last executing test programs:

5.991075389s ago: executing program 1 (id=77):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b28, &(0x7f0000000380)={'wlan1\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f0000000440)=ANY=[@ANYBLOB="9feb0100180000c7b96ecb0010"], 0x0, 0x2a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
write$cgroup_devices(r1, &(0x7f0000000440)=ANY=[@ANYBLOB="1b2308217f01"], 0xffdd)

5.900754927s ago: executing program 1 (id=78):
r0 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0xc8d03)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000080)={0x7, 0x9, 0x20})
r1 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
r2 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000600))
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000040)={@private2, 0x807, 0x2, 0x3, 0x0, 0x105, 0x49}, 0x20)
r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'macvtap0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@delneigh={0x28, 0x1d, 0x1, 0x0, 0x40000, {0x7, 0x0, 0x0, r5, 0x10, 0x12}, [@NDA_LLADDR={0xa, 0x2, @remote}]}, 0x28}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r6, &(0x7f0000002140)={0x2020, 0x0, <r7=>0x0}, 0x2020)
syz_fuse_handle_req(r6, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x0, {0x40, 0x4, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x120, 0x6000, 0x0, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r6, &(0x7f0000000440)={0x50, 0x0, r7}, 0x50)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x1)
ioctl$TIOCGPTPEER(r8, 0x932, 0x8)
sendmsg$nl_route_sched(r3, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)=@getchain={0x6c, 0x66, 0x10, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, {0xfff2, 0xc}, {0x0, 0x3}, {0xc, 0xe}}, [{0x8, 0xb, 0xff}, {0x8, 0xb, 0x9}, {0x8, 0xb, 0x6}, {0x8, 0xb, 0xb}, {0x8, 0xb, 0x4bd}, {0x8, 0xb, 0xfffffff8}, {0x8, 0xb, 0xfff}, {0x8, 0xb, 0x3}, {0x8, 0xb, 0x3}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4000001}, 0x20024000)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl(r9, 0x8b32, &(0x7f0000000040))
r10 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x34c403)
r11 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
fdatasync(r11)
close_range(r10, r11, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)

5.822321202s ago: executing program 1 (id=80):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000080000030100c0"])
sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x8000)
r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000880), 0x0, 0x0, 0x0})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000004440)=@base={0x9, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0xfffffffc, '\x00', 0x0, r6, 0x2, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x1b, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x4}, 0x38)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
ioctl$USBDEVFS_WAIT_FOR_RESUME(r4, 0x5523)
r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000140)=ANY=[@ANYRES32=r9, @ANYRES32=r10, @ANYBLOB="020000000200000000000000", @ANYRES32, @ANYBLOB="8410aa25e32680ef11c1b4df99a727bb26be", @ANYRES64=0x0], 0x10)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r5, r8, 0x2, 0x2, 0x0, @void, @value}, 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@cgroup=r5, 0x2, 0x0, 0x10001, &(0x7f0000000280)=[0x0], 0x4000019d, 0x0, 0x0, 0x0, 0x0}, 0x40)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)={0x28, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_RSSI_THRESHOLD={0x8, 0x14, 0xfffffffffffffff5}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
write(0xffffffffffffffff, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f", 0x1f)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001a0001000000ff7f0000000080"], 0x24}}, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(r4, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002302230102090500000010000020"])
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c000900", @ANYRES32], 0x4c}}, 0x0)
r12 = socket$netlink(0x10, 0x3, 0x4)
sendmmsg(r12, &(0x7f00000002c0), 0x40000000000009f, 0x0)

5.680732245s ago: executing program 1 (id=81):
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket(0x200000100000011, 0x3, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r2=>0x0})
r3 = socket(0x2, 0x80805, 0x0)
getsockopt$bt_hci(r3, 0x84, 0x80, &(0x7f0000000000)=""/4103, &(0x7f0000001080)=0x1007)
syz_clone(0x10080, &(0x7f00000001c0)="19c6151dd4e47e8df8b85367474f282290758283d51194b6e6418861420b81ce1ff4f483d0a1483e31be04257a4b6351dcc7a724082da7f158f233ee273679d77847a8289c58e2f9cc28dfdee8ff80990217ceb65370e71aa8f54b96aa54ef316be2b1234d7acb79c5155a4e5ed5f455a49633a18255aa0dcb70beb61975257b2377d74d6e75b28a4de0ba0ec9ccea04c1464cc2dc6b5ddc6507902a67211d53f06ee7fa64283cdcf1dfc89b7aa8d31c04832bc20f", 0xb5, &(0x7f0000000080), &(0x7f0000000140), &(0x7f0000000280)="63c1bda116e47d52e0fab67ef7c266f6af4693375f2d9a69ea792fbd9e6ffc985345a7c150e460102f9b5a9aaa071d0380760d5a56ef8e45fd9fde80608a3f3a031697cfb63161fc4292c76487c54201208f5281ae1a7b502a0e3df572a0121adb513e36732e846587d2e52d7e6f52ef92a6469b90ab2c207bdf959b48cacc1966b69d7d605dc8c94774dfcc0e3f7bace039dece1ae8ee579d83a6961ffe65")
r4 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$TIPC_DEST_DROPPABLE(r1, 0x10f, 0x81, &(0x7f0000000340), &(0x7f0000000380)=0x4)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002bbd7000fcdbdf250300000005000500050000000c00018008000100", @ANYRES32=r2, @ANYBLOB="169e0986e5dde43f245126fbfed3f6a51cfdaa2e12cc46274f72b690b7122f63f57eeabb6fba329bdea8eb34277c3490b5ef643129ccce2f96fdf1fa6d4df1a0948824c7ab0d739905639b8c1a77215ca2a944251acf0b2d51c2ab28e80e814f1fce0f23516812e67852c3cab24642575059dd8262b7ff902c39d66e82454698e3f9cfa0a4aee1f332bb9dc0c2f34cc8f3e3592b2a643a58c46d8b9c094616f28307733a2a12972c8e7be35bb2365dc7c8a7bacda5088698c5cb1ed17d46690b778aea61eb02e6091a4b24594fb973f96e4c01e663b6990113587363c753cc03fc8434af03757267252418b7b9ac708acedf6db482cb5b79fd425a57113b449f8a155c45c2c0b6b8e648b8a3e109ba70b577d7c57b1bad4aa59c8704e97fde48a93b6ec693e30c121595abd1ca130f7cb42ab70732e77d3db5493ff33c9017a1e0d1006ad6ebf9873f13ca78f5da794d16b1473f78c79d24b63b1c336ade0183a6ca4346e671bfddf1c900f3a0861b8fb5b60789a4123549e03f1d07"], 0x28}, 0x1, 0x0, 0x0, 0x20024000}, 0x40)

5.451003819s ago: executing program 1 (id=90):
r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
preadv(r0, &(0x7f0000000180)=[{&(0x7f0000000340)=""/52, 0x34}], 0x1, 0x7400, 0x0)

2.280637392s ago: executing program 0 (id=125):
r0 = socket$kcm(0x10, 0x7, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000400)={0x0, r1}, 0x8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x1, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r4, 0x1, 0xf, &(0x7f0000000000)=0x20, 0x4)
setsockopt$sock_attach_bpf(r4, 0x1, 0x34, &(0x7f00000000c0)=r3, 0x4)
listen(r4, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)={0x24, 0x0, 0x300, 0x70bd2a, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x9}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x40}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x80)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
ioctl$KVM_CREATE_PIT2(r6, 0x4040ae77, &(0x7f0000000000)={0x4})
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
ioctl$PPPIOCNEWUNIT(r7, 0xc004743e, &(0x7f0000000140))
pwritev(r7, &(0x7f0000000380)=[{&(0x7f00000001c0)="80fdbd4077051e01869b40", 0xb}], 0x1, 0x0, 0x3)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_GET_PIT(r2, 0xc048ae65, &(0x7f0000000000))
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000200)=<r8=>0x0)
r9 = syz_open_procfs(r8, &(0x7f0000000180)='pagemap\x00')
r10 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$VIDIOC_ENUMAUDOUT(r10, 0xc0345642, &(0x7f0000000040)={0x1, "92f3aec889aead4372495190f56f10fe4852f3e47eb566d7f3e56dd754345844", 0x1, 0x1})
pread64(r9, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000880)=@ipv6_newrule={0x88, 0x20, 0x10, 0x70bd25, 0x25dfdbff, {0xa, 0x80, 0x20, 0x4, 0x3, 0x0, 0x0, 0x6, 0x8}, [@FRA_SRC={0x14, 0x2, @remote}, @FRA_DST={0x14, 0x1, @loopback}, @FIB_RULE_POLICY=@FRA_IP_PROTO={0x5}, @FRA_DST={0x14, 0x1, @mcast1}, @FRA_DST={0x14, 0x1, @loopback}, @FRA_DST={0x14, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, 0x88}, 0x1, 0x0, 0x0, 0x4040000}, 0x40000)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r9, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000340)={&(0x7f0000000540)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="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"], 0x1c8}, 0x1, 0x0, 0x0, 0x4000080}, 0x4)
sendmsg$inet(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000004c0)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a36fff60a84c9f5d1938837e7860e4509c5bb5a00f69853000000000000", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x20004894)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000080), 0x106, 0x5}}, 0x20)

2.030755827s ago: executing program 0 (id=127):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe800000000000000000", @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0xffffffffffffff3a)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)

1.490083082s ago: executing program 2 (id=133):
socket$nl_route(0x10, 0x3, 0x0)
listen(0xffffffffffffffff, 0x2)
syz_open_procfs(0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000060000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_generic(0x11, 0x3, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaabeece722baaaaaaaaaaaaaaaaa08004500002b000000000102907800000000090000001100907800000000"], 0x0)
sendmsg(r2, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x2c, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f0800", 0x3e}], 0x2, 0x0, 0x0, 0x11000000}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000040))
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x4}]})
socket$netlink(0x10, 0x3, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x20000000, 0x440, 0x821, 0x0, 0x0, 0x2004cb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000], 0x0, 0x200306})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
ioctl$KVM_RUN(r5, 0xae80, 0x0)

1.410947993s ago: executing program 1 (id=90):
r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
preadv(r0, &(0x7f0000000180)=[{&(0x7f0000000340)=""/52, 0x34}], 0x1, 0x7400, 0x0)

1.260809071s ago: executing program 2 (id=136):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x3, 0x3, 0x9, 0x1, 0xd8, 0xffffffffffffffff}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
listen(r0, 0x1)
r1 = socket$nl_route(0x10, 0x3, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x3)
r2 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r2, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)
getsockname(r2, &(0x7f0000000800)=@nfc_llcp, &(0x7f0000000100)=0x80)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@bridge_setlink={0x44, 0x13, 0x1, 0x70bd28, 0x25dfdbff, {0x7, 0x0, 0x0, 0x0, 0x10, 0x22}, [@IFLA_MAP={0x24, 0xe, {0x100000000, 0x4, 0x1c000, 0x4, 0x7, 0xd}}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x0)
accept4$x25(r0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r3, 0x3)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r4, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r5 = accept4(r3, 0x0, 0x0, 0x0)
close(r5)
recvmmsg(r4, &(0x7f0000001140)=[{{0x0, 0x0, 0x0}, 0x4}], 0x1, 0x40010021, 0x0)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x61)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x15, 0xe, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffe49, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42)
close(r6)
r7 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[<r8=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r6, 0xc06864a1, &(0x7f0000000300)={0x0, 0x0, r8, <r9=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r7, 0xc06864ce, &(0x7f0000000600)={r9, 0x2, 0x9, 0x0, 0x3, [<r10=>0x0], [0xb, 0x0, 0xffffffff, 0xd7c], [0x0, 0x1001000, 0x0, 0x3c2], [0x0, 0x4, 0xe8a6, 0xfffffffffffffffe]})
ioctl$DRM_IOCTL_MODE_ADDFB2(r6, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xae, 0x3ff, 0x34325241, 0x0, [r10], [0x2b8]})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0})
io_uring_enter(r6, 0x6b4f, 0x6bf3, 0x44, &(0x7f0000000040)={[0x4]}, 0x8)

1.079930268s ago: executing program 0 (id=137):
r0 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0xc8d03)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000080)={0x7, 0x9, 0x20})
r1 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f0000000340)={0x0, 0x0, r2, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000440)={r3, 0x0, 0x1, 0x0, 0x2, [<r4=>0x0], [0x0, 0x803f, 0x3, 0xc1], [0x2], [0x0, 0x1, 0xfffffffffffffffc]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000040)={r4, 0x8fffe})

1.020360271s ago: executing program 0 (id=138):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
syz_emit_ethernet(0x4a, &(0x7f0000000440)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0xfffd, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0xc2}}}}}}}, 0x0)
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYBLOB="0404"], 0xd)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x1fffa2}], 0x1)

1.020088948s ago: executing program 0 (id=139):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x7c, r1, 0xb97534d5fe9704cf, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x8000, 0x45}}}}, [@NL80211_ATTR_STA_WME={0x34, 0x81, [@NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x4}, @NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x9}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x5}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x4}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x4}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x8}]}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x633}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x39d}, @NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x43}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0xa}]}, 0x7c}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$alg(0x26, 0x5, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x7, 0x4, 0x8, 0x40, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r5}, 0x20)
bind$alg(r4, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(cast5)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000040)="0000000000f60000000000", 0xb)
r6 = accept$alg(r4, 0x0, 0x0)
sendmsg$alg(r6, &(0x7f0000001840)={0x0, 0x0, 0x0, 0x0, &(0x7f00000017c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
sendmmsg$alg(r6, &(0x7f0000000180)=[{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000001640)="553e12df315719c9", 0x8}], 0x1}], 0x1, 0x840)
recvmsg(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/108, 0x6c}], 0x1}, 0x10001)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="7800000000010104000000000000000002000000240001801400018008000100ac1414bb08000200ac1414410c0002800500010000000000240002800c00028005000100000000001400018008000100e00000020800020000000002080007400000000014000580"], 0x78}}, 0x0)

430.80074ms ago: executing program 3 (id=144):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x40001, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000000c0)={0xffffff1f, @pix_mp={0x0, 0x0, 0x34325842, 0x0, 0x0, [{}, {}, {}, {}, {}, {0x0, 0x1}]}})

430.567019ms ago: executing program 3 (id=145):
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000002000/0x2000)=nil})
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000210000000000000000000000000a6c000000160a3f360000000000000000020000000900010073797a30000000004000038008000240000000002c0003801400010076657468305f746f5f626f6e6400000014000100766574683000000000"], 0x94}}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r3 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@private, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000540)={0x2, 0x6, 0x2, 0x0, 0x2, 0x0, 0x2}, 0x10}}, 0x0)

341.105817ms ago: executing program 2 (id=146):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f0000000440)=ANY=[@ANYBLOB="9feb0100180000c7b96ecb0010"], 0x0, 0x2a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
write$cgroup_devices(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b2308217f01"], 0xffdd)

340.52308ms ago: executing program 2 (id=147):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x4}]})
socket$netlink(0x10, 0x3, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x20000000, 0x440, 0x821, 0x0, 0x0, 0x2004cb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000], 0x0, 0x200306})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 10)

109.858948ms ago: executing program 0 (id=148):
add_key$user(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) (async)
connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x100000, @empty, 0x9}, 0x1c) (async)
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) (async)
pipe2$watch_queue(&(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r0, r1, 0x0)
keyctl$clear(0x7, r0)
add_key$user(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x1}, &(0x7f0000000200)="e509140d2d92b621866a29e0ae4a921b24d9970203222afeb8bc87ae73b4f445544091f66590b7d414b687efcb8ab90f95d9e2f82e72a19866d09df348fa727cbb178da0fd1c387524440fab28156a2a3bc0f91c4cc9abfb6912d0db2b09e0b60de637c47d0a4593dbc42ec3aed97e6e0d6e5315dd8e72cc52473af175820d9241c7ee35fe2a8c6fb47c870c4fe9e8328432becdca3218ae51d4b95303c052e7b677a04391c75729908901f8cb1b3f6a8f3b896a79fbe7033394bf2ba986a9d5149ea67c1996b3b11f91561a9734ab044dc61ad1572fa0a3ffefa0d110905b5ffe84718575", 0xe5, r0) (async)
recvmsg(0xffffffffffffffff, 0x0, 0x700) (async)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe8000000000000000000400000000aa"], 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='oom_score_adj_update\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='oom_score_adj_update\x00', r3}, 0x10) (async)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
writev(r4, &(0x7f00000002c0)=[{&(0x7f0000000280)='0', 0x1}], 0x1) (async)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x2a}, 0xa}, 0x20)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

109.564704ms ago: executing program 3 (id=149):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x34c403)
close_range(r0, 0xffffffffffffffff, 0x0)

109.310323ms ago: executing program 2 (id=150):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180), 0x1890a0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x40042)
write$binfmt_aout(r1, &(0x7f00000002c0)=ANY=[], 0x36)
ioctl$SG_GET_NUM_WAITING(r1, 0x227d, &(0x7f0000000040))
ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f00000000c0)={0x578, 0xf0, 0xa0, 0x400, 0x0, 0x0, 0x2, 0x1, {0x0, 0x80000000, 0x2}, {0x0, 0x7fffffff}, {0x3, 0x0, 0xffffffff}, {0xb, 0x0, 0x1}, 0x6, 0x1, 0xfffff001, 0x155, 0x1, 0x8, 0x0, 0x0, 0x9, 0x0, 0xff, 0x40000002, 0x0, 0x9f06360662c05544, 0x2, 0x9})

109.130425ms ago: executing program 3 (id=151):
clock_gettime(0x5, &(0x7f00000002c0))
r0 = shmget$private(0x0, 0x1000, 0x4, &(0x7f0000ffd000/0x1000)=nil)
shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x2000)

543.669µs ago: executing program 2 (id=152):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x19d)
write$uinput_user_dev(r0, &(0x7f0000000880)={'syz0\x00', {0x2, 0x4b99, 0x4, 0x1}, 0x1e, [0x5, 0x4379, 0x8, 0x4, 0x2, 0x5, 0x2, 0x9, 0x5, 0x7, 0x7, 0xba7, 0x8, 0x9, 0x5, 0x3, 0x2b9d, 0x9, 0xaf7, 0x1, 0x3c, 0x1, 0x5, 0x907, 0x4, 0x80, 0x8, 0xfffffff7, 0x0, 0x0, 0xb, 0x370, 0x5, 0x778ac212, 0x1, 0x10001, 0x1000, 0x401, 0x0, 0x19, 0x10000, 0x9, 0xe, 0x7, 0x9, 0x5, 0x4, 0x8c02, 0x3, 0x9, 0x7, 0x4, 0x10000, 0x5, 0x100, 0x48d4, 0xfffffffc, 0xfffffffa, 0x40, 0xc4a1, 0x5, 0x10000000, 0x6, 0x8], [0xa, 0x6, 0x8001, 0xfff, 0x3ff, 0xfffffffd, 0x3, 0x7fff, 0x2b, 0xc, 0x5, 0x40000000, 0xffffffff, 0x809508, 0x0, 0x5, 0xd, 0x1, 0x6, 0x1, 0x10001, 0x3ff, 0xffffffff, 0x7, 0x2df4, 0x4, 0xffffff7f, 0x2, 0x1ff, 0x6, 0xb, 0x9, 0x4, 0x1, 0xfffffffb, 0x6, 0x4, 0x7fffffff, 0x8, 0xf, 0x1, 0xc, 0x9, 0x80000000, 0x14c0eb9d, 0x1, 0x7, 0x1, 0x10, 0x7f, 0xab3, 0x6, 0x12, 0xa, 0xa, 0x4, 0x524dda75, 0x800000e, 0x5, 0x3, 0x6ece, 0x3ff, 0xe773], [0xde3, 0x5dd4, 0x6, 0x4, 0x3, 0x5, 0x0, 0x2, 0xfffffffa, 0x1, 0x7ff, 0x403, 0xfffffffc, 0x8, 0x7, 0xe74617a, 0x2, 0x4, 0x4, 0x6, 0x80000000, 0x19000000, 0x8, 0x1fc, 0x6, 0xf, 0x0, 0xfffffffc, 0x40002e6, 0x1, 0x8, 0x4000004, 0x9, 0x0, 0x4, 0x2, 0x3, 0x3, 0x0, 0x7, 0x1000, 0x4, 0x3, 0x7bb14aae, 0x1, 0x1000, 0xffffffff, 0x3, 0x3, 0xb, 0x5, 0x0, 0x0, 0x3, 0x3ff, 0x7, 0xfffff801, 0x8, 0x3, 0x1, 0x2, 0xfffffffe, 0x20000004, 0x1], [0x7f, 0x401, 0x101, 0x1b4, 0x1, 0x0, 0x200007, 0x1000, 0x4, 0x1645, 0x2, 0xffffff80, 0x7, 0x0, 0x4, 0x0, 0x100007, 0x9, 0x6, 0x1000, 0x8, 0x10000, 0xfffffdd2, 0x2a8, 0x470, 0x8d1, 0x5, 0x8, 0x10, 0x5, 0x5, 0xa, 0x7, 0x6, 0x4e1bbb9d, 0x6, 0x1, 0x90a, 0x7ffffffc, 0xfffffffd, 0x10, 0x0, 0x3, 0x4, 0x5, 0x2, 0xb, 0xe, 0x4, 0x2, 0x6, 0x1, 0xfe, 0x2, 0x2, 0x21, 0x4, 0x6, 0xbf09, 0x9, 0x6, 0x1, 0x5, 0xa3]}, 0x45c)
chown(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) (fail_nth: 8)

148.927µs ago: executing program 3 (id=153):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'wp384-generic\x00'}, 0x58) (async)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000780)={0x14, 0x0, 0x20, 0x70bd26, 0x25dfdbfc}, 0xfebe}}, 0x200040d1) (async, rerun: 64)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff) (async, rerun: 64)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0) (async)
r3 = userfaultfd(0x1)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000)) (async)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f0000000140)={0xc, 0x0, <r6=>0x0}) (async)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000240)={0xc, 0x0, <r7=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, &(0x7f0000000280)={0x28, 0x7, r7, 0x0, &(0x7f00007ff000/0x800000)=nil, 0x800000}) (async)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r4, 0x3ba0, &(0x7f0000000180)={0x48, 0x5, r6, 0x0, <r8=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r5, 0x3ba0, &(0x7f0000000080)={0x48, 0x7, r8, 0x0, 0x10000, 0x0, 0x3, 0x2060e3, 0x36f3fc}) (async)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff) (async, rerun: 64)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r12=>0x0}) (async, rerun: 64)
r13 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x4, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x48) (async, rerun: 32)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x2, 0x6, &(0x7f0000000180)=@framed={{0x18, 0x2}, [@map_fd={0x18, 0x1, 0x1, 0x0, r13}, @call={0x85, 0x0, 0x0, 0x16}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) (async, rerun: 32)
sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(r10, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r11, 0x1, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8, 0x3, r12}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x11}, 0x8004)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x64, r2, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @mcast1={0xff, 0x2}}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @empty}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x4}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x3}]}, 0x64}, 0x1, 0x620b, 0x0, 0x4000000}, 0x0)

0s ago: executing program 3 (id=154):
r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f00000002c0), 0x180, 0x0)
ioctl$TIOCSPGRP(r0, 0x5410, &(0x7f0000000300))
r1 = socket$inet6_sctp(0xa, 0x20835453ecca6c0d, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f00000000c0)=[@in={0x2, 0x4e20, @broadcast}, @in6={0xa, 0x4e20, 0xaa, @rand_addr=' \x01\x00', 0x400}, @in6={0xa, 0x4e21, 0xdd7, @loopback, 0x6b}, @in6={0xa, 0x4e23, 0xffffffbe, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4}, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x40}}], 0x74)
r2 = syz_open_dev$video4linux(&(0x7f0000001380), 0x5, 0x0)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r2, 0xc040563d, &(0x7f0000000000)={0x0, 0x0, 0x2})
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_BLANKSCREEN(r3, 0x541c, &(0x7f0000000080))
r4 = socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000180)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x4e23, 0x4e22, 0x18, 0x0, @wg=@data}}}}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001480)={&(0x7f0000000000)=@newtaction={0x6c, 0x30, 0x36eac49ec043b62f, 0x0, 0x25dfdbbf, {}, [{0x58, 0x1, [@m_gact={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x2, 0x8, 0x6, 0xd, 0xe}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x320, 0x6}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)

kernel console output (not intermixed with test programs):

[   38.206084][   T39] audit: type=1400 audit(1737205956.232:80): avc:  denied  { write } for  pid=5914 comm="sh" path="pipe:[6437]" dev="pipefs" ino=6437 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   38.213870][   T39] audit: type=1400 audit(1737205956.232:81): avc:  denied  { rlimitinh } for  pid=5914 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   38.219336][   T39] audit: type=1400 audit(1737205956.232:82): avc:  denied  { siginh } for  pid=5914 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   39.558569][   T39] audit: type=1400 audit(1737205957.592:83): avc:  denied  { read } for  pid=5332 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   39.566988][   T39] audit: type=1400 audit(1737205957.592:84): avc:  denied  { append } for  pid=5332 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   39.574082][   T39] audit: type=1400 audit(1737205957.592:85): avc:  denied  { open } for  pid=5332 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   39.580674][   T39] audit: type=1400 audit(1737205957.592:86): avc:  denied  { getattr } for  pid=5332 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
Warning: Permanently added '[localhost]:44204' (ED25519) to the list of known hosts.
[   40.079721][   T39] audit: type=1400 audit(1737205958.112:87): avc:  denied  { name_bind } for  pid=5921 comm="sshd" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   41.707793][ T5923] cgroup: Unknown subsys name 'net'
[   41.934267][ T5923] cgroup: Unknown subsys name 'cpuset'
[   41.938460][ T5923] cgroup: Unknown subsys name 'rlimit'
[   42.126273][ T5928] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[   42.857280][ T5923] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   45.612392][   T39] kauditd_printk_skb: 17 callbacks suppressed
[   45.612409][   T39] audit: type=1400 audit(1737205963.642:105): avc:  denied  { execmem } for  pid=5930 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   45.746404][   T39] audit: type=1400 audit(1737205963.782:106): avc:  denied  { create } for  pid=5934 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   45.761221][   T39] audit: type=1400 audit(1737205963.792:107): avc:  denied  { read write } for  pid=5935 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   45.769263][   T39] audit: type=1400 audit(1737205963.792:108): avc:  denied  { open } for  pid=5935 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   45.776131][   T39] audit: type=1400 audit(1737205963.792:109): avc:  denied  { ioctl } for  pid=5935 comm="syz-executor" path="socket:[7240]" dev="sockfs" ino=7240 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   45.796417][ T5939] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   45.799219][ T5939] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   45.803177][ T5939] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   45.805377][ T5939] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   45.808084][ T5948] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   45.808230][ T5939] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   45.811895][ T5948] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   45.813853][ T5939] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   45.816530][ T5948] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   45.820247][ T5939] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   45.821105][ T5948] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   45.824653][ T5939] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   45.825979][ T5949] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   45.826913][ T5948] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   45.827852][ T5949] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   45.828134][ T5949] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   45.828243][ T5949] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   45.829325][ T5939] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   45.834482][   T39] audit: type=1400 audit(1737205963.872:110): avc:  denied  { read } for  pid=5934 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   45.836015][ T5948] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   45.839141][   T66] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   45.840587][   T39] audit: type=1400 audit(1737205963.872:111): avc:  denied  { open } for  pid=5934 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   45.843455][   T66] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   45.850312][   T39] audit: type=1400 audit(1737205963.872:112): avc:  denied  { mounton } for  pid=5934 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   45.857101][ T5948] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   45.858660][   T66] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   45.873619][ T5948] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   45.954238][   T39] audit: type=1400 audit(1737205963.992:113): avc:  denied  { module_request } for  pid=5935 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   45.975642][ T5935] chnl_net:caif_netlink_parms(): no params data found
[   46.065798][ T5935] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.067962][ T5935] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.070297][ T5935] bridge_slave_0: entered allmulticast mode
[   46.072919][ T5935] bridge_slave_0: entered promiscuous mode
[   46.076609][ T5935] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.079353][ T5935] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.082703][ T5935] bridge_slave_1: entered allmulticast mode
[   46.084854][ T5935] bridge_slave_1: entered promiscuous mode
[   46.098576][ T5934] chnl_net:caif_netlink_parms(): no params data found
[   46.126781][ T5935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.130719][ T5942] chnl_net:caif_netlink_parms(): no params data found
[   46.134397][ T5946] chnl_net:caif_netlink_parms(): no params data found
[   46.152859][ T5935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.210483][ T5935] team0: Port device team_slave_0 added
[   46.226387][ T5934] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.228645][ T5934] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.230886][ T5934] bridge_slave_0: entered allmulticast mode
[   46.233541][ T5934] bridge_slave_0: entered promiscuous mode
[   46.253261][ T5935] team0: Port device team_slave_1 added
[   46.272951][ T5934] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.275892][ T5934] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.278910][ T5934] bridge_slave_1: entered allmulticast mode
[   46.282462][ T5934] bridge_slave_1: entered promiscuous mode
[   46.376867][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.379746][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.389836][ T5935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.396095][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.398914][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.409136][ T5935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.425047][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.427177][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.429262][ T5942] bridge_slave_0: entered allmulticast mode
[   46.431665][ T5942] bridge_slave_0: entered promiscuous mode
[   46.435343][ T5934] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.456602][ T5946] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.458781][ T5946] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.460955][ T5946] bridge_slave_0: entered allmulticast mode
[   46.464012][ T5946] bridge_slave_0: entered promiscuous mode
[   46.466784][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.468892][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.471014][ T5942] bridge_slave_1: entered allmulticast mode
[   46.473603][ T5942] bridge_slave_1: entered promiscuous mode
[   46.484765][ T5934] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.497862][ T5946] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.499942][ T5946] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.502757][ T5946] bridge_slave_1: entered allmulticast mode
[   46.504930][ T5946] bridge_slave_1: entered promiscuous mode
[   46.523205][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.535065][ T5934] team0: Port device team_slave_0 added
[   46.546605][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.557287][ T5934] team0: Port device team_slave_1 added
[   46.560248][ T5946] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.582048][ T5935] hsr_slave_0: entered promiscuous mode
[   46.584177][ T5935] hsr_slave_1: entered promiscuous mode
[   46.596785][ T5946] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.621003][ T5934] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.623956][ T5934] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.633462][ T5934] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.647676][ T5942] team0: Port device team_slave_0 added
[   46.650796][ T5934] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.653846][ T5934] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.661016][ T5934] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.685833][ T5942] team0: Port device team_slave_1 added
[   46.692425][ T5946] team0: Port device team_slave_0 added
[   46.699287][ T5946] team0: Port device team_slave_1 added
[   46.766008][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.768724][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.777497][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.783374][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.785317][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.792653][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.804540][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.806600][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.814005][ T5946] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.832015][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.834051][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.840818][ T5946] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.864976][ T5934] hsr_slave_0: entered promiscuous mode
[   46.866873][ T5934] hsr_slave_1: entered promiscuous mode
[   46.868612][ T5934] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.870608][ T5934] Cannot create hsr debugfs directory
[   46.934873][ T5946] hsr_slave_0: entered promiscuous mode
[   46.936861][ T5946] hsr_slave_1: entered promiscuous mode
[   46.938724][ T5946] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.940818][ T5946] Cannot create hsr debugfs directory
[   46.945217][ T5942] hsr_slave_0: entered promiscuous mode
[   46.947587][ T5942] hsr_slave_1: entered promiscuous mode
[   46.949896][ T5942] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.952355][ T5942] Cannot create hsr debugfs directory
[   47.096375][ T5935] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   47.114860][ T5935] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   47.117939][ T5935] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   47.126786][ T5935] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   47.158361][ T5934] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   47.163322][ T5934] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   47.167407][ T5934] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   47.176172][ T5934] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   47.198627][ T5942] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   47.204711][ T5942] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   47.211993][ T5942] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   47.215905][ T5942] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   47.243927][ T5946] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   47.247104][ T5946] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   47.250367][ T5946] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   47.253884][ T5946] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   47.289790][ T5935] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.305737][ T5935] 8021q: adding VLAN 0 to HW filter on device team0
[   47.314932][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.317107][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.328097][   T81] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.330180][   T81] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.349710][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.364789][ T5934] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.376947][ T5942] 8021q: adding VLAN 0 to HW filter on device team0
[   47.389753][ T5934] 8021q: adding VLAN 0 to HW filter on device team0
[   47.394219][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.396364][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.399148][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.401166][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.408151][ T5946] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.418118][ T5946] 8021q: adding VLAN 0 to HW filter on device team0
[   47.422163][ T5935] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   47.431765][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.433907][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.447462][   T81] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.450292][   T81] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.453365][   T81] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.455380][   T81] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.458403][   T81] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.460447][   T81] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.487429][   T39] audit: type=1400 audit(1737205965.522:114): avc:  denied  { sys_module } for  pid=5935 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   47.566136][ T5935] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.574165][ T5934] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.580516][ T5946] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.605816][ T5935] veth0_vlan: entered promiscuous mode
[   47.623121][ T5935] veth1_vlan: entered promiscuous mode
[   47.631053][ T5934] veth0_vlan: entered promiscuous mode
[   47.640493][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.648458][ T5934] veth1_vlan: entered promiscuous mode
[   47.662563][ T5946] veth0_vlan: entered promiscuous mode
[   47.673028][ T5946] veth1_vlan: entered promiscuous mode
[   47.676868][ T5935] veth0_macvtap: entered promiscuous mode
[   47.682009][ T5934] veth0_macvtap: entered promiscuous mode
[   47.685474][ T5935] veth1_macvtap: entered promiscuous mode
[   47.701251][ T5934] veth1_macvtap: entered promiscuous mode
[   47.708108][ T5942] veth0_vlan: entered promiscuous mode
[   47.718822][ T5946] veth0_macvtap: entered promiscuous mode
[   47.722775][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.725362][ T5935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.729514][ T5935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.734361][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.738316][ T5942] veth1_vlan: entered promiscuous mode
[   47.747614][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.752435][ T5946] veth1_macvtap: entered promiscuous mode
[   47.758137][ T5935] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.762213][ T5935] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.765719][ T5935] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.769213][ T5935] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.775005][ T5934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.778960][ T5934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.784170][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.789545][ T5934] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.792793][ T5934] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.796195][ T5934] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.799546][ T5934] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.808587][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.812978][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.815781][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.818780][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.823150][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.829551][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.834108][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.837834][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.843073][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.846031][ T5948] Bluetooth: hci1: command tx timeout
[   47.848381][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.851865][ T5948] Bluetooth: hci0: command tx timeout
[   47.859436][ T5946] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.863158][ T5946] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.866400][ T5946] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.869369][ T5946] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.883642][ T5942] veth0_macvtap: entered promiscuous mode
[   47.901145][ T5942] veth1_macvtap: entered promiscuous mode
[   47.921562][ T5948] Bluetooth: hci3: command tx timeout
[   47.931612][ T5948] Bluetooth: hci2: command tx timeout
[   47.941644][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.945743][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.949345][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.953232][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.956704][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.960415][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.967053][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.976280][ T1135] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.979354][ T1135] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.985212][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.988194][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.990866][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.994468][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.997344][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.000450][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.004818][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.016284][ T5942] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.016820][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.019002][ T5942] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.022031][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.028118][ T5942] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.030691][ T5942] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.051854][ T1135] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.055237][ T1135] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.070335][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.074223][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.088109][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.091287][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.107094][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.110307][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.117203][ T1135] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.120365][ T1135] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.120781][ T5935] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   48.138928][ T1135] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.143709][ T1135] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.202330][ T6006] warning: `syz.0.1' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   48.252602][ T6013] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3'.
[   48.266513][ T6013] overlayfs: conflicting lowerdir path
[   48.732313][ T6045] kvm: emulating exchange as write
[   49.109907][ T6061] netlink: 276 bytes leftover after parsing attributes in process `syz.3.10'.
[   49.342288][ T6071] fuse: Bad value for 'rootmode'
[   49.645342][ T6086] FAULT_INJECTION: forcing a failure.
[   49.645342][ T6086] name failslab, interval 1, probability 0, space 0, times 1
[   49.649172][ T6086] CPU: 3 UID: 0 PID: 6086 Comm: syz.1.18 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   49.651807][ T6086] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   49.654689][ T6086] Call Trace:
[   49.655567][ T6086]  <TASK>
[   49.656376][ T6086]  dump_stack_lvl+0x16c/0x1f0
[   49.657660][ T6086]  should_fail_ex+0x497/0x5b0
[   49.659264][ T6086]  ? fs_reclaim_acquire+0xae/0x150
[   49.660954][ T6086]  should_failslab+0xc2/0x120
[   49.662505][ T6086]  __kmalloc_noprof+0xcb/0x510
[   49.664167][ T6086]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   49.666092][ T6086]  tomoyo_realpath_from_path+0xb9/0x720
[   49.667950][ T6086]  ? tomoyo_path_number_perm+0x235/0x590
[   49.669830][ T6086]  ? tomoyo_path_number_perm+0x235/0x590
[   49.671689][ T6086]  tomoyo_path_number_perm+0x248/0x590
[   49.673529][ T6086]  ? tomoyo_path_number_perm+0x235/0x590
[   49.675005][ T6086]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   49.676528][ T6086]  ? from_kgid+0x8b/0xd0
[   49.677596][ T6086]  ? __pfx_from_kgid+0x10/0x10
[   49.679211][ T6086]  ? trace_lock_acquire+0x14e/0x1f0
[   49.680997][ T6086]  tomoyo_path_chown+0x14d/0x1b0
[   49.682738][ T6086]  ? __pfx_tomoyo_path_chown+0x10/0x10
[   49.684441][ T6086]  ? from_vfsuid+0xeb/0x150
[   49.685579][ T6086]  ? __pfx_from_vfsuid+0x10/0x10
[   49.686831][ T6086]  security_path_chown+0x12a/0x2e0
[   49.688357][ T6086]  chown_common+0x3bc/0x670
[   49.689870][ T6086]  ? __pfx_chown_common+0x10/0x10
[   49.691452][ T6086]  ? trace_lock_acquire+0x14e/0x1f0
[   49.692784][ T6086]  ? mnt_get_write_access+0x6a/0x300
[   49.694171][ T6086]  ? mnt_get_write_access+0x20c/0x300
[   49.695679][ T6086]  do_fchownat+0x1ac/0x200
[   49.696880][ T6086]  ? __pfx_do_fchownat+0x10/0x10
[   49.698331][ T6086]  ? ksys_write+0x1ba/0x250
[   49.699894][ T6086]  ? __pfx_ksys_write+0x10/0x10
[   49.701545][ T6086]  __x64_sys_chown+0x7b/0xc0
[   49.703046][ T6086]  ? lockdep_hardirqs_on+0x7c/0x110
[   49.704837][ T6086]  do_syscall_64+0xcd/0x250
[   49.706263][ T6086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.707857][ T6086] RIP: 0033:0x7f0cb4d85d29
[   49.709355][ T6086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.715360][ T6086] RSP: 002b:00007f0cb5bff038 EFLAGS: 00000246 ORIG_RAX: 000000000000005c
[   49.717509][ T6086] RAX: ffffffffffffffda RBX: 00007f0cb4f75fa0 RCX: 00007f0cb4d85d29
[   49.720062][ T6086] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080
[   49.722481][ T6086] RBP: 00007f0cb5bff090 R08: 0000000000000000 R09: 0000000000000000
[   49.724504][ T6086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.726593][ T6086] R13: 0000000000000000 R14: 00007f0cb4f75fa0 R15: 00007ffcd7232418
[   49.728894][ T6086]  </TASK>
[   49.733873][ T6086] ERROR: Out of memory at tomoyo_realpath_from_path.
[   49.835529][ T6001] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   49.836281][ T6089] FAULT_INJECTION: forcing a failure.
[   49.836281][ T6089] name failslab, interval 1, probability 0, space 0, times 0
[   49.843789][ T6089] CPU: 3 UID: 0 PID: 6089 Comm: syz.1.19 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   49.847019][ T6089] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   49.850517][ T6089] Call Trace:
[   49.851697][ T6089]  <TASK>
[   49.852711][ T6089]  dump_stack_lvl+0x16c/0x1f0
[   49.854248][ T6089]  should_fail_ex+0x497/0x5b0
[   49.855727][ T6089]  ? fs_reclaim_acquire+0xae/0x150
[   49.857375][ T6089]  should_failslab+0xc2/0x120
[   49.858916][ T6089]  __kmalloc_noprof+0xcb/0x510
[   49.860388][ T6089]  ? __pfx_lock_release+0x10/0x10
[   49.861959][ T6089]  ? trace_lock_acquire+0x14e/0x1f0
[   49.863550][ T6089]  tomoyo_encode2+0x100/0x3e0
[   49.865113][ T6089]  tomoyo_encode+0x29/0x50
[   49.866474][ T6089]  tomoyo_mount_acl+0x145/0x880
[   49.867878][ T6089]  ? hlock_class+0x4e/0x130
[   49.869233][ T6089]  ? __lock_acquire+0x15a9/0x3c40
[   49.870775][ T6089]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[   49.872402][ T6089]  ? __pfx___lock_acquire+0x10/0x10
[   49.873967][ T6089]  ? stack_trace_save+0x95/0xd0
[   49.875454][ T6089]  ? __pfx_lock_release+0x10/0x10
[   49.876972][ T6089]  ? trace_lock_acquire+0x14e/0x1f0
[   49.878584][ T6089]  ? tomoyo_mount_permission+0x149/0x420
[   49.880311][ T6089]  ? lock_acquire+0x2f/0xb0
[   49.881682][ T6089]  ? tomoyo_mount_permission+0x149/0x420
[   49.883389][ T6089]  tomoyo_mount_permission+0x16e/0x420
[   49.884984][ T6089]  ? tomoyo_mount_permission+0x149/0x420
[   49.886659][ T6089]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[   49.888513][ T6089]  ? get_current_fs_domain+0x184/0x1f0
[   49.890138][ T6089]  security_sb_mount+0x9b/0x260
[   49.891606][ T6089]  path_mount+0x129/0x1f10
[   49.892890][ T6089]  ? kmem_cache_free+0x152/0x4c0
[   49.894426][ T6089]  ? __pfx_path_mount+0x10/0x10
[   49.895954][ T6089]  ? putname+0x13c/0x180
[   49.897270][ T6089]  __x64_sys_mount+0x294/0x320
[   49.898770][ T6089]  ? __pfx___x64_sys_mount+0x10/0x10
[   49.900726][ T6089]  do_syscall_64+0xcd/0x250
[   49.902623][ T6089]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.904942][ T6089] RIP: 0033:0x7f0cb4d85d29
[   49.906775][ T6089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.914293][ T6089] RSP: 002b:00007f0cb5bff038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   49.917590][ T6089] RAX: ffffffffffffffda RBX: 00007f0cb4f75fa0 RCX: 00007f0cb4d85d29
[   49.920667][ T6089] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 0000000000000000
[   49.923761][ T6089] RBP: 00007f0cb5bff090 R08: 0000000020000240 R09: 0000000000000000
[   49.926819][ T6089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.929923][ T6089] R13: 0000000000000000 R14: 00007f0cb4f75fa0 R15: 00007ffcd7232418
[   49.933043][ T6089]  </TASK>
[   49.934941][ T5948] Bluetooth: hci0: command tx timeout
[   49.936686][ T5948] Bluetooth: hci1: command tx timeout
[   50.002383][ T5945] Bluetooth: hci2: command tx timeout
[   50.012251][ T6093] FAULT_INJECTION: forcing a failure.
[   50.012251][ T6093] name failslab, interval 1, probability 0, space 0, times 0
[   50.016060][ T6093] CPU: 1 UID: 0 PID: 6093 Comm: syz.1.21 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   50.019032][ T6093] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   50.022026][ T6093] Call Trace:
[   50.022991][ T6093]  <TASK>
[   50.023893][ T6093]  dump_stack_lvl+0x16c/0x1f0
[   50.025248][ T6093]  should_fail_ex+0x497/0x5b0
[   50.026598][ T6093]  ? fs_reclaim_acquire+0xae/0x150
[   50.028034][ T6093]  should_failslab+0xc2/0x120
[   50.029307][ T6093]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[   50.030909][ T6093]  ? __d_alloc+0x31/0xaa0
[   50.032139][ T6093]  __d_alloc+0x31/0xaa0
[   50.033304][ T6093]  ? __raw_spin_lock_init+0x3a/0x110
[   50.034757][ T6093]  d_alloc_pseudo+0x1c/0xc0
[   50.036006][ T6093]  alloc_file_pseudo+0xdc/0x210
[   50.037409][ T6093]  ? __pfx_alloc_file_pseudo+0x10/0x10
[   50.038929][ T6093]  dma_buf_export+0x3a9/0xb30
[   50.040214][ T6093]  virtio_dma_buf_export+0xaa/0xe0
[   50.041669][ T6001] usb 8-1: Using ep0 maxpacket: 8
[   50.043121][ T6093]  virtgpu_gem_prime_export+0x21a/0x440
[   50.044181][ T6001] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[   50.044732][ T6093]  ? __pfx_virtgpu_gem_prime_export+0x10/0x10
[   50.046927][ T6001] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   50.048645][ T6093]  ? do_raw_spin_unlock+0x172/0x230
[   50.048664][ T6093]  ? __pfx_virtgpu_gem_prime_export+0x10/0x10
[   50.052018][ T6001] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   50.053521][ T6093]  drm_gem_prime_handle_to_dmabuf+0x50d/0x6e0
[   50.055207][ T6001] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   50.058119][ T6093]  drm_prime_handle_to_fd_ioctl+0x153/0x230
[   50.059865][ T6001] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   50.062949][ T6093]  drm_ioctl_kernel+0x1e6/0x3d0
[   50.062966][ T6093]  ? __pfx_drm_prime_handle_to_fd_ioctl+0x10/0x10
[   50.062977][ T6093]  ? __might_fault+0xe3/0x190
[   50.062991][ T6093]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   50.063004][ T6093]  ? __might_fault+0xe3/0x190
[   50.063020][ T6093]  drm_ioctl+0x5d6/0xc00
[   50.066584][ T6001] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[   50.068280][ T6093]  ? __pfx_drm_prime_handle_to_fd_ioctl+0x10/0x10
[   50.068295][ T6093]  ? __pfx_drm_ioctl+0x10/0x10
[   50.069650][ T6001] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   50.071827][ T6093]  ? __pfx_lock_release+0x10/0x10
[   50.071853][ T6093]  ? selinux_file_ioctl+0x180/0x270
[   50.071877][ T6093]  ? selinux_file_ioctl+0xb4/0x270
[   50.071900][ T6093]  ? __pfx_drm_ioctl+0x10/0x10
[   50.073390][ T6001] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   50.075085][ T6093]  __x64_sys_ioctl+0x190/0x200
[   50.076605][ T6001] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   50.077904][ T6093]  do_syscall_64+0xcd/0x250
[   50.079917][ T6001] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   50.081835][ T6093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.081853][ T6093] RIP: 0033:0x7f0cb4d85d29
[   50.081863][ T6093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.081872][ T6093] RSP: 002b:00007f0cb5bff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   50.081883][ T6093] RAX: ffffffffffffffda RBX: 00007f0cb4f75fa0 RCX: 00007f0cb4d85d29
[   50.081889][ T6093] RDX: 0000000020000040 RSI: 00000000c00c642d RDI: 0000000000000003
[   50.081895][ T6093] RBP: 00007f0cb5bff090 R08: 0000000000000000 R09: 0000000000000000
[   50.081901][ T6093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.085902][ T6001] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[   50.087181][ T6093] R13: 0000000000000000 R14: 00007f0cb4f75fa0 R15: 00007ffcd7232418
[   50.087196][ T6093]  </TASK>
[   50.132203][ T6001] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   50.135400][ T6001] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   50.138703][ T6001] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   50.141856][ T6001] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   50.149311][ T6001] usb 8-1: string descriptor 0 read error: -22
[   50.151174][ T6001] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   50.154745][ T6001] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   50.164271][ T6001] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   50.242053][ T5945] Bluetooth: hci3: command tx timeout
[   50.405342][ T6108] Zero length message leads to an empty skb
[   50.419710][ T6111] netlink: 44 bytes leftover after parsing attributes in process `syz.2.27'.
[   50.567136][ T6122] FAULT_INJECTION: forcing a failure.
[   50.567136][ T6122] name failslab, interval 1, probability 0, space 0, times 0
[   50.573903][ T6122] CPU: 3 UID: 0 PID: 6122 Comm: syz.2.29 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   50.577895][ T6122] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   50.580806][ T6122] Call Trace:
[   50.581778][ T6122]  <TASK>
[   50.582642][ T6122]  dump_stack_lvl+0x16c/0x1f0
[   50.583950][ T6122]  should_fail_ex+0x497/0x5b0
[   50.585273][ T6122]  ? fs_reclaim_acquire+0xae/0x150
[   50.586778][ T6122]  should_failslab+0xc2/0x120
[   50.588102][ T6122]  __kmalloc_noprof+0xcb/0x510
[   50.589531][ T6122]  ? __pfx___debug_object_init+0x10/0x10
[   50.591132][ T6122]  bio_kmalloc+0x41/0x70
[   50.592364][ T6122]  blk_rq_map_kern+0x3b8/0x740
[   50.593953][ T6122]  scsi_execute_cmd+0xc15/0xf40
[   50.595795][ T6122]  ? __pfx_mark_lock+0x10/0x10
[   50.597609][ T6122]  ? lockdep_hardirqs_on+0x7c/0x110
[   50.599097][ T6122]  ? __pfx_scsi_execute_cmd+0x10/0x10
[   50.600564][ T6122]  ? __lock_acquire+0x15a9/0x3c40
[   50.602001][ T6122]  ? hlock_class+0x4e/0x130
[   50.603295][ T6122]  sr_check_events+0x1f3/0xab0
[   50.604672][ T6122]  ? __pfx_sr_check_events+0x10/0x10
[   50.606209][ T6122]  ? hlock_class+0x4e/0x130
[   50.607583][ T6122]  ? __pfx___lock_acquire+0x10/0x10
[   50.609065][ T6122]  ? lock_acquire.part.0+0x11b/0x380
[   50.610502][ T6122]  ? find_held_lock+0x2d/0x110
[   50.611840][ T6122]  cdrom_check_events+0x65/0x110
[   50.613224][ T6122]  sr_block_check_events+0xc4/0x100
[   50.614661][ T6122]  disk_check_events+0xbe/0x410
[   50.616083][ T6122]  ? _raw_spin_unlock_irq+0x23/0x50
[   50.617619][ T6122]  disk_check_media_change+0x101/0x280
[   50.619190][ T6122]  ? __pfx_disk_check_media_change+0x10/0x10
[   50.620899][ T6122]  ? lockdep_hardirqs_on+0x7c/0x110
[   50.622375][ T6122]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   50.624031][ T6122]  ? __pm_runtime_resume+0xc3/0x170
[   50.625498][ T6122]  sr_block_open+0xe1/0x270
[   50.626764][ T6122]  ? __pfx_sr_block_open+0x10/0x10
[   50.628195][ T6122]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   50.629779][ T6122]  ? __pfx_sr_block_open+0x10/0x10
[   50.631206][ T6122]  blkdev_get_whole+0x96/0x290
[   50.632541][ T6122]  bdev_open+0x2c7/0xe20
[   50.633761][ T6122]  blkdev_open+0x329/0x400
[   50.635044][ T6122]  do_dentry_open+0xf59/0x1ea0
[   50.636373][ T6122]  ? __pfx_blkdev_open+0x10/0x10
[   50.637950][ T6122]  vfs_open+0x82/0x3f0
[   50.639204][ T6122]  ? may_open+0x1f2/0x400
[   50.640649][ T6122]  path_openat+0x1e6a/0x2d60
[   50.642036][ T6122]  ? __pfx_path_openat+0x10/0x10
[   50.643574][ T6122]  ? __pfx___lock_acquire+0x10/0x10
[   50.645157][ T6122]  ? lock_acquire.part.0+0x11b/0x380
[   50.646757][ T6122]  ? find_held_lock+0x2d/0x110
[   50.648354][ T6122]  do_filp_open+0x20c/0x470
[   50.649632][ T6122]  ? __pfx_do_filp_open+0x10/0x10
[   50.651224][ T6122]  ? find_held_lock+0x2d/0x110
[   50.652717][ T6122]  ? alloc_fd+0x41f/0x760
[   50.654101][ T6122]  do_sys_openat2+0x17a/0x1e0
[   50.655707][ T6122]  ? __pfx_do_sys_openat2+0x10/0x10
[   50.657287][ T6122]  ? __fget_files+0x206/0x3a0
[   50.658607][ T6122]  __x64_sys_openat+0x175/0x210
[   50.659945][ T6122]  ? __pfx___x64_sys_openat+0x10/0x10
[   50.661419][ T6122]  ? ksys_write+0x1ba/0x250
[   50.662707][ T6122]  do_syscall_64+0xcd/0x250
[   50.664023][ T6122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.666169][ T6122] RIP: 0033:0x7f487f185d29
[   50.667775][ T6122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.673307][ T6122] RSP: 002b:00007f487ffb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   50.675603][ T6122] RAX: ffffffffffffffda RBX: 00007f487f376080 RCX: 00007f487f185d29
[   50.677837][ T6122] RDX: 0000000000000000 RSI: 0000000020000140 RDI: ffffffffffffff9c
[   50.679999][ T6122] RBP: 00007f487ffb1090 R08: 0000000000000000 R09: 0000000000000000
[   50.682170][ T6122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.684438][ T6122] R13: 0000000000000000 R14: 00007f487f376080 R15: 00007fff4ad1afc8
[   50.687376][ T6122]  </TASK>
[   50.688641][    C3] vkms_vblank_simulate: vblank timer overrun
[   51.447116][   T39] kauditd_printk_skb: 80 callbacks suppressed
[   51.447126][   T39] audit: type=1400 audit(1737205969.482:195): avc:  denied  { create } for  pid=6131 comm="syz.1.35" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   51.455408][   T39] audit: type=1400 audit(1737205969.482:196): avc:  denied  { create } for  pid=6131 comm="syz.1.35" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   51.461246][   T39] audit: type=1400 audit(1737205969.482:197): avc:  denied  { write } for  pid=6131 comm="syz.1.35" path="socket:[11271]" dev="sockfs" ino=11271 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   51.468322][   T39] audit: type=1400 audit(1737205969.482:198): avc:  denied  { nlmsg_write } for  pid=6131 comm="syz.1.35" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   51.479090][   T39] audit: type=1400 audit(1737205969.492:199): avc:  denied  { read write } for  pid=6133 comm="syz.0.34" name="video5" dev="devtmpfs" ino=962 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[   51.485717][   T39] audit: type=1400 audit(1737205969.492:200): avc:  denied  { open } for  pid=6133 comm="syz.0.34" path="/dev/video5" dev="devtmpfs" ino=962 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[   51.492732][   T39] audit: type=1400 audit(1737205969.492:201): avc:  denied  { ioctl } for  pid=6133 comm="syz.0.34" path="/dev/video5" dev="devtmpfs" ino=962 ioctlcmd=0x5617 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[   51.549409][   T39] audit: type=1400 audit(1737205969.582:202): avc:  denied  { create } for  pid=6140 comm="syz.0.38" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   51.557432][   T39] audit: type=1400 audit(1737205969.582:203): avc:  denied  { setopt } for  pid=6140 comm="syz.0.38" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   51.578474][ T6132] could not allocate digest TFM handle cryptd(blake2b-160)
[   51.628580][   T39] audit: type=1400 audit(1737205969.662:204): avc:  denied  { setopt } for  pid=6131 comm="syz.1.35" lport=4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   51.679499][ T6152] [U] VÔ3¸ÂFÙ¾"SÇÁ/ÉÊ4:ÃXTZ“W¡T‘’LWµ«=
[   51.700359][ T6151] [U] J"—E:ÀÆ"


[   51.808210][ T6159] syzkaller1: entered promiscuous mode
[   51.809894][ T6159] syzkaller1: entered allmulticast mode
[   52.000497][ T6164] FAULT_INJECTION: forcing a failure.
[   52.000497][ T6164] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   52.006374][ T6164] CPU: 3 UID: 0 PID: 6164 Comm: syz.0.45 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   52.009659][ T6164] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   52.012743][ T6164] Call Trace:
[   52.013731][ T6164]  <TASK>
[   52.014604][ T6164]  dump_stack_lvl+0x16c/0x1f0
[   52.016001][ T6164]  should_fail_ex+0x497/0x5b0
[   52.017420][ T6164]  _copy_from_user+0x2e/0xd0
[   52.018798][ T6164]  copy_msghdr_from_user+0x99/0x160
[   52.020281][ T6164]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   52.021960][ T6164]  ? __pfx___lock_acquire+0x10/0x10
[   52.023473][ T6164]  ___sys_recvmsg+0xdc/0x1a0
[   52.024907][ T6164]  ? __pfx____sys_recvmsg+0x10/0x10
[   52.026436][ T6164]  ? __pfx_lock_release+0x10/0x10
[   52.028078][ T6164]  ? trace_lock_acquire+0x14e/0x1f0
[   52.029623][ T6164]  do_recvmmsg+0x2f8/0x740
[   52.031002][ T6164]  ? __pfx_do_recvmmsg+0x10/0x10
[   52.032527][ T6164]  ? vfs_write+0x306/0x1150
[   52.033872][ T6164]  ? __mutex_unlock_slowpath+0x164/0x690
[   52.035734][ T6164]  ? __fget_files+0x206/0x3a0
[   52.037178][ T6164]  __x64_sys_recvmmsg+0x239/0x290
[   52.038709][ T6164]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[   52.040334][ T6164]  do_syscall_64+0xcd/0x250
[   52.041682][ T6164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.043415][ T6164] RIP: 0033:0x7fefb8d85d29
[   52.044727][ T6164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.050577][ T6164] RSP: 002b:00007fefb9b05038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   52.053055][ T6164] RAX: ffffffffffffffda RBX: 00007fefb8f75fa0 RCX: 00007fefb8d85d29
[   52.055421][ T6164] RDX: 0000000000000001 RSI: 00000000200007c0 RDI: 0000000000000003
[   52.057754][ T6164] RBP: 00007fefb9b05090 R08: 0000000000000000 R09: 0000000000000000
[   52.060064][ T6164] R10: 00000000600100a2 R11: 0000000000000246 R12: 0000000000000001
[   52.062319][ T6164] R13: 0000000000000000 R14: 00007fefb8f75fa0 R15: 00007ffd75b77348
[   52.064639][ T6164]  </TASK>
[   52.065664][    C3] vkms_vblank_simulate: vblank timer overrun
[   52.067608][ T5945] Bluetooth: hci1: command tx timeout
[   52.067657][ T5948] Bluetooth: hci0: command tx timeout
[   52.092667][ T5948] Bluetooth: hci2: command tx timeout
[   52.249047][ T6173] 9pnet: Unknown protocol version 9
[   52.263093][ T6173] fuse: Bad value for 'rootmode'
[   52.321884][ T5948] Bluetooth: hci3: command tx timeout
[   52.404007][   T25] usb 8-1: USB disconnect, device number 2
[   52.660979][ T6183] netlink: 12 bytes leftover after parsing attributes in process `syz.2.51'.
[   52.674782][ T6183] netlink: 8 bytes leftover after parsing attributes in process `syz.2.51'.
[   52.678158][ T6183] netlink: 24 bytes leftover after parsing attributes in process `syz.2.51'.
[   52.848999][ T6191] netlink: 12 bytes leftover after parsing attributes in process `syz.2.53'.
[   52.991546][ T6200] 9pnet: Unknown protocol version 9
[   53.001188][ T6200] fuse: Bad value for 'rootmode'
[   53.150880][ T6208] FAULT_INJECTION: forcing a failure.
[   53.150880][ T6208] name failslab, interval 1, probability 0, space 0, times 0
[   53.155274][ T6208] CPU: 3 UID: 0 PID: 6208 Comm: syz.3.60 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   53.158302][ T6208] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   53.161371][ T6208] Call Trace:
[   53.162388][ T6208]  <TASK>
[   53.163303][ T6208]  dump_stack_lvl+0x16c/0x1f0
[   53.164704][ T6208]  should_fail_ex+0x497/0x5b0
[   53.166105][ T6208]  ? fs_reclaim_acquire+0xae/0x150
[   53.167620][ T6208]  should_failslab+0xc2/0x120
[   53.169022][ T6208]  __kmalloc_cache_node_noprof+0x6e/0x420
[   53.170693][ T6208]  ? __alloc_workqueue+0x694/0x1810
[   53.172228][ T6208]  __alloc_workqueue+0x694/0x1810
[   53.173703][ T6208]  alloc_workqueue+0xd3/0x200
[   53.175095][ T6208]  ? __pfx_alloc_workqueue+0x10/0x10
[   53.175627][ T6206] usb usb1: usbfs: process 6206 (syz.1.59) did not claim interface 0 before use
[   53.176600][ T6208]  hci_register_dev+0x240/0xc60
[   53.180717][ T6208]  hci_uart_tty_ioctl+0x7d0/0xc10
[   53.182282][ T6208]  ? __pfx_hci_uart_tty_ioctl+0x10/0x10
[   53.184041][ T6208]  tty_ioctl+0x6ee/0x15d0
[   53.184423][ T6210] usb usb1: usbfs: process 6210 (syz.1.59) did not claim interface 0 before use
[   53.185321][ T6208]  ? __pfx_tty_ioctl+0x10/0x10
[   53.185333][ T6208]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   53.191190][ T6208]  ? __pfx_lock_release+0x10/0x10
[   53.192597][ T6208]  ? selinux_file_ioctl+0x180/0x270
[   53.194044][ T6208]  ? selinux_file_ioctl+0xb4/0x270
[   53.195521][ T6208]  ? __pfx_tty_ioctl+0x10/0x10
[   53.196859][ T6208]  __x64_sys_ioctl+0x190/0x200
[   53.198174][ T6208]  do_syscall_64+0xcd/0x250
[   53.199412][ T6208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.201085][ T6208] RIP: 0033:0x7f89e7985d29
[   53.202354][ T6208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.207729][ T6208] RSP: 002b:00007f89e87cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   53.210067][ T6208] RAX: ffffffffffffffda RBX: 00007f89e7b75fa0 RCX: 00007f89e7985d29
[   53.212280][ T6208] RDX: 0000020000000009 RSI: 00000000400455c8 RDI: 0000000000000004
[   53.214502][ T6208] RBP: 00007f89e87cc090 R08: 0000000000000000 R09: 0000000000000000
[   53.216700][ T6208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   53.218887][ T6208] R13: 0000000000000000 R14: 00007f89e7b75fa0 R15: 00007fff4cba16a8
[   53.221069][ T6208]  </TASK>
[   53.222046][    C3] vkms_vblank_simulate: vblank timer overrun
[   53.232617][ T6208] Bluetooth: Can't register HCI device
[   53.271229][ T6215] netlink: 4079 bytes leftover after parsing attributes in process `syz.3.62'.
[   53.536061][ T6234] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6234 comm=syz.1.70
[   53.573271][ T6238] FAULT_INJECTION: forcing a failure.
[   53.573271][ T6238] name failslab, interval 1, probability 0, space 0, times 0
[   53.573342][ T6238] CPU: 0 UID: 0 PID: 6238 Comm: syz.1.72 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   53.573363][ T6238] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   53.573375][ T6238] Call Trace:
[   53.573382][ T6238]  <TASK>
[   53.573390][ T6238]  dump_stack_lvl+0x16c/0x1f0
[   53.573421][ T6238]  should_fail_ex+0x497/0x5b0
[   53.573447][ T6238]  ? fs_reclaim_acquire+0xae/0x150
[   53.573469][ T6238]  should_failslab+0xc2/0x120
[   53.573493][ T6238]  __kmalloc_noprof+0xcb/0x510
[   53.573523][ T6238]  drm_atomic_state_init+0xe4/0x320
[   53.573545][ T6238]  ? __kasan_kmalloc+0xaa/0xb0
[   53.573567][ T6238]  drm_atomic_state_alloc+0xd3/0x120
[   53.573589][ T6238]  drm_client_modeset_commit_atomic+0xd1/0x7f0
[   53.573620][ T6238]  ? drm_client_modeset_commit_locked+0x4c/0x580
[   53.573651][ T6238]  ? rcu_is_watching+0x12/0xc0
[   53.573678][ T6238]  ? trace_contention_end+0xee/0x140
[   53.573702][ T6238]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[   53.573749][ T6238]  ? __mutex_lock+0x1cc/0xa60
[   53.573794][ T6238]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   53.573830][ T6238]  drm_client_modeset_commit_locked+0x14d/0x580
[   53.573863][ T6238]  drm_fb_helper_pan_display+0x2a5/0x990
[   53.573898][ T6238]  fb_pan_display+0x477/0x7d0
[   53.573917][ T6238]  ? __pfx_drm_fb_helper_pan_display+0x10/0x10
[   53.573945][ T6238]  bit_update_start+0x49/0x1f0
[   53.573970][ T6238]  fbcon_switch+0xc11/0x14f0
[   53.574000][ T6238]  ? __pfx_fbcon_switch+0x10/0x10
[   53.574036][ T6238]  ? __pfx_bit_cursor+0x10/0x10
[   53.574057][ T6238]  ? fbcon_cursor+0x409/0x5f0
[   53.574076][ T6238]  ? __pfx_lock_release+0x10/0x10
[   53.574111][ T6238]  csi_J+0x868/0xad0
[   53.574146][ T6238]  do_con_write+0x3b83/0x7bb0
[   53.574189][ T6238]  ? __pfx_do_con_write+0x10/0x10
[   53.574218][ T6238]  ? con_write+0x81/0xb0
[   53.574243][ T6238]  con_write+0x23/0xb0
[   53.574263][ T6238]  n_tty_write+0x419/0x1140
[   53.574302][ T6238]  ? __pfx_n_tty_write+0x10/0x10
[   53.574323][ T6238]  ? __virt_addr_valid+0x1a4/0x590
[   53.574349][ T6238]  ? __pfx_woken_wake_function+0x10/0x10
[   53.574397][ T6238]  ? __virt_addr_valid+0x5e/0x590
[   53.574423][ T6238]  ? __phys_addr_symbol+0x30/0x80
[   53.574447][ T6238]  ? __check_object_size+0x488/0x710
[   53.574471][ T6238]  ? __pfx_n_tty_write+0x10/0x10
[   53.574496][ T6238]  file_tty_write.constprop.0+0x506/0x9a0
[   53.574530][ T6238]  vfs_write+0x5ae/0x1150
[   53.574554][ T6238]  ? __pfx_tty_write+0x10/0x10
[   53.574576][ T6238]  ? __pfx_vfs_write+0x10/0x10
[   53.574598][ T6238]  ? __fget_files+0x40/0x3a0
[   53.574634][ T6238]  ksys_write+0x12b/0x250
[   53.574653][ T6238]  ? __pfx_ksys_write+0x10/0x10
[   53.574682][ T6238]  do_syscall_64+0xcd/0x250
[   53.574710][ T6238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.574736][ T6238] RIP: 0033:0x7f0cb4d85d29
[   53.574752][ T6238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.574769][ T6238] RSP: 002b:00007f0cb5bff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   53.574790][ T6238] RAX: ffffffffffffffda RBX: 00007f0cb4f75fa0 RCX: 00007f0cb4d85d29
[   53.574803][ T6238] RDX: 0000000000001006 RSI: 0000000020000080 RDI: 0000000000000004
[   53.574814][ T6238] RBP: 00007f0cb5bff090 R08: 0000000000000000 R09: 0000000000000000
[   53.574826][ T6238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.574837][ T6238] R13: 0000000000000000 R14: 00007f0cb4f75fa0 R15: 00007ffcd7232418
[   53.574865][ T6238]  </TASK>
[   53.793521][ T6246] netlink: 108 bytes leftover after parsing attributes in process `syz.1.75'.
[   53.796455][ T6246] netlink: 8 bytes leftover after parsing attributes in process `syz.1.75'.
[   53.936491][ T6250] vlan2: entered promiscuous mode
[   54.082622][ T5948] Bluetooth: hci1: command tx timeout
[   54.082649][ T5945] Bluetooth: hci0: command tx timeout
[   54.171549][ T5945] Bluetooth: hci2: command tx timeout
[   54.191038][ T6255] block device autoloading is deprecated and will be removed.
[   54.196704][ T6254] md: md2 stopped.
[   54.259404][ T6260] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   54.413964][ T6264] 9pnet: Unknown protocol version 9p200
[   54.424159][ T6264] fuse: Bad value for 'rootmode'
[   54.478620][ T6270] netlink: 'syz.0.85': attribute type 1 has an invalid length.
[   54.636420][ T6287] netlink: 'syz.0.91': attribute type 8 has an invalid length.
[   54.638639][ T6287] netlink: 8 bytes leftover after parsing attributes in process `syz.0.91'.
[   54.652073][ T6287] tmpfs: Invalid uid '0x00000000ffffffff'
[   54.652097][ T6281] kvm: kvm [6280]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x18a8
[   54.663124][ T6281] kvm: kvm [6280]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x71f9
[   54.716454][ T5948] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   54.719889][ T5948] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   54.724669][ T5948] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   54.728098][ T5948] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   54.730917][ T5948] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   54.733443][ T5948] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   54.797038][ T6290] chnl_net:caif_netlink_parms(): no params data found
[   54.857085][ T6290] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.859198][ T6290] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.861251][ T6290] bridge_slave_0: entered allmulticast mode
[   54.865106][ T6290] bridge_slave_0: entered promiscuous mode
[   54.867677][ T6290] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.869701][ T6290] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.871954][ T6290] bridge_slave_1: entered allmulticast mode
[   54.874501][ T6290] bridge_slave_1: entered promiscuous mode
[   54.886242][ T6307] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   54.895987][ T6290] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.899686][ T6290] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.928380][ T6290] team0: Port device team_slave_0 added
[   54.932593][ T6290] team0: Port device team_slave_1 added
[   54.951844][ T6290] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.953810][ T6290] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.960856][ T6290] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.969218][ T6290] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.972163][ T6290] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.980307][ T6290] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.003274][ T6305] FAULT_INJECTION: forcing a failure.
[   55.003274][ T6305] name failslab, interval 1, probability 0, space 0, times 0
[   55.006961][ T6305] CPU: 0 UID: 0 PID: 6305 Comm: syz.3.94 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   55.009299][ T6290] hsr_slave_0: entered promiscuous mode
[   55.009854][ T6305] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.015020][ T6305] Call Trace:
[   55.015966][ T6305]  <TASK>
[   55.016808][ T6305]  dump_stack_lvl+0x16c/0x1f0
[   55.018172][ T6305]  should_fail_ex+0x497/0x5b0
[   55.019505][ T6305]  ? fs_reclaim_acquire+0xae/0x150
[   55.020920][ T6305]  should_failslab+0xc2/0x120
[   55.022242][ T6305]  __kmalloc_noprof+0xcb/0x510
[   55.023598][ T6305]  ? __pfx___debug_object_init+0x10/0x10
[   55.025160][ T6305]  bio_kmalloc+0x41/0x70
[   55.026353][ T6305]  blk_rq_map_kern+0x3b8/0x740
[   55.027703][ T6305]  scsi_execute_cmd+0xc15/0xf40
[   55.029055][ T6305]  ? scsi_block_when_processing_errors+0x2c1/0x380
[   55.030805][ T6305]  ? __pfx_scsi_execute_cmd+0x10/0x10
[   55.032254][ T6305]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   55.033874][ T6305]  ? lock_acquire+0x2f/0xb0
[   55.035140][ T6305]  ? percpu_ref_put_many.constprop.0+0x2e/0x2a0
[   55.036879][ T6305]  sr_do_ioctl+0x21c/0x830
[   55.038176][ T6305]  ? __pfx_sr_do_ioctl+0x10/0x10
[   55.039559][ T6305]  ? hlock_class+0x4e/0x130
[   55.040810][ T6305]  sr_packet+0xee/0x1c0
[   55.042043][ T6305]  cdrom_get_media_event+0x10e/0x200
[   55.043543][ T6305]  ? __pfx_cdrom_get_media_event+0x10/0x10
[   55.045172][ T6305]  sr_drive_status+0x167/0x360
[   55.046493][ T6305]  ? __pfx_sr_drive_status+0x10/0x10
[   55.047931][ T6305]  ? lock_acquire.part.0+0x11b/0x380
[   55.049397][ T6305]  cdrom_open+0x2ea/0x26b0
[   55.050640][ T6305]  ? __pfx_sr_drive_status+0x10/0x10
[   55.052104][ T6305]  ? __mutex_trylock_common+0xea/0x250
[   55.053605][ T6305]  ? __pfx_cdrom_open+0x10/0x10
[   55.054985][ T6305]  ? sr_block_open+0x167/0x270
[   55.056308][ T6305]  ? trace_contention_end+0xee/0x140
[   55.057787][ T6305]  ? __mutex_lock+0x1cc/0xa60
[   55.059105][ T6305]  ? __pfx_lock_release+0x10/0x10
[   55.060447][ T6305]  ? sr_block_open+0x167/0x270
[   55.061728][ T6305]  ? __pfx___mutex_lock+0x10/0x10
[   55.063098][ T6305]  ? lockdep_hardirqs_on+0x7c/0x110
[   55.064523][ T6305]  ? __pfx_disk_check_media_change+0x10/0x10
[   55.066178][ T6305]  ? lockdep_hardirqs_on+0x7c/0x110
[   55.067612][ T6305]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   55.069200][ T6305]  sr_block_open+0x174/0x270
[   55.070493][ T6305]  ? __pfx_sr_block_open+0x10/0x10
[   55.072075][ T6305]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   55.073717][ T6305]  ? __pfx_sr_block_open+0x10/0x10
[   55.075097][ T6305]  blkdev_get_whole+0x96/0x290
[   55.076366][ T6305]  bdev_open+0x2c7/0xe20
[   55.077559][ T6305]  blkdev_open+0x329/0x400
[   55.078784][ T6305]  do_dentry_open+0xf59/0x1ea0
[   55.080129][ T6305]  ? __pfx_blkdev_open+0x10/0x10
[   55.081533][ T6305]  vfs_open+0x82/0x3f0
[   55.082693][ T6305]  ? may_open+0x1f2/0x400
[   55.083897][ T6305]  path_openat+0x1e6a/0x2d60
[   55.085214][ T6305]  ? __pfx_path_openat+0x10/0x10
[   55.086621][ T6305]  ? __pfx___lock_acquire+0x10/0x10
[   55.088096][ T6305]  ? lock_acquire.part.0+0x11b/0x380
[   55.089585][ T6305]  ? find_held_lock+0x2d/0x110
[   55.090978][ T6305]  do_filp_open+0x20c/0x470
[   55.092296][ T6305]  ? __pfx_do_filp_open+0x10/0x10
[   55.093802][ T6305]  ? find_held_lock+0x2d/0x110
[   55.095215][ T6305]  ? alloc_fd+0x41f/0x760
[   55.096460][ T6305]  do_sys_openat2+0x17a/0x1e0
[   55.097809][ T6305]  ? __pfx_do_sys_openat2+0x10/0x10
[   55.099324][ T6305]  ? __fget_files+0x206/0x3a0
[   55.100674][ T6305]  __x64_sys_openat+0x175/0x210
[   55.102089][ T6305]  ? __pfx___x64_sys_openat+0x10/0x10
[   55.103736][ T6305]  ? ksys_write+0x1ba/0x250
[   55.105059][ T6305]  do_syscall_64+0xcd/0x250
[   55.106388][ T6305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.108084][ T6305] RIP: 0033:0x7f89e7985d29
[   55.109370][ T6305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.114740][ T6305] RSP: 002b:00007f89e87ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   55.117068][ T6305] RAX: ffffffffffffffda RBX: 00007f89e7b76080 RCX: 00007f89e7985d29
[   55.119232][ T6305] RDX: 0000000000000000 RSI: 0000000020000140 RDI: ffffffffffffff9c
[   55.121404][ T6305] RBP: 00007f89e87ab090 R08: 0000000000000000 R09: 0000000000000000
[   55.123636][ T6305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.125848][ T6305] R13: 0000000000000000 R14: 00007f89e7b76080 R15: 00007fff4cba16a8
[   55.128079][ T6305]  </TASK>
[   55.129471][ T6290] hsr_slave_1: entered promiscuous mode
[   55.132040][ T6290] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   55.134171][ T6290] Cannot create hsr debugfs directory
[   55.161515][ T5814] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   55.195479][ T6290] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.203820][ T6309] 9pnet: Unknown protocol version 9p200
[   55.213448][ T6309] fuse: Bad value for 'rootmode'
[   55.270995][ T6290] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.321973][ T5814] usb 5-1: Using ep0 maxpacket: 16
[   55.328443][ T5814] usb 5-1: config 1 interface 0 altsetting 7 bulk endpoint 0x1 has invalid maxpacket 1024
[   55.331206][ T5814] usb 5-1: config 1 interface 0 altsetting 7 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[   55.335868][ T5814] usb 5-1: config 1 interface 0 has no altsetting 0
[   55.337957][ T6290] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.339944][ T5814] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   55.346962][ T5814] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   55.349209][ T5814] usb 5-1: Product: О
[   55.350355][ T5814] usb 5-1: Manufacturer: 
[   55.351805][ T5814] usb 5-1: SerialNumber: syz
[   55.369396][ T6307] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   55.370104][ T6316] x_tables: duplicate underflow at hook 2
[   55.408188][ T6290] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.473969][ T6323] netlink: 36 bytes leftover after parsing attributes in process `syz.3.102'.
[   55.477144][ T6323] netlink: 'syz.3.102': attribute type 1 has an invalid length.
[   55.479403][ T6323] netlink: 'syz.3.102': attribute type 3 has an invalid length.
[   55.481840][ T6323] netlink: 224 bytes leftover after parsing attributes in process `syz.3.102'.
[   55.535985][ T6329] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0
[   55.537588][ T6290] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   55.545826][ T6290] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   55.550137][ T6290] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   55.560562][ T6290] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   55.600305][ T6290] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.611280][ T6290] 8021q: adding VLAN 0 to HW filter on device team0
[   55.619250][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.621265][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.627666][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.630159][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.713327][ T6290] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.725996][ T6349] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   55.727634][ T6290] veth0_vlan: entered promiscuous mode
[   55.736304][ T6290] veth1_vlan: entered promiscuous mode
[   55.746385][ T6290] veth0_macvtap: entered promiscuous mode
[   55.749325][ T6290] veth1_macvtap: entered promiscuous mode
[   55.755495][ T6290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   55.758533][ T6290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   55.761624][ T6290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   55.764458][ T6290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   55.767136][ T6290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   55.770053][ T6290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   55.773846][ T6290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   55.776909][ T6290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   55.780277][ T6290] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.785765][ T6290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   55.788651][ T6290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   55.791280][ T6290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   55.794171][ T6290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   55.796173][ T5814] usb 5-1: USB disconnect, device number 2
[   55.796824][ T6290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   55.801459][ T6290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   55.804152][ T6290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   55.806996][ T6290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   55.810464][ T6290] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.815027][ T6290] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.817488][ T6290] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.819917][ T6290] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.822424][ T6290] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.852105][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.854434][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.866394][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.869528][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.203139][ T6359] hpfs: Bad magic ... probably not HPFS
[   56.241613][ T6361] netfs: Couldn't get user pages (rc=-14)
[   56.658919][ T6380] FAULT_INJECTION: forcing a failure.
[   56.658919][ T6380] name failslab, interval 1, probability 0, space 0, times 0
[   56.663810][ T6380] CPU: 3 UID: 0 PID: 6380 Comm: syz.2.114 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   56.667702][ T6380] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   56.671598][ T6380] Call Trace:
[   56.672827][ T6380]  <TASK>
[   56.673930][ T6380]  dump_stack_lvl+0x16c/0x1f0
[   56.675704][ T6380]  should_fail_ex+0x497/0x5b0
[   56.677446][ T6380]  should_failslab+0xc2/0x120
[   56.679155][ T6380]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   56.681120][ T6380]  ? skb_clone+0x190/0x3f0
[   56.682760][ T6380]  skb_clone+0x190/0x3f0
[   56.684298][ T6380]  netlink_deliver_tap+0xabd/0xd30
[   56.686209][ T6380]  netlink_dump+0x639/0xd00
[   56.687920][ T6380]  ? __pfx_netlink_dump+0x10/0x10
[   56.689681][ T6380]  ? cap_capable+0x1cf/0x240
[   56.691349][ T6380]  ? __inet_diag_dump_start+0x42c/0x7f0
[   56.693290][ T6380]  __netlink_dump_start+0x6ca/0x970
[   56.695192][ T6380]  inet_diag_handler_cmd+0x284/0x2e0
[   56.697131][ T6380]  ? __pfx_inet_diag_handler_cmd+0x10/0x10
[   56.699266][ T6380]  ? __pfx_lock_release+0x10/0x10
[   56.701136][ T6380]  ? __pfx_inet_diag_dump_start+0x10/0x10
[   56.703390][ T6380]  ? __pfx_inet_diag_dump+0x10/0x10
[   56.705338][ T6380]  ? __pfx_inet_diag_dump_done+0x10/0x10
[   56.707433][ T6380]  sock_diag_rcv_msg+0x437/0x790
[   56.709260][ T6380]  netlink_rcv_skb+0x16b/0x440
[   56.711020][ T6380]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[   56.713060][ T6380]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   56.715042][ T6380]  ? netlink_deliver_tap+0x1ae/0xd30
[   56.716974][ T6380]  netlink_unicast+0x53c/0x7f0
[   56.718751][ T6380]  ? __pfx_netlink_unicast+0x10/0x10
[   56.720681][ T6380]  netlink_sendmsg+0x8b8/0xd70
[   56.722466][ T6380]  ? __pfx_netlink_sendmsg+0x10/0x10
[   56.724392][ T6380]  ? avc_has_perm_noaudit+0x143/0x3a0
[   56.726411][ T6380]  sock_write_iter+0x4fe/0x5b0
[   56.728185][ T6380]  ? __pfx_sock_write_iter+0x10/0x10
[   56.730102][ T6380]  ? __pfx_file_has_perm+0x10/0x10
[   56.732003][ T6380]  do_iter_readv_writev+0x532/0x7f0
[   56.733896][ T6380]  ? __pfx_do_iter_readv_writev+0x10/0x10
[   56.736142][ T6380]  ? bpf_lsm_file_permission+0x9/0x10
[   56.738145][ T6380]  ? security_file_permission+0x71/0x210
[   56.740198][ T6380]  vfs_writev+0x363/0xdd0
[   56.741790][ T6380]  ? find_held_lock+0x2d/0x110
[   56.743559][ T6380]  ? __pfx_vfs_writev+0x10/0x10
[   56.745383][ T6380]  ? find_held_lock+0x2d/0x110
[   56.747149][ T6380]  ? __pfx_lock_release+0x10/0x10
[   56.748944][ T6380]  ? trace_lock_acquire+0x14e/0x1f0
[   56.750826][ T6380]  ? __fget_files+0x206/0x3a0
[   56.752521][ T6380]  ? do_writev+0x297/0x340
[   56.754130][ T6380]  do_writev+0x297/0x340
[   56.755654][ T6380]  ? __pfx_do_writev+0x10/0x10
[   56.757412][ T6380]  do_syscall_64+0xcd/0x250
[   56.759121][ T6380]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.761199][ T6380] RIP: 0033:0x7f487f185d29
[   56.762934][ T6380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.769905][ T6380] RSP: 002b:00007f487ffb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   56.772924][ T6380] RAX: ffffffffffffffda RBX: 00007f487f376080 RCX: 00007f487f185d29
[   56.775799][ T6380] RDX: 0000000000000001 RSI: 0000000020000040 RDI: 0000000000000004
[   56.778680][ T6380] RBP: 00007f487ffb1090 R08: 0000000000000000 R09: 0000000000000000
[   56.781490][ T6380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.784343][ T6380] R13: 0000000000000000 R14: 00007f487f376080 R15: 00007fff4ad1afc8
[   56.787269][ T6380]  </TASK>
[   56.788610][    C3] vkms_vblank_simulate: vblank timer overrun
[   57.011777][   T39] kauditd_printk_skb: 96 callbacks suppressed
[   57.011792][   T39] audit: type=1400 audit(1737205975.052:301): avc:  denied  { create } for  pid=6385 comm="syz.3.117" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   57.018745][ T6386] Bluetooth: MGMT ver 1.23
[   57.019666][   T39] audit: type=1400 audit(1737205975.052:302): avc:  denied  { connect } for  pid=6385 comm="syz.3.117" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   57.027251][   T39] audit: type=1400 audit(1737205975.052:303): avc:  denied  { name_connect } for  pid=6385 comm="syz.3.117" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[   57.034114][   T39] audit: type=1400 audit(1737205975.052:304): avc:  denied  { setopt } for  pid=6385 comm="syz.3.117" lport=50629 faddr=2001:: scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   57.040805][   T39] audit: type=1400 audit(1737205975.052:305): avc:  denied  { bind } for  pid=6385 comm="syz.3.117" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   57.046645][   T39] audit: type=1400 audit(1737205975.052:306): avc:  denied  { bind } for  pid=6385 comm="syz.3.117" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   57.054245][   T39] audit: type=1400 audit(1737205975.052:307): avc:  denied  { write } for  pid=6385 comm="syz.3.117" path="socket:[12164]" dev="sockfs" ino=12164 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   57.061784][   T39] audit: type=1400 audit(1737205975.062:308): avc:  denied  { write } for  pid=6385 comm="syz.3.117" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   57.398552][   T39] audit: type=1400 audit(1737205975.432:309): avc:  denied  { compute_member } for  pid=6392 comm="syz.0.120" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   57.421828][ T6393] gre1: entered allmulticast mode
[   57.510429][   T39] audit: type=1400 audit(1737205975.542:310): avc:  denied  { setattr } for  pid=6398 comm="syz.0.122" name="/" dev="9p" ino=37618193 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   58.114516][ T6420] FAULT_INJECTION: forcing a failure.
[   58.114516][ T6420] name failslab, interval 1, probability 0, space 0, times 0
[   58.114545][ T6420] CPU: 0 UID: 0 PID: 6420 Comm: syz.3.128 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   58.114578][ T6420] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.114591][ T6420] Call Trace:
[   58.114598][ T6420]  <TASK>
[   58.114606][ T6420]  dump_stack_lvl+0x16c/0x1f0
[   58.114635][ T6420]  should_fail_ex+0x497/0x5b0
[   58.114661][ T6420]  ? fs_reclaim_acquire+0xae/0x150
[   58.114682][ T6420]  should_failslab+0xc2/0x120
[   58.114704][ T6420]  __kmalloc_noprof+0xcb/0x510
[   58.114733][ T6420]  drm_atomic_state_init+0x17e/0x320
[   58.114754][ T6420]  ? __kasan_kmalloc+0xaa/0xb0
[   58.114777][ T6420]  drm_atomic_state_alloc+0xd3/0x120
[   58.114798][ T6420]  drm_client_modeset_commit_atomic+0xd1/0x7f0
[   58.114828][ T6420]  ? drm_client_modeset_commit_locked+0x4c/0x580
[   58.114857][ T6420]  ? rcu_is_watching+0x12/0xc0
[   58.114882][ T6420]  ? trace_contention_end+0xee/0x140
[   58.114905][ T6420]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[   58.114931][ T6420]  ? __mutex_lock+0x1cc/0xa60
[   58.114972][ T6420]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   58.115007][ T6420]  drm_client_modeset_commit_locked+0x14d/0x580
[   58.115044][ T6420]  drm_fb_helper_pan_display+0x2a5/0x990
[   58.115081][ T6420]  fb_pan_display+0x477/0x7d0
[   58.115100][ T6420]  ? __pfx_drm_fb_helper_pan_display+0x10/0x10
[   58.115127][ T6420]  bit_update_start+0x49/0x1f0
[   58.115151][ T6420]  fbcon_switch+0xc11/0x14f0
[   58.115182][ T6420]  ? __pfx_fbcon_switch+0x10/0x10
[   58.115219][ T6420]  ? __pfx_bit_cursor+0x10/0x10
[   58.115239][ T6420]  ? fbcon_cursor+0x409/0x5f0
[   58.115259][ T6420]  ? __pfx_lock_release+0x10/0x10
[   58.115286][ T6420]  csi_J+0x868/0xad0
[   58.115319][ T6420]  do_con_write+0x3b83/0x7bb0
[   58.115361][ T6420]  ? __pfx_do_con_write+0x10/0x10
[   58.115389][ T6420]  ? con_write+0x81/0xb0
[   58.115413][ T6420]  con_write+0x23/0xb0
[   58.115434][ T6420]  n_tty_write+0x419/0x1140
[   58.115471][ T6420]  ? __pfx_n_tty_write+0x10/0x10
[   58.115491][ T6420]  ? __virt_addr_valid+0x1a4/0x590
[   58.115518][ T6420]  ? __pfx_woken_wake_function+0x10/0x10
[   58.115545][ T6420]  ? __virt_addr_valid+0x5e/0x590
[   58.115569][ T6420]  ? __phys_addr_symbol+0x30/0x80
[   58.115591][ T6420]  ? __check_object_size+0x488/0x710
[   58.115615][ T6420]  ? __pfx_n_tty_write+0x10/0x10
[   58.115638][ T6420]  file_tty_write.constprop.0+0x506/0x9a0
[   58.115666][ T6420]  vfs_write+0x5ae/0x1150
[   58.115687][ T6420]  ? __pfx_tty_write+0x10/0x10
[   58.115709][ T6420]  ? __pfx_vfs_write+0x10/0x10
[   58.115730][ T6420]  ? __fget_files+0x40/0x3a0
[   58.115767][ T6420]  ksys_write+0x12b/0x250
[   58.115787][ T6420]  ? __pfx_ksys_write+0x10/0x10
[   58.115816][ T6420]  do_syscall_64+0xcd/0x250
[   58.115843][ T6420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.115868][ T6420] RIP: 0033:0x7f89e7985d29
[   58.115884][ T6420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.115899][ T6420] RSP: 002b:00007f89e87cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   58.115919][ T6420] RAX: ffffffffffffffda RBX: 00007f89e7b75fa0 RCX: 00007f89e7985d29
[   58.115932][ T6420] RDX: 0000000000001006 RSI: 0000000020000080 RDI: 0000000000000004
[   58.115943][ T6420] RBP: 00007f89e87cc090 R08: 0000000000000000 R09: 0000000000000000
[   58.115955][ T6420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.115967][ T6420] R13: 0000000000000000 R14: 00007f89e7b75fa0 R15: 00007fff4cba16a8
[   58.115995][ T6420]  </TASK>
[   58.474791][ T6426] 9pnet: Unknown protocol version 9p2000.
[   58.494160][ T6427] netlink: 64 bytes leftover after parsing attributes in process `syz.2.130'.
[   58.498813][ T6427] syz_tun: entered allmulticast mode
[   58.502249][ T6425] syz_tun: left allmulticast mode
[   58.512281][ T6426] fuse: Bad value for 'rootmode'
[   58.595223][ T6432] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   58.770579][ T1140] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.863881][ T5945] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   58.868796][ T5945] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   58.871351][ T5945] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   58.874866][ T5945] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   58.877625][ T5945] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   58.880057][ T5945] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   58.976528][ T6444] chnl_net:caif_netlink_parms(): no params data found
[   59.094502][ T6444] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.096064][ T6458] trusted_key: syz.0.139 sent an empty control message without MSG_MORE.
[   59.096759][ T6444] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.103711][ T6444] bridge_slave_0: entered allmulticast mode
[   59.106031][ T6444] bridge_slave_0: entered promiscuous mode
[   59.108763][ T6444] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.110899][ T6444] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.114046][ T6444] bridge_slave_1: entered allmulticast mode
[   59.116184][ T6444] bridge_slave_1: entered promiscuous mode
[   59.140844][ T6444] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   59.146207][ T6444] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.151095][ T6468] netlink: 16 bytes leftover after parsing attributes in process `syz.0.139'.
[   59.174519][ T6444] team0: Port device team_slave_0 added
[   59.177541][ T6444] team0: Port device team_slave_1 added
[   59.199739][ T6444] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.202187][ T6444] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.210233][ T6444] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.215802][ T6444] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.218605][ T6444] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.228781][ T6444] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.263637][ T6444] hsr_slave_0: entered promiscuous mode
[   59.265724][ T6444] hsr_slave_1: entered promiscuous mode
[   59.267704][ T6444] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   59.269868][ T6444] Cannot create hsr debugfs directory
[   59.362945][ T6471] FAULT_INJECTION: forcing a failure.
[   59.362945][ T6471] name failslab, interval 1, probability 0, space 0, times 0
[   59.367026][ T6471] CPU: 1 UID: 0 PID: 6471 Comm: syz.3.143 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   59.370164][ T6471] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   59.373397][ T6471] Call Trace:
[   59.374382][ T6471]  <TASK>
[   59.375241][ T6471]  dump_stack_lvl+0x16c/0x1f0
[   59.376589][ T6471]  should_fail_ex+0x497/0x5b0
[   59.378076][ T6471]  ? fs_reclaim_acquire+0xae/0x150
[   59.379646][ T6471]  should_failslab+0xc2/0x120
[   59.381081][ T6471]  __kmalloc_noprof+0xcb/0x510
[   59.382527][ T6471]  ? __pfx___debug_object_init+0x10/0x10
[   59.384506][ T6471]  bio_kmalloc+0x41/0x70
[   59.385769][ T6471]  blk_rq_map_kern+0x3b8/0x740
[   59.387146][ T6471]  scsi_execute_cmd+0xc15/0xf40
[   59.388551][ T6471]  ? scsi_block_when_processing_errors+0x2c1/0x380
[   59.390442][ T6471]  ? __pfx_scsi_execute_cmd+0x10/0x10
[   59.392043][ T6471]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   59.393792][ T6471]  ? lock_acquire+0x2f/0xb0
[   59.395128][ T6471]  ? percpu_ref_put_many.constprop.0+0x2e/0x2a0
[   59.396974][ T6471]  sr_do_ioctl+0x21c/0x830
[   59.398250][ T6471]  ? __pfx_sr_do_ioctl+0x10/0x10
[   59.399666][ T6471]  ? hlock_class+0x4e/0x130
[   59.401022][ T6471]  sr_packet+0xee/0x1c0
[   59.402232][ T6471]  cdrom_get_media_event+0x10e/0x200
[   59.404135][ T6471]  ? __pfx_cdrom_get_media_event+0x10/0x10
[   59.406429][ T6471]  sr_drive_status+0x167/0x360
[   59.407860][ T6471]  ? __pfx_sr_drive_status+0x10/0x10
[   59.409413][ T6471]  ? lock_acquire.part.0+0x11b/0x380
[   59.411008][ T6471]  cdrom_open+0x2ea/0x26b0
[   59.412324][ T6471]  ? __pfx_sr_drive_status+0x10/0x10
[   59.413866][ T6471]  ? __mutex_trylock_common+0xea/0x250
[   59.415465][ T6471]  ? __pfx_cdrom_open+0x10/0x10
[   59.417020][ T6471]  ? sr_block_open+0x167/0x270
[   59.418421][ T6471]  ? trace_contention_end+0xee/0x140
[   59.419976][ T6471]  ? __mutex_lock+0x1cc/0xa60
[   59.421362][ T6471]  ? __pfx_lock_release+0x10/0x10
[   59.422920][ T6471]  ? sr_block_open+0x167/0x270
[   59.424846][ T6471]  ? __pfx___mutex_lock+0x10/0x10
[   59.426790][ T6471]  ? lockdep_hardirqs_on+0x7c/0x110
[   59.428817][ T6471]  ? __pfx_disk_check_media_change+0x10/0x10
[   59.431277][ T6471]  ? lockdep_hardirqs_on+0x7c/0x110
[   59.433494][ T6471]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   59.435708][ T6471]  sr_block_open+0x174/0x270
[   59.437449][ T6471]  ? __pfx_sr_block_open+0x10/0x10
[   59.439421][ T6471]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   59.441652][ T6471]  ? __pfx_sr_block_open+0x10/0x10
[   59.443715][ T6471]  blkdev_get_whole+0x96/0x290
[   59.445629][ T6471]  bdev_open+0x2c7/0xe20
[   59.447372][ T6471]  blkdev_open+0x329/0x400
[   59.449167][ T6471]  do_dentry_open+0xf59/0x1ea0
[   59.451099][ T6471]  ? __pfx_blkdev_open+0x10/0x10
[   59.453006][ T6471]  vfs_open+0x82/0x3f0
[   59.454630][ T6471]  ? may_open+0x1f2/0x400
[   59.456390][ T6471]  path_openat+0x1e6a/0x2d60
[   59.458277][ T6471]  ? __pfx_path_openat+0x10/0x10
[   59.460239][ T6471]  ? __pfx___lock_acquire+0x10/0x10
[   59.462298][ T6471]  ? lock_acquire.part.0+0x11b/0x380
[   59.464409][ T6471]  ? find_held_lock+0x2d/0x110
[   59.466358][ T6471]  do_filp_open+0x20c/0x470
[   59.468216][ T6471]  ? __pfx_do_filp_open+0x10/0x10
[   59.470252][ T6471]  ? find_held_lock+0x2d/0x110
[   59.472192][ T6471]  ? alloc_fd+0x41f/0x760
[   59.473931][ T6471]  do_sys_openat2+0x17a/0x1e0
[   59.475902][ T6471]  ? __pfx_do_sys_openat2+0x10/0x10
[   59.478047][ T6471]  ? __fget_files+0x206/0x3a0
[   59.479924][ T6471]  __x64_sys_openat+0x175/0x210
[   59.481963][ T6471]  ? __pfx___x64_sys_openat+0x10/0x10
[   59.483951][ T6471]  ? ksys_write+0x1ba/0x250
[   59.485456][ T6471]  do_syscall_64+0xcd/0x250
[   59.486757][ T6471]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.488441][ T6471] RIP: 0033:0x7f89e7985d29
[   59.489688][ T6471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.496522][ T6471] RSP: 002b:00007f89e87ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   59.499842][ T6471] RAX: ffffffffffffffda RBX: 00007f89e7b76080 RCX: 00007f89e7985d29
[   59.502939][ T6471] RDX: 0000000000000000 RSI: 0000000020000140 RDI: ffffffffffffff9c
[   59.506073][ T6471] RBP: 00007f89e87ab090 R08: 0000000000000000 R09: 0000000000000000
[   59.509206][ T6471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   59.512335][ T6471] R13: 0000000000000000 R14: 00007f89e7b76080 R15: 00007fff4cba16a8
[   59.515523][ T6471]  </TASK>
[   59.745943][ T6479] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   59.750079][ T6475] netlink: 12 bytes leftover after parsing attributes in process `syz.3.145'.
[   59.752902][ T6479] FAULT_INJECTION: forcing a failure.
[   59.752902][ T6479] name failslab, interval 1, probability 0, space 0, times 0
[   59.758102][ T6479] CPU: 0 UID: 0 PID: 6479 Comm: syz.2.147 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   59.762143][ T6479] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   59.765183][ T6479] Call Trace:
[   59.766130][ T6479]  <TASK>
[   59.767242][ T6479]  dump_stack_lvl+0x16c/0x1f0
[   59.768602][ T6479]  should_fail_ex+0x497/0x5b0
[   59.769933][ T6479]  ? fs_reclaim_acquire+0xae/0x150
[   59.771422][ T6479]  should_failslab+0xc2/0x120
[   59.772728][ T6479]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   59.774267][ T6479]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   59.776009][ T6479]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   59.778335][ T6479]  mmu_topup_memory_caches+0x22/0xd0
[   59.780501][ T6479]  kvm_mmu_load+0xda/0x21f0
[   59.781828][ T6479]  ? kvm_apic_has_interrupt+0xb6/0x190
[   59.783380][ T6479]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   59.785041][ T6479]  ? vmx_get_rflags+0x100/0x420
[   59.786521][ T6479]  ? kvm_apic_accept_pic_intr+0xe8/0x1a0
[   59.788163][ T6479]  ? __pfx_kvm_mmu_load+0x10/0x10
[   59.789600][ T6479]  ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[   59.791265][ T6479]  ? kvm_check_and_inject_events+0x725/0x12e0
[   59.792956][ T6479]  ? kvm_setup_guest_pvclock+0x721/0x730
[   59.794550][ T6479]  vcpu_run+0x33a4/0x4f50
[   59.795779][ T6479]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[   59.797546][ T6479]  ? __pfx_vcpu_run+0x10/0x10
[   59.799024][ T6479]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   59.800696][ T6479]  ? rcu_is_watching+0x12/0xc0
[   59.802094][ T6479]  ? trace_lock_acquire+0x14e/0x1f0
[   59.803620][ T6479]  ? __local_bh_enable_ip+0xa4/0x120
[   59.805216][ T6479]  ? lockdep_hardirqs_on+0x7c/0x110
[   59.806791][ T6479]  ? kvm_arch_vcpu_ioctl_run+0x150/0x1740
[   59.808512][ T6479]  ? kvm_arch_vcpu_ioctl_run+0x44a/0x1740
[   59.810152][ T6479]  kvm_arch_vcpu_ioctl_run+0x44a/0x1740
[   59.811860][ T6479]  kvm_vcpu_ioctl+0x6ce/0x1520
[   59.813793][ T6479]  ? do_vfs_ioctl+0x513/0x1990
[   59.815748][ T6479]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   59.817714][ T6479]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   59.819632][ T6479]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   59.821627][ T6479]  ? __pfx_lock_release+0x10/0x10
[   59.823114][ T6479]  ? selinux_file_ioctl+0x180/0x270
[   59.824654][ T6479]  ? selinux_file_ioctl+0xb4/0x270
[   59.826161][ T6479]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   59.827737][ T6479]  __x64_sys_ioctl+0x190/0x200
[   59.829143][ T6479]  do_syscall_64+0xcd/0x250
[   59.830504][ T6479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.832232][ T6479] RIP: 0033:0x7f487f185d29
[   59.833549][ T6479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.839391][ T6479] RSP: 002b:00007f487ffd2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   59.841799][ T6479] RAX: ffffffffffffffda RBX: 00007f487f375fa0 RCX: 00007f487f185d29
[   59.844186][ T6479] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[   59.846573][ T6479] RBP: 00007f487ffd2090 R08: 0000000000000000 R09: 0000000000000000
[   59.848886][ T6479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   59.851110][ T6479] R13: 0000000000000000 R14: 00007f487f375fa0 R15: 00007fff4ad1afc8
[   59.853348][ T6479]  </TASK>
[   59.999599][ T6495] FAULT_INJECTION: forcing a failure.
[   59.999599][ T6495] name failslab, interval 1, probability 0, space 0, times 0
[   60.004994][ T6495] CPU: 3 UID: 0 PID: 6495 Comm: syz.2.152 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   60.009002][ T6495] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   60.012897][ T6495] Call Trace:
[   60.014146][ T6495]  <TASK>
[   60.015305][ T6495]  dump_stack_lvl+0x16c/0x1f0
[   60.017158][ T6495]  should_fail_ex+0x497/0x5b0
[   60.019181][ T6495]  ? fs_reclaim_acquire+0xae/0x150
[   60.021079][ T6495]  should_failslab+0xc2/0x120
[   60.022782][ T6495]  __kmalloc_cache_noprof+0x68/0x410
[   60.024278][ T6495]  ? __pfx___folio_start_writeback+0x10/0x10
[   60.025941][ T6495]  ? do_raw_spin_lock+0x12d/0x2c0
[   60.027335][ T6495]  netfs_buffer_make_space+0x432/0x6b0
[   60.028884][ T6495]  netfs_buffer_append_folio+0x298/0x360
[   60.030472][ T6495]  netfs_write_folio+0x540/0x1930
[   60.031868][ T6495]  netfs_writepages+0x29a/0x8f0
[   60.033233][ T6495]  ? __pfx_netfs_writepages+0x10/0x10
[   60.034733][ T6495]  ? kasan_save_track+0x14/0x30
[   60.036066][ T6495]  ? __pfx___lock_acquire+0x10/0x10
[   60.037486][ T6495]  ? security_path_chown+0x12a/0x2e0
[   60.038919][ T6495]  ? chown_common+0x3bc/0x670
[   60.040191][ T6495]  ? do_fchownat+0x1ac/0x200
[   60.041452][ T6495]  ? __x64_sys_chown+0x7b/0xc0
[   60.042764][ T6495]  ? __pfx_netfs_writepages+0x10/0x10
[   60.044230][ T6495]  do_writepages+0x1b3/0x820
[   60.045493][ T6495]  ? __pfx_do_writepages+0x10/0x10
[   60.046873][ T6495]  ? wbc_attach_fdatawrite_inode+0x13a/0x190
[   60.048517][ T6495]  ? __pfx_lock_release+0x10/0x10
[   60.049872][ T6495]  ? do_raw_spin_lock+0x12d/0x2c0
[   60.051291][ T6495]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   60.052789][ T6495]  ? lock_acquire+0x2f/0xb0
[   60.054012][ T6495]  ? wbc_attach_fdatawrite_inode+0x24/0x190
[   60.055672][ T6495]  ? do_raw_spin_unlock+0x172/0x230
[   60.057140][ T6495]  filemap_fdatawrite_wbc+0x104/0x160
[   60.058634][ T6495]  __filemap_fdatawrite_range+0xb3/0xf0
[   60.060221][ T6495]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[   60.061918][ T6495]  ? v9fs_fid_lookup+0xe9/0xec0
[   60.063661][ T6495]  v9fs_vfs_setattr+0x93a/0xab0
[   60.065781][ T6495]  ? __pfx_v9fs_vfs_setattr+0x10/0x10
[   60.065811][ T6495]  ? selinux_inode_setattr+0x246/0x400
[   60.065830][ T6495]  ? evm_inode_setattr+0x65/0x680
[   60.065843][ T6495]  ? __pfx_from_vfsgid+0x10/0x10
[   60.065859][ T6495]  ? __pfx_v9fs_vfs_setattr+0x10/0x10
[   60.065873][ T6495]  notify_change+0x6a6/0x1230
[   60.065892][ T6495]  chown_common+0x538/0x670
[   60.065907][ T6495]  ? __pfx_chown_common+0x10/0x10
[   60.065919][ T6495]  ? trace_lock_acquire+0x14e/0x1f0
[   60.065934][ T6495]  ? mnt_get_write_access+0x6a/0x300
[   60.065951][ T6495]  ? mnt_get_write_access+0x20c/0x300
[   60.065966][ T6495]  do_fchownat+0x1ac/0x200
[   60.065979][ T6495]  ? __pfx_do_fchownat+0x10/0x10
[   60.065990][ T6495]  ? ksys_write+0x1ba/0x250
[   60.066008][ T6495]  ? __pfx_ksys_write+0x10/0x10
[   60.066021][ T6495]  __x64_sys_chown+0x7b/0xc0
[   60.066033][ T6495]  ? lockdep_hardirqs_on+0x7c/0x110
[   60.066047][ T6495]  do_syscall_64+0xcd/0x250
[   60.066061][ T6495]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.066076][ T6495] RIP: 0033:0x7f487f185d29
[   60.066085][ T6495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.066094][ T6495] RSP: 002b:00007f487ffd2038 EFLAGS: 00000246 ORIG_RAX: 000000000000005c
[   60.066105][ T6495] RAX: ffffffffffffffda RBX: 00007f487f375fa0 RCX: 00007f487f185d29
[   60.066112][ T6495] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080
[   60.066119][ T6495] RBP: 00007f487ffd2090 R08: 0000000000000000 R09: 0000000000000000
[   60.066125][ T6495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.066131][ T6495] R13: 0000000000000000 R14: 00007f487f375fa0 R15: 00007fff4ad1afc8
[   60.066144][ T6495]  </TASK>
[   60.066225][    C3] vkms_vblank_simulate: vblank timer overrun
[   60.067785][   T62] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN NOPTI
[   60.067797][   T62] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f]
[   60.067805][   T62] CPU: 1 UID: 0 PID: 62 Comm: kworker/u32:3 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   60.067815][   T62] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   60.067821][   T62] Workqueue: events_unbound netfs_write_collection_worker
[   60.067835][   T62] RIP: 0010:netfs_write_collection_worker+0x1cd1/0x4810
[   60.067846][   T62] Code: 39 f3 0f 83 37 04 00 00 e8 ac 46 53 ff 44 8b 6c 24 08 41 83 fd 1e 0f 87 96 23 00 00 4a 8d 44 ed 08 48 89 44 24 30 48 c1 e8 03 <42> 80 3c 38 00 0f 85 01 24 00 00 4a 8b 5c ed 08 48 89 df e8 c7 d4
[   60.067854][   T62] RSP: 0018:ffffc90000aefae0 EFLAGS: 00010202
[   60.067862][   T62] RAX: 0000000000000001 RBX: 0000000000000005 RCX: ffffffff8246db4a
[   60.067867][   T62] RDX: ffff88802032a440 RSI: ffffffff8246ddf4 RDI: 0000000000000005
[   60.067873][   T62] RBP: 0000000000000000 R08: 0000000000000005 R09: ffff88804d2d5080
[   60.067879][   T62] R10: 0000000000000000 R11: 0000000000000002 R12: ffff88804d2d4f80
[   60.067884][   T62] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000
[   60.067890][   T62] FS:  0000000000000000(0000) GS:ffff88806a700000(0000) knlGS:0000000000000000
[   60.067911][   T62] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   60.067919][   T62] CR2: 00007f89e87cbf98 CR3: 000000004a51a000 CR4: 0000000000352ef0
[   60.067925][   T62] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   60.067930][   T62] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   60.067936][   T62] Call Trace:
[   60.067939][   T62]  <TASK>
[   60.067943][   T62]  ? die_addr+0x3b/0xa0
[   60.067954][   T62]  ? exc_general_protection+0x155/0x230
[   60.067966][   T62]  ? asm_exc_general_protection+0x26/0x30
[   60.067981][   T62]  ? netfs_write_collection_worker+0x1a0a/0x4810
[   60.067990][   T62]  ? netfs_write_collection_worker+0x1cb4/0x4810
[   60.068000][   T62]  ? netfs_write_collection_worker+0x1cd1/0x4810
[   60.068014][   T62]  ? __pfx_netfs_write_collection_worker+0x10/0x10
[   60.068023][   T62]  ? rcu_is_watching+0x12/0xc0
[   60.068036][   T62]  ? trace_lock_acquire+0x14e/0x1f0
[   60.068050][   T62]  ? process_one_work+0x921/0x1ba0
[   60.068060][   T62]  ? lock_acquire+0x2f/0xb0
[   60.068070][   T62]  ? process_one_work+0x921/0x1ba0
[   60.068080][   T62]  process_one_work+0x9c5/0x1ba0
[   60.068091][   T62]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   60.068102][   T62]  ? __pfx_process_one_work+0x10/0x10
[   60.068111][   T62]  ? rcu_is_watching+0x12/0xc0
[   60.068125][   T62]  ? assign_work+0x1a0/0x250
[   60.068134][   T62]  worker_thread+0x6c8/0xf00
[   60.068145][   T62]  ? __kthread_parkme+0x148/0x220
[   60.068158][   T62]  ? __pfx_worker_thread+0x10/0x10
[   60.068177][   T62]  kthread+0x2c1/0x3a0
[   60.068194][   T62]  ? _raw_spin_unlock_irq+0x23/0x50
[   60.068211][   T62]  ? __pfx_kthread+0x10/0x10
[   60.068240][   T62]  ret_from_fork+0x45/0x80
[   60.068257][   T62]  ? __pfx_kthread+0x10/0x10
[   60.068278][   T62]  ret_from_fork_asm+0x1a/0x30
[   60.068307][   T62]  </TASK>
[   60.068313][   T62] Modules linked in:
[   60.068325][   T62] ---[ end trace 0000000000000000 ]---
[   60.068333][   T62] RIP: 0010:netfs_write_collection_worker+0x1cd1/0x4810
[   60.068356][   T62] Code: 39 f3 0f 83 37 04 00 00 e8 ac 46 53 ff 44 8b 6c 24 08 41 83 fd 1e 0f 87 96 23 00 00 4a 8d 44 ed 08 48 89 44 24 30 48 c1 e8 03 <42> 80 3c 38 00 0f 85 01 24 00 00 4a 8b 5c ed 08 48 89 df e8 c7 d4
[   60.068371][   T62] RSP: 0018:ffffc90000aefae0 EFLAGS: 00010202
[   60.068389][   T62] RAX: 0000000000000001 RBX: 0000000000000005 RCX: ffffffff8246db4a
[   60.068400][   T62] RDX: ffff88802032a440 RSI: ffffffff8246ddf4 RDI: 0000000000000005
[   60.068411][   T62] RBP: 0000000000000000 R08: 0000000000000005 R09: ffff88804d2d5080
[   60.068421][   T62] R10: 0000000000000000 R11: 0000000000000002 R12: ffff88804d2d4f80
[   60.068435][   T62] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000
[   60.068446][   T62] FS:  0000000000000000(0000) GS:ffff88806a700000(0000) knlGS:0000000000000000
[   60.068462][   T62] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   60.068473][   T62] CR2: 00007f89e87cbf98 CR3: 000000004a51a000 CR4: 0000000000352ef0
[   60.068484][   T62] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   60.068493][   T62] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   60.068504][   T62] Kernel panic - not syncing: Fatal exception
[   60.069144][   T62] Kernel Offset: disabled

VM DIAGNOSIS:
13:12:58  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff813f0950 RDX=ffffffff8de977c0
RSI=ffffffff813f0998 RDI=ffffffff937a7e20 RBP=0000000000000000 RSP=ffffc90000007fd0
R8 =0000000000000001 R9 =fffffbfff26f4fc4 R10=ffffffff937a7e27 R11=ffffc90000007ff8
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff813f0999 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f89e7969ae0 CR3=0000000044a52000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000020100001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f89e87cbbf0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f89e7a02a9a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f89e7a02aa7
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f89e7a02aa1
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f89e7a02ab5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f89e7a02b3b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f89e7a02c19
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a732520656c6261 7462650064656c69 61662029736e7465 6e28736e74657300
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1f56000540494744 514740004140494c 4443050c564b5140 4b0d564b51405600
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000006e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff851c1355 RDI=ffffffff9ab11b20 RBP=ffffffff9ab11ae0 RSP=ffffc90000aef568
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b
R12=0000000000000000 R13=000000000000006e R14=ffffffff851c12f0 R15=0000000000000000
RIP=ffffffff851c137f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f89e87cbf98 CR3=000000004a51a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff4cba1a40 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f89e7a02a9a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f89e7a02aa7
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f89e7a02aa1
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f89e7a02ab5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f89e7a02b3b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f89e7a02c19
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff813f0950 RDX=ffff88802aa74880
RSI=ffffffff813f0998 RDI=ffffffff937a7e20 RBP=0000000000000002 RSP=ffffc90000658fd0
R8 =0000000000000001 R9 =fffffbfff26f4fc4 R10=ffffffff937a7e27 R11=ffffc90000658ff8
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff813f0999 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f8733d08500 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f89e86a56c0 CR3=0000000022892000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc36b80ec0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c5f5f0045544156 4952505f4342494c
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000042494c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6362696c5f5f0045 5441564952505f43
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f6e3a6d5e007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4b1f485e005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3120203320206620 2066202030202031 20206120203e2034 3c20353020333020
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff813f0950 RDX=ffff88801fdba440
RSI=ffffffff813f0998 RDI=ffffffff937a7e20 RBP=0000000000000003 RSP=ffffc90000708fd0
R8 =0000000000000001 R9 =fffffbfff26f4fc4 R10=ffffffff937a7e27 R11=ffffc90000708ff8
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff813f0999 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f89e86a56c0 CR3=000000000df7e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f487f202a9a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f487f202aa7
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f487f202aa1
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f487f202ab5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f487f202b3b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f487f202c19
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000700080006
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000