last executing test programs:

7.118857586s ago: executing program 3 (id=1701):
set_mempolicy(0x3, &(0x7f0000000440)=0x1, 0x1ff)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)={0x10103, 0x4, 0x10}, 0x18)
linkat(0xffffffffffffffff, 0x0, r0, &(0x7f0000000240)='./file0\x00', 0x2400)
r1 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000080)=@newtaction={0x6c, 0x30, 0x53b, 0x0, 0x0, {}, [{0x58, 0x1, [@m_simple={0x54, 0x1, 0x0, 0x0, {{0xb}, {0x28, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0xb, 0x3, 'simple\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x0, 0x0, 0x20000000}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
bind$can_raw(r2, &(0x7f0000000000), 0x10)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f0000000040)=[{{0x3, 0x0, 0x1}, {0x4, 0x1, 0x1}}, {{0x2}, {0x0, 0x0, 0x0, 0x1}}], 0x10)
setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, &(0x7f0000000480)=[{{0x3, 0x1}, {0x0, 0x1, 0x1, 0x1}}], 0x8)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000140)={'vxcan0\x00', <r5=>0x0})
r6 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r6, &(0x7f0000000000)={0x1d, r5}, 0x10)
sendmsg$nl_route_sched(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x800, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0xfff2, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x2}, 0x20000000)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000240)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x3, 0x0, 0x9, 0x0, 0x0, 0x0, 'syz1\x00', 0x0})
syz_usb_disconnect(0xffffffffffffffff)
unlinkat(r0, &(0x7f0000000400)='./file0\x00', 0x0)
syz_usb_connect(0x6, 0x24, 0x0, 0x0)
readahead(0xffffffffffffffff, 0x0, 0xfffffffffffffffe)
syz_open_dev$swradio(0x0, 0x1, 0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0))
pselect6(0x0, 0x0, &(0x7f00000002c0)={0xafb, 0x80000001, 0x6, 0xfff, 0x4, 0x1b5, 0x1000, 0x2}, &(0x7f0000000300)={0x4, 0x5, 0x8001, 0x97, 0x7, 0x3, 0x5, 0xff}, &(0x7f0000000340), &(0x7f00000003c0)={&(0x7f0000000380)={[0x3]}, 0x8})

5.802727653s ago: executing program 3 (id=1711):
socket(0x10, 0x803, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x2402, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r2 = syz_io_uring_setup(0x71d3, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'nicvf0\x00', 0x3666b165f8ff1357})
pselect6(0x40, &(0x7f00000045c0)={0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x4}, 0x0, &(0x7f0000004640)={0xf8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000080))
mmap$dsp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000b, 0x8012, r1, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0xa00, 0x0, 0x0, 0x100}})

4.910992546s ago: executing program 0 (id=1715):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000340)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
remap_file_pages(&(0x7f00006b2000/0x2000)=nil, 0x2000, 0x8, 0x9, 0xc0041)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000840)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
socket(0x200000000000011, 0x2, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x4)
write(r4, &(0x7f0000005c00)="2700000014000707030e0000120f0a0011000100f5fe0012ff000000078a151f75080039000500", 0x27)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f00000002c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd60083ff200140600fe8000000000000000000000000000bbfe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="19fa42f87a89bef5ffffffffffff"], 0x0)
syz_emit_ethernet(0xfdef, &(0x7f0000000880)=ANY=[@ANYBLOB], 0x0)
recvmsg(r5, 0x0, 0x40003e00)
sendmsg$tipc(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="a2", 0x1}], 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmmsg$sock(r6, &(0x7f0000003bc0)=[{{0x0, 0xfe3d, 0x0}}, {{0x0, 0x0, 0x0}}], 0x4000000000002ca, 0x4040014)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

4.91053756s ago: executing program 1 (id=1716):
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$bt_hci(r0, 0x84, 0x80, 0x0, &(0x7f0000001080))
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000c80)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_CE_THRESHOLD={0x4}]}}]}, 0x40}}, 0x0)
r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r7, 0x800452d2, &(0x7f0000000100))
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4400000002060108000000000000000000000000050005000a0000c4050001000700000005000400000000000900020073797a31000000000c000300686173683a6970"], 0x44}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="8c0000000906010200000000000000000200ffff08000940000000390900020073797a310000000005000100070000005c0008801c0007801800018014000240fe"], 0x8c}, 0x1, 0x0, 0x0, 0x10000082}, 0x4000080)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="280000001c00000000000000000000000700000a0900432e60cc8fcd20020073797a31000000000500010007000000"], 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x0)

4.910004882s ago: executing program 2 (id=1717):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
r1 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TIOCSPTLCK(r1, 0x5423, &(0x7f0000000040)=0x1)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x1)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x2b442, 0x0)
r3 = epoll_create1(0x0)
r4 = epoll_create1(0x0)
r5 = dup(r3)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB, @ANYRESHEX=r4])
close_range(r0, 0xffffffffffffffff, 0xfd)

4.405541264s ago: executing program 2 (id=1718):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000f00)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0)
r2 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$sock_ifreq(r0, 0x8915, &(0x7f0000000040)={'veth1\x00', @ifru_names='veth1_vlan\x00'})
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000080)=0x80000003)
r3 = dup2(r2, r2)
read$FUSE(r3, &(0x7f0000000180)={0x2020}, 0x2020)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r3, 0x80047c05, &(0x7f0000000100))
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
inotify_init1(0x0)
read$eventfd(0xffffffffffffffff, &(0x7f0000000080), 0x8)

3.686839654s ago: executing program 1 (id=1719):
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0x5ad8d27b}], 0x1, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x100000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a0400eb2636037f00000000", @ANYRES32=r1, @ANYBLOB="020000000000800080001200080001007674693674000200600004"], 0xa0}}, 0x0)

3.676915594s ago: executing program 0 (id=1720):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00'})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f00001fe000/0x4000)=nil, 0x4000, 0xd, 0x80010, r3, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r3, 0x800c5011, &(0x7f0000000200))
preadv(r3, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x1fd, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000180)='sys_enter\x00', r5}, 0x10)
getuid()
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
ioctl$int_out(r3, 0x2, &(0x7f0000000380))
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='pids.events\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000000), 0x208e24b)
r8 = openat$sr(0xffffffffffffff9c, &(0x7f0000005940), 0x20000, 0x0)
ioctl$SG_EMULATED_HOST(r8, 0x2201, &(0x7f000000b1c0))

3.549164526s ago: executing program 1 (id=1721):
r0 = socket$inet6(0xa, 0x3, 0x94)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x80000, @empty}, 0x1c)
sendmmsg$inet6(r0, &(0x7f00000002c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='X\x00\x00\x00\x00\x00\x00\x00)\x00\x00'], 0x58}}], 0x1, 0x0)

3.434341635s ago: executing program 2 (id=1722):
chdir(&(0x7f0000000000)='./file0\x00')
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x460082, 0x180)
mkdirat(r0, &(0x7f0000000080)='./file0\x00', 0x33a)
rmdir(&(0x7f00000000c0)='./file0\x00')
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$sock(r1, &(0x7f0000000440)={&(0x7f0000000100)=@l2tp6={0xa, 0x0, 0x8, @local, 0x3, 0x3}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000180)="d493dba15fd366b3fab603adeab8e53795eda0032fbe220c30805a89926001374313246fb6f72379185123b65221d5b91ea3a4874636c66a3c31efe8890885254b28c59de45005acfb25ab07fbe5322318fe038e5db9cf1c6d9b00920f86d0b5ba6a4668c55626c567ad57f253aaa675d3175b1c041a4d656255dfd353ca6279d9de0578301fd79a4a195c", 0x8b}, {&(0x7f0000000240)="cc1b6c2d0dc536d3278a1ef6b6be34a06b997cb4a77d4d0a5809c98867fb1f1937f14b7ab87f4400e70abee00d44a63df3e0b42a60c7e1fb3e67ebb7c0edec83090a917c66b8951308caffc5b78e77f4c1884adc7266cb9493c930b7271144aee3a22e047f79fa0b78c884735877a3979f995e726fa334fb734853b35d380f6ad5ac8c9700ee2deb6825708a5ddc21", 0x8f}, {&(0x7f0000000300)="164574802b518d4c34abe3466e76df8662f3d62c545eb15fff2db6ff68cd9cb022e4294b7fbb3c43e732e585ddf5a67c62a28fa3445e71845def0f6eda41ca145984f1902ec5b89f4cd9be736d811e3076e0987efb254901c86d90e74ac646c12b1f3bb7cd94a9cc20dfc1127e07f5bd", 0x70}, {&(0x7f0000000380)="3ea4a316ccff7a64bc13fddee85e0e25166fefc22bad3dc5a3bc206f01e0fc9a0ddfdd42b20380e47f9168a4df5dc120edadd0", 0x33}], 0x4, &(0x7f0000000400)=[@timestamping={{0x14, 0x1, 0x25, 0x80000000}}, @mark={{0x14, 0x1, 0x24, 0x6}}], 0x30}, 0x48001)
fallocate(r1, 0x2, 0x3, 0x1ff)
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000580)={0x1, 0x6, 0x6, 0x10, 0xc8, 0x5, &(0x7f0000000480)="dd272d44f1e1cc57f961b4c025afa0f76b2cda08650d45bfda214f475122e395f5ab9cdbe9aac51a7076133295537d2ac702f2639bb6742fdc0b6070de3edfe9e9da779f4d807a103d43ef76aa126c3a619df927bf786002f988204e50d1e920a76250d46fb862449b504f751f9f6153ec23e3091f7f6464d0a682ee94fee6fe10c84b1b042c41e56a5d178eaa5011f1ab825fa14620f7e7629c83cf3e0b30c6add0d52a8cd6296c27655f6305a3aa605a73382a38dd77f7b9de2407fa35f234cacc968df3d71865"})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000640)={{{@in=@dev, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0, <r3=>0x0}}, {{@in6}}}, &(0x7f0000000740)=0xe8)
setxattr$security_capability(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600), &(0x7f0000000780)=@v3={0x3000000, [{0xd, 0x9}, {0x4}], r3}, 0x18, 0x3)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nbd(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000008c0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x204008}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x30, r5, 0x4, 0x70bd26, 0x25dfdbfe, {}, [@NBD_ATTR_SOCKETS={0xc, 0x7, 0x0, 0x1, [{0x8}]}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x80}, @NBD_ATTR_BACKEND_IDENTIFIER={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004000}, 0x90)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000940), r4)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r6, &(0x7f0000000a40)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000980)={0x4c, r7, 0x2, 0x70bd2c, 0x25dfdbfd, {}, [@NL802154_ATTR_SEC_KEY={0x2c, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "b1c756d2f5dd4a9e82b07cd99809571c295a9756e41e865990f4c7845bdcd503"}, @NL802154_KEY_ATTR_ID={0x4}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x4000)
socket$packet(0x11, 0x3, 0x300)
getdents(0xffffffffffffff9c, &(0x7f0000000a80)=""/241, 0xf1)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000bc0), r6)
sendmsg$IEEE802154_SCAN_REQ(r8, &(0x7f0000000c80)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x24, r9, 0x20, 0x70bd26, 0x25dfdbfb, {}, [@IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x5}, @IEEE802154_ATTR_CHANNELS={0x8, 0x14, 0x18}]}, 0x24}, 0x1, 0x0, 0x0, 0x2800}, 0x20000000)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000cc0), 0x900)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000d40)={'wpan4\x00', <r10=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000d80)={'wpan4\x00', <r11=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r6, &(0x7f0000000e40)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000e00)={&(0x7f0000000dc0)={0x24, r9, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r10}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r11}]}, 0x24}, 0x1, 0x0, 0x0, 0x22048050}, 0x4000040)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$fou(&(0x7f0000000ec0), 0xffffffffffffffff)
sendmsg$FOU_CMD_DEL(r12, &(0x7f0000000fc0)={&(0x7f0000000e80)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000f80)={&(0x7f0000000f00)={0x54, r13, 0x8, 0x70bd26, 0x25dfdbff, {}, [@FOU_ATTR_PORT={0x6, 0x1, 0x4e20}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @initdev={0xac, 0x1e, 0x1, 0x0}}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e20}, @FOU_ATTR_IFINDEX={0x8, 0xb, r2}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x1d}]}, 0x54}, 0x1, 0x0, 0x0, 0x40002}, 0x0)
timer_create(0x0, &(0x7f0000001200)={0x0, 0x3b, 0x1, @thr={&(0x7f0000001000)="823fe6d894f89cf3477cc1c73e35a58e7bb31b6ae2651a69c2df6bf7f43b597369305858df49b7575985bd91ef36712828eb0990b4e658503ed2b03fb645544b12501fb3e2076e3a44162ef3315500f032dbc41716af6bf8260377a382e12b8e9a8e22e04696cb5f35b6eba4ed3c214430e0098b4cb00696e3d015e809ac76fbbfc5ebb5b2c784c29ca04e6e96f0c42fc2088f529e64e1a86c11614690851fb6186ea887e76c6bab5a616b1a7c567d58b702ec41d5c267e62fcae3e4fc8673908242e63c123a9aaebd01dde91d47a2b5f60d23b5b5cf4caa3a02e8a7292c6294f0eb0baa9e", &(0x7f0000001100)="83676e92da6ca405333642f66027ce717925b1049a28dc479e51fff9866807af5e0542a7f066759e7f9392ebe9c0ef4cb8726c8a1b207a09f16bfa887a45201a79aa7977315e907b51c235f3ee3f17fa4f5ac6c109d4c77a31f5a372e5bad5c504654ed1f5a75e704a749eda12a975c93ef3a03c725602d143129328f7c1d3b8999bc725bc1fabacd9367694d38e46d427c22f4e3df78e0a7c5af9109406c7eb09c868af0672b8086794a47990b837531f0c88745f569da0cab7e8415a97ed1fb70e5e380e516b1cc08d16687a09713e65c40c1f3591b725a30c8e"}}, &(0x7f0000001240)=<r14=>0x0)
timer_settime(r14, 0x0, &(0x7f0000001280)={{}, {0x0, 0x989680}}, &(0x7f00000012c0))

3.433918983s ago: executing program 1 (id=1723):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="30000000180001000000000000000000020000000000ff00000000000c0016800800020006000000060015000a"], 0x30}}, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f00000001c0)=0x2001)
ioperm(0x0, 0x2eae, 0xffffffffffffffff)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00', <r4=>0x0})
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000040)={r4, 0x1, 0x6, @dev}, 0x10)
r5 = socket$inet6(0xa, 0x3, 0x5)
r6 = socket$l2tp6(0xa, 0x2, 0x73)
r7 = dup2(r6, r5)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f00000000c0)={@dev, 0x800, 0x0, 0x2, 0x9}, 0x20)
setsockopt$inet6_IPV6_DSTOPTS(r7, 0x29, 0x3b, &(0x7f00000001c0)=ANY=[], 0x10)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r7, 0x29, 0x37, &(0x7f0000000100)=ANY=[], 0x30)
setsockopt$inet6_int(r5, 0x29, 0x1000000000021, &(0x7f0000000000)=0xffffffc3, 0x4)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000400)=0x200000, 0x4)
syz_emit_vhci(&(0x7f0000000380)=ANY=[], 0x5)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, &(0x7f00000000c0)="2c385a4706", 0x5)
r9 = accept4(r1, 0x0, 0x0, 0x800)
sendmsg$alg(r9, &(0x7f00000019c0)={0x0, 0x0, &(0x7f00000018c0)=[{&(0x7f0000000340)="269afae1e3b0b9152d54659b36736e03", 0x10}], 0x1}, 0x0)
recvmmsg$unix(r9, &(0x7f0000000c40)=[{{&(0x7f0000000380), 0x6e, &(0x7f0000000080)=[{&(0x7f00000001c0)=""/95, 0x5f}, {&(0x7f0000000d00)=""/199, 0xc7}, {&(0x7f0000000240)=""/173, 0xad}], 0x3, &(0x7f0000000cc0)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000640)=""/238, 0xee}, {&(0x7f0000000740)=""/229, 0xe5}, {&(0x7f0000000540)=""/43, 0x2b}, {&(0x7f0000000840)=""/213, 0xd5}, {&(0x7f0000002a40)=""/4096, 0x1000}, {&(0x7f0000000940)=""/180, 0xb4}, {&(0x7f0000000a00)=""/242, 0xf2}], 0x7, &(0x7f0000000b00)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x10}}], 0x100}}], 0x2, 0x40000020, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r10, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r10, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r10, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)

3.090369992s ago: executing program 3 (id=1724):
mkdir(&(0x7f0000000080)='./file0/file0\x00', 0x8) (async)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) (async, rerun: 64)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) (async, rerun: 64)
r0 = gettid()
process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x3cb, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
sendto$inet(r1, 0x0, 0x0, 0x200007ed, &(0x7f0000008400)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10)
shutdown(r1, 0x1) (async)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r3=>0x0})
sendto$packet(r2, &(0x7f0000000040)="10008100", 0x4, 0x0, &(0x7f0000000200)={0x11, 0x8100, r3, 0x1, 0x0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x14)

2.535547061s ago: executing program 2 (id=1725):
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000100)={0x356, 0x31f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {0x3, 0x3fff}, {0x2000}, {0x2, 0x20000000}, 0x0, 0x0, 0x400000, 0x20000, 0x0, 0x0, 0x0, 0x2, 0x200, 0x0, 0x0, 0x0, 0x0, 0x200})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
futex(0x0, 0x5, 0x0, 0x0, &(0x7f0000004000)=0x2, 0x82020000)
r1 = getpid()
r2 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x8003, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc4c85512, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000940)=0x5, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xb635773f04ebbee1, 0x4010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(r1, &(0x7f00000000c0)='net/anycast6\x00')
futex(0x0, 0x7, 0x0, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001008010000000000000000000000000a3c000000120a09000000000000000000020000000900020073797a310000000008000460000000000900010073797a30000000000800034000000001140000001100010000000000000000000000000a"], 0x64}}, 0x0)
sendmsg$NFT_MSG_GETOBJ(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000000380)={0x14, 0x15, 0xa, 0x201}, 0x14}}, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x40000001, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)

2.467466604s ago: executing program 0 (id=1726):
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xf, 0x3, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000000020e6fac62e6a727255d52f257a293de82cbca6c4bf897400020000e51642e6f9dea92515f17fa133161bc4118edc2adec2b0ec305099"], &(0x7f0000000000)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000002c0)={r1, r2, 0x6}, 0x10)
mount(&(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f00000001c0)='ext4\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_open_procfs$namespace(r0, &(0x7f0000000000)='ns/uts\x00')
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fe0500000000000000000000950000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r6 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000300), 0x4)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000340)=@generic={&(0x7f0000000280)='./bus\x00', r6}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
creat(0x0, 0x0)
creat(&(0x7f0000000180)='./bus\x00', 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/4\x00')
preadv(r7, &(0x7f0000001240)=[{&(0x7f0000000040)=""/18, 0x12}], 0x1, 0x0, 0x0)

2.466844447s ago: executing program 1 (id=1727):
socket$pppl2tp(0x18, 0x1, 0x1)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x313840, 0x0)
socket$inet(0x2, 0x1, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$inet6(0xa, 0x0, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0))
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000780)={{{@in6=@mcast2, @in=@multicast2}}, {{@in6=@mcast2}, 0x0, @in6=@dev}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f0000000280), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = io_uring_setup(0x77f, &(0x7f0000000340)={0x0, 0x198d})
r3 = syz_open_dev$swradio(&(0x7f00000000c0), 0x0, 0x2)
read$hiddev(r3, &(0x7f0000000740)=""/43, 0x2b)
close_range(r2, 0xffffffffffffffff, 0x0)
bind$bt_hci(r0, &(0x7f0000000080), 0x6)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000540)={<r5=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r4, &(0x7f0000000080)={0x7, 0x8, 0xfa00, {r5}}, 0x10)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000240)={0xe, 0x18, 0xfa00, @id_resuseaddr={0x0, r5}}, 0x20)
r6 = syz_io_uring_setup(0x95, &(0x7f0000000140), &(0x7f0000000300)=<r7=>0x0, &(0x7f0000000100)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000004c0)=@IORING_OP_FILES_UPDATE={0x14, 0x40, 0x0, 0x0, 0x0, &(0x7f0000000640)=[0xffffffffffffffff], 0x1})
io_uring_enter(r6, 0x47f6, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_bt_hci(r0, 0x400448e6, &(0x7f0000000140))
socket$kcm(0x2, 0x0, 0x84)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), 0xffffffffffffffff)

2.157747295s ago: executing program 3 (id=1728):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x10)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000080)={'syz0\x00', {}, 0x4b, [0x0, 0x0, 0x0, 0x2b0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x4, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8fca], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1001, 0x0, 0x0, 0x0, 0xa90d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc]}, 0x45c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
r2 = socket$rxrpc(0x21, 0x2, 0xa)
sendmsg$inet(r2, &(0x7f0000000180)={0x0, 0xfffffffffffffd6b, 0x0, 0x0, &(0x7f00000000c0)=[@ip_tos_int={{0x17, 0x110, 0xd}}], 0x18, 0x4c00}, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setresgid(0xee01, 0x0, 0xffffffffffffffff)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_pidfd_open(r5, 0x0)
process_madvise(r6, 0x0, 0x0, 0x19, 0x0)
connect$unix(r3, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x360b, 0x0, 0x0, 0x0)
ioctl$HIDIOCGCOLLECTIONINFO(r0, 0xc0104811, &(0x7f0000000040)={0x4, 0x8, 0x1, 0x80f})
recvfrom$unix(r3, 0x0, 0x0, 0x2, &(0x7f0000001500)=@abs={0x1, 0x0, 0x4e21}, 0x6e)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r7 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r7, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1})
r8 = dup(r7)
mmap(&(0x7f0000fed000/0x12000)=nil, 0x12000, 0x2, 0x11, r8, 0x800000)
syz_emit_ethernet(0x82, &(0x7f0000001580)=ANY=[@ANYBLOB="ffffffffffffbbbbbbbbbbbb08005eaf00740000000000019078ac1e0001ac1414aa05009078e00000e0460000000000000000110000ac1414aa00000000830300070300443c00034c01010100010000ac1414bb00000000ac1414aa00002100ac1414bb000000000000000000000000ac1414000000000000000000000000000000fc032ea8902fadbc478134106fc87a80aeb519ce1da698d6ccfd2dde148926070fee80167095ffcb6bd75bf91b22ed7ef5b74352c7d2633246bf4b653c0690430ddc"], 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x2000, 0x3, &(0x7f0000ffd000/0x1000)=nil)

1.482022852s ago: executing program 2 (id=1729):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x10000, 0x1000, &(0x7f0000000000/0x1000)=nil})
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_TRANSLATE(r0, 0xc018ae85, &(0x7f0000000040))
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000000300)=""/102400, 0x19000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f0000000080)={[{0x4, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xf}, {0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x2}, {0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x10, 0x0, 0x0, 0xfd}]})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x2004cb], 0x100000})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/address_bits', 0x4a8200, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
socket$phonet_pipe(0x23, 0x5, 0x2)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = fsopen(&(0x7f00000001c0)='tmpfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
fsmount(r5, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r5, 0x7, 0x0, 0x4000000000000000, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000007100000000000000000a20000000000a01010000000700000000010000000900010073797a30000000002c000000ba0a01"], 0xb0}}, 0x0)

1.219925838s ago: executing program 0 (id=1730):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x4010, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$netlink(0x10, 0x3, 0x0)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
socket$inet6(0xa, 0x3, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x11, 0x0, &(0x7f0000000940)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x101, 0x4})
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000040)={0x0, &(0x7f00000002c0)=[<r2=>0x0], 0x0, 0x0, 0xfffffd52, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f0000000280)={0x3, r2, 0x3, 0x0, 0xa, 0x1ff, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR2(r0, 0xc02464bb, &(0x7f0000000080)={0x3, r2})

1.202405512s ago: executing program 3 (id=1731):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000f00)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0)
r2 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$sock_ifreq(r0, 0x8915, &(0x7f0000000040)={'veth1\x00', @ifru_names='veth1_vlan\x00'})
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000080)=0x80000003)
r3 = dup2(r2, r2)
read$FUSE(r3, &(0x7f0000000180)={0x2020}, 0x2020)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r3, 0x80047c05, &(0x7f0000000100))
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
inotify_init1(0x0)
read$eventfd(0xffffffffffffffff, &(0x7f0000000080), 0x8)

833.517734ms ago: executing program 0 (id=1732):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
sendto$inet(r0, &(0x7f0000000300)="ab", 0x1, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10)
sendmsg$inet_sctp(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000280)='\x00', 0x34000}], 0x1, &(0x7f00000003c0)=ANY=[@ANYBLOB="20000000000000028400000002000000000045000002000000000000", @ANYRES32=0x0, @ANYBLOB='0'], 0x50}, 0x0)

605.448058ms ago: executing program 2 (id=1733):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff}, 0x0)
r1 = memfd_create(&(0x7f00000000c0)='\xe9`\x10\x98[\x82?O3#\xfa\x02\xdc\x96\xa1\xbc\x80\x00+\xb6O', 0x0)
socket$tipc(0x1e, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x8001a0)
splice(r0, 0x0, r1, 0x0, 0x200002, 0x0)
r2 = getuid()
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r4 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r4, &(0x7f0000000480)={0x2020, 0x0, 0x0, <r5=>0x0, <r6=>0x0}, 0x2020)
fchown(r3, r5, r6)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000040)={'bridge_slave_0\x00', <r9=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000001d000bcc000000000000000007000000", @ANYRES32=r9, @ANYBLOB="000022000a0002"], 0x28}}, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, <r10=>0x0}, &(0x7f0000000180)=0xc)
ioctl$FBIOGET_FSCREENINFO(r1, 0x4602, &(0x7f0000000100))
setreuid(0x0, r10)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r11, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r13=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r11, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x24, r12, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r13}]}, 0x24}}, 0x0)
write$P9_RSTATu(r0, &(0x7f0000000000)={0x57, 0x7d, 0x1, {{0x0, 0x40, 0x3, 0x937, {0x10, 0x0, 0x8}, 0x1010000, 0x82c, 0x7fffffff, 0x7, 0x8, '^,#@&*)]', 0x0, '', 0x4, '}-$^', 0x1, '('}, 0x2, '*@', r2, r6, r10}}, 0x57)
r14 = userfaultfd(0x801)
ioctl$UFFDIO_API(r14, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_CONTINUE(r14, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
r15 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r11, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r16=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r11, &(0x7f00000024c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)={0x104, r15, 0x2, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r16}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x20, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "bc171dfd4478e8fd7166002f6cc80b1821b5920645649dbf"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "20c4613a9c7a486106f69af05776f605dda9394eafc14db6"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "e1f8a975bd67379d1fa9f8c22e101281d068c68bcd3c72f0"}], @mon_options, @NL80211_ATTR_4ADDR={0x5}, @mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}], @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x8, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "dce5b532f3d96bb564ef280c8d115db880b993a243f7c58e"}]]}, 0x104}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

252.946423ms ago: executing program 3 (id=1734):
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x109040, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="100000000114a7"], 0x10}}, 0x0)
recvmsg$can_raw(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_i', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006200)={0x2020}, 0x2020)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004090}, 0x40000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x34, 0x39, 0x9, 0x7000000, 0x0, {0x1}, [@typed={0x4}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0xfffffffffffffcfe, 0x0, 0x0, 0x0, @str='\x05G'}]}, @typed={0x8, 0x2, 0x0, 0x0, @pid=0xffffffffffffffff}, @nested={0x8, 0x9, 0x0, 0x1, [@typed={0x4}]}]}, 0x34}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x8, 0x3, &(0x7f0000000000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x8, 0x76}}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, 0x0)
sendmsg(r6, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xa0}}, 0x0)

49.56899ms ago: executing program 1 (id=1735):
socket$igmp(0x2, 0x3, 0x2)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@updpolicy={0xb8, 0x19, 0xfd3649826d894c67, 0x0, 0x0, {{@in6=@local, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa, 0x80}}}, 0xb8}}, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
write$binfmt_script(r3, &(0x7f0000000480)={'#! ', './file0', [{0x20, '^'}, {0x20, '&Krq\xdb\x95\xa5=\xa2tZW8rI\xde\x8a`\xd0\xce\xe1\xf9\x9f\xcf\xdcr\xab\x1e\xad\xe1\x9c\x93p\xd0\xd0$\x1a\xd0d\xe4\xa5\x92J\xbf\x89N\xf8s\xc1;M\xb1\xaeq\xc9\"\xa6c}\x93\rAt\xf6\xc1\xdc^|\xb6b3M[M?\xea\xfd}\a\xee\x0f\xd8\x16\xb0\xff\x99\xb2\xd7\xd4z\x89FB\xe8\xb9\\\xdd\xa4h\xbd\xe73;o\xe2\xcf\x8d \x88\xea\x83u:G\x00\x00'}, {0x20, '\xf3@#-(%^*@[},/%@(*.@'}, {0x20, ')/#\'-'}, {0x20, 'd\xf0^N\x81>n\x89hI8\x80&\x9ab\x97\xe5\xa6%\xe3 \xbez\xe2!k\xab\x91\xeay\x85\xb5\xa6G\xc98\xa0\xe6\xa6/=\x86\x1d\xafCc2\xb8M\x00\xd9\xf7\x91\x81\x15\xcaO\xe1+\x1e\n.[\xa4\xd8tS\xa6zGk\xa7M\x7f9\xe5\xac\x82\xc3\x876\xc3\x13\x009k_'}, {0x20, '@\a'}], 0xa, "2e46a7dc822f042efe7fdb501f56bdfd5d06659fef78f1c6f7e387978fb83168588bffeb2e29ee84e7655fd8f3d08131c82a127210dceec996100e0b9f0584cae4a04f87ac5a10c5cad3cd21c488a19a514121813a3d9d409c3077f78264cef6816a8691f9d4e2ea7a3d8fc091"}, 0x164)
ioctl$SIOCX25GCALLUSERDATA(0xffffffffffffffff, 0x89e4, &(0x7f0000000280)={0x46, "c3bfc48dc612593745af4ea119a04e37f4f53c0318d97f5b3b912c9db30d37c69acc8ee3c448911645481d04c846f333be41c18f203a19a09f1d0340f6c159ffddd6dbb0fe6fd92e08588172de2b71f396e9aaaed33627c420e2dbc49743f143478f70c9fe9c46fd56b02d7890cb7b605bd4ab76839db4e2f4459836af28b6f0"})
socket$unix(0x1, 0x2, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r4, 0x0, 0x27, &(0x7f0000000180)={@multicast2, @loopback}, 0xc)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, &(0x7f0000000040)={'lo\x00'})
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x48}}, 0x0)
pipe(&(0x7f00000001c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/profiling', 0x22042, 0x0)
write$binfmt_misc(r9, &(0x7f0000000000), 0xfffffecc)
splice(r8, 0x0, r10, 0x0, 0xbfd1, 0x0)
close(r7)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="04230dbbc900ad45f27ffdf7bb3d"], 0x10)
writev(r1, &(0x7f0000000100)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)

0s ago: executing program 0 (id=1736):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r0 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x4, 0x0, 0x0, 0x25d}, &(0x7f0000000280)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x5, 0x0, 0x0})
io_uring_enter(r0, 0x47f6, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, &(0x7f0000000580))
syz_open_dev$sndpcmp(&(0x7f0000000b00), 0x0, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000440), 0x0, 0x0)

kernel console output (not intermixed with test programs):

fail_nth_write+0x10/0x10
[  270.652199][ T9906]  vfs_write+0x28e/0x1140
[  270.653618][ T9906]  ? __fget_files+0x23a/0x3f0
[  270.655385][ T9906]  ? fdget_pos+0x24c/0x360
[  270.657071][ T9906]  ? __pfx_lock_release+0x10/0x10
[  270.658833][ T9906]  ? trace_lock_acquire+0x14a/0x1d0
[  270.660688][ T9906]  ? __pfx_vfs_write+0x10/0x10
[  270.662361][ T9906]  ? __pfx___mutex_lock+0x10/0x10
[  270.664143][ T9906]  ? __fget_files+0x244/0x3f0
[  270.665903][ T9906]  ksys_write+0x12f/0x260
[  270.667545][ T9906]  ? __pfx_ksys_write+0x10/0x10
[  270.669429][ T9906]  do_syscall_64+0xcd/0x250
[  270.671181][ T9906]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.673250][ T9906] RIP: 0033:0x7fc0dc77cadf
[  270.674854][ T9906] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  270.681437][ T9906] RSP: 002b:00007fc0dc1ff030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  270.684327][ T9906] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc0dc77cadf
[  270.687229][ T9906] RDX: 0000000000000001 RSI: 00007fc0dc1ff0a0 RDI: 0000000000000006
[  270.690145][ T9906] RBP: 00007fc0dc1ff090 R08: 0000000000000000 R09: 0000000000000000
[  270.693034][ T9906] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  270.695859][ T9906] R13: 0000000000000000 R14: 00007fc0dc935f80 R15: 00007ffd03455418
[  270.698712][ T9906]  </TASK>
[  271.707574][ T1287] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  271.920941][ T1287] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  271.929253][ T1287] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  271.937841][ T1287] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  271.946106][ T1287] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  271.956443][ T1287] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  271.963156][ T1287] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  271.982348][ T1287] usb 6-1: config 0 descriptor??
[  271.998820][ T9929] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  272.036252][  T982] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  272.184214][  T982] usb 7-1: device descriptor read/64, error -71
[  272.412855][  T982] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  272.415616][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.418193][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.420679][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.428090][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.433283][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.436236][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.439007][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.442037][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.444597][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.447250][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.450188][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.453381][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.456144][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.458853][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.461785][ T1287] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[  272.464989][ T1287] plantronics 0003:047F:FFFF.0010: No inputs registered, leaving
[  272.494846][ T1287] plantronics 0003:047F:FFFF.0010: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  272.508903][   T63] usb 6-1: USB disconnect, device number 18
[  272.545956][  T982] usb 7-1: device descriptor read/64, error -71
[  272.671026][  T982] usb usb7-port1: attempt power cycle
[  272.750782][ T9952] random: crng reseeded on system resumption
[  272.781586][ T9949] overlayfs: invalid origin (0000007900ff0000000000000000000000000000000000000000000000000000000000000000000000000000)
[  273.003135][  T982] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[  273.032488][  T982] usb 7-1: device descriptor read/8, error -71
[  273.070356][ T9952] Restarting kernel threads ... done.
[  273.146387][ T9953] FAULT_INJECTION: forcing a failure.
[  273.146387][ T9953] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  273.150010][ T9953] CPU: 1 UID: 0 PID: 9953 Comm: syz.1.1277 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0
[  273.153062][ T9953] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  273.155949][ T9953] Call Trace:
[  273.156838][ T9953]  <TASK>
[  273.157598][ T9953]  dump_stack_lvl+0x16c/0x1f0
[  273.158861][ T9953]  should_fail_ex+0x497/0x5b0
[  273.160099][ T9953]  _copy_to_iter+0x2a1/0x1540
[  273.161353][ T9953]  ? _raw_spin_unlock+0x28/0x50
[  273.162653][ T9953]  ? free_unref_page+0x621/0xdc0
[  273.163950][ T9953]  ? __pfx__copy_to_iter+0x10/0x10
[  273.165296][ T9953]  ? __pfx___mutex_trylock_common+0x10/0x10
[  273.166853][ T9953]  ? pipe_lock+0x64/0x80
[  273.167979][ T9953]  ? __folio_put+0x312/0x3d0
[  273.169148][ T9953]  ? __pfx___folio_put+0x10/0x10
[  273.170458][ T9953]  copy_page_to_iter+0xf1/0x180
[  273.171922][ T9953]  pipe_to_user+0xb0/0x170
[  273.173191][ T9953]  ? anon_pipe_buf_release+0x11a/0x240
[  273.174735][ T9953]  __splice_from_pipe+0x3a0/0x810
[  273.176084][ T9953]  ? __pfx_pipe_to_user+0x10/0x10
[  273.177419][ T9953]  __do_sys_vmsplice+0xa0f/0xef0
[  273.178752][ T9953]  ? get_pid_task+0xfc/0x250
[  273.179966][ T9953]  ? __pfx_lock_release+0x10/0x10
[  273.181292][ T9953]  ? trace_lock_acquire+0x14a/0x1d0
[  273.182751][ T9953]  ? __pfx___do_sys_vmsplice+0x10/0x10
[  273.184284][ T9953]  ? ksys_write+0x12f/0x260
[  273.185539][ T9953]  ? ksys_write+0x21e/0x260
[  273.186825][ T9953]  ? __pfx_lock_release+0x10/0x10
[  273.188224][ T9953]  ? __fget_files+0x244/0x3f0
[  273.189535][ T9953]  ? fput+0x30/0x390
[  273.190587][ T9953]  ? ksys_write+0x1ad/0x260
[  273.191815][ T9953]  ? __pfx_ksys_write+0x10/0x10
[  273.193134][ T9953]  ? do_syscall_64+0xcd/0x250
[  273.194513][ T9953]  do_syscall_64+0xcd/0x250
[  273.195907][ T9953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.197534][ T9953] RIP: 0033:0x7f2d5977dff9
[  273.198776][ T9953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  273.204036][ T9953] RSP: 002b:00007f2d5a4c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[  273.206352][ T9953] RAX: ffffffffffffffda RBX: 00007f2d59936058 RCX: 00007f2d5977dff9
[  273.208424][ T9953] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[  273.210621][ T9953] RBP: 00007f2d5a4c5090 R08: 0000000000000000 R09: 0000000000000000
[  273.212856][ T9953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  273.215308][ T9953] R13: 0000000000000000 R14: 00007f2d59936058 R15: 00007ffebf2e0bd8
[  273.217749][ T9953]  </TASK>
[  273.270293][  T982] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  273.291611][  T982] usb 7-1: device descriptor read/8, error -71
[  273.391357][   T39] kauditd_printk_skb: 394 callbacks suppressed
[  273.391378][   T39] audit: type=1400 audit(1728544349.537:20086): avc:  denied  { read } for  pid=9955 comm="syz.0.1278" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  273.394084][  T982] usb usb7-port1: unable to enumerate USB device
[  273.402191][   T39] audit: type=1400 audit(1728544349.537:20087): avc:  denied  { read open } for  pid=9955 comm="syz.0.1278" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  273.412034][   T39] audit: type=1400 audit(1728544349.537:20088): avc:  denied  { ioctl } for  pid=9955 comm="syz.0.1278" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  273.420035][   T39] audit: type=1400 audit(1728544349.548:20089): avc:  denied  { ioctl } for  pid=9933 comm="syz.2.1271" path="/dev/raw-gadget" dev="devtmpfs" ino=761 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  273.521182][   T39] audit: type=1400 audit(1728544349.674:20090): avc:  denied  { read write } for  pid=9955 comm="syz.0.1278" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  273.531320][   T39] audit: type=1400 audit(1728544349.674:20091): avc:  denied  { read write open } for  pid=9955 comm="syz.0.1278" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  273.541033][   T39] audit: type=1400 audit(1728544349.674:20092): avc:  denied  { ioctl } for  pid=9955 comm="syz.0.1278" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae05 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  273.707374][   T39] audit: type=1400 audit(1728544349.863:20093): avc:  denied  { prog_load } for  pid=9959 comm="syz.0.1279" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  273.715649][   T39] audit: type=1400 audit(1728544349.873:20094): avc:  denied  { bpf } for  pid=9959 comm="syz.0.1279" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  273.723156][   T39] audit: type=1400 audit(1728544349.873:20095): avc:  denied  { perfmon } for  pid=9959 comm="syz.0.1279" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  273.828927][ T9962] FAULT_INJECTION: forcing a failure.
[  273.828927][ T9962] name failslab, interval 1, probability 0, space 0, times 0
[  273.833474][ T9962] CPU: 0 UID: 0 PID: 9962 Comm: syz.1.1280 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0
[  273.836894][ T9962] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  273.840537][ T9962] Call Trace:
[  273.841771][ T9962]  <TASK>
[  273.842918][ T9962]  dump_stack_lvl+0x16c/0x1f0
[  273.844756][ T9962]  should_fail_ex+0x497/0x5b0
[  273.846603][ T9962]  should_failslab+0xc2/0x120
[  273.848312][ T9962]  __kmalloc_cache_noprof+0x6b/0x300
[  273.849950][ T9962]  ? sctp_add_bind_addr+0x9a/0x3d0
[  273.851436][ T9962]  sctp_add_bind_addr+0x9a/0x3d0
[  273.853074][ T9962]  sctp_copy_local_addr_list+0x39e/0x5a0
[  273.854949][ T9962]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  273.856974][ T9962]  ? sctp_auth_asoc_copy_shkeys+0x2a7/0x360
[  273.858616][ T9962]  ? sctp_bind_addr_copy+0xe0/0x530
[  273.860232][ T9962]  sctp_bind_addr_copy+0xe0/0x530
[  273.861822][ T9962]  sctp_connect_new_asoc+0x1d8/0x790
[  273.863370][ T9962]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  273.865024][ T9962]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  273.866554][ T9962]  sctp_sendmsg+0x1610/0x1eb0
[  273.867827][ T9962]  ? avc_has_perm+0x11b/0x1c0
[  273.869104][ T9962]  ? __pfx_sctp_sendmsg+0x10/0x10
[  273.870510][ T9962]  ? find_held_lock+0x2d/0x110
[  273.871776][ T9962]  ? __pfx_sock_has_perm+0x10/0x10
[  273.873103][ T9962]  ? __import_iovec+0x1fd/0x6e0
[  273.874345][ T9962]  ? __pfx_sctp_sendmsg+0x10/0x10
[  273.875643][ T9962]  inet_sendmsg+0x119/0x140
[  273.876923][ T9962]  ____sys_sendmsg+0x98c/0xc90
[  273.878228][ T9962]  ? copy_msghdr_from_user+0x10b/0x160
[  273.879708][ T9962]  ? __pfx_____sys_sendmsg+0x10/0x10
[  273.881141][ T9962]  ? __pfx___lock_acquire+0x10/0x10
[  273.882583][ T9962]  ___sys_sendmsg+0x135/0x1e0
[  273.884114][ T9962]  ? __pfx____sys_sendmsg+0x10/0x10
[  273.885815][ T9962]  ? lock_acquire+0x2f/0xb0
[  273.887044][ T9962]  ? __fget_files+0x40/0x3f0
[  273.888272][ T9962]  ? fdget+0x176/0x210
[  273.889354][ T9962]  __sys_sendmmsg+0x1a1/0x450
[  273.890641][ T9962]  ? __pfx___sys_sendmmsg+0x10/0x10
[  273.891999][ T9962]  ? vfs_write+0x14d/0x1140
[  273.893211][ T9962]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  273.894812][ T9962]  ? fput+0x30/0x390
[  273.895864][ T9962]  ? ksys_write+0x1ad/0x260
[  273.897074][ T9962]  ? __pfx_ksys_write+0x10/0x10
[  273.898451][ T9962]  __x64_sys_sendmmsg+0x9c/0x100
[  273.899773][ T9962]  ? lockdep_hardirqs_on+0x7c/0x110
[  273.901226][ T9962]  do_syscall_64+0xcd/0x250
[  273.902611][ T9962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.904344][ T9962] RIP: 0033:0x7f2d5977dff9
[  273.905559][ T9962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  273.910640][ T9962] RSP: 002b:00007f2d5a4e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  273.912823][ T9962] RAX: ffffffffffffffda RBX: 00007f2d59935f80 RCX: 00007f2d5977dff9
[  273.914900][ T9962] RDX: 0000000000000001 RSI: 0000000020000880 RDI: 0000000000000004
[  273.916904][ T9962] RBP: 00007f2d5a4e6090 R08: 0000000000000000 R09: 0000000000000000
[  273.919211][ T9962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  273.921423][ T9962] R13: 0000000000000000 R14: 00007f2d59935f80 R15: 00007ffebf2e0bd8
[  273.923555][ T9962]  </TASK>
[  274.843579][ T9984] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1286'.
[  274.846919][ T9984] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1286'.
[  275.143183][ T9992] netlink: 'syz.2.1285': attribute type 1 has an invalid length.
[  275.265770][ T9994] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1288'.
[  275.297774][ T9994] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  275.405465][ T9999] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1290'.
[  275.479194][ T9994] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  275.558574][T10002] team1: Mode changed to "activebackup"
[  277.080727][T10024] can: request_module (can-proto-4) failed.
[  278.162922][   T39] kauditd_printk_skb: 399 callbacks suppressed
[  278.162983][   T39] audit: type=1400 audit(1728544354.545:20495): avc:  denied  { read } for  pid=10043 comm="syz.3.1299" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  278.200319][   T39] audit: type=1400 audit(1728544354.566:20496): avc:  denied  { create } for  pid=10043 comm="syz.3.1299" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  278.212469][   T39] audit: type=1400 audit(1728544354.576:20497): avc:  denied  { write } for  pid=10043 comm="syz.3.1299" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  278.228997][   T39] audit: type=1400 audit(1728544354.587:20498): avc:  denied  { read } for  pid=10043 comm="syz.3.1299" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  278.400176][   T39] audit: type=1400 audit(1728544354.702:20499): avc:  denied  { map } for  pid=10043 comm="syz.3.1299" path="/dev/bus/usb/003/001" dev="devtmpfs" ino=732 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  278.513618][   T39] audit: type=1400 audit(1728544354.797:20500): avc:  denied  { ioctl } for  pid=10043 comm="syz.3.1299" path="socket:[37837]" dev="sockfs" ino=37837 ioctlcmd=0x89a1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  278.533508][   T39] audit: type=1400 audit(1728544354.891:20501): avc:  denied  { read } for  pid=4817 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  278.542528][   T39] audit: type=1400 audit(1728544354.891:20502): avc:  denied  { search } for  pid=4817 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  278.548939][   T39] audit: type=1400 audit(1728544354.891:20503): avc:  denied  { append } for  pid=4817 comm="syslogd" name="messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  278.555199][   T39] audit: type=1400 audit(1728544354.891:20504): avc:  denied  { append open } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  278.693943][T10043] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  278.891785][T10051] binder: BINDER_SET_CONTEXT_MGR already set
[  278.893687][T10051] binder: 10050:10051 ioctl 4018620d 20000100 returned -16
[  278.914212][T10051] binder: BINDER_SET_CONTEXT_MGR already set
[  278.916547][T10051] binder: 10050:10051 ioctl 4018620d 200002c0 returned -16
[  279.072449][T10054] netlink: 168 bytes leftover after parsing attributes in process `syz.0.1300'.
[  279.075725][T10054] netlink: 'syz.0.1300': attribute type 2 has an invalid length.
[  279.078065][T10054] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1300'.
[  279.290046][T10061] netlink: 'syz.1.1303': attribute type 10 has an invalid length.
[  279.295464][T10061] FAULT_INJECTION: forcing a failure.
[  279.295464][T10061] name failslab, interval 1, probability 0, space 0, times 0
[  279.300024][T10061] CPU: 0 UID: 0 PID: 10061 Comm: syz.1.1303 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0
[  279.302791][T10061] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  279.306544][T10061] Call Trace:
[  279.307660][T10061]  <TASK>
[  279.308565][T10061]  dump_stack_lvl+0x16c/0x1f0
[  279.310350][T10061]  should_fail_ex+0x497/0x5b0
[  279.311896][T10061]  ? __pfx___lock_acquire+0x10/0x10
[  279.313418][T10061]  should_failslab+0xc2/0x120
[  279.314969][T10061]  __kmalloc_cache_noprof+0x6b/0x300
[  279.316397][T10061]  ? nsim_fib_event_nb+0x1b6/0xec0
[  279.318097][T10061]  ? lock_acquire.part.0+0x11b/0x380
[  279.319706][T10061]  nsim_fib_event_nb+0x1b6/0xec0
[  279.321295][T10061]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  279.322871][T10061]  ? rcu_is_watching+0x12/0xc0
[  279.324484][T10061]  notifier_call_chain+0xb9/0x410
[  279.326195][T10061]  ? __pfx_nsim_fib_event_nb+0x10/0x10
[  279.328118][T10061]  atomic_notifier_call_chain+0x71/0x1c0
[  279.330346][T10061]  call_fib_notifiers+0x33/0x70
[  279.332576][T10061]  fib6_del+0xeba/0x1790
[  279.334236][T10061]  ? __pfx_fib6_del+0x10/0x10
[  279.336390][T10061]  ? fib6_ifdown+0xcd/0x8f0
[  279.338264][T10061]  fib6_clean_node+0x426/0x5b0
[  279.339664][T10061]  ? __pfx_fib6_clean_node+0x10/0x10
[  279.341141][T10061]  ? fib6_walk+0x17a/0x370
[  279.342403][T10061]  ? __pfx_lock_release+0x10/0x10
[  279.343954][T10061]  fib6_walk_continue+0x44f/0x8d0
[  279.345792][T10061]  fib6_walk+0x182/0x370
[  279.346969][T10061]  ? __pfx_fib6_ifdown+0x10/0x10
[  279.348314][T10061]  fib6_clean_tree+0xd7/0x120
[  279.349620][T10061]  ? __pfx_fib6_clean_tree+0x10/0x10
[  279.351326][T10061]  ? __pfx_fib6_clean_node+0x10/0x10
[  279.352875][T10061]  ? __pfx_fib6_ifdown+0x10/0x10
[  279.354712][T10061]  ? lock_acquire+0x2f/0xb0
[  279.356094][T10061]  ? __fib6_clean_all+0xe5/0x2d0
[  279.357494][T10061]  ? __pfx_fib6_ifdown+0x10/0x10
[  279.358885][T10061]  __fib6_clean_all+0x100/0x2d0
[  279.360245][T10061]  rt6_disable_ip+0x2ef/0x940
[  279.361577][T10061]  ? find_held_lock+0x2d/0x110
[  279.362939][T10061]  ? __pfx_rt6_disable_ip+0x10/0x10
[  279.364866][T10061]  ? __pfx_lock_release+0x10/0x10
[  279.366349][T10061]  addrconf_ifdown.isra.0+0x126/0x1af0
[  279.367809][T10061]  ? __mutex_unlock_slowpath+0x164/0x650
[  279.369362][T10061]  ? __pfx_addrconf_ifdown.isra.0+0x10/0x10
[  279.371294][T10061]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  279.373002][T10061]  ? tls_dev_event+0xfe/0x1100
[  279.374894][T10061]  addrconf_notify+0x220/0x19c0
[  279.376593][T10061]  ? ip6mr_device_event+0x1bc/0x230
[  279.378100][T10061]  notifier_call_chain+0xb9/0x410
[  279.379454][T10061]  ? __pfx_addrconf_notify+0x10/0x10
[  279.380867][T10061]  call_netdevice_notifiers_info+0xbe/0x140
[  279.382465][T10061]  __dev_notify_flags+0x1f9/0x2e0
[  279.384038][T10061]  ? __pfx___dev_notify_flags+0x10/0x10
[  279.385929][T10061]  ? __dev_change_flags+0x3d9/0x720
[  279.387584][T10061]  ? __pfx___dev_change_flags+0x10/0x10
[  279.389357][T10061]  ? tick_nohz_tick_stopped+0x6c/0xa0
[  279.391116][T10061]  dev_change_flags+0x10c/0x160
[  279.392437][T10061]  do_setlink+0x1b0e/0x41c0
[  279.394099][T10061]  ? trace_lock_acquire+0x14a/0x1d0
[  279.396057][T10061]  ? __pfx_do_setlink+0x10/0x10
[  279.397633][T10061]  ? vprintk+0x86/0xa0
[  279.398798][T10061]  ? _printk+0xc8/0x100
[  279.399958][T10061]  ? __pfx__printk+0x10/0x10
[  279.401227][T10061]  ? ___ratelimit+0x24c/0x570
[  279.402548][T10061]  ? __pfx____ratelimit+0x10/0x10
[  279.404437][T10061]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  279.406258][T10061]  ? __nla_validate_parse+0x601/0x2880
[  279.408023][T10061]  ? __pfx___nla_validate_parse+0x10/0x10
[  279.409647][T10061]  ? stack_trace_save+0x95/0xd0
[  279.411012][T10061]  ? __pfx_stack_trace_save+0x10/0x10
[  279.412406][T10061]  ? stack_depot_save_flags+0x28/0x8f0
[  279.413946][T10061]  ? lock_acquire.part.0+0x11b/0x380
[  279.415413][T10061]  ? find_held_lock+0x2d/0x110
[  279.417108][T10061]  ? __nla_parse+0x40/0x60
[  279.418573][T10061]  __rtnl_newlink+0xc35/0x1920
[  279.420142][T10061]  ? __pfx___rtnl_newlink+0x10/0x10
[  279.422050][T10061]  rtnl_newlink+0x67/0xa0
[  279.423747][T10061]  ? __pfx_rtnl_newlink+0x10/0x10
[  279.425539][T10061]  rtnetlink_rcv_msg+0x3c7/0xea0
[  279.426884][T10061]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  279.428275][T10061]  netlink_rcv_skb+0x16b/0x440
[  279.429569][T10061]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  279.431085][T10061]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  279.432553][T10061]  ? netlink_deliver_tap+0x1ae/0xd90
[  279.434366][T10061]  netlink_unicast+0x53c/0x7f0
[  279.435976][T10061]  ? __pfx_netlink_unicast+0x10/0x10
[  279.437867][T10061]  netlink_sendmsg+0x8b8/0xd70
[  279.439855][T10061]  ? __pfx_netlink_sendmsg+0x10/0x10
[  279.441720][T10061]  ? __import_iovec+0x1fd/0x6e0
[  279.443122][T10061]  ____sys_sendmsg+0xaaf/0xc90
[  279.444962][T10061]  ? copy_msghdr_from_user+0x10b/0x160
[  279.446904][T10061]  ? __pfx_____sys_sendmsg+0x10/0x10
[  279.448528][T10061]  ? __pfx___lock_acquire+0x10/0x10
[  279.450026][T10061]  ___sys_sendmsg+0x135/0x1e0
[  279.451433][T10061]  ? __pfx____sys_sendmsg+0x10/0x10
[  279.452956][T10061]  ? lock_acquire+0x2f/0xb0
[  279.454713][T10061]  ? __fget_files+0x40/0x3f0
[  279.456598][T10061]  ? fdget+0x176/0x210
[  279.457872][T10061]  __sys_sendmsg+0x117/0x1f0
[  279.459232][T10061]  ? __pfx___sys_sendmsg+0x10/0x10
[  279.460690][T10061]  ? __fget_files+0x244/0x3f0
[  279.462078][T10061]  do_syscall_64+0xcd/0x250
[  279.463343][T10061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.465331][T10061] RIP: 0033:0x7f2d5977dff9
[  279.466532][T10061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  279.472664][T10061] RSP: 002b:00007f2d5a4e6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  279.475457][T10061] RAX: ffffffffffffffda RBX: 00007f2d59935f80 RCX: 00007f2d5977dff9
[  279.478570][T10061] RDX: 0000000000000000 RSI: 0000000020000600 RDI: 0000000000000006
[  279.482059][T10061] RBP: 00007f2d5a4e6090 R08: 0000000000000000 R09: 0000000000000000
[  279.484901][T10061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  279.487514][T10061] R13: 0000000000000000 R14: 00007f2d59935f80 R15: 00007ffebf2e0bd8
[  279.489713][T10061]  </TASK>
[  279.503228][T10061] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  279.506780][T10061] team0: Port device netdevsim0 added
[  280.982204][T10087] EXT4-fs warning (device sda1): ext4_group_extend:1862: can't shrink FS - resize aborted
[  281.475347][T10096] Bluetooth: MGMT ver 1.23
[  281.871470][    T8] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  282.033406][    T8] usb 7-1: Using ep0 maxpacket: 16
[  282.078640][    T8] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  282.087160][    T8] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  282.091663][    T8] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  282.096669][    T8] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  282.101412][    T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  282.154168][    T8] usb 7-1: config 0 descriptor??
[  282.462521][    T8] usbhid 7-1:0.0: can't add hid device: -71
[  282.464880][    T8] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  282.474799][    T8] usb 7-1: USB disconnect, device number 25
[  282.940055][   T39] kauditd_printk_skb: 327 callbacks suppressed
[  282.940090][   T39] audit: type=1400 audit(1728544359.563:20832): avc:  denied  { read write } for  pid=5343 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  282.955604][   T39] audit: type=1400 audit(1728544359.563:20833): avc:  denied  { read write open } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  282.972743][   T39] audit: type=1400 audit(1728544359.563:20834): avc:  denied  { ioctl } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  283.017173][   T39] audit: type=1400 audit(1728544359.647:20835): avc:  denied  { create } for  pid=10104 comm="syz.1.1317" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  283.067284][   T39] audit: type=1400 audit(1728544359.699:20836): avc:  denied  { read write } for  pid=10108 comm="syz.3.1318" name="raw-gadget" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  283.089395][   T39] audit: type=1400 audit(1728544359.699:20837): avc:  denied  { read write open } for  pid=10108 comm="syz.3.1318" path="/dev/raw-gadget" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  283.105046][   T39] audit: type=1400 audit(1728544359.699:20838): avc:  denied  { create } for  pid=10104 comm="syz.1.1317" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  283.115693][   T39] audit: type=1400 audit(1728544359.699:20839): avc:  denied  { create } for  pid=10104 comm="syz.1.1317" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  283.123929][   T39] audit: type=1400 audit(1728544359.710:20840): avc:  denied  { create } for  pid=10104 comm="syz.1.1317" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  283.137386][   T39] audit: type=1400 audit(1728544359.720:20841): avc:  denied  { ioctl } for  pid=10108 comm="syz.3.1318" path="/dev/raw-gadget" dev="devtmpfs" ino=761 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  283.310007][  T982] usb 8-1: new high-speed USB device number 27 using dummy_hcd
[  283.503276][  T982] usb 8-1: too many configurations: 13, using maximum allowed: 8
[  283.512302][  T982] usb 8-1: config 0 has no interfaces?
[  283.534474][  T982] usb 8-1: config 0 has no interfaces?
[  283.549254][  T982] usb 8-1: config 0 has no interfaces?
[  283.563880][  T982] usb 8-1: config 0 has no interfaces?
[  283.574264][  T982] usb 8-1: config 0 has no interfaces?
[  283.589414][  T982] usb 8-1: config 0 has no interfaces?
[  283.595683][  T982] usb 8-1: config 0 has no interfaces?
[  283.617709][  T982] usb 8-1: config 0 has no interfaces?
[  283.634747][  T982] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  283.637112][  T982] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  283.639280][  T982] usb 8-1: Product: syz
[  283.640479][  T982] usb 8-1: Manufacturer: syz
[  283.641775][  T982] usb 8-1: SerialNumber: syz
[  283.656384][  T982] usb 8-1: config 0 descriptor??
[  283.769969][T10111] netlink: 192 bytes leftover after parsing attributes in process `syz.2.1319'.
[  283.922644][    T8] usb 8-1: USB disconnect, device number 27
[  284.008334][T10116] syz.1.1322: attempt to access beyond end of device
[  284.008334][T10116] nbd1: rw=0, sector=8, nr_sectors = 8 limit=0
[  284.011918][T10116] VFS: could not find a valid V7 on nbd1.
[  284.038829][T10117] FAULT_INJECTION: forcing a failure.
[  284.038829][T10117] name failslab, interval 1, probability 0, space 0, times 0
[  284.046786][T10117] CPU: 0 UID: 0 PID: 10117 Comm: syz.2.1320 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0
[  284.050700][T10117] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  284.052311][T10116] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1322'.
[  284.054477][T10117] Call Trace:
[  284.054520][T10117]  <TASK>
[  284.054529][T10117]  dump_stack_lvl+0x16c/0x1f0
[  284.054560][T10117]  should_fail_ex+0x497/0x5b0
[  284.060037][T10116] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1322'.
[  284.061156][T10117]  ? fs_reclaim_acquire+0xae/0x160
[  284.067681][T10117]  should_failslab+0xc2/0x120
[  284.069468][T10117]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  284.069950][T10118] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1321'.
[  284.071469][T10117]  ? __pfx_mark_lock+0x10/0x10
[  284.076239][T10117]  ? alloc_empty_file+0x73/0x1e0
[  284.078104][T10117]  alloc_empty_file+0x73/0x1e0
[  284.080017][T10117]  path_openat+0xe1/0x2d60
[  284.081883][T10117]  ? stack_depot_save_flags+0x31b/0x8f0
[  284.083964][T10117]  ? __pfx_lock_release+0x10/0x10
[  284.085966][T10117]  ? mark_held_locks+0x9f/0xe0
[  284.087794][T10117]  ? __pfx_path_openat+0x10/0x10
[  284.089567][T10117]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  284.091613][T10117]  ? lockdep_hardirqs_on+0x7c/0x110
[  284.093468][T10117]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  284.095656][T10117]  do_filp_open+0x1dc/0x430
[  284.097308][T10117]  ? __pfx_do_filp_open+0x10/0x10
[  284.099149][T10117]  ? kasan_save_stack+0x42/0x60
[  284.101032][T10117]  ? kasan_save_stack+0x33/0x60
[  284.102879][T10117]  file_open_name+0x2a4/0x450
[  284.104619][T10117]  ? __pfx_file_open_name+0x10/0x10
[  284.106597][T10117]  acct_on+0x77/0x790
[  284.108086][T10117]  __x64_sys_acct+0xad/0x220
[  284.109832][T10117]  ? lockdep_hardirqs_on+0x7c/0x110
[  284.111739][T10117]  do_syscall_64+0xcd/0x250
[  284.113425][T10117]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.115599][T10117] RIP: 0033:0x7f50b0b7dff9
[  284.117209][T10117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  284.123918][T10117] RSP: 002b:00007f50b193c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[  284.126876][T10117] RAX: ffffffffffffffda RBX: 00007f50b0d35f80 RCX: 00007f50b0b7dff9
[  284.129929][T10117] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200000c0
[  284.132986][T10117] RBP: 00007f50b193c090 R08: 0000000000000000 R09: 0000000000000000
[  284.135834][T10117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  284.138756][T10117] R13: 0000000000000000 R14: 00007f50b0d35f80 R15: 00007ffffa0d9488
[  284.141629][T10117]  </TASK>
[  286.158542][T10148] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=19977 sclass=netlink_route_socket pid=10148 comm=syz.2.1329
[  286.163921][T10148] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1329'.
[  286.794683][T10158] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1332'.
[  287.008092][T10158] hsr_slave_1 (unregistering): left promiscuous mode
[  287.194590][T10171] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10171 comm=syz.2.1336
[  287.745790][   T39] kauditd_printk_skb: 448 callbacks suppressed
[  287.745810][   T39] audit: type=1400 audit(1728544364.602:21290): avc:  denied  { read write } for  pid=5343 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  287.763110][   T39] audit: type=1400 audit(1728544364.602:21291): avc:  denied  { read write open } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  287.774996][   T39] audit: type=1400 audit(1728544364.602:21292): avc:  denied  { ioctl } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  287.788539][   T39] audit: type=1400 audit(1728544364.612:21293): avc:  denied  { prog_load } for  pid=10177 comm="syz.2.1339" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  287.795530][   T39] audit: type=1400 audit(1728544364.612:21294): avc:  denied  { bpf } for  pid=10177 comm="syz.2.1339" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  287.807392][   T39] audit: type=1400 audit(1728544364.612:21295): avc:  denied  { perfmon } for  pid=10177 comm="syz.2.1339" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  287.820920][   T39] audit: type=1400 audit(1728544364.612:21296): avc:  denied  { perfmon } for  pid=10177 comm="syz.2.1339" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  287.830700][   T39] audit: type=1400 audit(1728544364.612:21297): avc:  denied  { perfmon } for  pid=10177 comm="syz.2.1339" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  287.841006][   T39] audit: type=1400 audit(1728544364.612:21298): avc:  denied  { perfmon } for  pid=10177 comm="syz.2.1339" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  287.849744][   T39] audit: type=1400 audit(1728544364.612:21299): avc:  denied  { perfmon } for  pid=10177 comm="syz.2.1339" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  287.942089][T10181] ICMPv6: NDISC: Failed to initialize the control socket (err -2)
[  288.348089][T10194] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.1343'.
[  288.353677][T10194] FAULT_INJECTION: forcing a failure.
[  288.353677][T10194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  288.357866][T10194] CPU: 1 UID: 0 PID: 10194 Comm: syz.1.1343 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0
[  288.360781][T10194] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  288.363564][T10194] Call Trace:
[  288.364467][T10194]  <TASK>
[  288.365306][T10194]  dump_stack_lvl+0x16c/0x1f0
[  288.366705][T10194]  should_fail_ex+0x497/0x5b0
[  288.368054][T10194]  _copy_to_user+0x30/0xc0
[  288.369321][T10194]  simple_read_from_buffer+0xd0/0x160
[  288.370895][T10194]  proc_fail_nth_read+0x198/0x270
[  288.372359][T10194]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  288.373956][T10194]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  288.375549][T10194]  vfs_read+0x1ce/0xbd0
[  288.376677][T10194]  ? __fget_files+0x23a/0x3f0
[  288.377947][T10194]  ? fdget_pos+0x24c/0x360
[  288.379139][T10194]  ? __pfx_lock_release+0x10/0x10
[  288.380492][T10194]  ? trace_lock_acquire+0x14a/0x1d0
[  288.381893][T10194]  ? __pfx_vfs_read+0x10/0x10
[  288.383147][T10194]  ? __pfx___mutex_lock+0x10/0x10
[  288.384499][T10194]  ? __fget_files+0x244/0x3f0
[  288.385937][T10194]  ksys_read+0x12f/0x260
[  288.387075][T10194]  ? __pfx_ksys_read+0x10/0x10
[  288.388357][T10194]  do_syscall_64+0xcd/0x250
[  288.389574][T10194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.391126][T10194] RIP: 0033:0x7f2d5977ca3c
[  288.392482][T10194] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  288.398532][T10194] RSP: 002b:00007f2d5a4a4030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  288.400804][T10194] RAX: ffffffffffffffda RBX: 00007f2d59936130 RCX: 00007f2d5977ca3c
[  288.403625][T10194] RDX: 000000000000000f RSI: 00007f2d5a4a40a0 RDI: 000000000000000a
[  288.406337][T10194] RBP: 00007f2d5a4a4090 R08: 0000000000000000 R09: 0000000000000000
[  288.408405][T10194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  288.410479][T10194] R13: 0000000000000000 R14: 00007f2d59936130 R15: 00007ffebf2e0bd8
[  288.412537][T10194]  </TASK>
[  288.676536][T10199] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1344'.
[  290.517209][T10250] devpts: called with bogus options
[  290.911320][  T982] usb 8-1: new high-speed USB device number 28 using dummy_hcd
[  291.057208][T10262] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  291.068038][ T1287] kernel read not supported for file /vga_arbiter (pid: 1287 comm: kworker/2:2)
[  291.080631][  T982] usb 8-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config
[  291.084160][  T982] usb 8-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  291.096081][T10263] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  291.097558][  T982] usb 8-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  291.098899][T10263] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  291.101245][  T982] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  291.110862][T10263] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  291.128171][T10263] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  291.369590][T10253] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  291.392717][T10253] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  291.408071][  T982] usb 8-1: string descriptor 0 read error: -71
[  291.410904][  T982] aiptek 8-1:17.0: interface has no int in endpoints, but must have minimum 1
[  291.414301][  T982] usb 8-1: USB disconnect, device number 28
[  292.568591][   T39] kauditd_printk_skb: 450 callbacks suppressed
[  292.568611][   T39] audit: type=1400 audit(1728544369.599:21750): avc:  denied  { prog_load } for  pid=10273 comm="syz.3.1367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  292.597556][   T39] audit: type=1400 audit(1728544369.609:21751): avc:  denied  { create } for  pid=10273 comm="syz.3.1367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  292.605280][   T39] audit: type=1400 audit(1728544369.609:21752): avc:  denied  { write } for  pid=10273 comm="syz.3.1367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  292.654266][   T39] audit: type=1400 audit(1728544369.620:21753): avc:  denied  { read } for  pid=10273 comm="syz.3.1367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  292.656364][ T1287] kernel write not supported for file /1135/projid_map (pid: 1287 comm: kworker/2:2)
[  292.668473][   T39] audit: type=1400 audit(1728544369.620:21754): avc:  denied  { read } for  pid=10273 comm="syz.3.1367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  292.682807][   T39] audit: type=1400 audit(1728544369.630:21755): avc:  denied  { write } for  pid=10273 comm="syz.3.1367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  292.692491][   T39] audit: type=1400 audit(1728544369.641:21756): avc:  denied  { write } for  pid=10273 comm="syz.3.1367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  292.706274][   T39] audit: type=1400 audit(1728544369.641:21757): avc:  denied  { read } for  pid=10273 comm="syz.3.1367" name="v4l-subdev7" dev="devtmpfs" ino=893 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  292.718108][   T39] audit: type=1400 audit(1728544369.641:21758): avc:  denied  { read open } for  pid=10273 comm="syz.3.1367" path="/dev/v4l-subdev7" dev="devtmpfs" ino=893 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  292.730025][   T39] audit: type=1400 audit(1728544369.641:21759): avc:  denied  { create } for  pid=10273 comm="syz.3.1367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  292.791812][T10294] FAULT_INJECTION: forcing a failure.
[  292.791812][T10294] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  292.796337][T10294] CPU: 3 UID: 0 PID: 10294 Comm: syz.1.1372 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0
[  292.800127][T10294] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  292.803615][T10294] Call Trace:
[  292.804709][T10294]  <TASK>
[  292.805634][T10294]  dump_stack_lvl+0x16c/0x1f0
[  292.807249][T10294]  should_fail_ex+0x497/0x5b0
[  292.808902][T10294]  _copy_from_user+0x30/0xf0
[  292.810560][T10294]  copy_msghdr_from_user+0x99/0x160
[  292.812483][T10294]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  292.814510][T10294]  ? __pfx___lock_acquire+0x10/0x10
[  292.816321][T10294]  ___sys_sendmsg+0xff/0x1e0
[  292.817931][T10294]  ? __pfx____sys_sendmsg+0x10/0x10
[  292.819774][T10294]  ? lock_acquire+0x2f/0xb0
[  292.821425][T10294]  ? __fget_files+0x40/0x3f0
[  292.823130][T10294]  ? fdget+0x176/0x210
[  292.824611][T10294]  __sys_sendmsg+0x117/0x1f0
[  292.826266][T10294]  ? __pfx___sys_sendmsg+0x10/0x10
[  292.828033][T10294]  ? __fget_files+0x244/0x3f0
[  292.829661][T10294]  do_syscall_64+0xcd/0x250
[  292.830863][T10294]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.832406][T10294] RIP: 0033:0x7f2d5977dff9
[  292.833608][T10294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  292.838712][T10294] RSP: 002b:00007f2d5a4e6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  292.840991][T10294] RAX: ffffffffffffffda RBX: 00007f2d59935f80 RCX: 00007f2d5977dff9
[  292.843245][T10294] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  292.845489][T10294] RBP: 00007f2d5a4e6090 R08: 0000000000000000 R09: 0000000000000000
[  292.847564][T10294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  292.849640][T10294] R13: 0000000000000000 R14: 00007f2d59935f80 R15: 00007ffebf2e0bd8
[  292.851719][T10294]  </TASK>
[  292.933411][T10292] netlink: 188 bytes leftover after parsing attributes in process `syz.0.1371'.
[  292.937836][T10292] netlink: 'syz.0.1371': attribute type 1 has an invalid length.
[  292.940814][T10292] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1371'.
[  293.376025][T10304] fuse: Unknown parameter 'ff'
[  293.856267][T10302] Process accounting resumed
[  294.469024][T10324] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1378'.
[  295.315742][T10335] program syz.3.1383 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  296.059282][T10342] ICMPv6: NDISC: Failed to initialize the control socket (err -2)
[  297.532251][   T39] kauditd_printk_skb: 278 callbacks suppressed
[  297.532271][   T39] audit: type=1400 audit(1728544374.890:22038): avc:  denied  { read write } for  pid=5338 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  297.544738][   T39] audit: type=1400 audit(1728544374.890:22039): avc:  denied  { read write open } for  pid=5338 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  297.553362][   T39] audit: type=1400 audit(1728544374.890:22040): avc:  denied  { ioctl } for  pid=5338 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  297.567044][   T39] audit: type=1400 audit(1728544374.911:22041): avc:  denied  { read } for  pid=4817 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  297.573479][   T39] audit: type=1400 audit(1728544374.911:22042): avc:  denied  { read write } for  pid=5343 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  297.580793][   T39] audit: type=1400 audit(1728544374.911:22043): avc:  denied  { read write open } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  297.587669][   T39] audit: type=1400 audit(1728544374.911:22044): avc:  denied  { search } for  pid=4817 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  297.593377][   T39] audit: type=1400 audit(1728544374.911:22045): avc:  denied  { ioctl } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  297.601367][   T39] audit: type=1400 audit(1728544374.911:22046): avc:  denied  { append } for  pid=4817 comm="syslogd" name="messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  297.606995][   T39] audit: type=1400 audit(1728544374.911:22047): avc:  denied  { append open } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  297.619356][T10347] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1386'.
[  297.621960][T10347] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1386'.
[  297.811465][T10354] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1390'.
[  297.816038][T10354] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1390'.
[  298.476953][  T982] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  298.524561][T10371] trusted_key: syz.1.1395 sent an empty control message without MSG_MORE.
[  298.707041][  T982] usb 5-1: too many configurations: 13, using maximum allowed: 8
[  298.732884][  T982] usb 5-1: config 0 has no interfaces?
[  298.741274][  T982] usb 5-1: config 0 has no interfaces?
[  298.753757][  T982] usb 5-1: config 0 has no interfaces?
[  298.771967][  T982] usb 5-1: config 0 has no interfaces?
[  298.795233][  T982] usb 5-1: config 0 has no interfaces?
[  298.805998][  T982] usb 5-1: config 0 has no interfaces?
[  298.816711][  T982] usb 5-1: config 0 has no interfaces?
[  298.828564][  T982] usb 5-1: config 0 has no interfaces?
[  298.836443][ T1418] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[  298.851566][  T982] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  298.854907][  T982] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  298.858367][  T982] usb 5-1: Product: syz
[  298.859945][  T982] usb 5-1: Manufacturer: syz
[  298.861598][  T982] usb 5-1: SerialNumber: syz
[  298.870416][  T982] usb 5-1: config 0 descriptor??
[  298.981616][ T1418] usb 7-1: too many configurations: 13, using maximum allowed: 8
[  298.998376][ T1418] usb 7-1: config 0 has no interfaces?
[  299.008110][ T1418] usb 7-1: config 0 has no interfaces?
[  299.013224][ T1418] usb 7-1: config 0 has no interfaces?
[  299.019973][ T1418] usb 7-1: config 0 has no interfaces?
[  299.029069][ T1418] usb 7-1: config 0 has no interfaces?
[  299.039549][ T1418] usb 7-1: config 0 has no interfaces?
[  299.051899][ T1418] usb 7-1: config 0 has no interfaces?
[  299.060665][ T1418] usb 7-1: config 0 has no interfaces?
[  299.081460][  T982] usb 5-1: USB disconnect, device number 32
[  299.094172][ T1418] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  299.097687][ T1418] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  299.100877][ T1418] usb 7-1: Product: syz
[  299.102513][ T1418] usb 7-1: Manufacturer: syz
[  299.133854][ T1418] usb 7-1: SerialNumber: syz
[  299.141968][ T1418] usb 7-1: config 0 descriptor??
[  299.360489][ T1287] usb 7-1: USB disconnect, device number 26
[  299.374443][T10380] program syz.1.1397 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  299.637065][ T5353] Bluetooth: hci4: command 0x0405 tx timeout
[  301.598034][T10447] netlink: 'syz.2.1413': attribute type 5 has an invalid length.
[  302.304936][   T39] kauditd_printk_skb: 940 callbacks suppressed
[  302.304961][   T39] audit: type=1400 audit(1728544379.897:22988): avc:  denied  { ioctl } for  pid=5338 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  302.371417][   T39] audit: type=1400 audit(1728544379.960:22989): avc:  denied  { read write } for  pid=5343 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  302.392367][   T39] audit: type=1400 audit(1728544379.981:22990): avc:  denied  { read write open } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  302.400959][   T39] audit: type=1400 audit(1728544379.981:22991): avc:  denied  { ioctl } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  302.414886][   T39] audit: type=1400 audit(1728544380.002:22992): avc:  denied  { read } for  pid=4817 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  302.421019][   T39] audit: type=1400 audit(1728544380.002:22993): avc:  denied  { search } for  pid=4817 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  302.426948][   T39] audit: type=1400 audit(1728544380.002:22994): avc:  denied  { read write } for  pid=6149 comm="syz-executor" name="loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  302.446260][   T39] audit: type=1400 audit(1728544380.023:22995): avc:  denied  { read write open } for  pid=6149 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  302.486726][   T39] audit: type=1400 audit(1728544380.023:22996): avc:  denied  { ioctl } for  pid=6149 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  302.493224][   T39] audit: type=1400 audit(1728544380.023:22997): avc:  denied  { create } for  pid=10466 comm="syz.1.1422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  302.558158][T10470] FAULT_INJECTION: forcing a failure.
[  302.558158][T10470] name failslab, interval 1, probability 0, space 0, times 0
[  302.562057][T10470] CPU: 3 UID: 0 PID: 10470 Comm: syz.2.1424 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0
[  302.565018][T10470] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  302.567888][T10470] Call Trace:
[  302.568778][T10470]  <TASK>
[  302.569584][T10470]  dump_stack_lvl+0x16c/0x1f0
[  302.571006][T10470]  should_fail_ex+0x497/0x5b0
[  302.572370][T10470]  ? fs_reclaim_acquire+0xae/0x160
[  302.573845][T10470]  should_failslab+0xc2/0x120
[  302.575173][T10470]  __kmalloc_noprof+0xcb/0x400
[  302.576536][T10470]  ? trace_lock_acquire+0x14a/0x1d0
[  302.578439][T10470]  tomoyo_encode2+0x100/0x3e0
[  302.579850][T10470]  tomoyo_encode+0x29/0x50
[  302.581048][T10470]  tomoyo_mount_acl+0x145/0x880
[  302.582387][T10470]  ? hlock_class+0x4e/0x130
[  302.583609][T10470]  ? __lock_acquire+0x163e/0x3ce0
[  302.584954][T10470]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  302.586785][T10470]  ? __pfx___lock_acquire+0x10/0x10
[  302.588182][T10470]  ? stack_trace_save+0x95/0xd0
[  302.589460][T10470]  ? __pfx_lock_release+0x10/0x10
[  302.590741][T10470]  ? trace_lock_acquire+0x14a/0x1d0
[  302.592083][T10470]  ? tomoyo_mount_permission+0x146/0x410
[  302.593532][T10470]  ? lock_acquire+0x2f/0xb0
[  302.594722][T10470]  ? tomoyo_mount_permission+0x146/0x410
[  302.596203][T10470]  tomoyo_mount_permission+0x16b/0x410
[  302.597658][T10470]  ? tomoyo_mount_permission+0x146/0x410
[  302.599146][T10470]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  302.600747][T10470]  ? get_current_fs_domain+0x188/0x1f0
[  302.602223][T10470]  security_sb_mount+0x9b/0x260
[  302.603568][T10470]  path_mount+0x129/0x1f20
[  302.604805][T10470]  ? kmem_cache_free+0x152/0x4b0
[  302.606215][T10470]  ? __pfx_path_mount+0x10/0x10
[  302.607601][T10470]  ? putname+0x12e/0x170
[  302.608729][T10470]  __x64_sys_mount+0x294/0x320
[  302.610025][T10470]  ? __pfx___x64_sys_mount+0x10/0x10
[  302.611430][T10470]  do_syscall_64+0xcd/0x250
[  302.612640][T10470]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.614381][T10470] RIP: 0033:0x7f50b0b7dff9
[  302.615638][T10470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  302.621074][T10470] RSP: 002b:00007f50b193c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  302.623306][T10470] RAX: ffffffffffffffda RBX: 00007f50b0d35f80 RCX: 00007f50b0b7dff9
[  302.625418][T10470] RDX: 0000000020000240 RSI: 0000000020000080 RDI: 0000000000000000
[  302.627490][T10470] RBP: 00007f50b193c090 R08: 0000000020000180 R09: 0000000000000000
[  302.629601][T10470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  302.631710][T10470] R13: 0000000000000000 R14: 00007f50b0d35f80 R15: 00007ffffa0d9488
[  302.633906][T10470]  </TASK>
[  302.958802][T10480] fuse: Bad value for 'fd'
[  302.966244][T10481] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1427'.
[  304.365808][T10506] SELinux:  Context system_u:object_r:vhost_device_t:s0 is not valid (left unmapped).
[  305.444932][T10526] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2816 sclass=netlink_route_socket pid=10526 comm=syz.3.1439
[  305.468653][T10528] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1443'.
[  306.349794][T10533] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  306.354925][T10533] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  306.383936][T10533] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  306.491705][T10533] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  306.699205][T10549] ICMPv6: NDISC: Failed to initialize the control socket (err -2)
[  306.972389][T10554] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1449'.
[  306.976239][T10554] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1449'.
[  307.080588][   T39] kauditd_printk_skb: 476 callbacks suppressed
[  307.080600][   T39] audit: type=1400 audit(1728544384.905:23474): avc:  denied  { ioctl } for  pid=10553 comm="syz.1.1450" path="/dev/raw-gadget" dev="devtmpfs" ino=761 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  307.127157][   T39] audit: type=1400 audit(1728544384.957:23475): avc:  denied  { prog_load } for  pid=10556 comm="syz.2.1451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  307.135750][   T39] audit: type=1400 audit(1728544384.968:23476): avc:  denied  { bpf } for  pid=10556 comm="syz.2.1451" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  307.142825][   T39] audit: type=1400 audit(1728544384.968:23477): avc:  denied  { perfmon } for  pid=10556 comm="syz.2.1451" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  307.149020][   T39] audit: type=1400 audit(1728544384.978:23478): avc:  denied  { ioctl } for  pid=10553 comm="syz.1.1450" path="/dev/raw-gadget" dev="devtmpfs" ino=761 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  307.159774][   T39] audit: type=1400 audit(1728544384.978:23479): avc:  denied  { create } for  pid=10556 comm="syz.2.1451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  307.171360][   T39] audit: type=1400 audit(1728544384.978:23480): avc:  denied  { create } for  pid=10556 comm="syz.2.1451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  307.181322][   T39] audit: type=1400 audit(1728544385.010:23481): avc:  denied  { read } for  pid=10556 comm="syz.2.1451" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  307.188607][   T39] audit: type=1400 audit(1728544385.010:23482): avc:  denied  { read open } for  pid=10556 comm="syz.2.1451" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  307.197199][   T39] audit: type=1400 audit(1728544385.020:23483): avc:  denied  { read } for  pid=4817 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  307.200354][   T63] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  307.348713][   T63] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  307.352383][   T63] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  307.355628][   T63] usb 6-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  307.359051][   T63] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  307.367824][   T63] usb 6-1: config 0 descriptor??
[  307.679153][ T1287] usb 6-1: USB disconnect, device number 19
[  307.806425][ T1378] ieee802154 phy1 wpan1: encryption failed: -22
[  307.953165][ T5353] Bluetooth: hci4: command 0x0405 tx timeout
[  307.961306][T10560] random: crng reseeded on system resumption
[  308.298272][T10565] netlink: 'syz.0.1454': attribute type 5 has an invalid length.
[  308.403248][T10570] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1456'.
[  309.464053][T10581] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1459'.
[  309.470839][T10581] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1459'.
[  309.562383][T10583] ICMPv6: NDISC: Failed to initialize the control socket (err -2)
[  309.615148][T10584] ICMPv6: NDISC: Failed to initialize the control socket (err -2)
[  309.924369][ T5353] Bluetooth: hci4: command 0x0405 tx timeout
[  311.133190][T10631] FAULT_INJECTION: forcing a failure.
[  311.133190][T10631] name failslab, interval 1, probability 0, space 0, times 0
[  311.139210][T10631] CPU: 0 UID: 0 PID: 10631 Comm: syz.1.1476 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0
[  311.142158][T10631] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  311.144919][T10631] Call Trace:
[  311.145806][T10631]  <TASK>
[  311.146585][T10631]  dump_stack_lvl+0x16c/0x1f0
[  311.147847][T10631]  should_fail_ex+0x497/0x5b0
[  311.149123][T10631]  ? fs_reclaim_acquire+0xae/0x160
[  311.150715][T10631]  should_failslab+0xc2/0x120
[  311.152257][T10631]  __kmalloc_node_track_caller_noprof+0xcf/0x430
[  311.154665][T10631]  ? kstrdup_const+0x63/0x80
[  311.156026][T10631]  kstrdup+0x3c/0x70
[  311.157152][T10631]  kstrdup_const+0x63/0x80
[  311.158441][T10631]  alloc_vfsmnt+0xfe/0x6e0
[  311.159711][T10631]  clone_mnt+0x6d/0xf90
[  311.160902][T10631]  copy_tree+0x3a1/0x910
[  311.162221][T10631]  copy_mnt_ns+0x1b5/0xa00
[  311.163600][T10631]  ? trace_kmem_cache_alloc+0x2d/0xe0
[  311.165190][T10631]  ? kmem_cache_alloc_noprof+0x174/0x2f0
[  311.166941][T10631]  ? create_new_namespaces+0x30/0xad0
[  311.168482][T10631]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  311.170040][T10631]  create_new_namespaces+0xd3/0xad0
[  311.171504][T10631]  ? bpf_lsm_capable+0x9/0x10
[  311.173127][T10631]  ? security_capable+0x7e/0x260
[  311.174584][T10631]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  311.176272][T10631]  ksys_unshare+0x45d/0xa40
[  311.177515][T10631]  ? __pfx_ksys_unshare+0x10/0x10
[  311.179040][T10631]  ? ksys_write+0x1ad/0x260
[  311.180376][T10631]  __x64_sys_unshare+0x31/0x40
[  311.181619][T10631]  do_syscall_64+0xcd/0x250
[  311.183034][T10631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.184842][T10631] RIP: 0033:0x7f2d5977dff9
[  311.186072][T10631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  311.191576][T10631] RSP: 002b:00007f2d5a4e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  311.194143][T10631] RAX: ffffffffffffffda RBX: 00007f2d59935f80 RCX: 00007f2d5977dff9
[  311.196446][T10631] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000068060200
[  311.198589][T10631] RBP: 00007f2d5a4e6090 R08: 0000000000000000 R09: 0000000000000000
[  311.200716][T10631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  311.203210][T10631] R13: 0000000000000001 R14: 00007f2d59935f80 R15: 00007ffebf2e0bd8
[  311.205543][T10631]  </TASK>
[  311.850291][   T39] kauditd_printk_skb: 456 callbacks suppressed
[  311.850305][   T39] audit: type=1400 audit(1728544389.912:23940): avc:  denied  { execute } for  pid=10639 comm="syz.2.1478" path=2F6D656D66643A0B656D31C1F8A68D4EC0A377E2CBA2BAE5F497AC232AFF202864656C6574656429 dev="tmpfs" ino=2170 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  311.879060][   T39] audit: type=1400 audit(1728544389.944:23941): avc:  denied  { ioctl } for  pid=10639 comm="syz.2.1478" path="/dev/dri/card1" dev="devtmpfs" ino=636 ioctlcmd=0x64bd scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  311.906283][ T5353] Bluetooth: hci4: command 0x0405 tx timeout
[  311.916362][   T39] audit: type=1400 audit(1728544389.986:23942): avc:  denied  { read write } for  pid=5343 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  311.933305][   T39] audit: type=1400 audit(1728544389.986:23943): avc:  denied  { read write open } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  311.941246][   T39] audit: type=1400 audit(1728544389.986:23944): avc:  denied  { ioctl } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  311.953309][   T39] audit: type=1400 audit(1728544390.017:23945): avc:  denied  { read } for  pid=4817 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  311.963581][   T39] audit: type=1400 audit(1728544390.017:23946): avc:  denied  { search } for  pid=4817 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  311.970434][   T39] audit: type=1400 audit(1728544390.028:23947): avc:  denied  { append } for  pid=4817 comm="syslogd" name="messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  311.977494][   T39] audit: type=1400 audit(1728544390.028:23948): avc:  denied  { append open } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  311.984496][   T39] audit: type=1400 audit(1728544390.028:23949): avc:  denied  { getattr } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  312.626460][T10650] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  312.790423][ T5353] Bluetooth: hci4: unexpected event for opcode 0x0413
[  312.797408][T10655] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1481'.
[  313.309248][T10665] FAULT_INJECTION: forcing a failure.
[  313.309248][T10665] name failslab, interval 1, probability 0, space 0, times 0
[  313.324926][T10665] CPU: 3 UID: 0 PID: 10665 Comm: syz.3.1487 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0
[  313.328890][T10665] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  313.332578][T10665] Call Trace:
[  313.333896][T10665]  <TASK>
[  313.335032][T10665]  dump_stack_lvl+0x16c/0x1f0
[  313.336362][T10665]  should_fail_ex+0x497/0x5b0
[  313.337809][T10665]  ? fs_reclaim_acquire+0xae/0x160
[  313.339171][T10665]  should_failslab+0xc2/0x120
[  313.340480][T10665]  __kmalloc_noprof+0xcb/0x400
[  313.341834][T10665]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  313.343825][T10665]  tomoyo_realpath_from_path+0xb9/0x720
[  313.345744][T10665]  ? tomoyo_path_number_perm+0x232/0x590
[  313.347447][T10665]  tomoyo_path_number_perm+0x245/0x590
[  313.348938][T10665]  ? tomoyo_path_number_perm+0x232/0x590
[  313.350453][T10665]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  313.352316][T10665]  ? trace_lock_acquire+0x14a/0x1d0
[  313.354064][T10665]  ? lock_acquire+0x2f/0xb0
[  313.355675][T10665]  ? __fget_files+0x40/0x3f0
[  313.357331][T10665]  ? __fget_files+0x244/0x3f0
[  313.359070][T10665]  security_file_ioctl+0x9b/0x240
[  313.360797][T10665]  __x64_sys_ioctl+0xbb/0x220
[  313.362381][T10665]  do_syscall_64+0xcd/0x250
[  313.363856][T10665]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.365595][T10665] RIP: 0033:0x7fc0dc77dff9
[  313.367125][T10665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  313.374207][T10665] RSP: 002b:00007fc0dc1ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  313.376960][T10665] RAX: ffffffffffffffda RBX: 00007fc0dc935f80 RCX: 00007fc0dc77dff9
[  313.379709][T10665] RDX: 0000000020000380 RSI: 00000000c0845657 RDI: 0000000000000003
[  313.382445][T10665] RBP: 00007fc0dc1ff090 R08: 0000000000000000 R09: 0000000000000000
[  313.385169][T10665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.387887][T10665] R13: 0000000000000000 R14: 00007fc0dc935f80 R15: 00007ffd03455418
[  313.390677][T10665]  </TASK>
[  313.449323][T10665] ERROR: Out of memory at tomoyo_realpath_from_path.
[  313.922229][T10677] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1488'.
[  314.520219][T10685] xt_TPROXY: Can be used only with -p tcp or -p udp
[  315.781855][T10716] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1500'.
[  316.478083][ T1287] usb 8-1: new high-speed USB device number 29 using dummy_hcd
[  316.634308][ T5353] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  316.637288][ T5353] Bluetooth: hci4: Injecting HCI hardware error event
[  316.640020][ T1287] usb 8-1: Using ep0 maxpacket: 8
[  316.643867][ T4772] Bluetooth: hci4: hardware error 0x00
[  316.648312][   T39] kauditd_printk_skb: 362 callbacks suppressed
[  316.648344][   T39] audit: type=1400 audit(1728544394.941:24312): avc:  denied  { create } for  pid=10728 comm="syz.2.1505" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  316.662989][   T39] audit: type=1400 audit(1728544394.952:24313): avc:  denied  { write } for  pid=10728 comm="syz.2.1505" path="socket:[43253]" dev="sockfs" ino=43253 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  316.687779][   T39] audit: type=1400 audit(1728544394.962:24314): avc:  denied  { ioctl } for  pid=10722 comm="syz.3.1502" path="/dev/raw-gadget" dev="devtmpfs" ino=761 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  316.696390][   T39] audit: type=1400 audit(1728544394.962:24315): avc:  denied  { write } for  pid=10728 comm="syz.2.1505" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  316.718282][   T39] audit: type=1400 audit(1728544394.962:24316): avc:  denied  { ioctl } for  pid=10722 comm="syz.3.1502" path="/dev/raw-gadget" dev="devtmpfs" ino=761 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  316.719084][ T1287] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  316.739804][   T39] audit: type=1400 audit(1728544394.972:24317): avc:  denied  { nlmsg_read } for  pid=10728 comm="syz.2.1505" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  316.744200][ T1287] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  316.748151][   T39] audit: type=1400 audit(1728544394.983:24318): avc:  denied  { ioctl } for  pid=10722 comm="syz.3.1502" path="/dev/raw-gadget" dev="devtmpfs" ino=761 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  316.759624][   T39] audit: type=1400 audit(1728544395.004:24319): avc:  denied  { ioctl } for  pid=10722 comm="syz.3.1502" path="/dev/raw-gadget" dev="devtmpfs" ino=761 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  316.769996][   T39] audit: type=1400 audit(1728544395.014:24320): avc:  denied  { read } for  pid=4817 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  316.771591][ T1287] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  316.777374][   T39] audit: type=1400 audit(1728544395.014:24321): avc:  denied  { search } for  pid=4817 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  316.798975][ T1287] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  316.812017][ T1287] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  316.825429][ T1287] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.833730][T10731] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1505'.
[  316.836756][T10731] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1505'.
[  317.208265][ T1287] usb 8-1: GET_CAPABILITIES returned 0
[  317.210344][ T1287] usbtmc 8-1:16.0: can't read capabilities
[  317.485361][T10723] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  317.520953][T10723] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  317.565635][ T5344] usb 8-1: USB disconnect, device number 29
[  317.926141][    T8] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  318.146946][    T8] usb 5-1: too many configurations: 13, using maximum allowed: 8
[  318.203029][    T8] usb 5-1: config 0 has no interfaces?
[  318.220409][    T8] usb 5-1: config 0 has no interfaces?
[  318.239873][    T8] usb 5-1: config 0 has no interfaces?
[  318.252920][    T8] usb 5-1: config 0 has no interfaces?
[  318.270646][    T8] usb 5-1: config 0 has no interfaces?
[  318.285504][    T8] usb 5-1: config 0 has no interfaces?
[  318.313997][    T8] usb 5-1: config 0 has no interfaces?
[  318.327911][    T8] usb 5-1: config 0 has no interfaces?
[  318.364233][    T8] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  318.366952][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  318.369115][    T8] usb 5-1: Product: syz
[  318.370309][    T8] usb 5-1: Manufacturer: syz
[  318.371596][    T8] usb 5-1: SerialNumber: syz
[  318.394184][    T8] usb 5-1: config 0 descriptor??
[  318.566013][T10757] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1510'.
[  318.574240][  T982] usb 8-1: new high-speed USB device number 30 using dummy_hcd
[  318.612913][ T4772] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  318.716815][  T982] usb 8-1: Using ep0 maxpacket: 8
[  318.816891][  T982] usb 8-1: config 4 has an invalid interface number: 201 but max is 2
[  318.865313][    T8] usb 5-1: USB disconnect, device number 33
[  318.979950][  T982] usb 8-1: config 4 has an invalid interface number: 93 but max is 2
[  318.982727][  T982] usb 8-1: config 4 contains an unexpected descriptor of type 0x2, skipping
[  318.989615][  T982] usb 8-1: config 4 has an invalid interface number: 253 but max is 2
[  318.997451][  T982] usb 8-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  319.002361][  T982] usb 8-1: config 4 has no interface number 0
[  319.007803][  T982] usb 8-1: config 4 has no interface number 1
[  319.010108][  T982] usb 8-1: config 4 has no interface number 2
[  319.016472][  T982] usb 8-1: config 4 interface 201 altsetting 249 bulk endpoint 0xE has invalid maxpacket 1024
[  319.022280][  T982] usb 8-1: config 4 interface 201 altsetting 249 bulk endpoint 0x3 has invalid maxpacket 1023
[  319.030887][  T982] usb 8-1: config 4 interface 201 altsetting 249 bulk endpoint 0x8 has invalid maxpacket 8
[  319.033973][  T982] usb 8-1: config 4 interface 201 altsetting 249 has a duplicate endpoint with address 0x3, skipping
[  319.040288][  T982] usb 8-1: config 4 interface 201 altsetting 249 has a duplicate endpoint with address 0x9, skipping
[  319.048249][  T982] usb 8-1: config 4 interface 201 altsetting 249 endpoint 0xD has invalid maxpacket 1023, setting to 64
[  319.055770][  T982] usb 8-1: config 4 interface 201 altsetting 249 endpoint 0xA has invalid maxpacket 1023, setting to 64
[  319.059955][  T982] usb 8-1: config 4 interface 201 altsetting 249 has an endpoint descriptor with address 0xA3, changing to 0x83
[  319.073701][  T982] usb 8-1: config 4 interface 201 altsetting 249 endpoint 0x83 has an invalid bInterval 104, changing to 7
[  319.078957][  T982] usb 8-1: config 4 interface 201 altsetting 249 has an invalid descriptor for endpoint zero, skipping
[  319.082751][  T982] usb 8-1: config 4 interface 201 altsetting 249 has 13 endpoint descriptors, different from the interface descriptor's value: 12
[  319.086898][  T982] usb 8-1: config 4 interface 93 altsetting 3 has a duplicate endpoint with address 0xC, skipping
[  319.097864][  T982] usb 8-1: config 4 interface 93 altsetting 3 has a duplicate endpoint with address 0x85, skipping
[  319.205317][  T982] usb 8-1: config 4 interface 93 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  319.235104][  T982] usb 8-1: config 4 interface 93 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  319.239685][  T982] usb 8-1: config 4 interface 93 altsetting 3 has a duplicate endpoint with address 0xA, skipping
[  319.247499][  T982] usb 8-1: config 4 interface 93 altsetting 3 has a duplicate endpoint with address 0x1, skipping
[  319.260544][  T982] usb 8-1: config 4 interface 93 altsetting 3 has a duplicate endpoint with address 0xE, skipping
[  319.269510][  T982] usb 8-1: config 4 interface 93 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  319.285409][  T982] usb 8-1: config 4 interface 93 altsetting 3 has a duplicate endpoint with address 0x8, skipping
[  319.288941][  T982] usb 8-1: config 4 interface 93 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  319.293155][  T982] usb 8-1: config 4 interface 93 altsetting 3 endpoint 0x7 has invalid maxpacket 512, setting to 64
[  319.299883][  T982] usb 8-1: config 4 interface 93 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  319.304149][  T982] usb 8-1: config 4 interface 93 altsetting 3 has a duplicate endpoint with address 0x1, skipping
[  319.305699][T10762] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  319.313620][  T982] usb 8-1: config 4 interface 93 altsetting 3 has a duplicate endpoint with address 0xE, skipping
[  319.317039][  T982] usb 8-1: config 4 interface 93 altsetting 3 bulk endpoint 0xB has invalid maxpacket 64
[  319.320985][  T982] usb 8-1: config 4 interface 93 altsetting 3 has a duplicate endpoint with address 0x9, skipping
[  319.325686][  T982] usb 8-1: config 4 interface 93 altsetting 3 has 17 endpoint descriptors, different from the interface descriptor's value: 16
[  319.331333][  T982] usb 8-1: config 4 interface 253 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 13
[  319.342241][  T982] usb 8-1: config 4 interface 201 has no altsetting 0
[  319.348405][  T982] usb 8-1: config 4 interface 93 has no altsetting 0
[  319.352885][  T982] usb 8-1: config 4 interface 253 has no altsetting 0
[  319.404348][  T982] usb 8-1: New USB device found, idVendor=10b8, idProduct=1ebe, bcdDevice=ee.27
[  319.406990][  T982] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  319.410212][  T982] usb 8-1: Product: Ч
[  319.413816][  T982] usb 8-1: Manufacturer: ̘䇲婒騴斶Ḏ䊡⻣뭗푑葎⣳ࠒ®ᕯ�ᄲ뚟ᵟ칿鴖�꠰盉讹뱻볪㜃�䀻쯦ୋ믛磙鳼ꫠ�좌�
[  319.426572][  T982] usb 8-1: SerialNumber: à°‡
[  319.487928][T10755] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  319.493402][T10755] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  319.499216][T10755] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  319.808104][T10752] ICMPv6: NDISC: Failed to initialize the control socket (err -2)
[  321.462109][   T39] kauditd_printk_skb: 376 callbacks suppressed
[  321.462121][   T39] audit: type=1400 audit(1728544400.001:24699): avc:  denied  { create } for  pid=10786 comm="syz.1.1518" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  321.482295][   T39] audit: type=1326 audit(1728544400.022:24700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10786 comm="syz.1.1518" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d5977dff9 code=0x7fc00000
[  321.488109][   T39] audit: type=1400 audit(1728544400.022:24701): avc:  denied  { read } for  pid=4817 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  321.524809][  T982] dvb-usb: found a 'DiBcom STK7070PD reference design' in cold state, will try to load a firmware
[  321.529098][   T39] audit: type=1400 audit(1728544400.022:24702): avc:  denied  { search } for  pid=4817 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  321.547980][  T982] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[  321.557955][   T39] audit: type=1400 audit(1728544400.022:24703): avc:  denied  { append } for  pid=4817 comm="syslogd" name="messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  321.575237][  T982] dib0700: firmware download failed at 7 with -8
[  321.583922][   T39] audit: type=1400 audit(1728544400.022:24704): avc:  denied  { append open } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  321.611857][   T39] audit: type=1400 audit(1728544400.022:24705): avc:  denied  { getattr } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  321.629926][   T39] audit: type=1400 audit(1728544400.033:24706): avc:  denied  { read } for  pid=10778 comm="syz.0.1517" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  321.668859][   T39] audit: type=1400 audit(1728544399.991:24698): avc:  denied  { read write } for  pid=5343 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  321.682518][  T982] dvb-usb: found a 'DiBcom STK7070PD reference design' in cold state, will try to load a firmware
[  321.701415][   T39] audit: type=1400 audit(1728544400.033:24707): avc:  denied  { read write open } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  321.791089][  T982] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[  321.794077][  T982] dib0700: firmware download failed at 7 with -8
[  321.807287][  T982] dvb-usb: found a 'DiBcom STK7070PD reference design' in cold state, will try to load a firmware
[  321.820235][  T982] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[  321.827181][  T982] dib0700: firmware download failed at 7 with -8
[  321.834929][  T982] usb 8-1: USB disconnect, device number 30
[  323.291191][T10835] netlink: 'syz.0.1534': attribute type 10 has an invalid length.
[  323.315471][T10835] batman_adv: batadv0: Adding interface: team0
[  323.317454][T10835] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  323.333272][T10835] netlink: 'syz.0.1534': attribute type 10 has an invalid length.
[  323.335570][T10835] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1534'.
[  323.338706][T10835] team0: entered promiscuous mode
[  323.340238][T10835] team_slave_0: entered promiscuous mode
[  323.342378][T10835] team_slave_1: entered promiscuous mode
[  323.346133][T10835] 8021q: adding VLAN 0 to HW filter on device team0
[  323.350048][T10835] batman_adv: batadv0: Interface activated: team0
[  323.353096][T10835] batman_adv: batadv0: Interface deactivated: team0
[  323.355102][T10835] batman_adv: batadv0: Removing interface: team0
[  323.379189][T10835] bridge0: port 3(team0) entered blocking state
[  323.381839][T10835] bridge0: port 3(team0) entered disabled state
[  323.384773][T10835] team0: entered allmulticast mode
[  323.386515][T10835] team_slave_0: entered allmulticast mode
[  323.388166][T10835] team_slave_1: entered allmulticast mode
[  323.403493][T10835] bridge0: port 3(team0) entered blocking state
[  323.405307][T10835] bridge0: port 3(team0) entered forwarding state
[  324.604760][T10855] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  324.608439][T10855] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  325.090104][T10869] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1543'.
[  325.094061][T10869] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1543'.
[  326.278227][   T39] kauditd_printk_skb: 463 callbacks suppressed
[  326.278294][   T39] audit: type=1400 audit(1728544405.051:25171): avc:  denied  { execute } for  pid=10878 comm="syz.3.1546" path="/387/cpu.stat" dev="tmpfs" ino=2101 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  326.299450][   T39] audit: type=1400 audit(1728544405.082:25172): avc:  denied  { create } for  pid=10878 comm="syz.3.1546" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  326.318149][   T39] audit: type=1400 audit(1728544405.082:25173): avc:  denied  { read } for  pid=4817 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  326.335742][   T39] audit: type=1400 audit(1728544405.082:25174): avc:  denied  { search } for  pid=4817 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  326.345578][   T39] audit: type=1400 audit(1728544405.082:25175): avc:  denied  { append } for  pid=4817 comm="syslogd" name="messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  326.363878][   T39] audit: type=1400 audit(1728544405.082:25176): avc:  denied  { append open } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  326.385221][   T39] audit: type=1400 audit(1728544405.082:25177): avc:  denied  { getattr } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  326.392992][   T39] audit: type=1400 audit(1728544405.093:25178): avc:  denied  { create } for  pid=10878 comm="syz.3.1546" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  326.432136][   T39] audit: type=1400 audit(1728544405.103:25179): avc:  denied  { write } for  pid=10878 comm="syz.3.1546" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  326.440161][   T39] audit: type=1400 audit(1728544405.103:25180): avc:  denied  { write } for  pid=10878 comm="syz.3.1546" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  326.520147][T10886] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1550'.
[  326.526056][T10886] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1550'.
[  326.549669][T10889] 9pnet_virtio: no channels available for device 
[  326.997133][T10899] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1555'.
[  327.000940][T10899] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1555'.
[  327.270652][   T63] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  327.270832][   T25] usb 7-1: new high-speed USB device number 27 using dummy_hcd
[  327.423837][   T63] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  327.429901][   T63] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  327.436480][   T63] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  327.443695][   T25] usb 7-1: too many configurations: 13, using maximum allowed: 8
[  327.447318][   T63] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  327.454576][   T25] usb 7-1: config 0 has no interfaces?
[  327.455525][   T63] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  327.468544][   T63] usb 5-1: config 0 descriptor??
[  327.469276][   T25] usb 7-1: config 0 has no interfaces?
[  327.492495][   T25] usb 7-1: config 0 has no interfaces?
[  327.507339][   T25] usb 7-1: config 0 has no interfaces?
[  327.522460][   T25] usb 7-1: config 0 has no interfaces?
[  327.542116][   T25] usb 7-1: config 0 has no interfaces?
[  327.555138][   T25] usb 7-1: config 0 has no interfaces?
[  327.575183][   T25] usb 7-1: config 0 has no interfaces?
[  327.603270][   T25] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  327.607087][   T25] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  327.610383][   T25] usb 7-1: Product: syz
[  327.611951][   T25] usb 7-1: Manufacturer: syz
[  327.623360][   T25] usb 7-1: SerialNumber: syz
[  327.630191][   T25] usb 7-1: config 0 descriptor??
[  327.833078][   T56] usb 7-1: USB disconnect, device number 27
[  327.901001][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.904528][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.907644][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.911014][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.913873][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.916133][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.918481][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.921367][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.924395][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.927353][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.930318][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.933001][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.935680][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.938386][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.940375][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.942605][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.945181][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.947388][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.949370][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.951276][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.953239][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.955931][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.958793][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.961552][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.964158][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.966452][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.968397][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.970904][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.973757][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.977258][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.980022][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.982639][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.984954][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.987014][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.989094][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.991273][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.993583][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.996701][   T63] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  327.999043][   T63] plantronics 0003:047F:FFFF.0011: No inputs registered, leaving
[  328.024906][   T63] plantronics 0003:047F:FFFF.0011: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  328.148085][   T56] usb 5-1: USB disconnect, device number 34
[  329.572170][T10945] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1568'.
[  329.576251][T10945] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1568'.
[  329.589027][T10946] netlink: 'syz.3.1569': attribute type 62 has an invalid length.
[  329.780440][T10955] tmpfs: Unknown parameter 'êe¼~·¼/_block_hardlimit'
[  330.064483][T10961] ICMPv6: NDISC: Failed to initialize the control socket (err -2)
[  331.079908][   T39] kauditd_printk_skb: 542 callbacks suppressed
[  331.079920][   T39] audit: type=1400 audit(1728544410.100:25723): avc:  denied  { ioctl } for  pid=10977 comm="syz.3.1578" path="socket:[41963]" dev="sockfs" ino=41963 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  331.094459][   T39] audit: type=1400 audit(1728544410.111:25724): avc:  denied  { read } for  pid=4817 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  331.108268][   T39] audit: type=1400 audit(1728544410.111:25725): avc:  denied  { search } for  pid=4817 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  331.114512][   T39] audit: type=1400 audit(1728544410.111:25726): avc:  denied  { append } for  pid=4817 comm="syslogd" name="messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  331.121054][   T39] audit: type=1400 audit(1728544410.111:25727): avc:  denied  { append open } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  331.127039][   T39] audit: type=1400 audit(1728544410.111:25728): avc:  denied  { getattr } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  331.133558][   T39] audit: type=1400 audit(1728544410.121:25729): avc:  denied  { create } for  pid=10984 comm="syz.2.1580" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  331.146102][T10979] netlink: 92 bytes leftover after parsing attributes in process `syz.3.1578'.
[  331.151052][   T39] audit: type=1400 audit(1728544410.174:25730): avc:  denied  { create } for  pid=10984 comm="syz.2.1580" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  331.163135][   T39] audit: type=1400 audit(1728544410.184:25731): avc:  denied  { getopt } for  pid=10984 comm="syz.2.1580" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  331.174515][   T39] audit: type=1400 audit(1728544410.195:25732): avc:  denied  { create } for  pid=10984 comm="syz.2.1580" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  331.219314][T10985] overlayfs: workdir and upperdir must be separate subtrees
[  331.324599][T10988] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  331.327430][T10988] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  332.925931][   T70] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  332.927976][   T70] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  333.014542][T11020] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  333.499249][T11031] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1594'.
[  333.584359][T11034] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=123 sclass=netlink_route_socket pid=11034 comm=syz.1.1596
[  333.688118][T11034] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1596'.
[  333.873491][T11042] netlink: 'syz.0.1598': attribute type 1 has an invalid length.
[  334.595738][T11054] syz.2.1601: attempt to access beyond end of device
[  334.595738][T11054] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  334.633036][T11055] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1602'.
[  334.700806][ T1418] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  334.872280][ T1418] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  334.876188][ T1418] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  334.890590][ T1418] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  334.907710][ T1418] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  334.928904][ T1418] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  334.937855][ T1418] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  334.944497][ T1418] usb 6-1: Manufacturer: syz
[  334.986460][ T1418] usb 6-1: config 0 descriptor??
[  335.338176][T11067] netlink: 'syz.0.1604': attribute type 10 has an invalid length.
[  335.381353][T11067] team0: Device veth1_vlan failed to register rx_handler
[  335.645807][T11073] ICMPv6: NDISC: Failed to initialize the control socket (err -2)
[  335.847051][   T39] kauditd_printk_skb: 503 callbacks suppressed
[  335.847145][   T39] audit: type=1400 audit(1728544415.108:26236): avc:  denied  { prog_load } for  pid=11072 comm="syz.3.1606" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  335.876965][T11073] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11073 comm=syz.3.1606
[  335.895234][   T39] audit: type=1400 audit(1728544415.108:26237): avc:  denied  { bpf } for  pid=11072 comm="syz.3.1606" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  335.904494][   T39] audit: type=1400 audit(1728544415.118:26238): avc:  denied  { execmem } for  pid=11075 comm="syz.2.1607" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  335.939428][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x7
[  335.941783][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  335.943899][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x2
[  335.945877][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  335.947833][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  335.963674][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  335.965622][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  335.977093][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  335.979097][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  335.981077][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  335.983032][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  335.994172][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  335.999760][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.002212][   T39] audit: type=1400 audit(1728544415.139:26239): avc:  denied  { create } for  pid=11072 comm="syz.3.1606" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  336.007006][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.009084][   T39] audit: type=1400 audit(1728544415.160:26240): avc:  denied  { prog_load } for  pid=11072 comm="syz.3.1606" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  336.010104][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.010120][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.010131][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.010142][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.010154][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.010165][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.010176][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.010187][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.010198][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.010212][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.016020][   T39] audit: type=1400 audit(1728544415.160:26241): avc:  denied  { read } for  pid=4817 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  336.029974][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.031251][   T39] audit: type=1400 audit(1728544415.160:26242): avc:  denied  { search } for  pid=4817 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  336.032074][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.032095][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.032107][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.032119][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.032130][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.032142][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.034686][   T39] audit: type=1400 audit(1728544415.160:26243): avc:  denied  { append } for  pid=4817 comm="syslogd" name="messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  336.042868][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.075743][   T39] audit: type=1400 audit(1728544415.160:26244): avc:  denied  { append open } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  336.085093][   T39] audit: type=1400 audit(1728544415.160:26245): avc:  denied  { getattr } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  336.337124][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.340004][   T63] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  336.380670][   T63] hid-generic 0000:0000:0000.0012: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  336.488078][T11091] ICMPv6: NDISC: Failed to initialize the control socket (err -2)
[  336.550030][T11093] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0
[  336.825396][ T1418] usbhid 6-1:0.0: can't add hid device: -71
[  336.827093][ T1418] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  336.836895][ T1418] usb 6-1: USB disconnect, device number 20
[  337.219280][T11109] kvm: pic: non byte write
[  337.227563][T11109] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3832186367 (7664372734 ns) > initial count (4194304 ns). Using initial count to start timer.
[  337.305424][T11116] FAULT_INJECTION: forcing a failure.
[  337.305424][T11116] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  337.311405][T11116] CPU: 3 UID: 0 PID: 11116 Comm: syz.3.1619 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0
[  337.314107][T11116] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  337.316815][T11116] Call Trace:
[  337.317710][T11116]  <TASK>
[  337.318483][T11116]  dump_stack_lvl+0x16c/0x1f0
[  337.319724][T11116]  should_fail_ex+0x497/0x5b0
[  337.321004][T11116]  strncpy_from_user+0x3b/0x2a0
[  337.322643][T11116]  getname_flags.part.0+0x8f/0x550
[  337.323957][T11116]  getname_flags+0x93/0xf0
[  337.325144][T11116]  user_path_at+0x24/0x60
[  337.326272][T11116]  __do_sys_move_mount+0x284/0xe40
[  337.327663][T11116]  ? fput+0x30/0x390
[  337.328856][T11116]  ? __pfx___do_sys_move_mount+0x10/0x10
[  337.330553][T11116]  ? ksys_write+0x1ad/0x260
[  337.331827][T11116]  ? __pfx_ksys_write+0x10/0x10
[  337.333159][T11116]  do_syscall_64+0xcd/0x250
[  337.334402][T11116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.336022][T11116] RIP: 0033:0x7fc0dc77dff9
[  337.337235][T11116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  337.342212][T11116] RSP: 002b:00007fc0dc1ff038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ad
[  337.344507][T11116] RAX: ffffffffffffffda RBX: 00007fc0dc935f80 RCX: 00007fc0dc77dff9
[  337.346607][T11116] RDX: 0000000000000003 RSI: 0000000020000000 RDI: 0000000000000003
[  337.348677][T11116] RBP: 00007fc0dc1ff090 R08: 0000000000000137 R09: 0000000000000000
[  337.350771][T11116] R10: 0000000020000100 R11: 0000000000000246 R12: 0000000000000002
[  337.352912][T11116] R13: 0000000000000000 R14: 00007fc0dc935f80 R15: 00007ffd03455418
[  337.355054][T11116]  </TASK>
[  337.541788][T11121] veth9: entered promiscuous mode
[  338.850138][T11153] netlink: 'syz.0.1629': attribute type 3 has an invalid length.
[  340.145917][T11163] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1633'.
[  340.678582][   T39] kauditd_printk_skb: 956 callbacks suppressed
[  340.678601][   T39] audit: type=1400 audit(1728544420.178:26821): avc:  denied  { read write } for  pid=5343 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  340.689518][   T39] audit: type=1400 audit(1728544420.178:26822): avc:  denied  { read write open } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  340.706228][   T39] audit: type=1400 audit(1728544420.178:26823): avc:  denied  { ioctl } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  340.715058][   T39] audit: type=1400 audit(1728544420.199:26824): avc:  denied  { read } for  pid=11167 comm="syz.1.1634" dev="nsfs" ino=4026533319 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  340.731147][   T39] audit: type=1400 audit(1728544420.199:26825): avc:  denied  { read open } for  pid=11167 comm="syz.1.1634" path="net:[4026533319]" dev="nsfs" ino=4026533319 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  340.738775][   T39] audit: type=1400 audit(1728544420.210:26826): avc:  denied  { create } for  pid=11167 comm="syz.1.1634" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  340.754338][   T39] audit: type=1400 audit(1728544420.210:26827): avc:  denied  { read } for  pid=4817 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  340.768634][   T39] audit: type=1400 audit(1728544420.210:26828): avc:  denied  { search } for  pid=4817 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  340.775989][   T39] audit: type=1400 audit(1728544420.210:26829): avc:  denied  { append } for  pid=4817 comm="syslogd" name="messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  340.783621][   T39] audit: type=1400 audit(1728544420.210:26830): avc:  denied  { append open } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  341.095943][T11175] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1635'.
[  343.130513][ T1418] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[  343.391357][ T1418] usb 7-1: too many configurations: 13, using maximum allowed: 8
[  343.401048][ T1418] usb 7-1: config 0 has no interfaces?
[  343.408326][ T1418] usb 7-1: config 0 has no interfaces?
[  343.419047][ T1418] usb 7-1: config 0 has no interfaces?
[  343.459440][ T1418] usb 7-1: config 0 has no interfaces?
[  343.591937][ T1418] usb 7-1: config 0 has no interfaces?
[  343.675015][ T1418] usb 7-1: config 0 has no interfaces?
[  343.702396][ T1418] usb 7-1: config 0 has no interfaces?
[  343.731055][ T1418] usb 7-1: config 0 has no interfaces?
[  343.763827][ T1418] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  343.767130][ T1418] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  343.771411][ T1418] usb 7-1: Product: syz
[  343.773096][ T1418] usb 7-1: Manufacturer: syz
[  343.774955][ T1418] usb 7-1: SerialNumber: syz
[  343.785313][ T1418] usb 7-1: config 0 descriptor??
[  343.846190][T11214] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  343.850035][T11214] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  344.001517][   T25] usb 7-1: USB disconnect, device number 28
[  344.282999][T11219] FAULT_INJECTION: forcing a failure.
[  344.282999][T11219] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  344.292710][T11219] CPU: 0 UID: 0 PID: 11219 Comm: syz.3.1646 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0
[  344.295746][T11219] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  344.298783][T11219] Call Trace:
[  344.299769][T11219]  <TASK>
[  344.300632][T11219]  dump_stack_lvl+0x16c/0x1f0
[  344.302103][T11219]  should_fail_ex+0x497/0x5b0
[  344.303438][T11219]  _copy_to_user+0x30/0xc0
[  344.304681][T11219]  simple_read_from_buffer+0xd0/0x160
[  344.306151][T11219]  proc_fail_nth_read+0x198/0x270
[  344.307895][T11219]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  344.309485][T11219]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  344.311787][T11219]  vfs_read+0x1ce/0xbd0
[  344.312997][T11219]  ? __fget_files+0x23a/0x3f0
[  344.314829][T11219]  ? fdget_pos+0x24c/0x360
[  344.316715][T11219]  ? __pfx_lock_release+0x10/0x10
[  344.318964][T11219]  ? trace_lock_acquire+0x14a/0x1d0
[  344.321367][T11219]  ? __pfx_vfs_read+0x10/0x10
[  344.323104][T11219]  ? __pfx___mutex_lock+0x10/0x10
[  344.324821][T11219]  ? __fget_files+0x244/0x3f0
[  344.326491][T11219]  ksys_read+0x12f/0x260
[  344.327638][T11219]  ? __pfx_ksys_read+0x10/0x10
[  344.328831][T11219]  do_syscall_64+0xcd/0x250
[  344.330025][T11219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.331525][T11219] RIP: 0033:0x7fc0dc77ca3c
[  344.332799][T11219] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  344.338582][T11219] RSP: 002b:00007fc0dc1de030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  344.341579][T11219] RAX: ffffffffffffffda RBX: 00007fc0dc936058 RCX: 00007fc0dc77ca3c
[  344.344370][T11219] RDX: 000000000000000f RSI: 00007fc0dc1de0a0 RDI: 0000000000000007
[  344.347141][T11219] RBP: 00007fc0dc1de090 R08: 0000000000000000 R09: 0000000000000000
[  344.349933][T11219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  344.352734][T11219] R13: 0000000000000000 R14: 00007fc0dc936058 R15: 00007ffd03455418
[  344.355650][T11219]  </TASK>
[  344.606986][T11229] netlink: 'syz.3.1648': attribute type 10 has an invalid length.
[  344.609380][T11229] mac80211_hwsim hwsim3 wlan1: left allmulticast mode
[  344.627077][T11229] mac80211_hwsim hwsim3 wlan1: entered promiscuous mode
[  344.629879][T11229] team0: Port device wlan1 added
[  345.350790][T11239] gfs2: not a GFS2 filesystem
[  345.449164][   T39] kauditd_printk_skb: 360 callbacks suppressed
[  345.449208][   T39] audit: type=1400 audit(1728544425.186:27191): avc:  denied  { create } for  pid=11241 comm="syz.2.1652" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  345.471616][   T39] audit: type=1400 audit(1728544425.186:27192): avc:  denied  { create } for  pid=11241 comm="syz.2.1652" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  345.488685][   T39] audit: type=1400 audit(1728544425.186:27193): avc:  denied  { write } for  pid=11241 comm="syz.2.1652" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  345.500488][   T39] audit: type=1400 audit(1728544425.196:27194): avc:  denied  { read } for  pid=11241 comm="syz.2.1652" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  345.512190][   T39] audit: type=1400 audit(1728544425.196:27195): avc:  denied  { read } for  pid=11241 comm="syz.2.1652" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  345.518412][   T39] audit: type=1400 audit(1728544425.217:27196): avc:  denied  { write } for  pid=11241 comm="syz.2.1652" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  345.536272][   T39] audit: type=1400 audit(1728544425.228:27197): avc:  denied  { read } for  pid=11241 comm="syz.2.1652" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  345.551710][   T39] audit: type=1400 audit(1728544425.228:27198): avc:  denied  { read open } for  pid=11241 comm="syz.2.1652" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  345.558027][   T39] audit: type=1400 audit(1728544425.270:27199): avc:  denied  { create } for  pid=11241 comm="syz.2.1652" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  345.577315][   T39] audit: type=1400 audit(1728544425.301:27200): avc:  denied  { create } for  pid=11243 comm="syz.3.1653" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  346.109569][T11247] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=11247 comm=syz.2.1652
[  346.917829][T11262] netlink: 'syz.3.1658': attribute type 3 has an invalid length.
[  347.741168][T11287] ipt_rpfilter: unknown options
[  347.834731][T11291] EXT4-fs (sda1): resizing filesystem from 262144 to 2 blocks
[  347.838944][T11291] EXT4-fs warning (device sda1): ext4_resize_fs:2042: can't shrink FS - resize aborted
[  347.992443][T11293] ICMPv6: NDISC: Failed to initialize the control socket (err -2)
[  349.388326][T11332] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1674'.
[  350.252601][   T39] kauditd_printk_skb: 441 callbacks suppressed
[  350.252623][   T39] audit: type=1400 audit(1728544430.225:27642): avc:  denied  { ioctl } for  pid=11335 comm="syz.1.1679" path="/dev/raw-gadget" dev="devtmpfs" ino=761 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  350.268597][   T39] audit: type=1400 audit(1728544430.246:27643): avc:  denied  { read } for  pid=4817 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  350.274572][   T25] usb 8-1: new high-speed USB device number 31 using dummy_hcd
[  350.284796][   T39] audit: type=1400 audit(1728544430.246:27644): avc:  denied  { search } for  pid=4817 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  350.293518][   T39] audit: type=1400 audit(1728544430.246:27645): avc:  denied  { append } for  pid=4817 comm="syslogd" name="messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  350.303564][   T39] audit: type=1400 audit(1728544430.246:27646): avc:  denied  { append open } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  350.304059][  T982] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  350.315096][   T39] audit: type=1400 audit(1728544430.246:27647): avc:  denied  { getattr } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  350.324475][   T39] audit: type=1400 audit(1728544430.256:27648): avc:  denied  { ioctl } for  pid=11336 comm="syz.3.1680" path="/dev/raw-gadget" dev="devtmpfs" ino=761 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  350.336130][   T39] audit: type=1400 audit(1728544430.256:27649): avc:  denied  { ioctl } for  pid=11336 comm="syz.3.1680" path="/dev/raw-gadget" dev="devtmpfs" ino=761 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  350.351194][   T39] audit: type=1400 audit(1728544430.267:27650): avc:  denied  { ioctl } for  pid=11336 comm="syz.3.1680" path="/dev/raw-gadget" dev="devtmpfs" ino=761 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  350.366622][   T39] audit: type=1400 audit(1728544430.330:27651): avc:  denied  { prog_load } for  pid=11339 comm="syz.0.1681" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  350.460708][   T25] usb 8-1: too many configurations: 13, using maximum allowed: 8
[  350.475319][   T25] usb 8-1: config 0 has no interfaces?
[  350.503510][   T25] usb 8-1: config 0 has no interfaces?
[  350.525371][   T25] usb 8-1: config 0 has no interfaces?
[  350.537420][   T25] usb 8-1: config 0 has no interfaces?
[  350.548375][   T25] usb 8-1: config 0 has no interfaces?
[  350.554700][   T25] usb 8-1: config 0 has no interfaces?
[  350.558942][   T25] usb 8-1: config 0 has no interfaces?
[  350.564354][   T25] usb 8-1: config 0 has no interfaces?
[  350.575937][   T25] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  350.578571][   T25] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  350.582931][   T25] usb 8-1: Product: syz
[  350.582930][  T982] usb 6-1: too many configurations: 13, using maximum allowed: 8
[  350.587460][  T982] usb 6-1: config 0 has no interfaces?
[  350.588158][   T25] usb 8-1: Manufacturer: syz
[  350.590994][   T25] usb 8-1: SerialNumber: syz
[  350.597242][   T25] usb 8-1: config 0 descriptor??
[  350.597388][  T982] usb 6-1: config 0 has no interfaces?
[  350.611903][  T982] usb 6-1: config 0 has no interfaces?
[  350.620160][  T982] usb 6-1: config 0 has no interfaces?
[  350.626114][  T982] usb 6-1: config 0 has no interfaces?
[  350.633735][  T982] usb 6-1: config 0 has no interfaces?
[  350.641416][  T982] usb 6-1: config 0 has no interfaces?
[  350.649666][  T982] usb 6-1: config 0 has no interfaces?
[  350.662333][  T982] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  350.665000][  T982] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  350.667229][  T982] usb 6-1: Product: syz
[  350.668377][  T982] usb 6-1: Manufacturer: syz
[  350.669651][  T982] usb 6-1: SerialNumber: syz
[  350.675845][  T982] usb 6-1: config 0 descriptor??
[  350.835829][   T63] usb 8-1: USB disconnect, device number 31
[  350.880650][   T25] usb 6-1: USB disconnect, device number 21
[  351.448304][T11346] binder: BINDER_SET_CONTEXT_MGR already set
[  351.450452][T11346] binder: 11345:11346 ioctl 4018620d 20000100 returned -16
[  351.522791][T11349] binder: BINDER_SET_CONTEXT_MGR already set
[  351.525133][T11349] binder: 11345:11349 ioctl 4018620d 200001c0 returned -16
[  352.377265][T11371] serio: Serial port ptm0
[  353.443086][T11386] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2927474123 (5854948246 ns) > initial count (1287066782 ns). Using initial count to start timer.
[  355.128567][   T39] kauditd_printk_skb: 419 callbacks suppressed
[  355.128588][   T39] audit: type=1400 audit(1728544435.348:28071): avc:  denied  { read write } for  pid=5343 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  355.152234][   T39] audit: type=1400 audit(1728544435.348:28072): avc:  denied  { read write open } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  355.167475][   T39] audit: type=1400 audit(1728544435.348:28073): avc:  denied  { ioctl } for  pid=5343 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  355.181148][   T39] audit: type=1400 audit(1728544435.369:28074): avc:  denied  { read write } for  pid=5338 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  355.189898][   T39] audit: type=1400 audit(1728544435.369:28075): avc:  denied  { read } for  pid=4817 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  355.206743][   T39] audit: type=1400 audit(1728544435.369:28076): avc:  denied  { read write open } for  pid=5338 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  355.229780][   T39] audit: type=1400 audit(1728544435.369:28077): avc:  denied  { ioctl } for  pid=5338 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  355.243190][   T39] audit: type=1400 audit(1728544435.369:28078): avc:  denied  { search } for  pid=4817 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  355.266536][   T39] audit: type=1400 audit(1728544435.369:28079): avc:  denied  { append } for  pid=4817 comm="syslogd" name="messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  355.275237][   T39] audit: type=1400 audit(1728544435.390:28080): avc:  denied  { append open } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  357.270868][T11457] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1713'.
[  357.487989][T11466] 9pnet_fd: Insufficient options for proto=fd
[  358.661165][T11478] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1719'.
[  359.045852][T11492] batadv_slave_1: entered promiscuous mode
[  359.768384][T11490] batadv_slave_1: left promiscuous mode
[  359.897722][   T39] kauditd_printk_skb: 764 callbacks suppressed
[  359.897734][   T39] audit: type=1400 audit(1728544440.355:28774): avc:  denied  { ioctl } for  pid=11512 comm="syz.2.1725" path="/dev/fb1" dev="devtmpfs" ino=640 ioctlcmd=0x4601 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  359.914720][   T39] audit: type=1400 audit(1728544440.366:28775): avc:  denied  { search } for  pid=11507 comm="rm" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  359.928570][   T39] audit: type=1400 audit(1728544440.366:28776): avc:  denied  { search } for  pid=11507 comm="rm" name="dhcpcd" dev="tmpfs" ino=1477 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  359.949039][   T39] audit: type=1400 audit(1728544440.366:28777): avc:  denied  { search } for  pid=11507 comm="rm" name="hook-state" dev="tmpfs" ino=1481 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  359.961116][   T39] audit: type=1400 audit(1728544440.408:28778): avc:  denied  { read } for  pid=11512 comm="syz.2.1725" dev="nsfs" ino=4026533482 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  359.977642][   T39] audit: type=1400 audit(1728544440.408:28779): avc:  denied  { read open } for  pid=11512 comm="syz.2.1725" path="net:[4026533482]" dev="nsfs" ino=4026533482 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  360.001919][   T39] audit: type=1400 audit(1728544440.408:28780): avc:  denied  { create } for  pid=11512 comm="syz.2.1725" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  360.008508][   T39] audit: type=1400 audit(1728544440.408:28781): avc:  denied  { getopt } for  pid=11512 comm="syz.2.1725" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  360.017390][   T39] audit: type=1400 audit(1728544440.429:28782): avc:  denied  { create } for  pid=11514 comm="syz.1.1727" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  360.030084][   T39] audit: type=1400 audit(1728544440.439:28783): avc:  denied  { read write } for  pid=11515 comm="syz.0.1726" name="vhost-vsock" dev="devtmpfs" ino=1115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  361.973129][T11554] bridge_slave_0: default FDB implementation only supports local addresses
[  362.042828][T11556] fuse: Unknown parameter 'group_i00000000000000000000'
[  362.403217][T11566] 
[  362.404046][T11566] ======================================================
[  362.406027][T11566] WARNING: possible circular locking dependency detected
[  362.408038][T11566] 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 Not tainted
[  362.411490][T11566] ------------------------------------------------------
[  362.414192][T11566] syz.1.1735/11566 is trying to acquire lock:
[  362.415833][T11566] ffff8880336f9088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x27b/0x500
[  362.418428][T11566] 
[  362.418428][T11566] but task is already holding lock:
[  362.420436][T11566] ffff888027fa3868 (&pipe->mutex){+.+.}-{3:3}, at: pipe_lock+0x64/0x80
[  362.422632][T11566] 
[  362.422632][T11566] which lock already depends on the new lock.
[  362.422632][T11566] 
[  362.425351][T11566] 
[  362.425351][T11566] the existing dependency chain (in reverse order) is:
[  362.427702][T11566] 
[  362.427702][T11566] -> #3 (&pipe->mutex){+.+.}-{3:3}:
[  362.429720][T11566]        __mutex_lock+0x175/0x9c0
[  362.431193][T11566]        pipe_lock+0x64/0x80
[  362.432435][T11566]        iter_file_splice_write+0x1eb/0x10b0
[  362.434068][T11566]        do_splice+0x145c/0x1f60
[  362.435458][T11566]        __do_splice+0x327/0x360
[  362.436796][T11566]        __x64_sys_splice+0x1cd/0x270
[  362.438232][T11566]        do_syscall_64+0xcd/0x250
[  362.439631][T11566]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.441363][T11566] 
[  362.441363][T11566] -> #2 (sb_writers#6){.+.+}-{0:0}:
[  362.443361][T11566]        mnt_want_write+0x6f/0x450
[  362.444764][T11566]        ovl_create_object+0x12e/0x300
[  362.446338][T11566]        lookup_open.isra.0+0x1174/0x14c0
[  362.447850][T11566]        path_openat+0x904/0x2d60
[  362.449234][T11566]        do_filp_open+0x1dc/0x430
[  362.450613][T11566]        do_sys_openat2+0x17a/0x1e0
[  362.452036][T11566]        __x64_sys_creat+0xcd/0x120
[  362.453449][T11566]        do_syscall_64+0xcd/0x250
[  362.454812][T11566]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.456545][T11566] 
[  362.456545][T11566] -> #1 (&ovl_i_mutex_dir_key[depth]){++++}-{3:3}:
[  362.458915][T11566]        down_read+0x9a/0x330
[  362.460194][T11566]        walk_component+0x342/0x5b0
[  362.461644][T11566]        path_lookupat+0x17f/0x770
[  362.463023][T11566]        filename_lookup+0x1e5/0x5b0
[  362.464479][T11566]        kern_path+0x35/0x50
[  362.465759][T11566]        lookup_bdev+0xd9/0x280
[  362.467141][T11566]        resume_store+0x1d8/0x460
[  362.468924][T11566]        kobj_attr_store+0x55/0x80
[  362.470370][T11566]        sysfs_kf_write+0x117/0x170
[  362.471851][T11566]        kernfs_fop_write_iter+0x33d/0x500
[  362.473564][T11566]        vfs_write+0x6b5/0x1140
[  362.474913][T11566]        ksys_write+0x12f/0x260
[  362.476224][T11566]        do_syscall_64+0xcd/0x250
[  362.477782][T11566]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.479621][T11566] 
[  362.479621][T11566] -> #0 (&of->mutex){+.+.}-{3:3}:
[  362.481612][T11566]        __lock_acquire+0x250b/0x3ce0
[  362.483198][T11566]        lock_acquire.part.0+0x11b/0x380
[  362.484712][T11566]        __mutex_lock+0x175/0x9c0
[  362.486105][T11566]        kernfs_fop_write_iter+0x27b/0x500
[  362.487772][T11566]        iter_file_splice_write+0x90f/0x10b0
[  362.489456][T11566]        do_splice+0x145c/0x1f60
[  362.490858][T11566]        __do_splice+0x327/0x360
[  362.492187][T11566]        __x64_sys_splice+0x1cd/0x270
[  362.493838][T11566]        do_syscall_64+0xcd/0x250
[  362.495236][T11566]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.497003][T11566] 
[  362.497003][T11566] other info that might help us debug this:
[  362.497003][T11566] 
[  362.499876][T11566] Chain exists of:
[  362.499876][T11566]   &of->mutex --> sb_writers#6 --> &pipe->mutex
[  362.499876][T11566] 
[  362.503160][T11566]  Possible unsafe locking scenario:
[  362.503160][T11566] 
[  362.505121][T11566]        CPU0                    CPU1
[  362.506584][T11566]        ----                    ----
[  362.508081][T11566]   lock(&pipe->mutex);
[  362.509221][T11566]                                lock(sb_writers#6);
[  362.510978][T11566]                                lock(&pipe->mutex);
[  362.512805][T11566]   lock(&of->mutex);
[  362.513896][T11566] 
[  362.513896][T11566]  *** DEADLOCK ***
[  362.513896][T11566] 
[  362.516108][T11566] 2 locks held by syz.1.1735/11566:
[  362.517656][T11566]  #0: ffff888029218420 (sb_writers#9){.+.+}-{0:0}, at: __do_splice+0x327/0x360
[  362.520267][T11566]  #1: ffff888027fa3868 (&pipe->mutex){+.+.}-{3:3}, at: pipe_lock+0x64/0x80
[  362.522707][T11566] 
[  362.522707][T11566] stack backtrace:
[  362.524296][T11566] CPU: 3 UID: 0 PID: 11566 Comm: syz.1.1735 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0
[  362.527653][T11566] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  362.530912][T11566] Call Trace:
[  362.531910][T11566]  <TASK>
[  362.532796][T11566]  dump_stack_lvl+0x116/0x1f0
[  362.533847][T11568] netlink: 'syz.1.1735': attribute type 4 has an invalid length.
[  362.534305][T11566]  print_circular_bug+0x41c/0x610
[  362.534330][T11566]  check_noncircular+0x31a/0x400
[  362.534345][T11566]  ? __pfx_check_noncircular+0x10/0x10
[  362.534359][T11566]  ? lock_acquire.part.0+0x11b/0x380
[  362.534369][T11566]  ? find_held_lock+0x2d/0x110
[  362.534382][T11566]  ? lockdep_lock+0xc6/0x200
[  362.534394][T11566]  ? __pfx_lockdep_lock+0x10/0x10
[  362.534407][T11566]  ? __pfx_mark_lock+0x10/0x10
[  362.550250][T11566]  __lock_acquire+0x250b/0x3ce0
[  362.552095][T11566]  ? __pfx___lock_acquire+0x10/0x10
[  362.554075][T11566]  ? __lock_acquire+0xbdd/0x3ce0
[  362.555932][T11566]  lock_acquire.part.0+0x11b/0x380
[  362.557798][T11566]  ? kernfs_fop_write_iter+0x27b/0x500
[  362.559766][T11566]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  362.561782][T11566]  ? rcu_is_watching+0x12/0xc0
[  362.563438][T11566]  ? trace_lock_acquire+0x14a/0x1d0
[  362.565327][T11566]  ? kernfs_fop_write_iter+0x27b/0x500
[  362.567408][T11566]  ? lock_acquire+0x2f/0xb0
[  362.569211][T11566]  ? kernfs_fop_write_iter+0x27b/0x500
[  362.571367][T11566]  __mutex_lock+0x175/0x9c0
[  362.572941][T11566]  ? kernfs_fop_write_iter+0x27b/0x500
[  362.574510][T11566]  ? _copy_from_iter+0x15e/0x1540
[  362.575882][T11566]  ? kernfs_fop_write_iter+0x27b/0x500
[  362.577476][T11566]  ? __pfx___mutex_lock+0x10/0x10
[  362.578890][T11566]  ? __pfx__copy_from_iter+0x10/0x10
[  362.580345][T11566]  ? __virt_addr_valid+0x1a4/0x590
[  362.581796][T11566]  ? __virt_addr_valid+0x5e/0x590
[  362.583577][T11566]  ? __phys_addr_symbol+0x30/0x80
[  362.585290][T11566]  ? kernfs_fop_write_iter+0x27b/0x500
[  362.586810][T11566]  kernfs_fop_write_iter+0x27b/0x500
[  362.588397][T11566]  iter_file_splice_write+0x90f/0x10b0
[  362.590047][T11566]  ? __pfx_iter_file_splice_write+0x10/0x10
[  362.591948][T11566]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  362.593719][T11566]  ? __pfx_iter_file_splice_write+0x10/0x10
[  362.595409][T11566]  do_splice+0x145c/0x1f60
[  362.596739][T11566]  ? find_held_lock+0x2d/0x110
[  362.598221][T11566]  ? __pfx_do_splice+0x10/0x10
[  362.599618][T11566]  ? __pfx_pipe_clear_nowait+0x10/0x10
[  362.601452][T11566]  ? trace_lock_acquire+0x14a/0x1d0
[  362.603639][T11566]  __do_splice+0x327/0x360
[  362.605487][T11566]  ? __pfx___do_splice+0x10/0x10
[  362.607400][T11566]  __x64_sys_splice+0x1cd/0x270
[  362.609201][T11566]  do_syscall_64+0xcd/0x250
[  362.610946][T11566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.613158][T11566] RIP: 0033:0x7f2d5977dff9
[  362.614710][T11566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.621109][T11566] RSP: 002b:00007f2d5a4c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  362.624208][T11566] RAX: ffffffffffffffda RBX: 00007f2d59936058 RCX: 00007f2d5977dff9
[  362.626950][T11566] RDX: 000000000000000f RSI: 0000000000000000 RDI: 000000000000000d
[  362.630049][T11566] RBP: 00007f2d597f0296 R08: 000000000000bfd1 R09: 0000000000000000
[  362.633062][T11566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  362.635499][T11566] R13: 0000000000000001 R14: 00007f2d59936058 R15: 00007ffebf2e0bd8
[  362.637714][T11566]  </TASK>
[  366.318221][ T1378] ieee802154 phy1 wpan1: encryption failed: -22
[  366.328538][   T39] kauditd_printk_skb: 470 callbacks suppressed
[  366.328556][   T39] audit: type=1400 audit(1728544447.106:29254): avc:  denied  { read } for  pid=4817 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  366.338498][   T39] audit: type=1400 audit(1728544447.106:29255): avc:  denied  { search } for  pid=4817 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  366.346041][   T39] audit: type=1400 audit(1728544447.106:29256): avc:  denied  { append } for  pid=4817 comm="syslogd" name="messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  366.353889][   T39] audit: type=1400 audit(1728544447.106:29257): avc:  denied  { append open } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  366.361998][   T39] audit: type=1400 audit(1728544447.106:29258): avc:  denied  { getattr } for  pid=4817 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1

VM DIAGNOSIS:
06:48:15  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=ffff88806a63ee80 RCX=0000000000000100 RDX=0000000000000001
RSI=0000000000000004 RDI=ffff88806a63ee82 RBP=dffffc0000000000 RSP=ffffc90000007c68
R8 =0000000000000001 R9 =ffffed100d4c7dd0 R10=ffff88806a63ee83 R11=ffffffff8b6f86c0
R12=0000000000000000 R13=0000000000007f53 R14=ffff88806a63fdc0 R15=ffffed100d4c7dd0
RIP=ffffffff8b246d95 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000001b2d392000 CR3=0000000024cf8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=00000000000000ff Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000015 000000000001df8a
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555646df4a0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555646e3165 00005555646e2f90
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4eea0023436c6f72 746e6f632f646e73 2f7665642f01ffff ffffffffffffd908
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a2d4e40800010000 06080606011fe800 0800168003001000 0010005180040606
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 436d63702f646e73 2f7665642f01ffff ffffffffffffdb08 2c80031680040880
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 01ffffffffffffff ffdb081180030010 000010002c800406 014ef20070234423
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100100000100011 800406014ef20070 234423436d63702f 646e732f7665642f
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 01ffffffffffffff ffdb081180030010 000010002c800406 014ef20070234423
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 436d63702f646e73 2f7665642f01ffff ffffffffffffdb08 2c80031680040880
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a2d4e40800010000 06080606011fe800 0800168003001000 0010005180040606
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=ffffffff9a98b148 RCX=ffffffff816b2086 RDX=0000000000000000
RSI=0000000000000004 RDI=ffffffff9a98b148 RBP=fffffbfff3531629 RSP=ffffc900049cf828
R8 =0000000000000000 R9 =1ffffffff3531629 R10=ffffffff9a98b14b R11=00000000000a4001
R12=dffffc0000000000 R13=0000000000000200 R14=dffffc0000000000 R15=0000000000000206
RIP=ffffffff81eef084 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00005555646cc500 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055d29d9318e8 CR3=0000000024cf8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=00000000000000ff Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000015 000000000001df8a
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555646df4a0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555646e3165 00005555646e2f90
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4eea0023436c6f72 746e6f632f646e73 2f7665642f01ffff ffffffffffffd908
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a2d4e40800010000 06080606011fe800 0800168003001000 0010005180040606
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 436d63702f646e73 2f7665642f01ffff ffffffffffffdb08 2c80031680040880
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 01ffffffffffffff ffdb081180030010 000010002c800406 014ef20070234423
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100100000100011 800406014ef20070 234423436d63702f 646e732f7665642f
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 01ffffffffffffff ffdb081180030010 000010002c800406 014ef20070234423
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 436d63702f646e73 2f7665642f01ffff ffffffffffffdb08 2c80031680040880
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a2d4e40800010000 06080606011fe800 0800168003001000 0010005180040606
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000002 RCX=ffffffff8169b60e RDX=0000000000000000
RSI=0000000000000008 RDI=ffffffff905f37c8 RBP=0000000000000000 RSP=ffffc9000eb8f688
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000003 R11=000000000003fffc
R12=0000000000000001 R13=0000000000000000 R14=0000000000000001 R15=0000000000000000
RIP=ffffffff81eef030 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f68a884d6c0 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f2d5a4c5d58 CR3=00000000495c4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffe0000 Opmask01=0000000003010000 Opmask02=000000007ffbffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000050000021f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f68a79f1133
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f68a79f1140
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f68a79f113a
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f68a79f114e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f68a79f11d4
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f68a79f12b2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 2323232323232323 2323232323232323
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000070 304430436d63702f 646e732f7665642f
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000053 134413434e40530c 474d500c5546470c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000002dc 0000000000000002 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff850a76b5 RDI=ffffffff9aae3b40 RBP=ffffffff9aae3b00 RSP=ffffc9000da1f0c0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=000000000000002d R14=ffffffff850a7650 R15=0000000000000000
RIP=ffffffff850a76df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f2d5a4c56c0 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020001440 CR3=0000000048714000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffe0000 Opmask01=0000000003010000 Opmask02=000000007ffbffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000050000021f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f68a79f1133
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f68a79f1140
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f68a79f113a
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f68a79f114e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f68a79f11d4
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f68a79f12b2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 2323232323232323 2323232323232323
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000070 304430436d63702f 646e732f7665642f
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000053 134413434e40530c 474d500c5546470c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000002dc 0000000000000002 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000