last executing test programs:

1m15.517893538s ago: executing program 1 (id=1592):
r0 = syz_usb_connect(0x2, 0x3f, &(0x7f00000007c0)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x5}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0x200000a0}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x89}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x56}, @NFTA_EXTHDR_SREG={0x8, 0x7, 0x1, 0x0, 0xdb261e297778c295}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x17}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}, 0x1, 0x0, 0x0, 0x200408c1}, 0x1)
ioctl$FS_IOC_GETVERSION(r1, 0xc0105b08, &(0x7f0000000040))

1m12.460790828s ago: executing program 1 (id=1615):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x3a, 0x1, 0x0, 0x20)
r1 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001080)='/proc/locks\x00', 0x0, 0x0)
fcntl$lock(r2, 0x25, &(0x7f0000002380))
preadv(r2, &(0x7f0000001e80)=[{&(0x7f0000000080)=""/4094, 0xffe}], 0x1, 0x33, 0x0)
writev(r1, &(0x7f0000000500)=[{0x0}, {&(0x7f0000000380)="d4c44007", 0x4}], 0x2)

1m8.128361757s ago: executing program 1 (id=1617):
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaa"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0xf, &(0x7f0000000200)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055"], 0x0, 0x7, 0xfffffffffffffe1f, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffe01, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
bind$tipc(0xffffffffffffffff, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d960001000000000000000000000d00", "2809e8dbe108598948224ad44afac11d875397bdb22d0000b420a1a93c5240f45f819ef6167d3d458dd4992861ac00", "f4bd00ac6700000000000000000000c2888e7d52164ec480e79200000100", [0x0, 0x2000000000001]}})

1m8.079671929s ago: executing program 1 (id=1621):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) (async, rerun: 32)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x2a05404, 0x0) (async, rerun: 32)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x2b5b093, 0x0) (async, rerun: 32)
mount$bind(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) (async, rerun: 32)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
syz_emit_ethernet(0xf87, &(0x7f0000001180)={@local, @multicast, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "6410a6", 0xf51, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[@routing={0x84, 0x0, 0x0, 0x6}], "223427d5c9a46b9fa14172170a013589317d2af31ba55431762f462a5abc3f46494ee91bfca594d52f8c3785143e92da5d2d81edc09f68f122fbf741257bf1319408347a17c89212dfe27a0fc65362487e5afe673f0954f60d9d08b61276ce0b3aa520b5f30a9f52c4aa53fc003f8570383ca63530d93b78a7875338b3d7645ef2c24ab05db63cfdcde7b3cac2248c9d1c73d0d4382b3f520ad6e9be698eaa9bf5b939ce09919c9485c4725690ee2483315829a196f85a5ae552ebe19a2d6768ce2a6bf60fbb53104c7919b7cf28fa555fc9460df11e72eddebb2fc4eb6f83b16e0d65307e4210dfc209f0c68df65b57f420fd215546b798af6b6ab7bfb2fe6bd6142f877852717370b1ca39d199c149c3ead97c4e16229ce4c08a111a0fc64651c21e9174dd72442a9ae2a42d9433c7b54c8dd4b59203f9a2e227e9b043eb430e606cf98f3428ac8511948dd553bc0728c0626fbda71bd2a1d734d605e27bdb0be93b7b91284689e31fccb70c15f2c39da9011c84d36fe4b4b36ff26e45a34685fc638dbdaa068a3d3d4f5d44b74afc0fc7956e5fcc3fe405ac6d292d1d90f257f18fe14a3192d28ed369956aa2f91f9fee773cf7fb5d90705347eeadc1af86de78a498fa1a20e5b3f481a0595769654d969299506d8ffbc172a7fb9453a8a3787e80b167936863f2cc16c1d03481bd40e1abcf87a292559771572136932bf30e48174012a1d4d5f138f93140af2ceb9c821c7966ea7592d762975b5b33ef141b6b91eb388c91b924945c3231d0f299adb5a36e0c95a17872e7ebf0bc0e33baf5c46f9e2087b77bad0794d519ce7bc8674a70f3545d020454ded22f164185df3b4f952b132947b75333993fd73a6bac5836dd5720e559bcb82a4926734c5c3b1287c5fec219a99f71eb398430001f007306e9232c269c2886357f75d935e8de054341ac36f1df1fc77fbc347d90660f4d5658cfeb9e289f70968a7c0b38ae34c4bfa46b47964e223ac34f472e3231e8c285add5713592c76c062c3477beb55b279846f04f8d6a5ce2743c6a2020f0c5164953b8dca7e57239dc8a7f507bcf77767ab0b4602437171a09c8e80f5a165c4c37eaae386cfcb927dd1a935fa717fa1608792b34bafbc20cf11a678455894ede62788309ab7a7075535847a2b48260a613e521b01d75648263ad78e6176528dbf3e6c4e4d72066e617be5387183a51dd97d2e846c5d173b51e17a4c8d78a49c914cbe44236c52c78de45b44f9d80bc6f77c75135922a84579bce77baa71311889f5b7b90c5124b8298d5e9c81c442d60df00795854d3213a1ac254c8963c109f68b3ff5451c381f6fb56c116f86b71f988d1e9f732280cbf3d4e9791fefc4bdec5dc293fb77b02d5aab6bd8cd179b7e425126b7f78c0d004bc6470ecc2bbc422bd06a6bd8f717009509e6a88b01347b7a62b9dea6f7a7446a371f422499a6e66eeb6a7b0beb4a86a61f875a9bfe0f5d5f0d0e4c85852afaea97d74ebc80d6491a8a1c998c4b5bc34b3edaeba2df902cd5e14e016720e6c3c8b15287b2471c34251e26dc442720cd5d984e30b110b7370f233f865b9ac129fdf49ff02b303d7d4f91039d3bb58a9d64d7a72d8b8eba6b45a000370d4f0e9c0d411768441372e7112e5d4e7d70a9d6b428b8b85ee6209d6f73e7b024740c052166deeb843e4ab78d1d354d75a5827ff0d49d8964e75785f3594c7299c0917b48f3b2efb81a4c3a7d6e0f1cf50efe0360963c2e3ee390ed2a4c39f42e856eced0f2ee7beacd2ecbece493e911ca0460584323ea6d4a0c00864693c979cae38f0c5841bfaeebf609d1075163c120fea0bd0207d2dd07e5e2e0a5afe3efee0ee6bb9a926a8dba7a27a82c5421a5b20bfb5dbdef532a12435fcd899f15603209831711e0dcfaaf2104b2016f087fce44848c70b65a34b9be83df2064391fc5a8d169dc1943d226e57ab5ba06c656273d4efba73a8a61aae19df4d2445f3ce7e649af1b4ffc86106c9092ddd0aafeb45653d181cb32b06a1dd41573495f15c3b8c0019ba72a2eb163dfcbdbb235322ae27d7116af506f295c2424ab9191aa8ce0e4617b212af21983f8d2b19d7fdeec881f6fa448acc7c3e133b6f281583fad4467c05801e69f6ffc1ae2e1f54655534d884c2f8f60303da33ccbe47a293643edb61c7d9fad4e3e54028bc64be8e5b1da53446869b136660b8e96ff96c48641ece275967b27b291c5c240b3399b5b901b699227735f821938bc88ded45bada2b257b1a4bcab7ed6647f2027e5680c87329e9cfdba6bde2f2a9b676be016001702bebbabb2eae3eba01d6f49ab70245a4c5ef0e136b531e1843487b3f69c5b811217d6d2f5e71b47f40c28117bd09a88bb21887a06e2cc164d4281d0df47cbd5781f1524098d89ccae32f24c5f9d86469106685fdc683ad5e873030b621dc00354e0621106da90aca69bb53848dd57251a45bc1898aca9bc84c9a8d2f8aabeed888560771c8cb03aab02620430fec8e9740880790060ccbffd5b8edaa219ca61587eff1b1b03ae8af53059f121efdec8b3ee8aba06f494a5b4575bc848d5a9773d2346f75811cb82a078fc960c9bd374555d78b1b4ba0b438ef00e8aa75810ca5efc5c70936e2cb0e515912cb7f625a2130a9ad58f29e58ae6eac5c3f15f22f0163ee6dead6947c4390b92c8dfb146fec7bfc0b37e8ff2c9de90c30f2d8b5e334107f9835bc47fbc193c60ebd5ac4e677c7fd5b6261ff96e97c185c726ec02941bc2336946f181fd2aff43f0e95f06105a049fcb8e4e3738407d6356856f533f17fae281a3be9f2050ae3d19d1b8350d424087ac9b7875824a9b7e098775b53d6ec960fc052ecd165d17a7897de75f15316a072bb9ccf6ce1ec085bb5356c271b985a437a32f12308fc927410fd444bcded9859e7b8a3cfaaf29ebfb92cc7cbfad2559bbe4f90e189e8708e93827b221869cc78fa41fd5bcb6577b7dfe4c3927dc25a58aa84419f76e71d1f3c10cbb5e52ab2bebe0d39bdffda0fa1b55fe3a03683f882a82dd58498d62b101acd710fd436aa7409fe3cf5352dffb399d560323e14d564bdb3121b89c1f43fc9a892b799cd32f7ce2ededb868920b4547735ef0bf3e148251a4f65dddb7f96b2f33734522a8cffdc51520ac98926b3406e96618cf15a042a67239e755afc70ec6a9c99f8e08ec2946e5901364d85223a63d49572519137d93b6b0798e72acf9da120e706ee73367dec1450a68def886c149bcd734469e10b933899501011cd548e99d638821d5709fde050ab382d4896ecfd7999d40ea9c690c26d396545224c8f9e19705593df2688eb592e2476a0193f7054ab6f703d41c545a80bf285bbc7cc735bd306c9ea5eb64f40752fd4c741d9b6e03cd41b636ef8f5e810047a21c0b24c6fde1f2e98f2f27730c90d93af9e7564e4e209a61ff626b666fcc4f75f7d560da688169ff0af5e674a0b89a99fb54bb438a65f953c2db0faec2ce09cec33b6d25620b5a0393ac473fed48a38beaca5223997419876d571ce969b83b5b3ae54de83dd89fd92ed2a93c087828bef49a24ed1a97778c47fdc691a94fd5b437dfe494b5c6fadf499d9d15583b0439d3d5ecb61a32a2508a6960be6009accfd1d5d75a16dbc4121c6ef07bda12646792449c18a56e7aa3893f3f0e55a8e09ca64193dd29ea24ed8614ee8e717f046dd99a8e3750506655331125a502aa89c0d7e8e30c36a4be22cd911322695144d3bf034f38ef32d49431d50da583d08a3e4c5862483cdd52d031b12c89fdaafc3334e877e464134baece883d301193a9c27311a987d4dae82a061f48182cc747cd64441e88b68e26e4975f0fdde3129a9e6af80009962581d5349676df9c73b81514b175709d9193749660f480bd4009b528c1db4f76f42b6a175126603c39a374e890f871c97b2eebb4500451d827cc15497dc5ae89edc6f47f25db7efa4b4b2afbbb2ee543e3db8d20fe93faf300247f59075921e8b2f2a025af8a1d46f274e0c6cb4be0293c7c16c88e98d7d189e9733e4c0e3b96be4aa3fa6ecf42732e0b1432d38aeaf2330d92713cd5580ce42bfe47fb98fea64783de23f456300dd193008211a5ba408d32dedbf12aa8237a6e1a2c9890a2c1011855241fea186906a5139d1c300be57dc7ff493de80010520d10fc3eda0ee9cd413e075d3dc02258fdab567a16e43edbeecc366a69d8d75512f43a2b79cbb9132cdcd00c531730d05f1eabf66613d6e7ebb8c4c3f4f7efd415d41049786352808b22a3bde40121968af39c8f00296001662adc72b7963c8bafab4a496b50f3237a29d19ad4a51a62b1c77a04c14004734189cf7ec49e3d041a1e5658d080f09df77f39782e7133968c1f39ab3ae2a5f24a60073288f3c5825dafd614a379b8b905aaf961caa14ffa38de0d632918d31e4a9291b0f0789248e232e4276840a1ed0257300e522d83111dffd424b1b33148981e3794b2b649ba9174e6697bcc96049f4f3dcc7cf4ca97e2006ec8a146014bb49184632e4fb159a34b6530e959e60a6b4e0427cc697f14cfe6bb7a662a6f5012744f3cf2307abc19c58449864d98fcfebc5d598cd32a1c38c207896468fe8da75eb1edb1d6e7cb1eab671e4e92f139c81d79f15df2a2dc075acc982dec769e2f49aad0fdf594cb590e054616e4f4582b6c4a149ae45d844903ef68d211df2a180178e178b7c7a5012ccf8a1e677586588620365e6111f5192ecfdbd97e2284128de02e08ebc13d4bb4d114faa1e6c16c51c12da2c52d68f73640ce866ce4e794b9fafdc392c91c1f824bc301b3069a02b9c86d2ffac3ed63ddee130cbc248d6a3345d3f9553db78077072d569a6633f8bdbdb1a209a8be9b6830225994f9021b57ddd6a44e8ea40b205c6cf437f45bffaef053a5916dcc6de62ee02bdb8ce3acec8ad97fc95dab1307d254790c71f32e4678957cf0121dccabe73a03c6cacbcbdaad8801b04d9836555a982c357a06e2db7e9bf62aed8cdebbb7a71a2410b929015b61f16e54bffd038996a717b9c7cc3696d8a1205e8266bf782c3a45b0e31461d6a3ed62396088833f69248b24fbf6f81dcc08b98826c3bd2325ade54f614f2d4a153e3e3527d93978483f2bfeada6b64bc43f2a725c30e843d13e6ab34cfc38d488b3ef50cd04318fac1f89905f017644cfa2de058ad399871d1316264813c2289d0b6cfeddfbca36ce93fd4a1bfc93bb74453cfbb9c6ca22320ffc9cb0a3fff046a5678c066e617cd3ac024dfead04b99877f448b78208938585c7563efe815ff0cc47da5fff521d9730ddc89f4aeceadd06f2ea6b9ae72c9407aa550a0155db3b4bc6aaa382a30552f699cb6a1af9972a8ccc483f98952dfbde3d712ea8673eacdbb77490d833fc90f0f02e7c073d2917db70831496a88defc10667dc4c1b7399191bdc7857eb090e79c332bf9f71bb5377178e6232800c93d22318dc5ab8d5dfa2f074a6c23acb61c89f2f078ec91e9817e11a4c8295c19634b5ca2df74"}}}}}, 0x0)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)

1m7.987489222s ago: executing program 1 (id=1623):
r0 = syz_usb_connect(0x2, 0x3f, &(0x7f00000007c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d000110000000090400"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x5}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0x200000a0}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x89}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x56}, @NFTA_EXTHDR_SREG={0x8, 0x7, 0x1, 0x0, 0xdb261e297778c295}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x17}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}, 0x1, 0x0, 0x0, 0x200408c1}, 0x1)
ioctl$FS_IOC_GETVERSION(r1, 0xc0105b08, &(0x7f0000000040))

1m7.747561155s ago: executing program 1 (id=1634):
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
r0 = syz_open_dev$video(&(0x7f0000000140), 0x100000001, 0x80000)
ioctl$VIDIOC_G_SELECTION(r0, 0xc040565e, &(0x7f00000000c0)={0x9, 0x100, 0x4, {0x1fa6, 0x0, 0x8, 0x5e}})
r1 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$SO_TIMESTAMP(r1, 0x1, 0x3f, 0x0, &(0x7f0000000140))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000080)=@framed={{}, [@jmp={0x5, 0x0, 0xe, 0x0, 0x0, 0x3}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @jmp={0x5, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffe}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}]}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x9}]})
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) (async)
syz_open_dev$video(&(0x7f0000000140), 0x100000001, 0x80000) (async)
ioctl$VIDIOC_G_SELECTION(r0, 0xc040565e, &(0x7f00000000c0)={0x9, 0x100, 0x4, {0x1fa6, 0x0, 0x8, 0x5e}}) (async)
socket$igmp(0x2, 0x3, 0x2) (async)
getsockopt$SO_TIMESTAMP(r1, 0x1, 0x3f, 0x0, &(0x7f0000000140)) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000080)=@framed={{}, [@jmp={0x5, 0x0, 0xe, 0x0, 0x0, 0x3}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @jmp={0x5, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffe}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}]}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x9}]}) (async)

1m7.633177578s ago: executing program 32 (id=1634):
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
r0 = syz_open_dev$video(&(0x7f0000000140), 0x100000001, 0x80000)
ioctl$VIDIOC_G_SELECTION(r0, 0xc040565e, &(0x7f00000000c0)={0x9, 0x100, 0x4, {0x1fa6, 0x0, 0x8, 0x5e}})
r1 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$SO_TIMESTAMP(r1, 0x1, 0x3f, 0x0, &(0x7f0000000140))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000080)=@framed={{}, [@jmp={0x5, 0x0, 0xe, 0x0, 0x0, 0x3}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @jmp={0x5, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffe}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}]}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x9}]})
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) (async)
syz_open_dev$video(&(0x7f0000000140), 0x100000001, 0x80000) (async)
ioctl$VIDIOC_G_SELECTION(r0, 0xc040565e, &(0x7f00000000c0)={0x9, 0x100, 0x4, {0x1fa6, 0x0, 0x8, 0x5e}}) (async)
socket$igmp(0x2, 0x3, 0x2) (async)
getsockopt$SO_TIMESTAMP(r1, 0x1, 0x3f, 0x0, &(0x7f0000000140)) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000080)=@framed={{}, [@jmp={0x5, 0x0, 0xe, 0x0, 0x0, 0x3}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @jmp={0x5, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffe}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}]}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x9}]}) (async)

4.609654832s ago: executing program 2 (id=2511):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x20, 0x52, 0x1, 0x70bd26, 0x200, {0x2}, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0x1}]}, 0x20}}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_MP_STATE(r4, 0x4004ae99, &(0x7f00000001c0)=0x3)
ioctl$KVM_CAP_HALT_POLL(r2, 0x4068aea3, &(0x7f0000000080)={0xb6, 0x0, 0xea3b})
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000380)={"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"})
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'lo\x00', <r5=>0x0})
sendfile(r0, r0, 0x0, 0x3) (async)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0xd}, {0x0, 0xffff}, {0x0, 0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000400}, 0x0)

4.326677229s ago: executing program 2 (id=2516):
r0 = syz_usb_connect(0x2, 0x3f, &(0x7f00000007c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe0301"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [], {0x14}}, 0x28}, 0x1, 0x0, 0x0, 0x200408c1}, 0x1)
ioctl$FS_IOC_GETVERSION(r1, 0xc0105b08, &(0x7f0000000040))

3.989613127s ago: executing program 0 (id=2518):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='illinois', 0x8)
sendmmsg$inet(r0, &(0x7f0000001240)=[{{0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000000140)="91f8a9849519def28691bbc4173c3d6f35", 0x11}], 0x1}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000b80)="f77d2b5d", 0x4}], 0x1}}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000640)="42e013913edbeb683c44e18a52b5a2462064ddd92caaba941de80d06047dedb7eeeff3a27eacf4c416b6979d6c918608807c44d01535dbaab3b390086e4fd43c6b5931187023646d6beac2340fdc7a0d81214ac76a818f64d287311e8828dfd3e3dd67efdb129a6e", 0x68}, {&(0x7f0000000740)="b176d469f44ff7e206a24a3a5f3a112da355134ae64fde53dc0e681885ead332aa45811c0070066fb0e5cf5a9a4965475953e2a028f7dd4a6ed8b33465fd161cd8dce309f6be32236cf8e07a5506acb719304ebc71b2a3756cb0832d928d432d1506d368e2b001a8b392dad3dc291637673233", 0x73}], 0x2}}], 0x3, 0x2090)

3.119202873s ago: executing program 0 (id=2527):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0) (async)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000080)='ramfs\x00', 0x890030, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@metacopy_on}]})
r0 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x26) (async)
fcntl$notify(r1, 0x402, 0x26)
fcntl$notify(r1, 0x402, 0x3f)
mknodat$loop(r1, &(0x7f0000000140)='./bus\x00', 0x10, 0x1)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', 0x2) (async)
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', 0x2)
link(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

2.929208299s ago: executing program 0 (id=2529):
r0 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
ioctl$sock_inet6_udp_SIOCINQ(r1, 0xc02063a1, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r2)
r3 = syz_open_dev$sg(&(0x7f0000000480), 0x2, 0xc0580)
ioctl$SG_IO(r3, 0x2285, &(0x7f00000000c0)={0x53, 0xfffffffffffffffb, 0x10, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="8f7d0a01007d79710600060000000000", 0x0, 0x10, 0x1001a, 0x0, 0x0})
read$msr(r0, &(0x7f0000000200)=""/188, 0xbc)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000003800), 0x0, 0x881)
ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000080))
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
ioctl$PPPIOCNEWUNIT(r6, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSNPMODE(r6, 0x4008744b, &(0x7f0000000040)={0x57})
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x80)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x1d7)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000080)='./file1/file0\x00', 0x0, 0x1085408, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f00000003c0), 0x0, &(0x7f00000002c0)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./bus\x00', 0x40, 0x1)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000180)=<r8=>0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000540)={'\x00', 0x800, 0x0, 0x9, 0x100000000447a, 0x5, r8})
r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x400000000a882, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000002, 0x12, r9, 0x7e423000)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x4, &(0x7f0000000700)=ANY=[@ANYRESHEX=r3, @ANYRESHEX=r3, @ANYBLOB="2c726f6f746d6f64653d30303030303030303030303030303030303034303030302c757365725f69643d14af935771f6fe010000efb7426c62f8c6ec8ea65c56e06e4c445de007b87af16a13d092bc37526be1abe9e9d8e5a382b93574768e62dbf91f754330", @ANYRESDEC=0x0, @ANYRES8=r1, @ANYRESDEC=0x0, @ANYRESHEX=r7, @ANYRES8=r1])

2.594334553s ago: executing program 0 (id=2533):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
writev(r1, 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="083c86dd0001110004600000a60c6eec00be00442cfffe8000000000000000000000000000aaff020000000000000000000004000001", @ANYRES16=r1], 0xfdef)

1.384639868s ago: executing program 3 (id=2545):
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
write$cgroup_int(r0, &(0x7f0000000040)=0x3, 0x12) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x16, 0x4, &(0x7f0000000540)=ANY=[@ANYRES64=r0], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x40, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0}, 0x94)

1.328284514s ago: executing program 3 (id=2546):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, 0x0)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000dc0)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1)
ptrace(0x4208, 0x0)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000380)={0x0, 0x3ff, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)

1.327459175s ago: executing program 4 (id=2547):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x1, @pix={0x0, 0x0, 0xa0363159}})
ioctl$DVB_DEMUX_DMX_EXPBUF(0xffffffffffffffff, 0xc00c6f3e, &(0x7f0000000040)={0x3, 0x0, <r1=>0xffffffffffffffff})
ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000080)={0x53, 0x8, &(0x7f0000000240)="bac3fc8a155e7d2d9ecff531fafaa470716eeecf4c78d11b27b86e48c0b9298603428bf392b18bbb180067f649b6371cb7834ea9ff64c828df78364d236cca6a4f171a9ef77662ac75e9344fd30a54a8770caa4b5f1fac93aa4d8662bf070a3167b9818321553327a086072856f9a1f60385e2cca45ce47348020fe8dca7f4522f37e0a27a7eaf2eb6e7f2ca1ea4f24ad20d1d7e0af4356048b3d7837c6804f812800f3cf6c478bfbcf70bc8543ae99410e0ce31cc9b811e83d949b0d65ca3dadeece591d1ab8220d857781a55e5d3aa8671638a75c69670c7c3a1e6aacb73097ce15184482f82b1e3e681e072854852e4d42a574fb1", {0x206, 0x1, 0x31324d4e, 0x4, 0xfffffffc, 0x2433, 0x9, 0x5}})
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000500)=ANY=[@ANYBLOB="a0000000", @ANYRES16=0x0, @ANYBLOB="050424bd7000fedbdf250100000008000100", @ANYRES32=0x0, @ANYBLOB="84000280400001"], 0xa0}, 0x1, 0x0, 0x0, 0x4040800}, 0x24044084)
ioctl$SNDRV_TIMER_IOCTL_INFO(r1, 0x80e85411, &(0x7f0000000340))
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000500)=ANY=[@ANYBLOB="180100002f00010000000000fcdbdf2507"], 0x118}], 0x1, 0x0, 0x0, 0x1}, 0x0)

1.267576949s ago: executing program 3 (id=2548):
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000500)=ANY=[@ANYBLOB="a0000000", @ANYRES16=0x0, @ANYBLOB="050424bd7000fedbdf250100000008000100", @ANYRES32=0x0, @ANYBLOB="84000280400001"], 0xa0}, 0x1, 0x0, 0x0, 0x4040800}, 0x24044084)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000500)=ANY=[@ANYBLOB="1801fffe2f00010000000000fcdbdf2507"], 0x118}], 0x1, 0x0, 0x0, 0x1}, 0x0)

1.198666005s ago: executing program 3 (id=2549):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='illinois', 0x8)
sendmmsg$inet(r0, &(0x7f0000001240)=[{{0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000000140)="91f8a9849519def28691bbc4173c3d6f35", 0x11}], 0x1}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000b80)="f77d2b5d", 0x4}], 0x1}}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000640)="42e013913edbeb683c44e18a52b5a2462064ddd92caaba941de80d06047dedb7eeeff3a27eacf4c416b6979d6c918608807c44d01535dbaab3b390086e4fd43c6b5931187023646d6beac2340fdc7a0d81214ac76a818f64d287311e8828dfd3e3dd67efdb129a6e", 0x68}, {&(0x7f0000000740)="b176d469f44ff7e206a24a3a5f3a112da355134ae64fde53dc0e681885ead332aa45811c0070066fb0e5cf5a9a4965475953e2a028f7dd4a6ed8b33465fd161cd8dce309f6be32236cf8e07a5506acb719304ebc71b2a3756cb0832d928d432d1506d368e2b001a8b392dad3dc291637673233", 0x73}], 0x2}}], 0x3, 0x2090)

1.198512529s ago: executing program 2 (id=2550):
r0 = socket$packet(0x11, 0x3, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="240000001e0001000000000000000000020000000100000700000000080001"], 0x24}, 0x1, 0x0, 0x0, 0x2}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="c92a01001800000000000000100000001000000005000000040000000000000e0100000000000000000000d500"], 0x0, 0x2d, 0x0, 0x1}, 0x28)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r2)
prctl$PR_MCE_KILL(0x35, 0x0, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="070000006f26b5e933230aa28454faa0ed4104a9dcc744a900"/38, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000a40)=@newqdisc={0x34, 0x24, 0x1, 0x70bd29, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0xffff}, {0xffff, 0xffff}, {0x4, 0xfff1}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x2}, 0x2000400c)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r6=>0x0})
arch_prctl$ARCH_SHSTK_STATUS(0x5005, &(0x7f0000000140))
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="98030000", @ANYRES16=r3, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r6, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c090000560333"], 0x398}}, 0x0)

1.056577854s ago: executing program 4 (id=2551):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$can_bcm(0x1d, 0x2, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))
socket$inet_mptcp(0x2, 0x1, 0x106)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000180))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000000))
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$igmp(0x2, 0x3, 0x2)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={0xffffffffffffffff, 0x0, 0x1b, 0x0, &(0x7f0000000200)="083972bdb3a605c4c1188e9986dd02ff4284860186ddba71f16b7d", 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x30000000}, 0x50)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x1f, &(0x7f0000000500)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001400000008000200fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08000900fc000000080011000700000008000e00800000000800", @ANYRES32=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x7d0000)

1.056096773s ago: executing program 3 (id=2552):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KIOCSOUND(r2, 0x4b2f, 0x7f)
write$UHID_INPUT(r1, &(0x7f0000001040)={0x1a, {"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", 0x1000}}, 0x1006)

998.451018ms ago: executing program 2 (id=2553):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYRES8=r1], 0x54}}, 0x0)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x14, r2, 0x1}, 0x14}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB="28000000210001000000001bf502001400", @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x28}}, 0x0)
r5 = fsopen(&(0x7f0000000140)='tracefs\x00', 0x0)
r6 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
ioctl$KVM_CAP_EXIT_ON_EMULATION_FAILURE(r6, 0x4068aea3, &(0x7f00000005c0))
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000040)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f0000000500)={'syz_tun\x00', &(0x7f0000000180)=@ethtool_link_settings={0x4d, 0x400, 0xf, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, [0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1]}})
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a74000000060a010400000000000000000200000048000480440001800c0001007061796c6f616400340002800800044000000000080005400000001608000340000000000800024000000000080008400020000108000840000000000900010073797a30000000000900020073797a32"], 0x9c}}, 0x4000)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
close_range(r9, 0xffffffffffffffff, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r9, 0xc0502100, &(0x7f0000000640)={0x0, <r10=>0x0})
syz_open_procfs(r10, &(0x7f00000006c0)='mountstats\x00')
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r11, 0x8923, &(0x7f0000000000)={'vlan0\x00', @local})
mmap(&(0x7f0000190000/0x1000)=nil, 0x1000, 0x1000002, 0x10012, r9, 0x1222b000)
sendto(r7, &(0x7f00000002c0)="cca2e9bdb722f24387ec811f1e44a6ec740dbd9dd189601bf425c9e56da2f43d513d90620f8451f9d8449feddecf416a1470630d0d9178b50479b9eb83d8e546fefac616f88255a724d4fb8f35871ca060c381a1a53e99e481f10d3344ac0c6e1072bdd43db1f0ea8f76ddd569190cb85df3b9f4a9006a51b295917eda4e5e235e8e927dbde2673aaf967257d94e313a5aceaec661cdca613d1e79d16b3390733dc6b9fb4054f605d0e170363101ebedf1dcbc6f7fa2896a4b7228d0575e5a6bef9509b5cdd165819316870ab210746667f4a15bcd9d5385666a", 0xda, 0x80, &(0x7f0000000000)=@hci={0x1f, 0x1, 0x4}, 0x80)
r12 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0d75a7ec66baf99a2e906346487faf7512f57c1e609786aeb4000000000000", @ANYRES16=r12, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e00000000000000000005000200fc0000000800090004000000"], 0x3c}, 0x1, 0x0, 0x0, 0x44851}, 0x0)

847.038418ms ago: executing program 4 (id=2554):
r0 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'netdevsim0\x00', <r1=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000008500000000000000050000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1}, 0x94)

846.794992ms ago: executing program 2 (id=2555):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1)
ptrace(0x4208, 0x0)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000380)={0x0, 0x3ff, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)

846.367713ms ago: executing program 3 (id=2556):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
writev(r1, 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="083c86dd0001110004600000a60c6eec00be00442cfffe8000000000000000000000000000aaff020000000000000000000005000001", @ANYRES16=r1], 0xfdef)

760.269558ms ago: executing program 4 (id=2557):
set_mempolicy(0x3, &(0x7f00000000c0)=0x3, 0x1fc)
syz_open_dev$tty1(0xc, 0x4, 0x1)
set_mempolicy(0x3, &(0x7f00000000c0)=0x3, 0x1fc) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)

760.028609ms ago: executing program 2 (id=2558):
r0 = syz_usb_connect(0x2, 0x3f, &(0x7f00000007c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe0301"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [], {0x14}}, 0x28}, 0x1, 0x0, 0x0, 0x200408c1}, 0x1)
ioctl$FS_IOC_GETVERSION(r1, 0xc0105b08, &(0x7f0000000040))

700.118809ms ago: executing program 4 (id=2559):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e000000000000000600000007"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2050000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

579.53223ms ago: executing program 4 (id=2560):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='illinois', 0x8)
sendmmsg$inet(r0, &(0x7f0000001240)=[{{0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000000140)="91f8a9849519def286", 0x9}], 0x1}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000b80)="f77d2b5d", 0x4}], 0x1}}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000640)="42e013913edbeb683c44e18a52b5a2462064ddd92caaba941de80d06047dedb7eeeff3a27eacf4c416b6979d6c918608807c44d01535dbaab3b390086e4fd43c6b5931187023646d6beac2340fdc7a0d81214ac76a818f64d287311e8828dfd3e3dd67efdb129a6e", 0x68}, {&(0x7f0000000740)="b176d469f44ff7e206a24a3a5f3a112da355134ae64fde53dc0e681885ead332aa45811c0070066fb0e5cf5a9a4965475953e2a028f7dd4a6ed8b33465fd161cd8dce309f6be32236cf8e07a5506acb719304ebc71b2a3756cb0832d928d432d1506d368e2b001a8b392dad3dc291637673233", 0x73}], 0x2}}], 0x3, 0x2090)

89.513323ms ago: executing program 0 (id=2536):
r0 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000000100000040000180060001000a00000008000500000000000c000700000000000000000008000900710000000700060072720000080008"], 0x54}, 0x1, 0xffffff7f}, 0x0)

0s ago: executing program 0 (id=2561):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x40000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x42, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f00000001c0)="b9800000c00f3235000400000f30440f20c03508000000440f22c036646665f36592f20f22a5430f01c566ba4000edc4a39979250b00000008b9800000c00f3235010000000f30f245ab48b800000000000000800f23c00f21f83500000b000f23f8c481e57dcd", 0x67}], 0x1, 0x10, 0x0, 0x0)
setsockopt(0xffffffffffffffff, 0x84, 0x7f, &(0x7f0000000040)='!S', 0x2)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 39)

kernel console output (not intermixed with test programs):

12197]  kvm_vcpu_ioctl+0x730/0x1730
[  183.106959][T12197]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  183.106979][T12197]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  183.106996][T12197]  ? do_vfs_ioctl+0x226/0x13e0
[  183.107012][T12197]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  183.107029][T12197]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  183.107056][T12197]  ? __fget_files+0x215/0x3d0
[  183.107066][T12197]  ? hook_file_ioctl_common+0x146/0x410
[  183.107088][T12197]  ? selinux_file_ioctl+0x139/0x290
[  183.107102][T12197]  ? selinux_file_ioctl+0xb4/0x290
[  183.107118][T12197]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  183.107135][T12197]  __x64_sys_ioctl+0x18e/0x210
[  183.107153][T12197]  do_syscall_64+0x106/0xf80
[  183.107171][T12197]  ? clear_bhb_loop+0x40/0x90
[  183.107186][T12197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.107197][T12197] RIP: 0033:0x7f32d519c799
[  183.107207][T12197] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  183.107218][T12197] RSP: 002b:00007f32d5f70028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  183.107229][T12197] RAX: ffffffffffffffda RBX: 00007f32d5415fa0 RCX: 00007f32d519c799
[  183.107237][T12197] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  183.107243][T12197] RBP: 00007f32d5f70090 R08: 0000000000000000 R09: 0000000000000000
[  183.107253][T12197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  183.107260][T12197] R13: 00007f32d5416038 R14: 00007f32d5415fa0 R15: 00007ffe73016218
[  183.107274][T12197]  </TASK>
[  183.350254][T12203] efs: cannot read volume header
[  183.522869][T12211] netlink: 'syz.2.2218': attribute type 1 has an invalid length.
[  183.605525][ T6155] usb 5-1: USB disconnect, device number 25
[  183.640833][T12217] loop5: detected capacity change from 0 to 7
[  183.644370][T12217] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  183.649365][T12217] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  183.652332][T12217] Dev loop5: unable to read RDB block 7
[  183.654808][T12217]  loop5: AHDI p2 p3
[  183.656607][T12217] loop5: partition table partially beyond EOD, truncated
[  183.667855][T12217] loop5: p3 start 335544320 is beyond EOD, truncated
[  183.930605][T12230] netlink: 'syz.4.2225': attribute type 1 has an invalid length.
[  184.507816][   T39] usb 9-1: new full-speed USB device number 8 using dummy_hcd
[  184.682926][   T39] usb 9-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  184.686272][   T39] usb 9-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  184.700186][   T39] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  184.706814][   T39] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.717747][   T39] usbtmc 9-1:16.0: bulk endpoints not found
[  184.736925][T12249] FAULT_INJECTION: forcing a failure.
[  184.736925][T12249] name failslab, interval 1, probability 0, space 0, times 0
[  184.741207][T12249] CPU: 1 UID: 0 PID: 12249 Comm: syz.0.2233 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  184.741225][T12249] Tainted: [L]=SOFTLOCKUP
[  184.741229][T12249] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  184.741236][T12249] Call Trace:
[  184.741240][T12249]  <TASK>
[  184.741245][T12249]  dump_stack_lvl+0x100/0x190
[  184.741277][T12249]  should_fail_ex.cold+0x5/0xa
[  184.741292][T12249]  should_failslab+0xc2/0x120
[  184.741303][T12249]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  184.741319][T12249]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  184.741340][T12249]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  184.741361][T12249]  mmu_topup_memory_caches+0x25/0x170
[  184.741396][T12249]  kvm_mmu_load+0xd6/0x23e0
[  184.741408][T12249]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  184.741423][T12249]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  184.741441][T12249]  ? __pfx_kvm_mmu_load+0x10/0x10
[  184.741452][T12249]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  184.741470][T12249]  ? kvm_check_and_inject_events+0x961/0x10c0
[  184.741482][T12249]  ? record_steal_time+0x370/0xbe0
[  184.741500][T12249]  vcpu_run+0x39f4/0x5ca0
[  184.741518][T12249]  ? __pfx_vcpu_run+0x10/0x10
[  184.741535][T12249]  ? rcu_is_watching+0x12/0xc0
[  184.741550][T12249]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  184.741563][T12249]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  184.741580][T12249]  kvm_vcpu_ioctl+0x730/0x1730
[  184.741598][T12249]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  184.741615][T12249]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  184.741631][T12249]  ? do_vfs_ioctl+0x226/0x13e0
[  184.741648][T12249]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  184.741665][T12249]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  184.741691][T12249]  ? __fget_files+0x215/0x3d0
[  184.741702][T12249]  ? hook_file_ioctl_common+0x146/0x410
[  184.741723][T12249]  ? selinux_file_ioctl+0x139/0x290
[  184.741740][T12249]  ? selinux_file_ioctl+0xb4/0x290
[  184.741756][T12249]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  184.741773][T12249]  __x64_sys_ioctl+0x18e/0x210
[  184.741792][T12249]  do_syscall_64+0x106/0xf80
[  184.741810][T12249]  ? clear_bhb_loop+0x40/0x90
[  184.741824][T12249]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.741835][T12249] RIP: 0033:0x7fa05919c799
[  184.741846][T12249] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  184.741857][T12249] RSP: 002b:00007fa05a0a7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  184.741868][T12249] RAX: ffffffffffffffda RBX: 00007fa059416090 RCX: 00007fa05919c799
[  184.741875][T12249] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  184.741882][T12249] RBP: 00007fa05a0a7090 R08: 0000000000000000 R09: 0000000000000000
[  184.741888][T12249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  184.741895][T12249] R13: 00007fa059416128 R14: 00007fa059416090 R15: 00007ffdee757608
[  184.741909][T12249]  </TASK>
[  185.029070][T12270] netlink: 'syz.2.2240': attribute type 1 has an invalid length.
[  185.047862][T12273] loop5: detected capacity change from 0 to 7
[  185.054333][T12273] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  185.058320][T12273] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  185.061127][T12273] Dev loop5: unable to read RDB block 7
[  185.063116][T12273]  loop5: AHDI p2 p3
[  185.064483][T12273] loop5: partition table partially beyond EOD, truncated
[  185.068196][T12273] loop5: p3 start 335544320 is beyond EOD, truncated
[  185.347639][   T40] kauditd_printk_skb: 893 callbacks suppressed
[  185.347657][   T40] audit: type=1400 audit(1773461089.947:9469): avc:  denied  { read write } for  pid=5931 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  185.377707][   T40] audit: type=1400 audit(1773461089.947:9470): avc:  denied  { read write open } for  pid=5931 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  185.386198][   T40] audit: type=1400 audit(1773461089.947:9471): avc:  denied  { ioctl } for  pid=5931 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  185.387006][T12292] audit: audit_lost=6 audit_rate_limit=0 audit_backlog_limit=64
[  185.397284][   T40] audit: type=1400 audit(1773461089.957:9472): avc:  denied  { read } for  pid=12287 comm="syz.0.2243" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  185.400263][T12292] audit: out of memory in audit_log_start
[  185.405934][   T40] audit: type=1400 audit(1773461089.957:9473): avc:  denied  { read write } for  pid=8593 comm="syz-executor" name="loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  185.410014][T12292] netlink: 'syz.3.2245': attribute type 1 has an invalid length.
[  185.415931][   T40] audit: type=1400 audit(1773461089.957:9474): avc:  denied  { read open } for  pid=12287 comm="syz.0.2243" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  185.426115][   T40] audit: type=1400 audit(1773461089.957:9475): avc:  denied  { read write open } for  pid=8593 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  185.434739][   T40] audit: type=1400 audit(1773461089.957:9476): avc:  denied  { ioctl } for  pid=8593 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  185.558075][T12296] syz.2.2248 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  185.839222][T12312] cgroup2: Unknown parameter 'euid'
[  185.842306][T12312] netlink: 'syz.2.2255': attribute type 3 has an invalid length.
[  185.844831][T12307] FAULT_INJECTION: forcing a failure.
[  185.844831][T12307] name failslab, interval 1, probability 0, space 0, times 0
[  185.844867][T12307] CPU: 0 UID: 0 PID: 12307 Comm: syz.3.2254 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  185.844892][T12307] Tainted: [L]=SOFTLOCKUP
[  185.844899][T12307] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  185.844909][T12307] Call Trace:
[  185.844915][T12307]  <TASK>
[  185.844922][T12307]  dump_stack_lvl+0x100/0x190
[  185.844962][T12307]  should_fail_ex.cold+0x5/0xa
[  185.844986][T12307]  should_failslab+0xc2/0x120
[  185.845006][T12307]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  185.845031][T12307]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  185.845064][T12307]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  185.845098][T12307]  mmu_topup_memory_caches+0x25/0x170
[  185.845120][T12307]  kvm_mmu_load+0xd6/0x23e0
[  185.845139][T12307]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  185.845164][T12307]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  185.845191][T12307]  ? __pfx_kvm_mmu_load+0x10/0x10
[  185.845210][T12307]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  185.845237][T12307]  ? kvm_check_and_inject_events+0x961/0x10c0
[  185.845255][T12307]  ? record_steal_time+0x370/0xbe0
[  185.845283][T12307]  vcpu_run+0x39f4/0x5ca0
[  185.845331][T12307]  ? __pfx_vcpu_run+0x10/0x10
[  185.845361][T12307]  ? rcu_is_watching+0x12/0xc0
[  185.845386][T12307]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  185.845407][T12307]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  185.845435][T12307]  kvm_vcpu_ioctl+0x730/0x1730
[  185.845464][T12307]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  185.845491][T12307]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  185.845517][T12307]  ? do_vfs_ioctl+0x226/0x13e0
[  185.845545][T12307]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  185.845571][T12307]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  185.845612][T12307]  ? __fget_files+0x215/0x3d0
[  185.845630][T12307]  ? hook_file_ioctl_common+0x146/0x410
[  185.845665][T12307]  ? selinux_file_ioctl+0x139/0x290
[  185.845688][T12307]  ? selinux_file_ioctl+0xb4/0x290
[  185.845713][T12307]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  185.845745][T12307]  __x64_sys_ioctl+0x18e/0x210
[  185.845773][T12307]  do_syscall_64+0x106/0xf80
[  185.845801][T12307]  ? clear_bhb_loop+0x40/0x90
[  185.845824][T12307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.845842][T12307] RIP: 0033:0x7f32d519c799
[  185.845858][T12307] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  185.845875][T12307] RSP: 002b:00007f32d5f70028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  185.845893][T12307] RAX: ffffffffffffffda RBX: 00007f32d5415fa0 RCX: 00007f32d519c799
[  185.845905][T12307] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  185.845915][T12307] RBP: 00007f32d5f70090 R08: 0000000000000000 R09: 0000000000000000
[  185.845926][T12307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  185.845937][T12307] R13: 00007f32d5416038 R14: 00007f32d5415fa0 R15: 00007ffe73016218
[  185.845962][T12307]  </TASK>
[  185.945269][T12312] netlink: 'syz.2.2255': attribute type 1 has an invalid length.
[  185.947883][T12312] __nla_validate_parse: 11 callbacks suppressed
[  185.947893][T12312] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2255'.
[  185.952780][T12312] NCSI netlink: No device for ifindex 0
[  186.165811][T12321] ./bus: Can't lookup blockdev
[  186.204344][T12323] netlink: 120 bytes leftover after parsing attributes in process `syz.3.2260'.
[  186.208670][T12323] netlink: 'syz.3.2260': attribute type 1 has an invalid length.
[  186.211509][T12323] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2260'.
[  186.265971][T12325] loop5: detected capacity change from 0 to 7
[  186.271185][T12325] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  186.275043][T12325] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  186.277247][T12325] Dev loop5: unable to read RDB block 7
[  186.282312][T12325]  loop5: AHDI p2 p3
[  186.283640][T12325] loop5: partition table partially beyond EOD, truncated
[  186.286070][T12325] loop5: p3 start 335544320 is beyond EOD, truncated
[  186.463719][T12334] netlink: 120 bytes leftover after parsing attributes in process `syz.3.2265'.
[  186.466707][T12334] netlink: 'syz.3.2265': attribute type 1 has an invalid length.
[  186.471232][T12334] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2265'.
[  186.541014][T12340] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2267'.
[  186.551904][T12340] netlink: 120 bytes leftover after parsing attributes in process `syz.2.2267'.
[  186.555898][T12340] netlink: 'syz.2.2267': attribute type 1 has an invalid length.
[  186.561301][T12340] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2267'.
[  186.766009][T12347] FAULT_INJECTION: forcing a failure.
[  186.766009][T12347] name failslab, interval 1, probability 0, space 0, times 0
[  186.770912][T12347] CPU: 0 UID: 0 PID: 12347 Comm: syz.2.2271 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  186.770938][T12347] Tainted: [L]=SOFTLOCKUP
[  186.770944][T12347] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  186.770954][T12347] Call Trace:
[  186.770960][T12347]  <TASK>
[  186.770966][T12347]  dump_stack_lvl+0x100/0x190
[  186.771003][T12347]  should_fail_ex.cold+0x5/0xa
[  186.771026][T12347]  should_failslab+0xc2/0x120
[  186.771043][T12347]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  186.771066][T12347]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  186.771097][T12347]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  186.771134][T12347]  mmu_topup_memory_caches+0x25/0x170
[  186.771154][T12347]  kvm_mmu_load+0xd6/0x23e0
[  186.771171][T12347]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  186.771194][T12347]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  186.771220][T12347]  ? __pfx_kvm_mmu_load+0x10/0x10
[  186.771236][T12347]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  186.771262][T12347]  ? kvm_check_and_inject_events+0x961/0x10c0
[  186.771280][T12347]  ? record_steal_time+0x370/0xbe0
[  186.771306][T12347]  vcpu_run+0x39f4/0x5ca0
[  186.771334][T12347]  ? __pfx_vcpu_run+0x10/0x10
[  186.771361][T12347]  ? rcu_is_watching+0x12/0xc0
[  186.771384][T12347]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  186.771403][T12347]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  186.771426][T12347]  kvm_vcpu_ioctl+0x730/0x1730
[  186.771452][T12347]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  186.771476][T12347]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  186.771500][T12347]  ? do_vfs_ioctl+0x226/0x13e0
[  186.771523][T12347]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  186.771547][T12347]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  186.771585][T12347]  ? __fget_files+0x215/0x3d0
[  186.771600][T12347]  ? hook_file_ioctl_common+0x146/0x410
[  186.771633][T12347]  ? selinux_file_ioctl+0x139/0x290
[  186.771653][T12347]  ? selinux_file_ioctl+0xb4/0x290
[  186.771676][T12347]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  186.771701][T12347]  __x64_sys_ioctl+0x18e/0x210
[  186.771726][T12347]  do_syscall_64+0x106/0xf80
[  186.771777][T12347]  ? clear_bhb_loop+0x40/0x90
[  186.771799][T12347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.771815][T12347] RIP: 0033:0x7f9245d9c799
[  186.771827][T12347] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  186.771838][T12347] RSP: 002b:00007f9246ca0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  186.771849][T12347] RAX: ffffffffffffffda RBX: 00007f9246015fa0 RCX: 00007f9245d9c799
[  186.771857][T12347] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  186.771863][T12347] RBP: 00007f9246ca0090 R08: 0000000000000000 R09: 0000000000000000
[  186.771870][T12347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  186.771876][T12347] R13: 00007f9246016038 R14: 00007f9246015fa0 R15: 00007fff8451ff28
[  186.771891][T12347]  </TASK>
[  186.990311][T12363] netlink: 120 bytes leftover after parsing attributes in process `syz.0.2276'.
[  186.993273][T12363] netlink: 'syz.0.2276': attribute type 1 has an invalid length.
[  186.996089][T12363] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2276'.
[  186.996703][T12362] ptrace attach of "/syz-executor exec"[12364] was attempted by "/syz-executor exec"[12362]
[  187.074025][T12366] loop5: detected capacity change from 0 to 7
[  187.076744][T12366] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  187.082124][T12366] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  187.084810][T12366] Dev loop5: unable to read RDB block 7
[  187.087089][T12366]  loop5: AHDI p2 p3
[  187.089995][T12366] loop5: partition table partially beyond EOD, truncated
[  187.095082][T12366] loop5: p3 start 335544320 is beyond EOD, truncated
[  187.168043][T12373] FAULT_INJECTION: forcing a failure.
[  187.168043][T12373] name failslab, interval 1, probability 0, space 0, times 0
[  187.173302][T12373] CPU: 3 UID: 0 PID: 12373 Comm: syz.3.2282 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  187.173329][T12373] Tainted: [L]=SOFTLOCKUP
[  187.173335][T12373] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  187.173345][T12373] Call Trace:
[  187.173353][T12373]  <TASK>
[  187.173359][T12373]  dump_stack_lvl+0x100/0x190
[  187.173389][T12373]  should_fail_ex.cold+0x5/0xa
[  187.173410][T12373]  should_failslab+0xc2/0x120
[  187.173427][T12373]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  187.173453][T12373]  ? sidtab_sid2str_get+0x17a/0x670
[  187.173479][T12373]  kmemdup_noprof+0x29/0x60
[  187.173504][T12373]  sidtab_sid2str_get+0x17a/0x670
[  187.173532][T12373]  security_sid_to_context_core+0x35a/0x6d0
[  187.173554][T12373]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  187.173572][T12373]  avc_audit_post_callback+0x109/0x910
[  187.173592][T12373]  ? __pfx_audit_log_lsm_data+0x10/0x10
[  187.173608][T12373]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  187.173626][T12373]  ? skb_put+0x138/0x180
[  187.173643][T12373]  ? audit_log_n_string+0x256/0x550
[  187.173663][T12373]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  187.173681][T12373]  common_lsm_audit+0x23f/0x2b0
[  187.173697][T12373]  ? __pfx_common_lsm_audit+0x10/0x10
[  187.173712][T12373]  ? avc_denied+0x14a/0x190
[  187.173733][T12373]  slow_avc_audit+0x186/0x210
[  187.173752][T12373]  ? __pfx_slow_avc_audit+0x10/0x10
[  187.173771][T12373]  ? find_held_lock+0x2b/0x80
[  187.173786][T12373]  ? avc_has_perm_noaudit+0x2b3/0x3b0
[  187.173803][T12373]  avc_has_perm+0x1a6/0x1e0
[  187.173814][T12373]  ? __pfx_avc_has_perm+0x10/0x10
[  187.173830][T12373]  ? is_bpf_text_address+0x94/0x1a0
[  187.173860][T12373]  sock_has_perm+0x251/0x2f0
[  187.173879][T12373]  ? __pfx_sock_has_perm+0x10/0x10
[  187.173898][T12373]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[  187.173920][T12373]  ? import_ubuf+0x1b6/0x220
[  187.173949][T12373]  ? __might_fault+0x20/0x140
[  187.173971][T12373]  ? __might_fault+0xc5/0x140
[  187.173997][T12373]  security_socket_sendmsg+0xd3/0x230
[  187.174015][T12373]  ____sys_sendmsg+0x862/0xb70
[  187.174045][T12373]  ? __pfx_____sys_sendmsg+0x10/0x10
[  187.174080][T12373]  ___sys_sendmsg+0x190/0x1e0
[  187.174109][T12373]  ? __pfx____sys_sendmsg+0x10/0x10
[  187.174163][T12373]  __sys_sendmsg+0x170/0x220
[  187.174186][T12373]  ? __pfx___sys_sendmsg+0x10/0x10
[  187.174223][T12373]  do_syscall_64+0x106/0xf80
[  187.174245][T12373]  ? clear_bhb_loop+0x40/0x90
[  187.174267][T12373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.174285][T12373] RIP: 0033:0x7f32d519c799
[  187.174301][T12373] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  187.174316][T12373] RSP: 002b:00007f32d5f70028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  187.174334][T12373] RAX: ffffffffffffffda RBX: 00007f32d5415fa0 RCX: 00007f32d519c799
[  187.174345][T12373] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000004
[  187.174356][T12373] RBP: 00007f32d5f70090 R08: 0000000000000000 R09: 0000000000000000
[  187.174366][T12373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  187.174375][T12373] R13: 00007f32d5416038 R14: 00007f32d5415fa0 R15: 00007ffe73016218
[  187.174396][T12373]  </TASK>
[  187.175116][T12373] netlink: 'syz.3.2282': attribute type 1 has an invalid length.
[  187.208732][T12374] lo speed is unknown, defaulting to 1000
[  187.248519][T12376] netlink: 'syz.2.2283': attribute type 1 has an invalid length.
[  187.267150][   T39] usb 9-1: USB disconnect, device number 8
[  187.392497][T12379] 8021q: adding VLAN 0 to HW filter on device bond0
[  187.457977][T12379] bond0: (slave veth7): Enslaving as an active interface with a down link
[  187.842481][T12401] FAULT_INJECTION: forcing a failure.
[  187.842481][T12401] name failslab, interval 1, probability 0, space 0, times 0
[  187.847895][T12401] CPU: 0 UID: 0 PID: 12401 Comm: syz.0.2291 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  187.847923][T12401] Tainted: [L]=SOFTLOCKUP
[  187.847930][T12401] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  187.847940][T12401] Call Trace:
[  187.847946][T12401]  <TASK>
[  187.847956][T12401]  dump_stack_lvl+0x100/0x190
[  187.848006][T12401]  should_fail_ex.cold+0x5/0xa
[  187.848028][T12401]  should_failslab+0xc2/0x120
[  187.848045][T12401]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  187.848076][T12401]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  187.848107][T12401]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  187.848140][T12401]  mmu_topup_memory_caches+0x25/0x170
[  187.848161][T12401]  kvm_mmu_load+0xd6/0x23e0
[  187.848178][T12401]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  187.848201][T12401]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  187.848228][T12401]  ? __pfx_kvm_mmu_load+0x10/0x10
[  187.848246][T12401]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  187.848273][T12401]  ? kvm_check_and_inject_events+0x961/0x10c0
[  187.848293][T12401]  ? record_steal_time+0x370/0xbe0
[  187.848320][T12401]  vcpu_run+0x39f4/0x5ca0
[  187.848350][T12401]  ? __pfx_vcpu_run+0x10/0x10
[  187.848379][T12401]  ? rcu_is_watching+0x12/0xc0
[  187.848401][T12401]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  187.848419][T12401]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  187.848445][T12401]  kvm_vcpu_ioctl+0x730/0x1730
[  187.848470][T12401]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  187.848493][T12401]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  187.848517][T12401]  ? do_vfs_ioctl+0x226/0x13e0
[  187.848540][T12401]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  187.848563][T12401]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  187.848594][T12401]  ? __fget_files+0x215/0x3d0
[  187.848610][T12401]  ? hook_file_ioctl_common+0x146/0x410
[  187.848641][T12401]  ? selinux_file_ioctl+0x139/0x290
[  187.848662][T12401]  ? selinux_file_ioctl+0xb4/0x290
[  187.848684][T12401]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  187.848710][T12401]  __x64_sys_ioctl+0x18e/0x210
[  187.848736][T12401]  do_syscall_64+0x106/0xf80
[  187.848757][T12401]  ? clear_bhb_loop+0x40/0x90
[  187.848779][T12401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.848796][T12401] RIP: 0033:0x7fa05919c799
[  187.848812][T12401] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  187.848828][T12401] RSP: 002b:00007fa05a0c8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  187.848845][T12401] RAX: ffffffffffffffda RBX: 00007fa059415fa0 RCX: 00007fa05919c799
[  187.848857][T12401] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  187.848867][T12401] RBP: 00007fa05a0c8090 R08: 0000000000000000 R09: 0000000000000000
[  187.848877][T12401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  187.848887][T12401] R13: 00007fa059416038 R14: 00007fa059415fa0 R15: 00007ffdee757608
[  187.848911][T12401]  </TASK>
[  188.107801][   T29] usb 8-1: new full-speed USB device number 36 using dummy_hcd
[  188.159076][T12416] lo speed is unknown, defaulting to 1000
[  188.182394][T12420] loop5: detected capacity change from 0 to 7
[  188.186723][T12420] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  188.191629][T12420] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  188.194544][T12420] Dev loop5: unable to read RDB block 7
[  188.197070][T12420]  loop5: AHDI p2 p3
[  188.199326][T12420] loop5: partition table partially beyond EOD, truncated
[  188.202542][T12420] loop5: p3 start 335544320 is beyond EOD, truncated
[  188.294544][   T29] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  188.298013][   T29] usb 8-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  188.302090][   T29] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  188.304922][   T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.328416][   T29] usbtmc 8-1:16.0: bulk endpoints not found
[  188.454808][T12428] FAULT_INJECTION: forcing a failure.
[  188.454808][T12428] name failslab, interval 1, probability 0, space 0, times 0
[  188.461337][T12428] CPU: 3 UID: 0 PID: 12428 Comm: syz.2.2301 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  188.461366][T12428] Tainted: [L]=SOFTLOCKUP
[  188.461372][T12428] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  188.461383][T12428] Call Trace:
[  188.461390][T12428]  <TASK>
[  188.461397][T12428]  dump_stack_lvl+0x100/0x190
[  188.461430][T12428]  should_fail_ex.cold+0x5/0xa
[  188.461454][T12428]  should_failslab+0xc2/0x120
[  188.461472][T12428]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  188.461499][T12428]  ? sidtab_sid2str_get+0x17a/0x670
[  188.461530][T12428]  kmemdup_noprof+0x29/0x60
[  188.461556][T12428]  sidtab_sid2str_get+0x17a/0x670
[  188.461583][T12428]  security_sid_to_context_core+0x35a/0x6d0
[  188.461607][T12428]  ? avc_audit_post_callback+0x115/0x910
[  188.461635][T12428]  avc_audit_post_callback+0x1aa/0x910
[  188.461663][T12428]  ? __pfx_audit_log_lsm_data+0x10/0x10
[  188.461688][T12428]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  188.461712][T12428]  ? skb_put+0x138/0x180
[  188.461742][T12428]  ? audit_log_n_string+0x256/0x550
[  188.461770][T12428]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  188.461795][T12428]  common_lsm_audit+0x23f/0x2b0
[  188.461820][T12428]  ? __pfx_common_lsm_audit+0x10/0x10
[  188.461843][T12428]  ? avc_denied+0x14a/0x190
[  188.461876][T12428]  slow_avc_audit+0x186/0x210
[  188.461904][T12428]  ? __pfx_slow_avc_audit+0x10/0x10
[  188.461933][T12428]  ? find_held_lock+0x2b/0x80
[  188.461954][T12428]  ? avc_has_perm_noaudit+0x2b3/0x3b0
[  188.461981][T12428]  avc_has_perm+0x1a6/0x1e0
[  188.462002][T12428]  ? __pfx_avc_has_perm+0x10/0x10
[  188.462021][T12428]  ? is_bpf_text_address+0x94/0x1a0
[  188.462055][T12428]  sock_has_perm+0x251/0x2f0
[  188.462076][T12428]  ? __pfx_sock_has_perm+0x10/0x10
[  188.462097][T12428]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[  188.462128][T12428]  ? import_ubuf+0x1b6/0x220
[  188.462158][T12428]  ? __might_fault+0x20/0x140
[  188.462181][T12428]  ? __might_fault+0xc5/0x140
[  188.462209][T12428]  security_socket_sendmsg+0xd3/0x230
[  188.462230][T12428]  ____sys_sendmsg+0x862/0xb70
[  188.462259][T12428]  ? __pfx_____sys_sendmsg+0x10/0x10
[  188.462296][T12428]  ___sys_sendmsg+0x190/0x1e0
[  188.462325][T12428]  ? __pfx____sys_sendmsg+0x10/0x10
[  188.462382][T12428]  __sys_sendmsg+0x170/0x220
[  188.462403][T12428]  ? __pfx___sys_sendmsg+0x10/0x10
[  188.462441][T12428]  do_syscall_64+0x106/0xf80
[  188.462462][T12428]  ? clear_bhb_loop+0x40/0x90
[  188.462486][T12428]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.462504][T12428] RIP: 0033:0x7f9245d9c799
[  188.462520][T12428] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  188.462537][T12428] RSP: 002b:00007f9246ca0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  188.462555][T12428] RAX: ffffffffffffffda RBX: 00007f9246015fa0 RCX: 00007f9245d9c799
[  188.462567][T12428] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000004
[  188.462577][T12428] RBP: 00007f9246ca0090 R08: 0000000000000000 R09: 0000000000000000
[  188.462588][T12428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  188.462599][T12428] R13: 00007f9246016038 R14: 00007f9246015fa0 R15: 00007fff8451ff28
[  188.462623][T12428]  </TASK>
[  188.757368][T12439] bridge0: port 1(ipvlan3) entered blocking state
[  188.761985][T12439] bridge0: port 1(ipvlan3) entered disabled state
[  188.764270][T12439] ipvlan3: entered allmulticast mode
[  188.766169][T12439] bridge0: entered allmulticast mode
[  188.769014][T12439] ipvlan3: left allmulticast mode
[  188.771423][T12439] bridge0: left allmulticast mode
[  189.137680][T12457] lo speed is unknown, defaulting to 1000
[  189.316950][   T34] IPVS: starting estimator thread 0...
[  189.417827][T12474] IPVS: using max 43 ests per chain, 103200 per kthread
[  189.534961][T12484] syz_tun: entered allmulticast mode
[  189.540159][T12483] syz_tun: left allmulticast mode
[  189.649980][T12489] syzkaller1: entered promiscuous mode
[  189.652161][T12489] syzkaller1: entered allmulticast mode
[  189.781249][T12494] FAULT_INJECTION: forcing a failure.
[  189.781249][T12494] name failslab, interval 1, probability 0, space 0, times 0
[  189.786498][T12494] CPU: 2 UID: 0 PID: 12494 Comm: syz.0.2326 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  189.786525][T12494] Tainted: [L]=SOFTLOCKUP
[  189.786531][T12494] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  189.786541][T12494] Call Trace:
[  189.786546][T12494]  <TASK>
[  189.786552][T12494]  dump_stack_lvl+0x100/0x190
[  189.786583][T12494]  should_fail_ex.cold+0x5/0xa
[  189.786605][T12494]  should_failslab+0xc2/0x120
[  189.786623][T12494]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  189.786645][T12494]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  189.786675][T12494]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  189.786705][T12494]  mmu_topup_memory_caches+0x25/0x170
[  189.786726][T12494]  kvm_mmu_load+0xd6/0x23e0
[  189.786743][T12494]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  189.786764][T12494]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  189.786788][T12494]  ? __pfx_kvm_mmu_load+0x10/0x10
[  189.786804][T12494]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  189.786830][T12494]  ? kvm_check_and_inject_events+0x961/0x10c0
[  189.786847][T12494]  ? record_steal_time+0x370/0xbe0
[  189.786874][T12494]  vcpu_run+0x39f4/0x5ca0
[  189.786903][T12494]  ? __pfx_vcpu_run+0x10/0x10
[  189.786930][T12494]  ? rcu_is_watching+0x12/0xc0
[  189.786953][T12494]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  189.786973][T12494]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  189.786999][T12494]  kvm_vcpu_ioctl+0x730/0x1730
[  189.787027][T12494]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  189.787052][T12494]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  189.787077][T12494]  ? do_vfs_ioctl+0x226/0x13e0
[  189.787102][T12494]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  189.787127][T12494]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  189.787159][T12494]  ? __fget_files+0x215/0x3d0
[  189.787174][T12494]  ? hook_file_ioctl_common+0x146/0x410
[  189.787213][T12494]  ? selinux_file_ioctl+0x139/0x290
[  189.787233][T12494]  ? selinux_file_ioctl+0xb4/0x290
[  189.787256][T12494]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  189.787280][T12494]  __x64_sys_ioctl+0x18e/0x210
[  189.787304][T12494]  do_syscall_64+0x106/0xf80
[  189.787324][T12494]  ? clear_bhb_loop+0x40/0x90
[  189.787344][T12494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.787361][T12494] RIP: 0033:0x7fa05919c799
[  189.787376][T12494] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  189.787391][T12494] RSP: 002b:00007fa05a0c8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  189.787408][T12494] RAX: ffffffffffffffda RBX: 00007fa059415fa0 RCX: 00007fa05919c799
[  189.787418][T12494] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  189.787427][T12494] RBP: 00007fa05a0c8090 R08: 0000000000000000 R09: 0000000000000000
[  189.787438][T12494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  189.787447][T12494] R13: 00007fa059416038 R14: 00007fa059415fa0 R15: 00007ffdee757608
[  189.787471][T12494]  </TASK>
[  189.830033][T12497] loop5: detected capacity change from 0 to 7
[  189.898729][T12497] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  189.902894][T12497] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  189.905803][T12497] Dev loop5: unable to read RDB block 7
[  189.909641][T12497]  loop5: AHDI p2 p3
[  189.911017][T12497] loop5: partition table partially beyond EOD, truncated
[  189.913345][T12497] loop5: p3 start 335544320 is beyond EOD, truncated
[  190.856800][ T4220] usb 8-1: USB disconnect, device number 36
[  190.871767][   T40] kauditd_printk_skb: 994 callbacks suppressed
[  190.871780][   T40] audit: type=1400 audit(1773461095.477:10469): avc:  denied  { read write } for  pid=5931 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  190.890239][   T40] audit: type=1400 audit(1773461095.477:10470): avc:  denied  { read write open } for  pid=5931 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  190.905901][   T40] audit: type=1400 audit(1773461095.477:10471): avc:  denied  { ioctl } for  pid=5931 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  190.919307][   T40] audit: type=1400 audit(1773461095.507:10472): avc:  denied  { create } for  pid=12501 comm="syz.3.2329" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  190.925812][   T40] audit: type=1400 audit(1773461095.527:10473): avc:  denied  { read } for  pid=12502 comm="syz.4.2330" dev="nsfs" ino=4026533056 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  190.931916][T12503] lo speed is unknown, defaulting to 1000
[  190.935667][   T40] audit: type=1400 audit(1773461095.527:10474): avc:  denied  { read open } for  pid=12502 comm="syz.4.2330" path="net:[4026533056]" dev="nsfs" ino=4026533056 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  190.944298][   T40] audit: type=1400 audit(1773461095.537:10475): avc:  denied  { name_bind } for  pid=12505 comm="syz.2.2331" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  190.952964][   T40] audit: type=1400 audit(1773461095.537:10476): avc:  denied  { node_bind } for  pid=12505 comm="syz.2.2331" saddr=224.0.0.1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  190.953076][T12504] FAULT_INJECTION: forcing a failure.
[  190.953076][T12504] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  190.967007][   T40] audit: type=1400 audit(1773461095.547:10477): avc:  denied  { read write } for  pid=12506 comm="syz.0.2337" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  190.975651][T12504] CPU: 2 UID: 0 PID: 12504 Comm: syz.4.2330 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  190.975671][T12504] Tainted: [L]=SOFTLOCKUP
[  190.975675][T12504] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  190.975682][T12504] Call Trace:
[  190.975691][T12504]  <TASK>
[  190.975695][T12504]  dump_stack_lvl+0x100/0x190
[  190.975744][T12504]  should_fail_ex.cold+0x5/0xa
[  190.975759][T12504]  _copy_from_iter+0x1f4/0x1690
[  190.975777][T12504]  ? __asan_memset+0x23/0x50
[  190.975793][T12504]  ? __pfx__copy_from_iter+0x10/0x10
[  190.975804][T12504]  ? __pfx___alloc_skb+0x10/0x10
[  190.975826][T12504]  netlink_sendmsg+0x808/0xda0
[  190.975844][T12504]  ? __pfx_netlink_sendmsg+0x10/0x10
[  190.975859][T12504]  ? __might_fault+0x20/0x140
[  190.975879][T12504]  ____sys_sendmsg+0x9e1/0xb70
[  190.975895][T12504]  ? __pfx_netlink_sendmsg+0x10/0x10
[  190.975912][T12504]  ? __pfx_____sys_sendmsg+0x10/0x10
[  190.975935][T12504]  ___sys_sendmsg+0x190/0x1e0
[  190.975954][T12504]  ? __pfx____sys_sendmsg+0x10/0x10
[  190.975987][T12504]  __sys_sendmsg+0x170/0x220
[  190.976001][T12504]  ? __pfx___sys_sendmsg+0x10/0x10
[  190.976023][T12504]  do_syscall_64+0x106/0xf80
[  190.976037][T12504]  ? clear_bhb_loop+0x40/0x90
[  190.976050][T12504]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.976062][T12504] RIP: 0033:0x7f003859c799
[  190.976073][T12504] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  190.976084][T12504] RSP: 002b:00007f0039429028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  190.976096][T12504] RAX: ffffffffffffffda RBX: 00007f0038815fa0 RCX: 00007f003859c799
[  190.976103][T12504] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000004
[  190.976110][T12504] RBP: 00007f0039429090 R08: 0000000000000000 R09: 0000000000000000
[  190.976116][T12504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  190.976123][T12504] R13: 00007f0038816038 R14: 00007f0038815fa0 R15: 00007fff1c990668
[  190.976136][T12504]  </TASK>
[  190.976365][   T40] audit: type=1400 audit(1773461095.547:10478): avc:  denied  { read write open } for  pid=12506 comm="syz.0.2337" path="/dev/raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  191.013466][T12511] __nla_validate_parse: 20 callbacks suppressed
[  191.013478][T12511] netlink: 120 bytes leftover after parsing attributes in process `syz.2.2332'.
[  191.059383][T12511] validate_nla: 5 callbacks suppressed
[  191.059395][T12511] netlink: 'syz.2.2332': attribute type 1 has an invalid length.
[  191.063682][T12511] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2332'.
[  191.187662][   T53] usb 5-1: new full-speed USB device number 26 using dummy_hcd
[  191.201645][T12503] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2329'.
[  191.348637][   T53] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  191.354930][   T53] usb 5-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  191.364457][   T53] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  191.370088][   T53] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.391036][   T53] usbtmc 5-1:16.0: bulk endpoints not found
[  191.473707][T12534] netlink: 120 bytes leftover after parsing attributes in process `syz.2.2339'.
[  191.478133][T12534] netlink: 'syz.2.2339': attribute type 1 has an invalid length.
[  191.481563][T12534] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2339'.
[  191.600165][T12540] input: syz0 as /devices/virtual/input/input22
[  191.733548][T12544] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2344'.
[  191.738950][   T53] IPVS: starting estimator thread 0...
[  191.840812][T12547] option changes via remount are deprecated (pid=12546 comm=syz.4.2345)
[  191.844365][T12547] cgroup: option or name mismatch, new: 0x0 "syzkaller0", old: 0x0 ""
[  191.848606][T12545] IPVS: using max 43 ests per chain, 103200 per kthread
[  192.136884][T12559] FAULT_INJECTION: forcing a failure.
[  192.136884][T12559] name failslab, interval 1, probability 0, space 0, times 0
[  192.142552][T12559] CPU: 2 UID: 0 PID: 12559 Comm: syz.2.2350 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  192.142570][T12559] Tainted: [L]=SOFTLOCKUP
[  192.142574][T12559] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  192.142580][T12559] Call Trace:
[  192.142585][T12559]  <TASK>
[  192.142590][T12559]  dump_stack_lvl+0x100/0x190
[  192.142618][T12559]  should_fail_ex.cold+0x5/0xa
[  192.142634][T12559]  should_failslab+0xc2/0x120
[  192.142645][T12559]  __kvmalloc_node_noprof+0xfa/0xa00
[  192.142661][T12559]  ? file_tty_write.isra.0+0x64e/0x890
[  192.142685][T12559]  file_tty_write.isra.0+0x64e/0x890
[  192.142699][T12559]  ? security_file_permission+0x76/0x210
[  192.142715][T12559]  ? rw_verify_area+0xce/0x6d0
[  192.142732][T12559]  vfs_write+0x6ac/0x1070
[  192.142750][T12559]  ? __pfx_tty_write+0x10/0x10
[  192.142765][T12559]  ? __pfx_vfs_write+0x10/0x10
[  192.142781][T12559]  ? find_held_lock+0x2b/0x80
[  192.142804][T12559]  ksys_write+0x12a/0x250
[  192.142821][T12559]  ? __pfx_ksys_write+0x10/0x10
[  192.142843][T12559]  do_syscall_64+0x106/0xf80
[  192.142860][T12559]  ? clear_bhb_loop+0x40/0x90
[  192.142875][T12559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.142887][T12559] RIP: 0033:0x7f9245d9c799
[  192.142897][T12559] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  192.142908][T12559] RSP: 002b:00007f9246ca0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  192.142919][T12559] RAX: ffffffffffffffda RBX: 00007f9246015fa0 RCX: 00007f9245d9c799
[  192.142926][T12559] RDX: 0000000000001006 RSI: 0000200000001040 RDI: 0000000000000004
[  192.142933][T12559] RBP: 00007f9246ca0090 R08: 0000000000000000 R09: 0000000000000000
[  192.142940][T12559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  192.142946][T12559] R13: 00007f9246016038 R14: 00007f9246015fa0 R15: 00007fff8451ff28
[  192.142961][T12559]  </TASK>
[  192.388273][T12568] loop5: detected capacity change from 0 to 7
[  192.393665][T12568] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  192.397203][T12568] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  192.402604][T12568] Dev loop5: unable to read RDB block 7
[  192.404542][T12568]  loop5: AHDI p2 p3
[  192.405842][T12568] loop5: partition table partially beyond EOD, truncated
[  192.408688][T12568] loop5: p3 start 335544320 is beyond EOD, truncated
[  192.482375][T12570] FAULT_INJECTION: forcing a failure.
[  192.482375][T12570] name failslab, interval 1, probability 0, space 0, times 0
[  192.488032][T12570] CPU: 0 UID: 0 PID: 12570 Comm: syz.3.2354 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  192.488060][T12570] Tainted: [L]=SOFTLOCKUP
[  192.488066][T12570] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  192.488076][T12570] Call Trace:
[  192.488082][T12570]  <TASK>
[  192.488088][T12570]  dump_stack_lvl+0x100/0x190
[  192.488121][T12570]  should_fail_ex.cold+0x5/0xa
[  192.488144][T12570]  should_failslab+0xc2/0x120
[  192.488163][T12570]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  192.488188][T12570]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  192.488220][T12570]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  192.488253][T12570]  mmu_topup_memory_caches+0x25/0x170
[  192.488274][T12570]  kvm_mmu_load+0xd6/0x23e0
[  192.488293][T12570]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  192.488317][T12570]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  192.488343][T12570]  ? __pfx_kvm_mmu_load+0x10/0x10
[  192.488360][T12570]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  192.488386][T12570]  ? kvm_check_and_inject_events+0x961/0x10c0
[  192.488406][T12570]  ? record_steal_time+0x370/0xbe0
[  192.488434][T12570]  vcpu_run+0x39f4/0x5ca0
[  192.488464][T12570]  ? __pfx_vcpu_run+0x10/0x10
[  192.488493][T12570]  ? rcu_is_watching+0x12/0xc0
[  192.488518][T12570]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  192.488539][T12570]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  192.488568][T12570]  kvm_vcpu_ioctl+0x730/0x1730
[  192.488596][T12570]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  192.488622][T12570]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  192.488647][T12570]  ? do_vfs_ioctl+0x226/0x13e0
[  192.488673][T12570]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  192.488699][T12570]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  192.488738][T12570]  ? __fget_files+0x215/0x3d0
[  192.488756][T12570]  ? hook_file_ioctl_common+0x146/0x410
[  192.488791][T12570]  ? selinux_file_ioctl+0x139/0x290
[  192.488813][T12570]  ? selinux_file_ioctl+0xb4/0x290
[  192.488839][T12570]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  192.488866][T12570]  __x64_sys_ioctl+0x18e/0x210
[  192.488893][T12570]  do_syscall_64+0x106/0xf80
[  192.488915][T12570]  ? clear_bhb_loop+0x40/0x90
[  192.488937][T12570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.488955][T12570] RIP: 0033:0x7f32d519c799
[  192.488971][T12570] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  192.488988][T12570] RSP: 002b:00007f32d5f70028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  192.489006][T12570] RAX: ffffffffffffffda RBX: 00007f32d5415fa0 RCX: 00007f32d519c799
[  192.489017][T12570] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  192.489027][T12570] RBP: 00007f32d5f70090 R08: 0000000000000000 R09: 0000000000000000
[  192.489038][T12570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  192.489047][T12570] R13: 00007f32d5416038 R14: 00007f32d5415fa0 R15: 00007ffe73016218
[  192.489072][T12570]  </TASK>
[  192.706156][T12579] netlink: 120 bytes leftover after parsing attributes in process `syz.4.2357'.
[  192.710116][T12579] netlink: 'syz.4.2357': attribute type 1 has an invalid length.
[  192.713249][T12579] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2357'.
[  192.838086][T12583] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  192.840929][T12583] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  192.845574][T12583] vhci_hcd vhci_hcd.0: Device attached
[  192.849823][T12588] usbip_core: unknown command
[  192.854256][T12588] vhci_hcd: unknown pdu 795108726
[  192.857041][T12588] usbip_core: unknown command
[  192.862768][ T7069] vhci_hcd vhci_hcd.2: stop threads
[  192.864648][ T7069] vhci_hcd vhci_hcd.2: release socket
[  192.864676][ T7069] vhci_hcd vhci_hcd.2: disconnect device
[  193.117621][    T9] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  193.267643][    T9] usb 9-1: Using ep0 maxpacket: 8
[  193.270702][    T9] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  193.273167][    T9] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  193.276720][    T9] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  193.281745][    T9] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  193.286536][    T9] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  193.295774][    T9] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  193.300398][    T9] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  193.305020][    T9] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  193.310072][    T9] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  193.313976][    T9] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  193.321629][    T9] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  193.324874][    T9] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  193.329955][    T9] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  193.333588][    T9] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  193.337118][    T9] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  193.359976][    T9] usb 9-1: string descriptor 0 read error: -22
[  193.362675][    T9] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  193.366157][    T9] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  193.389470][    T9] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  193.530313][T12599] netlink: 120 bytes leftover after parsing attributes in process `syz.2.2364'.
[  193.533279][T12599] netlink: 'syz.2.2364': attribute type 1 has an invalid length.
[  193.535785][T12599] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2364'.
[  193.567671][ T5997] usb 8-1: new high-speed USB device number 37 using dummy_hcd
[  193.697620][ T5997] usb 8-1: device descriptor read/64, error -71
[  193.930937][   T53] usb 5-1: USB disconnect, device number 26
[  193.957692][ T5997] usb 8-1: new high-speed USB device number 38 using dummy_hcd
[  194.107683][ T5997] usb 8-1: device descriptor read/64, error -71
[  194.192825][T12619] fuse: Unknown parameter '00000000000000000000'
[  194.217974][ T5997] usb usb8-port1: attempt power cycle
[  194.240316][T12619] VFS: Mount too revealing
[  194.567642][ T5997] usb 8-1: new high-speed USB device number 39 using dummy_hcd
[  194.589443][ T5997] usb 8-1: device descriptor read/8, error -71
[  194.745289][T12636] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=48 sclass=netlink_tcpdiag_socket pid=12636 comm=syz.0.2378
[  194.751397][T12636] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=48 sclass=netlink_tcpdiag_socket pid=12636 comm=syz.0.2378
[  194.797690][ T6155] usb 7-1: new full-speed USB device number 35 using dummy_hcd
[  194.817220][T12638] FAULT_INJECTION: forcing a failure.
[  194.817220][T12638] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  194.821484][T12638] CPU: 2 UID: 0 PID: 12638 Comm: syz.0.2379 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  194.821502][T12638] Tainted: [L]=SOFTLOCKUP
[  194.821506][T12638] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  194.821513][T12638] Call Trace:
[  194.821518][T12638]  <TASK>
[  194.821522][T12638]  dump_stack_lvl+0x100/0x190
[  194.821545][T12638]  should_fail_ex.cold+0x5/0xa
[  194.821560][T12638]  _copy_from_iter+0x1f4/0x1690
[  194.821575][T12638]  ? __pfx__copy_from_iter+0x10/0x10
[  194.821586][T12638]  ? trace_kmalloc+0x101/0x130
[  194.821597][T12638]  ? __kasan_kmalloc+0xaa/0xb0
[  194.821614][T12638]  ? file_tty_write.isra.0+0x694/0x890
[  194.821628][T12638]  ? rcu_is_watching+0x12/0xc0
[  194.821641][T12638]  ? file_tty_write.isra.0+0x694/0x890
[  194.821654][T12638]  ? kfree+0x2ec/0x6b0
[  194.821670][T12638]  file_tty_write.isra.0+0x45b/0x890
[  194.821688][T12638]  vfs_write+0x6ac/0x1070
[  194.821706][T12638]  ? __pfx_tty_write+0x10/0x10
[  194.821720][T12638]  ? __pfx_vfs_write+0x10/0x10
[  194.821739][T12638]  ? find_held_lock+0x2b/0x80
[  194.821762][T12638]  ksys_write+0x12a/0x250
[  194.821779][T12638]  ? __pfx_ksys_write+0x10/0x10
[  194.821800][T12638]  do_syscall_64+0x106/0xf80
[  194.821815][T12638]  ? clear_bhb_loop+0x40/0x90
[  194.821830][T12638]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.821842][T12638] RIP: 0033:0x7fa05919c799
[  194.821851][T12638] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  194.821862][T12638] RSP: 002b:00007fa05a0c8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  194.821873][T12638] RAX: ffffffffffffffda RBX: 00007fa059415fa0 RCX: 00007fa05919c799
[  194.821880][T12638] RDX: 0000000000001006 RSI: 0000200000001040 RDI: 0000000000000004
[  194.821887][T12638] RBP: 00007fa05a0c8090 R08: 0000000000000000 R09: 0000000000000000
[  194.821893][T12638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  194.821900][T12638] R13: 00007fa059416038 R14: 00007fa059415fa0 R15: 00007ffdee757608
[  194.821914][T12638]  </TASK>
[  194.827598][ T5997] usb 8-1: new high-speed USB device number 40 using dummy_hcd
[  194.890350][T12640] loop5: detected capacity change from 0 to 7
[  194.910593][ T5997] usb 8-1: device descriptor read/8, error -71
[  194.913404][ T5935] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  194.917806][ T5935] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  194.920625][ T5935] Dev loop5: unable to read RDB block 7
[  194.923096][ T5935]  loop5: AHDI p2 p3
[  194.924753][ T5935] loop5: partition table partially beyond EOD, truncated
[  194.928699][ T5935] loop5: p3 start 335544320 is beyond EOD, truncated
[  194.933489][T12640] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  194.937906][T12640] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  194.940872][T12640] Dev loop5: unable to read RDB block 7
[  194.943214][T12640]  loop5: AHDI p2 p3
[  194.945019][T12640] loop5: partition table partially beyond EOD, truncated
[  194.948327][T12640] loop5: p3 start 335544320 is beyond EOD, truncated
[  194.964261][ T6155] usb 7-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  194.967487][ T6155] usb 7-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  194.972158][ T6155] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  194.974944][ T6155] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.986580][ T6155] usbtmc 7-1:16.0: bulk endpoints not found
[  195.018477][ T5997] usb usb8-port1: unable to enumerate USB device
[  195.171020][T12646] netlink: 'syz.0.2383': attribute type 39 has an invalid length.
[  195.531494][T12652] FAULT_INJECTION: forcing a failure.
[  195.531494][T12652] name failslab, interval 1, probability 0, space 0, times 0
[  195.535997][T12652] CPU: 1 UID: 0 PID: 12652 Comm: syz.0.2385 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  195.536025][T12652] Tainted: [L]=SOFTLOCKUP
[  195.536031][T12652] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  195.536041][T12652] Call Trace:
[  195.536049][T12652]  <TASK>
[  195.536056][T12652]  dump_stack_lvl+0x100/0x190
[  195.536089][T12652]  should_fail_ex.cold+0x5/0xa
[  195.536111][T12652]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  195.536140][T12652]  should_failslab+0xc2/0x120
[  195.536157][T12652]  __kmalloc_noprof+0xe0/0x850
[  195.536187][T12652]  genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  195.536216][T12652]  ? cred_has_capability.isra.0+0x186/0x300
[  195.536243][T12652]  genl_family_rcv_msg_doit+0xc7/0x300
[  195.536271][T12652]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  195.536294][T12652]  ? bpf_lsm_capable+0x9/0x10
[  195.536304][T12652]  ? security_capable+0x80/0x260
[  195.536317][T12652]  ? ns_capable+0xd2/0xf0
[  195.536332][T12652]  genl_rcv_msg+0x560/0x800
[  195.536351][T12652]  ? __pfx_genl_rcv_msg+0x10/0x10
[  195.536369][T12652]  ? __pfx_hwsim_del_edge_nl+0x10/0x10
[  195.536383][T12652]  ? __lock_acquire+0x4a5/0x2630
[  195.536404][T12652]  netlink_rcv_skb+0x159/0x420
[  195.536419][T12652]  ? __pfx_genl_rcv_msg+0x10/0x10
[  195.536437][T12652]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  195.536459][T12652]  ? netlink_deliver_tap+0x1ae/0xcc0
[  195.536476][T12652]  genl_rcv+0x28/0x40
[  195.536491][T12652]  netlink_unicast+0x5aa/0x870
[  195.536509][T12652]  ? __pfx_netlink_unicast+0x10/0x10
[  195.536535][T12652]  netlink_sendmsg+0x8b0/0xda0
[  195.536554][T12652]  ? __pfx_netlink_sendmsg+0x10/0x10
[  195.536568][T12652]  ? __might_fault+0x20/0x140
[  195.536588][T12652]  ____sys_sendmsg+0x9e1/0xb70
[  195.536605][T12652]  ? __pfx_netlink_sendmsg+0x10/0x10
[  195.536622][T12652]  ? __pfx_____sys_sendmsg+0x10/0x10
[  195.536645][T12652]  ___sys_sendmsg+0x190/0x1e0
[  195.536663][T12652]  ? __pfx____sys_sendmsg+0x10/0x10
[  195.536698][T12652]  __sys_sendmsg+0x170/0x220
[  195.536713][T12652]  ? __pfx___sys_sendmsg+0x10/0x10
[  195.536735][T12652]  do_syscall_64+0x106/0xf80
[  195.536750][T12652]  ? clear_bhb_loop+0x40/0x90
[  195.536764][T12652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.536776][T12652] RIP: 0033:0x7fa05919c799
[  195.536786][T12652] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  195.536796][T12652] RSP: 002b:00007fa05a0c8028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  195.536808][T12652] RAX: ffffffffffffffda RBX: 00007fa059415fa0 RCX: 00007fa05919c799
[  195.536815][T12652] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000004
[  195.536821][T12652] RBP: 00007fa05a0c8090 R08: 0000000000000000 R09: 0000000000000000
[  195.536828][T12652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  195.536834][T12652] R13: 00007fa059416038 R14: 00007fa059415fa0 R15: 00007ffdee757608
[  195.536848][T12652]  </TASK>
[  195.878630][ T4220] usb 9-1: USB disconnect, device number 9
[  195.914526][   T40] kauditd_printk_skb: 854 callbacks suppressed
[  195.914541][   T40] audit: type=1400 audit(1773461100.517:11333): avc:  denied  { read write } for  pid=10515 comm="syz-executor" name="loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  195.930789][   T40] audit: type=1400 audit(1773461100.517:11334): avc:  denied  { read write open } for  pid=10515 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  195.942044][   T40] audit: type=1400 audit(1773461100.527:11335): avc:  denied  { ioctl } for  pid=10515 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=662 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  196.136746][   T40] audit: type=1400 audit(1773461100.737:11336): avc:  denied  { read write } for  pid=5931 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  196.147247][   T40] audit: type=1400 audit(1773461100.737:11337): avc:  denied  { open } for  pid=5931 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  196.158504][   T40] audit: type=1400 audit(1773461100.737:11338): avc:  denied  { ioctl } for  pid=5931 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  196.171882][   T40] audit: type=1400 audit(1773461100.777:11339): avc:  denied  { read } for  pid=12658 comm="syz.4.2388" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  196.182816][   T40] audit: type=1400 audit(1773461100.777:11340): avc:  denied  { read } for  pid=12657 comm="syz.0.2395" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  196.191962][T12660] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  196.193620][   T40] audit: type=1400 audit(1773461100.777:11341): avc:  denied  { read open } for  pid=12657 comm="syz.0.2395" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  196.207730][   T40] audit: type=1400 audit(1773461100.777:11342): avc:  denied  { ioctl } for  pid=12657 comm="syz.0.2395" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  196.237216][T12661] FAULT_INJECTION: forcing a failure.
[  196.237216][T12661] name failslab, interval 1, probability 0, space 0, times 0
[  196.241476][T12661] CPU: 3 UID: 0 PID: 12661 Comm: syz.4.2388 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  196.241495][T12661] Tainted: [L]=SOFTLOCKUP
[  196.241499][T12661] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  196.241506][T12661] Call Trace:
[  196.241511][T12661]  <TASK>
[  196.241515][T12661]  dump_stack_lvl+0x100/0x190
[  196.241537][T12661]  should_fail_ex.cold+0x5/0xa
[  196.241556][T12661]  should_failslab+0xc2/0x120
[  196.241569][T12661]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  196.241585][T12661]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  196.241606][T12661]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  196.241628][T12661]  mmu_topup_memory_caches+0x25/0x170
[  196.241641][T12661]  kvm_mmu_load+0xd6/0x23e0
[  196.241652][T12661]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  196.241668][T12661]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  196.241686][T12661]  ? __pfx_kvm_mmu_load+0x10/0x10
[  196.241697][T12661]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  196.241715][T12661]  ? kvm_check_and_inject_events+0x961/0x10c0
[  196.241727][T12661]  ? record_steal_time+0x370/0xbe0
[  196.241747][T12661]  vcpu_run+0x39f4/0x5ca0
[  196.241765][T12661]  ? __pfx_vcpu_run+0x10/0x10
[  196.241782][T12661]  ? rcu_is_watching+0x12/0xc0
[  196.241798][T12661]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  196.241811][T12661]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  196.241828][T12661]  kvm_vcpu_ioctl+0x730/0x1730
[  196.241846][T12661]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  196.241862][T12661]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  196.241879][T12661]  ? do_vfs_ioctl+0x226/0x13e0
[  196.241896][T12661]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  196.241913][T12661]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  196.241934][T12661]  ? __fget_files+0x215/0x3d0
[  196.241945][T12661]  ? hook_file_ioctl_common+0x146/0x410
[  196.241967][T12661]  ? selinux_file_ioctl+0x139/0x290
[  196.241981][T12661]  ? selinux_file_ioctl+0xb4/0x290
[  196.241997][T12661]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  196.242014][T12661]  __x64_sys_ioctl+0x18e/0x210
[  196.242032][T12661]  do_syscall_64+0x106/0xf80
[  196.242046][T12661]  ? clear_bhb_loop+0x40/0x90
[  196.242059][T12661]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.242071][T12661] RIP: 0033:0x7f003859c799
[  196.242081][T12661] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  196.242092][T12661] RSP: 002b:00007f0039429028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  196.242103][T12661] RAX: ffffffffffffffda RBX: 00007f0038815fa0 RCX: 00007f003859c799
[  196.242110][T12661] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  196.242116][T12661] RBP: 00007f0039429090 R08: 0000000000000000 R09: 0000000000000000
[  196.242123][T12661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  196.242129][T12661] R13: 00007f0038816038 R14: 00007f0038815fa0 R15: 00007fff1c990668
[  196.242144][T12661]  </TASK>
[  196.633186][T12672] fuse: Unknown parameter '€'
[  196.786942][T12681] __nla_validate_parse: 4 callbacks suppressed
[  196.786953][T12681] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2397'.
[  196.976483][T12694] netlink: 'syz.3.2401': attribute type 1 has an invalid length.
[  196.999558][T12694] 8021q: adding VLAN 0 to HW filter on device bond4
[  197.013314][T12694] bond4: (slave geneve4): making interface the new active one
[  197.029506][T12694] bond4: (slave geneve4): Enslaving as an active interface with an up link
[  197.045282][ T7061] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  197.050894][ T7061] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  197.057622][ T7081] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  197.069641][ T7081] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  197.114851][T12698] FAULT_INJECTION: forcing a failure.
[  197.114851][T12698] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  197.121096][T12698] CPU: 3 UID: 0 PID: 12698 Comm: syz.4.2404 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  197.121125][T12698] Tainted: [L]=SOFTLOCKUP
[  197.121131][T12698] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  197.121141][T12698] Call Trace:
[  197.121148][T12698]  <TASK>
[  197.121156][T12698]  dump_stack_lvl+0x100/0x190
[  197.121190][T12698]  should_fail_ex.cold+0x5/0xa
[  197.121213][T12698]  _copy_from_iter+0x1f4/0x1690
[  197.121237][T12698]  ? __pfx__copy_from_iter+0x10/0x10
[  197.121260][T12698]  ? __pfx___might_resched+0x10/0x10
[  197.121286][T12698]  file_tty_write.isra.0+0x45b/0x890
[  197.121317][T12698]  vfs_write+0x6ac/0x1070
[  197.121345][T12698]  ? __pfx_tty_write+0x10/0x10
[  197.121368][T12698]  ? __pfx_vfs_write+0x10/0x10
[  197.121393][T12698]  ? find_held_lock+0x2b/0x80
[  197.121431][T12698]  ksys_write+0x12a/0x250
[  197.121456][T12698]  ? __pfx_ksys_write+0x10/0x10
[  197.121491][T12698]  do_syscall_64+0x106/0xf80
[  197.121513][T12698]  ? clear_bhb_loop+0x40/0x90
[  197.121535][T12698]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.121553][T12698] RIP: 0033:0x7f003859c799
[  197.121568][T12698] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  197.121585][T12698] RSP: 002b:00007f0039429028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  197.121603][T12698] RAX: ffffffffffffffda RBX: 00007f0038815fa0 RCX: 00007f003859c799
[  197.121614][T12698] RDX: 0000000000001006 RSI: 0000200000001040 RDI: 0000000000000004
[  197.121625][T12698] RBP: 00007f0039429090 R08: 0000000000000000 R09: 0000000000000000
[  197.121635][T12698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  197.121645][T12698] R13: 00007f0038816038 R14: 00007f0038815fa0 R15: 00007fff1c990668
[  197.121670][T12698]  </TASK>
[  197.276274][T12707] loop5: detected capacity change from 0 to 7
[  197.287726][T12707] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  197.287750][T12707] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  197.287813][T12707] Dev loop5: unable to read RDB block 7
[  197.287835][T12707]  loop5: AHDI p2 p3
[  197.287858][T12707] loop5: partition table partially beyond EOD, truncated
[  197.288008][T12707] loop5: p3 start 335544320 is beyond EOD, truncated
[  197.312276][T12710] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  197.428782][T12712] FAULT_INJECTION: forcing a failure.
[  197.428782][T12712] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  197.434503][T12712] CPU: 0 UID: 0 PID: 12712 Comm: syz.0.2410 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  197.434531][T12712] Tainted: [L]=SOFTLOCKUP
[  197.434538][T12712] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  197.434548][T12712] Call Trace:
[  197.434555][T12712]  <TASK>
[  197.434561][T12712]  dump_stack_lvl+0x100/0x190
[  197.434594][T12712]  should_fail_ex.cold+0x5/0xa
[  197.434617][T12712]  _copy_from_iter+0x1f4/0x1690
[  197.434638][T12712]  ? __asan_memset+0x23/0x50
[  197.434662][T12712]  ? __pfx__copy_from_iter+0x10/0x10
[  197.434680][T12712]  ? __pfx___alloc_skb+0x10/0x10
[  197.434711][T12712]  netlink_sendmsg+0x808/0xda0
[  197.434741][T12712]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.434763][T12712]  ? __might_fault+0x20/0x140
[  197.434796][T12712]  ____sys_sendmsg+0x9e1/0xb70
[  197.434820][T12712]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.434846][T12712]  ? __pfx_____sys_sendmsg+0x10/0x10
[  197.434883][T12712]  ___sys_sendmsg+0x190/0x1e0
[  197.434912][T12712]  ? __pfx____sys_sendmsg+0x10/0x10
[  197.434969][T12712]  __sys_sendmsg+0x170/0x220
[  197.434992][T12712]  ? __pfx___sys_sendmsg+0x10/0x10
[  197.435029][T12712]  do_syscall_64+0x106/0xf80
[  197.435051][T12712]  ? clear_bhb_loop+0x40/0x90
[  197.435073][T12712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.435091][T12712] RIP: 0033:0x7fa05919c799
[  197.435106][T12712] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  197.435122][T12712] RSP: 002b:00007fa05a0c8028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  197.435140][T12712] RAX: ffffffffffffffda RBX: 00007fa059415fa0 RCX: 00007fa05919c799
[  197.435152][T12712] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000004
[  197.435168][T12712] RBP: 00007fa05a0c8090 R08: 0000000000000000 R09: 0000000000000000
[  197.435179][T12712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  197.435189][T12712] R13: 00007fa059416038 R14: 00007fa059415fa0 R15: 00007ffdee757608
[  197.435213][T12712]  </TASK>
[  197.545683][T12715] faux_driver vkms: [drm] Unknown color mode 6; guessing buffer size.
[  197.583077][   T29] usb 7-1: USB disconnect, device number 35
[  197.758915][T12724] FAULT_INJECTION: forcing a failure.
[  197.758915][T12724] name failslab, interval 1, probability 0, space 0, times 0
[  197.764242][T12724] CPU: 2 UID: 0 PID: 12724 Comm: syz.2.2414 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  197.764269][T12724] Tainted: [L]=SOFTLOCKUP
[  197.764275][T12724] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  197.764285][T12724] Call Trace:
[  197.764292][T12724]  <TASK>
[  197.764300][T12724]  dump_stack_lvl+0x100/0x190
[  197.764332][T12724]  should_fail_ex.cold+0x5/0xa
[  197.764356][T12724]  should_failslab+0xc2/0x120
[  197.764374][T12724]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  197.764398][T12724]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  197.764429][T12724]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  197.764464][T12724]  mmu_topup_memory_caches+0x25/0x170
[  197.764487][T12724]  kvm_mmu_load+0xd6/0x23e0
[  197.764505][T12724]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  197.764531][T12724]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  197.764556][T12724]  ? __pfx_kvm_mmu_load+0x10/0x10
[  197.764574][T12724]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  197.764602][T12724]  ? kvm_check_and_inject_events+0x961/0x10c0
[  197.764622][T12724]  ? record_steal_time+0x370/0xbe0
[  197.764650][T12724]  vcpu_run+0x39f4/0x5ca0
[  197.764680][T12724]  ? __pfx_vcpu_run+0x10/0x10
[  197.764708][T12724]  ? rcu_is_watching+0x12/0xc0
[  197.764733][T12724]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  197.764753][T12724]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  197.764781][T12724]  kvm_vcpu_ioctl+0x730/0x1730
[  197.764809][T12724]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  197.764835][T12724]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  197.764861][T12724]  ? do_vfs_ioctl+0x226/0x13e0
[  197.764887][T12724]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  197.764912][T12724]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  197.764945][T12724]  ? __fget_files+0x215/0x3d0
[  197.764962][T12724]  ? hook_file_ioctl_common+0x146/0x410
[  197.764996][T12724]  ? selinux_file_ioctl+0x139/0x290
[  197.765018][T12724]  ? selinux_file_ioctl+0xb4/0x290
[  197.765047][T12724]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  197.765073][T12724]  __x64_sys_ioctl+0x18e/0x210
[  197.765100][T12724]  do_syscall_64+0x106/0xf80
[  197.765121][T12724]  ? clear_bhb_loop+0x40/0x90
[  197.765143][T12724]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.765161][T12724] RIP: 0033:0x7f9245d9c799
[  197.765177][T12724] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  197.765193][T12724] RSP: 002b:00007f9246ca0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  197.765211][T12724] RAX: ffffffffffffffda RBX: 00007f9246015fa0 RCX: 00007f9245d9c799
[  197.765222][T12724] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  197.765233][T12724] RBP: 00007f9246ca0090 R08: 0000000000000000 R09: 0000000000000000
[  197.765243][T12724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  197.765253][T12724] R13: 00007f9246016038 R14: 00007f9246015fa0 R15: 00007fff8451ff28
[  197.765278][T12724]  </TASK>
[  197.936814][T12729] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2416'.
[  197.962334][T12729] bond6: entered promiscuous mode
[  197.964675][T12729] bond6: entered allmulticast mode
[  197.976688][T12729] ip6gretap2: entered promiscuous mode
[  197.979442][T12729] ip6gretap2: entered allmulticast mode
[  197.982427][T12729] bond6: (slave ip6gretap2): Enslaving as an active interface with an up link
[  198.279111][T12714] orangefs_mount: mount request failed with -4
[  198.305651][T12746] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2422'.
[  198.517781][   T39] usb 7-1: new full-speed USB device number 36 using dummy_hcd
[  198.674774][   T39] usb 7-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  198.679452][   T39] usb 7-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  198.684932][   T39] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  198.689352][   T39] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.706508][   T39] usbtmc 7-1:16.0: bulk endpoints not found
[  198.748133][T12764] batadv_slave_1: entered promiscuous mode
[  198.752367][T12762] FAULT_INJECTION: forcing a failure.
[  198.752367][T12762] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  198.758251][T12762] CPU: 3 UID: 0 PID: 12762 Comm: syz.4.2430 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  198.758280][T12762] Tainted: [L]=SOFTLOCKUP
[  198.758287][T12762] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  198.758298][T12762] Call Trace:
[  198.758304][T12762]  <TASK>
[  198.758312][T12762]  dump_stack_lvl+0x100/0x190
[  198.758345][T12762]  should_fail_ex.cold+0x5/0xa
[  198.758370][T12762]  _copy_from_iter+0x1f4/0x1690
[  198.758395][T12762]  ? __pfx__copy_from_iter+0x10/0x10
[  198.758419][T12762]  ? __pfx___might_resched+0x10/0x10
[  198.758446][T12762]  file_tty_write.isra.0+0x45b/0x890
[  198.758477][T12762]  vfs_write+0x6ac/0x1070
[  198.758505][T12762]  ? __pfx_tty_write+0x10/0x10
[  198.758536][T12762]  ? __pfx_vfs_write+0x10/0x10
[  198.758560][T12762]  ? find_held_lock+0x2b/0x80
[  198.758601][T12762]  ksys_write+0x12a/0x250
[  198.758628][T12762]  ? __pfx_ksys_write+0x10/0x10
[  198.758663][T12762]  do_syscall_64+0x106/0xf80
[  198.758685][T12762]  ? clear_bhb_loop+0x40/0x90
[  198.758711][T12762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.758730][T12762] RIP: 0033:0x7f003859c799
[  198.758747][T12762] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  198.758764][T12762] RSP: 002b:00007f0039429028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  198.758781][T12762] RAX: ffffffffffffffda RBX: 00007f0038815fa0 RCX: 00007f003859c799
[  198.758793][T12762] RDX: 0000000000001006 RSI: 0000200000001040 RDI: 0000000000000004
[  198.758804][T12762] RBP: 00007f0039429090 R08: 0000000000000000 R09: 0000000000000000
[  198.758815][T12762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.758826][T12762] R13: 00007f0038816038 R14: 00007f0038815fa0 R15: 00007fff1c990668
[  198.758852][T12762]  </TASK>
[  198.926460][T12768] loop5: detected capacity change from 0 to 7
[  198.934036][ T5935] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  198.938084][ T5935] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  198.940317][ T5935] Dev loop5: unable to read RDB block 7
[  198.942558][ T5935]  loop5: AHDI p2 p3
[  198.944384][ T5935] loop5: partition table partially beyond EOD, truncated
[  198.948174][ T5935] loop5: p3 start 335544320 is beyond EOD, truncated
[  198.952906][T12768] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  198.957898][T12768] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  198.960856][T12768] Dev loop5: unable to read RDB block 7
[  198.961761][T12763] batadv_slave_1: left promiscuous mode
[  198.963251][T12768]  loop5: AHDI p2 p3
[  198.967388][T12768] loop5: partition table partially beyond EOD, truncated
[  198.970840][T12768] loop5: p3 start 335544320 is beyond EOD, truncated
[  199.086010][T12772] netlink: 'syz.4.2434': attribute type 1 has an invalid length.
[  199.128159][T12772] bond1: (slave bridge2): Enslaving as a backup interface with an up link
[  199.131291][T12772] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2434'.
[  199.139867][T12772] 8021q: adding VLAN 0 to HW filter on device bond1
[  199.143542][ T7069] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  199.154576][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  199.157266][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  199.245529][T12776] netlink: 120 bytes leftover after parsing attributes in process `syz.4.2435'.
[  199.250249][T12776] netlink: 'syz.4.2435': attribute type 1 has an invalid length.
[  199.252815][T12776] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2435'.
[  199.255735][T12776] FAULT_INJECTION: forcing a failure.
[  199.255735][T12776] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  199.265328][T12776] CPU: 1 UID: 0 PID: 12776 Comm: syz.4.2435 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  199.265358][T12776] Tainted: [L]=SOFTLOCKUP
[  199.265364][T12776] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  199.265371][T12776] Call Trace:
[  199.265375][T12776]  <TASK>
[  199.265380][T12776]  dump_stack_lvl+0x100/0x190
[  199.265402][T12776]  should_fail_ex.cold+0x5/0xa
[  199.265418][T12776]  _copy_from_user+0x2e/0xd0
[  199.265437][T12776]  kstrtouint_from_user+0xd6/0x1d0
[  199.265452][T12776]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  199.265465][T12776]  ? __lock_acquire+0x4a5/0x2630
[  199.265485][T12776]  ? lock_acquire+0x1cf/0x380
[  199.265506][T12776]  proc_fail_nth_write+0x83/0x220
[  199.265523][T12776]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  199.265543][T12776]  vfs_write+0x2aa/0x1070
[  199.265561][T12776]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  199.265578][T12776]  ? __pfx_vfs_write+0x10/0x10
[  199.265595][T12776]  ? __fget_files+0x215/0x3d0
[  199.265610][T12776]  ? __fget_files+0x21f/0x3d0
[  199.265626][T12776]  ksys_write+0x12a/0x250
[  199.265643][T12776]  ? __pfx_ksys_write+0x10/0x10
[  199.265664][T12776]  do_syscall_64+0x106/0xf80
[  199.265679][T12776]  ? clear_bhb_loop+0x40/0x90
[  199.265694][T12776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.265705][T12776] RIP: 0033:0x7f003855cfce
[  199.265716][T12776] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  199.265726][T12776] RSP: 002b:00007f0039428fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  199.265738][T12776] RAX: ffffffffffffffda RBX: 00007f00394296c0 RCX: 00007f003855cfce
[  199.265745][T12776] RDX: 0000000000000001 RSI: 00007f00394290a0 RDI: 0000000000000003
[  199.265752][T12776] RBP: 00007f0039429090 R08: 0000000000000000 R09: 0000000000000000
[  199.265759][T12776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  199.265765][T12776] R13: 00007f0038816038 R14: 00007f0038815fa0 R15: 00007fff1c990668
[  199.265780][T12776]  </TASK>
[  199.267852][ T7066] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  199.456048][T12788] FAULT_INJECTION: forcing a failure.
[  199.456048][T12788] name failslab, interval 1, probability 0, space 0, times 0
[  199.460449][T12788] CPU: 0 UID: 0 PID: 12788 Comm: syz.4.2440 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  199.460468][T12788] Tainted: [L]=SOFTLOCKUP
[  199.460472][T12788] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  199.460479][T12788] Call Trace:
[  199.460483][T12788]  <TASK>
[  199.460487][T12788]  dump_stack_lvl+0x100/0x190
[  199.460509][T12788]  should_fail_ex.cold+0x5/0xa
[  199.460529][T12788]  should_failslab+0xc2/0x120
[  199.460541][T12788]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  199.460557][T12788]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  199.460578][T12788]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  199.460599][T12788]  mmu_topup_memory_caches+0x25/0x170
[  199.460613][T12788]  kvm_mmu_load+0xd6/0x23e0
[  199.460625][T12788]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  199.460640][T12788]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  199.460658][T12788]  ? __pfx_kvm_mmu_load+0x10/0x10
[  199.460668][T12788]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  199.460686][T12788]  ? kvm_check_and_inject_events+0x961/0x10c0
[  199.460699][T12788]  ? record_steal_time+0x370/0xbe0
[  199.460718][T12788]  vcpu_run+0x39f4/0x5ca0
[  199.460736][T12788]  ? __pfx_vcpu_run+0x10/0x10
[  199.460753][T12788]  ? rcu_is_watching+0x12/0xc0
[  199.460768][T12788]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  199.460782][T12788]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  199.460799][T12788]  kvm_vcpu_ioctl+0x730/0x1730
[  199.460818][T12788]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  199.460835][T12788]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  199.460852][T12788]  ? do_vfs_ioctl+0x226/0x13e0
[  199.460869][T12788]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  199.460885][T12788]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  199.460906][T12788]  ? __fget_files+0x215/0x3d0
[  199.460917][T12788]  ? hook_file_ioctl_common+0x146/0x410
[  199.460939][T12788]  ? selinux_file_ioctl+0x139/0x290
[  199.460954][T12788]  ? selinux_file_ioctl+0xb4/0x290
[  199.460970][T12788]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  199.460987][T12788]  __x64_sys_ioctl+0x18e/0x210
[  199.461004][T12788]  do_syscall_64+0x106/0xf80
[  199.461018][T12788]  ? clear_bhb_loop+0x40/0x90
[  199.461033][T12788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.461045][T12788] RIP: 0033:0x7f003859c799
[  199.461055][T12788] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  199.461065][T12788] RSP: 002b:00007f0039429028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  199.461077][T12788] RAX: ffffffffffffffda RBX: 00007f0038815fa0 RCX: 00007f003859c799
[  199.461084][T12788] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  199.461091][T12788] RBP: 00007f0039429090 R08: 0000000000000000 R09: 0000000000000000
[  199.461097][T12788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  199.461104][T12788] R13: 00007f0038816038 R14: 00007f0038815fa0 R15: 00007fff1c990668
[  199.461118][T12788]  </TASK>
[  199.512551][T12792] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2442'.
[  199.590186][T12792] ip6gre1: entered promiscuous mode
[  199.591969][T12792] ip6gre1: entered allmulticast mode
[  199.594857][ T7081] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  199.597898][ T7081] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  199.618905][ T6155] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  199.667799][   T53] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  199.902206][T12801] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  199.914425][T12803] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  200.068819][   T53] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  200.123441][T12809] netlink: 120 bytes leftover after parsing attributes in process `syz.4.2447'.
[  200.127286][T12809] netlink: 'syz.4.2447': attribute type 1 has an invalid length.
[  200.131454][T12809] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2447'.
[  200.149251][T12811] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2448'.
[  200.535797][T12822] CUSE: info not properly terminated
[  200.702913][T12827] FAULT_INJECTION: forcing a failure.
[  200.702913][T12827] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  200.709134][T12827] CPU: 1 UID: 0 PID: 12827 Comm: syz.3.2454 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  200.709162][T12827] Tainted: [L]=SOFTLOCKUP
[  200.709169][T12827] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  200.709179][T12827] Call Trace:
[  200.709185][T12827]  <TASK>
[  200.709192][T12827]  dump_stack_lvl+0x100/0x190
[  200.709224][T12827]  should_fail_ex.cold+0x5/0xa
[  200.709247][T12827]  _copy_to_user+0x32/0xd0
[  200.709276][T12827]  simple_read_from_buffer+0xcb/0x170
[  200.709305][T12827]  proc_fail_nth_read+0x1af/0x230
[  200.709330][T12827]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  200.709354][T12827]  ? rw_verify_area+0xce/0x6d0
[  200.709377][T12827]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  200.709399][T12827]  vfs_read+0x1e4/0xb30
[  200.709426][T12827]  ? __pfx_vfs_read+0x10/0x10
[  200.709449][T12827]  ? __fget_files+0x215/0x3d0
[  200.709472][T12827]  ? __fget_files+0x21f/0x3d0
[  200.709495][T12827]  ksys_read+0x12a/0x250
[  200.709519][T12827]  ? __pfx_ksys_read+0x10/0x10
[  200.709550][T12827]  do_syscall_64+0x106/0xf80
[  200.709572][T12827]  ? clear_bhb_loop+0x40/0x90
[  200.709593][T12827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.709610][T12827] RIP: 0033:0x7f32d515cfce
[  200.709626][T12827] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  200.709642][T12827] RSP: 002b:00007f32d5f6ffe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  200.709659][T12827] RAX: ffffffffffffffda RBX: 00007f32d5f706c0 RCX: 00007f32d515cfce
[  200.709680][T12827] RDX: 000000000000000f RSI: 00007f32d5f700a0 RDI: 0000000000000005
[  200.709690][T12827] RBP: 00007f32d5f70090 R08: 0000000000000000 R09: 0000000000000000
[  200.709700][T12827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  200.709709][T12827] R13: 00007f32d5416038 R14: 00007f32d5415fa0 R15: 00007ffe73016218
[  200.709734][T12827]  </TASK>
[  200.919072][   T40] kauditd_printk_skb: 693 callbacks suppressed
[  200.919088][   T40] audit: type=1400 audit(1773461105.527:12036): avc:  denied  { ioctl } for  pid=10515 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=662 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  200.982019][   T40] audit: type=1400 audit(1773461105.587:12037): avc:  denied  { prog_load } for  pid=12833 comm="syz.4.2457" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  200.990403][   T40] audit: type=1400 audit(1773461105.587:12038): avc:  denied  { bpf } for  pid=12833 comm="syz.4.2457" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  200.999949][   T40] audit: type=1400 audit(1773461105.587:12039): avc:  denied  { perfmon } for  pid=12833 comm="syz.4.2457" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  201.009175][   T40] audit: type=1400 audit(1773461105.587:12040): avc:  denied  { prog_load } for  pid=12833 comm="syz.4.2457" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  201.017641][   T40] audit: type=1400 audit(1773461105.597:12041): avc:  denied  { perfmon } for  pid=12833 comm="syz.4.2457" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  201.026665][   T40] audit: type=1400 audit(1773461105.597:12042): avc:  denied  { perfmon } for  pid=12833 comm="syz.4.2457" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  201.036906][   T40] audit: type=1400 audit(1773461105.597:12043): avc:  denied  { bpf } for  pid=12833 comm="syz.4.2457" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  201.045195][   T40] audit: type=1400 audit(1773461105.597:12044): avc:  denied  { create } for  pid=12833 comm="syz.4.2457" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  201.047355][T12835] faux_driver regulatory: loading /lib/firmware/regulatory.db.p7s failed with error -4
[  201.054657][   T40] audit: type=1400 audit(1773461105.597:12045): avc:  denied  { read } for  pid=12833 comm="syz.4.2457" name="card2" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  201.062739][T12835] faux_driver regulatory: Direct firmware load for regulatory.db.p7s failed with error -4
[  201.074526][T12835] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db.p7s
[  201.108761][T12835] syz.4.2457 (12835) used greatest stack depth: 18552 bytes left
[  201.129467][T12839] loop5: detected capacity change from 0 to 7
[  201.139792][T12839] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  201.144211][T12839] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  201.147218][T12839] Dev loop5: unable to read RDB block 7
[  201.151098][T12839]  loop5: AHDI p2 p3
[  201.155478][T12839] loop5: partition table partially beyond EOD, truncated
[  201.162352][T12839] loop5: p3 start 335544320 is beyond EOD, truncated
[  201.297319][    T9] usb 7-1: USB disconnect, device number 36
[  201.580158][T12855] FAULT_INJECTION: forcing a failure.
[  201.580158][T12855] name failslab, interval 1, probability 0, space 0, times 0
[  201.585486][T12855] CPU: 3 UID: 0 PID: 12855 Comm: syz.4.2465 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  201.585513][T12855] Tainted: [L]=SOFTLOCKUP
[  201.585521][T12855] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  201.585531][T12855] Call Trace:
[  201.585537][T12855]  <TASK>
[  201.585544][T12855]  dump_stack_lvl+0x100/0x190
[  201.585578][T12855]  should_fail_ex.cold+0x5/0xa
[  201.585602][T12855]  should_failslab+0xc2/0x120
[  201.585621][T12855]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  201.585645][T12855]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  201.585673][T12855]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  201.585704][T12855]  mmu_topup_memory_caches+0x25/0x170
[  201.585724][T12855]  kvm_mmu_load+0xd6/0x23e0
[  201.585743][T12855]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  201.585767][T12855]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  201.585795][T12855]  ? __pfx_kvm_mmu_load+0x10/0x10
[  201.585811][T12855]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  201.585836][T12855]  ? kvm_check_and_inject_events+0x961/0x10c0
[  201.585856][T12855]  ? record_steal_time+0x370/0xbe0
[  201.585882][T12855]  vcpu_run+0x39f4/0x5ca0
[  201.585910][T12855]  ? __pfx_vcpu_run+0x10/0x10
[  201.585939][T12855]  ? rcu_is_watching+0x12/0xc0
[  201.585960][T12855]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  201.585979][T12855]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  201.586011][T12855]  kvm_vcpu_ioctl+0x730/0x1730
[  201.586039][T12855]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  201.586063][T12855]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  201.586089][T12855]  ? do_vfs_ioctl+0x226/0x13e0
[  201.586114][T12855]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  201.586139][T12855]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  201.586172][T12855]  ? __fget_files+0x215/0x3d0
[  201.586189][T12855]  ? hook_file_ioctl_common+0x146/0x410
[  201.586222][T12855]  ? selinux_file_ioctl+0x139/0x290
[  201.586245][T12855]  ? selinux_file_ioctl+0xb4/0x290
[  201.586270][T12855]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  201.586296][T12855]  __x64_sys_ioctl+0x18e/0x210
[  201.586323][T12855]  do_syscall_64+0x106/0xf80
[  201.586344][T12855]  ? clear_bhb_loop+0x40/0x90
[  201.586366][T12855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.586384][T12855] RIP: 0033:0x7f003859c799
[  201.586401][T12855] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  201.586418][T12855] RSP: 002b:00007f0039429028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  201.586435][T12855] RAX: ffffffffffffffda RBX: 00007f0038815fa0 RCX: 00007f003859c799
[  201.586446][T12855] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  201.586457][T12855] RBP: 00007f0039429090 R08: 0000000000000000 R09: 0000000000000000
[  201.586467][T12855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  201.586477][T12855] R13: 00007f0038816038 R14: 00007f0038815fa0 R15: 00007fff1c990668
[  201.586501][T12855]  </TASK>
[  201.841040][T12864] __nla_validate_parse: 1 callbacks suppressed
[  201.841057][T12864] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2469'.
[  201.852570][   T34] IPVS: starting estimator thread 0...
[  201.958074][T12865] IPVS: using max 43 ests per chain, 103200 per kthread
[  202.064651][T12876] fuse: Bad value for 'user_id'
[  202.066809][T12876] fuse: Bad value for 'user_id'
[  202.078466][T12876] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2474'.
[  202.168287][   T29] usb 5-1: new full-speed USB device number 27 using dummy_hcd
[  202.223953][T12883] netlink: 260 bytes leftover after parsing attributes in process `syz.4.2477'.
[  202.319242][T12889] loop5: detected capacity change from 0 to 7
[  202.321911][T12889] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  202.325346][T12889] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  202.330823][T12889] Dev loop5: unable to read RDB block 7
[  202.332833][T12889]  loop5: AHDI p2 p3
[  202.334163][T12889] loop5: partition table partially beyond EOD, truncated
[  202.336625][T12889] loop5: p3 start 335544320 is beyond EOD, truncated
[  202.348719][   T29] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  202.352069][   T29] usb 5-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  202.356219][   T29] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  202.368671][   T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.389610][   T29] usbtmc 5-1:16.0: bulk endpoints not found
[  202.866002][T12916] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2491'.
[  202.997743][T12919] FAULT_INJECTION: forcing a failure.
[  202.997743][T12919] name failslab, interval 1, probability 0, space 0, times 0
[  203.002966][T12919] CPU: 3 UID: 0 PID: 12919 Comm: syz.3.2492 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  203.002993][T12919] Tainted: [L]=SOFTLOCKUP
[  203.002999][T12919] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  203.003009][T12919] Call Trace:
[  203.003015][T12919]  <TASK>
[  203.003022][T12919]  dump_stack_lvl+0x100/0x190
[  203.003053][T12919]  should_fail_ex.cold+0x5/0xa
[  203.003075][T12919]  should_failslab+0xc2/0x120
[  203.003093][T12919]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  203.003116][T12919]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  203.003147][T12919]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  203.003178][T12919]  mmu_topup_memory_caches+0x25/0x170
[  203.003198][T12919]  kvm_mmu_load+0xd6/0x23e0
[  203.003216][T12919]  ? vmx_flush_tlb_guest+0x113/0x560
[  203.003240][T12919]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  203.003262][T12919]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  203.003288][T12919]  ? __pfx_kvm_mmu_load+0x10/0x10
[  203.003304][T12919]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  203.003330][T12919]  ? kvm_check_and_inject_events+0x961/0x10c0
[  203.003348][T12919]  ? record_steal_time+0x370/0xbe0
[  203.003374][T12919]  vcpu_run+0x39f4/0x5ca0
[  203.003400][T12919]  ? __pfx___schedule+0x10/0x10
[  203.003420][T12919]  ? __pfx_vcpu_run+0x10/0x10
[  203.003447][T12919]  ? rcu_is_watching+0x12/0xc0
[  203.003471][T12919]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  203.003490][T12919]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  203.003521][T12919]  kvm_vcpu_ioctl+0x730/0x1730
[  203.003547][T12919]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  203.003571][T12919]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  203.003595][T12919]  ? do_vfs_ioctl+0x226/0x13e0
[  203.003619][T12919]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  203.003665][T12919]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  203.003698][T12919]  ? __fget_files+0x215/0x3d0
[  203.003714][T12919]  ? hook_file_ioctl_common+0x146/0x410
[  203.003746][T12919]  ? selinux_file_ioctl+0x139/0x290
[  203.003766][T12919]  ? selinux_file_ioctl+0xb4/0x290
[  203.003789][T12919]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  203.003814][T12919]  __x64_sys_ioctl+0x18e/0x210
[  203.003839][T12919]  do_syscall_64+0x106/0xf80
[  203.003859][T12919]  ? clear_bhb_loop+0x40/0x90
[  203.003879][T12919]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.003897][T12919] RIP: 0033:0x7f32d519c799
[  203.003912][T12919] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  203.003927][T12919] RSP: 002b:00007f32d5f70028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  203.003944][T12919] RAX: ffffffffffffffda RBX: 00007f32d5415fa0 RCX: 00007f32d519c799
[  203.003954][T12919] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  203.003964][T12919] RBP: 00007f32d5f70090 R08: 0000000000000000 R09: 0000000000000000
[  203.003973][T12919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  203.003983][T12919] R13: 00007f32d5416038 R14: 00007f32d5415fa0 R15: 00007ffe73016218
[  203.004006][T12919]  </TASK>
[  203.051118][T12922] lo speed is unknown, defaulting to 1000
[  203.151995][T12923] lo speed is unknown, defaulting to 1000
[  203.507782][T12941] kernel read not supported for file /policy (pid: 12941 comm: syz.3.2497)
[  203.707791][    C2] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  203.778814][T12949] netlink: 120 bytes leftover after parsing attributes in process `syz.2.2499'.
[  203.779290][T12950] loop5: detected capacity change from 0 to 7
[  203.782224][T12949] netlink: 'syz.2.2499': attribute type 1 has an invalid length.
[  203.790450][T12950] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  203.794616][T12950] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  203.797879][T12950] Dev loop5: unable to read RDB block 7
[  203.800556][T12950]  loop5: AHDI p2 p3
[  203.802345][T12950] loop5: partition table partially beyond EOD, truncated
[  203.805458][T12950] loop5: p3 start 335544320 is beyond EOD, truncated
[  203.813892][T12949] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2499'.
[  204.206040][ T5934] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  204.215974][ T5934] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  204.229485][ T5934] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  204.233856][ T5934] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  204.240166][ T5934] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  204.322827][T12959] lo speed is unknown, defaulting to 1000
[  204.640965][T12959] chnl_net:caif_netlink_parms(): no params data found
[  204.791071][T12959] bridge0: port 1(bridge_slave_0) entered blocking state
[  204.802492][T12959] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.805101][T12959] bridge_slave_0: entered allmulticast mode
[  204.814711][T12959] bridge_slave_0: entered promiscuous mode
[  204.825122][T12959] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.828479][T12959] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.831875][T12959] bridge_slave_1: entered allmulticast mode
[  204.836321][T12959] bridge_slave_1: entered promiscuous mode
[  204.872510][T12959] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  204.881761][T12959] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  204.933591][   T39] usb 5-1: USB disconnect, device number 27
[  204.949877][T12959] team0: Port device team_slave_0 added
[  204.957021][T12959] team0: Port device team_slave_1 added
[  205.041274][T12959] batman_adv: batadv0: Adding interface: batadv_slave_0
[  205.044425][T12959] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  205.064362][T12959] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  205.092720][T12959] batman_adv: batadv0: Adding interface: batadv_slave_1
[  205.095698][T12959] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  205.116612][T12959] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  205.229017][T12959] hsr_slave_0: entered promiscuous mode
[  205.231959][T12959] hsr_slave_1: entered promiscuous mode
[  205.234603][T12959] debugfs: 'hsr0' already exists in 'hsr'
[  205.237176][T12959] Cannot create hsr debugfs directory
[  205.319343][T12983] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2512'.
[  205.453465][T12959] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.505310][T12959] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.506202][T12989] fuse: Bad value for 'user_id'
[  205.510806][T12989] fuse: Bad value for 'user_id'
[  205.513772][T12987] FAULT_INJECTION: forcing a failure.
[  205.513772][T12987] name failslab, interval 1, probability 0, space 0, times 0
[  205.517964][T12987] CPU: 0 UID: 0 PID: 12987 Comm: syz.4.2514 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  205.517983][T12987] Tainted: [L]=SOFTLOCKUP
[  205.517987][T12987] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  205.517993][T12987] Call Trace:
[  205.517998][T12987]  <TASK>
[  205.518002][T12987]  dump_stack_lvl+0x100/0x190
[  205.518029][T12987]  should_fail_ex.cold+0x5/0xa
[  205.518050][T12987]  should_failslab+0xc2/0x120
[  205.518067][T12987]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  205.518091][T12987]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  205.518122][T12987]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  205.518153][T12987]  mmu_topup_memory_caches+0x25/0x170
[  205.518174][T12987]  kvm_mmu_load+0xd6/0x23e0
[  205.518192][T12987]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  205.518215][T12987]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  205.518242][T12987]  ? __pfx_kvm_mmu_load+0x10/0x10
[  205.518258][T12987]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  205.518285][T12987]  ? kvm_check_and_inject_events+0x961/0x10c0
[  205.518305][T12987]  ? record_steal_time+0x370/0xbe0
[  205.518333][T12987]  vcpu_run+0x39f4/0x5ca0
[  205.518360][T12987]  ? __pfx_vcpu_run+0x10/0x10
[  205.518389][T12987]  ? rcu_is_watching+0x12/0xc0
[  205.518410][T12987]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  205.518423][T12987]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  205.518441][T12987]  kvm_vcpu_ioctl+0x730/0x1730
[  205.518459][T12987]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  205.518476][T12987]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  205.518493][T12987]  ? do_vfs_ioctl+0x226/0x13e0
[  205.518510][T12987]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  205.518527][T12987]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  205.518548][T12987]  ? __fget_files+0x215/0x3d0
[  205.518559][T12987]  ? hook_file_ioctl_common+0x146/0x410
[  205.518580][T12987]  ? selinux_file_ioctl+0x139/0x290
[  205.518595][T12987]  ? selinux_file_ioctl+0xb4/0x290
[  205.518616][T12987]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  205.518633][T12987]  __x64_sys_ioctl+0x18e/0x210
[  205.518651][T12987]  do_syscall_64+0x106/0xf80
[  205.518666][T12987]  ? clear_bhb_loop+0x40/0x90
[  205.518681][T12987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.518692][T12987] RIP: 0033:0x7f003859c799
[  205.518705][T12987] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  205.518716][T12987] RSP: 002b:00007f0039429028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  205.518743][T12987] RAX: ffffffffffffffda RBX: 00007f0038815fa0 RCX: 00007f003859c799
[  205.518751][T12987] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  205.518758][T12987] RBP: 00007f0039429090 R08: 0000000000000000 R09: 0000000000000000
[  205.518764][T12987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  205.518771][T12987] R13: 00007f0038816038 R14: 00007f0038815fa0 R15: 00007fff1c990668
[  205.518786][T12987]  </TASK>
[  205.745541][T12959] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.849153][T12959] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.907684][ T5970] usb 7-1: new full-speed USB device number 37 using dummy_hcd
[  205.948363][   T40] kauditd_printk_skb: 773 callbacks suppressed
[  205.948381][   T40] audit: type=1400 audit(1773461110.557:12819): avc:  denied  { bind } for  pid=13000 comm="syz.4.2519" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  205.960588][   T40] audit: type=1400 audit(1773461110.557:12820): avc:  denied  { create } for  pid=13000 comm="syz.4.2519" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  205.969325][   T40] audit: type=1400 audit(1773461110.557:12821): avc:  denied  { write } for  pid=13000 comm="syz.4.2519" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  205.981238][   T40] audit: type=1400 audit(1773461110.587:12822): avc:  denied  { ioctl } for  pid=12994 comm="syz.2.2516" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  205.990693][   T40] audit: type=1400 audit(1773461110.597:12823): avc:  denied  { read write } for  pid=10515 comm="syz-executor" name="loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  206.000799][   T40] audit: type=1400 audit(1773461110.597:12824): avc:  denied  { read write open } for  pid=10515 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  206.011299][   T40] audit: type=1400 audit(1773461110.597:12825): avc:  denied  { ioctl } for  pid=10515 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=662 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  206.038699][   T40] audit: type=1400 audit(1773461110.637:12826): avc:  denied  { create } for  pid=13003 comm="syz.4.2520" anonclass=[userfaultfd] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  206.045850][   T40] audit: type=1400 audit(1773461110.647:12827): avc:  denied  { ioctl } for  pid=13003 comm="syz.4.2520" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=59624 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  206.069663][ T5970] usb 7-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  206.078223][ T5970] usb 7-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  206.083781][ T5970] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  206.087678][   T40] audit: type=1400 audit(1773461110.667:12828): avc:  denied  { ioctl } for  pid=12994 comm="syz.2.2516" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  206.100486][ T5970] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.127080][ T5970] usbtmc 7-1:16.0: bulk endpoints not found
[  206.135305][T12959] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  206.139536][T12959] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  206.143861][T12959] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  206.152787][T12959] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  206.267709][ T5934] Bluetooth: hci4: command tx timeout
[  206.273339][T12959] 8021q: adding VLAN 0 to HW filter on device bond0
[  206.302321][T12959] 8021q: adding VLAN 0 to HW filter on device team0
[  206.316123][ T7061] bridge0: port 1(bridge_slave_0) entered blocking state
[  206.319431][ T7061] bridge0: port 1(bridge_slave_0) entered forwarding state
[  206.333108][ T7081] bridge0: port 2(bridge_slave_1) entered blocking state
[  206.336210][ T7081] bridge0: port 2(bridge_slave_1) entered forwarding state
[  206.375875][T13019] loop5: detected capacity change from 0 to 7
[  206.384361][T13019] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  206.389042][T13019] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  206.391840][T13019] Dev loop5: unable to read RDB block 7
[  206.394042][T13019]  loop5: AHDI p2 p3
[  206.395642][T13019] loop5: partition table partially beyond EOD, truncated
[  206.398588][T13019] loop5: p3 start 335544320 is beyond EOD, truncated
[  206.630247][T13027] netlink: 260 bytes leftover after parsing attributes in process `syz.4.2525'.
[  206.695091][T12959] 8021q: adding VLAN 0 to HW filter on device batadv0
[  206.783790][T12959] veth0_vlan: entered promiscuous mode
[  206.813467][T12959] veth1_vlan: entered promiscuous mode
[  206.884647][T12959] veth0_macvtap: entered promiscuous mode
[  206.903874][T12959] veth1_macvtap: entered promiscuous mode
[  206.940318][T12959] batman_adv: batadv0: Interface activated: batadv_slave_0
[  206.955389][T12959] batman_adv: batadv0: Interface activated: batadv_slave_1
[  206.967942][ T7061] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  206.971997][ T7061] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  206.979555][ T7061] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  206.983401][ T7061] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  206.984431][T13041] overlayfs: failed to resolve './file1/file0': -2
[  207.096207][ T7061] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  207.100301][ T7061] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  207.141493][ T7061] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  207.144753][ T7061] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  207.533967][ T5941] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  207.552944][ T5941] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  207.556961][ T5941] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  207.562608][ T5941] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  207.566343][ T5941] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  207.616975][T13060] lo speed is unknown, defaulting to 1000
[  207.786378][T13060] chnl_net:caif_netlink_parms(): no params data found
[  207.852551][T13060] bridge0: port 1(bridge_slave_0) entered blocking state
[  207.855706][T13060] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.859602][T13060] bridge_slave_0: entered allmulticast mode
[  207.863834][T13060] bridge_slave_0: entered promiscuous mode
[  207.870484][T13060] bridge0: port 2(bridge_slave_1) entered blocking state
[  207.873764][T13060] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.877302][T13060] bridge_slave_1: entered allmulticast mode
[  207.881608][T13060] bridge_slave_1: entered promiscuous mode
[  207.912523][T13060] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  207.912566][T13076] FAULT_INJECTION: forcing a failure.
[  207.912566][T13076] name failslab, interval 1, probability 0, space 0, times 0
[  207.921461][T13060] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  207.923303][T13076] CPU: 2 UID: 0 PID: 13076 Comm: syz.3.2540 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  207.923332][T13076] Tainted: [L]=SOFTLOCKUP
[  207.923339][T13076] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  207.923350][T13076] Call Trace:
[  207.923357][T13076]  <TASK>
[  207.923364][T13076]  dump_stack_lvl+0x100/0x190
[  207.923398][T13076]  should_fail_ex.cold+0x5/0xa
[  207.923422][T13076]  should_failslab+0xc2/0x120
[  207.923441][T13076]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  207.923466][T13076]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  207.923496][T13076]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  207.923526][T13076]  mmu_topup_memory_caches+0x25/0x170
[  207.923546][T13076]  kvm_mmu_load+0xd6/0x23e0
[  207.923563][T13076]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  207.923585][T13076]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  207.923636][T13076]  ? __pfx_kvm_mmu_load+0x10/0x10
[  207.923655][T13076]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  207.923680][T13076]  ? kvm_check_and_inject_events+0x961/0x10c0
[  207.923698][T13076]  ? record_steal_time+0x370/0xbe0
[  207.923723][T13076]  vcpu_run+0x39f4/0x5ca0
[  207.923750][T13076]  ? __pfx_vcpu_run+0x10/0x10
[  207.923776][T13076]  ? rcu_is_watching+0x12/0xc0
[  207.923798][T13076]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  207.923817][T13076]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  207.923842][T13076]  kvm_vcpu_ioctl+0x730/0x1730
[  207.923866][T13076]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  207.923890][T13076]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  207.923913][T13076]  ? do_vfs_ioctl+0x226/0x13e0
[  207.923937][T13076]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  207.923960][T13076]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  207.923989][T13076]  ? __fget_files+0x215/0x3d0
[  207.924004][T13076]  ? hook_file_ioctl_common+0x146/0x410
[  207.924034][T13076]  ? selinux_file_ioctl+0x139/0x290
[  207.924055][T13076]  ? selinux_file_ioctl+0xb4/0x290
[  207.924077][T13076]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  207.924101][T13076]  __x64_sys_ioctl+0x18e/0x210
[  207.924126][T13076]  do_syscall_64+0x106/0xf80
[  207.924147][T13076]  ? clear_bhb_loop+0x40/0x90
[  207.924166][T13076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.924183][T13076] RIP: 0033:0x7f282fd9c799
[  207.924197][T13076] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  207.924212][T13076] RSP: 002b:00007f2830d37028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  207.924229][T13076] RAX: ffffffffffffffda RBX: 00007f2830015fa0 RCX: 00007f282fd9c799
[  207.924239][T13076] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  207.924249][T13076] RBP: 00007f2830d37090 R08: 0000000000000000 R09: 0000000000000000
[  207.924259][T13076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  207.924269][T13076] R13: 00007f2830016038 R14: 00007f2830015fa0 R15: 00007ffeff7a9ce8
[  207.924306][T13076]  </TASK>
[  208.077103][T13060] team0: Port device team_slave_0 added
[  208.083251][T13060] team0: Port device team_slave_1 added
[  208.109613][T13060] batman_adv: batadv0: Adding interface: batadv_slave_0
[  208.112641][T13060] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  208.124115][T13060] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  208.131473][T13060] batman_adv: batadv0: Adding interface: batadv_slave_1
[  208.134521][T13060] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  208.145631][T13060] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  208.189838][T13060] hsr_slave_0: entered promiscuous mode
[  208.193203][T13060] hsr_slave_1: entered promiscuous mode
[  208.196296][T13060] debugfs: 'hsr0' already exists in 'hsr'
[  208.199764][T13060] Cannot create hsr debugfs directory
[  208.358462][ T5941] Bluetooth: hci4: command tx timeout
[  208.370666][T13060] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.404741][T13086] loop5: detected capacity change from 0 to 7
[  208.414067][ T5935] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  208.418634][ T5935] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  208.421567][ T5935] Dev loop5: unable to read RDB block 7
[  208.423952][ T5935]  loop5: AHDI p2 p3
[  208.425709][ T5935] loop5: partition table partially beyond EOD, truncated
[  208.438592][ T5935] loop5: p3 start 335544320 is beyond EOD, truncated
[  208.448526][T13086] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  208.452840][T13086] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  208.455775][T13086] Dev loop5: unable to read RDB block 7
[  208.464583][T13086]  loop5: AHDI p2 p3
[  208.465990][T13086] loop5: partition table partially beyond EOD, truncated
[  208.469595][T13086] loop5: p3 start 335544320 is beyond EOD, truncated
[  208.490516][T13060] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.571877][ T4220] usb 7-1: USB disconnect, device number 37
[  208.619171][T13060] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.676637][T13096] netlink: 120 bytes leftover after parsing attributes in process `syz.4.2547'.
[  208.681588][T13096] netlink: 'syz.4.2547': attribute type 1 has an invalid length.
[  208.684869][T13096] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2547'.
[  208.713614][T13060] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.751795][T13100] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2550'.
[  208.893191][T13106] ªªªªªª: renamed from vlan0 (while UP)
[  208.899167][T13060] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  208.905110][T13060] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  208.910693][T13060] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  208.924321][T13060] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  209.229982][T13060] 8021q: adding VLAN 0 to HW filter on device bond0
[  209.252527][T13060] 8021q: adding VLAN 0 to HW filter on device team0
[  209.262550][ T7081] bridge0: port 1(bridge_slave_0) entered blocking state
[  209.264863][ T7081] bridge0: port 1(bridge_slave_0) entered forwarding state
[  209.274709][ T7066] bridge0: port 2(bridge_slave_1) entered blocking state
[  209.277106][ T7066] bridge0: port 2(bridge_slave_1) entered forwarding state
[  209.378751][    T9] usb 7-1: new full-speed USB device number 38 using dummy_hcd
[  209.476761][T13060] 8021q: adding VLAN 0 to HW filter on device batadv0
[  209.517722][T13060] veth0_vlan: entered promiscuous mode
[  209.526475][T13060] veth1_vlan: entered promiscuous mode
[  209.544147][    T9] usb 7-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  209.547450][    T9] usb 7-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  209.552400][    T9] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  209.554117][T13060] veth0_macvtap: entered promiscuous mode
[  209.556724][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.562984][T13060] veth1_macvtap: entered promiscuous mode
[  209.571945][    T9] usbtmc 7-1:16.0: bulk endpoints not found
[  209.583135][T13060] batman_adv: batadv0: Interface activated: batadv_slave_0
[  209.591777][T13060] batman_adv: batadv0: Interface activated: batadv_slave_1
[  209.600942][ T7081] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  209.604624][ T7081] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  209.609412][ T7081] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  209.613303][ T7081] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  209.627963][ T5941] Bluetooth: hci3: command tx timeout
[  209.662821][ T7077] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  209.665871][ T7077] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  209.686545][ T7077] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  209.689394][ T7077] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  209.756856][T13133] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2536'.
[  209.762720][ T6014] IPVS: starting estimator thread 0...
[  209.833020][T13136] FAULT_INJECTION: forcing a failure.
[  209.833020][T13136] name failslab, interval 1, probability 0, space 0, times 0
[  209.837288][T13136] CPU: 1 UID: 0 PID: 13136 Comm: syz.0.2561 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  209.837305][T13136] Tainted: [L]=SOFTLOCKUP
[  209.837309][T13136] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  209.837316][T13136] Call Trace:
[  209.837321][T13136]  <TASK>
[  209.837326][T13136]  dump_stack_lvl+0x100/0x190
[  209.837348][T13136]  should_fail_ex.cold+0x5/0xa
[  209.837363][T13136]  should_failslab+0xc2/0x120
[  209.837374][T13136]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  209.837391][T13136]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  209.837417][T13136]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  209.837438][T13136]  mmu_topup_memory_caches+0x25/0x170
[  209.837453][T13136]  kvm_mmu_load+0xd6/0x23e0
[  209.837464][T13136]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  209.837480][T13136]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  209.837516][T13136]  ? __pfx_kvm_mmu_load+0x10/0x10
[  209.837530][T13136]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  209.837549][T13136]  ? kvm_check_and_inject_events+0x961/0x10c0
[  209.837563][T13136]  ? record_steal_time+0x370/0xbe0
[  209.837580][T13136]  vcpu_run+0x39f4/0x5ca0
[  209.837599][T13136]  ? __pfx_vcpu_run+0x10/0x10
[  209.837616][T13136]  ? rcu_is_watching+0x12/0xc0
[  209.837632][T13136]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  209.837646][T13136]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  209.837681][T13136]  kvm_vcpu_ioctl+0x730/0x1730
[  209.837699][T13136]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  209.837716][T13136]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  209.837733][T13136]  ? do_vfs_ioctl+0x226/0x13e0
[  209.837750][T13136]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  209.837767][T13136]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  209.837788][T13136]  ? __fget_files+0x215/0x3d0
[  209.837799][T13136]  ? hook_file_ioctl_common+0x146/0x410
[  209.837821][T13136]  ? selinux_file_ioctl+0x139/0x290
[  209.837835][T13136]  ? selinux_file_ioctl+0xb4/0x290
[  209.837851][T13136]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  209.837868][T13136]  __x64_sys_ioctl+0x18e/0x210
[  209.837885][T13136]  do_syscall_64+0x106/0xf80
[  209.837900][T13136]  ? clear_bhb_loop+0x40/0x90
[  209.837913][T13136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.837925][T13136] RIP: 0033:0x7f5de679c799
[  209.837935][T13136] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  209.837946][T13136] RSP: 002b:00007f5de770a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  209.837958][T13136] RAX: ffffffffffffffda RBX: 00007f5de6a15fa0 RCX: 00007f5de679c799
[  209.837965][T13136] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  209.837971][T13136] RBP: 00007f5de770a090 R08: 0000000000000000 R09: 0000000000000000
[  209.837978][T13136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  209.837984][T13136] R13: 00007f5de6a16038 R14: 00007f5de6a15fa0 R15: 00007ffdea4b7838
[  209.837998][T13136]  </TASK>
[  209.927850][T10350] ------------[ cut here ]------------
[  209.935639][T10350] [CRTC:37:crtc-0] vblank wait timed out
[  209.937922][T10350] WARNING: drivers/gpu/drm/drm_atomic_helper.c:1921 at drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0, CPU#2: kworker/2:4/10350
[  209.943200][T10350] Modules linked in:
[  209.944854][T10350] CPU: 2 UID: 0 PID: 10350 Comm: kworker/2:4 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  209.948992][T10350] Tainted: [L]=SOFTLOCKUP
[  209.950844][T10350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  209.954695][T10350] Workqueue: events drm_fb_helper_damage_work
[  209.956665][T10350] RIP: 0010:drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  209.957785][T13134] IPVS: using max 44 ests per chain, 105600 per kthread
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  209.959954][T10350] Code: 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 04 01 84 c0 74 08 3c 03 0f 8e 44 01 00 00 48 8d 3d c8 46 41 0b 8b b3 d8 00 00 00 <67> 48 0f b9 3a e9 e1 fc ff ff e8 13 62 65 fc e9 7c fe ff ff e8 99
[  209.970657][T10350] RSP: 0018:ffffc900037c76f0 EFLAGS: 00010246
[  209.973715][T10350] RAX: 0000000000000000 RBX: ffff888100b20040 RCX: 1ffff11020164023
[  209.977039][T10350] RDX: ffff888026b8f720 RSI: 0000000000000025 RDI: ffffffff90e49fe0
[  209.980775][T10350] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000
[  209.984212][T10350] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  209.987632][T10350] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888021cbb700
[  209.991298][T10350] FS:  0000000000000000(0000) GS:ffff8880d6542000(0000) knlGS:0000000000000000
[  209.994646][T10350] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  209.997168][T10350] CR2: 0000001b2cf63fff CR3: 00000000548fb000 CR4: 0000000000352ef0
[  210.000807][T10350] Call Trace:
[  210.002271][T10350]  <TASK>
[  210.003547][T10350]  ? __pfx_drm_atomic_helper_wait_for_vblanks.part.0+0x10/0x10
[  210.006787][T10350]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  210.009406][T10350]  ? lockdep_hardirqs_on+0x78/0x100
[  210.011756][T10350]  ? __pfx_autoremove_wake_function+0x10/0x10
[  210.014522][T10350]  ? drm_atomic_helper_commit_hw_done+0x36d/0x490
[  210.017357][T10350]  drm_atomic_helper_commit_tail+0xff/0x130
[  210.019971][T10350]  commit_tail+0x338/0x430
[  210.021891][T10350]  drm_atomic_helper_commit+0x303/0x380
[  210.024391][T10350]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  210.027027][T10350]  drm_atomic_commit+0x230/0x300
[  210.029348][T10350]  ? __pfx_drm_atomic_commit+0x10/0x10
[  210.031736][T10350]  ? __pfx___drm_printfn_info+0x10/0x10
[  210.034130][T10350]  ? modeset_lock+0x114/0x6d0
[  210.036242][T10350]  drm_atomic_helper_dirtyfb+0x603/0x790
[  210.038795][T10350]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  210.041343][T10350]  ? do_raw_spin_lock+0x128/0x260
[  210.043477][T10350]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  210.046179][T10350]  drm_fbdev_shmem_helper_fb_dirty+0x1cc/0x310
[  210.048873][T10350]  drm_fb_helper_damage_work+0x348/0x640
[  210.051041][T10350]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  210.053385][T10350]  ? rcu_is_watching+0x12/0xc0
[  210.055221][T10350]  process_one_work+0xa23/0x19a0
[  210.057413][T10350]  ? __pfx_process_one_work+0x10/0x10
[  210.059865][T10350]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  210.062500][T10350]  worker_thread+0x5ef/0xe50
[  210.064552][T10350]  ? __pfx_worker_thread+0x10/0x10
[  210.067100][T10350]  ? kthread+0x13a/0x450
[  210.069155][T10350]  ? __pfx_worker_thread+0x10/0x10
[  210.071261][T10350]  kthread+0x370/0x450
[  210.072962][T10350]  ? __pfx_kthread+0x10/0x10
[  210.074970][T10350]  ret_from_fork+0x754/0xd80
[  210.076969][T10350]  ? __pfx_ret_from_fork+0x10/0x10
[  210.079118][T10350]  ? rcu_is_watching+0x12/0xc0
[  210.081185][T10350]  ? __switch_to+0x7b4/0x1120
[  210.083271][T10350]  ? __pfx_kthread+0x10/0x10
[  210.085239][T10350]  ret_from_fork_asm+0x1a/0x30
[  210.086808][T10350]  </TASK>
[  210.087940][T10350] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  210.090236][T10350] CPU: 2 UID: 0 PID: 10350 Comm: kworker/2:4 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  210.093801][T10350] Tainted: [L]=SOFTLOCKUP
[  210.095173][T10350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  210.098601][T10350] Workqueue: events drm_fb_helper_damage_work
[  210.100552][T10350] Call Trace:
[  210.101635][T10350]  <TASK>
[  210.102603][T10350]  dump_stack_lvl+0x100/0x190
[  210.104139][T10350]  vpanic+0x552/0x970
[  210.105422][T10350]  ? __pfx_vpanic+0x10/0x10
[  210.106892][T10350]  panic+0xd1/0xe0
[  210.108311][T10350]  ? __pfx_panic+0x10/0x10
[  210.110064][T10350]  ? check_panic_on_warn+0x1f/0x90
[  210.111713][T10350]  check_panic_on_warn.cold+0x19/0x34
[  210.113405][T10350]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0
[  210.115663][T10350]  __warn.cold+0x191/0x348
[  210.117048][T10350]  __report_bug+0x296/0x3d0
[  210.118785][T10350]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0
[  210.121315][T10350]  ? __pfx___report_bug+0x10/0x10
[  210.122903][T10350]  ? lockdep_hardirqs_on+0x78/0x100
[  210.124549][T10350]  report_bug_entry+0xe1/0x290
[  210.126081][T10350]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  210.128494][T10350]  handle_bug+0x1cd/0x2a0
[  210.129890][T10350]  exc_invalid_op+0x17/0x50
[  210.131337][T10350]  asm_exc_invalid_op+0x1a/0x20
[  210.132849][T10350] RIP: 0010:drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  210.135231][T10350] Code: 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 04 01 84 c0 74 08 3c 03 0f 8e 44 01 00 00 48 8d 3d c8 46 41 0b 8b b3 d8 00 00 00 <67> 48 0f b9 3a e9 e1 fc ff ff e8 13 62 65 fc e9 7c fe ff ff e8 99
[  210.141263][T10350] RSP: 0018:ffffc900037c76f0 EFLAGS: 00010246
[  210.143160][T10350] RAX: 0000000000000000 RBX: ffff888100b20040 RCX: 1ffff11020164023
[  210.145613][T10350] RDX: ffff888026b8f720 RSI: 0000000000000025 RDI: ffffffff90e49fe0
[  210.148202][T10350] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000
[  210.150731][T10350] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  210.153284][T10350] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888021cbb700
[  210.155763][T10350]  ? __pfx_drm_atomic_helper_wait_for_vblanks.part.0+0x10/0x10
[  210.158338][T10350]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  210.160526][T10350]  ? lockdep_hardirqs_on+0x78/0x100
[  210.162417][T10350]  ? __pfx_autoremove_wake_function+0x10/0x10
[  210.164687][T10350]  ? drm_atomic_helper_commit_hw_done+0x36d/0x490
[  210.167133][T10350]  drm_atomic_helper_commit_tail+0xff/0x130
[  210.169304][T10350]  commit_tail+0x338/0x430
[  210.170984][T10350]  drm_atomic_helper_commit+0x303/0x380
[  210.173057][T10350]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  210.175271][T10350]  drm_atomic_commit+0x230/0x300
[  210.177106][T10350]  ? __pfx_drm_atomic_commit+0x10/0x10
[  210.179143][T10350]  ? __pfx___drm_printfn_info+0x10/0x10
[  210.181173][T10350]  ? modeset_lock+0x114/0x6d0
[  210.182898][T10350]  drm_atomic_helper_dirtyfb+0x603/0x790
[  210.184979][T10350]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  210.187275][T10350]  ? do_raw_spin_lock+0x128/0x260
[  210.189161][T10350]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  210.191429][T10350]  drm_fbdev_shmem_helper_fb_dirty+0x1cc/0x310
[  210.193697][T10350]  drm_fb_helper_damage_work+0x348/0x640
[  210.195783][T10350]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  210.198055][T10350]  ? rcu_is_watching+0x12/0xc0
[  210.199969][T10350]  process_one_work+0xa23/0x19a0
[  210.201850][T10350]  ? __pfx_process_one_work+0x10/0x10
[  210.203849][T10350]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  210.206121][T10350]  worker_thread+0x5ef/0xe50
[  210.207909][T10350]  ? __pfx_worker_thread+0x10/0x10
[  210.209823][T10350]  ? kthread+0x13a/0x450
[  210.211406][T10350]  ? __pfx_worker_thread+0x10/0x10
[  210.213324][T10350]  kthread+0x370/0x450
[  210.214858][T10350]  ? __pfx_kthread+0x10/0x10
[  210.216600][T10350]  ret_from_fork+0x754/0xd80
[  210.218381][T10350]  ? __pfx_ret_from_fork+0x10/0x10
[  210.220313][T10350]  ? rcu_is_watching+0x12/0xc0
[  210.222116][T10350]  ? __switch_to+0x7b4/0x1120
[  210.223904][T10350]  ? __pfx_kthread+0x10/0x10
[  210.225645][T10350]  ret_from_fork_asm+0x1a/0x30
[  210.227445][T10350]  </TASK>
[  210.229288][T10350] Kernel Offset: disabled
[  210.230665][T10350] Rebooting in 86400 seconds..