ino=35913881 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  132.776271][T10507] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  132.801677][   T40] audit: type=1400 audit(1748508333.953:848): avc:  denied  { read write } for  pid=10506 comm="syz.1.1563" name="file0" dev="overlay" ino=35913882 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  132.811210][   T40] audit: type=1400 audit(1748508333.953:849): avc:  denied  { open } for  pid=10506 comm="syz.1.1563" path="/422/bus/file0" dev="overlay" ino=35913882 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  132.843728][   T53] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  132.893504][T10517] netlink: 116 bytes leftover after parsing attributes in process `syz.1.1566'.
[  132.896043][T10519] ufs: You didn't specify the type of your ufs filesystem
[  132.896043][T10519] 
[  132.896043][T10519] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  132.896043][T10519] 
[  132.896043][T10519] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  132.897266][T10517] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1566'.
[  132.907197][T10519] ufs: ufstype=old is supported read-only
[  132.909024][T10517] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1566'.
[  132.911983][T10519] ufs: ufs_fill_super(): bad magic number
[  132.917759][T10517] netlink: 220 bytes leftover after parsing attributes in process `syz.1.1566'.
[  132.926873][T10519] bridge3: entered allmulticast mode
[  132.994734][   T53] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  132.997497][   T53] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  133.000828][   T53] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  133.003759][   T53] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  133.010070][   T53] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  133.013374][   T53] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  133.015949][   T53] usb 5-1: Product: syz
[  133.017409][   T53] usb 5-1: Manufacturer: syz
[  133.027551][   T53] cdc_wdm 5-1:1.0: skipping garbage
[  133.029291][   T53] cdc_wdm 5-1:1.0: skipping garbage
[  133.031010][   T53] cdc_wdm 5-1:1.0: skipping garbage
[  133.032727][   T53] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[  133.040943][T10529] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1573'.
[  133.120482][T10537] loop2: detected capacity change from 0 to 7
[  133.127725][T10537]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  133.129493][T10537] loop2: partition table partially beyond EOD, truncated
[  133.131765][T10537] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  133.157762][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  133.213946][T10539] sp0: Synchronizing with TNC
[  133.334039][ T6973] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  133.483786][ T6973] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  133.487583][ T6973] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  133.490382][ T6973] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  133.494040][ T6973] usb 6-1: config 0 interface 0 has no altsetting 0
[  133.496992][ T6973] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  133.499763][ T6973] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  133.504205][ T6973] usb 6-1: config 0 interface 0 has no altsetting 0
[  133.507112][ T6973] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  133.509874][ T6973] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  133.513254][ T6973] usb 6-1: config 0 interface 0 has no altsetting 0
[  133.516220][ T6973] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  133.519139][ T6973] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  133.522542][ T6973] usb 6-1: config 0 interface 0 has no altsetting 0
[  133.526503][ T6973] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  133.529326][ T6973] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  133.531167][T10557] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1582'.
[  133.532692][ T6973] usb 6-1: config 0 interface 0 has no altsetting 0
[  133.533893][ T6973] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  133.540537][ T6973] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  133.544008][ T6973] usb 6-1: config 0 interface 0 has no altsetting 0
[  133.546832][ T6973] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  133.549608][ T6973] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  133.553011][ T6973] usb 6-1: config 0 interface 0 has no altsetting 0
[  133.555899][ T6973] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  133.558633][ T6973] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  133.561926][ T6973] usb 6-1: config 0 interface 0 has no altsetting 0
[  133.565451][ T6973] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  133.568246][ T6973] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  133.570844][ T6973] usb 6-1: Product: syz
[  133.572077][ T6973] usb 6-1: Manufacturer: syz
[  133.573581][ T6973] usb 6-1: SerialNumber: syz
[  133.576751][ T6973] usb 6-1: config 0 descriptor??
[  133.581977][ T6973] yurex 6-1:0.0: USB YUREX device now attached to Yurex #1
[  133.763311][    C3] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  133.786658][ T6973] usb 6-1: USB disconnect, device number 11
[  133.791170][ T6973] yurex 6-1:0.0: USB YUREX #1 now disconnected
[  133.813950][T10573] PKCS7: Unknown OID: [4] 5.25.43183(bad)
[  133.816011][T10573] PKCS7: Only support pkcs7_signedData type
[  133.851452][   T53] usb 8-1: USB disconnect, device number 20
[  134.120063][T10586] netlink: 'syz.3.1591': attribute type 2 has an invalid length.
[  134.158694][T10589] fuse: Bad value for 'fd'
[  134.161469][T10589] 9pnet_fd: Insufficient options for proto=fd
[  134.228956][T10592] sp0: Synchronizing with TNC
[  134.347780][T10602] FAULT_INJECTION: forcing a failure.
[  134.347780][T10602] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  134.349330][    C1] vcan0: j1939_tp_rxtimer: 0xffff888029c6d800: rx timeout, send abort
[  134.352476][T10602] CPU: 2 UID: 0 PID: 10602 Comm: syz.2.1595 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  134.352492][T10602] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.352500][T10602] Call Trace:
[  134.352504][T10602]  <TASK>
[  134.352509][T10602]  dump_stack_lvl+0x16c/0x1f0
[  134.352527][T10602]  should_fail_ex+0x512/0x640
[  134.352546][T10602]  should_fail_alloc_page+0xe7/0x130
[  134.352562][T10602]  prepare_alloc_pages+0x3c2/0x610
[  134.352582][T10602]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  134.352597][T10602]  ? __kasan_slab_alloc+0x89/0x90
[  134.352614][T10602]  ? lock_acquire+0x179/0x350
[  134.352630][T10602]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  134.352643][T10602]  ? find_held_lock+0x2b/0x80
[  134.352654][T10602]  ? page_table_check_set+0x627/0x750
[  134.352672][T10602]  ? look_up_lock_class+0x59/0x150
[  134.352688][T10602]  ? register_lock_class+0x41/0x4c0
[  134.352704][T10602]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  134.352724][T10602]  ? policy_nodemask+0xea/0x4e0
[  134.352739][T10602]  alloc_pages_mpol+0x1fb/0x550
[  134.352754][T10602]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  134.352772][T10602]  alloc_pages_noprof+0x131/0x390
[  134.352786][T10602]  pte_alloc_one+0x19/0x380
[  134.352804][T10602]  __pte_alloc+0x6d/0x3c0
[  134.352819][T10602]  ? __pfx___pte_alloc+0x10/0x10
[  134.352833][T10602]  ? __pfx___might_resched+0x10/0x10
[  134.352847][T10602]  ? copy_page_range+0x14ca/0x5710
[  134.352859][T10602]  copy_page_range+0x1bb0/0x5710
[  134.352887][T10602]  ? __pfx_copy_page_range+0x10/0x10
[  134.352903][T10602]  ? __pfx___might_resched+0x10/0x10
[  134.352916][T10602]  ? __vma_enter_locked+0x163/0x3f0
[  134.352936][T10602]  ? copy_process+0x85b9/0x9170
[  134.352949][T10602]  ? down_write+0x14d/0x200
[  134.352966][T10602]  ? up_write+0x1b2/0x520
[  134.352984][T10602]  copy_process+0x8606/0x9170
[  134.353007][T10602]  ? __pfx_copy_process+0x10/0x10
[  134.353031][T10602]  ? _copy_from_user+0x59/0xd0
[  134.353050][T10602]  kernel_clone+0xfc/0x960
[  134.353063][T10602]  ? get_pid_task+0xfc/0x250
[  134.353079][T10602]  ? __pfx_kernel_clone+0x10/0x10
[  134.353100][T10602]  __do_sys_clone3+0x212/0x290
[  134.353114][T10602]  ? __pfx___do_sys_clone3+0x10/0x10
[  134.353154][T10602]  ? __fget_files+0x20e/0x3c0
[  134.353188][T10602]  ? fput+0x70/0xf0
[  134.353216][T10602]  do_syscall_64+0xcd/0x4c0
[  134.353241][T10602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.353260][T10602] RIP: 0033:0x7f92e158e969
[  134.353276][T10602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.353294][T10602] RSP: 002b:00007f92e23f8f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  134.353311][T10602] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f92e158e969
[  134.353322][T10602] RDX: 00007f92e23f8f20 RSI: 0000000000000058 RDI: 00007f92e23f8f20
[  134.353334][T10602] RBP: 00007f92e23f9090 R08: 0000000000000000 R09: 0000000000000058
[  134.353345][T10602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  134.353355][T10602] R13: 0000000000000000 R14: 00007f92e17b5fa0 R15: 00007fffbf214e48
[  134.353381][T10602]  </TASK>
[  134.485267][T10613] 9pnet_fd: Insufficient options for proto=fd
[  134.694446][    T9] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  134.802159][T10626] FAULT_INJECTION: forcing a failure.
[  134.802159][T10626] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  134.803255][    C3] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  134.807389][T10626] CPU: 1 UID: 0 PID: 10626 Comm: syz.1.1607 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  134.807406][T10626] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.807414][T10626] Call Trace:
[  134.807419][T10626]  <TASK>
[  134.807423][T10626]  dump_stack_lvl+0x16c/0x1f0
[  134.807442][T10626]  should_fail_ex+0x512/0x640
[  134.807463][T10626]  should_fail_alloc_page+0xe7/0x130
[  134.807479][T10626]  prepare_alloc_pages+0x3c2/0x610
[  134.807500][T10626]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  134.807516][T10626]  ? __kasan_slab_alloc+0x89/0x90
[  134.807533][T10626]  ? lock_acquire+0x179/0x350
[  134.807551][T10626]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  134.807564][T10626]  ? find_held_lock+0x2b/0x80
[  134.807576][T10626]  ? page_table_check_set+0x627/0x750
[  134.807597][T10626]  ? __page_table_check_ptes_set+0x1ae/0x420
[  134.807611][T10626]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  134.807633][T10626]  ? policy_nodemask+0xea/0x4e0
[  134.807648][T10626]  alloc_pages_mpol+0x1fb/0x550
[  134.807669][T10626]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  134.807688][T10626]  alloc_pages_noprof+0x131/0x390
[  134.807718][T10626]  pte_alloc_one+0x19/0x380
[  134.807736][T10626]  __pte_alloc+0x6d/0x3c0
[  134.807752][T10626]  ? __pfx___pte_alloc+0x10/0x10
[  134.807766][T10626]  ? __pfx___might_resched+0x10/0x10
[  134.807780][T10626]  ? copy_page_range+0x14ca/0x5710
[  134.807794][T10626]  copy_page_range+0x1bb0/0x5710
[  134.807824][T10626]  ? __pfx_copy_page_range+0x10/0x10
[  134.807841][T10626]  ? __pfx___might_resched+0x10/0x10
[  134.807855][T10626]  ? __vma_enter_locked+0x163/0x3f0
[  134.807870][T10626]  ? copy_process+0x85b9/0x9170
[  134.807884][T10626]  ? down_write+0x14d/0x200
[  134.807902][T10626]  ? up_write+0x1b2/0x520
[  134.807922][T10626]  copy_process+0x8606/0x9170
[  134.807946][T10626]  ? __pfx_copy_process+0x10/0x10
[  134.807970][T10626]  ? _copy_from_user+0x59/0xd0
[  134.807990][T10626]  kernel_clone+0xfc/0x960
[  134.808002][T10626]  ? get_pid_task+0xfc/0x250
[  134.808019][T10626]  ? __pfx_kernel_clone+0x10/0x10
[  134.808040][T10626]  __do_sys_clone3+0x212/0x290
[  134.808054][T10626]  ? __pfx___do_sys_clone3+0x10/0x10
[  134.808075][T10626]  ? __fget_files+0x20e/0x3c0
[  134.808095][T10626]  ? fput+0x70/0xf0
[  134.808112][T10626]  do_syscall_64+0xcd/0x4c0
[  134.808127][T10626]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.808139][T10626] RIP: 0033:0x7f8b22f8e969
[  134.808149][T10626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.808160][T10626] RSP: 002b:00007f8b23e03f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  134.808171][T10626] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f8b22f8e969
[  134.808179][T10626] RDX: 00007f8b23e03f20 RSI: 0000000000000058 RDI: 00007f8b23e03f20
[  134.808185][T10626] RBP: 00007f8b23e04090 R08: 0000000000000000 R09: 0000000000000058
[  134.808193][T10626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  134.808199][T10626] R13: 0000000000000000 R14: 00007f8b231b5fa0 R15: 00007fff635ffb88
[  134.808214][T10626]  </TASK>
[  134.849667][    C1] vcan0: j1939_tp_rxtimer: 0xffff888029c6c400: rx timeout, send abort
[  134.863322][    T9] usb 7-1: Using ep0 maxpacket: 32
[  134.907730][T10632] 9pnet_fd: Insufficient options for proto=fd
[  134.910969][    T9] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  134.935983][    T9] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  134.939803][    T9] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  134.943651][    T9] usb 7-1: Product: syz
[  134.945458][    T9] usb 7-1: Manufacturer: syz
[  134.947416][    T9] usb 7-1: SerialNumber: syz
[  134.956079][    T9] usb 7-1: config 0 descriptor??
[  134.958158][T10611] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  134.978563][    C1] vcan0: j1939_tp_rxtimer: 0xffff888029c6d800: abort rx timeout. Force session deactivation
[  135.087791][T10648] FAULT_INJECTION: forcing a failure.
[  135.087791][T10648] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  135.092316][T10648] CPU: 2 UID: 0 PID: 10648 Comm: syz.3.1616 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  135.092333][T10648] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  135.092340][T10648] Call Trace:
[  135.092345][T10648]  <TASK>
[  135.092349][T10648]  dump_stack_lvl+0x16c/0x1f0
[  135.092367][T10648]  should_fail_ex+0x512/0x640
[  135.092386][T10648]  should_fail_alloc_page+0xe7/0x130
[  135.092401][T10648]  prepare_alloc_pages+0x3c2/0x610
[  135.092434][T10648]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  135.092468][T10648]  ? __kasan_slab_alloc+0x89/0x90
[  135.092485][T10648]  ? lock_acquire+0x179/0x350
[  135.092502][T10648]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  135.092514][T10648]  ? find_held_lock+0x2b/0x80
[  135.092526][T10648]  ? page_table_check_set+0x627/0x750
[  135.092545][T10648]  ? __page_table_check_ptes_set+0x1ae/0x420
[  135.092558][T10648]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  135.092579][T10648]  ? policy_nodemask+0xea/0x4e0
[  135.092594][T10648]  alloc_pages_mpol+0x1fb/0x550
[  135.092609][T10648]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  135.092626][T10648]  alloc_pages_noprof+0x131/0x390
[  135.092641][T10648]  pte_alloc_one+0x19/0x380
[  135.092658][T10648]  __pte_alloc+0x6d/0x3c0
[  135.092673][T10648]  ? __pfx___pte_alloc+0x10/0x10
[  135.092686][T10648]  ? __pfx___might_resched+0x10/0x10
[  135.092699][T10648]  ? copy_page_range+0x14ca/0x5710
[  135.092712][T10648]  copy_page_range+0x1bb0/0x5710
[  135.092741][T10648]  ? __pfx_copy_page_range+0x10/0x10
[  135.092757][T10648]  ? __pfx___might_resched+0x10/0x10
[  135.092770][T10648]  ? __vma_enter_locked+0x163/0x3f0
[  135.092784][T10648]  ? copy_process+0x85b9/0x9170
[  135.092798][T10648]  ? down_write+0x14d/0x200
[  135.092815][T10648]  ? up_write+0x1b2/0x520
[  135.092833][T10648]  copy_process+0x8606/0x9170
[  135.092857][T10648]  ? __pfx_copy_process+0x10/0x10
[  135.092881][T10648]  ? _copy_from_user+0x59/0xd0
[  135.092900][T10648]  kernel_clone+0xfc/0x960
[  135.092913][T10648]  ? get_pid_task+0xfc/0x250
[  135.092929][T10648]  ? __pfx_kernel_clone+0x10/0x10
[  135.092951][T10648]  __do_sys_clone3+0x212/0x290
[  135.092964][T10648]  ? __pfx___do_sys_clone3+0x10/0x10
[  135.092989][T10648]  ? __fget_files+0x20e/0x3c0
[  135.093010][T10648]  ? fput+0x70/0xf0
[  135.093026][T10648]  do_syscall_64+0xcd/0x4c0
[  135.093042][T10648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.093054][T10648] RIP: 0033:0x7f11f358e969
[  135.093063][T10648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.093074][T10648] RSP: 002b:00007f11f4327f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  135.093085][T10648] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f11f358e969
[  135.093093][T10648] RDX: 00007f11f4327f20 RSI: 0000000000000058 RDI: 00007f11f4327f20
[  135.093099][T10648] RBP: 00007f11f4328090 R08: 0000000000000000 R09: 0000000000000058
[  135.093106][T10648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  135.093113][T10648] R13: 0000000000000000 R14: 00007f11f37b5fa0 R15: 00007ffe01ad6f58
[  135.093127][T10648]  </TASK>
[  135.162053][ T1459] usb 7-1: USB disconnect, device number 15
[  135.364265][    C1] vcan0: j1939_tp_rxtimer: 0xffff888029c6c400: abort rx timeout. Force session deactivation
[  135.378372][T10664] sp0: Synchronizing with TNC
[  135.378897][T10668] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1622'.
[  135.613445][ T6973] usb 5-1: USB disconnect, device number 17
[  135.634032][T10685] netlink: 'syz.0.1626': attribute type 21 has an invalid length.
[  135.636517][T10685] netlink: 'syz.0.1626': attribute type 6 has an invalid length.
[  135.640496][T10685] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  135.643460][T10685] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  135.652603][T10687] syz.3.1627: attempt to access beyond end of device
[  135.652603][T10687] loop3: rw=0, sector=16, nr_sectors = 1 limit=0
[  135.658177][T10687] qnx6: unable to read the first superblock
[  135.660368][T10687] syz.3.1627: attempt to access beyond end of device
[  135.660368][T10687] loop3: rw=0, sector=0, nr_sectors = 1 limit=0
[  135.665986][T10687] qnx6: unable to read the first superblock
[  135.668195][T10687] qnx6: unable to read the first superblock
[  135.674510][T10687] syz.3.1627: attempt to access beyond end of device
[  135.674510][T10687] loop3: rw=0, sector=16, nr_sectors = 1 limit=0
[  135.679278][T10687] qnx6: unable to read the first superblock
[  135.681247][T10687] syz.3.1627: attempt to access beyond end of device
[  135.681247][T10687] loop3: rw=0, sector=0, nr_sectors = 1 limit=0
[  135.686933][T10687] qnx6: unable to read the first superblock
[  135.688837][T10687] qnx6: unable to read the first superblock
[  135.697991][T10690] loop2: detected capacity change from 0 to 7
[  135.706215][T10690]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  135.708268][T10690] loop2: partition table partially beyond EOD, truncated
[  135.711553][T10690] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  135.744140][T10692] 9pnet_fd: Insufficient options for proto=fd
[  135.747463][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  135.804211][T10697] mkiss: ax0: crc mode is auto.
[  135.843222][    C3] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  135.864762][T10703] gretap0: entered promiscuous mode
[  135.867168][T10703] macsec1: entered promiscuous mode
[  135.869484][T10703] macsec1: entered allmulticast mode
[  135.871565][T10703] gretap0: entered allmulticast mode
[  135.876572][T10703] gretap0: left allmulticast mode
[  135.878329][T10703] gretap0: left promiscuous mode
[  135.978801][   T40] kauditd_printk_skb: 18 callbacks suppressed
[  135.978817][   T40] audit: type=1400 audit(1748508337.133:868): avc:  denied  { ioctl } for  pid=10706 comm="syz.3.1635" path="/dev/fuse" dev="devtmpfs" ino=105 ioctlcmd=0xe502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  136.117420][T10720] loop2: detected capacity change from 0 to 7
[  136.125507][ T8116]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  136.127749][ T8116] loop2: partition table partially beyond EOD, truncated
[  136.131741][ T8116] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  136.147717][T10720]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  136.149426][T10720] loop2: partition table partially beyond EOD, truncated
[  136.151774][T10720] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  136.165040][    T9] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  136.173299][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  136.184332][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  136.217804][T10724] 9pnet_fd: Insufficient options for proto=fd
[  136.334869][    T9] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  136.337605][    T9] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  136.340944][    T9] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  136.344130][    T9] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  136.351379][    T9] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  136.354429][    T9] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  136.356926][    T9] usb 7-1: Product: syz
[  136.358233][    T9] usb 7-1: Manufacturer: syz
[  136.365901][    T9] cdc_wdm 7-1:1.0: skipping garbage
[  136.367572][    T9] cdc_wdm 7-1:1.0: skipping garbage
[  136.369230][    T9] cdc_wdm 7-1:1.0: skipping garbage
[  136.370887][    T9] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  136.391482][T10736] FAULT_INJECTION: forcing a failure.
[  136.391482][T10736] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  136.395784][T10736] CPU: 0 UID: 0 PID: 10736 Comm: syz.3.1647 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  136.395799][T10736] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  136.395806][T10736] Call Trace:
[  136.395822][T10736]  <TASK>
[  136.395827][T10736]  dump_stack_lvl+0x16c/0x1f0
[  136.395846][T10736]  should_fail_ex+0x512/0x640
[  136.395865][T10736]  should_fail_alloc_page+0xe7/0x130
[  136.395882][T10736]  prepare_alloc_pages+0x3c2/0x610
[  136.395901][T10736]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  136.395920][T10736]  ? __kasan_slab_alloc+0x89/0x90
[  136.395937][T10736]  ? lock_acquire+0x179/0x350
[  136.395953][T10736]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  136.395965][T10736]  ? find_held_lock+0x2b/0x80
[  136.395977][T10736]  ? page_table_check_set+0x627/0x750
[  136.395996][T10736]  ? __page_table_check_ptes_set+0x1ae/0x420
[  136.396016][T10736]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  136.396036][T10736]  ? policy_nodemask+0xea/0x4e0
[  136.396051][T10736]  alloc_pages_mpol+0x1fb/0x550
[  136.396065][T10736]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  136.396083][T10736]  alloc_pages_noprof+0x131/0x390
[  136.396097][T10736]  pte_alloc_one+0x19/0x380
[  136.396115][T10736]  __pte_alloc+0x6d/0x3c0
[  136.396130][T10736]  ? __pfx___pte_alloc+0x10/0x10
[  136.396143][T10736]  ? __pfx___might_resched+0x10/0x10
[  136.396156][T10736]  ? copy_page_range+0x14ca/0x5710
[  136.396169][T10736]  copy_page_range+0x1bb0/0x5710
[  136.396198][T10736]  ? __pfx_copy_page_range+0x10/0x10
[  136.396214][T10736]  ? __pfx___might_resched+0x10/0x10
[  136.396227][T10736]  ? __vma_enter_locked+0x163/0x3f0
[  136.396241][T10736]  ? copy_process+0x85b9/0x9170
[  136.396254][T10736]  ? down_write+0x14d/0x200
[  136.396271][T10736]  ? up_write+0x1b2/0x520
[  136.396290][T10736]  copy_process+0x8606/0x9170
[  136.396313][T10736]  ? __pfx_copy_process+0x10/0x10
[  136.396338][T10736]  ? _copy_from_user+0x59/0xd0
[  136.396357][T10736]  kernel_clone+0xfc/0x960
[  136.396370][T10736]  ? get_pid_task+0xfc/0x250
[  136.396386][T10736]  ? __pfx_kernel_clone+0x10/0x10
[  136.396408][T10736]  __do_sys_clone3+0x212/0x290
[  136.396421][T10736]  ? __pfx___do_sys_clone3+0x10/0x10
[  136.396462][T10736]  ? __fget_files+0x20e/0x3c0
[  136.396487][T10736]  do_syscall_64+0xcd/0x4c0
[  136.396502][T10736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.396514][T10736] RIP: 0033:0x7f11f358e969
[  136.396523][T10736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.396534][T10736] RSP: 002b:00007f11f4327f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  136.396545][T10736] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f11f358e969
[  136.396552][T10736] RDX: 00007f11f4327f20 RSI: 0000000000000058 RDI: 00007f11f4327f20
[  136.396559][T10736] RBP: 00007f11f4328090 R08: 0000000000000000 R09: 0000000000000058
[  136.396565][T10736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  136.396572][T10736] R13: 0000000000000000 R14: 00007f11f37b5fa0 R15: 00007ffe01ad6f58
[  136.396586][T10736]  </TASK>
[  136.419173][T10742] hub 4-0:1.0: USB hub found
[  136.440549][T10746] loop2: detected capacity change from 0 to 7
[  136.442361][T10742] hub 4-0:1.0: 2 ports detected
[  136.447514][T10746]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  136.463390][   T40] audit: type=1400 audit(1748508337.613:869): avc:  denied  { read } for  pid=10738 comm="syz.1.1646" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  136.464485][T10746] loop2: partition table partially beyond EOD, truncated
[  136.530468][T10746] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  136.576750][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  136.581209][T10760] No control pipe specified
[  136.589603][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  136.628051][T10769] FAULT_INJECTION: forcing a failure.
[  136.628051][T10769] name failslab, interval 1, probability 0, space 0, times 0
[  136.631996][T10769] CPU: 1 UID: 0 PID: 10769 Comm: syz.1.1658 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  136.632012][T10769] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  136.632019][T10769] Call Trace:
[  136.632023][T10769]  <TASK>
[  136.632028][T10769]  dump_stack_lvl+0x16c/0x1f0
[  136.632046][T10769]  should_fail_ex+0x512/0x640
[  136.632063][T10769]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  136.632079][T10769]  should_failslab+0xc2/0x120
[  136.632093][T10769]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  136.632106][T10769]  ? ptlock_alloc+0x1f/0x70
[  136.632119][T10769]  ptlock_alloc+0x1f/0x70
[  136.632129][T10769]  pte_alloc_one+0x6d/0x380
[  136.632147][T10769]  __pte_alloc+0x6d/0x3c0
[  136.632161][T10769]  ? __pfx___pte_alloc+0x10/0x10
[  136.632175][T10769]  ? __pfx___might_resched+0x10/0x10
[  136.632189][T10769]  ? copy_page_range+0x14ca/0x5710
[  136.632201][T10769]  copy_page_range+0x1bb0/0x5710
[  136.632229][T10769]  ? __pfx_copy_page_range+0x10/0x10
[  136.632245][T10769]  ? __pfx___might_resched+0x10/0x10
[  136.632257][T10769]  ? __vma_enter_locked+0x163/0x3f0
[  136.632272][T10769]  ? copy_process+0x85b9/0x9170
[  136.632285][T10769]  ? down_write+0x14d/0x200
[  136.632302][T10769]  ? up_write+0x1b2/0x520
[  136.632321][T10769]  copy_process+0x8606/0x9170
[  136.632344][T10769]  ? __pfx_copy_process+0x10/0x10
[  136.632368][T10769]  ? _copy_from_user+0x59/0xd0
[  136.632386][T10769]  kernel_clone+0xfc/0x960
[  136.632399][T10769]  ? get_pid_task+0xfc/0x250
[  136.632415][T10769]  ? __pfx_kernel_clone+0x10/0x10
[  136.632454][T10769]  __do_sys_clone3+0x212/0x290
[  136.632469][T10769]  ? __pfx___do_sys_clone3+0x10/0x10
[  136.632489][T10769]  ? __fget_files+0x20e/0x3c0
[  136.632513][T10769]  do_syscall_64+0xcd/0x4c0
[  136.632529][T10769]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.632540][T10769] RIP: 0033:0x7f8b22f8e969
[  136.632550][T10769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.632560][T10769] RSP: 002b:00007f8b23e03f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  136.632571][T10769] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f8b22f8e969
[  136.632578][T10769] RDX: 00007f8b23e03f20 RSI: 0000000000000058 RDI: 00007f8b23e03f20
[  136.632585][T10769] RBP: 00007f8b23e04090 R08: 0000000000000000 R09: 0000000000000058
[  136.632591][T10769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  136.632598][T10769] R13: 0000000000000000 R14: 00007f8b231b5fa0 R15: 00007fff635ffb88
[  136.632612][T10769]  </TASK>
[  136.673268][T10764] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  136.792955][T10785] loop2: detected capacity change from 0 to 7
[  136.799971][T10785]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  136.802072][T10785] loop2: partition table partially beyond EOD, truncated
[  136.805298][T10785] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  136.816635][ T5348]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  136.818820][ T5348] loop2: partition table partially beyond EOD, truncated
[  136.821756][ T5348] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  136.823643][T10787] netfs: Couldn't get user pages (rc=-14)
[  136.841300][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  136.843207][   T40] audit: type=1400 audit(1748508337.993:870): avc:  denied  { lock } for  pid=10786 comm="syz.3.1664" path="/432/file0/file1" dev="9p" ino=35913892 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  136.855202][   T40] audit: type=1400 audit(1748508337.993:871): avc:  denied  { write } for  pid=10786 comm="syz.3.1664" name="file1" dev="9p" ino=35913892 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  136.856774][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  136.864197][   T40] audit: type=1400 audit(1748508337.993:872): avc:  denied  { setattr } for  pid=10786 comm="syz.3.1664" name="file1" dev="9p" ino=35913892 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  136.874175][   T40] audit: type=1400 audit(1748508337.993:873): avc:  denied  { ioctl } for  pid=10786 comm="syz.3.1664" path="/432/file0/file1" dev="9p" ino=35913892 ioctlcmd=0xae9b scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  136.883207][    C3] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  137.923281][    C3] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  137.961673][   T40] audit: type=1400 audit(1748508339.113:874): avc:  denied  { write } for  pid=10811 comm="syz.0.1669" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  138.001802][T10817] binder: 10815:10817 ioctl 400c620e 200000001580 returned -22
[  138.009500][T10816] __nla_validate_parse: 4 callbacks suppressed
[  138.009510][T10816] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1670'.
[  138.038995][T10816] netlink: 'syz.0.1670': attribute type 4 has an invalid length.
[  138.042972][T10816] netlink: 'syz.0.1670': attribute type 4 has an invalid length.
[  138.044089][T10825] 9pnet_fd: Insufficient options for proto=fd
[  138.073028][T10823] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1673'.
[  138.147918][   T40] audit: type=1400 audit(1748508339.303:875): avc:  denied  { setopt } for  pid=10836 comm="syz.0.1677" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  138.153330][T10841] IPVS: sync thread started: state = BACKUP, mcast_ifn = wlan1, syncid = 5, id = 0
[  138.156486][   T40] audit: type=1400 audit(1748508339.303:876): avc:  denied  { accept } for  pid=10836 comm="syz.0.1677" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  138.176057][   T40] audit: type=1400 audit(1748508339.333:877): avc:  denied  { ioctl } for  pid=10842 comm="syz.1.1678" path="socket:[33626]" dev="sockfs" ino=33626 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  138.255613][T10855] 9pnet_fd: Insufficient options for proto=fd
[  138.322242][T10864] netlink: 'syz.1.1687': attribute type 21 has an invalid length.
[  138.328934][T10864] netlink: 'syz.1.1687': attribute type 6 has an invalid length.
[  138.332063][T10864] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1687'.
[  138.336983][T10864] openvswitch: netlink: Unknown key attributes 2
[  138.381375][T10869] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  138.426862][T10875] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1689'.
[  138.430546][T10875] netem: unknown loss type 13
[  138.432668][T10875] netem: change failed
[  138.486315][T10885] FAULT_INJECTION: forcing a failure.
[  138.486315][T10885] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  138.491463][T10885] CPU: 3 UID: 0 PID: 10885 Comm: syz.0.1694 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  138.491482][T10885] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  138.491492][T10885] Call Trace:
[  138.491499][T10885]  <TASK>
[  138.491506][T10885]  dump_stack_lvl+0x16c/0x1f0
[  138.491532][T10885]  should_fail_ex+0x512/0x640
[  138.491559][T10885]  should_fail_alloc_page+0xe7/0x130
[  138.491579][T10885]  prepare_alloc_pages+0x3c2/0x610
[  138.491608][T10885]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  138.491637][T10885]  ? __kasan_slab_alloc+0x89/0x90
[  138.491662][T10885]  ? lock_acquire+0x179/0x350
[  138.491681][T10885]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  138.491699][T10885]  ? find_held_lock+0x2b/0x80
[  138.491718][T10885]  ? page_table_check_set+0x627/0x750
[  138.491748][T10885]  ? __page_table_check_ptes_set+0x1ae/0x420
[  138.491768][T10885]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  138.491794][T10885]  ? policy_nodemask+0xea/0x4e0
[  138.491815][T10885]  alloc_pages_mpol+0x1fb/0x550
[  138.491837][T10885]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  138.491864][T10885]  alloc_pages_noprof+0x131/0x390
[  138.491882][T10885]  pte_alloc_one+0x19/0x380
[  138.491899][T10885]  __pte_alloc+0x6d/0x3c0
[  138.491913][T10885]  ? __pfx___pte_alloc+0x10/0x10
[  138.491927][T10885]  ? __pfx___might_resched+0x10/0x10
[  138.491940][T10885]  ? copy_page_range+0x14ca/0x5710
[  138.491952][T10885]  copy_page_range+0x1bb0/0x5710
[  138.491981][T10885]  ? __pfx_copy_page_range+0x10/0x10
[  138.491997][T10885]  ? __pfx___might_resched+0x10/0x10
[  138.492009][T10885]  ? __vma_enter_locked+0x163/0x3f0
[  138.492023][T10885]  ? copy_process+0x85b9/0x9170
[  138.492036][T10885]  ? down_write+0x14d/0x200
[  138.492053][T10885]  ? up_write+0x1b2/0x520
[  138.492071][T10885]  copy_process+0x8606/0x9170
[  138.492094][T10885]  ? __pfx_copy_process+0x10/0x10
[  138.492119][T10885]  ? _copy_from_user+0x59/0xd0
[  138.492138][T10885]  kernel_clone+0xfc/0x960
[  138.492150][T10885]  ? get_pid_task+0xfc/0x250
[  138.492166][T10885]  ? __pfx_kernel_clone+0x10/0x10
[  138.492188][T10885]  __do_sys_clone3+0x212/0x290
[  138.492201][T10885]  ? __pfx___do_sys_clone3+0x10/0x10
[  138.492222][T10885]  ? __fget_files+0x20e/0x3c0
[  138.492246][T10885]  do_syscall_64+0xcd/0x4c0
[  138.492261][T10885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.492273][T10885] RIP: 0033:0x7f63fdd8e969
[  138.492283][T10885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.492294][T10885] RSP: 002b:00007f63febdef08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  138.492305][T10885] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f63fdd8e969
[  138.492312][T10885] RDX: 00007f63febdef20 RSI: 0000000000000058 RDI: 00007f63febdef20
[  138.492319][T10885] RBP: 00007f63febdf090 R08: 0000000000000000 R09: 0000000000000058
[  138.492325][T10885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  138.492332][T10885] R13: 0000000000000000 R14: 00007f63fdfb5fa0 R15: 00007ffca5de1c68
[  138.492346][T10885]  </TASK>
[  138.501637][T10887] vivid-002: =================  START STATUS  =================
[  138.526825][T10889] random: crng reseeded on system resumption
[  138.528981][T10887] vivid-002: Radio HW Seek Mode: 
[  138.534233][T10887] Bounded
[  138.536934][T10887] 
[  138.586102][T10895] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1697'.
[  138.616974][T10887] vivid-002: Radio Programmable HW Seek: false
[  138.618937][T10887] vivid-002: RDS Rx I/O Mode: Block I/O
[  138.620677][T10887] vivid-002: Generate RBDS Instead of RDS: false
[  138.622714][T10887] vivid-002: RDS Reception: true
[  138.624486][T10887] vivid-002: RDS Program Type: 0 inactive
[  138.626370][T10887] vivid-002: RDS PS Name:  inactive
[  138.628019][T10887] vivid-002: RDS Radio Text:  inactive
[  138.629756][T10887] vivid-002: RDS Traffic Announcement: false inactive
[  138.631900][T10887] vivid-002: RDS Traffic Program: false inactive
[  138.634209][T10887] vivid-002: RDS Music: false inactive
[  138.635994][T10887] vivid-002: ==================  END STATUS  ==================
[  138.704668][T10911] ip6t_srh: unknown srh match flags  4000
[  138.725161][T10911] xt_NFQUEUE: number of total queues is 0
[  138.917774][    T9] usb 7-1: USB disconnect, device number 16
[  138.962258][T10922] 9pnet_fd: Insufficient options for proto=fd
[  139.047979][T10927] 9pnet: Limiting 'msize' to 512000 as this is the maximum supported by transport virtio
[  139.757311][T10939] libceph: resolve '
[  139.757311][T10939] -&õÌ×fÍY¹Ç�²a×ïÅ2iˆ
[  139.757311][T10939] .ÖúÕ?Çý&�*»§&' (ret=-3): failed
[  139.909194][T10946] FAULT_INJECTION: forcing a failure.
[  139.909194][T10946] name failslab, interval 1, probability 0, space 0, times 0
[  139.915108][T10946] CPU: 1 UID: 0 PID: 10946 Comm: syz.3.1718 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  139.915133][T10946] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  139.915145][T10946] Call Trace:
[  139.915151][T10946]  <TASK>
[  139.915159][T10946]  dump_stack_lvl+0x16c/0x1f0
[  139.915187][T10946]  should_fail_ex+0x512/0x640
[  139.915213][T10946]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  139.915235][T10946]  should_failslab+0xc2/0x120
[  139.915257][T10946]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  139.915276][T10946]  ? vm_area_dup+0x23/0x700
[  139.915300][T10946]  vm_area_dup+0x23/0x700
[  139.915320][T10946]  copy_process+0x7f1b/0x9170
[  139.915359][T10946]  ? __pfx_copy_process+0x10/0x10
[  139.915399][T10946]  ? _copy_from_user+0x59/0xd0
[  139.915430][T10946]  kernel_clone+0xfc/0x960
[  139.915450][T10946]  ? get_pid_task+0xfc/0x250
[  139.915475][T10946]  ? __pfx_kernel_clone+0x10/0x10
[  139.915510][T10946]  __do_sys_clone3+0x212/0x290
[  139.915532][T10946]  ? __pfx___do_sys_clone3+0x10/0x10
[  139.915566][T10946]  ? __fget_files+0x20e/0x3c0
[  139.915599][T10946]  ? fput+0x70/0xf0
[  139.915624][T10946]  do_syscall_64+0xcd/0x4c0
[  139.915648][T10946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.915666][T10946] RIP: 0033:0x7f11f358e969
[  139.915682][T10946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.915700][T10946] RSP: 002b:00007f11f4327f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  139.915718][T10946] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f11f358e969
[  139.915730][T10946] RDX: 00007f11f4327f20 RSI: 0000000000000058 RDI: 00007f11f4327f20
[  139.915741][T10946] RBP: 00007f11f4328090 R08: 0000000000000000 R09: 0000000000000058
[  139.915752][T10946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  139.915762][T10946] R13: 0000000000000000 R14: 00007f11f37b5fa0 R15: 00007ffe01ad6f58
[  139.915788][T10946]  </TASK>
[  140.012550][T10948] 9pnet_fd: Insufficient options for proto=fd
[  140.014662][   T61] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  140.040738][T10952] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1720'.
[  140.044206][T10952] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1720'.
[  140.168570][   T61] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  140.172215][   T61] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  140.175657][   T61] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  140.178451][   T61] usb 5-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  140.181989][   T61] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64
[  140.193663][   T61] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  140.196708][   T61] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  140.199173][   T61] usb 5-1: Product: syz
[  140.200483][   T61] usb 5-1: Manufacturer: syz
[  140.205177][   T61] cdc_wdm 5-1:1.0: skipping garbage
[  140.206825][   T61] cdc_wdm 5-1:1.0: skipping garbage
[  140.209549][   T61] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[  140.227183][T10969] loop2: detected capacity change from 0 to 7
[  140.233625][ T5951]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  140.235318][ T5951] loop2: partition table partially beyond EOD, truncated
[  140.238943][ T5951] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  140.255007][T10969]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  140.256920][T10969] loop2: partition table partially beyond EOD, truncated
[  140.259564][T10969] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  140.282140][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  140.293406][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  140.983521][T10987] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1732'.
[  141.894047][T11009] fuse: Bad value for 'group_id'
[  141.895766][T11009] fuse: Bad value for 'group_id'
[  141.898027][T11009] 9pnet_fd: Insufficient options for proto=fd
[  141.903741][   T40] kauditd_printk_skb: 3 callbacks suppressed
[  141.903750][   T40] audit: type=1400 audit(1748508343.053:881): avc:  denied  { remove_name } for  pid=11005 comm="syz.2.1741" name="file1" dev="9p" ino=35913892 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  141.913321][   T40] audit: type=1400 audit(1748508343.063:882): avc:  denied  { unlink } for  pid=11005 comm="syz.2.1741" name="file1" dev="9p" ino=35913892 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  141.920477][   T40] audit: type=1400 audit(1748508343.073:883): avc:  denied  { link } for  pid=11005 comm="syz.2.1741" name="file0" dev="9p" ino=35913882 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  141.988213][T11020] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1747'.
[  142.030512][T11024] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1748'.
[  142.342083][   T53] IPVS: starting estimator thread 0...
[  142.433254][T11047] IPVS: using max 43 ests per chain, 103200 per kthread
[  142.793621][   T53] usb 5-1: USB disconnect, device number 18
[  142.946250][   T40] audit: type=1400 audit(142.824:884): avc:  denied  { ioctl } for  pid=11073 comm="syz.1.1764" path="socket:[36064]" dev="sockfs" ino=36064 ioctlcmd=0x940b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  143.179810][T11080] netlink: 'syz.2.1766': attribute type 10 has an invalid length.
[  143.199605][T11087] fuse: Bad value for 'rootmode'
[  143.203331][T11087] tipc: Started in network mode
[  143.204971][T11087] tipc: Node identity 080211000001, cluster identity 4711
[  143.207337][T11087] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  143.339492][   T40] audit: type=1400 audit(143.214:885): avc:  granted  { setsecparam } for  pid=11097 comm="syz.3.1772" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  143.340419][T11098] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65296 sclass=netlink_route_socket pid=11098 comm=syz.3.1772
[  143.366235][   T40] audit: type=1400 audit(143.244:886): avc:  denied  { connect } for  pid=11097 comm="syz.3.1772" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  143.483587][   T53] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  143.635022][   T53] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  143.638550][   T53] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  143.642699][   T53] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  143.646896][   T53] usb 7-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  143.651406][   T53] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64
[  143.658047][   T53] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  143.661774][   T53] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  143.666982][   T53] usb 7-1: Product: syz
[  143.668752][   T53] usb 7-1: Manufacturer: syz
[  143.678992][   T53] cdc_wdm 7-1:1.0: skipping garbage
[  143.681122][   T53] cdc_wdm 7-1:1.0: skipping garbage
[  143.683917][   T53] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  143.694120][ T5298] Bluetooth: hci1: unexpected event for opcode 0x2035
[  143.812592][T11117] 9pnet_fd: Insufficient options for proto=fd
[  143.816642][T11118] 9pnet_fd: Insufficient options for proto=fd
[  143.870014][T11127] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1784'.
[  143.891633][T11130] loop2: detected capacity change from 0 to 7
[  143.897824][T11130]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  143.899581][T11130] loop2: partition table partially beyond EOD, truncated
[  143.902710][T11130] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  143.922512][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  144.061532][   T40] audit: type=1400 audit(143.934:887): avc:  denied  { read } for  pid=11133 comm="syz.0.1787" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  144.124328][   T40] audit: type=1400 audit(144.004:888): avc:  denied  { read } for  pid=11133 comm="syz.0.1787" lport=60664 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  144.131152][   T40] audit: type=1400 audit(144.004:889): avc:  denied  { shutdown } for  pid=11133 comm="syz.0.1787" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  144.144923][T11146] 9pnet_fd: Insufficient options for proto=fd
[  144.184223][T11148] 9pnet_fd: Insufficient options for proto=fd
[  144.306477][T11165] NILFS (loop1): device size too small
[  144.344925][    T9] tipc: Node number set to 134418688
[  144.365279][T11179] 9pnet_fd: Insufficient options for proto=fd
[  144.539562][T11194] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1808'.
[  144.605630][T11204] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1811'.
[  144.610541][T11204] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1811'.
[  144.616718][T11204] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1811'.
[  144.658790][   T40] audit: type=1400 audit(144.534:890): avc:  denied  { ioctl } for  pid=11207 comm="syz.1.1812" path="socket:[36272]" dev="sockfs" ino=36272 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  144.664018][T11211] 9pnet_fd: Insufficient options for proto=fd
[  144.694776][T11213] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1814'.
[  144.793767][T11220] Bluetooth: hci0: unsupported parameter 2327
[  144.795751][T11220] Bluetooth: hci0: invalid len left 4, exp >= 113
[  144.829407][T11227] netlink: 'syz.3.1818': attribute type 7 has an invalid length.
[  144.842877][T11227] netlink: 'syz.3.1818': attribute type 7 has an invalid length.
[  144.847027][T11227] netlink: 'syz.3.1818': attribute type 7 has an invalid length.
[  144.850207][T11227] netlink: 'syz.3.1818': attribute type 7 has an invalid length.
[  144.853399][T11227] netlink: 'syz.3.1818': attribute type 7 has an invalid length.
[  144.856451][T11227] netlink: 'syz.3.1818': attribute type 7 has an invalid length.
[  144.859427][T11227] netlink: 'syz.3.1818': attribute type 7 has an invalid length.
[  144.862403][T11227] netlink: 'syz.3.1818': attribute type 7 has an invalid length.
[  144.865521][T11227] netlink: 'syz.3.1818': attribute type 7 has an invalid length.
[  145.357046][T11248] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1825'.
[  145.424193][T11248] bridge_slave_1 (unregistering): left allmulticast mode
[  145.427150][T11248] bridge_slave_1 (unregistering): left promiscuous mode
[  145.430122][T11248] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.257394][   T53] usb 7-1: USB disconnect, device number 17
[  146.279252][T11270] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2834047395 (22672379160 ns) > initial count (8751802360 ns). Using initial count to start timer.
[  146.298220][T11270] kvm: pic: single mode not supported
[  146.298292][T11270] kvm: pic: level sensitive irq not supported
[  146.374227][T11278] 9pnet_fd: Insufficient options for proto=fd
[  146.408732][T11285] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: mode dependency failed, not supported in mode broadcast(3)
[  146.412147][T11287] fuse: Unknown parameter 'group_i00000000000000000000'
[  146.415984][T11287] 9pnet_fd: Insufficient options for proto=fd
[  146.473337][ T5978] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  146.565444][T11296] FAULT_INJECTION: forcing a failure.
[  146.565444][T11296] name failslab, interval 1, probability 0, space 0, times 0
[  146.569328][T11296] CPU: 3 UID: 0 PID: 11296 Comm: syz.0.1844 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  146.569344][T11296] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.569350][T11296] Call Trace:
[  146.569355][T11296]  <TASK>
[  146.569359][T11296]  dump_stack_lvl+0x16c/0x1f0
[  146.569396][T11296]  should_fail_ex+0x512/0x640
[  146.569418][T11296]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  146.569433][T11296]  should_failslab+0xc2/0x120
[  146.569447][T11296]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  146.569460][T11296]  ? anon_vma_fork+0x200/0x620
[  146.569474][T11296]  anon_vma_fork+0x200/0x620
[  146.569487][T11296]  copy_process+0x90c5/0x9170
[  146.569510][T11296]  ? __pfx_copy_process+0x10/0x10
[  146.569534][T11296]  ? _copy_from_user+0x59/0xd0
[  146.569558][T11296]  kernel_clone+0xfc/0x960
[  146.569571][T11296]  ? get_pid_task+0xfc/0x250
[  146.569587][T11296]  ? __pfx_kernel_clone+0x10/0x10
[  146.569609][T11296]  __do_sys_clone3+0x212/0x290
[  146.569622][T11296]  ? __pfx___do_sys_clone3+0x10/0x10
[  146.569643][T11296]  ? __fget_files+0x20e/0x3c0
[  146.569666][T11296]  do_syscall_64+0xcd/0x4c0
[  146.569682][T11296]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.569694][T11296] RIP: 0033:0x7f63fdd8e969
[  146.569704][T11296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.569715][T11296] RSP: 002b:00007f63febdef08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  146.569726][T11296] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f63fdd8e969
[  146.569733][T11296] RDX: 00007f63febdef20 RSI: 0000000000000058 RDI: 00007f63febdef20
[  146.569740][T11296] RBP: 00007f63febdf090 R08: 0000000000000000 R09: 0000000000000058
[  146.569747][T11296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  146.569754][T11296] R13: 0000000000000000 R14: 00007f63fdfb5fa0 R15: 00007ffca5de1c68
[  146.569768][T11296]  </TASK>
[  146.635163][ T5978] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  146.641155][ T5978] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  146.644397][ T5978] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  146.646974][ T5978] usb 6-1: Product: syz
[  146.653226][ T5978] usb 6-1: Manufacturer: syz
[  146.654724][ T5978] usb 6-1: SerialNumber: syz
[  146.673276][ T1459] usb 8-1: new high-speed USB device number 21 using dummy_hcd
[  146.700500][T11300] 9pnet_fd: Insufficient options for proto=fd
[  146.783286][T11305] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1848'.
[  146.783300][T11304] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1848'.
[  146.824943][ T1459] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  146.827652][ T1459] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  146.830758][ T1459] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  146.834985][ T1459] usb 8-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  146.838493][ T1459] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64
[  146.844379][ T1459] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  146.847183][ T1459] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  146.849654][ T1459] usb 8-1: Product: syz
[  146.850971][ T1459] usb 8-1: Manufacturer: syz
[  146.858072][ T1459] cdc_wdm 8-1:1.0: skipping garbage
[  146.859738][ T1459] cdc_wdm 8-1:1.0: skipping garbage
[  146.861418][ T1459] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22
[  146.864007][ T5978] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 12 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  146.919110][T11313] fuse: Unknown parameter 'group_i00000000000000000000'
[  146.922972][T11313] 9pnet_fd: Insufficient options for proto=fd
[  147.061560][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  147.061572][   T40] audit: type=1400 audit(146.934:899): avc:  denied  { read write } for  pid=11258 comm="syz.1.1831" name="lp0" dev="devtmpfs" ino=3495 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  147.070539][   T40] audit: type=1400 audit(146.934:900): avc:  denied  { open } for  pid=11258 comm="syz.1.1831" path="/dev/usb/lp0" dev="devtmpfs" ino=3495 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  147.072993][T11317] FAULT_INJECTION: forcing a failure.
[  147.072993][T11317] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  147.081760][T11317] CPU: 0 UID: 0 PID: 11317 Comm: syz.0.1853 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  147.081776][T11317] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  147.081784][T11317] Call Trace:
[  147.081788][T11317]  <TASK>
[  147.081793][T11317]  dump_stack_lvl+0x16c/0x1f0
[  147.081810][T11317]  should_fail_ex+0x512/0x640
[  147.081834][T11317]  should_fail_alloc_page+0xe7/0x130
[  147.081849][T11317]  prepare_alloc_pages+0x3c2/0x610
[  147.081869][T11317]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  147.081884][T11317]  ? __kasan_slab_alloc+0x89/0x90
[  147.081900][T11317]  ? lock_acquire+0x179/0x350
[  147.081916][T11317]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  147.081928][T11317]  ? find_held_lock+0x2b/0x80
[  147.081940][T11317]  ? page_table_check_set+0x627/0x750
[  147.081959][T11317]  ? __page_table_check_ptes_set+0x1ae/0x420
[  147.081972][T11317]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  147.081992][T11317]  ? policy_nodemask+0xea/0x4e0
[  147.082007][T11317]  alloc_pages_mpol+0x1fb/0x550
[  147.082021][T11317]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  147.082039][T11317]  alloc_pages_noprof+0x131/0x390
[  147.082053][T11317]  pte_alloc_one+0x19/0x380
[  147.082071][T11317]  __pte_alloc+0x6d/0x3c0
[  147.082085][T11317]  ? __pfx___pte_alloc+0x10/0x10
[  147.082099][T11317]  ? __pfx___might_resched+0x10/0x10
[  147.082112][T11317]  ? copy_page_range+0x14ca/0x5710
[  147.082125][T11317]  copy_page_range+0x1bb0/0x5710
[  147.082153][T11317]  ? __pfx_copy_page_range+0x10/0x10
[  147.082168][T11317]  ? __pfx___might_resched+0x10/0x10
[  147.082181][T11317]  ? __vma_enter_locked+0x163/0x3f0
[  147.082195][T11317]  ? copy_process+0x85b9/0x9170
[  147.082208][T11317]  ? down_write+0x14d/0x200
[  147.082225][T11317]  ? up_write+0x1b2/0x520
[  147.082244][T11317]  copy_process+0x8606/0x9170
[  147.082266][T11317]  ? __pfx_copy_process+0x10/0x10
[  147.082290][T11317]  ? _copy_from_user+0x59/0xd0
[  147.082309][T11317]  kernel_clone+0xfc/0x960
[  147.082322][T11317]  ? get_pid_task+0xfc/0x250
[  147.082337][T11317]  ? __pfx_kernel_clone+0x10/0x10
[  147.082359][T11317]  __do_sys_clone3+0x212/0x290
[  147.082373][T11317]  ? __pfx___do_sys_clone3+0x10/0x10
[  147.082393][T11317]  ? __fget_files+0x20e/0x3c0
[  147.082417][T11317]  do_syscall_64+0xcd/0x4c0
[  147.082432][T11317]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.082444][T11317] RIP: 0033:0x7f63fdd8e969
[  147.082453][T11317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.082463][T11317] RSP: 002b:00007f63febdef08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  147.082474][T11317] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f63fdd8e969
[  147.082481][T11317] RDX: 00007f63febdef20 RSI: 0000000000000058 RDI: 00007f63febdef20
[  147.082488][T11317] RBP: 00007f63febdf090 R08: 0000000000000000 R09: 0000000000000058
[  147.082495][T11317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[  147.082501][T11317] R13: 0000000000000000 R14: 00007f63fdfb5fa0 R15: 00007ffca5de1c68
[  147.082515][T11317]  </TASK>
[  147.115074][T11265] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  147.194464][T11265] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  147.486751][T11347] syz.2.1859: attempt to access beyond end of device
[  147.486751][T11347] loop2: rw=0, sector=0, nr_sectors = 1 limit=0
[  147.492483][T11347] efs: cannot read volume header
[  147.536580][T11349] fuse: Unknown parameter 'group_i00000000000000000000'
[  147.540583][T11349] 9pnet_fd: Insufficient options for proto=fd
[  147.765584][ T5298] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  147.768281][ T5298] Bluetooth: hci1: Injecting HCI hardware error event
[  147.768363][T11360] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=596 sclass=netlink_route_socket pid=11360 comm=syz.2.1864
[  147.771159][ T5298] Bluetooth: hci1: hardware error 0x00
[  147.839841][T11364] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1866'.
[  147.932304][T11366] loop6: detected capacity change from 0 to 63
[  147.935429][   T40] audit: type=1400 audit(147.814:901): avc:  denied  { map } for  pid=11365 comm="syz.2.1867" path="/dev/loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  147.937910][ T8116] Buffer I/O error on dev loop6, logical block 0, async page read
[  147.942635][   T40] audit: type=1400 audit(147.814:902): avc:  denied  { execute } for  pid=11365 comm="syz.2.1867" path="/dev/loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  147.945242][ T8116] Buffer I/O error on dev loop6, logical block 1, async page read
[  147.955391][ T8116] Buffer I/O error on dev loop6, logical block 2, async page read
[  147.957844][ T8116] Buffer I/O error on dev loop6, logical block 3, async page read
[  147.961319][T11366] Buffer I/O error on dev loop6, logical block 0, async page read
[  147.964886][T11366] Buffer I/O error on dev loop6, logical block 1, async page read
[  147.967625][T11366] Buffer I/O error on dev loop6, logical block 2, async page read
[  147.970078][T11366] Buffer I/O error on dev loop6, logical block 3, async page read
[  147.972814][T11366] Buffer I/O error on dev loop6, logical block 0, async page read
[  147.976314][T11366] Buffer I/O error on dev loop6, logical block 1, async page read
[  148.803731][T11374] fuse: Unknown parameter 'group_id00000000000000000000'
[  148.807416][T11374] 9pnet_fd: Insufficient options for proto=fd
[  149.099311][T11383] __nla_validate_parse: 1 callbacks suppressed
[  149.099324][T11383] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1874'.
[  149.310532][T11396] fuse: Unknown parameter 'group_id00000000000000000000'
[  149.314219][T11396] 9pnet_fd: Insufficient options for proto=fd
[  149.393833][T11398] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  149.439124][ T5978] usb 8-1: USB disconnect, device number 21
[  149.529760][T11406] loop2: detected capacity change from 0 to 7
[  149.535934][ T8116]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  149.537683][ T8116] loop2: partition table partially beyond EOD, truncated
[  149.540368][ T8116] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  149.551438][T11406]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  149.553124][T11406] loop2: partition table partially beyond EOD, truncated
[  149.555641][T11406] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  149.574506][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  149.586713][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  149.729975][T11417] syz.0.1886: attempt to access beyond end of device
[  149.729975][T11417] loop0: rw=6144, sector=128, nr_sectors = 8 limit=0
[  149.734873][T11417] gfs2: error -5 reading superblock
[  149.853322][ T5978] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[  149.853700][ T5298] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  150.003485][ T5978] usb 8-1: Using ep0 maxpacket: 8
[  150.006333][ T5978] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  150.008780][ T5978] usb 8-1: config 0 has no interface number 0
[  150.010700][ T5978] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  150.014445][ T5978] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  150.017319][ T5978] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.021118][ T5978] usb 8-1: config 0 descriptor??
[  150.025614][ T5978] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior1
[  150.043337][   T59] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  150.074637][T11432] fuse: Bad value for 'user_id'
[  150.076329][T11432] fuse: Bad value for 'user_id'
[  150.079162][T11432] 9pnet_fd: Insufficient options for proto=fd
[  150.193260][   T59] usb 5-1: Using ep0 maxpacket: 16
[  150.196500][   T59] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  150.199918][   T59] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  150.203613][   T59] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  150.207596][   T59] usb 5-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00
[  150.210419][   T59] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.214978][   T59] usb 5-1: config 0 descriptor??
[  150.221194][   T59] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input11
[  150.235826][    T9] usb 8-1: USB disconnect, device number 22
[  150.396244][T11442] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1896'.
[  150.418601][T11423] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  150.424245][T11423] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  150.440006][   T59] usb 5-1: USB disconnect, device number 19
[  150.472266][T11450] loop2: detected capacity change from 0 to 7
[  150.480968][T11450]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  150.482719][T11450] loop2: partition table partially beyond EOD, truncated
[  150.485741][T11450] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  150.520661][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  150.550704][T11459] mkiss: ax0: crc mode is auto.
[  150.591543][T11461] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1900'.
[  150.685585][   T40] audit: type=1400 audit(150.564:903): avc:  denied  { ioctl } for  pid=11468 comm="syz.0.1903" path="socket:[36554]" dev="sockfs" ino=36554 ioctlcmd=0x8983 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  150.819317][   T40] audit: type=1400 audit(150.694:904): avc:  denied  { read } for  pid=5333 comm="acpid" name="mouse5" dev="devtmpfs" ino=3522 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  150.826567][   T40] audit: type=1400 audit(150.694:905): avc:  denied  { open } for  pid=5333 comm="acpid" path="/dev/input/mouse5" dev="devtmpfs" ino=3522 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  150.833379][   T40] audit: type=1400 audit(150.694:906): avc:  denied  { ioctl } for  pid=11472 comm="syz.3.1905" path="socket:[39052]" dev="sockfs" ino=39052 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  150.840823][   T40] audit: type=1400 audit(150.694:907): avc:  denied  { ioctl } for  pid=5333 comm="acpid" path="/dev/input/mouse5" dev="devtmpfs" ino=3522 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  150.896572][T11479] loop2: detected capacity change from 0 to 7
[  150.904241][ T8116]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  150.906000][ T8116] loop2: partition table partially beyond EOD, truncated
[  150.909229][ T8116] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  150.920218][T11479]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  150.922016][T11479] loop2: partition table partially beyond EOD, truncated
[  150.924516][T11479] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  150.955451][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  150.958573][   T59] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  150.963779][T11483] validate_nla: 56 callbacks suppressed
[  150.963789][T11483] netlink: 'syz.2.1908': attribute type 2 has an invalid length.
[  150.968011][T11483] netlink: 244 bytes leftover after parsing attributes in process `syz.2.1908'.
[  150.968108][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  151.103384][   T59] usb 5-1: Using ep0 maxpacket: 16
[  151.108972][   T59] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  151.113048][   T59] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  151.116082][   T59] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.121572][   T59] usb 5-1: config 0 descriptor??
[  151.127036][   T59] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input12
[  151.224838][T11499] af_packet: tpacket_rcv: packet too big, clamped from 64993 to 3952. macoff=96
[  151.332757][   T40] audit: type=1400 audit(151.204:908): avc:  denied  { read } for  pid=11470 comm="syz.0.1904" name="mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  151.445860][T11510] loop2: detected capacity change from 0 to 7
[  151.447316][T11508] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  151.450740][T11508] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  151.453832][T11510]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  151.455638][T11510] loop2: partition table partially beyond EOD, truncated
[  151.457980][T11510] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  151.470503][ T5333] bcm5974 5-1:0.0: could not read from device
[  151.482829][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  151.489268][ T5333] bcm5974 5-1:0.0: could not read from device
[  151.490238][   T59] usb 5-1: USB disconnect, device number 20
[  151.493886][ T5333] bcm5974 5-1:0.0: could not read from device
[  151.499111][ T5333] bcm5974 5-1:0.0: could not read from device
[  151.970741][T11553] fuse: Bad value for 'fd'
[  151.978318][T11553] 9pnet_fd: Insufficient options for proto=fd
[  152.064325][T11564] loop2: detected capacity change from 0 to 7
[  152.070518][T11564]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  152.072404][T11564] loop2: partition table partially beyond EOD, truncated
[  152.074831][T11564] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  152.102870][T11568] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1932'.
[  152.103636][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  152.115941][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  152.181783][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  152.181794][   T40] audit: type=1400 audit(152.054:910): avc:  denied  { mount } for  pid=11577 comm="syz.0.1935" name="/" dev="hugetlbfs" ino=37689 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  152.191868][T11579] overlayfs: maximum fs stacking depth exceeded
[  152.191868][T11578] overlayfs: maximum fs stacking depth exceeded
[  152.194256][   T40] audit: type=1400 audit(152.064:911): avc:  denied  { mounton } for  pid=11577 comm="syz.0.1935" path="/470/file0" dev="hugetlbfs" ino=37689 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=dir permissive=1
[  152.202610][   T40] audit: type=1400 audit(152.064:912): avc:  denied  { mounton } for  pid=11577 comm="syz.0.1935" path="/470/file0" dev="hugetlbfs" ino=37689 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=dir permissive=1
[  152.214964][   T40] audit: type=1400 audit(152.094:913): avc:  denied  { unmount } for  pid=5938 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  152.237818][T11583] fuse: Bad value for 'fd'
[  152.240679][T11583] 9pnet_fd: Insufficient options for proto=fd
[  152.271047][ T1143] tipc: Subscription rejected, illegal request
[  152.273699][   T40] audit: type=1400 audit(152.144:914): avc:  denied  { read } for  pid=11580 comm="syz.3.1936" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  152.437549][T11600] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  152.444378][T11597] bond5: entered promiscuous mode
[  152.446214][T11597] bond5: entered allmulticast mode
[  152.448193][T11597] 8021q: adding VLAN 0 to HW filter on device bond5
[  152.455317][T11600] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1943'.
[  152.524318][T11608] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1945'.
[  152.527686][T11608] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1945'.
[  152.649616][   T40] audit: type=1400 audit(152.524:915): avc:  denied  { write } for  pid=11629 comm="syz.0.1952" name="mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  152.671988][   T40] audit: type=1400 audit(152.544:916): avc:  denied  { read write } for  pid=11627 comm="syz.2.1953" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  152.680677][   T40] audit: type=1400 audit(152.544:917): avc:  denied  { open } for  pid=11627 comm="syz.2.1953" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  152.723796][   T40] audit: type=1400 audit(152.604:918): avc:  denied  { listen } for  pid=11627 comm="syz.2.1953" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  152.874151][T11648] loop2: detected capacity change from 0 to 7
[  152.881299][T11648]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  152.883065][T11648] loop2: partition table partially beyond EOD, truncated
[  152.885743][T11648] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  152.910876][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  153.094222][T11657] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  153.182621][   T40] audit: type=1400 audit(153.054:919): avc:  denied  { ioctl } for  pid=11661 comm="syz.0.1963" path="socket:[39473]" dev="sockfs" ino=39473 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  153.277065][T11672] program syz.2.1964 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  153.291757][T11672] binder: 11671:11672 ioctl 4b6b 200000000080 returned -22
[  153.330412][ T5298] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  153.390599][ T5944] Bluetooth: hci3: hardware error 0x0e
[  153.390786][ T5298] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  153.600676][T11705] program syz.3.1973 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  153.613257][T11705] binder: 11704:11705 ioctl 4b6b 200000000080 returned -22
[  153.694972][    T9] usb 6-1: USB disconnect, device number 12
[  153.701332][    T9] usblp0: removed
[  154.043546][    T9] usb 6-1: new low-speed USB device number 13 using dummy_hcd
[  154.194435][    T9] usb 6-1: config index 0 descriptor too short (expected 1307, got 27)
[  154.197144][    T9] usb 6-1: config 0 has an invalid interface number: 0 but max is -1
[  154.199683][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 0
[  154.202392][    T9] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  154.206239][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  154.209329][    T9] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  154.215656][    T9] usb 6-1: string descriptor 0 read error: -22
[  154.217566][    T9] usb 6-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  154.220264][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.225034][    T9] usb 6-1: config 0 descriptor??
[  154.227261][T11714] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  154.230652][    T9] hub 6-1:0.0: bad descriptor, ignoring hub
[  154.232541][    T9] hub 6-1:0.0: probe with driver hub failed with error -5
[  154.237761][    T9] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input13
[  154.249317][    C2] usb_acecad 6-1:0.0: can't resubmit intr, dummy_hcd.1-1/input0, status -1
[  154.289248][T11729] fuse: Bad value for 'fd'
[  154.291809][T11729] 9pnet_fd: Insufficient options for proto=fd
[  154.362571][T11731] bridge_slave_0: entered promiscuous mode
[  154.365434][T11731] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  154.374402][T11731] kvm: pic: single mode not supported
[  154.374414][T11731] kvm: pic: level sensitive irq not supported
[  154.431684][T11714] Malformed UNC in devname
[  154.431684][T11714] 
[  154.436209][T11714] CIFS: VFS: Malformed UNC in devname
[  154.499816][    T9] usb 6-1: USB disconnect, device number 13
[  154.855574][T11774] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1996'.
[  154.969092][ T5298] Bluetooth: hci3: adv larger than maximum supported
[  155.360186][ T5937] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  155.366182][ T5937] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  155.369290][ T5937] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  155.372229][ T5937] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  155.376327][ T5937] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  155.380805][T11820] 9pnet_fd: Insufficient options for proto=fd
[  155.415192][T11815] xfrm0 speed is unknown, defaulting to 1000
[  155.447840][T11833] fuse: Invalid rootmode
[  155.450113][T11833] 9pnet_fd: Insufficient options for proto=fd
[  155.453371][ T5944] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  155.463505][   T53] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  155.514420][T11815] chnl_net:caif_netlink_parms(): no params data found
[  155.520135][T11843] loop2: detected capacity change from 0 to 7
[  155.531482][ T8116]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  155.534028][ T8116] loop2: partition table partially beyond EOD, truncated
[  155.536870][ T8116] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  155.548764][T11840] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2019'.
[  155.557336][T11843]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  155.558938][T11843] loop2: partition table partially beyond EOD, truncated
[  155.561373][T11843] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  155.586105][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  155.594161][T11815] bridge0: port 1(bridge_slave_0) entered blocking state
[  155.596391][T11815] bridge0: port 1(bridge_slave_0) entered disabled state
[  155.598465][T11815] bridge_slave_0: entered allmulticast mode
[  155.599830][ T8116] udevd[8116]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  155.601025][T11815] bridge_slave_0: entered promiscuous mode
[  155.606735][T11815] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.608797][T11815] bridge0: port 2(bridge_slave_1) entered disabled state
[  155.610854][T11815] bridge_slave_1: entered allmulticast mode
[  155.613571][T11815] bridge_slave_1: entered promiscuous mode
[  155.633416][   T53] usb 6-1: Using ep0 maxpacket: 16
[  155.636764][   T53] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  155.639639][   T53] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  155.645480][   T53] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  155.648139][   T53] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.652810][   T53] usb 6-1: config 0 descriptor??
[  155.656434][   T53] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[  155.657494][T11815] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  155.663556][T11815] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  155.698821][T11815] team0: Port device team_slave_0 added
[  155.702203][T11815] team0: Port device team_slave_1 added
[  155.732247][T11815] batman_adv: batadv0: Adding interface: batadv_slave_0
[  155.735473][T11815] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  155.743370][T11815] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  155.747538][T11815] batman_adv: batadv0: Adding interface: batadv_slave_1
[  155.749702][T11815] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  155.757843][T11815] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  155.823973][T11815] hsr_slave_0: entered promiscuous mode
[  155.827154][T11815] hsr_slave_1: entered promiscuous mode
[  155.830051][T11815] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  155.833347][T11815] Cannot create hsr debugfs directory
[  155.874049][    T9] usb 6-1: USB disconnect, device number 14
[  155.982493][T11815] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  155.986796][T11815] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  155.991192][T11815] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  155.996027][T11815] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  156.036424][T11815] 8021q: adding VLAN 0 to HW filter on device bond0
[  156.051117][T11815] 8021q: adding VLAN 0 to HW filter on device team0
[  156.057218][ T1143] bridge0: port 1(bridge_slave_0) entered blocking state
[  156.059428][ T1143] bridge0: port 1(bridge_slave_0) entered forwarding state
[  156.066744][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[  156.068994][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[  156.191017][T11815] 8021q: adding VLAN 0 to HW filter on device batadv0
[  156.322978][T11815] veth0_vlan: entered promiscuous mode
[  156.329413][T11815] veth1_vlan: entered promiscuous mode
[  156.346178][T11815] veth0_macvtap: entered promiscuous mode
[  156.349902][T11815] veth1_macvtap: entered promiscuous mode
[  156.361840][T11815] batman_adv: batadv0: Interface activated: batadv_slave_0
[  156.368794][T11815] batman_adv: batadv0: Interface activated: batadv_slave_1
[  156.373920][T11815] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  156.376856][T11815] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  156.379756][T11815] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  156.382571][T11815] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  156.403880][T11867] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2023'.
[  156.437635][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  156.441795][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  156.458801][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  156.461505][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  156.487995][T11871] fuse: Bad value for 'rootmode'
[  156.490270][T11871] 9pnet_fd: Insufficient options for proto=fd
[  156.549536][T11879] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2009'.
[  156.580695][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  156.583652][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  156.592886][T11883] syz.4.2029: attempt to access beyond end of device
[  156.592886][T11883] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  156.653635][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  156.733511][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  156.751623][T11889] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0.
[  156.766152][T11889] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2030'.
[  156.785411][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  156.850762][T11894] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 808
[  156.920779][T11900] fuse: Bad value for 'rootmode'
[  156.926156][T11900] 9pnet_fd: Insufficient options for proto=fd
[  156.951528][T11903] misc userio: Invalid payload size
[  157.073322][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  157.124488][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  157.152281][T11917] input: syz1 as /devices/virtual/input/input14
[  157.160507][T11917] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2040'.
[  157.224113][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  157.228012][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  157.306878][T11922] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  157.323433][   T40] kauditd_printk_skb: 21 callbacks suppressed
[  157.323501][   T40] audit: type=1800 audit(157.194:941): pid=11922 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.2041" name="file0" dev="overlay" ino=35913882 res=0 errno=0
[  157.332963][T11922] lo: entered promiscuous mode
[  157.335151][T11922] lo: entered allmulticast mode
[  157.389070][T11927] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2043'.
[  157.394445][ T1122] sr 2:0:0:0: [sr0] tag#23 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  157.398426][ T1122] sr 2:0:0:0: [sr0] tag#23 Sense Key : Illegal Request [current] 
[  157.401096][ T1122] sr 2:0:0:0: [sr0] tag#23 Add. Sense: Invalid command operation code
[  157.404624][ T1122] sr 2:0:0:0: [sr0] tag#23 CDB: Write(10) 2a 00 00 00 00 00 00 00 02 00
[  157.408234][ T1122] critical target error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0
[  157.412365][ T1122] buffer_io_error: 21282 callbacks suppressed
[  157.412377][ T1122] Buffer I/O error on dev sr0, logical block 0, lost async page write
[  157.453706][ T5944] Bluetooth: hci0: command tx timeout
[  157.476138][T11931] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  157.478234][T11931] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  157.481429][T11931] vhci_hcd vhci_hcd.0: Device attached
[  157.492865][T11931] pim6reg1: entered promiscuous mode
[  157.494886][T11931] pim6reg1: entered allmulticast mode
[  157.530939][T11935] fuse: Bad value for 'rootmode'
[  157.534432][T11935] 9pnet_fd: Insufficient options for proto=fd
[  157.595958][T11940] netlink: 'syz.1.2048': attribute type 39 has an invalid length.
[  157.625871][T11932] vhci_hcd: connection closed
[  157.630954][   T73] vhci_hcd: stop threads
[  157.636156][   T73] vhci_hcd: release socket
[  157.640252][   T73] vhci_hcd: disconnect device
[  157.653318][  T838] vhci_hcd: vhci_device speed not set
[  157.679794][T11950] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2052'.
[  157.701548][T11954] tmpfs: Bad value for 'nr_blocks'
[  157.724515][T11958] openvswitch: netlink: EtherType 0 is less than min 600
[  157.740182][T11963] fuse: Unknown parameter 'use00000000000000000000'
[  157.743810][T11963] 9pnet_fd: Insufficient options for proto=fd
[  157.823690][T11971] netlink: 'syz.0.2059': attribute type 4 has an invalid length.
[  157.826161][T11971] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2059'.
[  157.830378][T11971] : renamed from bond0
[  157.982629][T11998] fuse: Unknown parameter 'use00000000000000000000'
[  157.986546][T11998] 9pnet_fd: Insufficient options for proto=fd
[  158.053116][T12002] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2070'.
[  158.066174][T12002] overlay: Unknown parameter 'obj_type'
[  158.483279][ T5977] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  158.606344][T12021] fuse: Unknown parameter 'use00000000000000000000'
[  158.610843][T12021] 9pnet_fd: Insufficient options for proto=fd
[  158.613538][ T5977] usb 7-1: device descriptor read/64, error -71
[  158.853273][ T5977] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  158.891625][T12029] can: request_module (can-proto-0) failed.
[  158.984481][ T5977] usb 7-1: device descriptor read/64, error -71
[  159.094151][ T5977] usb usb7-port1: attempt power cycle
[  159.106221][   T40] audit: type=1400 audit(158.984:942): avc:  denied  { bind } for  pid=12061 comm="syz.4.2090" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  159.113199][   T40] audit: type=1400 audit(158.984:943): avc:  denied  { connect } for  pid=12061 comm="syz.4.2090" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  159.361331][T12087] syzkaller1: entered promiscuous mode
[  159.363273][T12087] syzkaller1: entered allmulticast mode
[  159.368158][T12081] ufs: You didn't specify the type of your ufs filesystem
[  159.368158][T12081] 
[  159.368158][T12081] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  159.368158][T12081] 
[  159.368158][T12081] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  159.378180][T12081] ufs: ufstype=old is supported read-only
[  159.381122][T12081] syz.0.2097: attempt to access beyond end of device
[  159.381122][T12081] nbd0: rw=0, sector=16, nr_sectors = 2 limit=0
[  159.433260][ T5977] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  159.456543][ T5977] usb 7-1: device descriptor read/8, error -71
[  159.523354][ T5944] Bluetooth: hci0: command tx timeout
[  159.693305][ T5977] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  159.713930][ T5977] usb 7-1: device descriptor read/8, error -71
[  159.833451][ T5977] usb usb7-port1: unable to enumerate USB device
[  159.855485][T12096] overlayfs: failed to resolve './file1': -2
[  159.952685][T12105] __nla_validate_parse: 3 callbacks suppressed
[  159.952701][T12105] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2105'.
[  159.961668][T12105] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2105'.
[  160.013821][T12107] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  160.018119][T12107] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  160.201276][T12111] fuse: Unknown parameter 'user_i00000000000000000000'
[  160.205273][T12111] 9pnet_fd: Insufficient options for proto=fd
[  160.229430][T12107] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  160.234291][T12107] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  160.253316][   T53] usb 9-1: new low-speed USB device number 2 using dummy_hcd
[  160.266318][T12117] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2110'.
[  160.383668][   T53] usb 9-1: device descriptor read/64, error -71
[  160.410035][T12135] netlink: 'syz.1.2116': attribute type 1 has an invalid length.
[  160.452862][T12141] fuse: Unknown parameter 'user_i00000000000000000000'
[  160.456671][T12141] 9pnet_fd: Insufficient options for proto=fd
[  160.534103][T12148] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=124 sclass=netlink_route_socket pid=12148 comm=syz.1.2119
[  160.539527][T12148] netlink: 'syz.1.2119': attribute type 4 has an invalid length.
[  160.541975][T12148] netlink: 152 bytes leftover after parsing attributes in process `syz.1.2119'.
[  160.547686][T12148] : renamed from bond0
[  160.613616][ T5979] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  160.623678][   T53] usb 9-1: new low-speed USB device number 3 using dummy_hcd
[  160.640419][T12152] No control pipe specified
[  160.753256][   T53] usb 9-1: device descriptor read/64, error -71
[  160.753499][ T5979] usb 7-1: device descriptor read/64, error -71
[  160.783088][T12163] xt_hashlimit: size too large, truncated to 1048576
[  160.863638][   T53] usb usb9-port1: attempt power cycle
[  161.003284][ T5979] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[  161.143513][ T5979] usb 7-1: device descriptor read/64, error -71
[  161.203237][   T53] usb 9-1: new low-speed USB device number 4 using dummy_hcd
[  161.224825][   T53] usb 9-1: device descriptor read/8, error -71
[  161.263607][ T5979] usb usb7-port1: attempt power cycle
[  161.266315][ T5979] ==================================================================
[  161.268833][ T5979] BUG: KASAN: slab-use-after-free in raw_event_queue_add+0x1e0/0x220
[  161.271816][ T5979] Read of size 4 at addr ffff888064f0a978 by task kworker/0:3/5979
[  161.276577][ T5979] 
[  161.277288][ T5979] CPU: 0 UID: 0 PID: 5979 Comm: kworker/0:3 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  161.277303][ T5979] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.277312][ T5979] Workqueue: usb_hub_wq hub_event
[  161.277335][ T5979] Call Trace:
[  161.277339][ T5979]  <TASK>
[  161.277344][ T5979]  dump_stack_lvl+0x116/0x1f0
[  161.277360][ T5979]  print_report+0xcd/0x680
[  161.277375][ T5979]  ? __virt_addr_valid+0x81/0x610
[  161.277386][ T5979]  ? __phys_addr+0xe8/0x180
[  161.277397][ T5979]  ? raw_event_queue_add+0x1e0/0x220
[  161.277412][ T5979]  kasan_report+0xe0/0x110
[  161.277424][ T5979]  ? raw_event_queue_add+0x1e0/0x220
[  161.277436][ T5979]  raw_event_queue_add+0x1e0/0x220
[  161.277447][ T5979]  gadget_disconnect+0x5a/0x130
[  161.277458][ T5979]  set_link_state+0x8e8/0xf70
[  161.277476][ T5979]  dummy_hub_control+0x1620/0x1f00
[  161.277494][ T5979]  ? __pfx_dummy_hub_control+0x10/0x10
[  161.277510][ T5979]  ? trace_kmalloc+0x2b/0xd0
[  161.277524][ T5979]  ? __kmalloc_noprof+0x242/0x510
[  161.277536][ T5979]  ? mark_held_locks+0x49/0x80
[  161.277552][ T5979]  usb_hcd_submit_urb+0xc3c/0x1c60
[  161.277570][ T5979]  usb_submit_urb+0x87c/0x1730
[  161.277581][ T5979]  ? __init_swait_queue_head+0xca/0x150
[  161.277593][ T5979]  usb_start_wait_urb+0x104/0x4b0
[  161.277605][ T5979]  ? __pfx_usb_start_wait_urb+0x10/0x10
[  161.277618][ T5979]  ? __asan_memset+0x23/0x50
[  161.277629][ T5979]  usb_control_msg+0x326/0x4a0
[  161.277640][ T5979]  ? __pfx_usb_control_msg+0x10/0x10
[  161.277652][ T5979]  ? kfree_const+0x55/0x60
[  161.277668][ T5979]  usb_hub_set_port_power+0x128/0x190
[  161.277682][ T5979]  hub_event+0x3a68/0x4fa0
[  161.277700][ T5979]  ? __pfx_hub_event+0x10/0x10
[  161.277713][ T5979]  ? assoc_array_insert+0x2d20/0x3970
[  161.277724][ T5979]  ? finish_task_switch.isra.0+0x221/0xc10
[  161.277739][ T5979]  ? rcu_is_watching+0x12/0xc0
[  161.277752][ T5979]  process_one_work+0x9cc/0x1b70
[  161.277764][ T5979]  ? __pfx_process_one_work+0x10/0x10
[  161.277776][ T5979]  ? assign_work+0x1a0/0x250
[  161.277792][ T5979]  worker_thread+0x6c8/0xf10
[  161.277803][ T5979]  ? __kthread_parkme+0x19e/0x250
[  161.277817][ T5979]  ? __pfx_worker_thread+0x10/0x10
[  161.277827][ T5979]  kthread+0x3c2/0x780
[  161.277843][ T5979]  ? __pfx_kthread+0x10/0x10
[  161.277859][ T5979]  ? rcu_is_watching+0x12/0xc0
[  161.277870][ T5979]  ? __pfx_kthread+0x10/0x10
[  161.277886][ T5979]  ret_from_fork+0x5d4/0x6f0
[  161.277900][ T5979]  ? __pfx_kthread+0x10/0x10
[  161.277915][ T5979]  ret_from_fork_asm+0x1a/0x30
[  161.277929][ T5979]  </TASK>
[  161.277933][ T5979] 
[  161.353509][ T5979] Allocated by task 12010:
[  161.354792][ T5979]  kasan_save_stack+0x33/0x60
[  161.356173][ T5979]  kasan_save_track+0x14/0x30
[  161.357672][ T5979]  __kasan_kmalloc+0xaa/0xb0
[  161.359129][ T5979]  raw_open+0x8b/0x500
[  161.360713][ T5979]  misc_open+0x35a/0x420
[  161.362307][ T5979]  chrdev_open+0x234/0x6a0
[  161.363812][ T5979]  do_dentry_open+0x741/0x1c10
[  161.365383][ T5979]  vfs_open+0x82/0x3f0
[  161.366575][ T5979]  path_openat+0x1de4/0x2cb0
[  161.367914][ T5979]  do_filp_open+0x20b/0x470
[  161.369368][ T5979]  do_sys_openat2+0x11b/0x1d0
[  161.370738][ T5979]  __x64_sys_openat+0x174/0x210
[  161.372264][ T5979]  do_syscall_64+0xcd/0x4c0
[  161.373595][ T5979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.375314][ T5979] 
[  161.376143][ T5979] Freed by task 12010:
[  161.377337][ T5979]  kasan_save_stack+0x33/0x60
[  161.378785][ T5979]  kasan_save_track+0x14/0x30
[  161.380334][ T5979]  kasan_save_free_info+0x3b/0x60
[  161.381861][ T5979]  __kasan_slab_free+0x51/0x70
[  161.383273][ T5979]  kfree+0x2b4/0x4d0
[  161.384437][ T5979]  raw_release+0x168/0x2b0
[  161.385750][ T5979]  __fput+0x3ff/0xb70
[  161.386922][ T5979]  task_work_run+0x150/0x240
[  161.388407][ T5979]  do_exit+0xae2/0x2c70
[  161.389640][ T5979]  do_group_exit+0xd3/0x2a0
[  161.390959][ T5979]  get_signal+0x2673/0x26d0
[  161.392288][ T5979]  arch_do_signal_or_restart+0x8f/0x7d0
[  161.393898][ T5979]  exit_to_user_mode_loop+0x84/0x110
[  161.395449][ T5979]  do_syscall_64+0x3f6/0x4c0
[  161.396804][ T5979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.398515][ T5979] 
[  161.399248][ T5979] The buggy address belongs to the object at ffff888064f0a000
[  161.399248][ T5979]  which belongs to the cache kmalloc-4k of size 4096
[  161.403158][ T5979] The buggy address is located 2424 bytes inside of
[  161.403158][ T5979]  freed 4096-byte region [ffff888064f0a000, ffff888064f0b000)
[  161.407100][ T5979] 
[  161.407811][ T5979] The buggy address belongs to the physical page:
[  161.409708][ T5979] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x64f08
[  161.412229][ T5979] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  161.414620][ T5979] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  161.416786][ T5979] page_type: f5(slab)
[  161.417944][ T5979] raw: 00fff00000000040 ffff88801b443040 ffffea000149da00 dead000000000002
[  161.420563][ T5979] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  161.422997][ T5979] head: 00fff00000000040 ffff88801b443040 ffffea000149da00 dead000000000002
[  161.425451][ T5979] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  161.427898][ T5979] head: 00fff00000000003 ffffea000193c201 00000000ffffffff 00000000ffffffff
[  161.430490][ T5979] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  161.432953][ T5979] page dumped because: kasan: bad access detected
[  161.434846][ T5979] page_owner tracks the page as allocated
[  161.436492][ T5979] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5951, tgid 5951 (udevd), ts 82327432149, free_ts 82174938248
[  161.442111][ T5979]  post_alloc_hook+0x1c0/0x230
[  161.443493][ T5979]  get_page_from_freelist+0x135c/0x3950
[  161.445152][ T5979]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  161.446845][ T5979]  alloc_pages_mpol+0x1fb/0x550
[  161.448248][ T5979]  new_slab+0x23b/0x330
[  161.449446][ T5979]  ___slab_alloc+0xd9c/0x1940
[  161.450868][ T5979]  __slab_alloc.constprop.0+0x56/0xb0
[  161.452418][ T5979]  __kmalloc_noprof+0x2f2/0x510
[  161.453815][ T5979]  tomoyo_realpath_from_path+0xc2/0x6e0
[  161.455485][ T5979]  tomoyo_path_perm+0x274/0x460
[  161.456901][ T5979]  security_inode_getattr+0x116/0x290
[  161.458420][ T5979]  vfs_statx+0x121/0x3e0
[  161.459639][ T5979]  vfs_fstatat+0x7b/0xf0
[  161.460957][ T5979]  __do_sys_newfstatat+0x97/0x120
[  161.462443][ T5979]  do_syscall_64+0xcd/0x4c0
[  161.463759][ T5979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.465531][ T5979] page last free pid 5939 tgid 5939 stack trace:
[  161.467278][ T5979]  __free_frozen_pages+0x7fe/0x1180
[  161.468785][ T5979]  __put_partials+0x16d/0x1c0
[  161.470107][ T5979]  qlist_free_all+0x4d/0x120
[  161.471463][ T5979]  kasan_quarantine_reduce+0x195/0x1e0
[  161.473007][ T5979]  __kasan_slab_alloc+0x69/0x90
[  161.474367][ T5979]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  161.476001][ T5979]  alloc_empty_file+0x55/0x1e0
[  161.477353][ T5979]  alloc_file_pseudo+0x13a/0x230
[  161.478814][ T5979]  sock_alloc_file+0x50/0x210
[  161.480174][ T5979]  __sys_socket+0x1c0/0x260
[  161.481541][ T5979]  __x64_sys_socket+0x72/0xb0
[  161.482880][ T5979]  do_syscall_64+0xcd/0x4c0
[  161.484131][ T5979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.486029][ T5979] 
[  161.486753][ T5979] Memory state around the buggy address:
[  161.488367][ T5979]  ffff888064f0a800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  161.490642][ T5979]  ffff888064f0a880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  161.493018][ T5979] >ffff888064f0a900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  161.495308][ T5979]                                                                 ^
[  161.497691][ T5979]  ffff888064f0a980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  161.499993][ T5979]  ffff888064f0aa00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  161.502364][ T5979] ==================================================================
[  161.504666][ T5979] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  161.506825][ T5979] CPU: 0 UID: 0 PID: 5979 Comm: kworker/0:3 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(full) 
[  161.510135][ T5979] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.513264][ T5979] Workqueue: usb_hub_wq hub_event
[  161.514740][ T5979] Call Trace:
[  161.515742][ T5979]  <TASK>
[  161.516627][ T5979]  dump_stack_lvl+0x3d/0x1f0
[  161.518051][ T5979]  panic+0x71c/0x800
[  161.519210][ T5979]  ? __pfx_panic+0x10/0x10
[  161.520531][ T5979]  ? __pfx__printk+0x10/0x10
[  161.521911][ T5979]  ? end_report+0x4c/0x170
[  161.523266][ T5979]  ? check_panic_on_warn+0x1f/0xb0
[  161.524863][ T5979]  ? raw_event_queue_add+0x1e0/0x220
[  161.526329][ T5979]  check_panic_on_warn+0xab/0xb0
[  161.527827][ T5979]  end_report+0x107/0x170
[  161.529175][ T5979]  kasan_report+0xee/0x110
[  161.530468][ T5979]  ? raw_event_queue_add+0x1e0/0x220
[  161.531984][ T5979]  raw_event_queue_add+0x1e0/0x220
[  161.533846][ T5979]  gadget_disconnect+0x5a/0x130
[  161.535651][ T5979]  set_link_state+0x8e8/0xf70
[  161.537427][ T5979]  dummy_hub_control+0x1620/0x1f00
[  161.539206][ T5979]  ? __pfx_dummy_hub_control+0x10/0x10
[  161.540784][ T5979]  ? trace_kmalloc+0x2b/0xd0
[  161.542162][ T5979]  ? __kmalloc_noprof+0x242/0x510
[  161.543652][ T5979]  ? mark_held_locks+0x49/0x80
[  161.545061][ T5979]  usb_hcd_submit_urb+0xc3c/0x1c60
[  161.546492][ T5979]  usb_submit_urb+0x87c/0x1730
[  161.547844][ T5979]  ? __init_swait_queue_head+0xca/0x150
[  161.549420][ T5979]  usb_start_wait_urb+0x104/0x4b0
[  161.550852][ T5979]  ? __pfx_usb_start_wait_urb+0x10/0x10
[  161.552457][ T5979]  ? __asan_memset+0x23/0x50
[  161.553785][ T5979]  usb_control_msg+0x326/0x4a0
[  161.555177][ T5979]  ? __pfx_usb_control_msg+0x10/0x10
[  161.556700][ T5979]  ? kfree_const+0x55/0x60
[  161.557987][ T5979]  usb_hub_set_port_power+0x128/0x190
[  161.559767][ T5979]  hub_event+0x3a68/0x4fa0
[  161.561191][ T5979]  ? __pfx_hub_event+0x10/0x10
[  161.562592][ T5979]  ? assoc_array_insert+0x2d20/0x3970
[  161.564103][ T5979]  ? finish_task_switch.isra.0+0x221/0xc10
[  161.565783][ T5979]  ? rcu_is_watching+0x12/0xc0
[  161.567154][ T5979]  process_one_work+0x9cc/0x1b70
[  161.568667][ T5979]  ? __pfx_process_one_work+0x10/0x10
[  161.570267][ T5979]  ? assign_work+0x1a0/0x250
[  161.571616][ T5979]  worker_thread+0x6c8/0xf10
[  161.572969][ T5979]  ? __kthread_parkme+0x19e/0x250
[  161.574422][ T5979]  ? __pfx_worker_thread+0x10/0x10
[  161.576106][ T5979]  kthread+0x3c2/0x780
[  161.577657][ T5979]  ? __pfx_kthread+0x10/0x10
[  161.579387][ T5979]  ? rcu_is_watching+0x12/0xc0
[  161.581057][ T5979]  ? __pfx_kthread+0x10/0x10
[  161.582411][ T5979]  ret_from_fork+0x5d4/0x6f0
[  161.583750][ T5979]  ? __pfx_kthread+0x10/0x10
[  161.585130][ T5979]  ret_from_fork_asm+0x1a/0x30
[  161.586508][ T5979]  </TASK>
[  161.588046][ T5979] Kernel Offset: disabled
[  161.589349][ T5979] Rebooting in 86400 seconds..

VM DIAGNOSIS:
08:46:02  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8557f6b5 RDI=ffffffff9ae67620 RBP=ffffffff9ae675e0 RSP=ffffc90004a66fc8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3630383838666666
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9ae675e0 R15=ffffffff8557f650
RIP=ffffffff8557f6df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c01300
GS =0000 ffff8880d6974000 ffffffff 00c01300
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000002d8bd000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004090001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f63fde11a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f63fde11a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f63fde11a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f63fde11aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f63fde11b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f63fde11c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f63fdf83488 00007f63fdf83480 00007f63fdf83478 00007f63fdf83450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f63feaed100 00007f63fdf83440 00007f63fdf80004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f63fdf83498 00007f63fdf83490 00007f63fdf83488 00007f63fdf83480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=0000000000000001 RCX=ffff888025a30700 RDX=0000000000000000
RSI=ffffffff8b489fb6 RDI=ffff888029c7ccc4 RBP=ffff888029c7c880 RSP=ffffc90005dffb10
R8 =0000000000000004 R9 =00000000000001ea R10=0000000000000400 R11=0000000000000001
R12=0000000000000001 R13=0000000000000000 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff81a0bb9c RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6a74000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fff22941e60 CR3=000000002202a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000004144 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000044402 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f562dd836a3 00007f562dd836a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff22944060 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555571abb806 0000555571aba500
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555571aa0b0b 0000555571aa0720
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 616e676973206e77 6f6e6b6e75000a29 7325203a6425206f 6e7272652820000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 444b424c56054b52 4a4b4e4b50000a0c 5600051f4100054a 4b5757400d05000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 040002d403100400 02d00300020002c8 032c040002c4030a 040002c003000400
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0101a010000e8004 0100000008060601 67b4228008000ee0 030010000ed00300
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 10000ec003021000 0eb00301f0100014 90030c040002e803 0c040002e4030c04
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0002e00312080002 d80334040002d403 10040002d0030002 0002c8032c040002
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 c4030a040002c003 00040002b8030c04 0002b4030c040002 b0033e080002a803
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffffea00013af700 RCX=ffffffff82074cef RDX=ffff88802f89c880
RSI=ffffffff82073144 RDI=0000000000000001 RBP=ffffea00013af700 RSP=ffffc900048f75a8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=00007f92e0161000 R14=ffffc900048f7968 R15=ffffc900048f7688
RIP=ffffffff81bb7880 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055557c01a500 ffffffff 00c00000
GS =0000 ffff8880d6b74000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f92e22e56c0 CR3=000000004f331000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00327265636e6575 7165732f7665642f
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8b23011a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8b23011a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8b23011a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8b23011aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8b23011b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8b23011c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0009001000080200 00e0ffff00000000 0000000000000002 0014000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 e07c2f1685a952ef d8e808e4a00080e0 6ecf347100940004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 e1df30d9d6141bce e45e3a6491b71f00 000009f4cea7e52e 4ceccb1780ceba6b
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 01970e37434b9592 2a45933defede4d6 0dd4cce65deecb9e 2ab4e0ecff0bed81
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 cecae1d509d89abb e35c211f9563dfdc 06e06756d9fa4000 000001b70d36009e
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 cacc25507ab5db4e eb1a3f68a4160d73 75879f7c0a22d3d9 e1df30d9d6141bce
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 e45e3a6491b71f00 000009f4cea7e52e 4ceccb1780ceba6b e07c2f1685a952ef
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000001 RCX=ffffc900034c7710 RDX=1ffff92000698ecf
RSI=ffffffff81a6e53e RDI=ffffc900034c7678 RBP=0000000000000000 RSP=ffffc900034c7608
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=000000000000617b
R12=ffffffff81a6e1b0 R13=ffffc900034c7678 R14=0000000000000000 R15=ffff8880263d2440
RIP=ffffffff816a63e5 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f050aa3b880 ffffffff 00c00000
GS =0000 ffff8880d6c74000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f63febbcf98 CR3=0000000024935000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000104080 Opmask01=0000000000000029 Opmask02=00000000ffffffff Opmask03=0000000001041000
Opmask04=00000000ffffffff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd84096f98 00007ffd84096f98
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd84097170 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055b743424890
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f050a3f1b20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f050a3f1b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 493c8f2d12ed43c0 737326c16b45ff38
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737373a2 7373737373737373
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 347570632f302f71 6d2f32706f6f6c2f 6b636f6c622f6c61 75747269762f7365
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000051 0000000000000000 0000000000003475 70632f302f716d2f
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a4ffc5e619e30b3 000000055b74341a 0000000000000151 0000000000000032
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000061 0000000000000000 000033326c6c6900 306d656d702f6b63
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 322e392d3533712d 63707276703a2939 3030322c39484349 2b35335128435064
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7261646e6174536e 703a554d45516e76 733a302e3072623a 343130322f31302f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343064623a312b32 316f70627e322d33 2e36312e312d6e61 696265642d332e36
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000