last executing test programs:

16m22.363454623s ago: executing program 32 (id=99):
socket(0x10, 0x803, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8000}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
semget(0x2, 0x1, 0x440)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x40)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
fanotify_init(0xf00, 0x1)
syz_open_procfs$pagemap(0x0, &(0x7f0000000040))
socket(0x10, 0x2, 0x0)
syz_usb_connect$hid(0x4, 0x36, &(0x7f00000000c0)=ANY=[], 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000f40)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, <r4=>0xffffffffffffffff]}}], 0x78}, 0x10040)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010028bd70000700000002000000080001"], 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x4008004)

8m55.966851049s ago: executing program 33 (id=2620):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/5, 0x214000, 0x800}, 0x20)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000001c0)=0x800, 0x4)
r1 = socket$tipc(0x1e, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000400)={'dummy0\x00', <r2=>0x0})
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x0, r2}, 0x10)

8m50.447637949s ago: executing program 34 (id=2648):
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x41, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
lseek(0xffffffffffffffff, 0x6, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)=@newtfilter={0x84, 0x2c, 0xd27, 0x70bd26, 0x25dfdc00, {0x0, 0x0, 0x0, r5, {0x2, 0x4}, {}, {0x8, 0xf}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x6, 0x1000, 0x20000000, 0xfffffffc, 0x7ff}}]}, {0x4}, {0x2, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x20000010}, 0x20000000)
sendmsg$nl_route_sched(r2, &(0x7f0000000700)={0x0, 0x1e5, &(0x7f00000006c0)={&(0x7f0000000440)=@deltaction={0x28, 0x32, 0x101, 0x0, 0x0, {}, [@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}]}]}, 0x28}}, 0x0)

8m49.582299951s ago: executing program 35 (id=2657):
socket(0x10, 0x803, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
syz_open_procfs(0x0, 0x0)
r0 = socket$kcm(0x2, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0xf, &(0x7f00000000c0), 0x4)
setsockopt$sock_attach_bpf(r0, 0x1, 0x31, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r2, 0x107, 0x8, &(0x7f0000000100)=0x40049, 0x4)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'macsec0\x00', <r4=>0x0})
sendto$packet(r3, &(0x7f0000000080)="a99c383d33c9c607b1b9d49688a883", 0xf, 0x0, &(0x7f0000000000)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @link_local}, 0x14)
recvmmsg(r2, &(0x7f0000000480)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=""/11, 0x17}}], 0x400000000000179, 0x10022, 0x0)

2m26.839516837s ago: executing program 36 (id=5863):
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_GET_BYNAME(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x28, 0xe, 0x6, 0x201, 0x0, 0x0, {0x3, 0x0, 0x9}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x4012}, 0x4880)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r1 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
rmdir(&(0x7f0000000140)='./file1\x00')
chdir(&(0x7f00000003c0)='./bus\x00')
mkdirat(r1, &(0x7f0000000340)='./file0\x00', 0xf3)
chdir(&(0x7f0000000200)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)

1m53.085317933s ago: executing program 37 (id=6042):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000fc0), 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

1m48.804550505s ago: executing program 9 (id=6043):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='mountinfo\x00')
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
read$FUSE(r0, &(0x7f00000020c0)={0x2020}, 0x2020)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
r2 = socket(0x15, 0x5, 0x0)
getsockopt(r2, 0x200000000114, 0x2721, 0x0, &(0x7f0000000040))
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000b00)={{{@in6=@loopback, @in=@initdev={0xac, 0x1e, 0x5, 0x0}, 0x0, 0x5, 0x0, 0x0, 0x2, 0x0, 0x10, 0x1}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffffffffffff}, {0x0, 0x0, 0x3}, 0x0, 0x0, 0x1, 0x1}, {{@in=@rand_addr=0xffffffff, 0x4d5, 0x32}, 0x2, @in=@multicast1, 0x0, 0x2, 0x0, 0x3, 0xb, 0x81}}, 0xe8)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@mcast1, 0x1, 0x2, 0x2, 0x6}, 0x20)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'virt_wifi0\x00', 0x5})
ioctl(r3, 0x8b32, &(0x7f0000000040))
openat$kvm(0xffffff9c, &(0x7f00000001c0), 0x40201, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r4, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f00000000c0)={0xc4, 0x1, 0x8, 0x201, 0x0, 0x0, {0x1, 0x0, 0x8}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x803}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x201}, @CTA_TIMEOUT_DATA={0x24, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_TIMEWAIT={0x8, 0x7, 0x1, 0x0, 0x6}, @CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x2f5b}, @CTA_TIMEOUT_DCCP_OPEN={0x8}, @CTA_TIMEOUT_DCCP_RESPOND={0x8, 0x2, 0x1, 0x0, 0x7fffffff}]}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x88}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x1a}, @CTA_TIMEOUT_DATA={0x54, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_SYN_RECV={0x8, 0x2, 0x1, 0x0, 0x4}, @CTA_TIMEOUT_TCP_UNACK={0x8, 0xb, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_TCP_RETRANS={0x8}, @CTA_TIMEOUT_TCP_CLOSE={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_TCP_ESTABLISHED={0x8, 0x3, 0x1, 0x0, 0xfffffffe}, @CTA_TIMEOUT_TCP_CLOSE={0x8, 0x8, 0x1, 0x0, 0x18000000}, @CTA_TIMEOUT_TCP_SYN_RECV={0x8, 0x2, 0x1, 0x0, 0xf}, @CTA_TIMEOUT_TCP_SYN_SENT2={0x8, 0x9, 0x1, 0x0, 0x3401}, @CTA_TIMEOUT_TCP_UNACK={0x8, 0xb, 0x1, 0x0, 0x158}, @CTA_TIMEOUT_TCP_LAST_ACK={0x8, 0x6, 0x1, 0x0, 0xffffff01}]}]}, 0xc4}, 0x1, 0x0, 0x0, 0x4008800}, 0x4)
bind$bt_hci(r5, &(0x7f0000001a40)={0x1f, 0xffff, 0x1}, 0x6)
write(r5, &(0x7f0000000000)="2e000300", 0x4)
read$FUSE(r4, &(0x7f0000004180)={0x2020}, 0x2020)
ioctl$IOC_PR_RELEASE(r4, 0x401070ca, &(0x7f0000000000)={0x10, 0xd, 0x1})
ioctl$KVM_CAP_X86_DISABLE_EXITS(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000200)={0x8f, 0x0, 0xe})
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)

1m48.740936224s ago: executing program 9 (id=6079):
r0 = creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r1 = fanotify_init(0xf00, 0x0)
fanotify_mark(r1, 0x105, 0x40009975, r0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x100, 0x0)
mkdirat(r2, &(0x7f0000000080)='./file1\x00', 0x48)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f00000001c0)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

1m47.110411862s ago: executing program 9 (id=6095):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000000740)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x0, 0x300, 0x14}, @ipv4=@tcp={{0x5, 0x4, 0x0, 0x3c, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, {{0x2211, 0x22eb, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}, 0xfdef)

1m47.06067307s ago: executing program 38 (id=6095):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000000740)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x0, 0x300, 0x14}, @ipv4=@tcp={{0x5, 0x4, 0x0, 0x3c, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, {{0x2211, 0x22eb, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}, 0xfdef)

1m42.139976701s ago: executing program 1 (id=6128):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000100), 0x20000, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xfffffffffffffe0c, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f0000000440)={0x48, 0x1, r1, 0x0, 0x4, 0x8000000})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000080)={'batadv_slave_1\x00', {0x2, 0x0, @loopback}})
ioctl$sock_inet_SIOCSIFADDR(r2, 0x891c, &(0x7f0000000540)={'batadv_slave_1\x00', {0x2, 0x0, @empty}})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000140)={0x28, 0x6, r1, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000})
inotify_init1(0x100000)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r0, 0x3ba0, &(0x7f0000000300)={0x48, 0x2, r1})

1m42.030747197s ago: executing program 1 (id=6129):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)})
ioctl$BINDER_THREAD_EXIT(r3, 0x40046208, 0x0)

1m42.03029275s ago: executing program 1 (id=6130):
r0 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x890c, &(0x7f0000000000))

1m42.030045316s ago: executing program 1 (id=6131):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYRESHEX], 0x0, 0x37}, 0x28)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000004440)=@base={0x5, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x2, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0), &(0x7f0000000240), 0xfff, r1}, 0x38) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x69, 0x10, 0x28}, [@ldst={0x6, 0x3, 0x6, 0x8}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x0, 0x10, &(0x7f0000000080), 0xffffffffffffffb2}, 0x48) (async)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) (async)
chroot(&(0x7f0000000440)='./file0/../file0/../file0/../file0\x00') (async, rerun: 32)
move_mount(0xffffffffffffffff, &(0x7f0000000000)='./file0/../file0/../file0/../file0\x00', r2, &(0x7f00000001c0)='./file0/../file0/../file0/../file0\x00', 0x244) (async, rerun: 32)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x9101)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0) (async)
pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='./file0/../file0/../file0/../file0/file0\x00') (async)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r1, &(0x7f0000000140), 0x0}, 0x20)

1m41.932609323s ago: executing program 1 (id=6132):
r0 = shmget$private(0x0, 0x800000, 0x0, &(0x7f0000173000/0x800000)=nil)
shmat(r0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)
shmctl$SHM_LOCK(r0, 0xb)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[@ANYBLOB="600000000206010800000000000000000000000005000400000000000900020073797a31000000001400078005001500120000000800084000000090050005000a000000050001000600000012000300686173683a6e65742c706f7274"], 0x60}}, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
shmctl$SHM_UNLOCK(r0, 0xc)

1m41.552393606s ago: executing program 1 (id=6136):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000008c0)={0x24, 0x21, 0x1, 0x0, 0x0, "", [@typed={0xa, 0x0, 0x0, 0x0, @str='\x00\x00\x00\x01\x01b'}, @nested={0x8, 0x15, 0x0, 0x1, [@nested={0x4, 0x118}]}]}, 0x24}], 0x1}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
r2 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r2, 0xc0045002, &(0x7f0000000080)=0xf7e)
read$dsp(r2, &(0x7f00000002c0)=""/4096, 0x1000)
write$dsp(r1, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000001a40)=@raw={'raw\x00', 0x8, 0x3, 0x224, 0x0, 0xe138, 0x198, 0x0, 0x198, 0x278, 0x358, 0x358, 0x278, 0x358, 0x3, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'netdevsim0\x00', 'veth0_to_bond\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24, '\x00', 0x4}}}}, 0x280)

1m41.478620306s ago: executing program 39 (id=6136):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000008c0)={0x24, 0x21, 0x1, 0x0, 0x0, "", [@typed={0xa, 0x0, 0x0, 0x0, @str='\x00\x00\x00\x01\x01b'}, @nested={0x8, 0x15, 0x0, 0x1, [@nested={0x4, 0x118}]}]}, 0x24}], 0x1}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
r2 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r2, 0xc0045002, &(0x7f0000000080)=0xf7e)
read$dsp(r2, &(0x7f00000002c0)=""/4096, 0x1000)
write$dsp(r1, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000001a40)=@raw={'raw\x00', 0x8, 0x3, 0x224, 0x0, 0xe138, 0x198, 0x0, 0x198, 0x278, 0x358, 0x358, 0x278, 0x358, 0x3, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'netdevsim0\x00', 'veth0_to_bond\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24, '\x00', 0x4}}}}, 0x280)

1m24.09072729s ago: executing program 5 (id=6279):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1)
r2 = eventfd(0x5f0)
ioctl$KVM_IOEVENTFD(r1, 0x40a0ae49, &(0x7f0000000080)={0x7ff, 0x0, 0x0, r2})
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r1, 0x4020aed2, &(0x7f0000000000)={0x0, 0x300000, 0x8}) (fail_nth: 4)

1m23.840736657s ago: executing program 5 (id=6281):
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x80043, 0x0)
ioctl$IOMMU_HWPT_INVALIDATE$TEST(r0, 0x3b8d, &(0x7f0000000080)={0x20, 0x0, &(0x7f0000000040)=[{0x0, 0x2}], 0xdeadbeef, 0x8, 0x1})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x3)
ioctl$TIOCGPTPEER(r1, 0x400c0930, 0x200000000005)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x20, 0x4, &(0x7f00000001c0)=ANY=[@ANYRES32=r1], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x5, '\x00', 0x0, @netfilter, r1}, 0x94)

1m23.790920088s ago: executing program 5 (id=6283):
socket(0x840000000002, 0x3, 0xfa)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x169b82, 0x189)
socket$pppoe(0x18, 0x1, 0x0)
syz_usb_connect(0x2, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb000000010902"], 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100))
socket$kcm(0x2a, 0x2, 0x0)
fsopen(&(0x7f00000007c0)='erofs\x00', 0x1)
socket$kcm(0x2, 0x200000000000001, 0x106)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x100}, 0x0)
r2 = syz_io_uring_setup(0x10d2, &(0x7f0000000540)={0x0, 0x7734, 0x80, 0x0, 0x34f}, &(0x7f0000000600)=<r3=>0x0, &(0x7f00000005c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
r5 = landlock_create_ruleset(&(0x7f00000002c0)={0x1}, 0x18, 0x0)
landlock_restrict_self(r5, 0x0)
move_mount(0xffffffffffffff9c, &(0x7f00000003c0)='./file0/file0\x00', 0xffffffffffffff9c, &(0x7f0000000400)='./file0/file0\x00', 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_RECVMSG={0xa, 0x4, 0x1cd83f7c25e05491, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x100, 0x1, {0x3}})
io_uring_enter(r2, 0x47bc, 0x3, 0x0, 0x0, 0x0)

1m22.496744772s ago: executing program 5 (id=6293):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x2001, 0x0)
clock_adjtime(0xffffffd3, &(0x7f0000000440)={0x7fff, 0x0, 0x8000008c1f, 0x800000000, 0x0, 0xbc, 0x400, 0x6, 0x0, 0x0, 0x81, 0x80000000000, 0x7125, 0x1, 0x102, 0x200, 0xfffffffffffffffc, 0x1, 0x3, 0x4, 0x1, 0xffff, 0x0, 0x8, 0x0, 0x80000000000000})
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000080)={0x8})
fstat(r1, &(0x7f0000000300))
write(0xffffffffffffffff, &(0x7f0000000000)="240000001a005f0214f9f4070009040081000000fe000000000000000800040001", 0x21)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_TX_POWER(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r3, 0x1, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4010004}, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_NOTIFY_STORE(r4, &(0x7f0000000000)=ANY=[@ANYBLOB="2800000009000000000000000000000001"], 0x28)
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)

1m22.496476678s ago: executing program 5 (id=6294):
r0 = socket$inet6(0xa, 0x80002, 0x0)
r1 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000000), 0x242940, 0x0) (async)
setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000040)=0x91, 0x4) (async)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8) (async)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x88c040, 0x59)
fcntl$setlease(r2, 0x400, 0x1) (async)
fcntl$setlease(r2, 0x400, 0x2)
connect$inet6(r0, &(0x7f0000002140)={0xa, 0x4e25, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x9}, 0x1c)
writev(r1, &(0x7f0000000280)=[{&(0x7f0000000080)="55f9ec1740c1eeed3c28804c18f5caa17fa1ee3e8e031ebafe0df0829af51a4e669bc40be40b7bb528270a827cb3407053d397aeae169161b093cf19cb32b326b28e201e1929b69333dc4dbe609692c1c752481ed7afcc04b5c8488aea87feaaa6cfe3ee291dd47d3f2ffd27c3c09dd4491b3440bf8976cf5b54d061a7834b4cf23ba29eb690133c0786230aa4bb748242284c2eca421f03ab9ed825a3ed3262b921a86f6f71f4b7c7531f8f1cb13369212db1572c98d974762db46e778129d700189e59fa673d", 0xc7}, {&(0x7f00000001c0)="fd3aa2994059bf981e82bade19d3671d4f0aad354ae56c4f021c09be8d1d0b93558d33b9ceff31e7f4281a537737668d29bc5693f85be9c9b013b6e946af90bd6114dfc5a335be734e180c1a437f84341c781ff07d0dcb8301b3a042ca0879811d800a4e9b922e7536840472bdf844fd6551aee602a3b303d06de0bb306079270b96e7eae75afc95cc91a0e647afd7397580af6081a6f86bd555659867ff3626080a7014ec9c047de710b455", 0xac}], 0x2)
sendmmsg$inet6(r0, &(0x7f0000003cc0), 0x0, 0x404dc41)

1m22.359392578s ago: executing program 5 (id=6296):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000080)={0x0, &(0x7f00000004c0)=[@rdmsr={0x66, 0x18, {0x4000009f}}], 0x18})
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000000)={0x1, 0x0, [{0x40000001, 0x4, 0x2, 0x31237648, 0x6, 0x2, 0x80}]})
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_TABLE(r4, 0x0, 0xcf, &(0x7f0000000000)=0xff, 0x4)
ioctl$KVM_CAP_HYPERV_ENFORCE_CPUID(r3, 0x4068aea3, &(0x7f00000000c0)={0xc7, 0x0, 0x1})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1m22.267804909s ago: executing program 40 (id=6296):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000080)={0x0, &(0x7f00000004c0)=[@rdmsr={0x66, 0x18, {0x4000009f}}], 0x18})
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000000)={0x1, 0x0, [{0x40000001, 0x4, 0x2, 0x31237648, 0x6, 0x2, 0x80}]})
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_TABLE(r4, 0x0, 0xcf, &(0x7f0000000000)=0xff, 0x4)
ioctl$KVM_CAP_HYPERV_ENFORCE_CPUID(r3, 0x4068aea3, &(0x7f00000000c0)={0xc7, 0x0, 0x1})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1m14.677093166s ago: executing program 6 (id=6360):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x42, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@metacopy_on}]})
r0 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
mknodat$loop(r0, &(0x7f0000000200)='./file1\x00', 0x40, 0x1)
chdir(&(0x7f00000003c0)='./bus\x00')
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000540)='./file7\x00', 0x1c0)
renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file7/file0\x00', 0x1) (fail_nth: 5)

1m14.620150694s ago: executing program 6 (id=6365):
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000080)={0x1e8, r0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x19c, 0xc, 0x0, 0x1, [{0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5b1bbec2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x50a46093}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x610a4170}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x18ff8923}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xeca}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xaece0c6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1630ab53}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1e4ca519}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3f684403}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbabd}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x234d}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7ffd362f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4e82cd70}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x50207b73}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2807dac7}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x631e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x67e0b6b9}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe466}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x508214df}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3d79c62c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3339}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4bfd}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xed96}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9801}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3ba07c41}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60a99c63}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x52da}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xa65b593}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5a4f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x40f44a80}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x12e1}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd07b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5469c78b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7b19e604}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2556}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x51ef2e0b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x98ed}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5e1c3581}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb466}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x692db398}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd53d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x63312a8b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x10ed2efe}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x791e242c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9c51}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x735f}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x1c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}]}, 0x1e8}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f0000000340)={0x28, 0x2, 0x0, {0x0, 0x1, 0x68330396}}, 0x28) (async)
syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff) (async, rerun: 64)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0xfa9a, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x2, 0x5}, 0x50) (async, rerun: 64)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={0xffffffffffffffff, 0xe0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000440)=[0x0, 0x0, 0x0, 0x0], ""/16, <r3=>0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f0000000480)=[0x0, 0x0, 0x0], &(0x7f00000004c0)=[0x0], 0x0, 0x43, &(0x7f0000000500)=[{}], 0x8, 0x10, &(0x7f0000000540), &(0x7f0000000580), 0x8, 0x8c, 0x8, 0x8, &(0x7f00000005c0)}}, 0x10)
r4 = dup3(r1, r1, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000740)={0x1b, 0x0, 0x0, 0x5, 0x0, r2, 0x1, '\x00', r3, r4, 0x0, 0x3, 0x3}, 0x50)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000800), r4)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r4, &(0x7f0000000900)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000008c0)={&(0x7f0000000840)={0x7c, r5, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x9}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x6}, @MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x30, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0xd}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast2}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0xffff}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x20000100) (async)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000980)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000000940)="0f13bdf69f8cfb126ed3a47bc8546aed680d", 0x12, r2}, 0x68) (async)
r6 = syz_open_dev$char_usb(0xc, 0xb4, 0x8001) (async)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r4, 0x3ba0, &(0x7f0000000a00)={0x48, 0x5, 0x0, 0x0, 0xffffffffffffffff, 0x1}) (async)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000a80)="9de4f3381cba7083f170468d5f5ea2e50aa86f3b1b7f181ff5afcc059e83e3b137c9533aa8ec78da2063dcc5356be206812e730aa0d8bb26e9ae6b05269ca1873f7952d3adf92bfe83f0950d324ec3afdea2bc3a2b47f375baa57cdf8269d80fbbb1bfbd11e564bddf1c6ced3c9c838225e8be82938365551aaf172d268994069efce789006d96533397db2b7c14caf99a7d83680ba7cbbee3f5483aeffb00616eb5b4e313d7604008f918e21ca4e7affb558df32dcb69d3bcd7ebe8b1d7f1810684593dd8d8fd076519d5e40c06fa58c10bd2e9719e0975638a43faa15bae56ee59070a2cba15bddb272605e490de993707e5d7", 0xf4) (async)
preadv(r2, &(0x7f0000002e80)=[{&(0x7f0000000b80)=""/86, 0x56}, {&(0x7f0000000c00)=""/133, 0x85}, {&(0x7f0000000cc0)=""/151, 0x97}, {&(0x7f0000000d80)=""/18, 0x12}, {&(0x7f0000000dc0)=""/4096, 0x1000}, {&(0x7f0000001dc0)=""/78, 0x4e}, {&(0x7f0000001e40)=""/4096, 0x1000}, {&(0x7f0000002e40)=""/60, 0x3c}], 0x8, 0x3, 0xffff)
setsockopt$WPAN_WANTLQI(r6, 0x0, 0x3, &(0x7f0000002f00), 0x4) (async, rerun: 64)
ioctl$FS_IOC_GETFSSYSFSPATH(r6, 0x80811501, &(0x7f0000002f40)={0x80}) (async, rerun: 64)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000003040)={'wpan1\x00', <r8=>0x0}) (rerun: 32)
sendmsg$IEEE802154_LLSEC_GETPARAMS(r7, &(0x7f0000003100)={&(0x7f0000003000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000030c0)={&(0x7f0000003080)={0x28, 0x0, 0x100, 0x70bd2a, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x8081) (async)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000003140)={0xc, 0x0, <r9=>0x0}) (async)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r4, 0x3ba0, &(0x7f0000003180)={0x48, 0x7, r4, 0x0, 0x10001, <r10=>0x0, 0x0, 0x13477, 0x39c44a})
ioctl$IOMMU_TEST_OP_DESTROY_ACCESS_PAGES(r4, 0x3ba0, &(0x7f0000003200)={0x48, 0x6, r9, 0x0, r10}) (async, rerun: 64)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000032c0)=<r11=>0x0) (rerun: 64)
sendmsg$NFC_CMD_DEP_LINK_DOWN(r7, &(0x7f00000033c0)={&(0x7f0000003280)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000003380)={&(0x7f0000003300)={0x44, 0x0, 0x8, 0x70bd2d, 0x25dfdbfb, {}, [@NFC_ATTR_TARGET_INDEX={0x8}, @NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0x1}, @NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0xffffffffffffffff}, @NFC_ATTR_TARGET_INDEX={0x8}, @NFC_ATTR_TARGET_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r11}]}, 0x44}, 0x1, 0x0, 0x0, 0x20040000}, 0x800)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async, rerun: 32)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000003400)={r4, r3, 0x25, 0x0, @void}, 0x10) (rerun: 32)
ioctl$SIOCGETNODEID(r4, 0x89e1, &(0x7f0000003440)={0x3}) (async, rerun: 64)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r4, &(0x7f00000035c0)={&(0x7f0000003480)={0x10, 0x0, 0x0, 0x8000010}, 0xc, &(0x7f0000003580)={&(0x7f00000034c0)={0x8c, r5, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_ADDR_REMOTE={0x54, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x36}}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x81}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x12}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r3}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @rand_addr=' \x01\x00'}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0xd1}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x4}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0xec}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x8}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x9}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000000}, 0x2400c8c0) (rerun: 64)

1m14.5602783s ago: executing program 6 (id=6367):
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000b00)={'syz0\x00', {0x5, 0x7, 0x3, 0x7}, 0x50, [0x2, 0x9, 0x0, 0x1, 0x8, 0xea45, 0xe, 0x1, 0x63, 0x1, 0x6, 0xc, 0x2, 0x9, 0x1, 0x4, 0x8001000, 0x7fffffff, 0x51, 0x8, 0x800, 0xa4d, 0x3ff, 0x4, 0x6, 0x10001, 0xffff, 0x0, 0x4, 0x6, 0x401, 0xc, 0x9, 0x4, 0x2, 0x1, 0x5, 0x4, 0x1, 0x4, 0xa, 0x8, 0x3, 0x9, 0x804d7f, 0x2, 0x8c00, 0x6, 0x939, 0x5, 0x9, 0x2, 0x2, 0x4, 0xfffffff7, 0x7fff, 0x6, 0x5, 0x80000001, 0xd77, 0x5, 0x2a, 0x1, 0x23], [0x8, 0x20009, 0x9, 0x9, 0x80000005, 0x12, 0x800, 0xc, 0x0, 0x2329, 0xfd8, 0x3, 0x7, 0x5, 0x0, 0x24a, 0x2, 0xfffffff7, 0x0, 0x3, 0x5, 0x4009, 0x80, 0xb, 0x8001, 0x40, 0xa1, 0x4, 0xffffffff, 0x5, 0x10004, 0x9e, 0xffffff00, 0x7ff, 0x6, 0x7, 0x0, 0xe, 0xffff3f16, 0xc, 0x2, 0x9, 0xa, 0x5, 0x2, 0x207, 0x800, 0x5, 0xc5, 0x3, 0x1, 0x9, 0x8, 0x3, 0xffff7ff7, 0x3, 0x24c, 0x1ff, 0x2a0, 0x5, 0x6, 0x6, 0x280007, 0x8], [0x20002, 0x9, 0x1a9e1bfa, 0xfffffffc, 0x8, 0x9, 0x1, 0x8, 0x7aae, 0x5, 0x2, 0x7ffffff7, 0x8000, 0x1, 0x1, 0x5, 0x400, 0x2, 0x2b0, 0x3, 0x97f82544, 0x8, 0x0, 0x0, 0x9, 0x5, 0x4, 0x10000, 0xc90, 0xffffff3c, 0x8b2, 0x10, 0x4, 0xff, 0x140, 0x2, 0x2, 0x1000000c, 0x0, 0x6, 0x7, 0x8007c12, 0x5, 0x1, 0x17, 0x8000, 0xe, 0xf3, 0x4, 0x8, 0x1, 0xffffff00, 0x100, 0x3fff80, 0x2, 0x0, 0x8, 0xdd, 0x1, 0x9, 0xc3, 0x20ffff, 0x7a0], [0x9, 0x3a8d, 0xffff9a7f, 0x8000200, 0x6, 0x1, 0x1, 0xfffffff3, 0xd077, 0x2, 0xffffffff, 0x1f, 0x81, 0xa, 0x6, 0x2, 0x200, 0xfe, 0x2, 0x66608000, 0x5e82, 0x7fb, 0x6, 0x0, 0x4, 0x5, 0x80000001, 0xffff, 0xd, 0x0, 0xfffffffd, 0x1, 0x10001, 0x61, 0x10, 0x1000, 0xc, 0x100, 0x8, 0x20000000, 0x8, 0x15, 0xb32a, 0xec000000, 0x8001, 0x1904, 0x0, 0xc, 0x8, 0x7ff, 0x280, 0x5, 0xfffffffb, 0x7, 0x6e79, 0x8, 0xc, 0x9371, 0x4f89, 0x7, 0x580, 0x2d1, 0x80, 0x8]}, 0x45c)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000001e40), r2)
sendmsg$IEEE802154_START_REQ(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)={0x1c, r3, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@IEEE802154_ATTR_COORD_PAN_ID={0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x20040008)
ioctl$BLKDISCARD(r1, 0x1277, &(0x7f0000000000))
r4 = syz_open_dev$vim2m(&(0x7f0000000580), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f00000003c0)={0x4, 0x1, 0x4, 0x0, 0x81})
ioctl$vim2m_VIDIOC_S_FMT(r4, 0xc0d05605, &(0x7f0000000080)={0x2, @sliced={0x8, [0x3, 0x7, 0x805, 0x3ff, 0x9, 0x2, 0x6, 0x9, 0x1ff, 0xdd, 0x0, 0x139, 0x7, 0x5, 0x3, 0x7, 0x6, 0x9, 0x2, 0x5, 0x1, 0x1, 0xd, 0x6, 0x9, 0x8, 0xf6, 0x5, 0x7, 0x9, 0x4, 0x5, 0x9, 0x5, 0x5, 0x258d, 0xa, 0x9, 0x6, 0x1, 0x2, 0x40, 0x7ff, 0x7, 0x7f, 0xdea, 0x5, 0xbb], 0x80000000}})
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000340)={{0x0, 0x1, 0x0, 0xffffffff, 'syz0\x00', 0x71}, 0x1, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0x0, 'syz0\x00', 0x0})

1m14.557218864s ago: executing program 6 (id=6371):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@xino_auto}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@xino_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x18)
getdents64(r0, 0x0, 0x0)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000038c0), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0)
ioctl$VHOST_RESET_OWNER(r1, 0xaf02, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$sock_timeval(r2, 0x1, 0x0, &(0x7f0000000280), 0x10)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r3, 0x0, 0x20, 0x0, 0x0)
r4 = getpid()
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
r5 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000240)='./file0/file0\x00', &(0x7f00000007c0)='./file0/file0\x00', 0x0, 0x1101886, 0x0)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x10a5840, 0x0)
move_mount(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', r5, &(0x7f0000000640)='./file0/file0\x00', 0x272)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
setxattr$trusted_overlay_origin(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140), &(0x7f0000000180), 0x2, 0x3)
r7 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r6)
sendmsg$NLBL_CIPSOV4_C_ADD(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000840)=ANY=[@ANYBLOB="3000b696", @ANYRES16=r7, @ANYBLOB="010000000000000000000100000008000100030000000c00048005000300800000000800020003000000"], 0x30}, 0x1, 0x0, 0x0, 0xc082}, 0xc000)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'})
mremap(&(0x7f0000002000/0x4000)=nil, 0x200000, 0x4000, 0x3, &(0x7f0000ffc000/0x4000)=nil)
mremap(&(0x7f0000bdf000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ffd000/0x3000)=nil)
r8 = syz_pidfd_open(r4, 0x0)
setns(r8, 0x24020000)

1m14.329164044s ago: executing program 6 (id=6374):
semget$private(0x0, 0x1, 0x280)
io_setup(0x9, &(0x7f0000000100))
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000040)={0x0, 0xfff, 0x2, {0x9, @pix_mp={0xf, 0x5be7, 0x50323234, 0x0, 0xb, [{0x80000004, 0x7}, {0x7ff, 0xb325}, {0x10000001, 0x9}, {0x63d, 0x7fd}, {0x1, 0xb}, {0x4, 0x489aa92e}, {0x5}, {0xff, 0x7}], 0x1, 0xc, 0x2, 0x0, 0x3}}, 0xfffffffd})
socket$inet6_mptcp(0xa, 0x1, 0x106)
openat$tun(0xffffffffffffff9c, 0x0, 0x101401, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xffffffed, 0x6}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x4008000)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r3, {0xb, 0xd}, {}, {0x8}}}, 0x24}}, 0x40004)
r4 = openat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0xc800, 0x10)
ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000240)={0x200000, 0xdddd1000, 0x40, 0x3, 0x2})

1m14.17957269s ago: executing program 6 (id=6375):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'team_slave_1\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$team(&(0x7f0000000100), r2)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00', <r5=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001300)={0x5c, r4, 0x809, 0x0, 0x0, {}, [{{0x8, 0x1, r5}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r3}}}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (fail_nth: 5)

1m13.991634831s ago: executing program 41 (id=6375):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'team_slave_1\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$team(&(0x7f0000000100), r2)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00', <r5=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001300)={0x5c, r4, 0x809, 0x0, 0x0, {}, [{{0x8, 0x1, r5}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r3}}}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (fail_nth: 5)

58.820990386s ago: executing program 0 (id=6512):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x4, @mcast2={0xff, 0x3}}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000340)=ANY=[], 0x8)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='bridge0\x00', 0x10)
sendto$inet6(r0, &(0x7f0000000140)="8369b66f", 0x20, 0x0, 0x0, 0x0)

58.749354668s ago: executing program 0 (id=6513):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000080), 0x106}}, 0x20)
fsopen(&(0x7f0000000100)='ocfs2_dlmfs\x00', 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000680)={{r2}, &(0x7f00000006c0), &(0x7f0000000140)='%+9llu \x00'}, 0x20)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000340)={&(0x7f0000000240)=[0x0, 0x0, 0x0], 0x0, 0x0, 0x0, 0x3})
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x2ac, 0x0, 0x2, 0x15, 0x0, "89753015418ab0cb0900245518580ce0c8bf604cca41f31c108938fcfa393ef569e0bcf244bb4b23555b130900000000000000d0f08e8ad896ba67a07673defa", "8b609009aaa722681a1e2513d754f688a9e306ee1dba533f02e1b69da6e26ec889fee40080000027cc7d24fdc26f1a95d702020000e4b8fb1703e47463b969e4", "ca1bf5ffffffff30ffff65701282f5a0d22915ff6eddb10000800400", [0x10]})
sendmmsg$inet6(r1, &(0x7f0000000b80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)=ANY=[], 0x1c0}}, {{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000580)="defd18c3cbc7bb355453878edab03ed0d6b7605caa9de840055671916a8e58b92173d34aa7077f6db2c3208ec2bc82f5e41020", 0x33}, {&(0x7f0000000780)="838574c3984924b3a8667a09cd31e0f28d2dbb265cee9abdf4893b5123fa1d6907ff83faf22863ca1575ee3073ef3fa58b377c17b0e9295e46f39464e825067371268eeb93935126ff375676bd1a9d32abb6d38047c63a16d04a8203dbcd812a693ce1e0403fe88c049fbd42b78dfb36c27e892b14", 0x75}, {&(0x7f0000002840)="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", 0xe00}, {0x0}, {&(0x7f0000000800)="e456453a24", 0x5}, {&(0x7f0000003840)="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", 0x1000}, {&(0x7f0000000880)="ef1754f6f70c916134adac8216d5fa4728ab42bd3c3c28846e4aed4591f52e688eb7038ad85f0606026df05a9675ddeb528151d2e9cf2ac54376475c670d5bbda8c58c7d40e53488d30b1beaa5258cfeff9571cedc9eacdad4958e492a", 0x5d}, {0x0}], 0x8, &(0x7f0000000b40)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x6}}, @dontfrag={{0x14}}], 0x30}}], 0x2, 0x73e96176e974cbc7)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x10000, 0x3, 0x70000, 0x1000, &(0x7f0000ffd000/0x1000)=nil})
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r6 = accept4(r5, 0x0, 0x0, 0x800)
pipe2$watch_queue(0x0, 0x80)
sendmmsg$alg(r6, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

58.515669183s ago: executing program 0 (id=6520):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}, 0x30}], 0x400000000000172, 0x4001c00)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
sendmmsg(r0, &(0x7f00000036c0)=[{{0x0, 0x300, 0x0}}], 0x2e, 0x20004840)

57.610494168s ago: executing program 0 (id=6524):
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
setsockopt(0xffffffffffffffff, 0x84, 0x81, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x1c, &(0x7f0000000040)=[@in6={0xa, 0x4e22, 0x7, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3}]}, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$int_in(r3, 0x40000000af01, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x2})
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000b80))
r5 = socket$packet(0x11, 0x3, 0x300)
dup(r4)
r6 = fcntl$dupfd(r3, 0x406, r5)
ioctl$VHOST_SET_VRING_ADDR(r6, 0x4028af11, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/251, 0x0})
ioctl$VHOST_NET_SET_BACKEND(r6, 0x4008af30, &(0x7f0000000080)={0x0, r6})
close_range(r2, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
mkdir(&(0x7f0000000000)='./file0\x00', 0x2)
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', &(0x7f00000004c0), 0x2008802, &(0x7f0000000700)=ANY=[@ANYBLOB="56c78e3c733d76697274676f2c6e6f65bc33dbdc548d51f5638173733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000300)='./file0\x00')
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_unix(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000240), 0x809000, &(0x7f0000000340)=ANY=[@ANYBLOB="7472616e733d756e69782c646972656374696f2c76657273696f6e3d3970323030302c6e6f657874656e642c70726976706f72742c6f626a5f726f6c653d7a5beddc61636b66736861743d5c3a2d237d7b7d212c7375626a5f757365723d62726964676530002c00"])
socket$nl_route(0x10, 0x3, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes\x00', 0x26e1, 0x0)
close(r7)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f000001b040))
ioctl$SIOCSIFHWADDR(r7, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="0100008dffff"})
open$dir(&(0x7f0000000080)='./file0\x00', 0xc402, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})

56.97056629s ago: executing program 0 (id=6534):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000005ec0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)={0x24, r1, 0x1, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_AP_ISOLATE={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x40080}, 0x4040804) (fail_nth: 6)

56.409995587s ago: executing program 0 (id=6539):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x8001, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000140)={0x1, 0x0, [{0x1c5}]}) (fail_nth: 6)

56.308284931s ago: executing program 42 (id=6539):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x8001, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000140)={0x1, 0x0, [{0x1c5}]}) (fail_nth: 6)

45.780552595s ago: executing program 4 (id=6636):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x88)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESOCT=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
fspick(0xffffffffffffff9c, &(0x7f0000000240)='./file0/../file0/file0\x00', 0x0)
r1 = syz_open_dev$media(&(0x7f0000000000), 0x0, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(r1, 0xc0287c02, &(0x7f0000000200)={0x80000000, 0x0, &(0x7f0000000140)=[{}, {{}, {<r2=>0x80000000}}]})
ioctl$MEDIA_IOC_ENUM_ENTITIES(r1, 0xc1007c01, &(0x7f0000001380)={r2})
mount$afs(0x0, &(0x7f0000000280)='./file0/../file0/file0\x00', 0x0, 0x2080000, 0x0)
umount2(&(0x7f00000001c0)='./file0\x00', 0x1)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = socket(0xa, 0x3, 0xff)
sendto$inet6(r4, 0x0, 0xff32, 0x800, &(0x7f0000000480)={0xa, 0x3a, 0x9, @loopback, 0x2}, 0x1c)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r5=>0x0})
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
r7 = accept4(r6, 0x0, 0x0, 0x800)
sendmmsg$alg(r7, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb0958730", 0x4c}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d", 0x24}], 0x3}], 0x1, 0x40800)
recvmsg(r7, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3c00000013000100000000000000000807000000", @ANYRES32=r5, @ANYBLOB="e6000000000000001c001a801800048014000a80"], 0x3c}}, 0x0)

45.609961819s ago: executing program 4 (id=6640):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3c00000313000100000000000000000807000000", @ANYRES32=r1, @ANYBLOB="e6000000000000001c001a801800048014000a80"], 0x3c}}, 0x0)

45.540160641s ago: executing program 4 (id=6642):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000300)=0x8)
ioctl$SNDCTL_DSP_GETIPTR(0xffffffffffffffff, 0x800c5011, &(0x7f0000000080))
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000140)=@assoc_value={r2, 0x9}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000000)={r2, 0x5c6}, &(0x7f0000000040)=0x8)
r3 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_CONTROL(r3, 0xc0185500, &(0x7f0000000180)={0x82, 0x0, 0x0, 0xff81, 0x0, 0x0, 0x0})

45.419372462s ago: executing program 4 (id=6645):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='mountinfo\x00')
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
read$FUSE(r0, &(0x7f00000020c0)={0x2020}, 0x2020)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a320000000008000a40ffffff00000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000004000380140000001100010000000000000000000100000a000000"], 0x94}, 0x1, 0x0, 0x0, 0x4000850}, 0x80c1)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x4, @mcast2={0xff, 0x3}}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000180)=ANY=[], 0x8)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000080)='bridge0\x00', 0x10)
write(r2, &(0x7f0000000000)="25b0966d2c9d1b9e5045b0b6d2e938f6f95bf4fe6aab0e7a3413deae076627842ccc63b9ca7cd767c7", 0x29)
sendto$inet6(r1, &(0x7f0000000140)="8469b66f", 0x20, 0x0, 0x0, 0x0)

45.359185079s ago: executing program 4 (id=6648):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x10000000000)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000004a40)={0x44, 0x0, &(0x7f00000049c0)=[@transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0xa0, 0x0, &(0x7f0000000600)="878b7cdfd4455cf49da7ba6f280ae012ce80389a2aefe4fd04084554d7015aba5330d1b817d6c08af29938b8a9bc2b83462ddadaad3a3a5c0181a0203e49b12c99ac8757fc317fe672938a06f89c133d615cf8c6e94b3ac320fa50046f5c18ac35b49243870e4e6b90c76177feda5469369b2b5a4739cc0b68c1772f1c9b9320d88426bc8f139429054c85b62f2a1dfc705453bea4cabf1f5eee5a0d301fb7c6"})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) (fail_nth: 4)

44.730277715s ago: executing program 4 (id=6657):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x101, 0x4})
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000040)={0x0, &(0x7f00000002c0)=[<r2=>0x0], 0x0, 0x0, 0xfffffd52, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f0000000280)={0x3, r2, 0x7ffffff5, 0x8000ffff, 0xa, 0x1ff, 0x1})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000400)={0x0, 0xdd, r2, 0x0, 0x4d, 0x7, 0x800, 0x0, {0x80000001, 0xfff, 0x0, 0x6, 0x9, 0x9, 0x5, 0x100, 0xb, 0x2, 0x0, 0x8, 0x5, 0x6, "4e80de46358e7f255a5d3f52e16f724fd04ef0eb3e6202d127cf9208f8a3226c"}})

44.462496332s ago: executing program 43 (id=6657):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x101, 0x4})
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000040)={0x0, &(0x7f00000002c0)=[<r2=>0x0], 0x0, 0x0, 0xfffffd52, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f0000000280)={0x3, r2, 0x7ffffff5, 0x8000ffff, 0xa, 0x1ff, 0x1})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000400)={0x0, 0xdd, r2, 0x0, 0x4d, 0x7, 0x800, 0x0, {0x80000001, 0xfff, 0x0, 0x6, 0x9, 0x9, 0x5, 0x100, 0xb, 0x2, 0x0, 0x8, 0x5, 0x6, "4e80de46358e7f255a5d3f52e16f724fd04ef0eb3e6202d127cf9208f8a3226c"}})

5.8798673s ago: executing program 3 (id=7087):
r0 = fsopen(&(0x7f0000000000)='autofs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x8, 0x0, 0x0, 0x0)

5.828769009s ago: executing program 3 (id=7088):
keyctl$invalidate(0x15, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
r0 = syz_open_dev$MSR(&(0x7f0000000140), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, 0x0, 0x1) (fail_nth: 8)

4.37814452s ago: executing program 3 (id=7095):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x80, 0x141)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) (fail_nth: 7)

4.375129745s ago: executing program 3 (id=7097):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$unix(r1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x1f, 0x0, 0x2, 0x0, @empty, @broadcast}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2}}}}}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x309000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0x4}}, './file0\x00'})
shutdown(0xffffffffffffffff, 0x0)
r3 = socket(0x10, 0x803, 0x0)
getsockname$packet(r3, 0x0, 0x0)
r4 = socket(0x10, 0x3, 0x0)
r5 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001080)=@newqdisc={0x38, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xc}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_RESET_TIMEOUT={0x8, 0x4, 0xffffffff}]}}]}, 0x38}}, 0x0)
connect$tipc(0xffffffffffffffff, 0x0, 0x0)
r7 = socket(0x2a, 0x2, 0x4)
r8 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r9=>0x0})
openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getsockopt$inet6_tcp_buf(r7, 0x6, 0xb, &(0x7f0000000140)=""/82, &(0x7f00000001c0)=0x52)
sendto$packet(r8, &(0x7f0000000240)="f2435f0100088000000000850800", 0xe, 0x1, &(0x7f0000000200)={0x11, 0x0, r9, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}}, 0x14)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r9, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
ioctl$SIOCSIFMTU(r7, 0x8922, &(0x7f0000000080)={'dummy0\x00'})

3.219911716s ago: executing program 3 (id=7110):
r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0xc0000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b4050000000000006910a40000000000bc001000000000009500000000000000ef4f7c81f5427c16bd2aacf32cdbb47063fd9a7bb1f3ad622c3261f324e081c0ea39bd16d9869302cc08fbd94867708cb208e22cc0ad536525c9b39869285c126353f6a49bc5abc6b9a4eab313655286ee33a56f03b665dd5f1739bda6accc3b9b0d26450d3161263aed01194269a5fba4553bb18fa1f37e2f68a8ef81f090829d0ee04b52611a41642b39a6fe2653171379cc327fc11e38418b589777f8c8ddcbf88df947a05937ea"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r1 = socket$phonet(0x23, 0x2, 0x1)
recvmsg(r1, &(0x7f0000000300)={&(0x7f0000000280)=@in, 0x80, &(0x7f0000000300)}, 0x20)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = epoll_create1(0x0)
epoll_pwait2(r3, &(0x7f0000000280)=[{}], 0x1, 0x0, 0x0, 0xfffffffffffffd37)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000040)={0x20002000})
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r2, &(0x7f0000000240)={0xe})
r4 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r4, &(0x7f00000023c0)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0x4, 0x2, 0x1c, {0xa, 0x4e22, 0x4, @remote, 0x7ff}}, 0x80, 0x0, 0x0, &(0x7f0000002440)=ANY=[@ANYRES16=r1], 0x18}, 0x20000000)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000200)=0xd)
r5 = userfaultfd(0x801)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
ioctl$UFFDIO_WRITEPROTECT(r5, 0xc018aa06, 0x0)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000006c0), 0x42600, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000140)=0x2)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000000)=0x19)
ioctl$TIOCVHANGUP(r6, 0x5437, 0x200000000000000)
syz_io_uring_setup(0x57ac, &(0x7f0000000000)={0x0, 0xfffffffc, 0x80, 0x1, 0x2b3}, &(0x7f0000000080), &(0x7f0000ff4000))
ioctl$UFFDIO_COPY(r5, 0xc028aa03, &(0x7f0000000240)={&(0x7f000095b000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x2000})
syz_usb_connect(0x5, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0xc0000, 0x0)
pipe2$watch_queue(&(0x7f0000000180), 0x80)
r7 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
read$FUSE(r7, &(0x7f0000000340)={0x2020}, 0xffffffffffffffea)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000002480)=0xe)
r8 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r8, &(0x7f0000000100)={0xa, 0x0, 0x80, @private2, 0x200000}, 0x1c)

3.11881363s ago: executing program 2 (id=7111):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000000"], 0x0}, 0x90) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x10, 0x4, 0x8, 0x2}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xd, 0x4, 0x4, 0xc, 0x0, r0}, 0x50) (async)
sendmsg$TIPC_NL_LINK_RESET_STATS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000040)={&(0x7f00000004c0)={0x41c, 0x0, 0x300, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x100}]}, @TIPC_NLA_NODE={0x2c8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x43, 0x4, {'gcm(aes)\x00', 0x1b, "ba53a09941956313487b8357b683020d089ecd1155e7aed045829f"}}, @TIPC_NLA_NODE_ID={0xe0, 0x3, "4d270be21b760a1b3f2d65957d86fadf269051af238b1ae33b667e4205e39a6b588f6ea2ab4eb780a202efde41e84438f81759039a9d8561de9e1ce7372213539bf5e94ffa2169eddbe1858122112add2820b4c483aeafbec0e1e761d2cb28f45d42b650d9b21ce867dcffb392e28de4262bd7779d944e5bffb7da8b3223189f3288a6f124a68c3926089849af348cd431ee3bb18cdcbed6e9eb39acd1faadb37aefda94c2e346ebd510a491048e2a843f03d01a82a3822fb6e8c15ee5c779b5ad0cb42cd37a29a2cedc18c93f6c129ab9ad347e945fb742da170f99"}, @TIPC_NLA_NODE_KEY={0x43, 0x4, {'gcm(aes)\x00', 0x1b, "be9cf609b0ed8fb2e8e045b74ba2864481749b9239269fb9cfa1a7"}}, @TIPC_NLA_NODE_ID={0xf6, 0x3, "daeada1aad9993e5a9bb1035199e86b1a568417d00e491663014ece4750f5996dbca411cee4d3632fcd28333dbedc03ce27bd891cbada33460a1dba12f2ff421e22a4e7b1e8d0380b5ac80a1d050ef88d421ade13e256da00290276049eea0f61e981ecf3a45097948399e3595d5da15baea06ca755fd35cf56d80a06e061a40d875858eb1908b3877f73bbd5f96cd2d4850853ee13c0a010198939ab44e12403d66831522e0d012cf16218dfabd996606059135c5976e78eb22288a21334be1532f16670503dd2d6150a2baa95dabc59a2f1268cb4bda9118066c68d7f9d60204394ede80c82957b0f5d3ae555801db45c5"}, @TIPC_NLA_NODE_ID={0x1d, 0x3, "489180af3f9107cf8b698388218d802cfbe6545b2090bb5f08"}, @TIPC_NLA_NODE_KEY={0x42, 0x4, {'gcm(aes)\x00', 0x1a, "a93d57450cb7e360f9cdc85f8c853425c59f240cba44ed244106"}}]}, @TIPC_NLA_PUBL={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xf16}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xf2e0}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4c}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xb}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x1}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x64fe}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x62b9}]}, @TIPC_NLA_SOCK={0x30, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7fffffff}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1000}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_SOCK={0x38, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}]}, @TIPC_NLA_SOCK_ADDR={0x8}, @TIPC_NLA_SOCK_ADDR={0x8}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x76b8}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xfffffffa}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8eac}]}, @TIPC_NLA_LINK={0x18, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_NODE={0x58, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x45, 0x4, {'gcm(aes)\x00', 0x1d, "aa417140c7fa4bac5b63ea8bc4a0179ba3d4e5d7f830c10209bfd553e9"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x3}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_NET={0x18, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0xedd}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x3}]}]}, 0x41c}, 0x1, 0x0, 0x0, 0x4004000}, 0x20000000) (async)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=@newae={0x40, 0x1e, 0x301, 0x70bd2a, 0x25dfdbfe, {{@in=@rand_addr=0x64010100, 0x204d4, 0x2, 0x2b}, @in=@loopback, 0x3, 0x3500}}, 0x40}, 0x1, 0x0, 0x0, 0x40004}, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3.118538087s ago: executing program 2 (id=7112):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './file0/file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x34, 0x40, 0x1, 0x7fffc, 0x4, {0x1}, [@nested={0x4, 0x48}, @nested={0x10, 0x1, 0x0, 0x1, [@nested={0xc, 0x10, 0x0, 0x1, [@nested={0x4, 0x8}, @nested={0x4, 0xf}]}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x34}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)
r2 = syz_open_dev$sndpcmc(&(0x7f0000000200), 0x0, 0x0)
ppoll(&(0x7f0000000240)=[{r2, 0x200}], 0x1, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000180)={0x54, 0x2, 0x6, 0x801, 0x0, 0x0, {0x1}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0xfffffffe}]}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}]}, 0x54}, 0x1, 0x0, 0x0, 0x4028055}, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x10080, 0x141)
getdents64(r3, &(0x7f0000000f80)=""/4096, 0x1000)

3.02634324s ago: executing program 2 (id=7113):
lchown(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x3}, @typedef={0x3}, @volatile={0x0, 0x0, 0x0, 0xa}]}, {0x0, [0x0, 0x0, 0x61, 0x61]}}, 0x0, 0x46}, 0x20)
write$binfmt_misc(r1, &(0x7f0000000000)="180c4552", 0x4)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000400)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x800000000000208, 0x0, 0x0, 0x2, 0xc, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100000000020000ffffffffff00", "2809e8dbe108598948224ad54afac11d875397bd3c5240f45f819e01177d2d458dd4992861ac00", "90be8b1c55080021000c547d03d8a0f4bd00", [0x0, 0x6]}})

2.984191125s ago: executing program 2 (id=7115):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000001c0)={r3, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0xd4}, 0x9c)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000140)={r3, 0x1}, &(0x7f0000000180)=0x8)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r6)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f00000000c0)=<r8=>0x0)
sendmsg$NFC_CMD_DEV_UP(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="010426bd7000f8dbdf250200000008000100", @ANYRES32=r8], 0x1c}, 0x1, 0x0, 0x0, 0x4048000}, 0x4008054)
bind(r4, &(0x7f00000000c0)=@nfc={0x27, r8, 0x0, 0x2}, 0x80)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x2, &(0x7f0000000040)=[{0x20}, {0x6}]})
write(r0, &(0x7f0000000000)="2e000000010002", 0x7)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000002, 0x40010, r9, 0xad6b0000)

2.069715527s ago: executing program 2 (id=7121):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
getpeername$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000140)=0x14)
setsockopt$packet_drop_memb(0xffffffffffffffff, 0x107, 0x2, &(0x7f00000001c0)={r1, 0x1, 0x6, @multicast}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./bus\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./bus\x00', &(0x7f0000000040)='nfs4\x00', 0x0, &(0x7f00000000c0)='rdma')
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x24}}, 0x0)
getsockname$packet(r3, &(0x7f0000000380)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x7)
ioctl$sock_ifreq(r3, 0x8970, &(0x7f0000000200)={'\x00', @ifru_mtu=0x4})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffff00f687000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x8010)
sendmsg$nl_route_sched(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@newqdisc={0x3c, 0x24, 0xe0b, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0xd, 0xe}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_SPLIT_GSO={0x8}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24020080}, 0x4044080)
bind$packet(r0, &(0x7f0000000040)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @remote}, 0x14)
sendto$inet6(r0, &(0x7f0000000800)="4103082c1116480401020200c52cf7c25975e005b02f88a8068986dd0300897c6b118777faffffff3066090cb600c5471d130a66321a54e7df305fbe258161b6fd8f2428652265d94c6fdbaefc57376a57c2feffff188be9427c323ef024a37016d2a7f9ab6e7941a6fc4f95aa73c1dfff4941f6503b5bd8c91db22cd33795481c94085fa12cdc679ac2a5d7b5d99b93fb07acb0da680e78b74c74aae8d7690d5986a9af81622a0ac210bc7b5ca5fed11cb54d046642670041e846bb184ff5d39fe8516d2d2a8d84e6e7dfcb2b8a8023444db513a3d7a124b59f0a5cd36489dbbb75cce3145d0ea3c3aa21af7cbcbc7a7575db782e757ca543109f5ddcec4930aa91f4119ea3d1f56140cb86cfe0724b23904ef5d05c725ee23918a502b1afe09fb0757d", 0xfc13, 0x880, 0x0, 0xfffffffffffffef0)

1.820133616s ago: executing program 2 (id=7125):
r0 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000280)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESDEC], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000b80)={0x44, &(0x7f0000000900)=ANY=[@ANYBLOB="0015b3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_ep_write(r0, 0x81, 0x8, &(0x7f0000000080)="00012c615bc20000")
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
readv(r1, &(0x7f0000000340)=[{&(0x7f0000002180)=""/4082, 0xff2}], 0x1)

569.611682ms ago: executing program 7 (id=7133):
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x66)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x10b8}, 0xff00)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYRESDEC], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000680)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000006c0), &(0x7f0000000140)='%+9llu \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000540)={r1, r0}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0x10, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000d000000b7080000000000007b8af8ff00000000b7080000020000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000200000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r2, 0x0, 0xee, 0x0, &(0x7f0000000580)="c1098ed4eb0000000000000000000000a67905c27ebb557bc6489a8ec51c50398283e0fc99808fb72669087ef6ddeb4151460c54396873342083a09eb70c36d6ace9201328f2c0fc0f66c2d9b5de3b0294c392f9a94700ee41e59ce64aec04f4107cdf2095f1e2775887a9c9340c9850d1ae5128aa3f1835b25cdb05033cbd3a9737dd065388bf25cc9a43a141aad2000820481dd5c42492b3e77ae33971d01b9bef1370a8fee116fd8d904626ba9ba428d6694afe98e51d8bd1f1d95df64e56cbd1c2e0beaf3d9f76d1d44788765365efed6cdc4501e9a79d67730519bd98da71803d07158637aefc9fc596ec26", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r3 = socket$kcm(0xa, 0x5, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000007c0)=@newtaction={0x7c, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x68, 0x1, [@m_tunnel_key={0x64, 0x1, 0x0, 0x0, {{0xf}, {0x34, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0xb, @loopback={0x4000000040003e4}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x7c}}, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r3}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)
r5 = socket$rxrpc(0x21, 0x2, 0xa)
setsockopt$RXRPC_MIN_SECURITY_LEVEL(r5, 0x110, 0x4, &(0x7f00000001c0), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x890b, &(0x7f0000000000))

477.579989ms ago: executing program 7 (id=7134):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001240)=@newqdisc={0x38, 0x24, 0x3fe3aa0262d8c583, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, r2, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x10, 0xe}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_QUANTUM={0x8, 0x12, 0x468fe4e8}]}}]}, 0x38}}, 0x4048000)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000009c0)=0x80000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000140)={@my=0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, &(0x7f00000001c0)={{@host}, @host, 0x0, 0x2000000, 0x2449, 0xfffffffffffffffd})
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r3, 0x10e, 0x4, &(0x7f0000000140)=0x7, 0x4)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001280)=@newtaction={0x18, 0x31, 0x3d, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000007c0)=@getchain={0x3c, 0x66, 0x400, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x8, 0xffe0}, {0x10, 0xfff1}, {0x1, 0x6}}, [{0x8, 0xb, 0xe0c}, {0x8, 0xb, 0x543}, {0x8, 0xb, 0xc}]}, 0x3c}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000700)={0x0, 0x1e5, &(0x7f00000006c0)={&(0x7f0000000640)=@delchain={0x0, 0x65, 0x20, 0x70bd25, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {0x8}, {0xfff1, 0x5}, {0x4, 0x9}}, [@TCA_RATE={0x0, 0x5, {0x40, 0x9}}, @TCA_RATE={0x0, 0x5, {0x4, 0x1}}, @TCA_CHAIN={0x0, 0xb, 0x1}, @TCA_RATE={0x0, 0x5, {0x6, 0x7}}]}, 0x28}}, 0x0)
r6 = socket$inet(0x2, 0x4000000805, 0x0)
sendto$inet(r6, &(0x7f00000002c0)="eb", 0x1, 0x0, &(0x7f0000000040)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xc, &(0x7f0000000080)=@assoc_value={<r8=>0x0}, &(0x7f0000000240)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r6, 0x84, 0x18, &(0x7f0000000000)={r8, 0x1}, 0x8)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f00000004c0)={<r9=>0x0, @in={{0x2, 0x4e20, @empty}}}, &(0x7f0000000100)=0x84)
r10 = socket$inet_sctp(0x2, 0x5, 0x84)
r11 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r11, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r12=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r10, 0x84, 0x10, &(0x7f0000000040)=@sack_info={r12, 0x8, 0x1ff}, 0xc)
sendmsg$inet_sctp(r1, &(0x7f0000000180)={&(0x7f0000000000)=@in6={0xa, 0x4e21, 0x401, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x10000}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000200)="0dd3a63699e54eca11002db0cb116f947e3dd844cc773c5e413c5e13d5be6530fab115ed91999d99551fc86e1f15fcf2ec79a45cf31138753072d997a1638f9d6b94b59b764cb3cb323440086876be0c08c76ab15f4bbc8f46dcdb9995d3fb1a1c124e4f82b7440bcc0ec5d27f4003704b13b53f97082dddfdc67a84cdda67fe499979de647e4764fb382b8b9c5f91bf122ebfe6ed430eccf23a3dfb3bdea3427afb47f642ea2d99cf31f06ddec1d52d076891bda54a614667cac6193ec9169feb9f6fd3f36688a0c7", 0xc9}, {&(0x7f00000003c0)="cf6b2796f272e87073f9c7c7e25b22ea161d368f08c2a137c2105762dff5ebc4e46208411873101fae016390e2ddd62f925b4fedb617e772bf941b89b5329b20ae14e24abe58315d79e139e246b9a9b9f7db8832b3744e27b8b7f2c976c0f48c0c15ce41cb34c348c690de93f354ee376d5594ee14b33ab4139e905fa925553c48a189cc794a531d321d43ab3e99b2e6fc0cb62b477c0018c01340e8884c8f614080b6080b964d7905d0a417adb9146dc0683ced6dceef50510f4067ee67e789f2f44f1f90eada024a53e59eced3d6c39cabb2787cdf4e97f5f08e0f26b37d7f3dc043881b8f8972486406db48f421", 0xef}], 0x2, &(0x7f0000000580)=ANY=[@ANYBLOB="3000000020000000840000000100030000005a000000000200000900000005000000", @ANYRES32=r8, @ANYBLOB="18000000000000008400000007000000ac1414410000000020000000000000008400000008000000fe80000000000000000000000000000f200000000000000084000000020000007f000a020000000000000000", @ANYRES32=r9, @ANYBLOB="20000000000000008400000002000000080004006cf3000004000000", @ANYRES32=r12], 0xa8, 0x4881}, 0x2048054)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000000c0)=0xb0000)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r0, 0x7a4, &(0x7f0000000380)={{@host, 0x4}, 0x59, 0x2800000000000000, 0x1, 0xfffffffa})

475.244923ms ago: executing program 8 (id=7135):
r0 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)
r1 = creat(&(0x7f0000000440)='./file0/file0\x00', 0x188)
quotactl_fd$Q_SYNC(r1, 0xffffffff80000101, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000004440)=ANY=[@ANYBLOB="09000000040000000400000007"], 0x48)
r3 = fsmount(r0, 0x1, 0x0)
fchdir(r3)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r4, 0x402, 0x1c)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000000c0)=@generic={&(0x7f0000000000)='./file0\x00', r2}, 0x18)
fsopen(&(0x7f00000001c0)='bpf\x00', 0x0) (async)
creat(&(0x7f0000000440)='./file0/file0\x00', 0x188) (async)
quotactl_fd$Q_SYNC(r1, 0xffffffff80000101, 0x0, 0x0) (async)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000004440)=ANY=[@ANYBLOB="09000000040000000400000007"], 0x48) (async)
fsmount(r0, 0x1, 0x0) (async)
fchdir(r3) (async)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) (async)
fcntl$notify(r4, 0x402, 0x1c) (async)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000000c0)=@generic={&(0x7f0000000000)='./file0\x00', r2}, 0x18) (async)

390.322486ms ago: executing program 8 (id=7136):
sysinfo(&(0x7f0000000000)=""/196)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0xc0384707, &(0x7f0000000040)={0x1, 0x0, 0x1, 0x400000, 0x12, "3eccd8fd0000000000000010000000040100"})

389.980776ms ago: executing program 7 (id=7137):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x80204705, &(0x7f0000000040)={0x1, 0x0, 0x1, 0x400000, 0x12, "3eccd8fd0000000000000010000000040100"})

385.956575ms ago: executing program 8 (id=7138):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x80204705, &(0x7f0000000040)={0x1, 0x0, 0x1, 0x400000, 0x12, "3eccd8fd0000000000000010000000040100"}) (fail_nth: 1)

348.607024ms ago: executing program 7 (id=7139):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000001c0)='./bus\x00', 0x145)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x200c400, &(0x7f0000000400)={[{@index_off}, {@verity_on}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
r8 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newqdisc={0x30, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}, {0x7, 0x1}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r10 = socket(0x400000000010, 0x3, 0x0)
r11 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r10, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r12, {0x0, 0x4}, {}, {0x8, 0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x0, 0x6}}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f0000000180)={0x30, 0x30, 0x30}}, 0x1000}], 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)

269.969473ms ago: executing program 8 (id=7140):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r0, 0xc008ae05, &(0x7f0000000040)={0x5, 0x0, [{0x4, 0xb, 0x4, 0xcc5, 0x4, 0x6}, {0x80000008, 0x80000000, 0x1, 0xcfe94afe, 0x1, 0x4, 0x750}, {0x40000001, 0x10, 0x1, 0x800, 0x0, 0x72, 0x2}, {0x0, 0x2, 0x4, 0x81, 0x1, 0x1, 0x8}, {0x4, 0x900000, 0x0, 0x6, 0x4, 0x0, 0xd088}]}) (async)
syz_emit_ethernet(0x4e, &(0x7f0000000180)={@link_local, @random="2ac7fd5d244d", @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "3f00e7", 0x18, 0x2c, 0x0, @local, @mcast2, {[], {0x0, 0xfffd, 0x18, 0x0, @wg=@data={0x4, 0x9, 0x7}}}}}}}, 0x0)

269.803191ms ago: executing program 8 (id=7141):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x42, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
getsockopt$packet_int(r0, 0x107, 0xa, 0x0, &(0x7f0000000040))
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100))
r1 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_ext={0x1c, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="184800000200000000000000000000008520000005000000258b01fffffe0000852000057e00000039a788e2e0b4a8cf15787dd8f7cb956b1448daf080aebf792de0734c1001b4f3fcb7a4bd46380ff7f7cfcfd337a6cc973ed462c8c89fb3a1dcf031618b7f697dfcd2e3e28644c0f5cebe582efe806fcc68baf63d607847fe5ed2b7cb8b92fb4c84ccd70888a11dc932ac6818449d2f870920902aad7126791666e41c8d9a229faf660bc03084017218e9df1a47a16c9b26c746b602964fc993fd10ce2f9185ade577806ea06f8037db7f11"], 0x0, 0x95, 0x0, 0x0, 0x40f00, 0x4a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x1f979}, 0x94)
r2 = socket$kcm(0x11, 0x2, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000040)="2e00000011008188040f80ec59acbc0413a1f8480b0000005e140602000000000e0027001000000002800000121f", 0x2e}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r2, 0x107, 0x14, &(0x7f0000000000), 0x4)
sendmsg$kcm(r2, &(0x7f0000001780)={&(0x7f00000003c0)=@caif, 0x80, 0x0}, 0x4008050)
mknodat$loop(r1, &(0x7f0000000200)='./file1\x00', 0x40, 0x1)
chdir(&(0x7f00000003c0)='./bus\x00')
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x2)
r4 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r4, &(0x7f00000001c0)={0x27, 0x0, 0x0, 0x5, 0x0, 0x49, "c46e9fd1a84b7fa0bf2cca6beb9363a680b652a86bcf56a1b9ca5386103a5ccbe47b7b9aa6d8d701a3ba00000000b97800001022f987617c318500", 0x11}, 0x60)
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
r6 = socket$rxrpc(0x21, 0x2, 0x2)
setsockopt$RXRPC_SECURITY_KEYRING(r6, 0x110, 0x2, &(0x7f0000000000)='\x00\xdb\xf9}\x94\xd7\xe5\x1f\xab{\xd0E\xbc\x1f\xb5<\xe4f=\b\x00\x00\x00\x00\x00\x00\x00\xe2\xde\x8c\x10boj\xd3X\x86\v\x8clx=\xbc0F\x94k\x8d\xe0\xeeP\xa8\xa9\x10\xd4\x0f\x1eL!\x82\x8d\x80\xd0#\xca\xaf#\xf6\x95\xf4\xf2\xce\x8f\x8c\xa4\t\xac\x96\x13\x96\xf76\xc1', 0x53)
bind$nfc_llcp(r5, &(0x7f00000001c0)={0x27, 0x0, 0x0, 0x5, 0x0, 0x49, "c46e9fd1a84b7fa0bf2cca6beb9363a680b652a86bcf56a1b9ca5386103a5ccbe47b7b9aa6d8d701a3ba00000000b97800001022f987617c318500", 0x3a}, 0x60)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0xf, 0x7fff7ffc}]})
close_range(r7, 0xffffffffffffffff, 0x200000000000000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000540)='./file7\x00', 0x1c0)
renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file7/file0\x00', 0x1)

139.511172ms ago: executing program 7 (id=7142):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$amidi(&(0x7f0000000000), 0x2, 0x1)
r2 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x40000)
ioctl$SNDRV_PCM_IOCTL_INFO(r2, 0x81204101, &(0x7f0000000040))
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r1, 0xc0305720, 0x0)
ioctl$IOMMU_VFIO_IOAS$GET(0xffffffffffffffff, 0x3b88, &(0x7f0000000180)={0xc, <r3=>0x0})
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r5=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r4, 0x3ba0, &(0x7f0000000000)={0x48, 0x2, r5, 0x0, <r6=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_REPLACE(r4, 0x3ba0, &(0x7f0000000280)={0x48, 0x15, r6, 0x0, r5})
ioctl$IOMMU_IOAS_COPY$syz(0xffffffffffffffff, 0x3b83, &(0x7f00000001c0)={0x28, 0x10000, r3, r5, 0x1472b4, 0x7, 0x8, 0x2dafbc})
sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000280)=@newlink={0x3c, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x505e8}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x4}}}, @IFLA_MTU={0x8, 0x4, 0xfffffffa}]}, 0x3c}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r7)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYRESHEX=r7], 0xb4}, 0x1, 0x0, 0x0, 0x4000050}, 0x40)
sendmsg$NFT_BATCH(r7, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000100001000000001f000000000500000a400000000c0a010100000000000000000a0000060900024073797a31000000000900f60073797a310000000014000380100000800c00018006000100d1030000140000001100010000000000000000000100000a"], 0x68}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

137.640528ms ago: executing program 3 (id=7143):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0041, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000140)=0x90)
socket(0x400000000010, 0x3, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x40000)
syz_usb_connect(0x2, 0x2d, 0x0, 0x0)
bind$can_j1939(0xffffffffffffffff, &(0x7f00000000c0)={0x1d, 0x0, 0x2, {}, 0x1}, 0x18)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x4048aec9, &(0x7f0000000140)={0x6, 0x0, @pic={0x8, 0x5, 0xf8, 0x6, 0x3, 0x0, 0xb, 0x2, 0xc, 0x4, 0x7, 0x84, 0x5, 0x0, 0x2, 0x9}})
write$binfmt_script(0xffffffffffffffff, &(0x7f00000004c0), 0x208e24b)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
statx(0xffffffffffffff9c, &(0x7f0000001740)='./cgroup.cpu/cgroup.procs\x00', 0x4000, 0x7ff, &(0x7f00000046c0))
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x13, r3, 0x0)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd86)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x121003, 0x0)
ioctl$FS_IOC_SETFLAGS(r5, 0x40081271, &(0x7f0000000980)=0x4000)
ioctl$BLKRRPART(r5, 0x125f, 0x0)
write$tun(r0, &(0x7f0000000100)=ANY=[@ANYRESDEC], 0xfdef)

60.132995ms ago: executing program 8 (id=7144):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='environ\x00')
read$FUSE(r0, 0x0, 0xa00)
r1 = socket(0x1e, 0x1, 0x0)
recvmsg$unix(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000500)=""/195, 0xc3}], 0x1}, 0x2)
clock_gettime(0x0, &(0x7f0000000200)={<r2=>0x0, <r3=>0x0})
utimes(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)={{r2, r3/1000+10000}, {0x0, 0xea60}})
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x8f0, &(0x7f0000002400)=<r5=>0x0)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000001480)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x3}]}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r7=>0x0})
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_STATION(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000000fddbdf251200000008000300", @ANYRES32=r7, @ANYBLOB="0a00060008021100000100000c00430002"], 0x34}}, 0x20048054)
io_submit(r5, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2002000000, 0x4, 0x0, 0x1, 0x0, r4, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}])

0s ago: executing program 7 (id=7145):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r2 = fspick(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1)
fsconfig$FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f0000000140)='syzkaller0\x00', &(0x7f0000000180)="c1d00f738c2ba69464263caa1113265ef471a8552b6988d3d8192a67107e7348ae7f4476f032372dbd6670a08817dd65f11b724404e99e75b329d42dd84e61", 0x3f)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="12000000000000000a0000000000d20900000000", @ANYRES32=0x1, @ANYBLOB='\b\x00'/19, @ANYRES32, @ANYRES32, @ANYBLOB="04000000000000000000004000"], 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r4, 0xffff0000, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x0, 0xffff0000}, 0x48)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_BACKLOG_LIMIT={0x8}]}}]}, 0x38}}, 0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r8, &(0x7f00000005c0)="bad330fbc9b55400040000ea0756", 0xe, 0x40, &(0x7f00000001c0)={0x11, 0x8100, r5, 0x1, 0xd8, 0x6, @multicast}, 0x14)

kernel console output (not intermixed with test programs):

29f/0x700
[ 1120.864493][T31940]  ? tomoyo_path2_perm+0x291/0x700
[ 1120.864522][T31940]  ? __pfx_tomoyo_path2_perm+0x10/0x10
[ 1120.864579][T31940]  ? do_raw_spin_lock+0x128/0x260
[ 1120.864608][T31940]  tomoyo_path_rename+0xfc/0x1a0
[ 1120.864633][T31940]  ? __pfx_tomoyo_path_rename+0x10/0x10
[ 1120.864660][T31940]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1120.864686][T31940]  security_path_rename+0x18e/0x3c0
[ 1120.864713][T31940]  do_renameat2+0x741/0xa10
[ 1120.864746][T31940]  ? __pfx_do_renameat2+0x10/0x10
[ 1120.864775][T31940]  ? __might_fault+0xc5/0x140
[ 1120.864813][T31940]  ? getname_flags.part.0+0x1c5/0x540
[ 1120.864841][T31940]  __x64_sys_renameat2+0x1f0/0x2a0
[ 1120.864870][T31940]  do_syscall_64+0xc9/0xf80
[ 1120.864895][T31940]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1120.864913][T31940] RIP: 0033:0x7fb28af9aeb9
[ 1120.864928][T31940] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1120.864947][T31940] RSP: 002b:00007fb2891f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[ 1120.864966][T31940] RAX: ffffffffffffffda RBX: 00007fb28b215fa0 RCX: 00007fb28af9aeb9
[ 1120.864978][T31940] RDX: ffffffffffffff9c RSI: 0000200000000780 RDI: ffffffffffffff9c
[ 1120.864989][T31940] RBP: 00007fb2891f6090 R08: 0000000000000001 R09: 0000000000000000
[ 1120.865005][T31940] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1120.865020][T31940] R13: 00007fb28b216038 R14: 00007fb28b215fa0 R15: 00007ffc17b6cbb8
[ 1120.865048][T31940]  </TASK>
[ 1120.865068][T31940] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1120.933450][T31942] Cannot find set identified by id 65534 to match
[ 1120.972830][T25285] usb 8-1: GET_CAPABILITIES returned 0
[ 1120.975036][T25285] usbtmc 8-1:16.0: can't read capabilities
[ 1121.178005][T31914] usbtmc 8-1:16.0: send_request_dev_dep_msg_in returned -90
[ 1121.181387][T31914] bond0: (slave veth1_macvtap): Error: Device is in use and cannot be enslaved
[ 1121.187427][   T13] bond0: (slave bond_slave_0): interface is now down
[ 1121.187747][T31914] netlink: 'syz.3.6898': attribute type 10 has an invalid length.
[ 1121.193564][   T13] bond0: (slave bond_slave_1): interface is now down
[ 1121.200244][T31960] netlink: 'syz.8.6908': attribute type 4 has an invalid length.
[ 1121.204051][   T13] bond0: now running without any active interface!
[ 1121.250135][   T40] audit: type=1400 audit(2000000155.479:920): avc:  denied  { mount } for  pid=31969 comm="syz.2.6910" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[ 1121.250532][T31970] overlay: ./file0 is not a directory
[ 1121.262409][T31970] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6910'.
[ 1121.284522][ T6044] usb 8-1: USB disconnect, device number 68
[ 1121.293029][T31978] xt_connbytes: Forcing CT accounting to be enabled
[ 1121.367184][T31993] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.6914'.
[ 1121.402411][T32001] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6916'.
[ 1121.505699][T32019] FAULT_INJECTION: forcing a failure.
[ 1121.505699][T32019] name failslab, interval 1, probability 0, space 0, times 0
[ 1121.509748][T32019] CPU: 2 UID: 0 PID: 32019 Comm: syz.2.6917 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1121.509766][T32019] Tainted: [L]=SOFTLOCKUP
[ 1121.509771][T32019] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1121.509777][T32019] Call Trace:
[ 1121.509781][T32019]  <TASK>
[ 1121.509786][T32019]  dump_stack_lvl+0x100/0x190
[ 1121.509804][T32019]  should_fail_ex.cold+0x5/0xa
[ 1121.509823][T32019]  should_failslab+0xc2/0x120
[ 1121.509838][T32019]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1121.509851][T32019]  __kmalloc_noprof+0xf6/0x9c0
[ 1121.509865][T32019]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1121.509877][T32019]  tomoyo_realpath_from_path+0xb6/0x690
[ 1121.509893][T32019]  tomoyo_path_number_perm+0x23c/0x580
[ 1121.509909][T32019]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1121.509927][T32019]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1121.509956][T32019]  ? find_held_lock+0x2b/0x80
[ 1121.509970][T32019]  ? hook_file_ioctl_common+0x146/0x410
[ 1121.509984][T32019]  ? __fget_files+0x215/0x3d0
[ 1121.510000][T32019]  ? __fget_files+0x21f/0x3d0
[ 1121.510015][T32019]  security_file_ioctl+0xd3/0x230
[ 1121.510028][T32019]  __x64_sys_ioctl+0xb7/0x210
[ 1121.510039][T32019]  do_syscall_64+0xc9/0xf80
[ 1121.510053][T32019]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1121.510064][T32019] RIP: 0033:0x7f2c0479aeb9
[ 1121.510074][T32019] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1121.510085][T32019] RSP: 002b:00007f2c029f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1121.510096][T32019] RAX: ffffffffffffffda RBX: 00007f2c04a15fa0 RCX: 00007f2c0479aeb9
[ 1121.510103][T32019] RDX: 00002000000002c0 RSI: 00000000c02064b2 RDI: 0000000000000005
[ 1121.510110][T32019] RBP: 00007f2c029f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1121.510116][T32019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1121.510122][T32019] R13: 00007f2c04a16038 R14: 00007f2c04a15fa0 R15: 00007ffce3bc9288
[ 1121.510136][T32019]  </TASK>
[ 1121.510141][T32019] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1121.626411][   T40] audit: type=1326 audit(2000000155.849:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32020 comm="syz.8.6918" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb28af9aeb9 code=0x0
[ 1121.819612][T32030] netlink: 'syz.3.6920': attribute type 10 has an invalid length.
[ 1121.826144][T32032] netlink: 'syz.3.6920': attribute type 10 has an invalid length.
[ 1121.831733][T32030] team0: Failed to send options change via netlink (err -105)
[ 1121.834882][T32030] team0: Port device dummy0 added
[ 1121.838808][T32032] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1121.850695][T32032] team0: Failed to send options change via netlink (err -105)
[ 1121.853395][T32032] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1121.858854][T32032] team0: Port device dummy0 removed
[ 1121.864679][T32032] bond0: (slave dummy0): Enslaving as an active interface with an up link
[ 1121.867430][T28592] bond0: (slave dummy0): interface is now down
[ 1121.870635][T28592] bond0: now running without any active interface!
[ 1121.962190][T32041] netlink: 224 bytes leftover after parsing attributes in process `syz.2.6921'.
[ 1121.974127][   T40] audit: type=1400 audit(2000000156.199:922): avc:  denied  { listen } for  pid=32033 comm="syz.2.6921" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[ 1121.980996][   T40] audit: type=1400 audit(2000000156.199:923): avc:  denied  { accept } for  pid=32033 comm="syz.2.6921" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[ 1122.313842][T32042] FAULT_INJECTION: forcing a failure.
[ 1122.313842][T32042] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1122.319899][T32042] CPU: 3 UID: 0 PID: 32042 Comm: syz.3.6922 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1122.319932][T32042] Tainted: [L]=SOFTLOCKUP
[ 1122.319939][T32042] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1122.319950][T32042] Call Trace:
[ 1122.319958][T32042]  <TASK>
[ 1122.319966][T32042]  dump_stack_lvl+0x100/0x190
[ 1122.319995][T32042]  should_fail_ex.cold+0x5/0xa
[ 1122.320023][T32042]  ? page_copy_sane+0x17c/0x2d0
[ 1122.320049][T32042]  copy_folio_from_iter_atomic+0x427/0x1e70
[ 1122.320085][T32042]  ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[ 1122.320131][T32042]  ? fault_in_readable+0x14c/0x190
[ 1122.320155][T32042]  ? __pfx_fault_in_readable+0x10/0x10
[ 1122.320188][T32042]  iomap_file_buffered_write+0x532/0xac0
[ 1122.320221][T32042]  ? __pfx_iomap_file_buffered_write+0x10/0x10
[ 1122.320245][T32042]  ? __pfx_rwsem_down_write_slowpath+0x10/0x10
[ 1122.320291][T32042]  ? __pfx_generic_write_checks+0x10/0x10
[ 1122.320310][T32042]  ? file_update_time_flags+0x31f/0x510
[ 1122.320336][T32042]  ? __pfx_down_write+0x10/0x10
[ 1122.320369][T32042]  fuse_file_write_iter+0x6f8/0x990
[ 1122.320393][T32042]  vfs_write+0x6ac/0x1070
[ 1122.320410][T32042]  ? __pfx_fuse_file_write_iter+0x10/0x10
[ 1122.320434][T32042]  ? __pfx_vfs_write+0x10/0x10
[ 1122.320452][T32042]  ? find_held_lock+0x2b/0x80
[ 1122.320489][T32042]  ksys_write+0x1f8/0x250
[ 1122.320509][T32042]  ? __pfx_ksys_write+0x10/0x10
[ 1122.320535][T32042]  do_syscall_64+0xc9/0xf80
[ 1122.320555][T32042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1122.320572][T32042] RIP: 0033:0x7ff3be39aeb9
[ 1122.320586][T32042] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1122.320601][T32042] RSP: 002b:00007ff3bf1a3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1122.320617][T32042] RAX: ffffffffffffffda RBX: 00007ff3be616090 RCX: 00007ff3be39aeb9
[ 1122.320629][T32042] RDX: 00000000ffffffe8 RSI: 0000200000000100 RDI: 0000000000000003
[ 1122.320639][T32042] RBP: 00007ff3bf1a3090 R08: 0000000000000000 R09: 0000000000000000
[ 1122.320651][T32042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1122.320660][T32042] R13: 00007ff3be616128 R14: 00007ff3be616090 R15: 00007ffc28962df8
[ 1122.320680][T32042]  </TASK>
[ 1122.558437][   T40] audit: type=1400 audit(2000000156.789:924): avc:  denied  { write } for  pid=32047 comm="syz.8.6923" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[ 1122.606859][T32051] Bluetooth: MGMT ver 1.23
[ 1122.610888][   T40] audit: type=1400 audit(2000000156.839:925): avc:  denied  { execute } for  pid=32050 comm="syz.8.6924" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=130539 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[ 1122.857530][T14252] usb 13-1: new high-speed USB device number 5 using dummy_hcd
[ 1123.007754][T14252] usb 13-1: Using ep0 maxpacket: 8
[ 1123.011401][T14252] usb 13-1: config index 0 descriptor too short (expected 301, got 45)
[ 1123.014893][T14252] usb 13-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1123.020115][T14252] usb 13-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1123.024152][T14252] usb 13-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1123.029951][T14252] usb 13-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1123.035394][T14252] usb 13-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1123.039440][T14252] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1123.248539][T14252] usb 13-1: usb_control_msg returned -32
[ 1123.250343][T14252] usbtmc 13-1:16.0: can't read capabilities
[ 1123.302416][T32103] team_slave_1: mtu greater than device maximum
[ 1123.305219][T32103] team0: Device team_slave_1 failed to change mtu
[ 1123.448373][T32103]  pmem0: [POWERTEC]
[ 1123.613197][T32125] usbtmc 13-1:16.0: usb_control_msg returned -32
[ 1123.658170][T23557] usb 13-1: USB disconnect, device number 5
[ 1124.005627][T32151] FAULT_INJECTION: forcing a failure.
[ 1124.005627][T32151] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1124.010003][T32151] CPU: 1 UID: 0 PID: 32151 Comm: syz.3.6941 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1124.010022][T32151] Tainted: [L]=SOFTLOCKUP
[ 1124.010026][T32151] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1124.010033][T32151] Call Trace:
[ 1124.010045][T32151]  <TASK>
[ 1124.010050][T32151]  dump_stack_lvl+0x100/0x190
[ 1124.010080][T32151]  should_fail_ex.cold+0x5/0xa
[ 1124.010104][T32151]  _copy_to_user+0x32/0xd0
[ 1124.010126][T32151]  binder_ioctl+0x286d/0x7450
[ 1124.010148][T32151]  ? tomoyo_path_number_perm+0x188/0x580
[ 1124.010170][T32151]  ? __pfx_binder_ioctl+0x10/0x10
[ 1124.010182][T32151]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1124.010199][T32151]  ? do_vfs_ioctl+0x226/0x13e0
[ 1124.010210][T32151]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1124.010219][T32151]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[ 1124.010233][T32151]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 1124.010253][T32151]  ? selinux_file_ioctl+0x139/0x290
[ 1124.010264][T32151]  ? selinux_file_ioctl+0xb4/0x290
[ 1124.010276][T32151]  ? __pfx_binder_ioctl+0x10/0x10
[ 1124.010287][T32151]  __x64_sys_ioctl+0x18e/0x210
[ 1124.010298][T32151]  do_syscall_64+0xc9/0xf80
[ 1124.010312][T32151]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1124.010323][T32151] RIP: 0033:0x7ff3be39aeb9
[ 1124.010333][T32151] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1124.010344][T32151] RSP: 002b:00007ff3bf1c4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1124.010355][T32151] RAX: ffffffffffffffda RBX: 00007ff3be615fa0 RCX: 00007ff3be39aeb9
[ 1124.010362][T32151] RDX: 0000200000000480 RSI: 00000000c0306201 RDI: 0000000000000003
[ 1124.010369][T32151] RBP: 00007ff3bf1c4090 R08: 0000000000000000 R09: 0000000000000000
[ 1124.010376][T32151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1124.010383][T32151] R13: 00007ff3be616038 R14: 00007ff3be615fa0 R15: 00007ffc28962df8
[ 1124.010396][T32151]  </TASK>
[ 1124.010401][T32151] binder: 32150:32151 ioctl c0306201 200000000480 returned -14
[ 1124.229889][T32163] syzkaller0: entered promiscuous mode
[ 1124.232262][T32163] syzkaller0: entered allmulticast mode
[ 1124.402215][T32176] FAULT_INJECTION: forcing a failure.
[ 1124.402215][T32176] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1124.406200][T32191] netlink: 68 bytes leftover after parsing attributes in process `syz.3.6951'.
[ 1124.406321][T32176] CPU: 0 UID: 0 PID: 32176 Comm: syz.7.6946 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1124.406354][T32176] Tainted: [L]=SOFTLOCKUP
[ 1124.406359][T32176] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1124.406366][T32176] Call Trace:
[ 1124.406370][T32176]  <TASK>
[ 1124.406375][T32176]  dump_stack_lvl+0x100/0x190
[ 1124.406394][T32176]  should_fail_ex.cold+0x5/0xa
[ 1124.406413][T32176]  _copy_from_iter+0x1f4/0x1690
[ 1124.406430][T32176]  ? __alloc_skb+0x220/0x410
[ 1124.406442][T32176]  ? __alloc_skb+0x35d/0x410
[ 1124.406455][T32176]  ? __pfx__copy_from_iter+0x10/0x10
[ 1124.406469][T32176]  ? selinux_socket_getpeersec_dgram+0x1a4/0x380
[ 1124.406487][T32176]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[ 1124.406510][T32176]  netlink_sendmsg+0x808/0xda0
[ 1124.406529][T32176]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1124.406544][T32176]  ? __might_fault+0x70/0x140
[ 1124.406561][T32176]  ____sys_sendmsg+0xa54/0xc30
[ 1124.406573][T32176]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1124.406589][T32176]  ___sys_sendmsg+0x190/0x1e0
[ 1124.406601][T32176]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1124.406619][T32176]  ? find_held_lock+0x2b/0x80
[ 1124.406642][T32176]  __sys_sendmsg+0x170/0x220
[ 1124.406657][T32176]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1124.406685][T32176]  do_syscall_64+0xc9/0xf80
[ 1124.406699][T32176]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1124.406710][T32176] RIP: 0033:0x7fe1c819aeb9
[ 1124.406720][T32176] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1124.406730][T32176] RSP: 002b:00007fe1c9089028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1124.406742][T32176] RAX: ffffffffffffffda RBX: 00007fe1c8415fa0 RCX: 00007fe1c819aeb9
[ 1124.406749][T32176] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000004
[ 1124.406755][T32176] RBP: 00007fe1c9089090 R08: 0000000000000000 R09: 0000000000000000
[ 1124.406762][T32176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1124.406769][T32176] R13: 00007fe1c8416038 R14: 00007fe1c8415fa0 R15: 00007ffc8ab424b8
[ 1124.406783][T32176]  </TASK>
[ 1124.431707][T32195] FAULT_INJECTION: forcing a failure.
[ 1124.431707][T32195] name failslab, interval 1, probability 0, space 0, times 0
[ 1124.488265][T32195] CPU: 0 UID: 0 PID: 32195 Comm: syz.7.6953 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1124.488283][T32195] Tainted: [L]=SOFTLOCKUP
[ 1124.488288][T32195] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1124.488294][T32195] Call Trace:
[ 1124.488298][T32195]  <TASK>
[ 1124.488303][T32195]  dump_stack_lvl+0x100/0x190
[ 1124.488322][T32195]  should_fail_ex.cold+0x5/0xa
[ 1124.488347][T32195]  should_failslab+0xc2/0x120
[ 1124.488363][T32195]  __kmalloc_node_track_caller_noprof+0xf9/0x9d0
[ 1124.488377][T32195]  ? rcu_is_watching+0x12/0xc0
[ 1124.488391][T32195]  ? property_entries_dup.part.0+0xd4/0x940
[ 1124.488408][T32195]  ? property_entries_dup.part.0+0x2c9/0x940
[ 1124.488426][T32195]  ? kstrdup+0x51/0xe0
[ 1124.488438][T32195]  kstrdup+0x51/0xe0
[ 1124.488452][T32195]  property_entries_dup.part.0+0x2c9/0x940
[ 1124.488470][T32195]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1124.488488][T32195]  fwnode_create_software_node+0xad/0x3f0
[ 1124.488506][T32195]  device_create_managed_software_node+0x103/0x270
[ 1124.488520][T32195]  iommufd_test+0x2f42/0x6610
[ 1124.488534][T32195]  ? __lock_acquire+0x4a5/0x2630
[ 1124.488546][T32195]  ? __pfx_iommufd_test+0x10/0x10
[ 1124.488558][T32195]  ? tomoyo_path_number_perm+0x188/0x580
[ 1124.488580][T32195]  ? find_held_lock+0x2b/0x80
[ 1124.488595][T32195]  ? __might_fault+0xc5/0x140
[ 1124.488612][T32195]  iommufd_fops_ioctl+0x358/0x520
[ 1124.488627][T32195]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[ 1124.488646][T32195]  ? selinux_file_ioctl+0x139/0x290
[ 1124.488657][T32195]  ? selinux_file_ioctl+0xb4/0x290
[ 1124.488669][T32195]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[ 1124.488683][T32195]  __x64_sys_ioctl+0x18e/0x210
[ 1124.488695][T32195]  do_syscall_64+0xc9/0xf80
[ 1124.488709][T32195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1124.488720][T32195] RIP: 0033:0x7fe1c819aeb9
[ 1124.488729][T32195] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1124.488740][T32195] RSP: 002b:00007fe1c9089028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1124.488752][T32195] RAX: ffffffffffffffda RBX: 00007fe1c8415fa0 RCX: 00007fe1c819aeb9
[ 1124.488759][T32195] RDX: 0000200000000180 RSI: 0000000000003ba0 RDI: 0000000000000003
[ 1124.488765][T32195] RBP: 00007fe1c9089090 R08: 0000000000000000 R09: 0000000000000000
[ 1124.488772][T32195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1124.488778][T32195] R13: 00007fe1c8416038 R14: 00007fe1c8415fa0 R15: 00007ffc8ab424b8
[ 1124.488792][T32195]  </TASK>
[ 1124.488808][T32195] iommufd_mock iommufd_mock0: add pasid-num-bits property failed, rc: -12
[ 1124.686375][T32212] fuse: Bad value for 'group_id'
[ 1124.688344][T32212] fuse: Bad value for 'group_id'
[ 1124.692919][T32212] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[ 1124.697741][   T76] usb 8-1: new high-speed USB device number 69 using dummy_hcd
[ 1124.847631][   T76] usb 8-1: device descriptor read/64, error -71
[ 1124.961242][   T40] audit: type=1400 audit(2000000159.189:926): avc:  denied  { map } for  pid=32230 comm="syz.2.6961" path="/dev/hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1124.968391][   T40] audit: type=1400 audit(2000000159.189:927): avc:  denied  { execute } for  pid=32230 comm="syz.2.6961" path="/dev/hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1124.980790][T32231] sctp: [Deprecated]: syz.2.6961 (pid 32231) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1124.980790][T32231] Use struct sctp_sack_info instead
[ 1125.080771][T32235] FAULT_INJECTION: forcing a failure.
[ 1125.080771][T32235] name failslab, interval 1, probability 0, space 0, times 0
[ 1125.085608][T32235] CPU: 1 UID: 0 PID: 32235 Comm: syz.2.6962 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1125.085635][T32235] Tainted: [L]=SOFTLOCKUP
[ 1125.085641][T32235] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1125.085651][T32235] Call Trace:
[ 1125.085657][T32235]  <TASK>
[ 1125.085666][T32235]  dump_stack_lvl+0x100/0x190
[ 1125.085689][T32235]  should_fail_ex.cold+0x5/0xa
[ 1125.085718][T32235]  should_failslab+0xc2/0x120
[ 1125.085740][T32235]  kmem_cache_alloc_noprof+0x83/0x780
[ 1125.085760][T32235]  ? kernel_text_address+0x8d/0x100
[ 1125.085776][T32235]  ? fuse_request_alloc+0x22/0x200
[ 1125.085796][T32235]  ? fuse_request_alloc+0x22/0x200
[ 1125.085811][T32235]  fuse_request_alloc+0x22/0x200
[ 1125.085827][T32235]  fuse_get_req+0x74a/0xfe0
[ 1125.085846][T32235]  ? stack_trace_save+0x8e/0xc0
[ 1125.085870][T32235]  ? __pfx_fuse_get_req+0x10/0x10
[ 1125.085886][T32235]  ? stack_depot_save_flags+0x27/0x9c0
[ 1125.085907][T32235]  ? kasan_save_stack+0x3f/0x50
[ 1125.085926][T32235]  ? kasan_save_stack+0x30/0x50
[ 1125.085947][T32235]  __fuse_simple_request+0xb5/0xe70
[ 1125.085964][T32235]  ? path_openat+0x14b7/0x3120
[ 1125.085983][T32235]  ? do_filp_open+0x1f7/0x420
[ 1125.085997][T32235]  ? do_open_execat+0xf6/0x3a0
[ 1125.086011][T32235]  ? alloc_bprm+0x2d/0x710
[ 1125.086029][T32235]  fuse_getxattr+0x313/0x420
[ 1125.086046][T32235]  ? __pfx_fuse_getxattr+0x10/0x10
[ 1125.086090][T32235]  __fuse_get_acl.part.0+0xb8/0x240
[ 1125.086104][T32235]  fuse_get_inode_acl+0x1b2/0x210
[ 1125.086120][T32235]  ? __pfx_fuse_get_inode_acl+0x10/0x10
[ 1125.086138][T32235]  __get_acl+0x34d/0x490
[ 1125.086155][T32235]  ? __pfx___get_acl+0x10/0x10
[ 1125.086172][T32235]  ? find_held_lock+0x2b/0x80
[ 1125.086194][T32235]  generic_permission+0x663/0x800
[ 1125.086218][T32235]  fuse_permission+0x40b/0x670
[ 1125.086244][T32235]  ? __pfx_fuse_permission+0x10/0x10
[ 1125.086266][T32235]  inode_permission+0x3f1/0x630
[ 1125.086293][T32235]  may_open+0x2b8/0x480
[ 1125.086316][T32235]  path_openat+0x14b7/0x3120
[ 1125.086340][T32235]  ? __pfx_path_openat+0x10/0x10
[ 1125.086358][T32235]  ? stack_trace_save+0x8e/0xc0
[ 1125.086380][T32235]  ? __pfx_stack_trace_save+0x10/0x10
[ 1125.086403][T32235]  ? stack_depot_save_flags+0x27/0x9c0
[ 1125.086424][T32235]  do_filp_open+0x1f7/0x420
[ 1125.086446][T32235]  ? __pfx_do_filp_open+0x10/0x10
[ 1125.086464][T32235]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1125.086506][T32235]  do_open_execat+0xf6/0x3a0
[ 1125.086519][T32235]  ? __pfx_do_open_execat+0x10/0x10
[ 1125.086543][T32235]  alloc_bprm+0x2d/0x710
[ 1125.086562][T32235]  do_execveat_common.isra.0+0x1d0/0x5b0
[ 1125.086584][T32235]  __x64_sys_execveat+0xda/0x120
[ 1125.086605][T32235]  do_syscall_64+0xc9/0xf80
[ 1125.086621][T32235]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1125.086637][T32235] RIP: 0033:0x7f2c0479aeb9
[ 1125.086651][T32235] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1125.086666][T32235] RSP: 002b:00007f2c029d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1125.086683][T32235] RAX: ffffffffffffffda RBX: 00007f2c04a16090 RCX: 00007f2c0479aeb9
[ 1125.086695][T32235] RDX: 0000000000000000 RSI: 0000200000001400 RDI: ffffffffffffff9c
[ 1125.086705][T32235] RBP: 00007f2c029d5090 R08: 0000000000000000 R09: 0000000000000000
[ 1125.086714][T32235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1125.086724][T32235] R13: 00007f2c04a16128 R14: 00007f2c04a16090 R15: 00007ffce3bc9288
[ 1125.086741][T32235]  </TASK>
[ 1125.087726][   T76] usb 8-1: new high-speed USB device number 70 using dummy_hcd
[ 1125.230983][T32216] FAULT_INJECTION: forcing a failure.
[ 1125.230983][T32216] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1125.236109][T32216] CPU: 3 UID: 0 PID: 32216 Comm: syz.8.6956 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1125.236136][T32216] Tainted: [L]=SOFTLOCKUP
[ 1125.236142][T32216] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1125.236152][T32216] Call Trace:
[ 1125.236161][T32216]  <TASK>
[ 1125.236169][T32216]  dump_stack_lvl+0x100/0x190
[ 1125.236193][T32216]  should_fail_ex.cold+0x5/0xa
[ 1125.236238][T32216]  _copy_to_user+0x32/0xd0
[ 1125.236262][T32216]  snd_pcm_oss_read2+0x294/0x400
[ 1125.236281][T32216]  ? __pfx_snd_pcm_oss_read2+0x10/0x10
[ 1125.236298][T32216]  ? snd_pcm_kernel_ioctl+0x14a/0x2e0
[ 1125.236321][T32216]  ? snd_pcm_oss_prepare+0x11e/0x240
[ 1125.236340][T32216]  snd_pcm_oss_read+0x5aa/0x730
[ 1125.236361][T32216]  ? __pfx_snd_pcm_oss_read+0x10/0x10
[ 1125.236378][T32216]  vfs_read+0x1e4/0xb30
[ 1125.236397][T32216]  ? __pfx_vfs_read+0x10/0x10
[ 1125.236412][T32216]  ? find_held_lock+0x2b/0x80
[ 1125.236433][T32216]  ? __fget_files+0x215/0x3d0
[ 1125.236452][T32216]  ? __fget_files+0x215/0x3d0
[ 1125.236474][T32216]  ? __fget_files+0x21f/0x3d0
[ 1125.236496][T32216]  ksys_read+0x12a/0x250
[ 1125.236514][T32216]  ? __pfx_ksys_read+0x10/0x10
[ 1125.236531][T32216]  ? fput+0x79/0x100
[ 1125.236556][T32216]  do_syscall_64+0xc9/0xf80
[ 1125.236576][T32216]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1125.236593][T32216] RIP: 0033:0x7fb28af9aeb9
[ 1125.236604][T32216] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1125.236620][T32216] RSP: 002b:00007fb2891f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1125.236636][T32216] RAX: ffffffffffffffda RBX: 00007fb28b215fa0 RCX: 00007fb28af9aeb9
[ 1125.236648][T32216] RDX: 0000000000001000 RSI: 00002000000002c0 RDI: 0000000000000007
[ 1125.236657][T32216] RBP: 00007fb2891f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1125.236668][T32216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1125.236678][T32216] R13: 00007fb28b216038 R14: 00007fb28b215fa0 R15: 00007ffc17b6cbb8
[ 1125.236698][T32216]  </TASK>
[ 1125.377461][   T76] usb 8-1: device descriptor read/64, error -71
[ 1125.488783][   T76] usb usb8-port1: attempt power cycle
[ 1125.837459][   T76] usb 8-1: new high-speed USB device number 71 using dummy_hcd
[ 1125.869620][   T76] usb 8-1: device descriptor read/8, error -71
[ 1125.973689][T32250] No control pipe specified
[ 1126.062262][T32254] fuse: Unknown parameter 'rootmo000000000040000'
[ 1126.107703][   T76] usb 8-1: new high-speed USB device number 72 using dummy_hcd
[ 1126.139433][   T76] usb 8-1: device descriptor read/8, error -71
[ 1126.257898][   T76] usb usb8-port1: unable to enumerate USB device
[ 1126.334595][T32270] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6970'.
[ 1126.335124][T32269] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6970'.
[ 1126.342035][T32270] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[ 1126.345737][T32269] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[ 1126.356531][T32269] netlink: 'syz.2.6970': attribute type 2 has an invalid length.
[ 1126.365287][   T40] audit: type=1400 audit(2000000160.589:928): avc:  denied  { bind } for  pid=32268 comm="syz.2.6970" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1126.469409][T32274] FAULT_INJECTION: forcing a failure.
[ 1126.469409][T32274] name failslab, interval 1, probability 0, space 0, times 0
[ 1126.474743][T32274] CPU: 0 UID: 0 PID: 32274 Comm: syz.7.6972 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1126.474773][T32274] Tainted: [L]=SOFTLOCKUP
[ 1126.474780][T32274] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1126.474791][T32274] Call Trace:
[ 1126.474799][T32274]  <TASK>
[ 1126.474808][T32274]  dump_stack_lvl+0x100/0x190
[ 1126.474836][T32274]  should_fail_ex.cold+0x5/0xa
[ 1126.474868][T32274]  should_failslab+0xc2/0x120
[ 1126.474893][T32274]  kmem_cache_alloc_noprof+0x83/0x780
[ 1126.474917][T32274]  ? kvm_arch_vcpu_create+0x4a4/0xac0
[ 1126.474947][T32274]  ? kvm_arch_vcpu_create+0x4a4/0xac0
[ 1126.474972][T32274]  kvm_arch_vcpu_create+0x4a4/0xac0
[ 1126.475003][T32274]  kvm_vm_ioctl+0x756/0x4020
[ 1126.475038][T32274]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[ 1126.475080][T32274]  ? kasan_quarantine_put+0x104/0x240
[ 1126.475100][T32274]  ? lockdep_hardirqs_on+0x78/0x100
[ 1126.475124][T32274]  ? find_held_lock+0x2b/0x80
[ 1126.475153][T32274]  ? tomoyo_path_number_perm+0x28f/0x580
[ 1126.475182][T32274]  ? tomoyo_path_number_perm+0x28f/0x580
[ 1126.475215][T32274]  ? tomoyo_path_number_perm+0x188/0x580
[ 1126.475244][T32274]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1126.475281][T32274]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1126.475309][T32274]  ? do_vfs_ioctl+0x226/0x13e0
[ 1126.475328][T32274]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1126.475343][T32274]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[ 1126.475364][T32274]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 1126.475400][T32274]  ? selinux_file_ioctl+0x139/0x290
[ 1126.475418][T32274]  ? selinux_file_ioctl+0xb4/0x290
[ 1126.475438][T32274]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[ 1126.475466][T32274]  __x64_sys_ioctl+0x18e/0x210
[ 1126.475486][T32274]  do_syscall_64+0xc9/0xf80
[ 1126.475508][T32274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1126.475527][T32274] RIP: 0033:0x7fe1c819aeb9
[ 1126.475544][T32274] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1126.475562][T32274] RSP: 002b:00007fe1c9089028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1126.475580][T32274] RAX: ffffffffffffffda RBX: 00007fe1c8415fa0 RCX: 00007fe1c819aeb9
[ 1126.475592][T32274] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 1126.475602][T32274] RBP: 00007fe1c9089090 R08: 0000000000000000 R09: 0000000000000000
[ 1126.475613][T32274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1126.475624][T32274] R13: 00007fe1c8416038 R14: 00007fe1c8415fa0 R15: 00007ffc8ab424b8
[ 1126.475649][T32274]  </TASK>
[ 1126.475657][T32274] kvm: failed to allocate vcpu's emulator
[ 1126.727422][ T6044] usb 7-1: new full-speed USB device number 58 using dummy_hcd
[ 1126.890086][ T6044] usb 7-1: config 0 has an invalid interface number: 205 but max is 0
[ 1126.893634][ T6044] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1126.901868][ T6044] usb 7-1: config 0 has no interface number 0
[ 1126.905216][ T6044] usb 7-1: config 0 interface 205 has no altsetting 0
[ 1126.911221][ T6044] usb 7-1: New USB device found, idVendor=1822, idProduct=3202, bcdDevice=13.4a
[ 1126.915111][ T6044] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1126.918557][ T6044] usb 7-1: Product: syz
[ 1126.920462][ T6044] usb 7-1: Manufacturer: syz
[ 1126.922404][ T6044] usb 7-1: SerialNumber: syz
[ 1126.927512][ T6044] usb 7-1: config 0 descriptor??
[ 1126.932784][ T6044] dvb-usb: found a 'TwinhanDTV USB-Ter USB1.1 / Magic Box I / HAMA USB1.1 DVB-T device' in warm state.
[ 1126.938176][ T6044] dvb-usb: bulk message failed: -22 (3/0)
[ 1126.971749][ T6044] dvb-usb: will use the device's hardware PID filter (table count: 16).
[ 1126.975635][ T6044] dvbdev: DVB: registering new adapter (TwinhanDTV USB-Ter USB1.1 / Magic Box I / HAMA USB1.1 DVB-T device)
[ 1126.979354][ T6044] usb 7-1: media controller created
[ 1126.981887][ T6044] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1126.990656][ T6044] dvb-usb: bulk message failed: -22 (6/0)
[ 1126.992921][ T6044] dvb-usb: no frontend was attached by 'TwinhanDTV USB-Ter USB1.1 / Magic Box I / HAMA USB1.1 DVB-T device'
[ 1126.998401][ T6044] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb7/7-1/input/input105
[ 1127.003276][ T6044] dvb-usb: schedule remote query interval to 150 msecs.
[ 1127.005486][ T6044] dvb-usb: bulk message failed: -22 (3/0)
[ 1127.017775][ T6044] dvb-usb: TwinhanDTV USB-Ter USB1.1 / Magic Box I / HAMA USB1.1 DVB-T device successfully initialized and connected.
[ 1127.158046][ T6044] dvb-usb: bulk message failed: -22 (1/0)
[ 1127.160517][ T6044] dvb-usb: error while querying for an remote control event.
[ 1127.189682][T32297] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6973'.
[ 1127.249984][T32298] netlink: 212368 bytes leftover after parsing attributes in process `syz.2.6973'.
[ 1127.319029][ T6044] dvb-usb: bulk message failed: -22 (1/0)
[ 1127.321662][ T6044] dvb-usb: error while querying for an remote control event.
[ 1127.478405][ T6044] dvb-usb: bulk message failed: -22 (1/0)
[ 1127.480622][ T6044] dvb-usb: error while querying for an remote control event.
[ 1127.562547][T32313] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6978'.
[ 1127.637664][ T6044] dvb-usb: bulk message failed: -22 (1/0)
[ 1127.641315][ T6044] dvb-usb: error while querying for an remote control event.
[ 1127.690335][T32327] iommufd_mock iommufd_mock0: Adding to iommu group 9
[ 1127.715596][T32335] FAULT_INJECTION: forcing a failure.
[ 1127.715596][T32335] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1127.728702][T32335] CPU: 1 UID: 0 PID: 32335 Comm: syz.7.6982 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1127.728735][T32335] Tainted: [L]=SOFTLOCKUP
[ 1127.728742][T32335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1127.728753][T32335] Call Trace:
[ 1127.728761][T32335]  <TASK>
[ 1127.728769][T32335]  dump_stack_lvl+0x100/0x190
[ 1127.728800][T32335]  should_fail_ex.cold+0x5/0xa
[ 1127.728833][T32335]  _copy_from_user+0x2e/0xd0
[ 1127.728860][T32335]  kstrtouint_from_user+0xd6/0x1d0
[ 1127.728879][T32335]  ? __pfx_kstrtouint_from_user+0x10/0x10
[ 1127.728897][T32335]  ? __lock_acquire+0x4a5/0x2630
[ 1127.728920][T32335]  ? lock_acquire+0x17c/0x330
[ 1127.728945][T32335]  proc_fail_nth_write+0x83/0x220
[ 1127.728973][T32335]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1127.729006][T32335]  vfs_write+0x2aa/0x1070
[ 1127.729029][T32335]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1127.729057][T32335]  ? __pfx_vfs_write+0x10/0x10
[ 1127.729083][T32335]  ? find_held_lock+0x2b/0x80
[ 1127.729108][T32335]  ? __fget_files+0x215/0x3d0
[ 1127.729137][T32335]  ? __fget_files+0x21f/0x3d0
[ 1127.729166][T32335]  ksys_write+0x12a/0x250
[ 1127.729187][T32335]  ? __pfx_ksys_write+0x10/0x10
[ 1127.729215][T32335]  do_syscall_64+0xc9/0xf80
[ 1127.729237][T32335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1127.729255][T32335] RIP: 0033:0x7fe1c815b78e
[ 1127.729269][T32335] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1127.729286][T32335] RSP: 002b:00007fe1c9088fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1127.729305][T32335] RAX: ffffffffffffffda RBX: 00007fe1c90896c0 RCX: 00007fe1c815b78e
[ 1127.729317][T32335] RDX: 0000000000000001 RSI: 00007fe1c90890a0 RDI: 0000000000000005
[ 1127.729327][T32335] RBP: 00007fe1c9089090 R08: 0000000000000000 R09: 0000000000000000
[ 1127.729337][T32335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1127.729347][T32335] R13: 00007fe1c8416038 R14: 00007fe1c8415fa0 R15: 00007ffc8ab424b8
[ 1127.729371][T32335]  </TASK>
[ 1127.797977][T32321] FAULT_INJECTION: forcing a failure.
[ 1127.797977][T32321] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1127.819367][ T6044] dvb-usb: bulk message failed: -22 (1/0)
[ 1127.821057][T32321] CPU: 2 UID: 0 PID: 32321 Comm: syz.8.6980 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1127.821085][T32321] Tainted: [L]=SOFTLOCKUP
[ 1127.821092][T32321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1127.821104][T32321] Call Trace:
[ 1127.821111][T32321]  <TASK>
[ 1127.821118][T32321]  dump_stack_lvl+0x100/0x190
[ 1127.821147][T32321]  should_fail_ex.cold+0x5/0xa
[ 1127.821173][T32321]  ? fs_reclaim_acquire+0x70/0x100
[ 1127.821202][T32321]  should_fail_alloc_page+0xeb/0x140
[ 1127.821227][T32321]  prepare_alloc_pages+0x1f0/0x5f0
[ 1127.821253][T32321]  ? trace_kmem_cache_alloc+0x80/0xb0
[ 1127.821280][T32321]  __alloc_frozen_pages_noprof+0x193/0x2410
[ 1127.821306][T32321]  ? __lock_acquire+0x4a5/0x2630
[ 1127.821324][T32321]  ? css_rstat_updated+0x1ce/0x5a0
[ 1127.821342][T32321]  ? __pfx_css_rstat_updated+0x10/0x10
[ 1127.821358][T32321]  ? xas_create+0x1f4/0x14e0
[ 1127.821381][T32321]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1127.821406][T32321]  ? rcu_is_watching+0x12/0xc0
[ 1127.821434][T32321]  ? __lock_acquire+0x4a5/0x2630
[ 1127.821454][T32321]  ? __lock_acquire+0x4a5/0x2630
[ 1127.821470][T32321]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1127.821499][T32321]  ? policy_nodemask+0xed/0x4f0
[ 1127.821525][T32321]  alloc_pages_mpol+0x1fb/0x550
[ 1127.821550][T32321]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1127.821574][T32321]  ? find_held_lock+0x2b/0x80
[ 1127.821596][T32321]  ? filemap_get_entry+0x1a7/0x3b0
[ 1127.821619][T32321]  ? filemap_get_entry+0x1a7/0x3b0
[ 1127.821644][T32321]  folio_alloc_noprof+0x22/0x330
[ 1127.821671][T32321]  filemap_alloc_folio_noprof.part.0+0x377/0x450
[ 1127.821699][T32321]  ? __pfx_filemap_get_entry+0x10/0x10
[ 1127.821724][T32321]  ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10
[ 1127.821761][T32321]  __filemap_get_folio_mpol+0x6a4/0xe70
[ 1127.821792][T32321]  iomap_write_begin+0x15c3/0x22b0
[ 1127.821818][T32321]  ? rcu_is_watching+0x12/0xc0
[ 1127.821842][T32321]  ? __pfx_iomap_write_begin+0x10/0x10
[ 1127.821860][T32321]  ? fault_in_readable+0x14c/0x190
[ 1127.821883][T32321]  ? __pfx_fault_in_readable+0x10/0x10
[ 1127.821906][T32321]  ? inode_to_bdi+0x9e/0x160
[ 1127.821935][T32321]  iomap_file_buffered_write+0x48b/0xac0
[ 1127.821966][T32321]  ? __pfx_iomap_file_buffered_write+0x10/0x10
[ 1127.821987][T32321]  ? __lock_acquire+0x4a5/0x2630
[ 1127.822004][T32321]  ? __lock_acquire+0x4a5/0x2630
[ 1127.822041][T32321]  ? __pfx_generic_write_checks+0x10/0x10
[ 1127.822063][T32321]  ? file_update_time_flags+0x31f/0x510
[ 1127.822088][T32321]  ? __pfx_down_write+0x10/0x10
[ 1127.822115][T32321]  fuse_file_write_iter+0x6f8/0x990
[ 1127.822142][T32321]  vfs_write+0x6ac/0x1070
[ 1127.822161][T32321]  ? __pfx_fuse_file_write_iter+0x10/0x10
[ 1127.822185][T32321]  ? __pfx_vfs_write+0x10/0x10
[ 1127.822203][T32321]  ? find_held_lock+0x2b/0x80
[ 1127.822242][T32321]  ksys_write+0x1f8/0x250
[ 1127.822260][T32321]  ? __pfx_ksys_write+0x10/0x10
[ 1127.822287][T32321]  do_syscall_64+0xc9/0xf80
[ 1127.822308][T32321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1127.822326][T32321] RIP: 0033:0x7fb28af9aeb9
[ 1127.822341][T32321] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1127.822357][T32321] RSP: 002b:00007fb2891f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1127.822375][T32321] RAX: ffffffffffffffda RBX: 00007fb28b215fa0 RCX: 00007fb28af9aeb9
[ 1127.822386][T32321] RDX: 00000000fffffdef RSI: 00002000000000c0 RDI: 0000000000000004
[ 1127.822397][T32321] RBP: 00007fb2891f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1127.822408][T32321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1127.822418][T32321] R13: 00007fb28b216038 R14: 00007fb28b215fa0 R15: 00007ffc17b6cbb8
[ 1127.822444][T32321]  </TASK>
[ 1127.838759][T32339] netlink: 220 bytes leftover after parsing attributes in process `syz.3.6983'.
[ 1127.843007][ T6044] dvb-usb: error while querying for an remote control event.
[ 1127.876126][   T40] audit: type=1400 audit(2000000162.099:929): avc:  denied  { ioctl } for  pid=32340 comm="syz.7.6984" path="socket:[133310]" dev="sockfs" ino=133310 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[ 1128.037468][T24997] dvb-usb: bulk message failed: -22 (1/0)
[ 1128.039673][T24997] dvb-usb: error while querying for an remote control event.
[ 1128.082500][T24997] usb 7-1: USB disconnect, device number 58
[ 1128.216540][T24997] dvb-usb: TwinhanDTV USB-Ter USB1.1 / Magic Box I successfully deinitialized and disconnected.
[ 1128.253674][T32365] binder: 32363:32365 ioctl ae41 2 returned -22
[ 1128.385140][   T40] audit: type=1400 audit(2000000162.609:930): avc:  denied  { unmount } for  pid=27788 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[ 1128.432703][T32384] FAULT_INJECTION: forcing a failure.
[ 1128.432703][T32384] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1128.439128][T32384] CPU: 1 UID: 0 PID: 32384 Comm: syz.2.6992 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1128.439157][T32384] Tainted: [L]=SOFTLOCKUP
[ 1128.439164][T32384] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1128.439175][T32384] Call Trace:
[ 1128.439182][T32384]  <TASK>
[ 1128.439190][T32384]  dump_stack_lvl+0x100/0x190
[ 1128.439219][T32384]  should_fail_ex.cold+0x5/0xa
[ 1128.439245][T32384]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1128.439293][T32384]  should_fail_alloc_page+0xeb/0x140
[ 1128.439319][T32384]  prepare_alloc_pages+0x1f0/0x5f0
[ 1128.439346][T32384]  ? rcu_is_watching+0x12/0xc0
[ 1128.439374][T32384]  __alloc_frozen_pages_noprof+0x193/0x2410
[ 1128.439400][T32384]  ? rcu_is_watching+0x12/0xc0
[ 1128.439424][T32384]  ? trace_mm_page_alloc+0x10e/0x160
[ 1128.439450][T32384]  ? __alloc_frozen_pages_noprof+0x2a0/0x2410
[ 1128.439473][T32384]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1128.439495][T32384]  ? is_bpf_text_address+0x8a/0x1a0
[ 1128.439522][T32384]  ? is_bpf_text_address+0x8a/0x1a0
[ 1128.439548][T32384]  ? bpf_ksym_find+0x128/0x1c0
[ 1128.439570][T32384]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1128.439590][T32384]  ? is_bpf_text_address+0x94/0x1a0
[ 1128.439618][T32384]  ? __kernel_text_address+0xd/0x30
[ 1128.439639][T32384]  ? unwind_get_return_address+0x59/0xa0
[ 1128.439673][T32384]  alloc_pages_bulk_noprof+0x777/0x1500
[ 1128.439695][T32384]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1128.439729][T32384]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[ 1128.439752][T32384]  ? kasan_save_stack+0x30/0x50
[ 1128.439772][T32384]  ? __kasan_kmalloc+0xaa/0xb0
[ 1128.439798][T32384]  ? alloc_pages_noprof+0x233/0x390
[ 1128.439826][T32384]  __kasan_populate_vmalloc+0xf0/0x210
[ 1128.439852][T32384]  alloc_vmap_area+0x935/0x2a00
[ 1128.439886][T32384]  ? __pfx_alloc_vmap_area+0x10/0x10
[ 1128.439918][T32384]  __get_vm_area_node+0x1ca/0x330
[ 1128.439949][T32384]  __vmalloc_node_range_noprof+0x213/0x1530
[ 1128.439979][T32384]  ? vhost_task_create+0x1db/0x370
[ 1128.440007][T32384]  ? vhost_task_create+0x1db/0x370
[ 1128.440028][T32384]  ? rcu_read_unlock+0x17/0x60
[ 1128.440076][T32384]  ? rcu_read_unlock+0x17/0x60
[ 1128.440105][T32384]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1128.440133][T32384]  ? __memcg_slab_post_alloc_hook+0x473/0x880
[ 1128.440164][T32384]  ? rcu_is_watching+0x12/0xc0
[ 1128.440188][T32384]  ? trace_kmem_cache_alloc+0x80/0xb0
[ 1128.440214][T32384]  ? vhost_task_create+0x1db/0x370
[ 1128.440235][T32384]  __vmalloc_node_noprof+0xad/0xf0
[ 1128.440262][T32384]  ? vhost_task_create+0x1db/0x370
[ 1128.440292][T32384]  copy_process+0x5ec/0x7890
[ 1128.440328][T32384]  ? __pfx_copy_process+0x10/0x10
[ 1128.440350][T32384]  ? lockdep_init_map_type+0x5c/0x250
[ 1128.440368][T32384]  ? lockdep_init_map_type+0x5c/0x250
[ 1128.440388][T32384]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[ 1128.440410][T32384]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[ 1128.440440][T32384]  vhost_task_create+0x1db/0x370
[ 1128.440462][T32384]  ? __pfx_vhost_task_create+0x10/0x10
[ 1128.440482][T32384]  ? register_lock_class+0x40/0x560
[ 1128.440508][T32384]  ? __pfx_vhost_task_fn+0x10/0x10
[ 1128.440533][T32384]  ? __pfx___mutex_lock+0x10/0x10
[ 1128.440562][T32384]  kvm_mmu_post_init_vm+0x1b3/0x370
[ 1128.440589][T32384]  kvm_arch_vcpu_ioctl_run+0x66/0x1830
[ 1128.440616][T32384]  ? kvm_vcpu_ioctl+0x150f/0x16d0
[ 1128.440641][T32384]  kvm_vcpu_ioctl+0x730/0x16d0
[ 1128.440664][T32384]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1128.440684][T32384]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1128.440711][T32384]  ? do_vfs_ioctl+0x226/0x13e0
[ 1128.440730][T32384]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1128.440745][T32384]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[ 1128.440769][T32384]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 1128.440806][T32384]  ? selinux_file_ioctl+0x139/0x290
[ 1128.440824][T32384]  ? selinux_file_ioctl+0xb4/0x290
[ 1128.440844][T32384]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1128.440866][T32384]  __x64_sys_ioctl+0x18e/0x210
[ 1128.440886][T32384]  do_syscall_64+0xc9/0xf80
[ 1128.440908][T32384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1128.440927][T32384] RIP: 0033:0x7f2c0479aeb9
[ 1128.440944][T32384] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1128.440962][T32384] RSP: 002b:00007f2c029f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1128.440980][T32384] RAX: ffffffffffffffda RBX: 00007f2c04a15fa0 RCX: 00007f2c0479aeb9
[ 1128.440992][T32384] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[ 1128.441003][T32384] RBP: 00007f2c029f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1128.441015][T32384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1128.441025][T32384] R13: 00007f2c04a16038 R14: 00007f2c04a15fa0 R15: 00007ffce3bc9288
[ 1128.441051][T32384]  </TASK>
[ 1128.441847][T32384] syz.2.6992: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1128.618314][T32384] CPU: 1 UID: 0 PID: 32384 Comm: syz.2.6992 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1128.618341][T32384] Tainted: [L]=SOFTLOCKUP
[ 1128.618347][T32384] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1128.618357][T32384] Call Trace:
[ 1128.618366][T32384]  <TASK>
[ 1128.618373][T32384]  dump_stack_lvl+0x100/0x190
[ 1128.618397][T32384]  warn_alloc.cold+0x95/0x1c1
[ 1128.618424][T32384]  ? __pfx_warn_alloc+0x10/0x10
[ 1128.618457][T32384]  ? __get_vm_area_node+0x2c5/0x330
[ 1128.618484][T32384]  ? __get_vm_area_node+0x208/0x330
[ 1128.618512][T32384]  __vmalloc_node_range_noprof+0xbf4/0x1530
[ 1128.618544][T32384]  ? vhost_task_create+0x1db/0x370
[ 1128.618567][T32384]  ? rcu_read_unlock+0x17/0x60
[ 1128.618590][T32384]  ? rcu_read_unlock+0x17/0x60
[ 1128.618614][T32384]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1128.618631][T32384]  ? __memcg_slab_post_alloc_hook+0x473/0x880
[ 1128.618649][T32384]  ? rcu_is_watching+0x12/0xc0
[ 1128.618663][T32384]  ? trace_kmem_cache_alloc+0x80/0xb0
[ 1128.618679][T32384]  ? vhost_task_create+0x1db/0x370
[ 1128.618692][T32384]  __vmalloc_node_noprof+0xad/0xf0
[ 1128.618709][T32384]  ? vhost_task_create+0x1db/0x370
[ 1128.618723][T32384]  copy_process+0x5ec/0x7890
[ 1128.618746][T32384]  ? __pfx_copy_process+0x10/0x10
[ 1128.618764][T32384]  ? lockdep_init_map_type+0x5c/0x250
[ 1128.618777][T32384]  ? lockdep_init_map_type+0x5c/0x250
[ 1128.618789][T32384]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[ 1128.618802][T32384]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[ 1128.618820][T32384]  vhost_task_create+0x1db/0x370
[ 1128.618837][T32384]  ? __pfx_vhost_task_create+0x10/0x10
[ 1128.618853][T32384]  ? register_lock_class+0x40/0x560
[ 1128.618874][T32384]  ? __pfx_vhost_task_fn+0x10/0x10
[ 1128.618895][T32384]  ? __pfx___mutex_lock+0x10/0x10
[ 1128.618919][T32384]  kvm_mmu_post_init_vm+0x1b3/0x370
[ 1128.618943][T32384]  kvm_arch_vcpu_ioctl_run+0x66/0x1830
[ 1128.618966][T32384]  ? kvm_vcpu_ioctl+0x150f/0x16d0
[ 1128.618987][T32384]  kvm_vcpu_ioctl+0x730/0x16d0
[ 1128.619005][T32384]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1128.619022][T32384]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1128.619047][T32384]  ? do_vfs_ioctl+0x226/0x13e0
[ 1128.619063][T32384]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1128.619076][T32384]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[ 1128.619096][T32384]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 1128.619125][T32384]  ? selinux_file_ioctl+0x139/0x290
[ 1128.619140][T32384]  ? selinux_file_ioctl+0xb4/0x290
[ 1128.619157][T32384]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1128.619176][T32384]  __x64_sys_ioctl+0x18e/0x210
[ 1128.619192][T32384]  do_syscall_64+0xc9/0xf80
[ 1128.619210][T32384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1128.619226][T32384] RIP: 0033:0x7f2c0479aeb9
[ 1128.619239][T32384] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1128.619253][T32384] RSP: 002b:00007f2c029f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1128.619267][T32384] RAX: ffffffffffffffda RBX: 00007f2c04a15fa0 RCX: 00007f2c0479aeb9
[ 1128.619287][T32384] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[ 1128.619296][T32384] RBP: 00007f2c029f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1128.619304][T32384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1128.619313][T32384] R13: 00007f2c04a16038 R14: 00007f2c04a15fa0 R15: 00007ffce3bc9288
[ 1128.619332][T32384]  </TASK>
[ 1128.619339][T32384] Mem-Info:
[ 1128.767441][T28590] nci: nci_add_new_protocol: the target found does not have the desired protocol
[ 1128.769557][T32384] active_anon:19457 inactive_anon:0 isolated_anon:0
[ 1128.769557][T32384]  active_file:1590 inactive_file:56866 isolated_file:0
[ 1128.769557][T32384]  unevictable:1768 dirty:223 writeback:1
[ 1128.769557][T32384]  slab_reclaimable:12365 slab_unreclaimable:95050
[ 1128.769557][T32384]  mapped:26705 shmem:2408 pagetables:1887
[ 1128.769557][T32384]  sec_pagetables:325 bounce:0
[ 1128.769557][T32384]  kernel_misc_reclaimable:0
[ 1128.769557][T32384]  free:410859 free_pcp:10777 free_cma:0
[ 1128.811955][T32384] Node 0 active_anon:77828kB inactive_anon:0kB active_file:5804kB inactive_file:227256kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:41284kB dirty:884kB writeback:4kB shmem:6096kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:17152kB pagetables:7348kB sec_pagetables:1300kB all_unreclaimable? no Balloon:0kB
[ 1128.825092][T32384] Node 1 active_anon:0kB inactive_anon:0kB active_file:556kB inactive_file:208kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:65536kB dirty:8kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:96kB pagetables:200kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1128.832453][   T40] audit: type=1400 audit(2000000163.059:931): avc:  denied  { write } for  pid=32395 comm="syz.3.6993" path="socket:[131757]" dev="sockfs" ino=131757 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[ 1128.837612][T32384] Node 0 DMA free:10096kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:40kB local_pcp:0kB free_cma:0kB
[ 1128.855163][T32384] lowmem_reserve[]: 0 1231 1231 1231 1231
[ 1128.857115][T32384] Node 0 DMA32 free:183464kB boost:0kB min:27488kB low:34360kB high:41232kB reserved_highatomic:0KB free_highatomic:0KB active_anon:77828kB inactive_anon:0kB active_file:5804kB inactive_file:227248kB unevictable:3536kB writepending:888kB zspages:0kB present:2080628kB managed:1261172kB mlocked:0kB bounce:0kB free_pcp:30188kB local_pcp:7880kB free_cma:0kB
[ 1128.870639][T32384] lowmem_reserve[]: 0 0 0 0 0
[ 1128.872739][T32384] Node 1 Normal free:1449876kB boost:0kB min:39752kB low:49688kB high:59624kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:556kB inactive_file:208kB unevictable:3536kB writepending:8kB zspages:0kB present:2097152kB managed:1781884kB mlocked:0kB bounce:0kB free_pcp:12600kB local_pcp:0kB free_cma:0kB
[ 1128.885162][T32384] lowmem_reserve[]: 0 0 0 0 0
[ 1128.887191][T32384] Node 0 DMA: 4*4kB (UM) 6*8kB (UM) 9*16kB (UM) 7*32kB (U) 9*64kB (UM) 7*128kB (UM) 4*256kB (UM) 4*512kB (UM) 5*1024kB (UM) 0*2048kB 0*4096kB = 10096kB
[ 1128.893845][T32384] Node 0 DMA32: 2663*4kB (UM) 3546*8kB (UME) 1589*16kB (UME) 207*32kB (UME) 459*64kB (UME) 179*128kB (UME) 54*256kB (UM) 40*512kB (UM) 25*1024kB (UM) 0*2048kB 0*4096kB = 183260kB
[ 1128.899733][T32384] Node 1 Normal: 15*4kB (UME) 131*8kB (UME) 140*16kB (UME) 272*32kB (UME) 142*64kB (UME) 68*128kB (UME) 45*256kB (UME) 37*512kB (UME) 29*1024kB (UME) 16*2048kB (UM) 324*4096kB (UM) = 1449876kB
[ 1128.907034][T32384] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1128.910592][T32384] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1128.913931][T32384] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1128.918021][T32384] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1128.921383][T32384] 60858 total pagecache pages
[ 1128.923001][T32384] 0 pages in swap cache
[ 1128.924654][T32384] Free swap  = 124996kB
[ 1128.925987][T32384] Total swap = 124996kB
[ 1128.927577][T32384] 1048443 pages RAM
[ 1128.929267][T32384] 0 pages HighMem/MovableOnly
[ 1128.931268][T32384] 283839 pages reserved
[ 1128.933076][T32384] 0 pages cma reserved
[ 1129.223969][T32420] bond1: ARP target 4.0.0.0 is already present
[ 1129.226795][T32420] bond1: option arp_ip_target: invalid value (4)
[ 1129.231111][T32420] bond1 (unregistering): Released all slaves
[ 1129.277852][T24997] usb 12-1: new high-speed USB device number 57 using dummy_hcd
[ 1129.427544][T24997] usb 12-1: Using ep0 maxpacket: 8
[ 1129.432194][T24997] usb 12-1: config index 0 descriptor too short (expected 301, got 45)
[ 1129.435123][T24997] usb 12-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1129.438468][T24997] usb 12-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1129.441548][T24997] usb 12-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1129.444672][T24997] usb 12-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1129.449007][T24997] usb 12-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1129.451911][T24997] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1129.661509][T24997] usb 12-1: usb_control_msg returned -32
[ 1129.663480][T24997] usbtmc 12-1:16.0: can't read capabilities
[ 1129.886777][   T40] audit: type=1400 audit(2000000164.109:932): avc:  denied  { map } for  pid=32519 comm="syz.8.7003" path="/dev/sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[ 1129.895095][   T40] audit: type=1400 audit(2000000164.109:933): avc:  denied  { execute } for  pid=32519 comm="syz.8.7003" path="/dev/sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[ 1130.025856][T32527] usbtmc 12-1:16.0: INITIATE_ABORT_BULK_OUT returned 0
[ 1130.153716][T32532] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1130.160003][T32532] kvm: user requested TSC rate below hardware speed
[ 1130.729440][T32533] overlayfs: statfs failed on './file0'
[ 1130.878453][T32560] ªªªªªª: renamed from vlan0 (while UP)
[ 1130.924230][   T40] audit: type=1400 audit(2000000165.149:934): avc:  denied  { execute } for  pid=32558 comm="syz.2.7009" path="/proc/507/task/508/net/vlan/vlan0" dev="proc" ino=4026535185 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=file permissive=1
[ 1131.258071][   T76] usb 13-1: new high-speed USB device number 6 using dummy_hcd
[ 1131.409396][   T76] usb 13-1: too many configurations: 9, using maximum allowed: 8
[ 1131.413871][   T76] usb 13-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1131.417779][   T76] usb 13-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1131.422316][   T76] usb 13-1: config 0 interface 0 has no altsetting 0
[ 1131.426332][   T76] usb 13-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1131.430365][   T76] usb 13-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1131.435302][   T76] usb 13-1: config 0 interface 0 has no altsetting 0
[ 1131.450071][   T76] usb 13-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1131.453700][   T76] usb 13-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1131.458239][   T76] usb 13-1: config 0 interface 0 has no altsetting 0
[ 1131.462005][   T76] usb 13-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1131.465823][   T76] usb 13-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1131.470761][   T76] usb 13-1: config 0 interface 0 has no altsetting 0
[ 1131.475158][   T76] usb 13-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1131.479486][   T76] usb 13-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1131.484155][   T76] usb 13-1: config 0 interface 0 has no altsetting 0
[ 1131.488118][   T76] usb 13-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1131.491947][   T76] usb 13-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1131.496533][   T76] usb 13-1: config 0 interface 0 has no altsetting 0
[ 1131.500988][   T76] usb 13-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1131.504911][   T76] usb 13-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1131.509892][   T76] usb 13-1: config 0 interface 0 has no altsetting 0
[ 1131.513696][   T76] usb 13-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1131.517765][   T76] usb 13-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1131.522590][   T76] usb 13-1: config 0 interface 0 has no altsetting 0
[ 1131.527187][   T76] usb 13-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[ 1131.530544][   T76] usb 13-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[ 1131.533400][   T76] usb 13-1: Product: syz
[ 1131.534830][   T76] usb 13-1: Manufacturer: syz
[ 1131.536416][   T76] usb 13-1: SerialNumber: syz
[ 1131.541146][   T76] usb 13-1: config 0 descriptor??
[ 1131.548942][   T76] yurex 13-1:0.0: USB YUREX device now attached to Yurex #1
[ 1131.822550][T25285] usb 13-1: USB disconnect, device number 6
[ 1131.830521][T25285] yurex 13-1:0.0: USB YUREX #1 now disconnected
[ 1131.870374][   T40] audit: type=1400 audit(2000000166.099:935): avc:  denied  { ioctl } for  pid=32606 comm="syz.8.7016" path="socket:[132787]" dev="sockfs" ino=132787 ioctlcmd=0x940b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[ 1131.871436][T32607] binder: 32606:32607 ioctl 8914 200000000180 returned -22
[ 1131.878361][T32602] FAULT_INJECTION: forcing a failure.
[ 1131.878361][T32602] name failslab, interval 1, probability 0, space 0, times 0
[ 1131.878432][T32602] CPU: 3 UID: 0 PID: 32602 Comm: syz.3.7015 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1131.878456][T32602] Tainted: [L]=SOFTLOCKUP
[ 1131.878462][T32602] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1131.878473][T32602] Call Trace:
[ 1131.878479][T32602]  <TASK>
[ 1131.878486][T32602]  dump_stack_lvl+0x100/0x190
[ 1131.878532][T32602]  should_fail_ex.cold+0x5/0xa
[ 1131.878562][T32602]  should_failslab+0xc2/0x120
[ 1131.878587][T32602]  __kmalloc_cache_noprof+0x80/0x810
[ 1131.878603][T32602]  ? vkms_plane_duplicate_state+0x87/0x130
[ 1131.878631][T32602]  ? vkms_plane_duplicate_state+0x87/0x130
[ 1131.878647][T32602]  vkms_plane_duplicate_state+0x87/0x130
[ 1131.878665][T32602]  drm_atomic_get_plane_state+0x279/0x760
[ 1131.878683][T32602]  drm_atomic_helper_disable_plane+0x78/0x250
[ 1131.878706][T32602]  __setplane_atomic+0x2c4/0x350
[ 1131.878727][T32602]  drm_mode_cursor_universal+0x5e9/0xe20
[ 1131.878753][T32602]  ? __pfx_drm_mode_cursor_universal+0x10/0x10
[ 1131.878781][T32602]  ? __pfx_drm_lease_held+0x10/0x10
[ 1131.878797][T32602]  ? modeset_lock+0x114/0x6d0
[ 1131.878817][T32602]  drm_mode_cursor_common+0x308/0x970
[ 1131.878839][T32602]  ? __pfx_drm_mode_cursor_common+0x10/0x10
[ 1131.878872][T32602]  ? drm_is_current_master+0x2c/0x40
[ 1131.878892][T32602]  ? drm_is_current_master+0x2c/0x40
[ 1131.878914][T32602]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1131.878938][T32602]  drm_ioctl_kernel+0x1f3/0x3e0
[ 1131.878952][T32602]  ? __pfx_drm_mode_cursor2_ioctl+0x10/0x10
[ 1131.878971][T32602]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[ 1131.878995][T32602]  drm_ioctl+0x5e6/0xc60
[ 1131.879015][T32602]  ? __pfx_drm_mode_cursor2_ioctl+0x10/0x10
[ 1131.879036][T32602]  ? __pfx_drm_ioctl+0x10/0x10
[ 1131.879070][T32602]  ? selinux_file_ioctl+0x139/0x290
[ 1131.879087][T32602]  ? selinux_file_ioctl+0xb4/0x290
[ 1131.879104][T32602]  ? __pfx_drm_ioctl+0x10/0x10
[ 1131.879120][T32602]  __x64_sys_ioctl+0x18e/0x210
[ 1131.879138][T32602]  do_syscall_64+0xc9/0xf80
[ 1131.879165][T32602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1131.879180][T32602] RIP: 0033:0x7ff3be39aeb9
[ 1131.879193][T32602] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1131.879207][T32602] RSP: 002b:00007ff3bf1c4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1131.879223][T32602] RAX: ffffffffffffffda RBX: 00007ff3be615fa0 RCX: 00007ff3be39aeb9
[ 1131.879233][T32602] RDX: 0000200000000080 RSI: 00000000c02464bb RDI: 0000000000000003
[ 1131.879242][T32602] RBP: 00007ff3bf1c4090 R08: 0000000000000000 R09: 0000000000000000
[ 1131.879252][T32602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1131.879261][T32602] R13: 00007ff3be616038 R14: 00007ff3be615fa0 R15: 00007ffc28962df8
[ 1131.879282][T32602]  </TASK>
[ 1131.929041][T32612] binder: 32606:32612 ioctl 400454d1 200000000500 returned -22
[ 1131.963582][T32615] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7017'.
[ 1132.051665][ T6044] usb 12-1: USB disconnect, device number 57
[ 1132.074381][T32631] binder_alloc: 32629: binder_alloc_buf, no vma
[ 1132.121550][T32635] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7020'.
[ 1132.497162][T32666] netlink: 'syz.8.7027': attribute type 4 has an invalid length.
[ 1132.499844][T25285] usb 12-1: new full-speed USB device number 58 using dummy_hcd
[ 1132.502506][T32666] netlink: 17 bytes leftover after parsing attributes in process `syz.8.7027'.
[ 1132.632182][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[ 1132.634584][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[ 1132.647888][T25285] usb 12-1: device descriptor read/64, error -71
[ 1132.897502][T25285] usb 12-1: new full-speed USB device number 59 using dummy_hcd
[ 1132.996876][T32723] netlink: 8 bytes leftover after parsing attributes in process `syz.8.7033'.
[ 1132.999812][T32723] FAULT_INJECTION: forcing a failure.
[ 1132.999812][T32723] name failslab, interval 1, probability 0, space 0, times 0
[ 1133.003806][T32723] CPU: 3 UID: 0 PID: 32723 Comm: syz.8.7033 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1133.003823][T32723] Tainted: [L]=SOFTLOCKUP
[ 1133.003827][T32723] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1133.003834][T32723] Call Trace:
[ 1133.003839][T32723]  <TASK>
[ 1133.003844][T32723]  dump_stack_lvl+0x100/0x190
[ 1133.003863][T32723]  should_fail_ex.cold+0x5/0xa
[ 1133.003880][T32723]  ? __pfx_ref_tracker_alloc+0x10/0x10
[ 1133.003897][T32723]  should_failslab+0xc2/0x120
[ 1133.003913][T32723]  kmem_cache_alloc_noprof+0x83/0x780
[ 1133.003927][T32723]  ? skb_clone+0x190/0x400
[ 1133.003944][T32723]  ? skb_clone+0x190/0x400
[ 1133.003957][T32723]  skb_clone+0x190/0x400
[ 1133.003972][T32723]  netlink_deliver_tap+0xaed/0xcc0
[ 1133.004007][T32723]  netlink_unicast+0x70c/0x870
[ 1133.004028][T32723]  ? __pfx_netlink_unicast+0x10/0x10
[ 1133.004043][T32723]  ? __pfx_rtnl_bridge_setlink+0x10/0x10
[ 1133.004062][T32723]  netlink_ack+0x655/0xb80
[ 1133.004082][T32723]  netlink_rcv_skb+0x333/0x420
[ 1133.004098][T32723]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1133.004115][T32723]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1133.004136][T32723]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1133.004153][T32723]  netlink_unicast+0x5aa/0x870
[ 1133.004171][T32723]  ? __pfx_netlink_unicast+0x10/0x10
[ 1133.004192][T32723]  netlink_sendmsg+0x8b0/0xda0
[ 1133.004211][T32723]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1133.004226][T32723]  ? __might_fault+0x70/0x140
[ 1133.004243][T32723]  ____sys_sendmsg+0xa54/0xc30
[ 1133.004256][T32723]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1133.004273][T32723]  ___sys_sendmsg+0x190/0x1e0
[ 1133.004289][T32723]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1133.004307][T32723]  ? find_held_lock+0x2b/0x80
[ 1133.004331][T32723]  __sys_sendmsg+0x170/0x220
[ 1133.004346][T32723]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1133.004369][T32723]  do_syscall_64+0xc9/0xf80
[ 1133.004382][T32723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1133.004394][T32723] RIP: 0033:0x7fb28af9aeb9
[ 1133.004404][T32723] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1133.004416][T32723] RSP: 002b:00007fb2891f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1133.004427][T32723] RAX: ffffffffffffffda RBX: 00007fb28b215fa0 RCX: 00007fb28af9aeb9
[ 1133.004434][T32723] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[ 1133.004441][T32723] RBP: 00007fb2891f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1133.004448][T32723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1133.004454][T32723] R13: 00007fb28b216038 R14: 00007fb28b215fa0 R15: 00007ffc17b6cbb8
[ 1133.004469][T32723]  </TASK>
[ 1133.037515][T25285] usb 12-1: device descriptor read/64, error -71
[ 1133.218010][T25285] usb usb12-port1: attempt power cycle
[ 1133.332967][T32732] program syz.8.7035 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1133.506695][ T5954] Bluetooth: hci0: unknown advertising packet type: 0x82
[ 1133.506728][ T5954] Bluetooth: hci0: Dropping invalid advertising data
[ 1133.513132][ T5954] Bluetooth: hci0: Malformed LE Event: 0x02
[ 1133.521414][ T5954] Bluetooth: hci0: ACL packet for unknown connection handle 200
[ 1133.560411][T25285] usb 12-1: new full-speed USB device number 60 using dummy_hcd
[ 1133.578238][T25285] usb 12-1: device descriptor read/8, error -71
[ 1133.767807][   T76] usb 8-1: new high-speed USB device number 73 using dummy_hcd
[ 1133.817577][T25285] usb 12-1: new full-speed USB device number 61 using dummy_hcd
[ 1133.837973][T25285] usb 12-1: device descriptor read/8, error -71
[ 1133.867491][T32750] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7039'.
[ 1133.927660][   T76] usb 8-1: Using ep0 maxpacket: 8
[ 1133.931468][   T76] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1133.935836][   T76] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1133.940917][   T76] usb 8-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52
[ 1133.944218][   T76] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1133.947966][   T76] usb 8-1: Product: syz
[ 1133.948082][T25285] usb usb12-port1: unable to enumerate USB device
[ 1133.949845][   T76] usb 8-1: Manufacturer: syz
[ 1133.954354][   T76] usb 8-1: SerialNumber: syz
[ 1133.959509][   T76] usb 8-1: config 0 descriptor??
[ 1133.975272][T32755] lo: entered promiscuous mode
[ 1133.977268][T32755] lo: entered allmulticast mode
[ 1134.097761][T32762] fuse: Bad value for 'fd'
[ 1134.163394][  T302] loop6: detected capacity change from 0 to 524288000
[ 1134.196416][   T76] usb 8-1: USB disconnect, device number 73
[ 1134.229910][  T302] loop6: detected capacity change from 524288000 to 0
[ 1134.233004][    C1] blk_print_req_error: 11 callbacks suppressed
[ 1134.233022][    C1] invalid error, dev loop6, sector 524287984 op 0x0:(READ) flags 0x880700 phys_seg 1 prio class 2
[ 1134.284734][  T312] netlink: 'syz.8.7043': attribute type 39 has an invalid length.
[ 1134.741177][  T321] netlink: 124 bytes leftover after parsing attributes in process `syz.2.7046'.
[ 1134.744993][  T321] block nbd0: not configured, cannot reconfigure
[ 1134.824764][  T327] FAULT_INJECTION: forcing a failure.
[ 1134.824764][  T327] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1134.832503][  T327] CPU: 3 UID: 0 PID: 327 Comm: syz.3.7047 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1134.832531][  T327] Tainted: [L]=SOFTLOCKUP
[ 1134.832537][  T327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1134.832547][  T327] Call Trace:
[ 1134.832553][  T327]  <TASK>
[ 1134.832560][  T327]  dump_stack_lvl+0x100/0x190
[ 1134.832605][  T327]  should_fail_ex.cold+0x5/0xa
[ 1134.832631][  T327]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1134.832656][  T327]  should_fail_alloc_page+0xeb/0x140
[ 1134.832678][  T327]  prepare_alloc_pages+0x1f0/0x5f0
[ 1134.832706][  T327]  __alloc_frozen_pages_noprof+0x193/0x2410
[ 1134.832728][  T327]  ? kasan_save_stack+0x3f/0x50
[ 1134.832748][  T327]  ? kasan_save_stack+0x30/0x50
[ 1134.832767][  T327]  ? kasan_save_track+0x14/0x30
[ 1134.832786][  T327]  ? kasan_save_free_info+0x3b/0x70
[ 1134.832801][  T327]  ? __kasan_slab_free+0x5f/0x80
[ 1134.832819][  T327]  ? kfree+0x1c7/0x690
[ 1134.832833][  T327]  ? binder_alloc_new_buf+0x1550/0x2f70
[ 1134.832860][  T327]  ? binder_transaction+0x1f5a/0x9bc0
[ 1134.832874][  T327]  ? binder_thread_write+0x9a7/0x4d70
[ 1134.832889][  T327]  ? binder_ioctl+0x28b8/0x7450
[ 1134.832902][  T327]  ? __x64_sys_ioctl+0x18e/0x210
[ 1134.832917][  T327]  ? do_syscall_64+0xc9/0xf80
[ 1134.832935][  T327]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1134.832955][  T327]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1134.832986][  T327]  ? find_held_lock+0x2b/0x80
[ 1134.833009][  T327]  ? binder_alloc_new_buf+0x167c/0x2f70
[ 1134.833026][  T327]  ? binder_alloc_new_buf+0x167c/0x2f70
[ 1134.833048][  T327]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1134.833075][  T327]  ? policy_nodemask+0xed/0x4f0
[ 1134.833100][  T327]  alloc_pages_mpol+0x1fb/0x550
[ 1134.833123][  T327]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1134.833147][  T327]  ? kfree+0x1c7/0x690
[ 1134.833165][  T327]  alloc_pages_noprof+0x131/0x390
[ 1134.833189][  T327]  binder_alloc_new_buf+0x18c4/0x2f70
[ 1134.833219][  T327]  ? __pfx_binder_alloc_new_buf+0x10/0x10
[ 1134.833243][  T327]  binder_transaction+0x1f5a/0x9bc0
[ 1134.833269][  T327]  ? __lock_acquire+0x4a5/0x2630
[ 1134.833297][  T327]  ? __pfx_binder_transaction+0x10/0x10
[ 1134.833318][  T327]  ? find_held_lock+0x2b/0x80
[ 1134.833339][  T327]  ? is_bpf_text_address+0x8a/0x1a0
[ 1134.833363][  T327]  ? is_bpf_text_address+0x8a/0x1a0
[ 1134.833387][  T327]  ? bpf_ksym_find+0x128/0x1c0
[ 1134.833410][  T327]  ? __lock_acquire+0x4a5/0x2630
[ 1134.833427][  T327]  ? arch_stack_walk+0xa6/0xf0
[ 1134.833456][  T327]  ? find_held_lock+0x2b/0x80
[ 1134.833477][  T327]  ? __might_fault+0xc5/0x140
[ 1134.833495][  T327]  ? __might_fault+0xc5/0x140
[ 1134.833522][  T327]  binder_thread_write+0x9a7/0x4d70
[ 1134.833547][  T327]  ? __lock_acquire+0x4a5/0x2630
[ 1134.833562][  T327]  ? __pfx_binder_thread_write+0x10/0x10
[ 1134.833580][  T327]  ? binder_debug+0xe0/0x190
[ 1134.833603][  T327]  ? __pfx_binder_debug+0x10/0x10
[ 1134.833626][  T327]  ? binder_debug+0xe0/0x190
[ 1134.833648][  T327]  ? __pfx_binder_debug+0x10/0x10
[ 1134.833685][  T327]  binder_ioctl+0x28b8/0x7450
[ 1134.833709][  T327]  ? tomoyo_path_number_perm+0x188/0x580
[ 1134.833750][  T327]  ? __pfx_binder_ioctl+0x10/0x10
[ 1134.833768][  T327]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1134.833793][  T327]  ? do_vfs_ioctl+0x226/0x13e0
[ 1134.833810][  T327]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1134.833823][  T327]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[ 1134.833844][  T327]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 1134.833878][  T327]  ? selinux_file_ioctl+0x139/0x290
[ 1134.833894][  T327]  ? selinux_file_ioctl+0xb4/0x290
[ 1134.833913][  T327]  ? __pfx_binder_ioctl+0x10/0x10
[ 1134.833930][  T327]  __x64_sys_ioctl+0x18e/0x210
[ 1134.833950][  T327]  do_syscall_64+0xc9/0xf80
[ 1134.833970][  T327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1134.833987][  T327] RIP: 0033:0x7ff3be39aeb9
[ 1134.834003][  T327] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1134.834020][  T327] RSP: 002b:00007ff3bf1c4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1134.834042][  T327] RAX: ffffffffffffffda RBX: 00007ff3be615fa0 RCX: 00007ff3be39aeb9
[ 1134.834054][  T327] RDX: 0000200000000500 RSI: 00000000c0306201 RDI: 0000000000000004
[ 1134.834066][  T327] RBP: 00007ff3bf1c4090 R08: 0000000000000000 R09: 0000000000000000
[ 1134.834077][  T327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1134.834087][  T327] R13: 00007ff3be616038 R14: 00007ff3be615fa0 R15: 00007ffc28962df8
[ 1134.834111][  T327]  </TASK>
[ 1135.156997][   T40] audit: type=1400 audit(2000000169.379:936): avc:  denied  { recv } for  pid=23 comm="ksoftirqd/2" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=37190 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[ 1135.178865][   T40] audit: type=1400 audit(2000000169.379:937): avc:  denied  { recv } for  pid=23 comm="ksoftirqd/2" saddr=127.0.0.1 src=37190 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[ 1135.197395][   T40] audit: type=1400 audit(2000000169.379:938): avc:  denied  { read write } for  pid=335 comm="syz.3.7049" name="fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[ 1135.206354][   T40] audit: type=1400 audit(2000000169.379:939): avc:  denied  { open } for  pid=335 comm="syz.3.7049" path="/dev/fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[ 1135.215172][   T40] audit: type=1400 audit(2000000169.379:940): avc:  denied  { mounton } for  pid=335 comm="syz.3.7049" path="/215/file0" dev="tmpfs" ino=1186 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[ 1135.223087][   T40] audit: type=1400 audit(2000000169.389:941): avc:  denied  { mount } for  pid=335 comm="syz.3.7049" name="/" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[ 1135.225687][  T348] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[ 1135.230299][   T40] audit: type=1400 audit(2000000169.409:942): avc:  denied  { read write } for  pid=29055 comm="syz-executor" name="loop7" dev="devtmpfs" ino=665 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 1135.230326][   T40] audit: type=1400 audit(2000000169.409:943): avc:  denied  { open } for  pid=29055 comm="syz-executor" path="/dev/loop7" dev="devtmpfs" ino=665 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 1135.458894][  T356] FAULT_INJECTION: forcing a failure.
[ 1135.458894][  T356] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1135.464243][  T356] CPU: 1 UID: 0 PID: 356 Comm: syz.7.7055 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1135.464273][  T356] Tainted: [L]=SOFTLOCKUP
[ 1135.464279][  T356] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1135.464290][  T356] Call Trace:
[ 1135.464298][  T356]  <TASK>
[ 1135.464306][  T356]  dump_stack_lvl+0x100/0x190
[ 1135.464329][  T356]  should_fail_ex.cold+0x5/0xa
[ 1135.464362][  T356]  _copy_from_user+0x2e/0xd0
[ 1135.464382][  T356]  input_event_from_user+0x123/0x310
[ 1135.464405][  T356]  ? __pfx_input_event_from_user+0x10/0x10
[ 1135.464427][  T356]  ? __pfx___might_resched+0x10/0x10
[ 1135.464445][  T356]  ? input_inject_event+0x1c9/0x3b0
[ 1135.464468][  T356]  evdev_write+0x342/0x610
[ 1135.464494][  T356]  ? __pfx_evdev_write+0x10/0x10
[ 1135.464517][  T356]  ? bpf_lsm_file_permission+0x9/0x10
[ 1135.464536][  T356]  ? security_file_permission+0x76/0x210
[ 1135.464558][  T356]  ? rw_verify_area+0xce/0x6d0
[ 1135.464579][  T356]  vfs_write+0x2aa/0x1070
[ 1135.464597][  T356]  ? __pfx_evdev_write+0x10/0x10
[ 1135.464614][  T356]  ? __pfx_vfs_write+0x10/0x10
[ 1135.464632][  T356]  ? find_held_lock+0x2b/0x80
[ 1135.464655][  T356]  ? __fget_files+0x215/0x3d0
[ 1135.464676][  T356]  ? __fget_files+0x215/0x3d0
[ 1135.464701][  T356]  ? __fget_files+0x21f/0x3d0
[ 1135.464724][  T356]  ksys_write+0x1f8/0x250
[ 1135.464744][  T356]  ? __pfx_ksys_write+0x10/0x10
[ 1135.464762][  T356]  ? evdev_ioctl+0x139/0x1a0
[ 1135.464782][  T356]  ? fput+0x79/0x100
[ 1135.464808][  T356]  do_syscall_64+0xc9/0xf80
[ 1135.464833][  T356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1135.464851][  T356] RIP: 0033:0x7fe1c819aeb9
[ 1135.464866][  T356] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1135.464883][  T356] RSP: 002b:00007fe1c9089028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1135.464902][  T356] RAX: ffffffffffffffda RBX: 00007fe1c8415fa0 RCX: 00007fe1c819aeb9
[ 1135.464913][  T356] RDX: 000000000000ff0f RSI: 0000200000000040 RDI: 0000000000000003
[ 1135.464925][  T356] RBP: 00007fe1c9089090 R08: 0000000000000000 R09: 0000000000000000
[ 1135.464936][  T356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1135.464947][  T356] R13: 00007fe1c8416038 R14: 00007fe1c8415fa0 R15: 00007ffc8ab424b8
[ 1135.464970][  T356]  </TASK>
[ 1135.697108][  T364] ip6t_REJECT: ECHOREPLY is not supported
[ 1135.708442][  T364] netlink: 36 bytes leftover after parsing attributes in process `syz.2.7057'.
[ 1135.712474][  T364] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7057'.
[ 1135.724916][  T364] netlink: 'syz.2.7057': attribute type 2 has an invalid length.
[ 1135.737398][  T364] !: entered promiscuous mode
[ 1135.844307][  T377] FAULT_INJECTION: forcing a failure.
[ 1135.844307][  T377] name failslab, interval 1, probability 0, space 0, times 0
[ 1135.849050][  T377] CPU: 3 UID: 0 PID: 377 Comm: syz.2.7060 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1135.849078][  T377] Tainted: [L]=SOFTLOCKUP
[ 1135.849084][  T377] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1135.849093][  T377] Call Trace:
[ 1135.849101][  T377]  <TASK>
[ 1135.849108][  T377]  dump_stack_lvl+0x100/0x190
[ 1135.849135][  T377]  should_fail_ex.cold+0x5/0xa
[ 1135.849166][  T377]  should_failslab+0xc2/0x120
[ 1135.849186][  T377]  kmem_cache_alloc_lru_noprof+0x8e/0x7d0
[ 1135.849200][  T377]  ? __d_lookup+0x25c/0x4a0
[ 1135.849212][  T377]  ? __d_alloc+0x34/0xa80
[ 1135.849228][  T377]  ? __d_alloc+0x34/0xa80
[ 1135.849241][  T377]  __d_alloc+0x34/0xa80
[ 1135.849257][  T377]  d_alloc+0x4a/0x1e0
[ 1135.849273][  T377]  lookup_one_qstr_excl+0x175/0x250
[ 1135.849291][  T377]  __start_renaming+0x1c9/0x520
[ 1135.849316][  T377]  do_renameat2+0x546/0xa10
[ 1135.849335][  T377]  ? __pfx_do_renameat2+0x10/0x10
[ 1135.849354][  T377]  ? __might_fault+0xc5/0x140
[ 1135.849382][  T377]  ? getname_flags.part.0+0x1c5/0x540
[ 1135.849401][  T377]  __x64_sys_renameat2+0x1f0/0x2a0
[ 1135.849418][  T377]  do_syscall_64+0xc9/0xf80
[ 1135.849432][  T377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1135.849443][  T377] RIP: 0033:0x7f2c0479aeb9
[ 1135.849453][  T377] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1135.849464][  T377] RSP: 002b:00007f2c029f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[ 1135.849475][  T377] RAX: ffffffffffffffda RBX: 00007f2c04a15fa0 RCX: 00007f2c0479aeb9
[ 1135.849482][  T377] RDX: ffffffffffffff9c RSI: 00002000000001c0 RDI: ffffffffffffff9c
[ 1135.849489][  T377] RBP: 00007f2c029f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1135.849496][  T377] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1135.849503][  T377] R13: 00007f2c04a16038 R14: 00007f2c04a15fa0 R15: 00007ffce3bc9288
[ 1135.849518][  T377]  </TASK>
[ 1135.949578][  T380] autofs4:pid:380:validate_dev_ioctl: path string terminator missing for cmd(0xc0189371)
[ 1135.983098][  T382] program syz.2.7062 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1136.006641][  T382] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[ 1136.017409][  T382] overlayfs: missing 'lowerdir'
[ 1136.122825][  T398] FAULT_INJECTION: forcing a failure.
[ 1136.122825][  T398] name failslab, interval 1, probability 0, space 0, times 0
[ 1136.127800][  T398] CPU: 2 UID: 0 PID: 398 Comm: syz.8.7065 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1136.127819][  T398] Tainted: [L]=SOFTLOCKUP
[ 1136.127823][  T398] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1136.127829][  T398] Call Trace:
[ 1136.127834][  T398]  <TASK>
[ 1136.127839][  T398]  dump_stack_lvl+0x100/0x190
[ 1136.127858][  T398]  should_fail_ex.cold+0x5/0xa
[ 1136.127878][  T398]  should_failslab+0xc2/0x120
[ 1136.127892][  T398]  ? constrain_params_by_rules+0x175/0xcc0
[ 1136.127906][  T398]  __kmalloc_noprof+0xf6/0x9c0
[ 1136.127916][  T398]  ? kernel_text_address+0x8d/0x100
[ 1136.127930][  T398]  ? __kernel_text_address+0xd/0x30
[ 1136.127947][  T398]  ? constrain_params_by_rules+0x175/0xcc0
[ 1136.127960][  T398]  constrain_params_by_rules+0x175/0xcc0
[ 1136.128003][  T398]  ? stack_trace_save+0x8e/0xc0
[ 1136.128026][  T398]  ? __pfx_constrain_params_by_rules+0x10/0x10
[ 1136.128042][  T398]  ? __kasan_kmalloc+0xaa/0xb0
[ 1136.128055][  T398]  ? snd_pcm_oss_change_params_locked+0x247/0x39f0
[ 1136.128067][  T398]  ? snd_pcm_oss_get_active_substream+0x175/0x1d0
[ 1136.128078][  T398]  ? snd_pcm_oss_ioctl+0x2565/0x3720
[ 1136.128094][  T398]  ? rcu_is_watching+0x12/0xc0
[ 1136.128109][  T398]  ? snd_interval_refine+0x2d0/0x580
[ 1136.128126][  T398]  snd_pcm_hw_refine+0x7e7/0xad0
[ 1136.128143][  T398]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[ 1136.128161][  T398]  ? __asan_memset+0x23/0x50
[ 1136.128172][  T398]  ? _snd_pcm_hw_param_min+0x1ea/0x670
[ 1136.128190][  T398]  snd_pcm_oss_change_params_locked+0x2594/0x39f0
[ 1136.128203][  T398]  ? trace_contention_end+0xd7/0x110
[ 1136.128219][  T398]  ? rcu_is_watching+0x12/0xc0
[ 1136.128239][  T398]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1136.128255][  T398]  ? __pfx___mutex_lock+0x10/0x10
[ 1136.128274][  T398]  ? snd_pcm_oss_ioctl+0x1971/0x3720
[ 1136.128302][  T398]  ? snd_pcm_oss_get_formats+0x2eb/0x350
[ 1136.128328][  T398]  snd_pcm_oss_get_active_substream+0x175/0x1d0
[ 1136.128353][  T398]  snd_pcm_oss_ioctl+0x2565/0x3720
[ 1136.128376][  T398]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1136.128401][  T398]  ? selinux_file_ioctl+0x139/0x290
[ 1136.128419][  T398]  ? selinux_file_ioctl+0xb4/0x290
[ 1136.128439][  T398]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1136.128460][  T398]  __x64_sys_ioctl+0x18e/0x210
[ 1136.128479][  T398]  do_syscall_64+0xc9/0xf80
[ 1136.128498][  T398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1136.128515][  T398] RIP: 0033:0x7fb28af9aeb9
[ 1136.128530][  T398] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1136.128546][  T398] RSP: 002b:00007fb2891f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1136.128563][  T398] RAX: ffffffffffffffda RBX: 00007fb28b215fa0 RCX: 00007fb28af9aeb9
[ 1136.128575][  T398] RDX: 0000200000000000 RSI: 00000000c0045005 RDI: 0000000000000003
[ 1136.128585][  T398] RBP: 00007fb2891f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1136.128595][  T398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1136.128604][  T398] R13: 00007fb28b216038 R14: 00007fb28b215fa0 R15: 00007ffc17b6cbb8
[ 1136.128627][  T398]  </TASK>
[ 1136.434157][  T415] FAULT_INJECTION: forcing a failure.
[ 1136.434157][  T415] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1136.438730][  T415] CPU: 3 UID: 0 PID: 415 Comm: syz.7.7070 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1136.438750][  T415] Tainted: [L]=SOFTLOCKUP
[ 1136.438754][  T415] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1136.438761][  T415] Call Trace:
[ 1136.438766][  T415]  <TASK>
[ 1136.438771][  T415]  dump_stack_lvl+0x100/0x190
[ 1136.438790][  T415]  should_fail_ex.cold+0x5/0xa
[ 1136.438810][  T415]  __kvm_read_guest_page+0x186/0x250
[ 1136.438823][  T415]  kvm_fetch_guest_virt+0x128/0x1a0
[ 1136.438837][  T415]  __do_insn_fetch_bytes+0x5ef/0x7c0
[ 1136.438854][  T415]  ? __pfx___do_insn_fetch_bytes+0x10/0x10
[ 1136.438874][  T415]  x86_decode_insn+0x3ca/0x6d80
[ 1136.438892][  T415]  ? __pfx_x86_decode_insn+0x10/0x10
[ 1136.438903][  T415]  ? vmx_cache_reg+0x54f/0x7b0
[ 1136.438916][  T415]  ? init_decode_cache+0xd/0x2a0
[ 1136.438927][  T415]  ? init_emulate_ctxt+0x415/0x6d0
[ 1136.438938][  T415]  ? __pfx_init_emulate_ctxt+0x10/0x10
[ 1136.438951][  T415]  ? vmx_emulation_required+0x27/0x140
[ 1136.438964][  T415]  ? vmx_set_cr0+0x22c/0x20e0
[ 1136.438976][  T415]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1136.438995][  T415]  x86_emulate_instruction+0x1dcc/0x1f80
[ 1136.439012][  T415]  ? __pfx_skip_emulated_instruction+0x10/0x10
[ 1136.439034][  T415]  handle_ud+0x103/0x5a0
[ 1136.439049][  T415]  ? __pfx_handle_ud+0x10/0x10
[ 1136.439066][  T415]  ? __vmx_complete_interrupts+0x129/0x570
[ 1136.439082][  T415]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1136.439101][  T415]  handle_exception_nmi+0xced/0x1ae0
[ 1136.439118][  T415]  ? __pfx_handle_exception_nmi+0x10/0x10
[ 1136.439133][  T415]  vmx_handle_exit+0x720/0x1de0
[ 1136.439155][  T415]  vcpu_run+0x34c8/0x5ca0
[ 1136.439179][  T415]  ? __lock_acquire+0x4a5/0x2630
[ 1136.439207][  T415]  ? __pfx_vcpu_run+0x10/0x10
[ 1136.439237][  T415]  ? rcu_is_watching+0x12/0xc0
[ 1136.439260][  T415]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[ 1136.439282][  T415]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[ 1136.439313][  T415]  kvm_vcpu_ioctl+0x730/0x16d0
[ 1136.439334][  T415]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1136.439351][  T415]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1136.439376][  T415]  ? do_vfs_ioctl+0x226/0x13e0
[ 1136.439393][  T415]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1136.439408][  T415]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[ 1136.439430][  T415]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 1136.439463][  T415]  ? selinux_file_ioctl+0x139/0x290
[ 1136.439479][  T415]  ? selinux_file_ioctl+0xb4/0x290
[ 1136.439498][  T415]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1136.439518][  T415]  __x64_sys_ioctl+0x18e/0x210
[ 1136.439536][  T415]  do_syscall_64+0xc9/0xf80
[ 1136.439557][  T415]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1136.439576][  T415] RIP: 0033:0x7fe1c819aeb9
[ 1136.439591][  T415] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1136.439607][  T415] RSP: 002b:00007fe1c9089028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1136.439625][  T415] RAX: ffffffffffffffda RBX: 00007fe1c8415fa0 RCX: 00007fe1c819aeb9
[ 1136.439637][  T415] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[ 1136.439647][  T415] RBP: 00007fe1c9089090 R08: 0000000000000000 R09: 0000000000000000
[ 1136.439658][  T415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1136.439667][  T415] R13: 00007fe1c8416038 R14: 00007fe1c8415fa0 R15: 00007ffc8ab424b8
[ 1136.439691][  T415]  </TASK>
[ 1136.914549][  T429] FAULT_INJECTION: forcing a failure.
[ 1136.914549][  T429] name failslab, interval 1, probability 0, space 0, times 0
[ 1136.921075][  T429] CPU: 0 UID: 0 PID: 429 Comm: syz.8.7072 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1136.921105][  T429] Tainted: [L]=SOFTLOCKUP
[ 1136.921112][  T429] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1136.921123][  T429] Call Trace:
[ 1136.921129][  T429]  <TASK>
[ 1136.921136][  T429]  dump_stack_lvl+0x100/0x190
[ 1136.921164][  T429]  should_fail_ex.cold+0x5/0xa
[ 1136.921192][  T429]  ? __pfx_ref_tracker_alloc+0x10/0x10
[ 1136.921220][  T429]  should_failslab+0xc2/0x120
[ 1136.921243][  T429]  kmem_cache_alloc_noprof+0x83/0x780
[ 1136.921265][  T429]  ? skb_clone+0x190/0x400
[ 1136.921291][  T429]  ? skb_clone+0x190/0x400
[ 1136.921313][  T429]  skb_clone+0x190/0x400
[ 1136.921336][  T429]  netlink_deliver_tap+0xaed/0xcc0
[ 1136.921366][  T429]  netlink_unicast+0x70c/0x870
[ 1136.921395][  T429]  ? __pfx_netlink_unicast+0x10/0x10
[ 1136.921421][  T429]  ? genl_rcv_msg+0x4be/0x800
[ 1136.921444][  T429]  netlink_ack+0x655/0xb80
[ 1136.921476][  T429]  netlink_rcv_skb+0x333/0x420
[ 1136.921501][  T429]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1136.921519][  T429]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1136.921554][  T429]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1136.921581][  T429]  genl_rcv+0x28/0x40
[ 1136.921605][  T429]  netlink_unicast+0x5aa/0x870
[ 1136.921634][  T429]  ? __pfx_netlink_unicast+0x10/0x10
[ 1136.921668][  T429]  netlink_sendmsg+0x8b0/0xda0
[ 1136.921697][  T429]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1136.921721][  T429]  ? __might_fault+0x70/0x140
[ 1136.921749][  T429]  ____sys_sendmsg+0xa54/0xc30
[ 1136.921768][  T429]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1136.921796][  T429]  ___sys_sendmsg+0x190/0x1e0
[ 1136.921815][  T429]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1136.921845][  T429]  ? find_held_lock+0x2b/0x80
[ 1136.921884][  T429]  __sys_sendmsg+0x170/0x220
[ 1136.921907][  T429]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1136.921946][  T429]  do_syscall_64+0xc9/0xf80
[ 1136.921967][  T429]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1136.921985][  T429] RIP: 0033:0x7fb28af9aeb9
[ 1136.921999][  T429] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1136.922016][  T429] RSP: 002b:00007fb2891f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1136.922036][  T429] RAX: ffffffffffffffda RBX: 00007fb28b215fa0 RCX: 00007fb28af9aeb9
[ 1136.922048][  T429] RDX: 0000000000004800 RSI: 0000200000000300 RDI: 0000000000000003
[ 1136.922058][  T429] RBP: 00007fb2891f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1136.922068][  T429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1136.922078][  T429] R13: 00007fb28b216038 R14: 00007fb28b215fa0 R15: 00007ffc17b6cbb8
[ 1136.922103][  T429]  </TASK>
[ 1137.090620][  T437] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1137.093681][  T437] block device autoloading is deprecated and will be removed.
[ 1137.178752][   T40] kauditd_printk_skb: 68 callbacks suppressed
[ 1137.178770][   T40] audit: type=1400 audit(2000000171.409:1011): avc:  denied  { create } for  pid=440 comm="syz.8.7074" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1137.190240][   T40] audit: type=1400 audit(2000000171.409:1012): avc:  denied  { connect } for  pid=440 comm="syz.8.7074" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1137.198602][   T40] audit: type=1400 audit(2000000171.409:1013): avc:  denied  { ioctl } for  pid=440 comm="syz.8.7074" path="socket:[134901]" dev="sockfs" ino=134901 ioctlcmd=0x48c8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1137.220664][T24997] hid-generic 0005:15C2:0C6E.0034: unknown main item tag 0x0
[ 1137.220915][   T40] audit: type=1400 audit(2000000171.449:1014): avc:  denied  { create } for  pid=448 comm="syz.2.7075" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1137.237980][   T40] audit: type=1400 audit(2000000171.449:1015): avc:  denied  { ioctl } for  pid=448 comm="syz.2.7075" path="socket:[133036]" dev="sockfs" ino=133036 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1137.252165][T24997] hid-generic 0005:15C2:0C6E.0034: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[ 1137.494605][   T40] audit: type=1400 audit(2000000171.719:1016): avc:  denied  { create } for  pid=482 comm="syz.8.7077" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1137.511828][   T40] audit: type=1400 audit(2000000171.719:1017): avc:  denied  { ioctl } for  pid=482 comm="syz.8.7077" path="socket:[134909]" dev="sockfs" ino=134909 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1137.526090][   T40] audit: type=1400 audit(2000000171.729:1018): avc:  denied  { wake_alarm } for  pid=482 comm="syz.8.7077" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1137.547364][   T40] audit: type=1400 audit(2000000171.739:1019): avc:  denied  { write } for  pid=482 comm="syz.8.7077" name="rt_cache" dev="proc" ino=4026534284 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[ 1137.556203][   T40] audit: type=1400 audit(2000000171.739:1020): avc:  denied  { mount } for  pid=482 comm="syz.8.7077" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[ 1137.675163][  T488] /dev/nullb0: Can't open blockdev
[ 1137.755057][  T498] Invalid logical block size (1280)
[ 1137.839326][  T501] FAULT_INJECTION: forcing a failure.
[ 1137.839326][  T501] name failslab, interval 1, probability 0, space 0, times 0
[ 1137.844614][  T501] CPU: 1 UID: 0 PID: 501 Comm: syz.7.7083 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1137.844644][  T501] Tainted: [L]=SOFTLOCKUP
[ 1137.844651][  T501] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1137.844662][  T501] Call Trace:
[ 1137.844670][  T501]  <TASK>
[ 1137.844678][  T501]  dump_stack_lvl+0x100/0x190
[ 1137.844707][  T501]  should_fail_ex.cold+0x5/0xa
[ 1137.844738][  T501]  should_failslab+0xc2/0x120
[ 1137.844763][  T501]  __kmalloc_cache_noprof+0x80/0x810
[ 1137.844782][  T501]  ? vkms_plane_duplicate_state+0x45/0x130
[ 1137.844802][  T501]  ? ww_mutex_lock_interruptible+0x37/0x160
[ 1137.844829][  T501]  ? vkms_plane_duplicate_state+0x45/0x130
[ 1137.844849][  T501]  vkms_plane_duplicate_state+0x45/0x130
[ 1137.844869][  T501]  drm_atomic_get_plane_state+0x279/0x760
[ 1137.844892][  T501]  __drm_atomic_helper_set_config+0x109/0xee0
[ 1137.844917][  T501]  ? __pfx___drm_atomic_helper_set_config+0x10/0x10
[ 1137.844940][  T501]  ? drm_atomic_state_init+0x2c4/0x540
[ 1137.844958][  T501]  ? kasan_save_track+0x14/0x30
[ 1137.844984][  T501]  drm_atomic_helper_set_config+0x98/0x190
[ 1137.845007][  T501]  drm_mode_setcrtc+0xc48/0x1d60
[ 1137.845029][  T501]  ? find_held_lock+0x2b/0x80
[ 1137.845062][  T501]  ? __pfx_drm_mode_setcrtc+0x10/0x10
[ 1137.845098][  T501]  ? drm_is_current_master+0x2c/0x40
[ 1137.845118][  T501]  ? drm_is_current_master+0x2c/0x40
[ 1137.845142][  T501]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1137.845167][  T501]  drm_ioctl_kernel+0x1f3/0x3e0
[ 1137.845185][  T501]  ? __pfx_drm_mode_setcrtc+0x10/0x10
[ 1137.845203][  T501]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[ 1137.845229][  T501]  drm_ioctl+0x5e6/0xc60
[ 1137.845251][  T501]  ? __pfx_drm_mode_setcrtc+0x10/0x10
[ 1137.845269][  T501]  ? __pfx_drm_ioctl+0x10/0x10
[ 1137.845303][  T501]  ? selinux_file_ioctl+0x139/0x290
[ 1137.845322][  T501]  ? selinux_file_ioctl+0xb4/0x290
[ 1137.845343][  T501]  ? __pfx_drm_ioctl+0x10/0x10
[ 1137.845361][  T501]  __x64_sys_ioctl+0x18e/0x210
[ 1137.845382][  T501]  do_syscall_64+0xc9/0xf80
[ 1137.845405][  T501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1137.845424][  T501] RIP: 0033:0x7fe1c819aeb9
[ 1137.845440][  T501] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1137.845457][  T501] RSP: 002b:00007fe1c9089028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1137.845475][  T501] RAX: ffffffffffffffda RBX: 00007fe1c8415fa0 RCX: 00007fe1c819aeb9
[ 1137.845486][  T501] RDX: 0000200000000400 RSI: 00000000c06864a2 RDI: 0000000000000003
[ 1137.845498][  T501] RBP: 00007fe1c9089090 R08: 0000000000000000 R09: 0000000000000000
[ 1137.845509][  T501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1137.845519][  T501] R13: 00007fe1c8416038 R14: 00007fe1c8415fa0 R15: 00007ffc8ab424b8
[ 1137.845544][  T501]  </TASK>
[ 1138.455643][  T530] FAULT_INJECTION: forcing a failure.
[ 1138.455643][  T530] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1138.461542][  T530] CPU: 0 UID: 0 PID: 530 Comm: syz.3.7088 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1138.461574][  T530] Tainted: [L]=SOFTLOCKUP
[ 1138.461581][  T530] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1138.461592][  T530] Call Trace:
[ 1138.461599][  T530]  <TASK>
[ 1138.461607][  T530]  dump_stack_lvl+0x100/0x190
[ 1138.461636][  T530]  should_fail_ex.cold+0x5/0xa
[ 1138.461695][  T530]  __fpu_restore_sig+0x100/0x12f0
[ 1138.461718][  T530]  ? __lock_acquire+0x4a5/0x2630
[ 1138.461736][  T530]  ? __pfx___fpu_restore_sig+0x10/0x10
[ 1138.461766][  T530]  ? __might_fault+0xc5/0x140
[ 1138.461792][  T530]  fpu__restore_sig+0x151/0x190
[ 1138.461813][  T530]  restore_sigcontext+0x4cb/0x6a0
[ 1138.461840][  T530]  ? __pfx_restore_sigcontext+0x10/0x10
[ 1138.461883][  T530]  ? __pfx_restore_altstack+0x10/0x10
[ 1138.461904][  T530]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1138.461921][  T530]  ? lockdep_hardirqs_on+0x78/0x100
[ 1138.461943][  T530]  __do_sys_rt_sigreturn+0x229/0x2c0
[ 1138.461977][  T530]  ? __pfx___do_sys_rt_sigreturn+0x10/0x10
[ 1138.462010][  T530]  do_syscall_64+0xc9/0xf80
[ 1138.462032][  T530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1138.462050][  T530] RIP: 0033:0x7ff3be39aeb7
[ 1138.462065][  T530] Code: 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89
[ 1138.462082][  T530] RSP: 002b:00007ff3bf1a3028 EFLAGS: 00000246
[ 1138.462098][  T530] RAX: 00000000000001c1 RBX: 00007ff3be616090 RCX: 00007ff3be39aeb9
[ 1138.462109][  T530] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000200000001080
[ 1138.462120][  T530] RBP: 00007ff3bf1a3090 R08: 0000000000000001 R09: 0000000000000000
[ 1138.462131][  T530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1138.462142][  T530] R13: 00007ff3be616128 R14: 00007ff3be616090 R15: 00007ffc28962df8
[ 1138.462166][  T530]  </TASK>
[ 1138.712499][  T534] binder_alloc: 531: binder_alloc_buf, no vma
[ 1138.871291][  T539] overlay: ./bus is not a directory
[ 1139.089034][  T546] FAULT_INJECTION: forcing a failure.
[ 1139.089034][  T546] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1139.093525][  T546] CPU: 0 UID: 0 PID: 546 Comm: syz.7.7091 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1139.093555][  T546] Tainted: [L]=SOFTLOCKUP
[ 1139.093560][  T546] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1139.093577][  T546] Call Trace:
[ 1139.093582][  T546]  <TASK>
[ 1139.093587][  T546]  dump_stack_lvl+0x100/0x190
[ 1139.093606][  T546]  should_fail_ex.cold+0x5/0xa
[ 1139.093625][  T546]  _copy_from_iter+0x1f4/0x1690
[ 1139.093644][  T546]  ? __pfx__copy_from_iter+0x10/0x10
[ 1139.093659][  T546]  ? _copy_from_iter+0x270/0x1690
[ 1139.093676][  T546]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[ 1139.093691][  T546]  skb_copy_datagram_from_iter+0x11f/0x720
[ 1139.093705][  T546]  ? _kstrtoull+0x13c/0x1f0
[ 1139.093715][  T546]  ? iov_iter_advance+0xac/0x6d0
[ 1139.093728][  T546]  ? __pfx__kstrtoull+0x10/0x10
[ 1139.093739][  T546]  tun_get_user+0x1884/0x3e10
[ 1139.093761][  T546]  ? __pfx_tun_get_user+0x10/0x10
[ 1139.093777][  T546]  ? __pfx_ref_tracker_alloc+0x10/0x10
[ 1139.093798][  T546]  ? find_held_lock+0x2b/0x80
[ 1139.093813][  T546]  ? tun_get+0x191/0x370
[ 1139.093826][  T546]  ? tun_get+0x191/0x370
[ 1139.093843][  T546]  tun_chr_write_iter+0xdc/0x200
[ 1139.093860][  T546]  vfs_write+0x6ac/0x1070
[ 1139.093873][  T546]  ? __pfx_tun_chr_write_iter+0x10/0x10
[ 1139.093889][  T546]  ? __pfx_vfs_write+0x10/0x10
[ 1139.093900][  T546]  ? find_held_lock+0x2b/0x80
[ 1139.093923][  T546]  ksys_write+0x12a/0x250
[ 1139.093935][  T546]  ? __pfx_ksys_write+0x10/0x10
[ 1139.093951][  T546]  do_syscall_64+0xc9/0xf80
[ 1139.093965][  T546]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1139.093976][  T546] RIP: 0033:0x7fe1c819aeb9
[ 1139.093986][  T546] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1139.093997][  T546] RSP: 002b:00007fe1c9089028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1139.094011][  T546] RAX: ffffffffffffffda RBX: 00007fe1c8415fa0 RCX: 00007fe1c819aeb9
[ 1139.094019][  T546] RDX: 000000000000fdef RSI: 0000200000000240 RDI: 0000000000000003
[ 1139.094025][  T546] RBP: 00007fe1c9089090 R08: 0000000000000000 R09: 0000000000000000
[ 1139.094032][  T546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1139.094039][  T546] R13: 00007fe1c8416038 R14: 00007fe1c8415fa0 R15: 00007ffc8ab424b8
[ 1139.094053][  T546]  </TASK>
[ 1139.626232][  T579] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:00:00:85
[ 1139.634278][  T579] FAULT_INJECTION: forcing a failure.
[ 1139.634278][  T579] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1139.639292][  T579] CPU: 2 UID: 0 PID: 579 Comm: syz.8.7094 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1139.639312][  T579] Tainted: [L]=SOFTLOCKUP
[ 1139.639317][  T579] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1139.639324][  T579] Call Trace:
[ 1139.639328][  T579]  <TASK>
[ 1139.639333][  T579]  dump_stack_lvl+0x100/0x190
[ 1139.639359][  T579]  should_fail_ex.cold+0x5/0xa
[ 1139.639390][  T579]  _copy_from_user+0x2e/0xd0
[ 1139.639411][  T579]  get_user_ifreq+0xe7/0x250
[ 1139.639439][  T579]  sock_do_ioctl+0x16e/0x280
[ 1139.639466][  T579]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 1139.639493][  T579]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1139.639524][  T579]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1139.639539][  T579]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[ 1139.639555][  T579]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 1139.639570][  T579]  sock_ioctl+0x599/0x6b0
[ 1139.639582][  T579]  ? __pfx_sock_ioctl+0x10/0x10
[ 1139.639596][  T579]  ? selinux_file_ioctl+0x139/0x290
[ 1139.639607][  T579]  ? selinux_file_ioctl+0xb4/0x290
[ 1139.639619][  T579]  ? __pfx_sock_ioctl+0x10/0x10
[ 1139.639631][  T579]  __x64_sys_ioctl+0x18e/0x210
[ 1139.639642][  T579]  do_syscall_64+0xc9/0xf80
[ 1139.639656][  T579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1139.639668][  T579] RIP: 0033:0x7fb28af9aeb9
[ 1139.639677][  T579] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1139.639688][  T579] RSP: 002b:00007fb2891b4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1139.639700][  T579] RAX: ffffffffffffffda RBX: 00007fb28b216180 RCX: 00007fb28af9aeb9
[ 1139.639707][  T579] RDX: 0000200000000080 RSI: 0000000000008922 RDI: 0000000000000006
[ 1139.639713][  T579] RBP: 00007fb2891b4090 R08: 0000000000000000 R09: 0000000000000000
[ 1139.639720][  T579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1139.639726][  T579] R13: 00007fb28b216218 R14: 00007fb28b216180 R15: 00007ffc17b6cbb8
[ 1139.639740][  T579]  </TASK>
[ 1139.819673][  T587] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1139.824575][  T587] FAULT_INJECTION: forcing a failure.
[ 1139.824575][  T587] name failslab, interval 1, probability 0, space 0, times 0
[ 1139.828852][  T587] CPU: 2 UID: 0 PID: 587 Comm: syz.3.7095 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1139.828872][  T587] Tainted: [L]=SOFTLOCKUP
[ 1139.828876][  T587] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1139.828882][  T587] Call Trace:
[ 1139.828886][  T587]  <TASK>
[ 1139.828891][  T587]  dump_stack_lvl+0x100/0x190
[ 1139.828910][  T587]  should_fail_ex.cold+0x5/0xa
[ 1139.828930][  T587]  should_failslab+0xc2/0x120
[ 1139.828945][  T587]  ? ovl_cache_entry_new+0x64/0x900
[ 1139.828960][  T587]  __kmalloc_noprof+0xf6/0x9c0
[ 1139.828975][  T587]  ? ovl_cache_entry_new+0x64/0x900
[ 1139.828990][  T587]  ovl_cache_entry_new+0x64/0x900
[ 1139.829008][  T587]  ovl_fill_merge+0x7dd/0x1000
[ 1139.829030][  T587]  ? __pfx_ovl_fill_merge+0x10/0x10
[ 1139.829048][  T587]  ? __pfx_ovl_fill_merge+0x10/0x10
[ 1139.829063][  T587]  offset_readdir+0x4ef/0x780
[ 1139.829076][  T587]  ? avc_policy_seqno+0x9/0x20
[ 1139.829090][  T587]  ? selinux_file_permission+0x8f/0x6d0
[ 1139.829105][  T587]  iterate_dir+0x296/0xae0
[ 1139.829119][  T587]  ovl_dir_read_merged+0x37e/0x790
[ 1139.829136][  T587]  ? __pfx_ovl_dir_read_merged+0x10/0x10
[ 1139.829154][  T587]  ? __pfx_ovl_fill_merge+0x10/0x10
[ 1139.829177][  T587]  ovl_iterate+0xb7b/0x11e0
[ 1139.829193][  T587]  ? __pfx_down_read_killable+0x10/0x10
[ 1139.829209][  T587]  ? __pfx_ovl_iterate+0x10/0x10
[ 1139.829224][  T587]  wrap_directory_iterator+0xa2/0xe0
[ 1139.829236][  T587]  iterate_dir+0x296/0xae0
[ 1139.829249][  T587]  __x64_sys_getdents64+0x13b/0x2c0
[ 1139.829262][  T587]  ? __pfx___x64_sys_getdents64+0x10/0x10
[ 1139.829272][  T587]  ? fput+0x79/0x100
[ 1139.829287][  T587]  ? __pfx_filldir64+0x10/0x10
[ 1139.829302][  T587]  do_syscall_64+0xc9/0xf80
[ 1139.829315][  T587]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1139.829327][  T587] RIP: 0033:0x7ff3be39aeb9
[ 1139.829337][  T587] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1139.829348][  T587] RSP: 002b:00007ff3bf1c4028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 1139.829359][  T587] RAX: ffffffffffffffda RBX: 00007ff3be615fa0 RCX: 00007ff3be39aeb9
[ 1139.829367][  T587] RDX: 0000000000001000 RSI: 0000200000000f80 RDI: 0000000000000003
[ 1139.829373][  T587] RBP: 00007ff3bf1c4090 R08: 0000000000000000 R09: 0000000000000000
[ 1139.829380][  T587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1139.829386][  T587] R13: 00007ff3be616038 R14: 00007ff3be615fa0 R15: 00007ffc28962df8
[ 1139.829400][  T587]  </TASK>
[ 1140.085567][  T601] bond0: (slave dummy0): Releasing backup interface
[ 1140.235443][  T609] overlayfs: failed to resolve './file2': -2
[ 1140.392095][  T613] batman_adv: batadv0: Adding interface: dummy0
[ 1140.396513][  T613] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1140.405232][  T613] batman_adv: batadv0: Interface activated: dummy0
[ 1140.425350][  T613] batadv0: mtu less than device minimum
[ 1140.433463][  T613] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1140.438828][  T613] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1140.444257][  T613] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1140.448643][  T613] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1140.452363][  T613] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1140.457045][  T613] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1140.461541][  T613] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1140.466616][  T613] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1140.742180][  T625] FAULT_INJECTION: forcing a failure.
[ 1140.742180][  T625] name failslab, interval 1, probability 0, space 0, times 0
[ 1140.746173][  T625] CPU: 3 UID: 0 PID: 625 Comm: syz.8.7107 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1140.746192][  T625] Tainted: [L]=SOFTLOCKUP
[ 1140.746196][  T625] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1140.746206][  T625] Call Trace:
[ 1140.746212][  T625]  <TASK>
[ 1140.746220][  T625]  dump_stack_lvl+0x100/0x190
[ 1140.746243][  T625]  should_fail_ex.cold+0x5/0xa
[ 1140.746271][  T625]  should_failslab+0xc2/0x120
[ 1140.746288][  T625]  ? lsm_blob_alloc+0x68/0x90
[ 1140.746303][  T625]  __kmalloc_noprof+0xf6/0x9c0
[ 1140.746317][  T625]  ? lsm_blob_alloc+0x68/0x90
[ 1140.746331][  T625]  lsm_blob_alloc+0x68/0x90
[ 1140.746346][  T625]  security_prepare_creds+0x2d/0x290
[ 1140.746361][  T625]  prepare_creds+0x5d6/0x950
[ 1140.746377][  T625]  ovl_override_creator_creds+0x110/0x340
[ 1140.746394][  T625]  ovl_tmpfile+0x318/0x9c0
[ 1140.746409][  T625]  ? __pfx_ovl_tmpfile+0x10/0x10
[ 1140.746423][  T625]  ? _raw_spin_unlock+0x28/0x50
[ 1140.746442][  T625]  vfs_tmpfile+0x2be/0x9a0
[ 1140.746459][  T625]  path_openat+0x179c/0x3120
[ 1140.746472][  T625]  ? getname_flags+0x93/0xf0
[ 1140.746483][  T625]  ? do_sys_openat2+0xc5/0x220
[ 1140.746498][  T625]  ? __x64_sys_open+0xfe/0x1d0
[ 1140.746513][  T625]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1140.746528][  T625]  ? __pfx_path_openat+0x10/0x10
[ 1140.746546][  T625]  do_filp_open+0x1f7/0x420
[ 1140.746560][  T625]  ? __pfx_do_filp_open+0x10/0x10
[ 1140.746583][  T625]  ? alloc_fd+0x476/0x790
[ 1140.746601][  T625]  do_sys_openat2+0x12e/0x220
[ 1140.746616][  T625]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1140.746634][  T625]  ? __fget_files+0x21f/0x3d0
[ 1140.746649][  T625]  __x64_sys_open+0xfe/0x1d0
[ 1140.746665][  T625]  ? __pfx___x64_sys_open+0x10/0x10
[ 1140.746680][  T625]  ? ksys_write+0x1ac/0x250
[ 1140.746696][  T625]  do_syscall_64+0xc9/0xf80
[ 1140.746709][  T625]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1140.746721][  T625] RIP: 0033:0x7fb28af9aeb9
[ 1140.746730][  T625] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1140.746741][  T625] RSP: 002b:00007fb2891f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1140.746752][  T625] RAX: ffffffffffffffda RBX: 00007fb28b215fa0 RCX: 00007fb28af9aeb9
[ 1140.746760][  T625] RDX: 0000000000000008 RSI: 0000000000418601 RDI: 0000200000000040
[ 1140.746766][  T625] RBP: 00007fb2891f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1140.746773][  T625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1140.746780][  T625] R13: 00007fb28b216038 R14: 00007fb28b215fa0 R15: 00007ffc17b6cbb8
[ 1140.746794][  T625]  </TASK>
[ 1140.902858][  T630] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7109'.
[ 1141.120510][  T649] overlayfs: failed to resolve './file0/file0': -2
[ 1141.168326][  T652] loop5: detected capacity change from 0 to 7
[ 1141.172951][  T652] Dev loop5: unable to read RDB block 7
[ 1141.174758][  T652]  loop5: unable to read partition table
[ 1141.176672][  T652] loop5: partition table beyond EOD, truncated
[ 1141.186272][  T652] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5)
[ 1141.767862][  T678] FAULT_INJECTION: forcing a failure.
[ 1141.767862][  T678] name failslab, interval 1, probability 0, space 0, times 0
[ 1141.772053][  T678] CPU: 2 UID: 0 PID: 678 Comm: syz.8.7118 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1141.772071][  T678] Tainted: [L]=SOFTLOCKUP
[ 1141.772075][  T678] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1141.772082][  T678] Call Trace:
[ 1141.772087][  T678]  <TASK>
[ 1141.772092][  T678]  dump_stack_lvl+0x100/0x190
[ 1141.772111][  T678]  should_fail_ex.cold+0x5/0xa
[ 1141.772130][  T678]  should_failslab+0xc2/0x120
[ 1141.772146][  T678]  __kmalloc_node_track_caller_noprof+0xf9/0x9d0
[ 1141.772159][  T678]  ? __pfx_vfs_getxattr+0x10/0x10
[ 1141.772172][  T678]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1141.772183][  T678]  ? security_context_to_sid_core+0xc5/0x870
[ 1141.772198][  T678]  ? kmemdup_nul+0x49/0xd0
[ 1141.772210][  T678]  kmemdup_nul+0x49/0xd0
[ 1141.772226][  T678]  security_context_to_sid_core+0xc5/0x870
[ 1141.772239][  T678]  ? __pfx_security_context_to_sid_core+0x10/0x10
[ 1141.772259][  T678]  inode_doinit_use_xattr+0x105/0x330
[ 1141.772277][  T678]  inode_doinit_with_dentry+0xb69/0x1330
[ 1141.772291][  T678]  ? __pfx_inode_doinit_with_dentry+0x10/0x10
[ 1141.772307][  T678]  selinux_d_instantiate+0x26/0x40
[ 1141.772318][  T678]  security_d_instantiate+0x14c/0x1b0
[ 1141.772334][  T678]  d_splice_alias_ops+0xd7/0x1320
[ 1141.772347][  T678]  ? rcu_is_watching+0x12/0xc0
[ 1141.772362][  T678]  ? __pfx_d_splice_alias_ops+0x10/0x10
[ 1141.772378][  T678]  ovl_lookup+0x5b0/0x6b0
[ 1141.772391][  T678]  ? __pfx_ovl_lookup+0x10/0x10
[ 1141.772410][  T678]  ? lockdep_init_map_type+0x5c/0x250
[ 1141.772425][  T678]  __lookup_slow+0x251/0x460
[ 1141.772441][  T678]  ? __pfx___lookup_slow+0x10/0x10
[ 1141.772469][  T678]  lookup_slow+0x50/0x70
[ 1141.772485][  T678]  path_lookupat+0x5e8/0xc40
[ 1141.772499][  T678]  filename_lookup+0x202/0x590
[ 1141.772513][  T678]  ? __pfx_filename_lookup+0x10/0x10
[ 1141.772535][  T678]  ? __might_fault+0xc5/0x140
[ 1141.772546][  T678]  ? __might_fault+0xc5/0x140
[ 1141.772561][  T678]  filename_setxattr+0xa1/0x1d0
[ 1141.772576][  T678]  ? __pfx_filename_setxattr+0x10/0x10
[ 1141.772590][  T678]  ? getname_flags.part.0+0x1c5/0x540
[ 1141.772609][  T678]  path_setxattrat+0x1ff/0x3a0
[ 1141.772625][  T678]  ? __pfx_path_setxattrat+0x10/0x10
[ 1141.772641][  T678]  ? ksys_write+0x190/0x250
[ 1141.772663][  T678]  ? fput+0x79/0x100
[ 1141.772678][  T678]  ? ksys_write+0x1ac/0x250
[ 1141.772689][  T678]  ? __pfx_ksys_write+0x10/0x10
[ 1141.772703][  T678]  __x64_sys_setxattr+0xc6/0x140
[ 1141.772717][  T678]  ? do_syscall_64+0x94/0xf80
[ 1141.772729][  T678]  ? lockdep_hardirqs_on+0x78/0x100
[ 1141.772741][  T678]  do_syscall_64+0xc9/0xf80
[ 1141.772754][  T678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1141.772765][  T678] RIP: 0033:0x7fb28af9aeb9
[ 1141.772775][  T678] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1141.772786][  T678] RSP: 002b:00007fb2891f6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[ 1141.772797][  T678] RAX: ffffffffffffffda RBX: 00007fb28b215fa0 RCX: 00007fb28af9aeb9
[ 1141.772804][  T678] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000200000000040
[ 1141.772811][  T678] RBP: 00007fb2891f6090 R08: 0000000000000001 R09: 0000000000000000
[ 1141.772818][  T678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1141.772824][  T678] R13: 00007fb28b216038 R14: 00007fb28b215fa0 R15: 00007ffc17b6cbb8
[ 1141.772838][  T678]  </TASK>
[ 1141.772844][  T678] SELinux: inode_doinit_use_xattr:  context_to_sid(root:object_r:user_tmpfs_t) returned 12 for dev=overlay ino=463
[ 1141.890518][  T678] overlayfs: failed to get inode (-116)
[ 1141.892509][  T678] overlayfs: failed to get inode (-116)
[ 1141.923374][  T681] netlink: 12 bytes leftover after parsing attributes in process `syz.8.7119'.
[ 1142.042490][  T686] SELinux:  Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped).
[ 1142.200215][  T695] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7121'.
[ 1142.255373][   T40] kauditd_printk_skb: 72 callbacks suppressed
[ 1142.255391][   T40] audit: type=1400 audit(2000000176.479:1093): avc:  denied  { remove_name } for  pid=30184 comm="syz-executor" name="binderfs" dev="tmpfs" ino=478 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[ 1142.275406][   T40] audit: type=1400 audit(2000000176.479:1094): avc:  denied  { rmdir } for  pid=30184 comm="syz-executor" name="80" dev="tmpfs" ino=474 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[ 1142.290541][   T40] audit: type=1400 audit(2000000176.509:1095): avc:  denied  { read } for  pid=700 comm="syz.8.7123" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[ 1142.307404][   T40] audit: type=1400 audit(2000000176.509:1096): avc:  denied  { open } for  pid=700 comm="syz.8.7123" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[ 1142.317147][   T40] audit: type=1400 audit(2000000176.509:1097): avc:  denied  { ioctl } for  pid=700 comm="syz.8.7123" path="/dev/fb0" dev="devtmpfs" ino=637 ioctlcmd=0x460f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[ 1142.331049][  T708] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7124'.
[ 1142.334646][  T708] netlink: 'syz.8.7124': attribute type 13 has an invalid length.
[ 1142.407869][  T717] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7126'.
[ 1142.410036][   T40] audit: type=1400 audit(2000000176.639:1098): avc:  denied  { egress } for  pid=25285 comm="kworker/0:7" saddr=fe80::1c daddr=ff02::16 netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1
[ 1142.411491][  T717] netlink: 16 bytes leftover after parsing attributes in process `syz.7.7126'.
[ 1142.425364][   T40] audit: type=1400 audit(2000000176.639:1099): avc:  denied  { sendto } for  pid=25285 comm="kworker/0:7" saddr=fe80::1c daddr=ff02::16 netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1
[ 1142.427723][  T708] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[ 1142.439497][  T708] syzkaller0: entered promiscuous mode
[ 1142.441270][  T708] syzkaller0: entered allmulticast mode
[ 1142.458011][  T708] tipc: Started in network mode
[ 1142.459601][  T708] tipc: Node identity 1a0f55a12dc5, cluster identity 4711
[ 1142.462321][  T708] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1142.467018][   T40] audit: type=1400 audit(2000000176.689:1100): avc:  denied  { create } for  pid=721 comm="syz.7.7127" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 1142.474982][  T707] tipc: Resetting bearer <eth:syzkaller0>
[ 1142.493259][  T707] tipc: Disabling bearer <eth:syzkaller0>
[ 1142.505692][   T40] audit: type=1400 audit(2000000176.729:1101): avc:  denied  { create } for  pid=725 comm="syz.7.7128" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1142.511985][   T40] audit: type=1400 audit(2000000176.739:1102): avc:  denied  { connect } for  pid=725 comm="syz.7.7128" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1142.631113][T23904] usb 7-1: new high-speed USB device number 59 using dummy_hcd
[ 1142.799547][T23904] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1142.803133][T23904] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1142.807150][T23904] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1142.810981][T23904] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1142.814527][T23904] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 1142.820299][T23904] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1142.824080][T23904] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1142.827397][T23904] usb 7-1: Product: syz
[ 1142.829247][T23904] usb 7-1: Manufacturer: syz
[ 1142.846834][T23904] cdc_wdm 7-1:1.0: skipping garbage
[ 1142.849192][T23904] cdc_wdm 7-1:1.0: skipping garbage
[ 1142.853041][T23904] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[ 1142.855529][T23904] cdc_wdm 7-1:1.0: Unknown control protocol
[ 1143.459239][  T746] syzkaller0: entered promiscuous mode
[ 1143.461350][  T746] syzkaller0: entered allmulticast mode
[ 1143.631072][  T756] syzkaller0: entered promiscuous mode
[ 1143.632868][  T756] syzkaller0: entered allmulticast mode
[ 1143.663949][  T761] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7133'.
[ 1143.808323][T25285] usb 7-1: USB disconnect, device number 59
[ 1143.850111][  T785] FAULT_INJECTION: forcing a failure.
[ 1143.850111][  T785] name failslab, interval 1, probability 0, space 0, times 0
[ 1143.854322][  T785] CPU: 3 UID: 0 PID: 785 Comm: syz.8.7138 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1143.854340][  T785] Tainted: [L]=SOFTLOCKUP
[ 1143.854344][  T785] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1143.854351][  T785] Call Trace:
[ 1143.854355][  T785]  <TASK>
[ 1143.854360][  T785]  dump_stack_lvl+0x100/0x190
[ 1143.854391][  T785]  should_fail_ex.cold+0x5/0xa
[ 1143.854411][  T785]  should_failslab+0xc2/0x120
[ 1143.854426][  T785]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1143.854439][  T785]  __kmalloc_noprof+0xf6/0x9c0
[ 1143.854454][  T785]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1143.854466][  T785]  tomoyo_realpath_from_path+0xb6/0x690
[ 1143.854481][  T785]  tomoyo_path_number_perm+0x23c/0x580
[ 1143.854498][  T785]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1143.854516][  T785]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1143.854547][  T785]  ? find_held_lock+0x2b/0x80
[ 1143.854562][  T785]  ? hook_file_ioctl_common+0x146/0x410
[ 1143.854575][  T785]  ? __fget_files+0x215/0x3d0
[ 1143.854592][  T785]  ? __fget_files+0x21f/0x3d0
[ 1143.854607][  T785]  security_file_ioctl+0xd3/0x230
[ 1143.854620][  T785]  __x64_sys_ioctl+0xb7/0x210
[ 1143.854632][  T785]  do_syscall_64+0xc9/0xf80
[ 1143.854646][  T785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1143.854658][  T785] RIP: 0033:0x7fb28af9aeb9
[ 1143.854667][  T785] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1143.854678][  T785] RSP: 002b:00007fb2891f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1143.854689][  T785] RAX: ffffffffffffffda RBX: 00007fb28b215fa0 RCX: 00007fb28af9aeb9
[ 1143.854696][  T785] RDX: 0000200000000040 RSI: 0000000080204705 RDI: 0000000000000003
[ 1143.854703][  T785] RBP: 00007fb2891f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1143.854710][  T785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1143.854716][  T785] R13: 00007fb28b216038 R14: 00007fb28b215fa0 R15: 00007ffc17b6cbb8
[ 1143.854730][  T785]  </TASK>
[ 1143.854763][  T785] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1143.875727][  T787] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1143.968289][  T797] overlayfs: missing 'lowerdir'
[ 1143.975345][  T797] netlink: 'syz.8.7141': attribute type 39 has an invalid length.
[ 1144.064332][  T803] iommufd_mock iommufd_mock0: Adding to iommu group 9
[ 1144.169429][  T808] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x42b pfn:0x3cbe0
[ 1144.178384][  T808] memcg:ffff88801da88d40
[ 1144.180278][  T808] flags: 0xfff00000000001(locked|node=0|zone=1|lastcpupid=0x7ff)
[ 1144.183495][  T808] raw: 00fff00000000001 0000000000000000 dead000000000122 0000000000000000
[ 1144.187159][  T808] raw: 000000000000042b 0000000000000000 00000001ffffffff ffff88801da88d40
[ 1144.190979][  T808] page dumped because: VM_BUG_ON_FOLIO(folio_order(folio) < mapping_min_folio_order(mapping))
[ 1144.195290][  T808] page_owner tracks the page as allocated
[ 1144.198835][  T808] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x152c00(GFP_NOIO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 808, tgid 805 (syz.3.7143), ts 1144169414500, free_ts 1144168371324
[ 1144.199750][  T819] syzkaller0: entered promiscuous mode
[ 1144.207211][  T808]  post_alloc_hook+0x1e1/0x250
[ 1144.209611][  T819] syzkaller0: entered allmulticast mode
[ 1144.214168][  T808]  get_page_from_freelist+0xe3d/0x2e10
[ 1144.216554][  T808]  __alloc_frozen_pages_noprof+0x26c/0x2410
[ 1144.219691][  T808]  alloc_pages_mpol+0x1fb/0x550
[ 1144.221830][  T808]  folio_alloc_noprof+0x22/0x330
[ 1144.223961][  T808]  filemap_alloc_folio_noprof.part.0+0x377/0x450
[ 1144.226630][  T808]  filemap_alloc_folio_noprof+0x5e/0x80
[ 1144.229294][  T808]  page_cache_ra_order+0x54b/0xfe0
[ 1144.231491][  T808]  filemap_fault+0x1b56/0x37c0
[ 1144.233594][  T808]  __do_fault+0x10d/0x550
[ 1144.235618][  T808]  do_fault+0xaf9/0x1990
[ 1144.237573][  T808]  __handle_mm_fault+0x1807/0x2b50
[ 1144.239773][  T808]  handle_mm_fault+0x36d/0xa20
[ 1144.241815][  T808]  do_user_addr_fault+0x74c/0x12f0
[ 1144.243973][  T808]  exc_page_fault+0x6f/0xd0
[ 1144.245916][  T808]  asm_exc_page_fault+0x26/0x30
[ 1144.248191][  T808] page last free pid 23904 tgid 23904 stack trace:
[ 1144.251369][  T808]  __free_frozen_pages+0x822/0x1130
[ 1144.253616][  T808]  vfree.part.0+0x12b/0x9d0
[ 1144.255573][  T808]  vfree+0x55/0x80
[ 1144.257205][  T808]  bpf_prog_free_deferred+0x515/0x6d0
[ 1144.259614][  T808]  process_one_work+0x9c2/0x1840
[ 1144.261734][  T808]  worker_thread+0x5da/0xe40
[ 1144.263772][  T808]  kthread+0x3b3/0x730
[ 1144.265513][  T808]  ret_from_fork+0x754/0xaf0
[ 1144.267653][  T808]  ret_from_fork_asm+0x1a/0x30
[ 1144.269880][  T808] ------------[ cut here ]------------
[ 1144.272203][  T808] kernel BUG at mm/filemap.c:858!
[ 1144.274329][  T808] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[ 1144.278139][  T808] CPU: 0 UID: 0 PID: 808 Comm: syz.3.7143 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1144.283311][  T808] Tainted: [L]=SOFTLOCKUP
[ 1144.285108][  T808] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1144.289252][  T808] RIP: 0010:__filemap_add_folio+0xf7f/0x1220
[ 1144.291727][  T808] Code: cb c6 ff 48 c7 c6 20 19 9d 8b 4c 89 ef e8 a9 0b 12 00 90 0f 0b e8 01 cb c6 ff 48 c7 c6 80 19 9d 8b 4c 89 ef e8 92 0b 12 00 90 <0f> 0b e8 ea ca c6 ff 90 0f 0b 90 e9 9b fe ff ff e8 dc ca c6 ff 90
[ 1144.299671][  T808] RSP: 0018:ffffc9000cbef698 EFLAGS: 00010287
[ 1144.302273][  T808] RAX: 000000000002b9c9 RBX: 0000000000112c00 RCX: ffffc90026ac2000
[ 1144.305507][  T808] RDX: 0000000000080000 RSI: ffffffff82523c88 RDI: ffff88804934ce04
[ 1144.308750][  T808] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[ 1144.312045][  T808] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000002
[ 1144.315284][  T808] R13: ffffea0000f2f800 R14: 0000000000000000 R15: 1ffff9200197defd
[ 1144.318543][  T808] FS:  00007ff3bf1c46c0(0000) GS:ffff8880d65db000(0000) knlGS:0000000000000000
[ 1144.322257][  T808] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1144.325044][  T808] CR2: 00007fb28b217dac CR3: 000000004bca8000 CR4: 0000000000352ef0
[ 1144.328338][  T808] DR0: 0000000000000000 DR1: 0000000000000008 DR2: 0000000000000000
[ 1144.331606][  T808] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 1144.334855][  T808] Call Trace:
[ 1144.336206][  T808]  <TASK>
[ 1144.337435][  T808]  ? __pfx___filemap_add_folio+0x10/0x10
[ 1144.339798][  T808]  filemap_add_folio+0x1d8/0x690
[ 1144.341930][  T808]  ? __pfx_filemap_add_folio+0x10/0x10
[ 1144.344234][  T808]  page_cache_ra_order+0x614/0xfe0
[ 1144.346386][  T808]  filemap_fault+0x1b56/0x37c0
[ 1144.348432][  T808]  ? __lock_acquire+0x4a5/0x2630
[ 1144.350491][  T808]  ? __pfx_filemap_fault+0x10/0x10
[ 1144.352732][  T808]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1144.355071][  T808]  __do_fault+0x10d/0x550
[ 1144.356960][  T808]  do_fault+0xaf9/0x1990
[ 1144.358831][  T808]  __handle_mm_fault+0x1807/0x2b50
[ 1144.360974][  T808]  ? mt_find+0x45e/0x8e0
[ 1144.362760][  T808]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1144.365130][  T808]  ? __pfx_mt_find+0x10/0x10
[ 1144.367173][  T808]  ? find_vma+0xbf/0x140
[ 1144.369051][  T808]  ? __pfx_find_vma+0x10/0x10
[ 1144.371171][  T808]  handle_mm_fault+0x36d/0xa20
[ 1144.373270][  T808]  do_user_addr_fault+0x74c/0x12f0
[ 1144.375427][  T808]  exc_page_fault+0x6f/0xd0
[ 1144.377399][  T808]  asm_exc_page_fault+0x26/0x30
[ 1144.379450][  T808] RIP: 0010:__get_user_nocheck_1+0x6/0x20
[ 1144.381861][  T808] Code: e9 ff 75 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 01 cb 0f ae e8 <0f> b6 10 31 c0 0f 01 ca e9 cd 75 04 00 66 66 2e 0f 1f 84 00 00 00
[ 1144.390177][  T808] RSP: 0018:ffffc9000cbefe88 EFLAGS: 00050206
[ 1144.392843][  T808] RAX: 00002000000000c0 RBX: 0000000000000020 RCX: ffffc90026ac2000
[ 1144.396247][  T808] RDX: 0000000000080000 RSI: ffffffff8175e926 RDI: ffffc9000cbeff48
[ 1144.399663][  T808] RBP: ffff88804934c980 R08: 0000000000000005 R09: 0000000000000000
[ 1144.403085][  T808] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc9000cbeff48
[ 1144.406435][  T808] R13: 00000000000000ca R14: 00000000000000ca R15: 0000000000000000
[ 1144.409800][  T808]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[ 1144.412474][  T808]  syscall_user_dispatch+0x76/0x130
[ 1144.414672][  T808]  syscall_trace_enter+0x64/0x230
[ 1144.416805][  T808]  ? do_syscall_64+0x94/0xf80
[ 1144.418866][  T808]  do_syscall_64+0x460/0xf80
[ 1144.420890][  T808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1144.423305][  T808] RIP: 0033:0x7ff3be39aeb9
[ 1144.425022][  T808] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1144.432932][  T808] RSP: 002b:00007ff3bf1c40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1144.436350][  T808] RAX: ffffffffffffffda RBX: 00007ff3be615fa8 RCX: 00007ff3be39aeb9
[ 1144.439688][  T808] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff3be615fac
[ 1144.442826][  T808] RBP: 00007ff3be615fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1144.445950][  T808] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 1144.449251][  T808] R13: 00007ff3be616038 R14: 00007ffc28962d10 R15: 00007ffc28962df8
[ 1144.452260][  T808]  </TASK>
[ 1144.453485][  T808] Modules linked in:
[ 1144.455643][  T808] ---[ end trace 0000000000000000 ]---
[ 1144.463682][  T808] RIP: 0010:__filemap_add_folio+0xf7f/0x1220
[ 1144.466217][  T808] Code: cb c6 ff 48 c7 c6 20 19 9d 8b 4c 89 ef e8 a9 0b 12 00 90 0f 0b e8 01 cb c6 ff 48 c7 c6 80 19 9d 8b 4c 89 ef e8 92 0b 12 00 90 <0f> 0b e8 ea ca c6 ff 90 0f 0b 90 e9 9b fe ff ff e8 dc ca c6 ff 90
[ 1144.474273][  T808] RSP: 0018:ffffc9000cbef698 EFLAGS: 00010287
[ 1144.476686][  T808] RAX: 000000000002b9c9 RBX: 0000000000112c00 RCX: ffffc90026ac2000
[ 1144.478433][  T825] ref_ctr_offset mismatch. inode: 0x221 offset: 0x0 ref_ctr_offset(old): 0x24 ref_ctr_offset(new): 0x0
[ 1144.480150][  T808] RDX: 0000000000080000 RSI: ffffffff82523c88 RDI: ffff88804934ce04
[ 1144.486581][  T808] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[ 1144.489906][  T808] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000002
[ 1144.493089][  T808] R13: ffffea0000f2f800 R14: 0000000000000000 R15: 1ffff9200197defd
[ 1144.496283][  T808] FS:  00007ff3bf1c46c0(0000) GS:ffff8880d65db000(0000) knlGS:0000000000000000
[ 1144.500286][  T808] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1144.503341][  T808] CR2: 00007fb28b217dac CR3: 000000004bca8000 CR4: 0000000000352ef0
[ 1144.506733][  T808] DR0: 0000000000000000 DR1: 0000000000000008 DR2: 0000000000000000
[ 1144.510514][  T808] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 1144.513874][  T808] Kernel panic - not syncing: Fatal exception
[ 1144.517186][  T808] Kernel Offset: disabled
[ 1144.519008][  T808] Rebooting in 86400 seconds..

VM DIAGNOSIS:
03:28:45  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000041 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8569ad25 RDI=ffffffff9b207c00 RBP=ffffffff9b207bc0 RSP=ffffc9000cbeeff8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6e69203a73706f4f
R12=0000000000000000 R13=0000000000000041 R14=0000000000000010 R15=ffffffff8569acc0
RIP=ffffffff8569ad4f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007ff3bf1c46c0 ffffffff 00c00000
GS =0000 ffff8880d65db000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fb28b217dac CR3=000000004bca8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000008 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000ffffff00 Opmask01=0000000000000000 Opmask02=0000000002fefce0 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 656d69745f746961 775f6f692e716662
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc8ab429a6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc8ab429a6 00007ffc8ab429ac
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe1c8208704
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe1c8208750
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe1c82086c4
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe1c8208742
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7974697275636573
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffc90006b00000 RBX=ffff88802a090000 RCX=ffffffff81e6f258 RDX=1ffff1100541225a
RSI=ffffffff86b57c8f RDI=0000000000000016 RBP=0000000000000080 RSP=ffffc900006a0ec0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffffc900006a0ff8
R12=ffffffff90b748e0 R13=dffffc0000000000 R14=ffff88802a0912d0 R15=0000000000000000
RIP=ffffffff86b57cb7 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d66db000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fb28bd456b8 CR3=0000000032e75000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fefffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555760eb500
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f19a8be4d20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f19a8be4d20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555760cda98
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 01c7100008004a86 006d766b2f766564 2f01ffffffffffff ffffed081280032e
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 30656c69662f2e01 ffffffffffffffff ef080b8003000400 1190820800128004
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00080007000c0008
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fb30d3ba1c081780 030c800800061000 221000061071c000 100000040100000c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000a080607880304 8480048400078403 2204000780035607 ea0000040054b5c9
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0128100007800401 8010001c10001780 040100001008060c 0169a2000001ffff
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fffffffffffffb08 07a403bbbbbbbbbb bb01ffffffffffff fffff3080798030c
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 020007960303b002 0007940302040007 90030000000a0806 0788030484800484
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0007840322040007 80035607ea000004 0054b5c9fb30d3ba 1c081780030c8008
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000003a708 RBX=ffffffff94048d60 RCX=000000000003a70e RDX=000000000000023f
RSI=000000000003a70d RDI=000000000007a8cb RBP=0000000000000006 RSP=ffffc9000c7f72f8
R8 =000000000003a70e R9 =ffffffff960b78fa R10=0000000000000200 R11=0000000000000000
R12=ffffffff9761ab88 R13=0000000000001231 R14=ffffffff97692b38 R15=dead000000000122
RIP=ffffffff81e2bea4 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fe1c90896c0 ffffffff 00c00000
GS =0000 ffff8880d67db000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fe1c9067ff8 CR3=0000000057e24000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000008 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc17b6d0a6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc17b6d0a6 00007ffc17b6d0ac
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb28b008704
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb28b008750
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb28b0086c4
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb28b008742
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb28b1e44a0 00007fb28b1e4480 00007fb28b1e4488 00007fb28b1e44b8
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb28b1e4498 00007fb28b1e4468 00007fb28b1e44a0 00007fb28b1e4480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000013e0efc RBX=ffff88801e2f8000 RCX=ffffffff8b76c4b5 RDX=0000000000000001
RSI=ffffffff8bfa3520 RDI=ffffffff81dccc2b RBP=0000000000000003 RSP=ffffc90000197df0
R8 =0000000000000000 R9 =ffffed100d4e673d R10=ffff88806a7339eb R11=0000000000000003
R12=ffffed1003c5f000 R13=0000000000000003 R14=ffffffff90b74bd0 R15=0000000000000000
RIP=ffffffff8b76ae1f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d68db000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fe1c81e8600 CR3=00000000576be000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000ffffff00 Opmask01=0000000000000000 Opmask02=0000000002fefcf8 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7864696f6972702e 6f6972705f74656e
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc17b6d0a6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc17b6d0a6 00007ffc17b6d0ac
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb28b008704
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb28b008750
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb28b0086c4
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb28b008742
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7974697275636573
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000