last executing test programs:

7.268769302s ago: executing program 1 (id=1286):
r0 = io_uring_setup(0x937, &(0x7f00000002c0)={0x0, 0x32b6, 0x80, 0x0, 0x35d})
syz_open_dev$hidraw(&(0x7f0000000080), 0x7fff, 0x400)
syz_usb_connect$cdc_ncm(0x1, 0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000090000082502000000000000000109025c00020100f92a0904000001020900000524060001053408fa6e0d240f0100000000000d000a0006471a010000190581"], 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
write$char_usb(r1, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
syz_usb_connect(0x0, 0x34, 0x0, 0x0)

6.203000824s ago: executing program 0 (id=1293):
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x10bb41)
ioctl$KVM_X86_SET_MSR_FILTER(0xffffffffffffffff, 0x4188aec6, &(0x7f0000002cc0)={0x0, [{0x3, 0x3a20, 0x6, &(0x7f0000000640)="7a650e526bd0998268bb5847d9beacc47a22df873eab4b8b91133675482eaa56ace8db59bed9aa07d4e390c7c9f98c462b55612196911e3c4e510ede3efde35eec990f22a76cf752e507c1e2de2920a9fc0790cc176bd2b901e4127b09835ae6d0d196048bb19a64d26f20a05b95c69f371882ef2e20c5606ed1b2ebcf09a4a333f6e1c3c4fb64d8182df4ab09d0a381d966977fc041cea9bdf0aa31fe51efe9211b9b8e6e4551b6438f8efcc41265574ff6504435eb22a678a99768f0327ded8fdcb41f27c2024d2b923f7dc5df5bf62af447b121dd9f94d766d6cebdeb02f611ab10e57af4b3268fb3f9777373bd5fd6b82f730e67c4eab113d8e65d7405be3e5d92dc5e7e85d34bb8b7c894cbed629ecc25c288b3d4556a85a1e2150cac5b686a8de29ab7c35040b77875bfa0e451dc0869cfe105bd115e7cf48f44dfdf26be65f3b727fd88d6395d051e49c060998e84b19377fcb20fe2eb392335e5a9d84555ef037aab37169ce761aa8a8ec08ea87e3a3b896f3d1b2380bc8256e0f7ea7dc488382e6112b53a7bb269d6261f87e0e0e0cef9152f8a67f412148f34880c970101fbd7b0e8fc49d6a5c87e487b7b175b15be26b6b8e1ed8527614dcefcfd80f8392560c8b706418b7de8fbb7a666a7e7f322dc70373606bf39efa04616cb99d662dfc591061bde5ed27a66aa7edbfec1eb0b1e843c372b84c3ed514a0aadf523b8669e526765d429824aeaa0a6f4c185754d437d977a1f586431dc256ce5aa7c25be259de3a0ae6e5bcdf56b4c7e8199fe6b461e78467cfac19de6956056ef57e93d3a7df8f646f4a9002b100edb0a6caa72b3f6eb29dc54de58120d27daff9cd61c64107e1bcb3b3212e1e2aa24fb24dc2dafc636c82ad25da9d934e46c7783d8f915337612feb348857ce2262240dfe51ec94d9d61074959f167b9840b20f003883bf167149228d7f03eafde851427cd1966a96aeae05b51ae4cd82f4b4dad60a070c01a8b500e2683f7136e331602e76845262825d7f3764cf1a05ad95d88aab71d41484f63fa6a43c044c7f03130552321933bc40b888fd0cc55939ff79a5059516f3b80c7ba8188ffb6a259a34567ee52c1f9df0f6c91737d688e36d076a49d1045cac30d5ed52a10381c96d9f22e469cc531bb06853d18b8f8625d2a917e795ffa4407fa75713510a3f5370e1ecbf7a5ff68a90a1eda077531cf4d399d4908f138c936e1931c72240070c6a6255f5fd03966e9a06c1d481e8e3d128e880776e572177780a3481c49bd86c174e152bafed245d58ef3428c645b08e48833960d1b5223d7be0c67a2b2c7531390d1837a84ed004a00cb4b0cd6e78824da032b48c49ec006d14206dc3d0c67d7ca87e9ea0faddc3e0b0c917c64eefeebf79e3a16c958db63a08a5d4d7210273aba3e56a4cd4cccb044750ff97749505ff1332b2dd30990849ab1500e1947d0abfb0c59760f0a502806ee1bce56fbb42251dd6ac8b709c73a6b8c548c2b23cf351dc498810e477bd082464e76702703b56d3cd2f3d8a2e00f19d8ffa3c236d3601f169c9dfe9c316f8cbe63c3801a51ea5ac785694a0c653cd28d68c5a81c2590d2aeea8c8688b2e88f46c4f99890e51b42cce485fcb4d91557fb3912b36b0dbeac8df44e945eb9937141402fb2aa1476185e1f8c37f6c98bc937f36d9c7237135132a54a03067b002b9c657ab0daa253af66eee78b0309cb8532dd2dee800c8349b731da0efa66ead82eebe0102279df5aa281fe1d86c0dbf154910d5e8a113ecbddbd046367b9e2acfa7cc406f61b472bbec6919534615ed81b664da956ce6586bf4c92d63ef371dfec5f9ce748931d585cadc9372a95a1372c7213e2c52fca253945afeee02e9f2de2d9452c85fd2dbdc87cb6c25697dfcbed8a0eba381835e6c360f3861367ec98a9a9ccf956d6cbfb706fee0d391cf82a0d4662792274f52fc2b5d72a43ec74a86400e62d3652f607774cfad1504bc0476570d532b527bf0d7012804b2e6fdf9a9414f10b16c9374f2b065348d865b309e37750d3a7e12394e356c48c9fa0d4a9a43f689f6cbf70b09a3b9782cc3d5d93480f8a7a21a049780fc6bf21f1eca938a37afcbb2b929a0c502e164d2571e78d214b359d97e3edc0ad5c7fd1625b4ece33e1f569676e9a7262ead857873f77ef149d2f8c5a09ab19ae384a7f957f612a24283c35327aa969b20711309644c5b3e6c89da94e1f5da54246bd771468a1adc8a8d601e0b12769604f0f07ca43ce2a8a2f4b5654c0b76b146c49038e07db54dae702580b97096911f034fc1797029de8b7c213c902d1d754e77ff85e6222e745db9d5d2d45c5d29a8b6de0f27e5701fdf12b09fd6c70baa0f85a424c21ce0796dbe1fd366b94fcdf64ea232b3e88b89a38d728de77e84decc804f07a48f2716ca6f76b24923cea1a4da0d1f1dc73611269e784c4fd921f9b26c11f35b5cda45842a81b603ce2155d95c273fa0743a571b52e68c9ea3f28009fc37406b9e329ce50fedfb20dfb4cdf3a94769aee2586c2a17e68a07abfcd18aceddfd3876b14558e4d092eadb9120796c44e89610494085117bc41b5c4619a8c160b97811df49fc7d9bf222d7a00264064"}, {0x2, 0x0, 0x1ff, 0x0}, {0x3, 0x0, 0x9, 0x0}, {0x0, 0x0, 0xfffffff8, 0x0}, {0x0, 0x0, 0x9, 0x0}, {0x1, 0x0, 0x40003, 0x0}, {0x2, 0x0, 0xa2d, 0x0}, {0x0, 0x0, 0x10000004, 0x0}, {0x1, 0x0, 0xf3f, 0x0}, {0x4, 0x0, 0xa3a, 0x0}, {0x3, 0x0, 0x3, 0x0}, {0x3, 0x0, 0x1000, 0x0}, {0x0, 0x0, 0x9, 0x0}, {0x0, 0x0, 0x1545, 0x0}, {0x1, 0x0, 0x9, 0x0}, {0x1, 0x0, 0x40007, 0x0}]})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CCA_ED_LEVEL(0xffffffffffffffff, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000f00)={0x1c, r1, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2000a010}, 0x20000010)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="000000000000000008000c620000000000000000d1b93d16a2d8cbcb02e10910167d4653d597fca7857d5db85e90d163592fba4138"], 0x48)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x44}}, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(0xffffffffffffffff, 0xc0205647, &(0x7f0000000940)={0xf010000, @win={{0x81, 0x4, 0x5, 0x7ff}, 0x4, 0x6, &(0x7f0000000340)={{0x4, 0x80000001, 0x4, 0x8001}}, 0x80000001, 0x0, 0x4}})
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (fail_nth: 3)

5.467558804s ago: executing program 0 (id=1297):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x10bb41)
ioctl$KVM_X86_SET_MSR_FILTER(0xffffffffffffffff, 0x4188aec6, &(0x7f0000002cc0)={0x0, [{0x3, 0x3a20, 0x6, &(0x7f0000000640)="7a650e526bd0998268bb5847d9beacc47a22df873eab4b8b91133675482eaa56ace8db59bed9aa07d4e390c7c9f98c462b55612196911e3c4e510ede3efde35eec990f22a76cf752e507c1e2de2920a9fc0790cc176bd2b901e4127b09835ae6d0d196048bb19a64d26f20a05b95c69f371882ef2e20c5606ed1b2ebcf09a4a333f6e1c3c4fb64d8182df4ab09d0a381d966977fc041cea9bdf0aa31fe51efe9211b9b8e6e4551b6438f8efcc41265574ff6504435eb22a678a99768f0327ded8fdcb41f27c2024d2b923f7dc5df5bf62af447b121dd9f94d766d6cebdeb02f611ab10e57af4b3268fb3f9777373bd5fd6b82f730e67c4eab113d8e65d7405be3e5d92dc5e7e85d34bb8b7c894cbed629ecc25c288b3d4556a85a1e2150cac5b686a8de29ab7c35040b77875bfa0e451dc0869cfe105bd115e7cf48f44dfdf26be65f3b727fd88d6395d051e49c060998e84b19377fcb20fe2eb392335e5a9d84555ef037aab37169ce761aa8a8ec08ea87e3a3b896f3d1b2380bc8256e0f7ea7dc488382e6112b53a7bb269d6261f87e0e0e0cef9152f8a67f412148f34880c970101fbd7b0e8fc49d6a5c87e487b7b175b15be26b6b8e1ed8527614dcefcfd80f8392560c8b706418b7de8fbb7a666a7e7f322dc70373606bf39efa04616cb99d662dfc591061bde5ed27a66aa7edbfec1eb0b1e843c372b84c3ed514a0aadf523b8669e526765d429824aeaa0a6f4c185754d437d977a1f586431dc256ce5aa7c25be259de3a0ae6e5bcdf56b4c7e8199fe6b461e78467cfac19de6956056ef57e93d3a7df8f646f4a9002b100edb0a6caa72b3f6eb29dc54de58120d27daff9cd61c64107e1bcb3b3212e1e2aa24fb24dc2dafc636c82ad25da9d934e46c7783d8f915337612feb348857ce2262240dfe51ec94d9d61074959f167b9840b20f003883bf167149228d7f03eafde851427cd1966a96aeae05b51ae4cd82f4b4dad60a070c01a8b500e2683f7136e331602e76845262825d7f3764cf1a05ad95d88aab71d41484f63fa6a43c044c7f03130552321933bc40b888fd0cc55939ff79a5059516f3b80c7ba8188ffb6a259a34567ee52c1f9df0f6c91737d688e36d076a49d1045cac30d5ed52a10381c96d9f22e469cc531bb06853d18b8f8625d2a917e795ffa4407fa75713510a3f5370e1ecbf7a5ff68a90a1eda077531cf4d399d4908f138c936e1931c72240070c6a6255f5fd03966e9a06c1d481e8e3d128e880776e572177780a3481c49bd86c174e152bafed245d58ef3428c645b08e48833960d1b5223d7be0c67a2b2c7531390d1837a84ed004a00cb4b0cd6e78824da032b48c49ec006d14206dc3d0c67d7ca87e9ea0faddc3e0b0c917c64eefeebf79e3a16c958db63a08a5d4d7210273aba3e56a4cd4cccb044750ff97749505ff1332b2dd30990849ab1500e1947d0abfb0c59760f0a502806ee1bce56fbb42251dd6ac8b709c73a6b8c548c2b23cf351dc498810e477bd082464e76702703b56d3cd2f3d8a2e00f19d8ffa3c236d3601f169c9dfe9c316f8cbe63c3801a51ea5ac785694a0c653cd28d68c5a81c2590d2aeea8c8688b2e88f46c4f99890e51b42cce485fcb4d91557fb3912b36b0dbeac8df44e945eb9937141402fb2aa1476185e1f8c37f6c98bc937f36d9c7237135132a54a03067b002b9c657ab0daa253af66eee78b0309cb8532dd2dee800c8349b731da0efa66ead82eebe0102279df5aa281fe1d86c0dbf154910d5e8a113ecbddbd046367b9e2acfa7cc406f61b472bbec6919534615ed81b664da956ce6586bf4c92d63ef371dfec5f9ce748931d585cadc9372a95a1372c7213e2c52fca253945afeee02e9f2de2d9452c85fd2dbdc87cb6c25697dfcbed8a0eba381835e6c360f3861367ec98a9a9ccf956d6cbfb706fee0d391cf82a0d4662792274f52fc2b5d72a43ec74a86400e62d3652f607774cfad1504bc0476570d532b527bf0d7012804b2e6fdf9a9414f10b16c9374f2b065348d865b309e37750d3a7e12394e356c48c9fa0d4a9a43f689f6cbf70b09a3b9782cc3d5d93480f8a7a21a049780fc6bf21f1eca938a37afcbb2b929a0c502e164d2571e78d214b359d97e3edc0ad5c7fd1625b4ece33e1f569676e9a7262ead857873f77ef149d2f8c5a09ab19ae384a7f957f612a24283c35327aa969b20711309644c5b3e6c89da94e1f5da54246bd771468a1adc8a8d601e0b12769604f0f07ca43ce2a8a2f4b5654c0b76b146c49038e07db54dae702580b97096911f034fc1797029de8b7c213c902d1d754e77ff85e6222e745db9d5d2d45c5d29a8b6de0f27e5701fdf12b09fd6c70baa0f85a424c21ce0796dbe1fd366b94fcdf64ea232b3e88b89a38d728de77e84decc804f07a48f2716ca6f76b24923cea1a4da0d1f1dc73611269e784c4fd921f9b26c11f35b5cda45842a81b603ce2155d95c273fa0743a571b52e68c9ea3f28009fc37406b9e329ce50fedfb20dfb4cdf3a94769aee2586c2a17e68a07abfcd18aceddfd3876b14558e4d092eadb9120796c44e89610494085117bc41b5c4619a8c160b97811df49fc7d9bf222d7a00264064"}, {0x2, 0x0, 0x1ff, 0x0}, {0x3, 0x0, 0x9, 0x0}, {0x0, 0x0, 0xfffffff8, 0x0}, {0x0, 0x0, 0x9, 0x0}, {0x1, 0x0, 0x40003, 0x0}, {0x2, 0x0, 0xa2d, 0x0}, {0x0, 0x0, 0x10000004, 0x0}, {0x1, 0x0, 0xf3f, 0x0}, {0x4, 0x0, 0xa3a, 0x0}, {0x3, 0x0, 0x3, 0x0}, {0x3, 0x0, 0x1000, 0x0}, {0x0, 0x0, 0x9, 0x0}, {0x0, 0x0, 0x1545, 0x0}, {0x1, 0x0, 0x9, 0x0}, {0x1, 0x0, 0x40007, 0x0}]})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CCA_ED_LEVEL(0xffffffffffffffff, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000f00)={0x1c, r2, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2000a010}, 0x20000010)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="000000000000000008000c620000000000000000d1b93d16a2d8cbcb02e10910167d4653d597fca7857d5db85e90d163592fba4138"], 0x48)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x44}}, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(0xffffffffffffffff, 0xc0205647, &(0x7f0000000940)={0xf010000, @win={{0x81, 0x4, 0x5, 0x7ff}, 0x4, 0x6, &(0x7f0000000340)={{0x4, 0x80000001, 0x4, 0x8001}}, 0x80000001, 0x0, 0x4}})
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000f40)={{0x1, 0x1, 0x18, <r4=>r0, {0x1}}, './file0\x00'})
syz_kvm_setup_cpu$x86(r4, r0, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001080)=[@text64={0x40, &(0x7f0000001000)="c74424002c000000c74424020c000000c7442406000000000f0114243e66420f3882734af3ae0f1c0ddea99e3d400f62560c66baf80cb88c3d998fef66bafc0ced66b898000f00d063467d66b809010f00d08fe978e14e99", 0x58}], 0x1, 0x8, &(0x7f00000010c0), 0x0)
r5 = openat2(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', &(0x7f0000000600)={0x10000, 0x188, 0x6}, 0x18)
setsockopt$inet_group_source_req(r5, 0x0, 0x2c, &(0x7f0000000dc0)={0x0, {{0x2, 0x4e21, @empty}}, {{0x2, 0x4e24, @empty}}}, 0x108)
r6 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r6, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000540)={0x5, 0x9, 0x3, 0x4d, 0x6, "46cc6c6fbb6a2260dca762c5c3e10d5f84e558"})
r7 = syz_open_dev$vcsa(&(0x7f0000000300), 0x1, 0x10100)
ioctl$SNDCTL_SEQ_GETOUTCOUNT(r7, 0x80045104, &(0x7f0000000500))
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x30, r9, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}, @NL80211_ATTR_MESH_ID={0xa}]}, 0x30}}, 0xc0c4)
r11 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
ioctl$KVM_RUN(r12, 0xae80, 0x0)
ioctl$KVM_RUN(r12, 0xae80, 0x0)

5.072821546s ago: executing program 0 (id=1300):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, 0x0, 0x0)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000001d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x1a}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x6, {0x8, 0xfffffffe, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3966, 0x1, 0x8000, 0xfffffffc, r1, r2, 0x1, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x80101, 0x101)
write$tcp_congestion(r3, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r3, r0)
write$FUSE_NOTIFY_POLL(r0, &(0x7f0000000100)={0xfffffffffffffeab, 0x1, 0x0, {0x2}}, 0xffffffe8)

4.499921908s ago: executing program 3 (id=1302):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x10002, 0x1, 0x1})
r1 = gettid()
syz_open_dev$vim2m(&(0x7f0000000540), 0x1b00, 0x2)
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

4.498836331s ago: executing program 1 (id=1303):
r0 = syz_usb_connect(0x5, 0x46, &(0x7f0000000340)=ANY=[@ANYBLOB="12010000e75f9208c0070515c5b8010203010902340001000080000904ba00038e4ee2000905000000041a06010905010300001007c109050c04400006030f07059acbf5"], 0x0)
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000100)={0x14, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_emit_vhci(&(0x7f0000001000)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_version={{0xc, 0x8}, {0xff, 0xc9, 0x5, 0x81, 0x1}}}, 0xb)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)={0x50, r1, 0x801, 0x400, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "4abee33908f8eef16f162471f4"}, @NL80211_KEY_IDX={0x5, 0x2, 0x2}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}]}]}, 0x50}}, 0x0)
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000fc0)={0x0, 0x2000}, 0x4)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="1400", 0x2}], 0x1}, 0x0)
syz_usb_connect$hid(0x3, 0x3f, &(0x7f0000000480)=ANY=[@ANYBLOB="1201000200000082bd28420040000180725b02030109022d00010106a0050904000602030101f809210100800122da0309058103ff03fd070109050203ff03000309"], &(0x7f0000000400)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x110, 0x10, 0x5, 0x6, 0x20, 0x4}, 0x108, &(0x7f0000000140)={0x5, 0xf, 0x108, 0x5, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x2, 0xf, 0x3, 0x3}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x8, 0x5, 0xb1, 0x2}, @ssp_cap={0x10, 0x10, 0xa, 0xf8, 0x1, 0xa3, 0xf, 0x0, [0xc000]}, @wireless={0xb, 0x10, 0x1, 0x8, 0x40, 0xae, 0x1, 0x9, 0x9}, @generic={0xd4, 0x10, 0xb, "13206c47ba7b473a5da6c872f9d87a2abb3e9d446747d53fd8634a3a207bdabbf233a081113262532b958498d8e31f90000b93edc12f04cbdefd16eec9f2ee927b4c4dd05e853a4ab4f56cd4862d37bb3bc026d1f87bd7bbcbbce7a5f882d26529f1bfe2ec892d4e3bb77c24d0d6f6d4416bdd37c5c2238e7ef7923fa9c32a7ab45217c6b1cc4d3958a688093d9a0a69d279da5190060a65e5c3ef62e4b3320ccd7f00fcafec37b5a466b797acb49923b4105d8e8f8c8a3a26fb79225e7a9208d478fc94cf4c75a8bf0000000000000000"}]}, 0x4, [{0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x437}}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x180a}}, {0x2d, &(0x7f0000000300)=@string={0x2d, 0x3, "90944577ca243a50b4c98668acfff781bf37bd8732b5ebc1f96c873c6b9bff4f79358d8619732c5317ad1b"}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x3009}}]})
write$char_usb(r4, 0x0, 0x0)
r7 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000080), 0x101800, 0x0)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000540), 0xffffffffffffffff)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000200), 0x40240, 0x0)
ioctl$TCSBRKP(r10, 0x5425, 0x9)
r11 = socket(0x1, 0x803, 0x0)
getsockname$packet(r11, &(0x7f0000000100)={0x11, 0x0, <r12=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="540000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800e0001006970366772657461700000001800028014000700fc00000000000000000000000000000008000a00", @ANYRES32=r12], 0x54}}, 0x0)
write$binfmt_aout(r7, &(0x7f0000000700)={{0x108, 0x1, 0xd, 0x6, 0x58, 0x1, 0x155, 0x9}, "b5c29e26fd169d84f0be761d238442c9e6435a3cb6c202c52e711f58fa1a44394ba7a784ba0b9798e0898b8640c4a3d45c6983ddfcc96b9dacf53bcd342612e7d5b3376fe597424d5f178eb00e662f3f7e9ad9ae4379a14d50bc7b66b1885d68f5bc9900e1ef37d55542766f52fc8a7d56ac922ae3947340a373d554c1da341efd1b1ad7f46b843562452bd7b059614cc53b7c9da0a5d145817e3efe549494261363f3ac61a79ba9227eef5ac352162038107da880a30e150d8f872eb08ecd04bfb07e4cfb3e299a8a959056a28f2331933fa723fdd7548715e6e134f4ad5685aa7d73fa36afa91840701a12109caa34dc1bc3f8664b664be896e74b3208bce5aa36650a1685666fb77b4245449cdeee3030965100f28e18b992df1552116d592af178d66b68eda4b6e66aabfd1c3ad22237322c6c89befb71523c2f80"}, 0x15d)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r7, &(0x7f0000000680)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000640)={&(0x7f0000000580)={0x88, r8, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x4}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0xc68a}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0xb}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x14, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x36}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7}]}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r12}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x39}}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x44813}, 0xc054)

4.029862712s ago: executing program 0 (id=1304):
r0 = socket$inet6(0xa, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x0, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x8, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1fffffc}, 0x94)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000ff5000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
setsockopt$nfc_llcp_NFC_LLCP_MIUX(0xffffffffffffffff, 0x118, 0x1, &(0x7f0000000180)=0x465, 0x4)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r1 = io_uring_setup(0x524, &(0x7f0000000040)={0x0, 0x4226, 0x100, 0xa, 0x20002f7})
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x402241, 0x0)
r2 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0xc0000, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000140)=0xe)
ioctl$FIONREAD(r2, 0x541b, &(0x7f0000000300))
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000000000)={0x14, 0x0, 0x1, 0x70bd2c, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x2004c800}, 0x20040000)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x10, 0x0, @mcast2}}}, 0x88)
ioctl$TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f0000000100)={0x0, 0x8, [@dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @broadcast, @local, @broadcast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @random="a19ec5520e7a"]})
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000380)=ANY=[@ANYBLOB="0b000000000000000a00000000000000ff020000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000020000000a00000000000000fe8000000000000000000000000000bb00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000fe8000000000000000000000000000bb"], 0x190)
syz_emit_ethernet(0x4e, &(0x7f00000004c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x18, 0x3a, 0x1, @remote, @mcast2, {[], @mld={0x83, 0x0, 0x0, 0x9f22, 0x7, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}}}}, 0x0)

3.665495535s ago: executing program 0 (id=1306):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000000c0), 0x20000, 0x0)
setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000240)={0x81, {{0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}}, {{0x2, 0x4e23, @multicast2}}}, 0x108)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000000)="a6", 0x1, 0x200080c0, &(0x7f00000001c0)={0xa, 0x4e22, 0xfffbfff8, @loopback, 0x80009}, 0x1c)
r2 = syz_usb_connect(0x0, 0x3f, &(0x7f00000012c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109024a0001100000000904000003fe03010009cd8d1f00020000000905050200067e001009058b1e", @ANYRESHEX], 0x0)
syz_usb_control_io$printer(r2, 0x0, 0x0)
syz_usb_control_io$rtl8150(r2, 0x0, 0x0)
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x400000003e)
write$char_usb(r3, &(0x7f0000002680)="e7", 0x1)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='nv', 0x2)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36)
shutdown(r0, 0x1)

3.213197806s ago: executing program 2 (id=1309):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
setreuid(0xee01, 0x0)
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03", 0x3}], 0x1}, 0x0)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000300), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010426bd7000f8dbdf250200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
write$nci(r0, &(0x7f0000000100)=ANY=[@ANYBLOB='p\x00\t', @ANYRES32], 0xc)
write$nci(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="5001"], 0x14)
r4 = getpid()
r5 = syz_pidfd_open(r4, 0x0)
setns(r5, 0x24020000)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
r7 = gettid()
timer_create(0x1, &(0x7f0000000180)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc)=<r8=>0x0)
timer_settime(r8, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
bind$inet6(r6, &(0x7f0000000300)={0xa, 0x4e23, 0x0, @local, 0x3}, 0x1c)
syz_clone(0x120e1100, 0x0, 0x13, 0x0, 0x0, 0x0)
r9 = openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x40080, 0x0)
ioctl$BTRFS_IOC_INO_PATHS(r9, 0xc0389423, &(0x7f0000000340)={0x7, 0x10, [0x8, 0x5, 0x2], &(0x7f0000000240)=[0x0, 0x0]})

2.666041408s ago: executing program 2 (id=1310):
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x10bb41)
ioctl$KVM_X86_SET_MSR_FILTER(0xffffffffffffffff, 0x4188aec6, &(0x7f0000002cc0)={0x0, [{0x3, 0x39f0, 0x6, &(0x7f0000000640)="7a650e526bd0998268bb5847d9beacc47a22df873eab4b8b91133675482eaa56ace8db59bed9aa07d4e390c7c9f98c462b55612196911e3c4e510ede3efde35eec990f22a76cf752e507c1e2de2920a9fc0790cc176bd2b901e4127b09835ae6d0d196048bb19a64d26f20a05b95c69f371882ef2e20c5606ed1b2ebcf09a4a333f6e1c3c4fb64d8182df4ab09d0a381d966977fc041cea9bdf0aa31fe51efe9211b9b8e6e4551b6438f8efcc41265574ff6504435eb22a678a99768f0327ded8fdcb41f27c2024d2b923f7dc5df5bf62af447b121dd9f94d766d6cebdeb02f611ab10e57af4b3268fb3f9777373bd5fd6b82f730e67c4eab113d8e65d7405be3e5d92dc5e7e85d34bb8b7c894cbed629ecc25c288b3d4556a85a1e2150cac5b686a8de29ab7c35040b77875bfa0e451dc0869cfe105bd115e7cf48f44dfdf26be65f3b727fd88d6395d051e49c060998e84b19377fcb20fe2eb392335e5a9d84555ef037aab37169ce761aa8a8ec08ea87e3a3b896f3d1b2380bc8256e0f7ea7dc488382e6112b53a7bb269d6261f87e0e0e0cef9152f8a67f412148f34880c970101fbd7b0e8fc49d6a5c87e487b7b175b15be26b6b8e1ed8527614dcefcfd80f8392560c8b706418b7de8fbb7a666a7e7f322dc70373606bf39efa04616cb99d662dfc591061bde5ed27a66aa7edbfec1eb0b1e843c372b84c3ed514a0aadf523b8669e526765d429824aeaa0a6f4c185754d437d977a1f586431dc256ce5aa7c25be259de3a0ae6e5bcdf56b4c7e8199fe6b461e78467cfac19de6956056ef57e93d3a7df8f646f4a9002b100edb0a6caa72b3f6eb29dc54de58120d27daff9cd61c64107e1bcb3b3212e1e2aa24fb24dc2dafc636c82ad25da9d934e46c7783d8f915337612feb348857ce2262240dfe51ec94d9d61074959f167b9840b20f003883bf167149228d7f03eafde851427cd1966a96aeae05b51ae4cd82f4b4dad60a070c01a8b500e2683f7136e331602e76845262825d7f3764cf1a05ad95d88aab71d41484f63fa6a43c044c7f03130552321933bc40b888fd0cc55939ff79a5059516f3b80c7ba8188ffb6a259a34567ee52c1f9df0f6c91737d688e36d076a49d1045cac30d5ed52a10381c96d9f22e469cc531bb06853d18b8f8625d2a917e795ffa4407fa75713510a3f5370e1ecbf7a5ff68a90a1eda077531cf4d399d4908f138c936e1931c72240070c6a6255f5fd03966e9a06c1d481e8e3d128e880776e572177780a3481c49bd86c174e152bafed245d58ef3428c645b08e48833960d1b5223d7be0c67a2b2c7531390d1837a84ed004a00cb4b0cd6e78824da032b48c49ec006d14206dc3d0c67d7ca87e9ea0faddc3e0b0c917c64eefeebf79e3a16c958db63a08a5d4d7210273aba3e56a4cd4cccb044750ff97749505ff1332b2dd30990849ab1500e1947d0abfb0c59760f0a502806ee1bce56fbb42251dd6ac8b709c73a6b8c548c2b23cf351dc498810e477bd082464e76702703b56d3cd2f3d8a2e00f19d8ffa3c236d3601f169c9dfe9c316f8cbe63c3801a51ea5ac785694a0c653cd28d68c5a81c2590d2aeea8c8688b2e88f46c4f99890e51b42cce485fcb4d91557fb3912b36b0dbeac8df44e945eb9937141402fb2aa1476185e1f8c37f6c98bc937f36d9c7237135132a54a03067b002b9c657ab0daa253af66eee78b0309cb8532dd2dee800c8349b731da0efa66ead82eebe0102279df5aa281fe1d86c0dbf154910d5e8a113ecbddbd046367b9e2acfa7cc406f61b472bbec6919534615ed81b664da956ce6586bf4c92d63ef371dfec5f9ce748931d585cadc9372a95a1372c7213e2c52fca253945afeee02e9f2de2d9452c85fd2dbdc87cb6c25697dfcbed8a0eba381835e6c360f3861367ec98a9a9ccf956d6cbfb706fee0d391cf82a0d4662792274f52fc2b5d72a43ec74a86400e62d3652f607774cfad1504bc0476570d532b527bf0d7012804b2e6fdf9a9414f10b16c9374f2b065348d865b309e37750d3a7e12394e356c48c9fa0d4a9a43f689f6cbf70b09a3b9782cc3d5d93480f8a7a21a049780fc6bf21f1eca938a37afcbb2b929a0c502e164d2571e78d214b359d97e3edc0ad5c7fd1625b4ece33e1f569676e9a7262ead857873f77ef149d2f8c5a09ab19ae384a7f957f612a24283c35327aa969b20711309644c5b3e6c89da94e1f5da54246bd771468a1adc8a8d601e0b12769604f0f07ca43ce2a8a2f4b5654c0b76b146c49038e07db54dae702580b97096911f034fc1797029de8b7c213c902d1d754e77ff85e6222e745db9d5d2d45c5d29a8b6de0f27e5701fdf12b09fd6c70baa0f85a424c21ce0796dbe1fd366b94fcdf64ea232b3e88b89a38d728de77e84decc804f07a48f2716ca6f76b24923cea1a4da0d1f1dc73611269e784c4fd921f9b26c11f35b5cda45842a81b603ce2155d95c273fa0743a571b52e68c9ea3f28009fc37406b9e329ce50fedfb20dfb4cdf3a94769aee2586c2a17e68a07abfcd18aceddfd3876b14558e4d092eadb9120796c44e89610494085117bc41b5c4619a8c160b97811df49fc7d9bf22"}, {0x2, 0x0, 0x1ff, 0x0}, {0x3, 0x0, 0x9, 0x0}, {0x0, 0x0, 0xfffffff8, 0x0}, {0x0, 0x0, 0x9, 0x0}, {0x1, 0x0, 0x40003, 0x0}, {0x2, 0x0, 0xa2d, 0x0}, {0x0, 0x0, 0x10000004, 0x0}, {0x1, 0x0, 0xf3f, 0x0}, {0x4, 0x0, 0xa3a, 0x0}, {0x3, 0x0, 0x3, 0x0}, {0x3, 0x0, 0x1000, 0x0}, {0x0, 0x0, 0x9, 0x0}, {0x0, 0x0, 0x1545, 0x0}, {0x1, 0x0, 0x9, 0x0}, {0x1, 0x0, 0x40007, 0x0}]})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CCA_ED_LEVEL(0xffffffffffffffff, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000f00)={0x1c, r1, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2000a010}, 0x20000010)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="000000000000000008000c620000000000000000d1b93d16a2d8cbcb02e10910167d4653d597fca7857d5db85e90d163592fba4138"], 0x48)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x44}}, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(0xffffffffffffffff, 0xc0205647, &(0x7f0000000940)={0xf010000, @win={{0x81, 0x4, 0x5, 0x7ff}, 0x4, 0x6, &(0x7f0000000340)={{0x4, 0x80000001, 0x4, 0x8001}}, 0x80000001, 0x0, 0x4}})
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412b", 0xf}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

2.458478383s ago: executing program 1 (id=1311):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x10002, 0x1, 0x1})
r1 = gettid()
syz_open_dev$vim2m(&(0x7f0000000540), 0x0, 0x2) (fail_nth: 5)
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

2.164102628s ago: executing program 3 (id=1312):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, 0x0, 0x0)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000001d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x1a}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x6, {0x8, 0xfffffffe, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3966, 0x1, 0x8000, 0xfffffffc, r1, r2, 0x1, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x80101, 0x101)
write$tcp_congestion(r3, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r3, r0)
write$FUSE_NOTIFY_POLL(r0, &(0x7f0000000100)={0xfffffffffffffeab, 0x1, 0x0, {0x2}}, 0xffffffe8)

1.977287419s ago: executing program 1 (id=1313):
syz_open_dev$hidraw(&(0x7f0000000080), 0x7fff, 0x400)
syz_usb_connect$cdc_ncm(0x1, 0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000090000082502000000000000000109025c00020100f92a09040000010209"], 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
write$char_usb(r0, 0x0, 0x0)

1.857986988s ago: executing program 2 (id=1314):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000000c0)=@file={0x0, './bus\x00'}, 0x6e)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
fchdir(r2)
r3 = open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)
ftruncate(r3, 0x2007ffb)
close(r3)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0xc8a02, 0x0) (fail_nth: 5)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x7, 0x0, 0x0)
creat(&(0x7f0000000300)='./bus\x00', 0x0)

1.392657498s ago: executing program 2 (id=1315):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
pipe(&(0x7f0000000100))
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha224)\x00'}, 0x58)
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/net\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x16, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180000002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
accept4(r0, 0x0, 0x0, 0x80000)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000ff5000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
socket(0x2c, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xff}, 0x50)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1}}, &(0x7f0000000140)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000980)={{}, 0x0, &(0x7f0000000940)=r1}, 0x20)
r2 = io_uring_setup(0x524, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000000)={'wlan1\x00', 0x0})
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x500)
mount$bpf(0x0, 0x0, 0x0, 0x808, 0x0)

1.363687303s ago: executing program 2 (id=1316):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a03000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000180003801400020000007468305f746f5f68737200000000080002"], 0xe8}}, 0x0)
write$tun(r0, &(0x7f0000000840)={@val={0x8, 0x800}, @val={0x6, 0x0, 0x6, 0x8, 0x14}, @ipv4=@generic={{0x5, 0x4, 0x2, 0x2, 0x72, 0x66, 0x0, 0xb, 0x2f, 0x0, @rand_addr=0x64010101, @broadcast}, "3297e3ba0fa8a2e71bd9fe1a399b5110420b70460c0dad392d66248a43540df968e7fcaab34569c0e36170578c0d3c546a98b26295e2592f360905866eb4720fed03a977a3df4224895629fd6ccec64f13a999f18f518e3ee28798381975"}}, 0x80) (fail_nth: 4)

1.270230692s ago: executing program 3 (id=1317):
set_mempolicy(0x3, &(0x7f0000000000)=0x5, 0x8)
futex(&(0x7f0000000000), 0x8c, 0x1, 0x0, 0x0, 0x0)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc1}, &(0x7f0000000080)={0x0, "5d9bc136c963254c661fb620148b6f72ca6ae2a44829bfa79ec13499f8ec9077d85d879711d98bb1687ad36dfe5f14a7b0ce15c1e6be0e7ecabfdfde0dfa00b1"}, 0x48, 0xffffffffffffffff)
r0 = add_key(&(0x7f0000000180)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f0000000400)="1b", 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r0, &(0x7f0000001300)=""/4096, 0xffffffffffffffd2)
r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000140), 0x189481, 0x0)
keyctl$KEYCTL_WATCH_KEY(0x20, r0, r1, 0x5)
r2 = syz_open_dev$ndb(&(0x7f0000000080), 0x0, 0x42)
r3 = syz_open_dev$cec(&(0x7f0000002340), 0x0, 0x101441)
ioctl$CEC_S_MODE(r3, 0x40046109, &(0x7f0000000100)=0x22)
ioctl$CEC_S_MODE(r3, 0x40046109, &(0x7f0000001440)=0x82)
r4 = landlock_create_ruleset(&(0x7f0000000040)={0x9c02, 0x1, 0x3}, 0x18, 0x0)
ioctl$BLKRRPART(r2, 0x125f, 0x0)
landlock_restrict_self(r4, 0x5)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x88040, 0x0)
fcntl$setlease(r5, 0x400, 0x0)
clock_getres(0x1, &(0x7f00000001c0))
ioctl$BLKROTATIONAL(r2, 0x127e, &(0x7f00000000c0))

1.030499174s ago: executing program 3 (id=1318):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x44081}, 0x40000)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0x25dfdbfe, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x20bbfb2b, 0xf2, 0x45ff, 0x9, 0xfffffffc, 0xb5, 0x10001, 0x2, 0x81}}}}]}, 0x58}}, 0x180c0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0x80000, {0x0, 0x0, 0x0, r7, {0x0, 0xe}, {0x2, 0xb}, {0xffe0, 0x484c10e0d22b6613}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0xff, 0x0, 0xfffffffa, 0xc, 0x8, 0x3}}}}]}, 0x4c}}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) (fail_nth: 1)

404.299583ms ago: executing program 0 (id=1319):
r0 = syz_usb_connect(0x1, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d00090503034d00ff99090805", @ANYRES32], &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read(r1, &(0x7f0000000380)=""/144, 0x90)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
io_uring_setup(0x1de0, &(0x7f0000001040)={0x0, 0x764, 0x2, 0xffffffff, 0x1d2})
pwrite64(r1, 0x0, 0x0, 0x4)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x94, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x0)
r3 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000640)=0x10)
mmap$dsp(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x100000b, 0x4009810, r3, 0x0)

174.497925ms ago: executing program 3 (id=1320):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x1000000)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x4})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa04, &(0x7f0000000000)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x0, 0x2}) (fail_nth: 3)

174.229992ms ago: executing program 1 (id=1321):
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000680)=ANY=[@ANYBLOB="060000000000000071113c000000000085100000020000008500000076000000950000000000000a9500a50500000000b3045d0dbb7ccbd5337b0f3eefd7181115e4c127e6b1a2a6a391362310900dc3"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)

67.256091ms ago: executing program 3 (id=1322):
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x10bb41)
ioctl$KVM_X86_SET_MSR_FILTER(0xffffffffffffffff, 0x4188aec6, &(0x7f0000002cc0)={0x0, [{0x3, 0x39f0, 0x6, &(0x7f0000000640)="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"}, {0x2, 0x0, 0x1ff, 0x0}, {0x3, 0x0, 0x9, 0x0}, {0x0, 0x0, 0xfffffff8, 0x0}, {0x0, 0x0, 0x9, 0x0}, {0x1, 0x0, 0x40003, 0x0}, {0x2, 0x0, 0xa2d, 0x0}, {0x0, 0x0, 0x10000004, 0x0}, {0x1, 0x0, 0xf3f, 0x0}, {0x4, 0x0, 0xa3a, 0x0}, {0x3, 0x0, 0x3, 0x0}, {0x3, 0x0, 0x1000, 0x0}, {0x0, 0x0, 0x9, 0x0}, {0x0, 0x0, 0x1545, 0x0}, {0x1, 0x0, 0x9, 0x0}, {0x1, 0x0, 0x40007, 0x0}]})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CCA_ED_LEVEL(0xffffffffffffffff, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000f00)={0x1c, r1, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2000a010}, 0x20000010)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="000000000000000008000c620000000000000000d1b93d16a2d8cbcb02e10910167d4653d597fca7857d5db85e90d163592fba4138"], 0x48)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x44}}, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(0xffffffffffffffff, 0xc0205647, &(0x7f0000000940)={0xf010000, @win={{0x81, 0x4, 0x5, 0x7ff}, 0x4, 0x6, &(0x7f0000000340)={{0x4, 0x80000001, 0x4, 0x8001}}, 0x80000001, 0x0, 0x4}})
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412b", 0xf}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

255.788µs ago: executing program 1 (id=1323):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0), 0x185042, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write(r1, &(0x7f0000000000)="0d000000010001", 0x7)
r2 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x1a6c42)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000001ac0)={r0, 0x2000, {0x0, 0x0, 0x0, 0x3, 0x14a1fd, 0x0, 0x0, 0x1e, 0x1c, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e174f000000000000000010e200", [0x0, 0x400]}})
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000001c00)={0x8, {"b0476b76ba5d044f65271519727e4ff1ff0d12c0e6bdf3ea1f52e24f60ca698457b32832b83d7e96694c1feb5809bd67002f71e0b97c0d5270c04ffa64f63b2e18ee4b7b572fe2f4d03cad38bcd106ff12f53b443ac6fc81da518f54b9004a44859529c07a2b1b8feddc0180a0f37b13babba1dd0813b7ea56dac4b7ffe9a2ef54221439ecc55223ef2d40f4ba8108c10387ddffbaed25d41e7692bf26ddfa747a666caff49843e38c86cac7323f784a17df6beaa49c3f4a98fb4013f4e573e2ef77b0965d4bfbdf7d5eada69406ca93f422495e00addfca1518085a40f10284ff59388ecf476a12ef1a540163922098d600519ae8cf3ef544344e9d968f341af618503b455f3976b76975270e94d714302382c63de5b7c1fad1fa373b369916cb3b4d583a9ebbaeb262884d25a0e1d9fb141de60df7e64cb38b6f7167991f8fba06bffe2d49133bbb462cd8a9493177eee5f03875b15c7a92c3cd6a3fdfc64f236e14fa05a0e8d3c45f13eecd22e13528c74186dc50e0e2af44177e26bded1161e5533375508dadb83db5126cc810f4e30d4e24ec12c3b99e5220aacf42c58f2960bd43c337dbd318aeeb5c9a6cd5ffd3bf1497bb48ab7bcb32c9c33c9f5b9bc4645b96f23f9e0d826b780030444ffb925f55df587ef5ca5ea74ccd66afc7981da496d6f037efbb0b08f3f5078c60ffb4db18d1b59996bd9b1513442785bf4ece8587b39d8176dc9c735d5ea25133b2053bba227b81faab7220326f8814a9df4eba4ecc6acdd82f70b653b56a18cc9dfa4deb0a112c797ab89a51a103c3a9085d828523370c4d79d9484f4dc910735a2c9b5b85197cd9c073df7a54b40df8e1bf595bab957900c2a1a7dc40e88ed0c55c362ffbb7f88a0725a6ae73b936a639e951faf9c45ae74a2ece2f6f88e425ee41d2c60cb083a2fd6d07381908a7f629e32f89a553cf0794f54b8bdc7bd541d88464a4f80ac0b8b625a803a55de4b05a95fc7f8fc3d6d79858ccb269b7b8b21657654164a9aa29f4e8462377e9d234a41ea69841a4aaa1e5f89f9b074f6f71cb1ffaa450c3160b0e319ec81ad30101db66218b0c69f97c234465dc45849fcfd62d396f2b50ddcc0ed7dd8651431534232ab6d1186d7760770a1fc6c77553a79d0297194f794997ee47781094a76d9dccf632dcbb527b3e68950d9bb534245c7f08ae1d6ef2750292ae28e5e6dcfe2a69737dd7a1e453f3902ae90789e98c212905422099904d3bfb949bde187682a59c01aa8e6a9972a63d6aaef4d4139b10a24e063707f1aba79bd59e3f9709a873dff401d1f356c4be5e449ae0e2633a1fe50ed367fe56b0499957c3b6cabb42256547995ea998f3937d153897d1c83f1ad922d6835bdfa3b986dc6f4bd927a4ca13fbaa99b7b43758e2329d588f40fac718b16cca855468643f3818496b4915fe9a2bdd3e68889fea24bc1dfa6287a801d49a7bb84654147448550d2919e4df3a943a88cf616befea4e7a4fddb7969311c6837f9529966241be1e57ed2d773debc542986d09866905a3f63b6e1820086d52a70f039154e839da7ea852c33bf3722a048f61bbf068519e050b8788370fb130a42e9f5322dfff65b15d588f9e926b70e4530e8b66697cabb1e8514831431fa0eaecb49f9613ed5fd7bc50f897bda36d24d4296e143e2480e325ec09a77c03a07b4f86eb703085313ebeee94ef5b1cde3f6a7efd785772eb4034039f598c07819b769416a223fab824c4ac50086e78042a1ccf47b6c7ede8540cded4bd4c920ce6c2b7493a5634c5e96bb761373623ab473b121d555bfd5a8bc3f5c5418bed83ffd0d6492840550fccc0c35746370396d0190b7b1d2cadcc150877e0d197f692f97cec790c95e3d3959dc7c68aca37306c1bc13ad33848395dba5e3c9ce8090bc0e7e8312091773641be56411921e3d473321c6d8bd10b7d3f5aedd6620bcaa06474bbb298bc77297b8b5dcb9e6b33dbe676460cca825609857724cee245306d07fda287d5fe57c424c27cf9b6cf0f16d2c6a8071bd57c826d7371841cf43dab1b42421ce416d0d3a9c80bc807d2e6761e53f06b3e63c0af1b4548d820118421205f040f4ab35307871e4c7a21ff28082c29e02e89486064661898c0eb1811c70a6124c1f25d62c38794a3e87c312c870db7b60d0df8b57860c94d1a9c561b327fae3a68ce9ff4551e418eb00766f0341c5e796e3cbbbe6b4864928b966110256d5475eb1fd7b2893b60e19e859baaf23c9233a1b064771671ee2d07c151e2e99c37a116a338788052a726a8519b8335e9ff4f71d00ab634543c20ddea1bf57d4f2b797182ff19618b6974d2b69d9f052934d527a1830bf2785842f35eaf32b65b7c9fdd6f0c41756072a59c0cce0b7305740729f1daa14e0092da9d022321b726d658fcef55affa2bbf36ad788f1f423b7dfd328435b4d5df315143d8b8028ba4bea6134a3dc9720c73d5e66b8b8168752eea6b78c75f04efd9677dbe419f13f5e1c9764276a83821b710307d8f85359b34d038ff17de45e8739d4b647fd1a8d794a3273d922af3374f5d3c75b8345b9dfdabb2c0418a358921e0e73d0fe88caab1741b913673e22ff4b59afa0f653a423d9b2bb20cbf07951a349eea18a891b4f4dc6df8e42a6181284f643de5fd2924ae54f672a1920343476c67333e1e8205bf4877b1251a83f417936714edb1c6975ba7969d2fcc2e69024a4669ac2f998116ade1bd84568b8f3f1fccbe95df9ed21db77315b7469f30bfae418415d9cb5aeea627ba6811e30d56d4f4bfe5f794ea4243e3cdfad3ef55199699b8433083b6f72f95effc5f2f613cfcefaf0b94e801ebcb7095a1474ee93142b82c9bf9886617b6bf69d08c83c76cd21d4cce5872d99de8e54bbff915ab923b2d24bb3aa178dd50b44fd0eb880ef33ca51d4bf5f0fbc8ffe18afe4245397f277e4efad955baa10cf56613481253d69c02e7661714b68be0fd64f29bdafbc8b4a0b30bd6709c67fe8e8915d0479b3902b1d0169fb5486b02e966ad5d8a2bcf42ecba59177cd85e17239667f6b045d1f873ce24733ae17e2d8432709062e786a32ac925121f1b0d46c66d4fb9088f4aa0cfe2149f6c2cb5b75d45349bc88fbd47e01ea07e7cd573335aab8d389846566800dd084bc3caa95f7632719c651f2d33be0fb56347c063b3c6e3e75c5e58caeb4c37574859b78c1ed018fbeed788a4305a9ee1c1ef65a0c83a7cd717a8c08ecd4e86370ffffd6d40a89a0b1e8c15a10ad5406e867e49319ad83bfbb925d5e240b4bd44fd751e7510d5ea03a6cab95f37155d1fd69aaea1db4a1f53714eb90e669209cf634f84a50c85bdc51838ebbb545b4387790df67f0122740c2abc910cf83230394172a56c9ffda6675bb8bb39846730a1bf764aeb92407c90a194da880cb8a4efb5b57a8311d864209c7fd226b93582b6b11eec559abfbba653c0569c219d3a2e60555cb739f9d32d564f23c4e98be78aa553610822af426f961df0df2185c61ccaa22b2a6aa6fb3e917bdfb2be9c3ffb8a50821321119c4cf4917db39548abc17bfba267fa50f6af15c560a21055f967f1ca6f656ddb556f9c7e17a771eeef7e80940d1c14ddf2c27647686fd0526460036aeea395fb10abef2be2ea96c9bb380370c08d1568d30eea0f3e6b7cf8f7edc7b36d4d0affd249330707b54ee620f208d885791171eb67a25a80fcc6922e0258c9673b6576564949dfa5bed9a0299bf952aade654de16e22d54fcd391ded6adab94ff621efcd91ef69acf8dfa1b22692ba3e49cd1d3fbed6db1402065ab37e457056877977ebac33ef566f28a19b9acb67a9cc53feb156814e880b3dd5a9119ffdbc5a45c20ea375f2882575b9a28740eebf63f2895d9ffac1ec33cbdcdede98a201424d000df1efd64dd7268cc1b2366ccfb09754822dafdb1821de5e6ebee09608e82e679fafb7a5100172f26998d31d7f27c2b310f0372c3b5e888f8e6efb56074177bf6a2a5bbd9ed070ad5aaf23ce144d1ac86cad110e5916a8a57e1e7fc3d37353f84f2f6d43d92ab8b35040467f3f8b1d23fac021bbac3710edc8e2e26d794db38e48020f63e94d4b4dca3e015537a8e3008274d55f81af931a0faf1a438444b6a0489b93f7b88f81f761eae0f82e60cb0cf2745ca8c9e30d3cc189c1405b1994ed71b00d90ea7a94102916cdc915620c363d04e51eabaaca6c2814a7c1e7aaeec80bdc13135b813e6d0eea83446a5c57ec29695c302c0d8da65b61fe8ada51a36e1aff34d449f9eb70cb94931226121ab121a971c2fc070ca84272d122c1696f52fbd5ed06783abe188dcf133c4d41e10295f6ffda69fa8c5a7c0fec3425a2d60523a60d280b5ce34eac5911268172e772fefba63a6f5c6dafa9e500a5e1355fb614613f8fc1ef5e5466fa19212bcdc349a865f4cee6ea80b11a410bb6e4ad677393973e38621d25ff6c4876ef8a8d2ba651be4a78d2ba9fafadcea8eff9cca3f4ab71a0b84917794e521220dad099ac8aaf32abd162348879e4299e4d46395f9d55267b635e18ca2e2fc96146b96c8a8055130b8d8cb10cc31382df34057bd8637f86e48adc854af408226752a04df8d0362db263e0959f2bd7e8a4d33a8c4b257e19d308280baf40cced1b3cd3a86ee22df0da49d750539eee1104e99a9f8a065e5499c73125a8a8430eda7aee156821a97c237611b50f682a2cccd0969304f0a50ae98800dfb32ee1bcfeab98182c34a51e67fa5bd738c22c44fc1269ce73f464edd2f31296e92e62df51cf55798ae2e3c33c57b09f4ecd13469122095a3563f95f0a04cf58dcea4aed5e8bdda7617863cbc37a97ebadb46d679f7e30014d96d0ac7ce9484368fa5fd19cbc3d139410a2bd7ffacef1bdf76dd1d5f34d2392fcb91c7585fc1ae7d8ba2aa8ded9645d5a5e76e2279b6e0692101137da946dfbd3836476f5dad7fed70115d716dce87b5ad755e5653a709f5aa42265ec9657ed406cc9256af3628c0116b8e1d23306983e9adbc19dec354870c98e2e76566895df933a80c4c36b617db4bbda1a4ca7d6c80a43734471fc92d0bdeacfc125dddd73febd8f7ef84f221d52ae71372cee802d59013a15958e850f8fdf46d8fd3b874633daf3b1f346470456c05722258480959dd6afcffa1f3f2ca033011339c5cb85b7d1c9b5916fb8dc9c2783df64eb5cca5af83a74fe5bb259f93722842eb4ac851e71f3cfd67a39590e7f8e20f018744b9277e6eb46b5f211df5f767ef29dc9a972e14c40ea2d4624f187f301c1116d3a61adeb5c6f7ccc021ac5e18d8b40d7f1f19daf4445c06e72db8701c267c0144c92cddd49af7a87aca5aa05d0e380dd27cc780d2f7db3bef26cc4fd358543e19d73179b879f7bdc702ab405270c93a3ed64153e20b5b663773a2ad4e8e3e1e8eaf39ec80d75d02f74ff94f0e095240a564eeece4fc9bcf19bf2243c700e1dae14a1b0217013977bfa05f681abc37714fe462d0a632044ce52fdaa1c1a806b1eb4370e23ca0247e536165aa9f1c2af8adfea369ee1f4a2c7823a7baef028a1e77501db48db6aa0d7e30969f7197368db02d443803b53b2899315f7e2ba9c5ae952a3866b4ea60f3d669e0a91f7ef640cd938646bf8822fe455f0302fccf87c7fad6daf38fde038fa596b83a9fd5bf675669a6cb2bab44c6617f07950bf34edb93bbcb4174630f275dbda7a0631c4b456e5f80eb6258c1874e77d426743e478917fe44b73dc203baa2cc442b84b5818409abae99d97a28754969bd393df", 0x1000}}, 0xfffffe38)

0s ago: executing program 2 (id=1324):
r0 = userfaultfd(0x80801) (async)
r1 = syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000480)={0x0, &(0x7f0000000500)=[@nested_amd_stgi={0x17e, 0x10}, @out_dx={0x6a, 0x28, {0x33e0, 0x1, 0x36}}, @wr_drn={0x68, 0x20, {0x1, 0x6}}, @nested_amd_set_intercept={0x181, 0x30, {0x3, 0x1, 0x2}}, @wrmsr={0x65, 0x20, {0xa1f, 0x4}}, @nested_amd_inject_event={0x180, 0x38, {0x1, 0xe8, 0x5, 0x5, 0x3}}, @cpuid={0x64, 0x18, {0xbf, 0x80000000}}, @wr_drn={0x68, 0x20, {0x6, 0x6}}, @nested_amd_vmload={0x182, 0x18, 0x1}, @in_dx={0x69, 0x20, {0x4fa7, 0x6}}, @nested_amd_invlpga={0x17d, 0x20, {0x26000, 0x5473}}, @nested_amd_inject_event={0x180, 0x38, {0x0, 0xd8, 0x3, 0x2000000000000, 0x3}}, @nested_amd_vmcb_write_mask={0x17c, 0x38, {0x1, @control_area=0x51, 0x6, 0x7ae, 0x8}}, @code={0xa, 0x64, {"3e3e67450f20c5b986020000b83bc30000ba000000000f30b9b60800000f32640f01c4f3410f1ef5420f08660f122a0f20d835200000000f22d86766400f3a1547f49b66baf80cb8284df986ef66bafc0c66ed"}}], 0x244})
ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f00000004c0)=0x3000) (async)
mkdir(&(0x7f0000000080)='./file1\x00', 0xb)
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x12, &(0x7f0000000200)={'trans=virtio,', {[{@noextend}]}}) (async)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_WAKE(r0, 0x8010aa02, &(0x7f0000000840)={&(0x7f0000ffa000/0x3000)=nil, 0x3000})

kernel console output (not intermixed with test programs):

24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  287.090231][ T9355] RSP: 002b:00007fc7c55f1028 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  287.090249][ T9355] RAX: ffffffffffffffda RBX: 00007fc7c4a15fa0 RCX: 00007fc7c479c819
[  287.090261][ T9355] RDX: 0000000000007721 RSI: 0000000000002219 RDI: 0000000000000000
[  287.090271][ T9355] RBP: 00007fc7c55f1090 R08: 0000000000000000 R09: 0000000000000000
[  287.090281][ T9355] R10: 0000000000000016 R11: 0000000000000246 R12: 0000000000000001
[  287.090291][ T9355] R13: 00007fc7c4a16038 R14: 00007fc7c4a15fa0 R15: 00007fff134787b8
[  287.090313][ T9355]  </TASK>
[  287.163486][ T9356] FAT-fs (nullb0): bogus number of reserved sectors
[  287.326950][ T9356] FAT-fs (nullb0): Can't find a valid FAT filesystem
[  287.825865][ T9364] XFS (loop2): SB validate failed with error -5.
[  288.986502][   T40] kauditd_printk_skb: 11 callbacks suppressed
[  288.986520][   T40] audit: type=1400 audit(1776657159.338:602): avc:  denied  { append } for  pid=9387 comm="syz.2.1122" name="comedi3" dev="devtmpfs" ino=1305 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  289.032637][   T40] audit: type=1400 audit(1776657159.378:603): avc:  denied  { name_bind } for  pid=9389 comm="syz.0.1123" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  289.130867][   T40] audit: type=1400 audit(1776657159.478:604): avc:  denied  { ioctl } for  pid=9389 comm="syz.0.1123" path="socket:[29580]" dev="sockfs" ino=29580 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  289.145144][ T9393] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1123'.
[  289.151079][ T9388] IPVS: wrr: FWM 3 0x00000003 - no destination available
[  289.560970][   T40] audit: type=1400 audit(1776657159.908:605): avc:  denied  { write } for  pid=9398 comm="syz.0.1125" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  289.589664][   T40] audit: type=1400 audit(1776657159.908:606): avc:  denied  { open } for  pid=9398 comm="syz.0.1125" path="/dev/sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  289.649877][ T9400] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(15)
[  289.654084][ T9400] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  289.691430][ T9400] vhci_hcd vhci_hcd.0: Device attached
[  289.713723][ T9399] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1125'.
[  289.741694][ T9401] vhci_hcd: connection closed
[  289.756667][ T1167] vhci_hcd vhci_hcd.0: stop threads
[  289.801950][ T1167] vhci_hcd vhci_hcd.0: release socket
[  289.845883][ T1167] vhci_hcd vhci_hcd.0: disconnect device
[  289.895627][ T6009] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  290.586257][ T9406] xt_ecn: cannot match TCP bits for non-tcp packets
[  291.128724][ T9361] Set syz1 is full, maxelem 65536 reached
[  291.488595][ T9413] FAULT_INJECTION: forcing a failure.
[  291.488595][ T9413] name failslab, interval 1, probability 0, space 0, times 0
[  291.500676][ T9413] CPU: 3 UID: 0 PID: 9413 Comm: syz.0.1130 Not tainted syzkaller #0 PREEMPT(full) 
[  291.500705][ T9413] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  291.500716][ T9413] Call Trace:
[  291.500723][ T9413]  <TASK>
[  291.500730][ T9413]  dump_stack_lvl+0x100/0x190
[  291.500761][ T9413]  should_fail_ex.cold+0x5/0xa
[  291.500785][ T9413]  ? io_cache_alloc_new+0x45/0xe0
[  291.500812][ T9413]  should_failslab+0xc2/0x120
[  291.500943][ T9413]  __kmalloc_noprof+0xe0/0x850
[  291.501073][ T9413]  io_cache_alloc_new+0x45/0xe0
[  291.501098][ T9413]  io_arm_apoll+0x8b9/0xa60
[  291.501122][ T9413]  ? __pfx_io_arm_apoll+0x10/0x10
[  291.501149][ T9413]  ? __io_issue_sqe+0x14a/0x7a0
[  291.501182][ T9413]  io_arm_poll_handler+0x21f/0x2b0
[  291.501206][ T9413]  io_queue_async+0x159/0x290
[  291.501225][ T9413]  io_submit_sqes+0x1823/0x24b0
[  291.501259][ T9413]  __do_sys_io_uring_enter+0xa88/0x1b50
[  291.501287][ T9413]  ? __fget_files+0x21f/0x3d0
[  291.501309][ T9413]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  291.501333][ T9413]  ? fput+0x79/0x100
[  291.501355][ T9413]  ? ksys_write+0x1ac/0x250
[  291.501373][ T9413]  ? __pfx_ksys_write+0x10/0x10
[  291.501393][ T9413]  ? rcu_is_watching+0x12/0xc0
[  291.501423][ T9413]  do_syscall_64+0x10b/0xf80
[  291.501440][ T9413]  ? clear_bhb_loop+0x40/0x90
[  291.501460][ T9413]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.501478][ T9413] RIP: 0033:0x7fce5eb9c819
[  291.501495][ T9413] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  291.501513][ T9413] RSP: 002b:00007fce5f9a7028 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  291.501532][ T9413] RAX: ffffffffffffffda RBX: 00007fce5ee15fa0 RCX: 00007fce5eb9c819
[  291.501544][ T9413] RDX: 0000000000007721 RSI: 0000000000002219 RDI: 0000000000000000
[  291.501554][ T9413] RBP: 00007fce5f9a7090 R08: 0000000000000000 R09: 0000000000000000
[  291.501564][ T9413] R10: 0000000000000016 R11: 0000000000000246 R12: 0000000000000001
[  291.501573][ T9413] R13: 00007fce5ee16038 R14: 00007fce5ee15fa0 R15: 00007ffd19e12c08
[  291.501597][ T9413]  </TASK>
[  291.895602][   T40] audit: type=1400 audit(1776657162.238:607): avc:  denied  { create } for  pid=9422 comm="syz.3.1134" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  291.919086][   T40] audit: type=1400 audit(1776657162.238:608): avc:  denied  { setopt } for  pid=9422 comm="syz.3.1134" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  292.174720][   T50] usb 8-1: new high-speed USB device number 69 using dummy_hcd
[  292.240212][   T40] audit: type=1400 audit(1776657162.598:609): avc:  denied  { create } for  pid=9431 comm="syz.0.1138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  292.320513][   T40] audit: type=1400 audit(1776657162.668:610): avc:  denied  { ioctl } for  pid=9431 comm="syz.0.1138" path="socket:[31285]" dev="sockfs" ino=31285 ioctlcmd=0x8b36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  292.354849][ T9331] usbtmc 6-1:16.0: usb_control_msg returned -110
[  292.416690][   T50] usb 8-1: Using ep0 maxpacket: 8
[  292.446443][  T844] usb 6-1: USB disconnect, device number 51
[  292.456191][   T50] usb 8-1: config 0 has an invalid interface number: 186 but max is 0
[  292.519039][   T50] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  292.533358][   T50] usb 8-1: config 0 has no interface number 0
[  292.539655][   T50] usb 8-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  292.557134][   T50] usb 8-1: config 0 interface 186 altsetting 0 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  292.569215][ T9438] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  292.583385][   T50] usb 8-1: config 0 interface 186 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  292.583415][   T50] usb 8-1: config 0 interface 186 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  292.592066][   T50] usb 8-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  292.592092][   T50] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  292.592111][   T50] usb 8-1: Product: syz
[  292.599424][ T9438] syzkaller0: entered promiscuous mode
[  292.604851][   T50] usb 8-1: Manufacturer: syz
[  292.621750][ T9438] syzkaller0: entered allmulticast mode
[  292.664017][   T40] audit: type=1400 audit(1776657162.988:611): avc:  denied  { relabelfrom } for  pid=9439 comm="syz.1.1141" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  292.711704][   T50] usb 8-1: SerialNumber: syz
[  292.748089][   T50] usb 8-1: config 0 descriptor??
[  292.775163][   T50] iowarrior 8-1:0.186: no interrupt-in endpoint found
[  292.807196][ T9447] tipc: Resetting bearer <eth:syzkaller0>
[  293.025506][ T9437] tipc: Resetting bearer <eth:syzkaller0>
[  293.059954][ T9437] tipc: Disabling bearer <eth:syzkaller0>
[  293.278117][ T9452] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  293.295183][ T9452] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  293.322158][ T9452] vhci_hcd vhci_hcd.0: Device attached
[  293.505170][ T9459] SELinux:  Context system_u:object_r:etc_aliases_t:s0 is not valid (left unmapped).
[  293.573784][ T6018] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[  293.595517][   T50] usb 6-1: new high-speed USB device number 52 using dummy_hcd
[  293.739002][ T9467] exFAT-fs (nullb0): invalid boot record signature
[  293.749352][ T9467] exFAT-fs (nullb0): failed to read boot sector
[  293.757005][ T9467] exFAT-fs (nullb0): failed to recognize exfat type
[  293.759217][   T50] usb 6-1: device descriptor read/64, error -71
[  293.825821][ T9467] overlayfs: fs on './cgroup' does not support file handles, falling back to index=off,nfs_export=off.
[  294.014557][   T50] usb 6-1: new high-speed USB device number 53 using dummy_hcd
[  294.160573][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  294.160597][   T40] audit: type=1400 audit(1776657164.508:622): avc:  denied  { rmdir } for  pid=5950 comm="syz-executor" name="file0" dev="tmpfs" ino=1524 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:etc_aliases_t:s0"
[  294.225400][   T50] usb 6-1: device descriptor read/64, error -71
[  294.296786][ T9477] FAULT_INJECTION: forcing a failure.
[  294.296786][ T9477] name failslab, interval 1, probability 0, space 0, times 0
[  294.340517][ T9477] CPU: 2 UID: 0 PID: 9477 Comm: syz.2.1148 Not tainted syzkaller #0 PREEMPT(full) 
[  294.340544][ T9477] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  294.340553][ T9477] Call Trace:
[  294.340559][ T9477]  <TASK>
[  294.340565][ T9477]  dump_stack_lvl+0x100/0x190
[  294.340599][ T9477]  should_fail_ex.cold+0x5/0xa
[  294.340628][ T9477]  ? tomoyo_realpath_from_path+0xb6/0x690
[  294.340893][ T9477]  should_failslab+0xc2/0x120
[  294.340910][ T9477]  __kmalloc_noprof+0xe0/0x850
[  294.340932][ T9477]  ? kfree+0x1dd/0x6c0
[  294.340953][ T9477]  tomoyo_realpath_from_path+0xb6/0x690
[  294.340974][ T9477]  tomoyo_path_number_perm+0x23c/0x580
[  294.340997][ T9477]  ? tomoyo_path_number_perm+0x22e/0x580
[  294.341021][ T9477]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  294.341063][ T9477]  ? find_held_lock+0x2b/0x80
[  294.341209][ T9477]  ? __fget_files+0x215/0x3d0
[  294.341226][ T9477]  ? hook_file_ioctl_common+0x149/0x410
[  294.341244][ T9477]  ? __fget_files+0x215/0x3d0
[  294.341265][ T9477]  ? __fget_files+0x21f/0x3d0
[  294.341285][ T9477]  security_file_ioctl+0xd3/0x230
[  294.341301][ T9477]  __x64_sys_ioctl+0xb7/0x210
[  294.341318][ T9477]  do_syscall_64+0x10b/0xf80
[  294.341333][ T9477]  ? clear_bhb_loop+0x40/0x90
[  294.341352][ T9477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.341367][ T9477] RIP: 0033:0x7f5433b9c4ab
[  294.341381][ T9477] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  294.341396][ T9477] RSP: 002b:00007f5434a63f00 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  294.341412][ T9477] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5433b9c4ab
[  294.341422][ T9477] RDX: 00007f5434a63fc0 RSI: 000000004020ae46 RDI: 0000000000000005
[  294.341431][ T9477] RBP: 00007f5433c51c60 R08: 0000000000000000 R09: 0000000000000005
[  294.341440][ T9477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000bfe000
[  294.341450][ T9477] R13: 0000000000000000 R14: 0000000000000000 R15: 00000000003fa000
[  294.341469][ T9477]  </TASK>
[  294.341613][ T9477] ERROR: Out of memory at tomoyo_realpath_from_path.
[  294.386693][   T50] usb usb6-port1: attempt power cycle
[  294.539702][   T24] usb 5-1: new low-speed USB device number 56 using dummy_hcd
[  294.770363][   T24] usb 5-1: device descriptor read/64, error -71
[  294.905334][   T50] usb 6-1: new high-speed USB device number 54 using dummy_hcd
[  294.936647][   T50] usb 6-1: device descriptor read/8, error -71
[  295.007817][ T6019] usb 8-1: USB disconnect, device number 69
[  295.019595][   T24] usb 5-1: new low-speed USB device number 57 using dummy_hcd
[  295.146227][ T9487] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  295.154576][   T24] usb 5-1: device descriptor read/64, error -71
[  295.174864][ T9487] syzkaller0: entered promiscuous mode
[  295.199276][ T9489] fuse: Unknown parameter '0x0000000000000003'
[  295.239124][   T50] usb 6-1: new high-speed USB device number 55 using dummy_hcd
[  295.242207][ T9487] syzkaller0: entered allmulticast mode
[  295.269785][   T50] usb 6-1: device descriptor read/8, error -71
[  295.296378][   T24] usb usb5-port1: attempt power cycle
[  295.359548][ T9487] tipc: Resetting bearer <eth:syzkaller0>
[  295.370574][ T9486] tipc: Resetting bearer <eth:syzkaller0>
[  295.394932][   T50] usb usb6-port1: unable to enumerate USB device
[  295.416585][ T9486] tipc: Disabling bearer <eth:syzkaller0>
[  295.622117][   T40] audit: type=1400 audit(1776657165.978:623): avc:  denied  { create } for  pid=9495 comm="syz.2.1154" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  295.654754][   T24] usb 5-1: new low-speed USB device number 58 using dummy_hcd
[  295.709444][   T40] audit: type=1400 audit(1776657166.018:624): avc:  denied  { setopt } for  pid=9495 comm="syz.2.1154" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  295.726223][   T24] usb 5-1: device descriptor read/8, error -71
[  295.789411][   T40] audit: type=1400 audit(1776657166.138:625): avc:  denied  { bind } for  pid=9495 comm="syz.2.1154" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  295.819151][   T40] audit: type=1400 audit(1776657166.158:626): avc:  denied  { write } for  pid=9495 comm="syz.2.1154" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  296.044430][   T24] usb 5-1: new low-speed USB device number 59 using dummy_hcd
[  296.140119][   T24] usb 5-1: device descriptor read/8, error -71
[  296.243823][ T9455] vhci_hcd: connection reset by peer
[  296.260127][  T220] vhci_hcd vhci_hcd.1: stop threads
[  296.260427][   T24] usb usb5-port1: unable to enumerate USB device
[  296.262507][  T220] vhci_hcd vhci_hcd.1: release socket
[  296.266236][  T220] vhci_hcd vhci_hcd.1: disconnect device
[  296.350039][ T9510] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1158'.
[  296.356934][   T40] audit: type=1400 audit(1776657166.688:627): avc:  denied  { read } for  pid=9509 comm="syz.1.1158" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  296.356985][   T40] audit: type=1400 audit(1776657166.688:628): avc:  denied  { open } for  pid=9509 comm="syz.1.1158" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  296.357016][   T40] audit: type=1400 audit(1776657166.688:629): avc:  denied  { ioctl } for  pid=9509 comm="syz.1.1158" path="/dev/binderfs/binder0" dev="binder" ino=7 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  296.357045][   T40] audit: type=1400 audit(1776657166.688:630): avc:  denied  { set_context_mgr } for  pid=9509 comm="syz.1.1158" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  296.438311][   T40] audit: type=1400 audit(1776657166.788:631): avc:  denied  { map } for  pid=9509 comm="syz.1.1158" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  296.480931][ T9514] binder: BINDER_SET_CONTEXT_MGR already set
[  296.546947][ T9514] binder: 9509:9514 ioctl 4018620d 200000004a80 returned -16
[  296.568700][ T9511] binder_alloc: 9509: binder_alloc_buf, no vma
[  296.639692][ T9519] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  296.819679][   T50] usb 7-1: new high-speed USB device number 50 using dummy_hcd
[  296.989607][   T50] usb 7-1: Using ep0 maxpacket: 8
[  296.994440][   T50] usb 7-1: config 0 has an invalid interface number: 186 but max is 0
[  296.998657][   T50] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  297.006379][   T50] usb 7-1: config 0 has no interface number 0
[  297.008881][   T50] usb 7-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  297.032840][   T50] usb 7-1: config 0 interface 186 altsetting 0 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  297.039013][   T50] usb 7-1: config 0 interface 186 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  297.044013][   T50] usb 7-1: config 0 interface 186 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  297.070637][   T50] usb 7-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  297.075747][   T50] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  297.079789][   T50] usb 7-1: Product: syz
[  297.097076][   T50] usb 7-1: Manufacturer: syz
[  297.108474][   T50] usb 7-1: SerialNumber: syz
[  297.122858][   T50] usb 7-1: config 0 descriptor??
[  297.144448][   T24] usb 6-1: new high-speed USB device number 56 using dummy_hcd
[  297.156237][ T6019] usb 8-1: new low-speed USB device number 70 using dummy_hcd
[  297.165652][   T50] iowarrior 7-1:0.186: no interrupt-in endpoint found
[  297.294732][   T24] usb 6-1: device descriptor read/64, error -71
[  297.306697][ T6019] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  297.310855][ T6019] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[  297.316379][ T6019] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  297.331963][ T6019] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  297.336029][ T6019] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  297.341821][ T9527] fuse: Unknown parameter '0x0000000000000003'
[  297.360515][ T6019] hub 8-1:1.0: bad descriptor, ignoring hub
[  297.360542][ T6019] hub 8-1:1.0: probe with driver hub failed with error -5
[  297.365245][ T6019] cdc_wdm 8-1:1.0: skipping garbage
[  297.390975][ T6019] cdc_wdm 8-1:1.0: skipping garbage
[  297.394032][ T6019] cdc_wdm 8-1:1.0: skipping garbage
[  297.412781][ T6019] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22
[  297.544519][   T24] usb 6-1: new high-speed USB device number 57 using dummy_hcd
[  297.695414][   T24] usb 6-1: device descriptor read/64, error -71
[  297.856034][   T24] usb usb6-port1: attempt power cycle
[  297.876216][  T844] usb 8-1: USB disconnect, device number 70
[  298.248050][   T24] usb 6-1: new high-speed USB device number 58 using dummy_hcd
[  298.285524][   T24] usb 6-1: device descriptor read/8, error -71
[  298.554565][   T24] usb 6-1: new high-speed USB device number 59 using dummy_hcd
[  298.585062][   T24] usb 6-1: device descriptor read/8, error -71
[  298.654487][ T6018] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  298.707689][   T24] usb usb6-port1: unable to enumerate USB device
[  299.085334][   T24] usb 5-1: new high-speed USB device number 60 using dummy_hcd
[  299.272963][   T24] usb 5-1: Using ep0 maxpacket: 16
[  299.282332][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  299.312888][   T24] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  299.323967][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  299.350896][   T24] usb 5-1: Product: syz
[  299.355333][   T24] usb 5-1: Manufacturer: syz
[  299.357370][   T24] usb 5-1: SerialNumber: syz
[  299.383250][   T24] usb 5-1: config 0 descriptor??
[  299.398745][   T24] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  299.422666][   T24] em28xx 5-1:0.0: DVB interface 0 found: bulk
[  299.485404][ T5951] usb 8-1: new high-speed USB device number 71 using dummy_hcd
[  299.592421][ T6018] usb 7-1: USB disconnect, device number 50
[  299.644565][ T5951] usb 8-1: Using ep0 maxpacket: 8
[  299.648541][ T5951] usb 8-1: config 0 has an invalid interface number: 186 but max is 0
[  299.654229][ T5951] usb 8-1: config 0 has no interface number 0
[  299.668526][ T5951] usb 8-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  299.687699][ T5951] usb 8-1: config 0 interface 186 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  299.692000][ T5951] usb 8-1: config 0 interface 186 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A
[  299.708057][ T5951] usb 8-1: config 0 interface 186 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  299.730447][ T5951] usb 8-1: config 0 interface 186 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  299.738267][ T5951] usb 8-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  299.775157][ T5951] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  299.778656][ T5951] usb 8-1: Product: syz
[  299.780503][ T5951] usb 8-1: Manufacturer: syz
[  299.782318][ T5951] usb 8-1: SerialNumber: syz
[  299.786931][ T5951] usb 8-1: config 0 descriptor??
[  299.952417][ T9551] fuse: Unknown parameter '0x0000000000000003'
[  300.009862][ T5951] iowarrior 8-1:0.186: IOWarrior product=0x1505, serial=42424242 interface=186 now attached to iowarrior0
[  300.026065][ T6018] usb 7-1: new low-speed USB device number 51 using dummy_hcd
[  300.044298][   T24] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[  300.204558][ T6018] usb 7-1: device descriptor read/64, error -71
[  300.226722][ T6009] usb 8-1: USB disconnect, device number 71
[  300.477142][ T6018] usb 7-1: new low-speed USB device number 52 using dummy_hcd
[  300.494360][   T24] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  300.501807][   T24] em28xx 5-1:0.0: board has no eeprom
[  300.615016][ T6018] usb 7-1: device descriptor read/64, error -71
[  300.745420][ T6018] usb usb7-port1: attempt power cycle
[  300.827353][   T24] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  300.832831][   T24] em28xx 5-1:0.0: dvb set to bulk mode.
[  300.865130][ T6009] em28xx 5-1:0.0: Binding DVB extension
[  300.900573][   T24] usb 5-1: USB disconnect, device number 60
[  300.938156][   T24] em28xx 5-1:0.0: Disconnecting em28xx
[  300.948395][ T6009] em28xx 5-1:0.0: Registering input extension
[  300.982693][   T24] em28xx 5-1:0.0: Closing input extension
[  301.140994][ T6018] usb 7-1: new low-speed USB device number 53 using dummy_hcd
[  301.172681][   T24] em28xx 5-1:0.0: Freeing device
[  301.184556][  T844] usb 8-1: new low-speed USB device number 72 using dummy_hcd
[  301.189858][ T6018] usb 7-1: device descriptor read/8, error -71
[  301.336938][  T844] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  301.341375][  T844] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[  301.348070][  T844] usb 8-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0x76, changing to 0x6
[  301.354238][  T844] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 26984, setting to 8
[  301.382917][  T844] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  301.394574][  T844] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  301.423999][   T40] kauditd_printk_skb: 7 callbacks suppressed
[  301.424018][   T40] audit: type=1400 audit(1776657171.778:639): avc:  denied  { create } for  pid=9562 comm="syz.0.1177" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  301.448670][ T6018] usb 7-1: new low-speed USB device number 54 using dummy_hcd
[  301.493662][   T40] audit: type=1400 audit(1776657171.818:640): avc:  denied  { setopt } for  pid=9562 comm="syz.0.1177" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  301.497195][ T9559] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  301.517909][ T6018] usb 7-1: device descriptor read/8, error -71
[  301.560608][  T844] hub 8-1:1.0: bad descriptor, ignoring hub
[  301.567504][  T844] hub 8-1:1.0: probe with driver hub failed with error -5
[  301.657503][ T9568] loop6: detected capacity change from 0 to 2640
[  301.658240][ T9568] buffer_io_error: 6 callbacks suppressed
[  301.658255][ T9568] Buffer I/O error on dev loop6, logical block 0, async page read
[  301.658418][ T9568] Buffer I/O error on dev loop6, logical block 0, async page read
[  301.658497][ T9568] Buffer I/O error on dev loop6, logical block 0, async page read
[  301.658575][ T9568] Buffer I/O error on dev loop6, logical block 0, async page read
[  301.658651][ T9568] Buffer I/O error on dev loop6, logical block 0, async page read
[  301.658776][ T9568] Buffer I/O error on dev loop6, logical block 0, async page read
[  301.658868][ T9568] Buffer I/O error on dev loop6, logical block 0, async page read
[  301.659049][ T9568] Buffer I/O error on dev loop6, logical block 0, async page read
[  301.659108][ T9568] ldm_validate_partition_table(): Disk read failed.
[  301.659145][ T9568] Buffer I/O error on dev loop6, logical block 0, async page read
[  301.659280][ T9568] Buffer I/O error on dev loop6, logical block 0, async page read
[  301.660421][ T9568] Dev loop6: unable to read RDB block 0
[  301.662433][ T6018] usb usb7-port1: unable to enumerate USB device
[  301.695951][  T844] cdc_wdm 8-1:1.0: skipping garbage
[  301.706424][ T9568]  loop6: unable to read partition table
[  301.721195][ T9568] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  301.745401][  T844] cdc_wdm 8-1:1.0: skipping garbage
[  301.745487][  T844] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22
[  302.090865][  T844] usb 8-1: USB disconnect, device number 72
[  302.304977][   T50] usb 5-1: new high-speed USB device number 61 using dummy_hcd
[  302.385004][   T40] audit: type=1400 audit(1776657172.738:641): avc:  denied  { mount } for  pid=9577 comm="syz.1.1183" name="/" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  302.481271][   T40] audit: type=1400 audit(1776657172.818:642): avc:  denied  { mounton } for  pid=9577 comm="syz.1.1183" path="/276/file0" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=dir permissive=1
[  302.494502][   T50] usb 5-1: Using ep0 maxpacket: 8
[  302.554578][   T50] usb 5-1: config 0 has an invalid interface number: 186 but max is 0
[  302.558090][   T50] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  302.603501][   T50] usb 5-1: config 0 has no interface number 0
[  302.610070][   T50] usb 5-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  302.665936][   T50] usb 5-1: config 0 interface 186 altsetting 0 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  302.678498][   T50] usb 5-1: config 0 interface 186 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  302.705489][   T50] usb 5-1: config 0 interface 186 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  302.734869][   T50] usb 5-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  302.736195][ T9582] fuse: Unknown parameter '0x0000000000000003'
[  302.745746][   T50] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  302.745772][   T50] usb 5-1: Product: syz
[  302.745783][   T50] usb 5-1: Manufacturer: syz
[  302.745794][   T50] usb 5-1: SerialNumber: syz
[  302.747815][   T50] usb 5-1: config 0 descriptor??
[  302.752041][   T50] iowarrior 5-1:0.186: no interrupt-in endpoint found
[  302.833670][ T9584] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1185'.
[  302.838102][ T9584] netlink: 'syz.2.1185': attribute type 21 has an invalid length.
[  302.852478][ T9584] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1185'.
[  302.908098][ T3760] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  302.924602][ T9584] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1185'.
[  302.928235][ T3760] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  302.930934][ T9584] netlink: 'syz.2.1185': attribute type 21 has an invalid length.
[  302.930958][ T9584] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1185'.
[  302.939089][ T3760] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  302.964151][ T3760] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  303.258057][   T40] audit: type=1400 audit(1776657173.608:643): avc:  denied  { unmount } for  pid=5955 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  303.462565][ T9595] xt_bpf: check failed: parse error
[  303.619332][   T50] usb 6-1: new low-speed USB device number 60 using dummy_hcd
[  303.798652][   T50] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  303.801538][ T9599] FAULT_INJECTION: forcing a failure.
[  303.801538][ T9599] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  303.822961][   T50] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  303.853386][ T9599] CPU: 2 UID: 0 PID: 9599 Comm: syz.3.1190 Not tainted syzkaller #0 PREEMPT(full) 
[  303.853416][ T9599] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  303.853428][ T9599] Call Trace:
[  303.853435][ T9599]  <TASK>
[  303.853443][ T9599]  dump_stack_lvl+0x100/0x190
[  303.853473][ T9599]  should_fail_ex.cold+0x5/0xa
[  303.853499][ T9599]  _copy_from_iter+0x1f4/0x1690
[  303.853524][ T9599]  ? __asan_memset+0x23/0x50
[  303.853551][ T9599]  ? __pfx__copy_from_iter+0x10/0x10
[  303.853570][ T9599]  ? __pfx___alloc_skb+0x10/0x10
[  303.853600][ T9599]  netlink_sendmsg+0x808/0xda0
[  303.853831][ T9599]  ? __pfx_netlink_sendmsg+0x10/0x10
[  303.853853][ T9599]  ? __might_fault+0x50/0x140
[  303.853959][ T9599]  ____sys_sendmsg+0x9e1/0xb70
[  303.853982][ T9599]  ? __pfx_netlink_sendmsg+0x10/0x10
[  303.854008][ T9599]  ? __pfx_____sys_sendmsg+0x10/0x10
[  303.854041][ T9599]  ___sys_sendmsg+0x190/0x1e0
[  303.854066][ T9599]  ? __pfx____sys_sendmsg+0x10/0x10
[  303.854117][ T9599]  __sys_sendmsg+0x170/0x220
[  303.854137][ T9599]  ? __pfx___sys_sendmsg+0x10/0x10
[  303.854165][ T9599]  ? rcu_is_watching+0x12/0xc0
[  303.854195][ T9599]  do_syscall_64+0x10b/0xf80
[  303.854212][ T9599]  ? clear_bhb_loop+0x40/0x90
[  303.854235][ T9599]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.854277][ T9599] RIP: 0033:0x7fc7c479c819
[  303.854298][ T9599] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  303.854315][ T9599] RSP: 002b:00007fc7c55f1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  303.854334][ T9599] RAX: ffffffffffffffda RBX: 00007fc7c4a15fa0 RCX: 00007fc7c479c819
[  303.854344][ T9599] RDX: 0000000024004810 RSI: 0000200000000140 RDI: 0000000000000003
[  303.854354][ T9599] RBP: 00007fc7c55f1090 R08: 0000000000000000 R09: 0000000000000000
[  303.854365][ T9599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  303.854374][ T9599] R13: 00007fc7c4a16038 R14: 00007fc7c4a15fa0 R15: 00007fff134787b8
[  303.854399][ T9599]  </TASK>
[  303.915064][ T9603] Invalid logical block size (18)
[  303.933156][   T50] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8
[  303.933214][   T50] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  303.933233][   T50] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.937570][ T9593] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  303.944558][   T50] hub 6-1:1.0: bad descriptor, ignoring hub
[  304.077846][   T50] hub 6-1:1.0: probe with driver hub failed with error -5
[  304.081157][   T50] cdc_wdm 6-1:1.0: skipping garbage
[  304.085294][   T50] cdc_wdm 6-1:1.0: skipping garbage
[  304.103655][   T50] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  304.111301][   T50] cdc_wdm 6-1:1.0: Unknown control protocol
[  304.145289][ T9593] FAULT_INJECTION: forcing a failure.
[  304.145289][ T9593] name failslab, interval 1, probability 0, space 0, times 0
[  304.150681][ T9593] CPU: 1 UID: 0 PID: 9593 Comm: syz.1.1187 Not tainted syzkaller #0 PREEMPT(full) 
[  304.150710][ T9593] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  304.150720][ T9593] Call Trace:
[  304.150773][ T9593]  <TASK>
[  304.150784][ T9593]  dump_stack_lvl+0x100/0x190
[  304.150816][ T9593]  should_fail_ex.cold+0x5/0xa
[  304.150840][ T9593]  should_failslab+0xc2/0x120
[  304.150861][ T9593]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  304.150886][ T9593]  ? security_file_alloc+0x34/0x2c0
[  304.150931][ T9593]  ? trace_kmem_cache_alloc+0xd5/0x100
[  304.150954][ T9593]  security_file_alloc+0x34/0x2c0
[  304.150974][ T9593]  init_file+0x95/0x480
[  304.150999][ T9593]  alloc_empty_file+0x79/0x1c0
[  304.151022][ T9593]  path_openat+0xe8/0x31a0
[  304.151048][ T9593]  ? kasan_save_stack+0x3f/0x50
[  304.151071][ T9593]  ? kasan_save_stack+0x30/0x50
[  304.151094][ T9593]  ? kasan_save_track+0x14/0x30
[  304.151117][ T9593]  ? __kasan_slab_alloc+0x89/0x90
[  304.151131][ T9593]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  304.151152][ T9593]  ? do_getname+0x35/0x390
[  304.151173][ T9593]  ? do_sys_openat2+0xc5/0x1e0
[  304.151194][ T9593]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.151213][ T9593]  ? __pfx_path_openat+0x10/0x10
[  304.151241][ T9593]  do_file_open+0x20e/0x430
[  304.151262][ T9593]  ? __pfx_do_file_open+0x10/0x10
[  304.151296][ T9593]  ? alloc_fd+0x476/0x790
[  304.151319][ T9593]  ? do_getname+0x191/0x390
[  304.151342][ T9593]  do_sys_openat2+0x10d/0x1e0
[  304.151364][ T9593]  ? __pfx_do_sys_openat2+0x10/0x10
[  304.151384][ T9593]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  304.151430][ T9593]  ? __fget_files+0x21f/0x3d0
[  304.151453][ T9593]  __x64_sys_openat+0x12d/0x210
[  304.151476][ T9593]  ? __pfx___x64_sys_openat+0x10/0x10
[  304.151498][ T9593]  ? ksys_write+0x1ac/0x250
[  304.151517][ T9593]  ? rcu_is_watching+0x12/0xc0
[  304.151547][ T9593]  do_syscall_64+0x10b/0xf80
[  304.151563][ T9593]  ? clear_bhb_loop+0x40/0x90
[  304.151583][ T9593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.151601][ T9593] RIP: 0033:0x7f586735d04e
[  304.151618][ T9593] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  304.151636][ T9593] RSP: 002b:00007f58682b2b28 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  304.151654][ T9593] RAX: ffffffffffffffda RBX: 00007f58682b36c0 RCX: 00007f586735d04e
[  304.151665][ T9593] RDX: 0000000000000002 RSI: 00007f58682b2c00 RDI: ffffffffffffff9c
[  304.151675][ T9593] RBP: 00007f58682b3090 R08: 0000000000000000 R09: 0000000000000000
[  304.151686][ T9593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.151696][ T9593] R13: 00007f5867616038 R14: 00007f5867615fa0 R15: 00007ffc8cea1da8
[  304.151719][ T9593]  </TASK>
[  304.152868][ T6018] usb 6-1: USB disconnect, device number 60
[  304.424377][  T844] usb 8-1: new low-speed USB device number 73 using dummy_hcd
[  304.554608][  T844] usb 8-1: device descriptor read/64, error -71
[  304.837347][ T9608] syzkaller1: entered promiscuous mode
[  304.839095][  T844] usb 8-1: new low-speed USB device number 74 using dummy_hcd
[  304.840232][ T9608] syzkaller1: entered allmulticast mode
[  305.005187][  T844] usb 8-1: device descriptor read/64, error -71
[  305.107379][   T10] usb 5-1: USB disconnect, device number 61
[  305.132026][  T844] usb usb8-port1: attempt power cycle
[  305.143933][   T40] audit: type=1400 audit(1776657175.488:644): avc:  denied  { mount } for  pid=9609 comm="syz.1.1195" name="/" dev="ramfs" ino=31565 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  305.182520][ T9610] FAULT_INJECTION: forcing a failure.
[  305.182520][ T9610] name failslab, interval 1, probability 0, space 0, times 0
[  305.193764][ T9610] CPU: 3 UID: 0 PID: 9610 Comm: syz.1.1195 Not tainted syzkaller #0 PREEMPT(full) 
[  305.193792][ T9610] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  305.193803][ T9610] Call Trace:
[  305.193810][ T9610]  <TASK>
[  305.193817][ T9610]  dump_stack_lvl+0x100/0x190
[  305.193845][ T9610]  should_fail_ex.cold+0x5/0xa
[  305.193871][ T9610]  should_failslab+0xc2/0x120
[  305.193890][ T9610]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  305.193915][ T9610]  ? security_file_alloc+0x34/0x2c0
[  305.193934][ T9610]  ? trace_kmem_cache_alloc+0xd5/0x100
[  305.193955][ T9610]  security_file_alloc+0x34/0x2c0
[  305.193974][ T9610]  init_file+0x95/0x480
[  305.193998][ T9610]  alloc_empty_file+0x79/0x1c0
[  305.194023][ T9610]  path_openat+0xe8/0x31a0
[  305.194043][ T9610]  ? kasan_save_stack+0x3f/0x50
[  305.194065][ T9610]  ? kasan_save_stack+0x30/0x50
[  305.194096][ T9610]  ? kasan_save_track+0x14/0x30
[  305.194119][ T9610]  ? __kasan_slab_alloc+0x89/0x90
[  305.194134][ T9610]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  305.194156][ T9610]  ? do_getname+0x35/0x390
[  305.194177][ T9610]  ? do_sys_openat2+0xc5/0x1e0
[  305.194199][ T9610]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  305.194264][ T9610]  ? __pfx_path_openat+0x10/0x10
[  305.194295][ T9610]  do_file_open+0x20e/0x430
[  305.194316][ T9610]  ? __pfx_do_file_open+0x10/0x10
[  305.194352][ T9610]  ? alloc_fd+0x476/0x790
[  305.194376][ T9610]  ? do_getname+0x191/0x390
[  305.194402][ T9610]  do_sys_openat2+0x10d/0x1e0
[  305.194422][ T9610]  ? __pfx_do_sys_openat2+0x10/0x10
[  305.194443][ T9610]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  305.194467][ T9610]  ? __fget_files+0x21f/0x3d0
[  305.194491][ T9610]  __x64_sys_openat+0x12d/0x210
[  305.194514][ T9610]  ? __pfx___x64_sys_openat+0x10/0x10
[  305.194536][ T9610]  ? ksys_write+0x1ac/0x250
[  305.194556][ T9610]  ? rcu_is_watching+0x12/0xc0
[  305.194585][ T9610]  do_syscall_64+0x10b/0xf80
[  305.194601][ T9610]  ? clear_bhb_loop+0x40/0x90
[  305.194623][ T9610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  305.194640][ T9610] RIP: 0033:0x7f586739c819
[  305.194654][ T9610] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  305.194671][ T9610] RSP: 002b:00007f58682b3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  305.194689][ T9610] RAX: ffffffffffffffda RBX: 00007f5867615fa0 RCX: 00007f586739c819
[  305.194700][ T9610] RDX: 00000000000c8a02 RSI: 0000200000000180 RDI: ffffffffffffff9c
[  305.194712][ T9610] RBP: 00007f58682b3090 R08: 0000000000000000 R09: 0000000000000000
[  305.194722][ T9610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  305.194752][ T9610] R13: 00007f5867616038 R14: 00007f5867615fa0 R15: 00007ffc8cea1da8
[  305.194776][ T9610]  </TASK>
[  305.518967][  T844] usb 8-1: new low-speed USB device number 75 using dummy_hcd
[  305.553807][  T844] usb 8-1: device descriptor read/8, error -71
[  305.879403][  T844] usb 8-1: new low-speed USB device number 76 using dummy_hcd
[  305.906204][  T844] usb 8-1: device descriptor read/8, error -71
[  306.015323][  T844] usb usb8-port1: unable to enumerate USB device
[  306.064559][ T6056] usb 5-1: new high-speed USB device number 62 using dummy_hcd
[  306.149278][   T40] audit: type=1400 audit(1776657176.488:645): avc:  denied  { create } for  pid=9621 comm="syz.2.1199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  306.155371][ T6159] usb 6-1: new high-speed USB device number 61 using dummy_hcd
[  306.188144][   T40] audit: type=1400 audit(1776657176.488:646): avc:  denied  { write } for  pid=9621 comm="syz.2.1199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  306.188197][   T40] audit: type=1400 audit(1776657176.488:647): avc:  denied  { append } for  pid=9621 comm="syz.2.1199" name="001" dev="devtmpfs" ino=742 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  306.235354][ T9622] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0.
[  306.259194][ T6056] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  306.272964][ T6056] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  306.292368][ T6056] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  306.303016][   T40] audit: type=1400 audit(1776657176.658:648): avc:  denied  { getopt } for  pid=9621 comm="syz.2.1199" lport=2485 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  306.346797][ T6056] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  306.357338][ T9620] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  306.387200][ T6056] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  306.526490][ T6159] usb 6-1: Using ep0 maxpacket: 32
[  306.582956][ T6159] usb 6-1: unable to get BOS descriptor or descriptor too short
[  306.632811][ T6159] usb 6-1: config 8 has an invalid interface number: 188 but max is 0
[  306.645430][ T6159] usb 6-1: config 8 has no interface number 0
[  306.648056][ T6159] usb 6-1: config 8 interface 188 has no altsetting 0
[  306.652789][ T6056] usb 5-1: USB disconnect, device number 62
[  306.671513][ T9626] FAULT_INJECTION: forcing a failure.
[  306.671513][ T9626] name failslab, interval 1, probability 0, space 0, times 0
[  306.683062][ T6159] usb 6-1: string descriptor 0 read error: -22
[  306.686209][ T6159] usb 6-1: New USB device found, idVendor=0ccd, idProduct=0102, bcdDevice=89.0e
[  306.690600][ T9626] CPU: 1 UID: 0 PID: 9626 Comm: syz.0.1198 Not tainted syzkaller #0 PREEMPT(full) 
[  306.690628][ T9626] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  306.690638][ T9626] Call Trace:
[  306.690645][ T9626]  <TASK>
[  306.690653][ T9626]  dump_stack_lvl+0x100/0x190
[  306.690684][ T9626]  should_fail_ex.cold+0x5/0xa
[  306.690708][ T9626]  ? kobject_get_path+0xcf/0x2c0
[  306.690769][ T9626]  should_failslab+0xc2/0x120
[  306.690787][ T9626]  __kmalloc_noprof+0xe0/0x850
[  306.690815][ T9626]  kobject_get_path+0xcf/0x2c0
[  306.690833][ T9626]  ? __pfx_gadget_unbind_driver+0x10/0x10
[  306.691311][ T9626]  kobject_uevent_env+0x287/0x18b0
[  306.691341][ T9626]  ? gadget_unbind_driver+0x371/0x4f0
[  306.691358][ T9626]  ? __pfx_dummy_udc_async_callbacks+0x10/0x10
[  306.691381][ T9626]  ? __pfx_gadget_unbind_driver+0x10/0x10
[  306.691400][ T9626]  device_remove+0xcb/0x180
[  306.691668][ T9626]  device_release_driver_internal+0x44e/0x620
[  306.691694][ T9626]  driver_detach+0xd8/0x1b0
[  306.691715][ T9626]  bus_remove_driver+0x13b/0x2e0
[  306.691733][ T9626]  driver_unregister+0x76/0xb0
[  306.691754][ T9626]  usb_gadget_unregister_driver+0x49/0x70
[  306.691771][ T9626]  raw_release+0x19b/0x260
[  306.691822][ T9626]  ? __pfx_raw_release+0x10/0x10
[  306.691835][ T9626]  __fput+0x3ff/0xb50
[  306.691863][ T9626]  fput_close_sync+0x118/0x250
[  306.691883][ T9626]  ? __pfx_fput_close_sync+0x10/0x10
[  306.691910][ T9626]  __x64_sys_close+0x8b/0x120
[  306.691932][ T9626]  do_syscall_64+0x10b/0xf80
[  306.691946][ T9626]  ? clear_bhb_loop+0x40/0x90
[  306.691967][ T9626]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  306.691982][ T9626] RIP: 0033:0x7fce5eb5d04e
[  306.691997][ T9626] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  306.692012][ T9626] RSP: 002b:00007fce5f985f98 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  306.692028][ T9626] RAX: ffffffffffffffda RBX: 00007fce5f9866c0 RCX: 00007fce5eb5d04e
[  306.692037][ T9626] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  306.692046][ T9626] RBP: 00007fce5f986090 R08: 0000000000000000 R09: 0000000000000000
[  306.692054][ T9626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  306.692063][ T9626] R13: 00007fce5ee16128 R14: 00007fce5ee16090 R15: 00007ffd19e12c08
[  306.692083][ T9626]  </TASK>
[  306.943329][ T6159] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  306.980983][ T6159] dvb-usb: found a 'Terratec Cinergy S2 USB HD Rev.3' in warm state.
[  306.995200][ T6159] dw2102: su3000_power_ctrl: 1, initialized 0
[  307.013558][ T6159] dvb-usb: bulk message failed: -22 (2/0)
[  307.027570][   T40] audit: type=1400 audit(1776657177.368:649): avc:  denied  { watch } for  pid=9627 comm="syz.2.1201" path="/303/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=1572 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  307.041546][ T9628] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1201'.
[  307.069719][ T6159] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  307.074575][ T9628] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1201'.
[  307.085411][   T40] audit: type=1400 audit(1776657177.368:650): avc:  denied  { watch_sb watch_reads } for  pid=9627 comm="syz.2.1201" path="/303/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=1572 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  307.085976][ T6159] dvbdev: DVB: registering new adapter (Terratec Cinergy S2 USB HD Rev.3)
[  307.086043][ T6159] usb 6-1: media controller created
[  307.086635][ T6159] dvb-usb: bulk message failed: -22 (6/0)
[  307.086695][ T6159] dw2102: i2c transfer failed.
[  307.086779][ T6159] dvb-usb: bulk message failed: -22 (6/0)
[  307.086792][ T6159] dw2102: i2c transfer failed.
[  307.086802][ T6159] dvb-usb: bulk message failed: -22 (6/0)
[  307.086814][ T6159] dw2102: i2c transfer failed.
[  307.086823][ T6159] dvb-usb: bulk message failed: -22 (6/0)
[  307.086834][ T6159] dw2102: i2c transfer failed.
[  307.086843][ T6159] dvb-usb: bulk message failed: -22 (6/0)
[  307.086854][ T6159] dw2102: i2c transfer failed.
[  307.086864][ T6159] dvb-usb: bulk message failed: -22 (6/0)
[  307.086875][ T6159] dw2102: i2c transfer failed.
[  307.086883][ T6159] dvb-usb: MAC address: 02:02:02:02:02:02
[  307.096913][ T6159] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  307.167334][ T6159] dvb-usb: bulk message failed: -22 (3/0)
[  307.217769][ T6159] dw2102: command 0x0e transfer failed.
[  307.223107][ T6159] dvb-usb: bulk message failed: -22 (3/0)
[  307.228738][ T6159] dw2102: command 0x0e transfer failed.
[  307.263180][   T40] audit: type=1400 audit(1776657177.608:651): avc:  denied  { read } for  pid=9632 comm="syz.3.1203" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  307.311926][   T40] audit: type=1400 audit(1776657177.608:652): avc:  denied  { ioctl } for  pid=9632 comm="syz.3.1203" path="/dev/sg0" dev="devtmpfs" ino=721 ioctlcmd=0x5393 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  307.405101][   T40] audit: type=1400 audit(1776657177.758:653): avc:  denied  { append } for  pid=9636 comm="syz.2.1205" name="video3" dev="devtmpfs" ino=959 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  307.453715][ T9637] netlink: 384 bytes leftover after parsing attributes in process `syz.2.1205'.
[  307.463143][ T9637] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9637 comm=syz.2.1205
[  307.548504][ T6159] dvb-usb: bulk message failed: -22 (3/0)
[  307.554936][ T6159] dw2102: command 0x0e transfer failed.
[  307.559376][ T6159] dvb-usb: bulk message failed: -22 (3/0)
[  307.565687][ T6159] dw2102: command 0x0e transfer failed.
[  307.568540][ T6159] dvb-usb: bulk message failed: -22 (1/0)
[  307.572121][ T6159] dw2102: command 0x51 transfer failed.
[  307.586640][ T9616] dvb-usb: bulk message failed: -22 (3/0)
[  307.591772][ T9616] dw2102: i2c transfer failed.
[  307.634955][ T6018] usb 8-1: new high-speed USB device number 77 using dummy_hcd
[  307.761663][ T6159] DVB: Unable to find symbol ds3000_attach()
[  307.766035][ T6159] dvb-usb: no frontend was attached by 'Terratec Cinergy S2 USB HD Rev.3'
[  307.880628][ T6018] usb 8-1: Using ep0 maxpacket: 8
[  307.887771][ T6159] rc_core: IR keymap rc-su3000 not found
[  307.916460][ T6159] Registered IR keymap rc-empty
[  307.922505][ T6018] usb 8-1: config 0 has an invalid interface number: 186 but max is 0
[  307.927275][ T6018] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  307.943221][ T6018] usb 8-1: config 0 has no interface number 0
[  307.945675][ T6018] usb 8-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  307.949547][ T6018] usb 8-1: config 0 interface 186 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  307.957351][ T6159] rc rc0: Terratec Cinergy S2 USB HD Rev.3 as /devices/platform/dummy_hcd.1/usb6/6-1/rc/rc0
[  307.992027][ T6018] usb 8-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  308.023904][ T6159] input: Terratec Cinergy S2 USB HD Rev.3 as /devices/platform/dummy_hcd.1/usb6/6-1/rc/rc0/input7
[  308.034000][ T6018] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  308.034028][ T6018] usb 8-1: Product: syz
[  308.034039][ T6018] usb 8-1: Manufacturer: syz
[  308.034054][ T6018] usb 8-1: SerialNumber: syz
[  308.117365][ T6018] usb 8-1: config 0 descriptor??
[  308.147031][ T6018] iowarrior 8-1:0.186: no interrupt-in endpoint found
[  308.161777][   T40] audit: type=1400 audit(1776657178.498:654): avc:  denied  { read } for  pid=5344 comm="acpid" name="event4" dev="devtmpfs" ino=3535 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  308.186006][   T40] audit: type=1400 audit(1776657178.498:655): avc:  denied  { open } for  pid=5344 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=3535 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  308.188647][ T6159] dvb-usb: schedule remote query interval to 150 msecs.
[  308.225204][ T6159] dw2102: su3000_power_ctrl: 0, initialized 1
[  308.227607][ T6159] dvb-usb: Terratec Cinergy S2 USB HD Rev.3 successfully initialized and connected.
[  308.242874][   T40] audit: type=1400 audit(1776657178.498:656): avc:  denied  { ioctl } for  pid=5344 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=3535 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  308.276584][ T6159] usb 6-1: USB disconnect, device number 61
[  308.518893][ T6159] dvb-usb: Terratec Cinergy S2 USB HD Rev.3 successfully deinitialized and disconnected.
[  308.745175][ T9652] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  308.752159][ T9652] FAULT_INJECTION: forcing a failure.
[  308.752159][ T9652] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  308.785804][ T9652] CPU: 1 UID: 0 PID: 9652 Comm: syz.1.1209 Not tainted syzkaller #0 PREEMPT(full) 
[  308.785832][ T9652] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  308.785842][ T9652] Call Trace:
[  308.785848][ T9652]  <TASK>
[  308.785856][ T9652]  dump_stack_lvl+0x100/0x190
[  308.785886][ T9652]  should_fail_ex.cold+0x5/0xa
[  308.785909][ T9652]  _copy_to_user+0x32/0xd0
[  308.785931][ T9652]  iommufd_ioas_unmap+0x295/0x540
[  308.786089][ T9652]  ? __pfx_iommufd_ioas_unmap+0x10/0x10
[  308.786121][ T9652]  iommufd_fops_ioctl+0x358/0x520
[  308.786139][ T9652]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  308.786159][ T9652]  ? __fget_files+0x215/0x3d0
[  308.786178][ T9652]  ? hook_file_ioctl_common+0x149/0x410
[  308.786204][ T9652]  ? selinux_file_ioctl+0x13b/0x290
[  308.786220][ T9652]  ? selinux_file_ioctl+0xb6/0x290
[  308.786237][ T9652]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  308.786254][ T9652]  __x64_sys_ioctl+0x18e/0x210
[  308.786272][ T9652]  do_syscall_64+0x10b/0xf80
[  308.786287][ T9652]  ? clear_bhb_loop+0x40/0x90
[  308.786307][ T9652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.786323][ T9652] RIP: 0033:0x7f586739c819
[  308.786339][ T9652] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  308.786354][ T9652] RSP: 002b:00007f58682b3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  308.786372][ T9652] RAX: ffffffffffffffda RBX: 00007f5867615fa0 RCX: 00007f586739c819
[  308.786383][ T9652] RDX: 0000200000000040 RSI: 0000000000003b86 RDI: 0000000000000003
[  308.786393][ T9652] RBP: 00007f58682b3090 R08: 0000000000000000 R09: 0000000000000000
[  308.786402][ T9652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  308.786412][ T9652] R13: 00007f5867616038 R14: 00007f5867615fa0 R15: 00007ffc8cea1da8
[  308.786433][ T9652]  </TASK>
[  309.166378][   T40] audit: type=1400 audit(1776657179.508:657): avc:  denied  { mount } for  pid=9656 comm="syz.1.1212" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  309.337071][ T9661] bridge0: port 2(bridge_slave_1) entered blocking state
[  309.341841][ T9661] bridge0: port 2(bridge_slave_1) entered forwarding state
[  309.347319][ T9661] bridge0: port 1(bridge_slave_0) entered blocking state
[  309.351357][ T9661] bridge0: port 1(bridge_slave_0) entered forwarding state
[  309.373019][   T40] audit: type=1400 audit(1776657179.718:658): avc:  denied  { unmount } for  pid=5950 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  309.456191][  T844] usb 6-1: new high-speed USB device number 62 using dummy_hcd
[  309.500445][ T9666] overlayfs: fs on './cgroup' does not support file handles, falling back to index=off,nfs_export=off.
[  309.508476][ T9666] 9p: Bad value for 'version'
[  309.651245][  T844] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  309.657777][  T844] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  309.670191][  T844] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  309.689251][  T844] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  309.716693][ T9657] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  309.726958][  T844] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  310.055813][ T9657] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  310.060875][ T9657] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  310.072789][  T844] usb 6-1: USB disconnect, device number 62
[  310.447897][   T69] usb 8-1: USB disconnect, device number 77
[  310.724773][ T9677] FAULT_INJECTION: forcing a failure.
[  310.724773][ T9677] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  310.739779][ T9677] CPU: 2 UID: 0 PID: 9677 Comm: syz.3.1218 Not tainted syzkaller #0 PREEMPT(full) 
[  310.739807][ T9677] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  310.739819][ T9677] Call Trace:
[  310.739961][ T9677]  <TASK>
[  310.739968][ T9677]  dump_stack_lvl+0x100/0x190
[  310.741348][ T9677]  should_fail_ex.cold+0x5/0xa
[  310.741618][ T9677]  _copy_from_user+0x2e/0xd0
[  310.742691][ T9677]  kstrtouint_from_user+0xd6/0x1d0
[  310.742749][ T9677]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  310.742770][ T9677]  ? __lock_acquire+0x4a5/0x2630
[  310.743527][ T9677]  ? lock_acquire+0x1b1/0x370
[  310.743550][ T9677]  proc_fail_nth_write+0x83/0x220
[  310.743807][ T9677]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  310.743828][ T9677]  vfs_write+0x2aa/0x1070
[  310.743908][ T9677]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  310.743925][ T9677]  ? __pfx_vfs_write+0x10/0x10
[  310.743941][ T9677]  ? __fget_files+0x215/0x3d0
[  310.744096][ T9677]  ? __fget_files+0x21f/0x3d0
[  310.744120][ T9677]  ksys_write+0x12a/0x250
[  310.744137][ T9677]  ? __pfx_ksys_write+0x10/0x10
[  310.744154][ T9677]  ? rcu_is_watching+0x12/0xc0
[  310.744785][ T9677]  do_syscall_64+0x10b/0xf80
[  310.746129][ T9677]  ? clear_bhb_loop+0x40/0x90
[  310.746153][ T9677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.746170][ T9677] RIP: 0033:0x7fc7c475d04e
[  310.746334][ T9677] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  310.746349][ T9677] RSP: 002b:00007fc7c55f0fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  310.746367][ T9677] RAX: ffffffffffffffda RBX: 00007fc7c55f16c0 RCX: 00007fc7c475d04e
[  310.746377][ T9677] RDX: 0000000000000001 RSI: 00007fc7c55f10a0 RDI: 0000000000000004
[  310.746386][ T9677] RBP: 00007fc7c55f1090 R08: 0000000000000000 R09: 0000000000000000
[  310.746396][ T9677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  310.746405][ T9677] R13: 00007fc7c4a16038 R14: 00007fc7c4a15fa0 R15: 00007fff134787b8
[  310.746427][ T9677]  </TASK>
[  311.246060][ T9680] IPVS: Unknown mcast interface: syzkaller1
[  312.025837][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  312.035831][ T5957] Bluetooth: hci0: command 0x0406 tx timeout
[  312.331498][   T24] usb 5-1: new high-speed USB device number 63 using dummy_hcd
[  312.416589][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  312.416608][   T40] audit: type=1400 audit(1776657182.768:668): avc:  denied  { unmount } for  pid=5958 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  312.472311][ T9704] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  312.500266][ T6159] usb 8-1: new high-speed USB device number 78 using dummy_hcd
[  312.548031][   T24] usb 5-1: Using ep0 maxpacket: 8
[  312.554522][   T24] usb 5-1: config 0 has an invalid interface number: 186 but max is 0
[  312.593119][   T24] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  312.620452][   T24] usb 5-1: config 0 has no interface number 0
[  312.627902][   T24] usb 5-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  312.644806][   T24] usb 5-1: config 0 interface 186 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  312.673190][   T24] usb 5-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  312.676958][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  312.718922][   T24] usb 5-1: Product: syz
[  312.721172][   T24] usb 5-1: Manufacturer: syz
[  312.723380][   T24] usb 5-1: SerialNumber: syz
[  312.734674][   T24] usb 5-1: config 0 descriptor??
[  312.842661][   T24] iowarrior 5-1:0.186: no interrupt-in endpoint found
[  312.874476][ T6159] usb 8-1: Using ep0 maxpacket: 16
[  312.880707][ T6159] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  312.912959][ T6159] usb 8-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  312.916836][ T6159] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  312.932572][ T6159] usb 8-1: Product: syz
[  312.934301][ T6159] usb 8-1: Manufacturer: syz
[  312.936077][ T6159] usb 8-1: SerialNumber: syz
[  313.017588][ T6159] usb 8-1: config 0 descriptor??
[  313.113832][ T6159] em28xx 8-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  313.118791][ T6159] em28xx 8-1:0.0: DVB interface 0 found: bulk
[  313.140483][ T9714] FAULT_INJECTION: forcing a failure.
[  313.140483][ T9714] name failslab, interval 1, probability 0, space 0, times 0
[  313.146078][ T9714] CPU: 3 UID: 0 PID: 9714 Comm: syz.1.1231 Not tainted syzkaller #0 PREEMPT(full) 
[  313.146104][ T9714] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  313.146115][ T9714] Call Trace:
[  313.146125][ T9714]  <TASK>
[  313.146132][ T9714]  dump_stack_lvl+0x100/0x190
[  313.146162][ T9714]  should_fail_ex.cold+0x5/0xa
[  313.146186][ T9714]  ? tomoyo_encode2+0xfb/0x3c0
[  313.146363][ T9714]  should_failslab+0xc2/0x120
[  313.146455][ T9714]  __kmalloc_noprof+0xe0/0x850
[  313.146559][ T9714]  ? d_absolute_path+0x136/0x1b0
[  313.146579][ T9714]  tomoyo_encode2+0xfb/0x3c0
[  313.146601][ T9714]  tomoyo_encode+0x29/0x50
[  313.146617][ T9714]  tomoyo_realpath_from_path+0x18c/0x690
[  313.146640][ T9714]  tomoyo_path_number_perm+0x23c/0x580
[  313.146664][ T9714]  ? tomoyo_path_number_perm+0x22e/0x580
[  313.146720][ T9714]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  313.146765][ T9714]  ? find_held_lock+0x2b/0x80
[  313.146784][ T9714]  ? __fget_files+0x215/0x3d0
[  313.146806][ T9714]  ? hook_file_ioctl_common+0x149/0x410
[  313.146823][ T9714]  ? __fget_files+0x215/0x3d0
[  313.146844][ T9714]  ? __fget_files+0x21f/0x3d0
[  313.146867][ T9714]  security_file_ioctl+0xd3/0x230
[  313.146951][ T9714]  __x64_sys_ioctl+0xb7/0x210
[  313.146969][ T9714]  do_syscall_64+0x10b/0xf80
[  313.146988][ T9714]  ? clear_bhb_loop+0x40/0x90
[  313.147008][ T9714]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.147023][ T9714] RIP: 0033:0x7f586739c819
[  313.147038][ T9714] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  313.147053][ T9714] RSP: 002b:00007f5868292028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  313.147069][ T9714] RAX: ffffffffffffffda RBX: 00007f5867616090 RCX: 00007f586739c819
[  313.147078][ T9714] RDX: 0000200000000040 RSI: 0000000000005411 RDI: 0000000000000003
[  313.147087][ T9714] RBP: 00007f5868292090 R08: 0000000000000000 R09: 0000000000000000
[  313.147095][ T9714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.147103][ T9714] R13: 00007f5867616128 R14: 00007f5867616090 R15: 00007ffc8cea1da8
[  313.147122][ T9714]  </TASK>
[  313.147145][ T9714] ERROR: Out of memory at tomoyo_realpath_from_path.
[  313.723660][ T6159] em28xx 8-1:0.0: unknown em28xx chip ID (0)
[  314.263706][  T844] usb 6-1: new low-speed USB device number 63 using dummy_hcd
[  314.341336][ T6159] em28xx 8-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  314.366235][ T6159] em28xx 8-1:0.0: board has no eeprom
[  314.510830][  T844] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  314.538054][  T844] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  314.557080][  T844] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8
[  314.575779][  T844] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  314.601340][  T844] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.671797][ T9718] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  314.676581][  T844] hub 6-1:1.0: bad descriptor, ignoring hub
[  314.690115][  T844] hub 6-1:1.0: probe with driver hub failed with error -5
[  314.694710][ T6159] em28xx 8-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  314.701479][ T6159] em28xx 8-1:0.0: dvb set to bulk mode.
[  314.705344][ T6009] em28xx 8-1:0.0: Binding DVB extension
[  314.715511][  T844] cdc_wdm 6-1:1.0: skipping garbage
[  314.719243][  T844] cdc_wdm 6-1:1.0: skipping garbage
[  314.733688][  T844] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  314.738907][  T844] cdc_wdm 6-1:1.0: Unknown control protocol
[  314.741932][ T6159] usb 8-1: USB disconnect, device number 78
[  314.752046][ T6159] em28xx 8-1:0.0: Disconnecting em28xx
[  314.773447][ T6009] em28xx 8-1:0.0: Registering input extension
[  314.780861][ T6159] em28xx 8-1:0.0: Closing input extension
[  314.878670][ T6159] em28xx 8-1:0.0: Freeing device
[  314.878744][   T40] audit: type=1400 audit(1776657185.228:669): avc:  denied  { read write } for  pid=9717 comm="syz.1.1232" name="cdc-wdm0" dev="devtmpfs" ino=3561 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:modem_device_t tclass=chr_file permissive=1
[  314.901531][   T40] audit: type=1400 audit(1776657185.228:670): avc:  denied  { open } for  pid=9717 comm="syz.1.1232" path="/dev/cdc-wdm0" dev="devtmpfs" ino=3561 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:modem_device_t tclass=chr_file permissive=1
[  315.059884][   T50] usb 5-1: USB disconnect, device number 63
[  315.302093][ T9722] gfs2: Unknown parameter 'barriers/usb/00#/00#'
[  315.357475][   T40] audit: type=1400 audit(1776657185.708:671): avc:  denied  { write } for  pid=9723 comm="syz.2.1235" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  315.413092][ T9726] FAULT_INJECTION: forcing a failure.
[  315.413092][ T9726] name failslab, interval 1, probability 0, space 0, times 0
[  315.419881][ T9726] CPU: 3 UID: 0 PID: 9726 Comm: syz.3.1234 Not tainted syzkaller #0 PREEMPT(full) 
[  315.419907][ T9726] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  315.419917][ T9726] Call Trace:
[  315.419925][ T9726]  <TASK>
[  315.419933][ T9726]  dump_stack_lvl+0x100/0x190
[  315.419964][ T9726]  should_fail_ex.cold+0x5/0xa
[  315.419989][ T9726]  should_failslab+0xc2/0x120
[  315.420008][ T9726]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  315.420034][ T9726]  ? skb_clone+0x190/0x400
[  315.420718][ T9726]  skb_clone+0x190/0x400
[  315.420737][ T9726]  netlink_deliver_tap+0xaed/0xcc0
[  315.420993][ T9726]  netlink_unicast+0x62b/0x850
[  315.421018][ T9726]  ? __pfx_netlink_unicast+0x10/0x10
[  315.421046][ T9726]  netlink_sendmsg+0x8b0/0xda0
[  315.421073][ T9726]  ? __pfx_netlink_sendmsg+0x10/0x10
[  315.421094][ T9726]  ? __might_fault+0x50/0x140
[  315.421202][ T9726]  ____sys_sendmsg+0x9e1/0xb70
[  315.421225][ T9726]  ? __pfx_netlink_sendmsg+0x10/0x10
[  315.421250][ T9726]  ? __pfx_____sys_sendmsg+0x10/0x10
[  315.421288][ T9726]  ___sys_sendmsg+0x190/0x1e0
[  315.421314][ T9726]  ? __pfx____sys_sendmsg+0x10/0x10
[  315.421367][ T9726]  __sys_sendmsg+0x170/0x220
[  315.421387][ T9726]  ? __pfx___sys_sendmsg+0x10/0x10
[  315.421414][ T9726]  ? rcu_is_watching+0x12/0xc0
[  315.421445][ T9726]  do_syscall_64+0x10b/0xf80
[  315.421463][ T9726]  ? clear_bhb_loop+0x40/0x90
[  315.421486][ T9726]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.421505][ T9726] RIP: 0033:0x7fc7c479c819
[  315.421523][ T9726] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  315.421539][ T9726] RSP: 002b:00007fc7c55f1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  315.421559][ T9726] RAX: ffffffffffffffda RBX: 00007fc7c4a15fa0 RCX: 00007fc7c479c819
[  315.421570][ T9726] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  315.421580][ T9726] RBP: 00007fc7c55f1090 R08: 0000000000000000 R09: 0000000000000000
[  315.421590][ T9726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.421600][ T9726] R13: 00007fc7c4a16038 R14: 00007fc7c4a15fa0 R15: 00007fff134787b8
[  315.421623][ T9726]  </TASK>
[  315.421686][ T9726] netlink: 'syz.3.1234': attribute type 8 has an invalid length.
[  315.634840][   T40] audit: type=1400 audit(1776657185.978:672): avc:  denied  { map } for  pid=9723 comm="syz.2.1235" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=33033 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  315.637109][ T9726] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1234'.
[  315.693032][   T40] audit: type=1400 audit(1776657185.978:673): avc:  denied  { read write } for  pid=9723 comm="syz.2.1235" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=33033 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  315.701964][ T9726] bridge0: port 2(bridge_slave_1) entered disabled state
[  315.704396][   T40] audit: type=1400 audit(1776657186.048:674): avc:  denied  { map } for  pid=9723 comm="syz.2.1235" path="pipe:[33032]" dev="pipefs" ino=33032 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  315.730343][ T9726] bridge0: port 1(bridge_slave_0) entered disabled state
[  315.765968][ T9731] FAULT_INJECTION: forcing a failure.
[  315.765968][ T9731] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  315.824430][ T9731] CPU: 0 UID: 0 PID: 9731 Comm: syz.0.1237 Not tainted syzkaller #0 PREEMPT(full) 
[  315.824459][ T9731] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  315.824470][ T9731] Call Trace:
[  315.824477][ T9731]  <TASK>
[  315.824485][ T9731]  dump_stack_lvl+0x100/0x190
[  315.824515][ T9731]  should_fail_ex.cold+0x5/0xa
[  315.824539][ T9731]  _copy_to_user+0x32/0xd0
[  315.824592][ T9731]  simple_read_from_buffer+0xcb/0x170
[  315.824616][ T9731]  proc_fail_nth_read+0x1af/0x230
[  315.824645][ T9731]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  315.824672][ T9731]  ? rw_verify_area+0xce/0x6d0
[  315.824698][ T9731]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  315.824724][ T9731]  vfs_read+0x1e4/0xb30
[  315.824744][ T9731]  ? __pfx_vfs_read+0x10/0x10
[  315.824759][ T9731]  ? __fget_files+0x215/0x3d0
[  315.824784][ T9731]  ? __fget_files+0x21f/0x3d0
[  315.824810][ T9731]  ksys_read+0x12a/0x250
[  315.824826][ T9731]  ? __pfx_ksys_read+0x10/0x10
[  315.824841][ T9731]  ? v4l2_ioctl+0x1c5/0x250
[  315.825320][ T9731]  ? rcu_is_watching+0x12/0xc0
[  315.825349][ T9731]  do_syscall_64+0x10b/0xf80
[  315.825366][ T9731]  ? clear_bhb_loop+0x40/0x90
[  315.825388][ T9731]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.825405][ T9731] RIP: 0033:0x7fce5eb5d04e
[  315.825421][ T9731] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  315.825437][ T9731] RSP: 002b:00007fce5f9a6fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  315.825455][ T9731] RAX: ffffffffffffffda RBX: 00007fce5f9a76c0 RCX: 00007fce5eb5d04e
[  315.825465][ T9731] RDX: 000000000000000f RSI: 00007fce5f9a70a0 RDI: 0000000000000004
[  315.825475][ T9731] RBP: 00007fce5f9a7090 R08: 0000000000000000 R09: 0000000000000000
[  315.825500][ T9731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.825511][ T9731] R13: 00007fce5ee16038 R14: 00007fce5ee15fa0 R15: 00007ffd19e12c08
[  315.825533][ T9731]  </TASK>
[  316.035014][   T40] audit: type=1400 audit(1776657186.368:675): avc:  denied  { create } for  pid=9734 comm="syz.3.1240" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  316.043737][   T40] audit: type=1400 audit(1776657186.368:676): avc:  denied  { connect } for  pid=9734 comm="syz.3.1240" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  316.087279][   T40] audit: type=1400 audit(1776657186.438:677): avc:  denied  { listen } for  pid=9734 comm="syz.3.1240" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  316.344920][ T6310] usb 5-1: new high-speed USB device number 64 using dummy_hcd
[  316.494616][ T6310] usb 5-1: Using ep0 maxpacket: 8
[  316.498604][ T6310] usb 5-1: config 0 has an invalid interface number: 186 but max is 0
[  316.502572][ T6310] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  316.507047][ T6310] usb 5-1: config 0 has no interface number 0
[  316.513462][ T6310] usb 5-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  316.539977][ T6310] usb 5-1: config 0 interface 186 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  316.579829][ T6310] usb 5-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  316.584541][ T6310] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  316.587894][ T6310] usb 5-1: Product: syz
[  316.589526][ T6310] usb 5-1: Manufacturer: syz
[  316.627344][ T6310] usb 5-1: SerialNumber: syz
[  316.638086][ T6310] usb 5-1: config 0 descriptor??
[  316.666305][   T69] usb 7-1: new high-speed USB device number 55 using dummy_hcd
[  316.673493][ T6310] iowarrior 5-1:0.186: no interrupt-in endpoint found
[  316.854964][   T69] usb 7-1: Using ep0 maxpacket: 16
[  316.860570][   T69] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  316.883240][   T69] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  316.906900][   T69] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  316.910011][   T69] usb 7-1: Product: syz
[  316.946393][   T69] usb 7-1: Manufacturer: syz
[  316.957912][   T69] usb 7-1: SerialNumber: syz
[  316.999554][   T69] usb 7-1: config 0 descriptor??
[  317.033808][   T69] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  317.060478][   T69] em28xx 7-1:0.0: DVB interface 0 found: bulk
[  317.662031][   T69] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[  317.812123][ T9761] FAULT_INJECTION: forcing a failure.
[  317.812123][ T9761] name failslab, interval 1, probability 0, space 0, times 0
[  317.817144][ T9761] CPU: 2 UID: 0 PID: 9761 Comm: syz.3.1247 Not tainted syzkaller #0 PREEMPT(full) 
[  317.817169][ T9761] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  317.817179][ T9761] Call Trace:
[  317.817184][ T9761]  <TASK>
[  317.817190][ T9761]  dump_stack_lvl+0x100/0x190
[  317.817217][ T9761]  should_fail_ex.cold+0x5/0xa
[  317.817238][ T9761]  should_failslab+0xc2/0x120
[  317.817259][ T9761]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  317.817280][ T9761]  ? skb_clone+0x190/0x400
[  317.817301][ T9761]  skb_clone+0x190/0x400
[  317.817316][ T9761]  netlink_deliver_tap+0xaed/0xcc0
[  317.817341][ T9761]  netlink_unicast+0x62b/0x850
[  317.817366][ T9761]  ? __pfx_netlink_unicast+0x10/0x10
[  317.817392][ T9761]  netlink_sendmsg+0x8b0/0xda0
[  317.817414][ T9761]  ? __pfx_netlink_sendmsg+0x10/0x10
[  317.817436][ T9761]  ? __might_fault+0x50/0x140
[  317.817469][ T9761]  ____sys_sendmsg+0x9e1/0xb70
[  317.817492][ T9761]  ? __pfx_netlink_sendmsg+0x10/0x10
[  317.817517][ T9761]  ? __pfx_____sys_sendmsg+0x10/0x10
[  317.817549][ T9761]  ___sys_sendmsg+0x190/0x1e0
[  317.817574][ T9761]  ? __pfx____sys_sendmsg+0x10/0x10
[  317.817624][ T9761]  __sys_sendmsg+0x170/0x220
[  317.817644][ T9761]  ? __pfx___sys_sendmsg+0x10/0x10
[  317.817672][ T9761]  ? rcu_is_watching+0x12/0xc0
[  317.817702][ T9761]  do_syscall_64+0x10b/0xf80
[  317.817720][ T9761]  ? clear_bhb_loop+0x40/0x90
[  317.817740][ T9761]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.817757][ T9761] RIP: 0033:0x7fc7c479c819
[  317.817773][ T9761] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  317.817788][ T9761] RSP: 002b:00007fc7c55f1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  317.817807][ T9761] RAX: ffffffffffffffda RBX: 00007fc7c4a15fa0 RCX: 00007fc7c479c819
[  317.817818][ T9761] RDX: 0000000000000004 RSI: 00002000000000c0 RDI: 0000000000000005
[  317.817827][ T9761] RBP: 00007fc7c55f1090 R08: 0000000000000000 R09: 0000000000000000
[  317.817837][ T9761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  317.817847][ T9761] R13: 00007fc7c4a16038 R14: 00007fc7c4a15fa0 R15: 00007fff134787b8
[  317.817870][ T9761]  </TASK>
[  318.156969][   T69] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  318.177442][   T69] em28xx 7-1:0.0: board has no eeprom
[  318.306213][   T40] kauditd_printk_skb: 3 callbacks suppressed
[  318.306232][   T40] audit: type=1400 audit(1776657188.658:681): avc:  denied  { setattr } for  pid=9764 comm="syz.3.1249" name="/" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  318.448481][   T69] em28xx 7-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  318.463296][   T69] em28xx 7-1:0.0: dvb set to bulk mode.
[  318.467812][ T6018] em28xx 7-1:0.0: Binding DVB extension
[  318.485101][   T69] usb 7-1: USB disconnect, device number 55
[  318.513309][   T69] em28xx 7-1:0.0: Disconnecting em28xx
[  318.549953][ T6018] em28xx 7-1:0.0: Registering input extension
[  318.552855][   T69] em28xx 7-1:0.0: Closing input extension
[  318.583910][ T9770] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1250'.
[  318.593214][ T9770] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1250'.
[  318.604011][   T69] em28xx 7-1:0.0: Freeing device
[  318.744093][  T220] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  318.748423][  T220] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  318.753777][  T220] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  318.763100][  T220] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  318.844989][ T9775] fuse: Unknown parameter 'fd0x0000000000000003'
[  318.929073][ T9751] cdc_wdm 6-1:1.0: Error autopm - -16
[  318.931853][  T844] usb 6-1: USB disconnect, device number 63
[  319.535673][  T844] usb 6-1: new full-speed USB device number 64 using dummy_hcd
[  319.780816][  T844] usb 6-1: config 0 has no interfaces?
[  319.785817][  T844] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  319.805421][  T844] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  319.824840][  T844] usb 6-1: Product: syz
[  319.826528][  T844] usb 6-1: Manufacturer: syz
[  319.835396][  T844] usb 6-1: SerialNumber: syz
[  319.873230][  T844] usb 6-1: config 0 descriptor??
[  319.942090][   T40] audit: type=1400 audit(1776657190.278:682): avc:  denied  { setopt } for  pid=9794 comm="syz.3.1256" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  319.964159][ T6018] usb 5-1: USB disconnect, device number 64
[  320.094158][ T9786] FAULT_INJECTION: forcing a failure.
[  320.094158][ T9786] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  320.100000][ T9799] FAULT_INJECTION: forcing a failure.
[  320.100000][ T9799] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  320.117081][ T9786] CPU: 0 UID: 0 PID: 9786 Comm: syz.1.1254 Not tainted syzkaller #0 PREEMPT(full) 
[  320.117107][ T9786] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  320.117118][ T9786] Call Trace:
[  320.117126][ T9786]  <TASK>
[  320.117133][ T9786]  dump_stack_lvl+0x100/0x190
[  320.117166][ T9786]  should_fail_ex.cold+0x5/0xa
[  320.117191][ T9786]  _copy_from_user+0x2e/0xd0
[  320.117212][ T9786]  copy_msghdr_from_user+0x9f/0x4f0
[  320.117240][ T9786]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  320.117274][ T9786]  ___sys_sendmsg+0x106/0x1e0
[  320.117299][ T9786]  ? __pfx____sys_sendmsg+0x10/0x10
[  320.117351][ T9786]  __sys_sendmsg+0x170/0x220
[  320.117396][ T9786]  ? __pfx___sys_sendmsg+0x10/0x10
[  320.117437][ T9786]  ? rcu_is_watching+0x12/0xc0
[  320.117466][ T9786]  do_syscall_64+0x10b/0xf80
[  320.117486][ T9786]  ? clear_bhb_loop+0x40/0x90
[  320.117508][ T9786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.117525][ T9786] RIP: 0033:0x7f586739c819
[  320.117543][ T9786] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  320.117559][ T9786] RSP: 002b:00007f58682b3028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  320.117579][ T9786] RAX: ffffffffffffffda RBX: 00007f5867615fa0 RCX: 00007f586739c819
[  320.117591][ T9786] RDX: 0c31fe084736598c RSI: 0000200000000200 RDI: 000000000000000b
[  320.117603][ T9786] RBP: 00007f58682b3090 R08: 0000000000000000 R09: 0000000000000000
[  320.117613][ T9786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  320.117624][ T9786] R13: 00007f5867616038 R14: 00007f5867615fa0 R15: 00007ffc8cea1da8
[  320.117649][ T9786]  </TASK>
[  320.391055][  T844] usb 6-1: USB disconnect, device number 64
[  320.402849][ T9799] CPU: 0 UID: 0 PID: 9799 Comm: syz.0.1257 Not tainted syzkaller #0 PREEMPT(full) 
[  320.402878][ T9799] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  320.402888][ T9799] Call Trace:
[  320.402895][ T9799]  <TASK>
[  320.402901][ T9799]  dump_stack_lvl+0x100/0x190
[  320.402928][ T9799]  should_fail_ex.cold+0x5/0xa
[  320.402951][ T9799]  _copy_from_user+0x2e/0xd0
[  320.402971][ T9799]  kstrtouint_from_user+0xd6/0x1d0
[  320.402994][ T9799]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  320.403016][ T9799]  ? __lock_acquire+0x4a5/0x2630
[  320.403041][ T9799]  ? lock_acquire+0x1b1/0x370
[  320.403063][ T9799]  proc_fail_nth_write+0x83/0x220
[  320.403085][ T9799]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  320.403108][ T9799]  vfs_write+0x2aa/0x1070
[  320.403127][ T9799]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  320.403144][ T9799]  ? __pfx_vfs_write+0x10/0x10
[  320.403159][ T9799]  ? __fget_files+0x215/0x3d0
[  320.403184][ T9799]  ? __fget_files+0x21f/0x3d0
[  320.403209][ T9799]  ksys_write+0x12a/0x250
[  320.403225][ T9799]  ? __pfx_ksys_write+0x10/0x10
[  320.403251][ T9799]  ? rcu_is_watching+0x12/0xc0
[  320.403279][ T9799]  do_syscall_64+0x10b/0xf80
[  320.403296][ T9799]  ? clear_bhb_loop+0x40/0x90
[  320.403318][ T9799]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.403336][ T9799] RIP: 0033:0x7fce5eb5d04e
[  320.403352][ T9799] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  320.403368][ T9799] RSP: 002b:00007fce5f9a6fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  320.403387][ T9799] RAX: ffffffffffffffda RBX: 00007fce5f9a76c0 RCX: 00007fce5eb5d04e
[  320.403399][ T9799] RDX: 0000000000000001 RSI: 00007fce5f9a70a0 RDI: 0000000000000005
[  320.403408][ T9799] RBP: 00007fce5f9a7090 R08: 0000000000000000 R09: 0000000000000000
[  320.403417][ T9799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  320.403426][ T9799] R13: 00007fce5ee16038 R14: 00007fce5ee15fa0 R15: 00007ffd19e12c08
[  320.403447][ T9799]  </TASK>
[  320.731989][ T6018] IPVS: starting estimator thread 0...
[  320.845233][ T9803] IPVS: using max 27 ests per chain, 64800 per kthread
[  320.845504][ T9805] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1259'.
[  320.852958][ T9805] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1259'.
[  321.234831][   T50] usb 7-1: new low-speed USB device number 56 using dummy_hcd
[  321.334754][ T9819] =======================================================
[  321.334754][ T9819] WARNING: The mand mount option has been deprecated and
[  321.334754][ T9819]          and is ignored by this kernel. Remove the mand
[  321.334754][ T9819]          option from the mount to silence this warning.
[  321.334754][ T9819] =======================================================
[  321.339614][ T6310] usb 6-1: new high-speed USB device number 65 using dummy_hcd
[  321.500271][   T50] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  321.508571][   T50] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  321.515142][   T50] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8
[  321.528367][   T50] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  321.560310][   T50] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  321.587077][ T9807] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  321.593036][ T6310] usb 6-1: Using ep0 maxpacket: 16
[  321.601169][ T6310] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  321.632112][   T50] hub 7-1:1.0: bad descriptor, ignoring hub
[  321.658990][   T50] hub 7-1:1.0: probe with driver hub failed with error -5
[  321.663243][   T50] cdc_wdm 7-1:1.0: skipping garbage
[  321.665912][   T50] cdc_wdm 7-1:1.0: skipping garbage
[  321.689197][ T6310] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  321.695038][ T6310] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  321.699588][ T6310] usb 6-1: Product: syz
[  321.701797][ T6310] usb 6-1: Manufacturer: syz
[  321.715509][   T50] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  321.720085][   T50] cdc_wdm 7-1:1.0: Unknown control protocol
[  321.732133][ T6310] usb 6-1: SerialNumber: syz
[  321.748886][ T6310] usb 6-1: config 0 descriptor??
[  321.805056][ T6310] em28xx 6-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  321.816362][ T6310] em28xx 6-1:0.0: DVB interface 0 found: bulk
[  321.896096][    C2] wdm_int_callback: 1878 callbacks suppressed
[  321.896125][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  321.913297][    C2] wdm_int_callback: 1878 callbacks suppressed
[  321.913323][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  321.960568][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  321.967319][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  321.981714][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  322.002764][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  322.006224][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  322.009058][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  322.025103][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  322.032533][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  322.041454][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  322.048755][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  322.072367][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  322.075145][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  322.104366][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  322.106967][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  322.109786][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  322.115439][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  322.139755][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  322.142737][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  322.362313][ T9829] FAULT_INJECTION: forcing a failure.
[  322.362313][ T9829] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  322.374395][ T9829] CPU: 3 UID: 0 PID: 9829 Comm: syz.0.1268 Not tainted syzkaller #0 PREEMPT(full) 
[  322.374426][ T9829] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  322.374436][ T9829] Call Trace:
[  322.374443][ T9829]  <TASK>
[  322.374589][ T9829]  dump_stack_lvl+0x100/0x190
[  322.374619][ T9829]  should_fail_ex.cold+0x5/0xa
[  322.374643][ T9829]  _copy_from_user+0x2e/0xd0
[  322.375588][ T9829]  kstrtouint_from_user+0xd6/0x1d0
[  322.375616][ T9829]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  322.375639][ T9829]  ? __lock_acquire+0x4a5/0x2630
[  322.376058][ T9829]  ? lock_acquire+0x1b1/0x370
[  322.376231][ T9829]  proc_fail_nth_write+0x83/0x220
[  322.376253][ T9829]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  322.376277][ T9829]  vfs_write+0x2aa/0x1070
[  322.376481][ T9829]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  322.376501][ T9829]  ? __pfx_vfs_write+0x10/0x10
[  322.376517][ T9829]  ? __fget_files+0x215/0x3d0
[  322.376774][ T9829]  ? __fget_files+0x21f/0x3d0
[  322.376804][ T9829]  ksys_write+0x12a/0x250
[  322.376821][ T9829]  ? __pfx_ksys_write+0x10/0x10
[  322.377220][ T9829]  ? rcu_is_watching+0x12/0xc0
[  322.377274][ T9829]  do_syscall_64+0x10b/0xf80
[  322.377292][ T9829]  ? clear_bhb_loop+0x40/0x90
[  322.377313][ T9829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.377330][ T9829] RIP: 0033:0x7fce5eb5d04e
[  322.377346][ T9829] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  322.377362][ T9829] RSP: 002b:00007fce5f985fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  322.377380][ T9829] RAX: ffffffffffffffda RBX: 00007fce5f9866c0 RCX: 00007fce5eb5d04e
[  322.377391][ T9829] RDX: 0000000000000001 RSI: 00007fce5f9860a0 RDI: 0000000000000005
[  322.377401][ T9829] RBP: 00007fce5f986090 R08: 0000000000000000 R09: 0000000000000000
[  322.377412][ T9829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  322.377421][ T9829] R13: 00007fce5ee16128 R14: 00007fce5ee16090 R15: 00007ffd19e12c08
[  322.377444][ T9829]  </TASK>
[  322.497516][ T9831] FAULT_INJECTION: forcing a failure.
[  322.497516][ T9831] name failslab, interval 1, probability 0, space 0, times 0
[  322.512425][ T6310] em28xx 6-1:0.0: unknown em28xx chip ID (0)
[  322.514672][ T9831] CPU: 2 UID: 0 PID: 9831 Comm: syz.3.1269 Not tainted syzkaller #0 PREEMPT(full) 
[  322.514699][ T9831] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  322.514710][ T9831] Call Trace:
[  322.514720][ T9831]  <TASK>
[  322.514728][ T9831]  dump_stack_lvl+0x100/0x190
[  322.514758][ T9831]  should_fail_ex.cold+0x5/0xa
[  322.514783][ T9831]  should_failslab+0xc2/0x120
[  322.514802][ T9831]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  322.514828][ T9831]  ? __alloc_skb+0x140/0x710
[  322.514850][ T9831]  __alloc_skb+0x140/0x710
[  322.514866][ T9831]  ? __alloc_skb+0x5b7/0x710
[  322.515285][ T9831]  ? __pfx___alloc_skb+0x10/0x10
[  322.515426][ T9831]  tcp_make_synack+0xf2/0x2090
[  322.515664][ T9831]  ? __pfx_xfrm_lookup_with_ifid+0x10/0x10
[  322.515752][ T9831]  ? ip_route_output_key_hash+0x14c/0x2b0
[  322.515774][ T9831]  ? __pfx_tcp_make_synack+0x10/0x10
[  322.515799][ T9831]  ? find_held_lock+0x2b/0x80
[  322.515822][ T9831]  ? inet_csk_route_req+0x7de/0xd50
[  322.515849][ T9831]  tcp_v4_send_synack+0xcb/0x920
[  322.515877][ T9831]  ? __pfx_tcp_v4_send_synack+0x10/0x10
[  322.515905][ T9831]  ? __pfx_get_random_u32+0x10/0x10
[  322.516303][ T9831]  ? selinux_socket_sock_rcv_skb+0x186/0x730
[  322.516335][ T9831]  tcp_rtx_synack+0x13d/0x640
[  322.516356][ T9831]  ? __pfx_tcp_rtx_synack+0x10/0x10
[  322.516390][ T9831]  tcp_check_req+0xf3e/0x2be0
[  322.516415][ T9831]  ? __pfx_tcp_check_req+0x10/0x10
[  322.516503][ T9831]  ? xdp_master_redirect+0x2e0/0x3a0
[  322.516654][ T9831]  ? __asan_memmove+0x3c/0x60
[  322.516679][ T9831]  tcp_v4_rcv+0x122b/0x4720
[  322.516706][ T9831]  ? __pfx_tcp_v4_rcv+0x10/0x10
[  322.516726][ T9831]  ? __pfx_raw_local_deliver+0x10/0x10
[  322.516808][ T9831]  ? __pfx_tcp_v4_rcv+0x10/0x10
[  322.516827][ T9831]  ip_protocol_deliver_rcu+0xba/0x4d0
[  322.516963][ T9831]  ip_local_deliver_finish+0x3f2/0x6e0
[  322.517822][ T9831]  ip_local_deliver+0x19a/0x1f0
[  322.517845][ T9831]  ? __pfx_ip_local_deliver+0x10/0x10
[  322.517903][ T9831]  ip_rcv+0x33a/0x3c0
[  322.517922][ T9831]  ? __pfx_ip_rcv+0x10/0x10
[  322.517938][ T9831]  __netif_receive_skb_one_core+0x197/0x1e0
[  322.518555][ T9831]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  322.519014][ T9831]  ? lock_acquire+0x1b1/0x370
[  322.519093][ T9831]  __netif_receive_skb+0x1f/0x120
[  322.519313][ T9831]  netif_receive_skb+0x13b/0x7f0
[  322.519338][ T9831]  ? tun_build_skb.constprop.0+0x9b5/0x18f0
[  322.519651][ T9831]  ? __pfx_netif_receive_skb+0x10/0x10
[  322.519684][ T9831]  tun_rx_batched.isra.0+0x3f6/0x750
[  322.519711][ T9831]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[  322.519740][ T9831]  ? rcu_is_watching+0x12/0xc0
[  322.519765][ T9831]  ? tun_get_user+0x1cc8/0x3c20
[  322.519793][ T9831]  tun_get_user+0x1e31/0x3c20
[  322.519828][ T9831]  ? __pfx_tun_get_user+0x10/0x10
[  322.519853][ T9831]  ? __file_has_perm+0x336/0x460
[  322.519880][ T9831]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  322.519910][ T9831]  ? find_held_lock+0x2b/0x80
[  322.519926][ T9831]  ? tun_get+0x191/0x370
[  322.519946][ T9831]  ? tun_get+0x191/0x370
[  322.519974][ T9831]  tun_chr_write_iter+0xdc/0x200
[  322.520006][ T9831]  vfs_write+0x6ac/0x1070
[  322.520025][ T9831]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  322.520049][ T9831]  ? __pfx_vfs_write+0x10/0x10
[  322.520063][ T9831]  ? find_held_lock+0x2b/0x80
[  322.520091][ T9831]  ksys_write+0x12a/0x250
[  322.520106][ T9831]  ? __pfx_ksys_write+0x10/0x10
[  322.520122][ T9831]  ? rcu_is_watching+0x12/0xc0
[  322.520145][ T9831]  do_syscall_64+0x10b/0xf80
[  322.520161][ T9831]  ? clear_bhb_loop+0x40/0x90
[  322.520181][ T9831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.520196][ T9831] RIP: 0033:0x7fc7c475d04e
[  322.520211][ T9831] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  322.520226][ T9831] RSP: 002b:00007fc7c55f0fb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  322.520242][ T9831] RAX: ffffffffffffffda RBX: 00007fc7c55f16c0 RCX: 00007fc7c475d04e
[  322.520252][ T9831] RDX: 0000000000000046 RSI: 00002000000003c0 RDI: 00000000000000c8
[  322.520260][ T9831] RBP: 00007fc7c55f1090 R08: 0000000000000000 R09: 0000000000000000
[  322.520269][ T9831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  322.520277][ T9831] R13: 00007fc7c4a16038 R14: 00007fc7c4a15fa0 R15: 00007fff134787b8
[  322.520298][ T9831]  </TASK>
[  322.961691][   T40] audit: type=1400 audit(1776657193.298:683): avc:  denied  { bind } for  pid=9837 comm="syz.3.1272" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  323.246027][   T40] audit: type=1400 audit(1776657193.358:684): avc:  denied  { create } for  pid=9837 comm="syz.3.1272" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  323.265260][ T6310] em28xx 6-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  323.269160][ T6310] em28xx 6-1:0.0: board has no eeprom
[  323.604442][ T6310] em28xx 6-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  323.622754][ T6310] em28xx 6-1:0.0: dvb set to bulk mode.
[  323.647733][ T6019] em28xx 6-1:0.0: Binding DVB extension
[  323.669717][ T6310] usb 6-1: USB disconnect, device number 65
[  323.676499][ T6310] em28xx 6-1:0.0: Disconnecting em28xx
[  323.750700][ T9849] FAULT_INJECTION: forcing a failure.
[  323.750700][ T9849] name failslab, interval 1, probability 0, space 0, times 0
[  323.750863][ T6019] em28xx 6-1:0.0: Registering input extension
[  323.770338][ T9849] CPU: 0 UID: 0 PID: 9849 Comm: syz.0.1276 Not tainted syzkaller #0 PREEMPT(full) 
[  323.770367][ T9849] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  323.770377][ T9849] Call Trace:
[  323.770384][ T9849]  <TASK>
[  323.770390][ T9849]  dump_stack_lvl+0x100/0x190
[  323.770421][ T9849]  should_fail_ex.cold+0x5/0xa
[  323.770444][ T9849]  ? tomoyo_encode2+0xfb/0x3c0
[  323.770462][ T9849]  should_failslab+0xc2/0x120
[  323.770481][ T9849]  __kmalloc_noprof+0xe0/0x850
[  323.770510][ T9849]  tomoyo_encode2+0xfb/0x3c0
[  323.770531][ T9849]  tomoyo_encode+0x29/0x50
[  323.770547][ T9849]  tomoyo_realpath_from_path+0x18c/0x690
[  323.770571][ T9849]  tomoyo_path_number_perm+0x23c/0x580
[  323.770596][ T9849]  ? tomoyo_path_number_perm+0x22e/0x580
[  323.770623][ T9849]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  323.770700][ T9849]  ? find_held_lock+0x2b/0x80
[  323.770716][ T9849]  ? __fget_files+0x215/0x3d0
[  323.770736][ T9849]  ? hook_file_ioctl_common+0x149/0x410
[  323.770758][ T9849]  ? __fget_files+0x215/0x3d0
[  323.770781][ T9849]  ? __fget_files+0x21f/0x3d0
[  323.770804][ T9849]  security_file_ioctl+0xd3/0x230
[  323.770846][ T9849]  __x64_sys_ioctl+0xb7/0x210
[  323.770866][ T9849]  do_syscall_64+0x10b/0xf80
[  323.770883][ T9849]  ? clear_bhb_loop+0x40/0x90
[  323.770905][ T9849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.770922][ T9849] RIP: 0033:0x7fce5eb9c4ab
[  323.770938][ T9849] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  323.770955][ T9849] RSP: 002b:00007fce5f9a6f00 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  323.770979][ T9849] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fce5eb9c4ab
[  323.770990][ T9849] RDX: 00007fce5f9a6fc0 RSI: 000000004020ae46 RDI: 0000000000000005
[  323.771000][ T9849] RBP: 00007fce5ec51c60 R08: 0000000000000000 R09: 0000000000000005
[  323.771011][ T9849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000bfe000
[  323.771021][ T9849] R13: 0000000000000000 R14: 0000000000000000 R15: 00000000003fa000
[  323.771043][ T9849]  </TASK>
[  323.771064][ T9849] ERROR: Out of memory at tomoyo_realpath_from_path.
[  323.783606][ T6310] em28xx 6-1:0.0: Closing input extension
[  323.875329][    C2] dummy_hcd dummy_hcd.2: timer fired with no URBs pending?
[  323.907535][   T10] usb 7-1: USB disconnect, device number 56
[  323.962400][ T9852] Illegal XDP return value 3785781240 on prog  (id 67) dev N/A, expect packet loss!
[  323.998336][ T6310] em28xx 6-1:0.0: Freeing device
[  324.152124][   T40] audit: type=1400 audit(1776657194.498:685): avc:  denied  { sqpoll } for  pid=9856 comm="syz.2.1278" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  324.335106][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[  324.338380][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[  324.354330][   T40] audit: type=1400 audit(1776657194.708:686): avc:  denied  { ioctl } for  pid=9864 comm="syz.3.1280" path="socket:[33489]" dev="sockfs" ino=33489 ioctlcmd=0x5869 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  325.306753][ T9880] FAULT_INJECTION: forcing a failure.
[  325.306753][ T9880] name failslab, interval 1, probability 0, space 0, times 0
[  325.312151][ T9880] CPU: 3 UID: 0 PID: 9880 Comm: syz.0.1285 Not tainted syzkaller #0 PREEMPT(full) 
[  325.312183][ T9880] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  325.312195][ T9880] Call Trace:
[  325.312204][ T9880]  <TASK>
[  325.312212][ T9880]  dump_stack_lvl+0x100/0x190
[  325.312244][ T9880]  should_fail_ex.cold+0x5/0xa
[  325.312271][ T9880]  should_failslab+0xc2/0x120
[  325.312291][ T9880]  __kmalloc_cache_noprof+0x7a/0x6f0
[  325.312313][ T9880]  ? fuse_lookup_name+0x19f/0x760
[  325.312803][ T9880]  fuse_lookup_name+0x19f/0x760
[  325.312828][ T9880]  ? __pfx_fuse_lookup_name+0x10/0x10
[  325.312852][ T9880]  ? __pfx___mutex_lock+0x10/0x10
[  325.312893][ T9880]  fuse_lookup+0x209/0x550
[  325.312917][ T9880]  ? __pfx_fuse_lookup+0x10/0x10
[  325.312952][ T9880]  ? lockdep_init_map_type+0x5c/0x250
[  325.312980][ T9880]  __lookup_slow+0x251/0x460
[  325.313005][ T9880]  ? __pfx___lookup_slow+0x10/0x10
[  325.313045][ T9880]  lookup_slow+0x50/0x70
[  325.313067][ T9880]  path_lookupat+0x5e8/0xc40
[  325.313085][ T9880]  ? _kstrtoull+0x13c/0x1f0
[  325.313110][ T9880]  filename_lookup+0x202/0x590
[  325.313140][ T9880]  ? __pfx_filename_lookup+0x10/0x10
[  325.313183][ T9880]  ? __x64_sys_statx+0x1a3/0x1e0
[  325.313208][ T9880]  ? do_syscall_64+0x10b/0xf80
[  325.313224][ T9880]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.313251][ T9880]  vfs_statx+0xff/0x3f0
[  325.313275][ T9880]  ? __pfx_vfs_statx+0x10/0x10
[  325.313304][ T9880]  do_statx+0xf1/0x170
[  325.313329][ T9880]  ? __pfx_do_statx+0x10/0x10
[  325.313366][ T9880]  ? strncpy_from_user+0x19d/0x2d0
[  325.313391][ T9880]  ? do_getname+0x191/0x390
[  325.313418][ T9880]  __x64_sys_statx+0x136/0x1e0
[  325.313446][ T9880]  do_syscall_64+0x10b/0xf80
[  325.313462][ T9880]  ? clear_bhb_loop+0x40/0x90
[  325.313484][ T9880]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.313502][ T9880] RIP: 0033:0x7fce5eb9c819
[  325.313519][ T9880] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  325.313536][ T9880] RSP: 002b:00007fce5f9a7028 EFLAGS: 00000246 ORIG_RAX: 000000000000014c
[  325.313556][ T9880] RAX: ffffffffffffffda RBX: 00007fce5ee15fa0 RCX: 00007fce5eb9c819
[  325.313567][ T9880] RDX: 0000000000000100 RSI: 0000200000002040 RDI: ffffffffffffff9c
[  325.313577][ T9880] RBP: 00007fce5f9a7090 R08: 0000000000000000 R09: 0000000000000000
[  325.313588][ T9880] R10: 000000000000088c R11: 0000000000000246 R12: 0000000000000001
[  325.313599][ T9880] R13: 00007fce5ee16038 R14: 00007fce5ee15fa0 R15: 00007ffd19e12c08
[  325.313623][ T9880]  </TASK>
[  325.721484][ T5964] Bluetooth: hci0: unexpected event for opcode 0x0c25
[  325.868668][ T6159] usb 6-1: new low-speed USB device number 66 using dummy_hcd
[  325.935609][   T40] audit: type=1400 audit(1776657196.288:687): avc:  denied  { bind } for  pid=9892 comm="syz.0.1289" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  325.953815][   T40] audit: type=1400 audit(1776657196.288:688): avc:  denied  { node_bind } for  pid=9892 comm="syz.0.1289" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  326.080111][ T6159] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  326.123832][ T6159] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  326.128380][ T6159] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8
[  326.182221][ T6159] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  326.192535][ T6159] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.206366][ T5964] Bluetooth: hci4: command 0xfc11 tx timeout
[  326.220914][ T9885] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  326.231390][ T5957] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  326.343646][ T6159] hub 6-1:1.0: bad descriptor, ignoring hub
[  326.411596][ T6159] hub 6-1:1.0: probe with driver hub failed with error -5
[  326.419951][ T6159] cdc_wdm 6-1:1.0: skipping garbage
[  326.424157][ T6159] cdc_wdm 6-1:1.0: skipping garbage
[  326.451931][ T6159] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  326.459567][ T9900] FAULT_INJECTION: forcing a failure.
[  326.459567][ T9900] name failslab, interval 1, probability 0, space 0, times 0
[  326.493290][ T6159] cdc_wdm 6-1:1.0: Unknown control protocol
[  326.504774][ T9900] CPU: 0 UID: 0 PID: 9900 Comm: syz.0.1291 Not tainted syzkaller #0 PREEMPT(full) 
[  326.504800][ T9900] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  326.504813][ T9900] Call Trace:
[  326.504820][ T9900]  <TASK>
[  326.504826][ T9900]  dump_stack_lvl+0x100/0x190
[  326.504856][ T9900]  should_fail_ex.cold+0x5/0xa
[  326.504878][ T9900]  ? tomoyo_realpath_from_path+0xb6/0x690
[  326.504896][ T9900]  should_failslab+0xc2/0x120
[  326.504914][ T9900]  __kmalloc_noprof+0xe0/0x850
[  326.504935][ T9900]  ? kfree+0x1dd/0x6c0
[  326.504959][ T9900]  tomoyo_realpath_from_path+0xb6/0x690
[  326.504983][ T9900]  tomoyo_check_open_permission+0x2af/0x3c0
[  326.505010][ T9900]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  326.505043][ T9900]  ? hook_file_open+0x24e/0x7a0
[  326.505077][ T9900]  ? path_get+0x61/0x80
[  326.505100][ T9900]  tomoyo_file_open+0x6b/0x90
[  326.505122][ T9900]  security_file_open+0xb5/0x1e0
[  326.505142][ T9900]  do_dentry_open+0x5aa/0x1660
[  326.505160][ T9900]  ? security_inode_permission+0xbf/0x250
[  326.505178][ T9900]  vfs_open+0x82/0x3f0
[  326.505199][ T9900]  path_openat+0x208c/0x31a0
[  326.505230][ T9900]  ? __pfx_path_openat+0x10/0x10
[  326.505258][ T9900]  do_file_open+0x20e/0x430
[  326.505279][ T9900]  ? __pfx_do_file_open+0x10/0x10
[  326.505308][ T9900]  ? alloc_fd+0x476/0x790
[  326.505327][ T9900]  ? do_getname+0x191/0x390
[  326.505349][ T9900]  do_sys_openat2+0x10d/0x1e0
[  326.505369][ T9900]  ? __pfx_do_sys_openat2+0x10/0x10
[  326.505389][ T9900]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  326.505409][ T9900]  ? __fget_files+0x21f/0x3d0
[  326.505427][ T9900]  __x64_sys_openat+0x12d/0x210
[  326.505447][ T9900]  ? __pfx___x64_sys_openat+0x10/0x10
[  326.505467][ T9900]  ? ksys_write+0x1ac/0x250
[  326.505486][ T9900]  ? rcu_is_watching+0x12/0xc0
[  326.505511][ T9900]  do_syscall_64+0x10b/0xf80
[  326.505524][ T9900]  ? clear_bhb_loop+0x40/0x90
[  326.505543][ T9900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.505559][ T9900] RIP: 0033:0x7fce5eb9c819
[  326.505574][ T9900] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  326.505589][ T9900] RSP: 002b:00007fce5f9a7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  326.505605][ T9900] RAX: ffffffffffffffda RBX: 00007fce5ee15fa0 RCX: 00007fce5eb9c819
[  326.505616][ T9900] RDX: 0000000000080d02 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  326.505625][ T9900] RBP: 00007fce5f9a7090 R08: 0000000000000000 R09: 0000000000000000
[  326.505633][ T9900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  326.505643][ T9900] R13: 00007fce5ee16038 R14: 00007fce5ee15fa0 R15: 00007ffd19e12c08
[  326.505662][ T9900]  </TASK>
[  326.505670][ T9900] ERROR: Out of memory at tomoyo_realpath_from_path.
[  326.722809][   T40] audit: type=1400 audit(1776657197.058:689): avc:  denied  { setopt } for  pid=9901 comm="syz.2.1292" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  327.253718][ T9911] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains
[  327.268095][ T9911] sctp: [Deprecated]: syz.3.1295 (pid 9911) Use of struct sctp_assoc_value in delayed_ack socket option.
[  327.268095][ T9911] Use struct sctp_sack_info instead
[  327.684454][   T10] usb 7-1: new high-speed USB device number 57 using dummy_hcd
[  327.853961][   T10] usb 7-1: Using ep0 maxpacket: 8
[  327.864581][   T50] usb 6-1: USB disconnect, device number 66
[  327.902978][   T10] usb 7-1: config 0 has an invalid interface number: 186 but max is 0
[  327.906548][   T10] usb 7-1: config 0 has no interface number 0
[  327.909031][   T10] usb 7-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  327.919791][   T10] usb 7-1: config 0 interface 186 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  327.929282][   T10] usb 7-1: config 0 interface 186 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A
[  327.933705][   T10] usb 7-1: config 0 interface 186 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  327.942922][   T10] usb 7-1: config 0 interface 186 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  327.958010][   T10] usb 7-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  327.962670][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  327.974110][   T10] usb 7-1: Product: syz
[  327.980509][   T10] usb 7-1: Manufacturer: syz
[  327.985533][   T10] usb 7-1: SerialNumber: syz
[  327.997317][   T10] usb 7-1: config 0 descriptor??
[  328.223146][   T10] iowarrior 7-1:0.186: IOWarrior product=0x1505, serial=42424242 interface=186 now attached to iowarrior0
[  328.472049][   T50] usb 7-1: USB disconnect, device number 57
[  328.730199][ T6159] usb 6-1: new high-speed USB device number 67 using dummy_hcd
[  328.990973][ T6159] usb 6-1: Using ep0 maxpacket: 8
[  329.008671][ T6159] usb 6-1: config 0 has an invalid interface number: 186 but max is 0
[  329.031884][ T6159] usb 6-1: config 0 has no interface number 0
[  329.036248][ T6159] usb 6-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  329.067588][ T6159] usb 6-1: config 0 interface 186 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  329.071722][ T6159] usb 6-1: config 0 interface 186 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A
[  329.084405][ T6159] usb 6-1: config 0 interface 186 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  329.103544][ T6159] usb 6-1: config 0 interface 186 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  329.153500][ T6159] usb 6-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  329.170759][ T6159] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  329.195815][ T6159] usb 6-1: Product: syz
[  329.206278][ T6159] usb 6-1: Manufacturer: syz
[  329.218967][ T6159] usb 6-1: SerialNumber: syz
[  329.267589][ T6159] usb 6-1: config 0 descriptor??
[  329.496542][ T9946] FAULT_INJECTION: forcing a failure.
[  329.496542][ T9946] name failslab, interval 1, probability 0, space 0, times 0
[  329.508643][ T9946] CPU: 3 UID: 0 PID: 9946 Comm: syz.2.1308 Not tainted syzkaller #0 PREEMPT(full) 
[  329.508673][ T9946] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  329.508684][ T9946] Call Trace:
[  329.508691][ T9946]  <TASK>
[  329.508699][ T9946]  dump_stack_lvl+0x100/0x190
[  329.508730][ T9946]  should_fail_ex.cold+0x5/0xa
[  329.508757][ T9946]  should_failslab+0xc2/0x120
[  329.508778][ T9946]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  329.508804][ T9946]  ? skb_clone+0x190/0x400
[  329.508830][ T9946]  skb_clone+0x190/0x400
[  329.508849][ T9946]  netlink_deliver_tap+0xaed/0xcc0
[  329.508881][ T9946]  netlink_unicast+0x62b/0x850
[  329.508908][ T9946]  ? __pfx_netlink_unicast+0x10/0x10
[  329.508947][ T9946]  netlink_sendmsg+0x8b0/0xda0
[  329.508976][ T9946]  ? __pfx_netlink_sendmsg+0x10/0x10
[  329.508986][ T6159] iowarrior 6-1:0.186: IOWarrior product=0x1505, serial=42424242 interface=186 now attached to iowarrior0
[  329.508999][ T9946]  ? __might_fault+0x50/0x140
[  329.509033][ T9946]  ____sys_sendmsg+0x9e1/0xb70
[  329.509058][ T9946]  ? __pfx_netlink_sendmsg+0x10/0x10
[  329.509084][ T9946]  ? __pfx_____sys_sendmsg+0x10/0x10
[  329.509120][ T9946]  ___sys_sendmsg+0x190/0x1e0
[  329.509147][ T9946]  ? __pfx____sys_sendmsg+0x10/0x10
[  329.509713][ T9946]  __sys_sendmsg+0x170/0x220
[  329.509960][ T9946]  ? __pfx___sys_sendmsg+0x10/0x10
[  329.510898][ T9946]  ? rcu_is_watching+0x12/0xc0
[  329.510944][ T9946]  do_syscall_64+0x10b/0xf80
[  329.511411][ T9946]  ? clear_bhb_loop+0x40/0x90
[  329.511437][ T9946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.511456][ T9946] RIP: 0033:0x7f5433b9c819
[  329.511474][ T9946] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  329.511493][ T9946] RSP: 002b:00007f5434a64028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  329.511513][ T9946] RAX: ffffffffffffffda RBX: 00007f5433e15fa0 RCX: 00007f5433b9c819
[  329.511525][ T9946] RDX: 0000000024004810 RSI: 0000200000000140 RDI: 0000000000000003
[  329.511536][ T9946] RBP: 00007f5434a64090 R08: 0000000000000000 R09: 0000000000000000
[  329.511546][ T9946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  329.511558][ T9946] R13: 00007f5433e16038 R14: 00007f5433e15fa0 R15: 00007fff9805b728
[  329.511583][ T9946]  </TASK>
[  329.575286][ T6310] usb 5-1: new high-speed USB device number 65 using dummy_hcd
[  329.747304][   T40] audit: type=1400 audit(1776657200.098:690): avc:  denied  { setopt } for  pid=9933 comm="syz.1.1303" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  329.749251][ T9935] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  329.805250][ T9935] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  329.814925][ T6310] usb 5-1: Using ep0 maxpacket: 8
[  329.829753][ T6310] usb 5-1: config index 0 descriptor too short (expected 74, got 45)
[  329.843023][ T6310] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  329.867421][ T6310] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  329.882090][ T6310] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 30768, setting to 1024
[  329.895424][   T50] usb 6-1: USB disconnect, device number 67
[  329.909813][ T6310] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  329.919513][ T6310] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  329.933581][ T6310] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  329.942296][ T6310] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  330.011316][   T40] audit: type=1400 audit(1776657200.358:691): avc:  denied  { create } for  pid=9947 comm="syz.2.1309" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  330.034394][   T40] audit: type=1400 audit(1776657200.358:692): avc:  denied  { sys_admin } for  pid=9947 comm="syz.2.1309" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  330.208075][ T6310] usb 5-1: usb_control_msg returned -32
[  330.221956][ T6310] usbtmc 5-1:16.0: can't read capabilities
[  330.559337][ T9961] FAULT_INJECTION: forcing a failure.
[  330.559337][ T9961] name failslab, interval 1, probability 0, space 0, times 0
[  330.566271][ T9961] CPU: 0 UID: 0 PID: 9961 Comm: syz.1.1311 Not tainted syzkaller #0 PREEMPT(full) 
[  330.566303][ T9961] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  330.566314][ T9961] Call Trace:
[  330.566323][ T9961]  <TASK>
[  330.566331][ T9961]  dump_stack_lvl+0x100/0x190
[  330.566364][ T9961]  should_fail_ex.cold+0x5/0xa
[  330.566393][ T9961]  ? tomoyo_realpath_from_path+0xb6/0x690
[  330.566416][ T9961]  should_failslab+0xc2/0x120
[  330.566437][ T9961]  __kmalloc_noprof+0xe0/0x850
[  330.566465][ T9961]  ? kfree+0x1dd/0x6c0
[  330.566493][ T9961]  tomoyo_realpath_from_path+0xb6/0x690
[  330.566521][ T9961]  tomoyo_check_open_permission+0x2af/0x3c0
[  330.566552][ T9961]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  330.566595][ T9961]  ? hook_file_open+0x24e/0x7a0
[  330.566662][ T9961]  ? path_get+0x61/0x80
[  330.566693][ T9961]  tomoyo_file_open+0x6b/0x90
[  330.566719][ T9961]  security_file_open+0xb5/0x1e0
[  330.566744][ T9961]  do_dentry_open+0x5aa/0x1660
[  330.566767][ T9961]  ? security_inode_permission+0xbf/0x250
[  330.566790][ T9961]  vfs_open+0x82/0x3f0
[  330.566819][ T9961]  path_openat+0x208c/0x31a0
[  330.566850][ T9961]  ? __pfx_path_openat+0x10/0x10
[  330.566883][ T9961]  do_file_open+0x20e/0x430
[  330.566909][ T9961]  ? __pfx_do_file_open+0x10/0x10
[  330.566951][ T9961]  ? alloc_fd+0x476/0x790
[  330.566978][ T9961]  ? do_getname+0x191/0x390
[  330.567012][ T9961]  do_sys_openat2+0x10d/0x1e0
[  330.567039][ T9961]  ? __pfx_do_sys_openat2+0x10/0x10
[  330.567063][ T9961]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  330.567091][ T9961]  ? __fget_files+0x21f/0x3d0
[  330.567117][ T9961]  __x64_sys_openat+0x12d/0x210
[  330.567144][ T9961]  ? __pfx___x64_sys_openat+0x10/0x10
[  330.567183][ T9961]  ? ksys_write+0x1ac/0x250
[  330.567207][ T9961]  ? rcu_is_watching+0x12/0xc0
[  330.567241][ T9961]  do_syscall_64+0x10b/0xf80
[  330.567261][ T9961]  ? clear_bhb_loop+0x40/0x90
[  330.567286][ T9961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.567307][ T9961] RIP: 0033:0x7f586735d04e
[  330.567325][ T9961] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  330.567344][ T9961] RSP: 002b:00007f5868291b28 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  330.567365][ T9961] RAX: ffffffffffffffda RBX: 00007f58682926c0 RCX: 00007f586735d04e
[  330.567379][ T9961] RDX: 0000000000000002 RSI: 00007f5868291c00 RDI: ffffffffffffff9c
[  330.567391][ T9961] RBP: 00007f5868291c00 R08: 0000000000000000 R09: 0000000000000000
[  330.567404][ T9961] R10: 0000000000000000 R11: 0000000000000246 R12: cccccccccccccccd
[  330.567416][ T9961] R13: 00007f5867616128 R14: 00007f5867616090 R15: 00007ffc8cea1da8
[  330.567442][ T9961]  </TASK>
[  330.567554][ T9961] ERROR: Out of memory at tomoyo_realpath_from_path.
[  331.089330][ T9971] FAULT_INJECTION: forcing a failure.
[  331.089330][ T9971] name failslab, interval 1, probability 0, space 0, times 0
[  331.096008][ T9971] CPU: 2 UID: 0 PID: 9971 Comm: syz.2.1314 Not tainted syzkaller #0 PREEMPT(full) 
[  331.096035][ T9971] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  331.096045][ T9971] Call Trace:
[  331.096053][ T9971]  <TASK>
[  331.096059][ T9971]  dump_stack_lvl+0x100/0x190
[  331.096089][ T9971]  should_fail_ex.cold+0x5/0xa
[  331.096112][ T9971]  ? tomoyo_realpath_from_path+0xb6/0x690
[  331.096133][ T9971]  should_failslab+0xc2/0x120
[  331.096152][ T9971]  __kmalloc_noprof+0xe0/0x850
[  331.096185][ T9971]  ? kfree+0x1dd/0x6c0
[  331.096211][ T9971]  tomoyo_realpath_from_path+0xb6/0x690
[  331.096236][ T9971]  tomoyo_check_open_permission+0x2af/0x3c0
[  331.096262][ T9971]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  331.096296][ T9971]  ? hook_file_open+0x24e/0x7a0
[  331.096328][ T9971]  ? lock_acquire+0x1b1/0x370
[  331.096357][ T9971]  tomoyo_file_open+0x6b/0x90
[  331.096380][ T9971]  security_file_open+0xb5/0x1e0
[  331.096398][ T9971]  do_dentry_open+0x5aa/0x1660
[  331.096424][ T9971]  vfs_open+0x82/0x3f0
[  331.096450][ T9971]  path_openat+0x208c/0x31a0
[  331.096478][ T9971]  ? __pfx_path_openat+0x10/0x10
[  331.096506][ T9971]  do_file_open+0x20e/0x430
[  331.096529][ T9971]  ? __pfx_do_file_open+0x10/0x10
[  331.096570][ T9971]  ? alloc_fd+0x476/0x790
[  331.096595][ T9971]  ? do_getname+0x191/0x390
[  331.096622][ T9971]  do_sys_openat2+0x10d/0x1e0
[  331.096645][ T9971]  ? __pfx_do_sys_openat2+0x10/0x10
[  331.096666][ T9971]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  331.096690][ T9971]  ? __fget_files+0x21f/0x3d0
[  331.096713][ T9971]  __x64_sys_openat+0x12d/0x210
[  331.096736][ T9971]  ? __pfx___x64_sys_openat+0x10/0x10
[  331.096757][ T9971]  ? ksys_write+0x1ac/0x250
[  331.096777][ T9971]  ? rcu_is_watching+0x12/0xc0
[  331.096805][ T9971]  do_syscall_64+0x10b/0xf80
[  331.096821][ T9971]  ? clear_bhb_loop+0x40/0x90
[  331.096842][ T9971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.096859][ T9971] RIP: 0033:0x7f5433b9c819
[  331.096875][ T9971] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  331.096891][ T9971] RSP: 002b:00007f5434a64028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  331.096909][ T9971] RAX: ffffffffffffffda RBX: 00007f5433e15fa0 RCX: 00007f5433b9c819
[  331.096919][ T9971] RDX: 00000000000c8a02 RSI: 0000200000000180 RDI: ffffffffffffff9c
[  331.096929][ T9971] RBP: 00007f5434a64090 R08: 0000000000000000 R09: 0000000000000000
[  331.096939][ T9971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  331.096949][ T9971] R13: 00007f5433e16038 R14: 00007f5433e15fa0 R15: 00007fff9805b728
[  331.096973][ T9971]  </TASK>
[  331.096982][ T9971] ERROR: Out of memory at tomoyo_realpath_from_path.
[  331.184659][   T50] usb 6-1: new low-speed USB device number 68 using dummy_hcd
[  331.418752][   T40] audit: type=1800 audit(1776657201.768:693): pid=9971 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.2.1314" name="bus" dev="ramfs" ino=35335 res=0 errno=0
[  331.631869][   T50] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  331.643555][   T50] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  331.684217][   T50] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  331.695057][   T50] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  331.707891][ T9976] syzkaller1: entered promiscuous mode
[  331.710881][ T9976] syzkaller1: entered allmulticast mode
[  331.710998][   T50] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  331.744542][   T50] hub 6-1:1.0: bad descriptor, ignoring hub
[  331.770136][   T50] hub 6-1:1.0: probe with driver hub failed with error -5
[  331.782242][   T50] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[  331.891523][ T9981] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  331.907878][ T9981] syzkaller0: entered promiscuous mode
[  331.909998][ T9981] syzkaller0: entered allmulticast mode
[  332.025812][ T9981] FAULT_INJECTION: forcing a failure.
[  332.025812][ T9981] name failslab, interval 1, probability 0, space 0, times 0
[  332.032099][ T9981] CPU: 2 UID: 0 PID: 9981 Comm: syz.3.1318 Not tainted syzkaller #0 PREEMPT(full) 
[  332.032124][ T9981] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  332.032133][ T9981] Call Trace:
[  332.032140][ T9981]  <TASK>
[  332.032146][ T9981]  dump_stack_lvl+0x100/0x190
[  332.032173][ T9981]  should_fail_ex.cold+0x5/0xa
[  332.032194][ T9981]  ? tomoyo_realpath_from_path+0xb6/0x690
[  332.032217][ T9981]  should_failslab+0xc2/0x120
[  332.032233][ T9981]  __kmalloc_noprof+0xe0/0x850
[  332.032253][ T9981]  ? kfree+0x1dd/0x6c0
[  332.032274][ T9981]  tomoyo_realpath_from_path+0xb6/0x690
[  332.032295][ T9981]  tomoyo_path_number_perm+0x23c/0x580
[  332.032317][ T9981]  ? tomoyo_path_number_perm+0x22e/0x580
[  332.032339][ T9981]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  332.032381][ T9981]  ? find_held_lock+0x2b/0x80
[  332.032394][ T9981]  ? __fget_files+0x215/0x3d0
[  332.032411][ T9981]  ? hook_file_ioctl_common+0x149/0x410
[  332.032429][ T9981]  ? __fget_files+0x215/0x3d0
[  332.032449][ T9981]  ? __fget_files+0x21f/0x3d0
[  332.032469][ T9981]  security_file_ioctl+0xd3/0x230
[  332.032485][ T9981]  __x64_sys_ioctl+0xb7/0x210
[  332.032501][ T9981]  do_syscall_64+0x10b/0xf80
[  332.032516][ T9981]  ? clear_bhb_loop+0x40/0x90
[  332.032534][ T9981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.032549][ T9981] RIP: 0033:0x7fc7c479c819
[  332.032562][ T9981] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  332.032576][ T9981] RSP: 002b:00007fc7c55f1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  332.032592][ T9981] RAX: ffffffffffffffda RBX: 00007fc7c4a15fa0 RCX: 00007fc7c479c819
[  332.032601][ T9981] RDX: 0000200000002280 RSI: 0000000000008922 RDI: 0000000000000005
[  332.032610][ T9981] RBP: 00007fc7c55f1090 R08: 0000000000000000 R09: 0000000000000000
[  332.032618][ T9981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  332.032627][ T9981] R13: 00007fc7c4a16038 R14: 00007fc7c4a15fa0 R15: 00007fff134787b8
[  332.032647][ T9981]  </TASK>
[  332.032997][ T9981] ERROR: Out of memory at tomoyo_realpath_from_path.
[  332.285643][   T50] usb 6-1: USB disconnect, device number 68
[  332.296521][ T9981] tipc: Resetting bearer <eth:syzkaller0>
[  332.394558][ T9980] tipc: Resetting bearer <eth:syzkaller0>
[  332.396675][ T6056] usb 5-1: USB disconnect, device number 65
[  332.581364][ T9980] tipc: Disabling bearer <eth:syzkaller0>
[  332.739414][ T9986] FAULT_INJECTION: forcing a failure.
[  332.739414][ T9986] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  332.745597][ T9986] CPU: 2 UID: 0 PID: 9986 Comm: syz.3.1320 Not tainted syzkaller #0 PREEMPT(full) 
[  332.745626][ T9986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  332.745638][ T9986] Call Trace:
[  332.745646][ T9986]  <TASK>
[  332.745654][ T9986]  dump_stack_lvl+0x100/0x190
[  332.745686][ T9986]  should_fail_ex.cold+0x5/0xa
[  332.745714][ T9986]  _copy_from_user+0x2e/0xd0
[  332.745739][ T9986]  userfaultfd_ioctl+0x1c78/0x3890
[  332.745768][ T9986]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  332.745920][ T9986]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  332.745941][ T9986]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  332.745975][ T9986]  ? selinux_file_ioctl+0x13b/0x290
[  332.745995][ T9986]  ? selinux_file_ioctl+0xb6/0x290
[  332.746014][ T9986]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  332.746038][ T9986]  ? __x64_sys_ioctl+0x18e/0x210
[  332.746054][ T9986]  __x64_sys_ioctl+0x18e/0x210
[  332.746074][ T9986]  do_syscall_64+0x10b/0xf80
[  332.746094][ T9986]  ? clear_bhb_loop+0x40/0x90
[  332.746116][ T9986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.746135][ T9986] RIP: 0033:0x7fc7c479c819
[  332.746151][ T9986] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  332.746174][ T9986] RSP: 002b:00007fc7c55f1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  332.746194][ T9986] RAX: ffffffffffffffda RBX: 00007fc7c4a15fa0 RCX: 00007fc7c479c819
[  332.746206][ T9986] RDX: 0000200000000000 RSI: 00000000c020aa04 RDI: 0000000000000003
[  332.746218][ T9986] RBP: 00007fc7c55f1090 R08: 0000000000000000 R09: 0000000000000000
[  332.746228][ T9986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  332.746239][ T9986] R13: 00007fc7c4a16038 R14: 00007fc7c4a15fa0 R15: 00007fff134787b8
[  332.746264][ T9986]  </TASK>
[  332.860268][ T6056] usb 5-1: new low-speed USB device number 66 using dummy_hcd
[  332.926698][ T9992] loop6: detected capacity change from 0 to 2640
[  332.936293][ T5966] buffer_io_error: 11 callbacks suppressed
[  332.936311][ T5966] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.949294][ T5966] Buffer I/O error on dev loop6, logical block 0, async page read
[  333.013749][ T5966] Buffer I/O error on dev loop6, logical block 0, async page read
[  333.018333][ T9992] Buffer I/O error on dev loop6, logical block 0, async page read
[  333.021872][ T9992] Buffer I/O error on dev loop6, logical block 0, async page read
[  333.029968][ T9992] Buffer I/O error on dev loop6, logical block 0, async page read
[  333.051937][    C3] ==================================================================
[  333.055358][    C3] BUG: KASAN: slab-use-after-free in _raw_spin_lock_irqsave+0x3a/0x60
[  333.060862][ T9992] Buffer I/O error on dev loop6, logical block 0, async page read
[  333.071976][    C3] Read of size 1 at addr ffff888056657418 by task kworker/u32:11/3760
[  333.072005][    C3] 
[  333.072019][    C3] CPU: 3 UID: 0 PID: 3760 Comm: kworker/u32:11 Not tainted syzkaller #0 PREEMPT(full) 
[  333.072039][    C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  333.072053][    C3] Workqueue: events_unbound toggle_allocation_gate
[  333.072088][    C3] Call Trace:
[  333.072099][    C3]  <IRQ>
[  333.072108][    C3]  dump_stack_lvl+0x100/0x190
[  333.072130][    C3]  print_report+0x13d/0x4b0
[  333.072219][    C3]  ? __virt_addr_valid+0x239/0x430
[  333.072404][    C3]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  333.072429][    C3]  kasan_report+0xdf/0x1d0
[  333.072447][    C3]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  333.072470][    C3]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  333.072493][    C3]  __kasan_check_byte+0x36/0x50
[  333.072510][    C3]  lock_acquire+0x12a/0x370
[  333.072530][    C3]  ? do_raw_spin_unlock+0x53/0x1e0
[  333.072551][    C3]  ? .slowpath+0x9/0x18
[  333.072576][    C3]  _raw_spin_lock_irqsave+0x3a/0x60
[  333.072598][    C3]  ? p9_req_put+0xaf/0x250
[  333.072719][    C3]  p9_req_put+0xaf/0x250
[  333.072735][    C3]  req_done+0x1dc/0x2e0
[  333.072758][    C3]  ? __pfx_req_done+0x10/0x10
[  333.072780][    C3]  ? __pfx_req_done+0x10/0x10
[  333.072801][    C3]  vring_interrupt+0x2ef/0x650
[  333.072827][    C3]  ? __pfx_vring_interrupt+0x10/0x10
[  333.072850][    C3]  __handle_irq_event_percpu+0x235/0x8c0
[  333.072878][    C3]  handle_irq_event+0xab/0x1e0
[  333.072902][    C3]  handle_edge_irq+0x35e/0x960
[  333.072928][    C3]  __common_interrupt+0xd8/0x2f0
[  333.073059][    C3]  common_interrupt+0xb9/0xe0
[  333.073082][    C3]  </IRQ>
[  333.073088][    C3]  <TASK>
[  333.073095][    C3]  asm_common_interrupt+0x26/0x40
[  333.073113][    C3] RIP: 0010:write_comp_data+0x10/0x90
[  333.073131][    C3] Code: 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 65 8b 05 b9 1d 0a 12 49 89 f8 49 89 f1 49 89 d2 <65> 48 8b 3d 90 1d 0a 12 a9 00 01 ff 00 74 1b f6 c4 01 74 07 a9 00
[  333.073147][    C3] RSP: 0018:ffffc90026f07868 EFLAGS: 00000202
[  333.073162][    C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffff81fcf98d
[  333.073173][    C3] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000005
[  333.073187][    C3] RBP: ffff88806a5431a0 R08: 0000000000000005 R09: 0000000000000000
[  333.073198][    C3] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000003
[  333.073208][    C3] R13: ffffed100d4a8635 R14: 0000000000000001 R15: ffff88806a73c580
[  333.073222][    C3]  ? smp_call_function_many_cond+0x5ad/0x1700
[  333.073305][    C3]  smp_call_function_many_cond+0x5ad/0x1700
[  333.073325][    C3]  ? __pfx_do_sync_core+0x10/0x10
[  333.073350][    C3]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  333.073369][    C3]  ? __pfx_text_poke_memcpy+0x10/0x10
[  333.073392][    C3]  ? __pfx___text_poke+0x10/0x10
[  333.073415][    C3]  ? __pfx_do_sync_core+0x10/0x10
[  333.073436][    C3]  on_each_cpu_cond_mask+0x40/0x90
[  333.073456][    C3]  ? kmem_cache_alloc_from_sheaf_noprof+0x39/0x190
[  333.073473][    C3]  smp_text_poke_batch_finish+0x337/0xc60
[  333.073500][    C3]  ? __pfx_smp_text_poke_batch_finish+0x10/0x10
[  333.073526][    C3]  ? arch_jump_label_transform_queue+0xc0/0x120
[  333.073543][    C3]  ? find_held_lock+0x2b/0x80
[  333.073560][    C3]  arch_jump_label_transform_apply+0x1c/0x30
[  333.073576][    C3]  jump_label_update+0x37a/0x550
[  333.073650][    C3]  static_key_enable_cpuslocked+0x1bc/0x270
[  333.073669][    C3]  static_key_enable+0x1a/0x20
[  333.073686][    C3]  toggle_allocation_gate+0xfe/0x2d0
[  333.073711][    C3]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  333.073737][    C3]  ? rcu_is_watching+0x12/0xc0
[  333.073763][    C3]  process_one_work+0xa0e/0x1980
[  333.073843][    C3]  ? __pfx_process_one_work+0x10/0x10
[  333.073866][    C3]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  333.073891][    C3]  worker_thread+0x5ef/0xe50
[  333.073913][    C3]  ? __pfx_worker_thread+0x10/0x10
[  333.073932][    C3]  ? kthread+0x13a/0x450
[  333.074004][    C3]  ? __pfx_worker_thread+0x10/0x10
[  333.074023][    C3]  kthread+0x370/0x450
[  333.074040][    C3]  ? __pfx_kthread+0x10/0x10
[  333.074058][    C3]  ret_from_fork+0x72b/0xd50
[  333.074389][    C3]  ? __pfx_ret_from_fork+0x10/0x10
[  333.074411][    C3]  ? __switch_to+0x800/0x1100
[  333.074491][    C3]  ? __pfx_kthread+0x10/0x10
[  333.074509][    C3]  ret_from_fork_asm+0x1a/0x30
[  333.074537][    C3]  </TASK>
[  333.074544][    C3] 
[  333.074549][    C3] Allocated by task 9996:
[  333.074559][    C3]  kasan_save_stack+0x30/0x50
[  333.074583][    C3]  kasan_save_track+0x14/0x30
[  333.074622][    C3]  __kasan_kmalloc+0xaa/0xb0
[  333.074644][    C3]  p9_client_create+0xaf/0xd40
[  333.074658][    C3]  v9fs_session_init+0x40/0xce0
[  333.074677][    C3]  v9fs_get_tree+0xb8/0xb50
[  333.074696][    C3]  vfs_get_tree+0x92/0x320
[  333.074720][    C3]  path_mount+0x7d0/0x23d0
[  333.074740][    C3]  __x64_sys_mount+0x293/0x310
[  333.074757][    C3]  do_syscall_64+0x10b/0xf80
[  333.074767][    C3]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.074780][    C3] 
[  333.074784][    C3] Freed by task 9996:
[  333.074791][    C3]  kasan_save_stack+0x30/0x50
[  333.074810][    C3]  kasan_save_track+0x14/0x30
[  333.074828][    C3]  kasan_save_free_info+0x3b/0x70
[  333.074846][    C3]  __kasan_slab_free+0x5f/0x80
[  333.074865][    C3]  kfree+0x223/0x6c0
[  333.074882][    C3]  p9_client_create+0x72d/0xd40
[  333.074895][    C3]  v9fs_session_init+0x40/0xce0
[  333.074909][    C3]  v9fs_get_tree+0xb8/0xb50
[  333.074925][    C3]  vfs_get_tree+0x92/0x320
[  333.074944][    C3]  path_mount+0x7d0/0x23d0
[  333.074960][    C3]  __x64_sys_mount+0x293/0x310
[  333.074978][    C3]  do_syscall_64+0x10b/0xf80
[  333.074991][    C3]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.075005][    C3] 
[  333.075011][    C3] The buggy address belongs to the object at ffff888056657400
[  333.075011][    C3]  which belongs to the cache kmalloc-512 of size 512
[  333.075023][    C3] The buggy address is located 24 bytes inside of
[  333.075023][    C3]  freed 512-byte region [ffff888056657400, ffff888056657600)
[  333.075037][    C3] 
[  333.075042][    C3] The buggy address belongs to the physical page:
[  333.075050][    C3] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x56654
[  333.075064][    C3] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  333.075078][    C3] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  333.075094][    C3] page_type: f5(slab)
[  333.075109][    C3] raw: 00fff00000000040 ffff88801b842c80 dead000000000100 dead000000000122
[  333.075123][    C3] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  333.075136][    C3] head: 00fff00000000040 ffff88801b842c80 dead000000000100 dead000000000122
[  333.075147][    C3] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  333.075158][    C3] head: 00fff00000000002 ffffffffffffff01 00000000ffffffff 00000000ffffffff
[  333.075172][    C3] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  333.075188][    C3] page dumped because: kasan: bad access detected
[  333.075196][    C3] page_owner tracks the page as allocated
[  333.075202][    C3] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5959, tgid 5959 (syz-executor), ts 63371818542, free_ts 0
[  333.075228][    C3]  post_alloc_hook+0x153/0x170
[  333.075248][    C3]  get_page_from_freelist+0x11a6/0x33b0
[  333.075267][    C3]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  333.075284][    C3]  new_slab+0xa6/0x6c0
[  333.075298][    C3]  refill_objects+0x277/0x420
[  333.075313][    C3]  __pcs_replace_empty_main+0x375/0x650
[  333.075338][    C3]  __kmalloc_cache_noprof+0x493/0x6f0
[  333.075354][    C3]  device_add+0xd3a/0x1920
[  333.075501][    C3]  device_create_groups_vargs+0x1f8/0x270
[  333.075522][    C3]  device_create+0xed/0x130
[  333.075542][    C3]  macvtap_device_event+0x301/0x3c0
[  333.075564][    C3]  notifier_call_chain+0x99/0x400
[  333.075582][    C3]  call_netdevice_notifiers_info+0xbe/0x110
[  333.075604][    C3]  register_netdevice+0x16e6/0x2210
[  333.075622][    C3]  macvlan_common_newlink+0xf70/0x18b0
[  333.075640][    C3]  macvtap_newlink+0x17a/0x240
[  333.075659][    C3] page_owner free stack trace missing
[  333.075665][    C3] 
[  333.075669][    C3] Memory state around the buggy address:
[  333.075678][    C3]  ffff888056657300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  333.075690][    C3]  ffff888056657380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  333.075702][    C3] >ffff888056657400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  333.075712][    C3]                             ^
[  333.075721][    C3]  ffff888056657480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  333.075733][    C3]  ffff888056657500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  333.075742][    C3] ==================================================================
[  333.075752][    C3] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  333.075766][    C3] CPU: 3 UID: 0 PID: 3760 Comm: kworker/u32:11 Not tainted syzkaller #0 PREEMPT(full) 
[  333.075785][    C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  333.075798][    C3] Workqueue: events_unbound toggle_allocation_gate
[  333.075824][    C3] Call Trace:
[  333.075831][    C3]  <IRQ>
[  333.075838][    C3]  dump_stack_lvl+0x100/0x190
[  333.075858][    C3]  vpanic+0x552/0x970
[  333.075874][    C3]  ? __pfx_vpanic+0x10/0x10
[  333.075890][    C3]  ? __pfx_vprintk_emit+0x10/0x10
[  333.075917][    C3]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  333.075938][    C3]  panic+0xd1/0xe0
[  333.075953][    C3]  ? __pfx_panic+0x10/0x10
[  333.075970][    C3]  ? end_report.part.0+0x23/0x90
[  333.075992][    C3]  ? rcu_is_watching+0x12/0xc0
[  333.076017][    C3]  ? end_report.part.0+0x23/0x90
[  333.076038][    C3]  ? check_panic_on_warn+0x1f/0x90
[  333.076058][    C3]  check_panic_on_warn.cold+0x19/0x34
[  333.076076][    C3]  end_report.part.0+0x3a/0x90
[  333.076098][    C3]  kasan_report.cold+0xe/0x18
[  333.076121][    C3]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  333.076144][    C3]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  333.076166][    C3]  __kasan_check_byte+0x36/0x50
[  333.076187][    C3]  lock_acquire+0x12a/0x370
[  333.076207][    C3]  ? do_raw_spin_unlock+0x53/0x1e0
[  333.076230][    C3]  ? .slowpath+0x9/0x18
[  333.076254][    C3]  _raw_spin_lock_irqsave+0x3a/0x60
[  333.076277][    C3]  ? p9_req_put+0xaf/0x250
[  333.076292][    C3]  p9_req_put+0xaf/0x250
[  333.076308][    C3]  req_done+0x1dc/0x2e0
[  333.076331][    C3]  ? __pfx_req_done+0x10/0x10
[  333.076353][    C3]  ? __pfx_req_done+0x10/0x10
[  333.076375][    C3]  vring_interrupt+0x2ef/0x650
[  333.076400][    C3]  ? __pfx_vring_interrupt+0x10/0x10
[  333.076423][    C3]  __handle_irq_event_percpu+0x235/0x8c0
[  333.076451][    C3]  handle_irq_event+0xab/0x1e0
[  333.076475][    C3]  handle_edge_irq+0x35e/0x960
[  333.076500][    C3]  __common_interrupt+0xd8/0x2f0
[  333.076519][    C3]  common_interrupt+0xb9/0xe0
[  333.076539][    C3]  </IRQ>
[  333.076545][    C3]  <TASK>
[  333.076552][    C3]  asm_common_interrupt+0x26/0x40
[  333.076569][    C3] RIP: 0010:write_comp_data+0x10/0x90
[  333.076587][    C3] Code: 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 65 8b 05 b9 1d 0a 12 49 89 f8 49 89 f1 49 89 d2 <65> 48 8b 3d 90 1d 0a 12 a9 00 01 ff 00 74 1b f6 c4 01 74 07 a9 00
[  333.076603][    C3] RSP: 0018:ffffc90026f07868 EFLAGS: 00000202
[  333.076618][    C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffff81fcf98d
[  333.076629][    C3] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000005
[  333.076639][    C3] RBP: ffff88806a5431a0 R08: 0000000000000005 R09: 0000000000000000
[  333.076650][    C3] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000003
[  333.076660][    C3] R13: ffffed100d4a8635 R14: 0000000000000001 R15: ffff88806a73c580
[  333.076675][    C3]  ? smp_call_function_many_cond+0x5ad/0x1700
[  333.076697][    C3]  smp_call_function_many_cond+0x5ad/0x1700
[  333.076719][    C3]  ? __pfx_do_sync_core+0x10/0x10
[  333.076743][    C3]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  333.076763][    C3]  ? __pfx_text_poke_memcpy+0x10/0x10
[  333.076787][    C3]  ? __pfx___text_poke+0x10/0x10
[  333.076809][    C3]  ? __pfx_do_sync_core+0x10/0x10
[  333.076830][    C3]  on_each_cpu_cond_mask+0x40/0x90
[  333.076850][    C3]  ? kmem_cache_alloc_from_sheaf_noprof+0x39/0x190
[  333.076867][    C3]  smp_text_poke_batch_finish+0x337/0xc60
[  333.076894][    C3]  ? __pfx_smp_text_poke_batch_finish+0x10/0x10
[  333.076920][    C3]  ? arch_jump_label_transform_queue+0xc0/0x120
[  333.076936][    C3]  ? find_held_lock+0x2b/0x80
[  333.076955][    C3]  arch_jump_label_transform_apply+0x1c/0x30
[  333.076972][    C3]  jump_label_update+0x37a/0x550
[  333.076992][    C3]  static_key_enable_cpuslocked+0x1bc/0x270
[  333.077011][    C3]  static_key_enable+0x1a/0x20
[  333.077029][    C3]  toggle_allocation_gate+0xfe/0x2d0
[  333.077053][    C3]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  333.077078][    C3]  ? rcu_is_watching+0x12/0xc0
[  333.077103][    C3]  process_one_work+0xa0e/0x1980
[  333.077128][    C3]  ? __pfx_process_one_work+0x10/0x10
[  333.077151][    C3]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  333.077176][    C3]  worker_thread+0x5ef/0xe50
[  333.077203][    C3]  ? __pfx_worker_thread+0x10/0x10
[  333.077224][    C3]  ? kthread+0x13a/0x450
[  333.077241][    C3]  ? __pfx_worker_thread+0x10/0x10
[  333.077260][    C3]  kthread+0x370/0x450
[  333.077278][    C3]  ? __pfx_kthread+0x10/0x10
[  333.077296][    C3]  ret_from_fork+0x72b/0xd50
[  333.077316][    C3]  ? __pfx_ret_from_fork+0x10/0x10
[  333.077336][    C3]  ? __switch_to+0x800/0x1100
[  333.077358][    C3]  ? __pfx_kthread+0x10/0x10
[  333.077377][    C3]  ret_from_fork_asm+0x1a/0x30
[  333.077403][    C3]  </TASK>
[  333.097101][    C3] Kernel Offset: disabled

VM DIAGNOSIS:
03:53:23  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080000001 RBX=0000000000000001 RCX=0000000000000000 RDX=0000000080000001
RSI=ffffffff8c1c1280 RDI=0000000000000001 RBP=000000cb7bae56f8 RSP=ffffc900049ffaa8
R8 =0000000000000000 R9 =0000000000001188 R10=ffff88816dd35257 R11=0000000000000000
R12=0000000000000000 R13=00000000000032c9 R14=ffffffff8e9da0c0 R15=dffffc0000000000
RIP=ffffffff81d58858 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d62e7000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fc7c47e9f00 CR3=000000005f2a7000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fe00ff00 Opmask01=000000000000007f Opmask02=00000000fffeff7f Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000562678f9abf0 0000562678f9abf0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000562678da45e0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbf2117b20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbf2117b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff00ffffff00 ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 737325550baf1593 7373255533c2c6c3
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737273737326 7373737373737373
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4a414d003d454d 414e564544003d58 45444e494649003d 4550595456454400
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4a414d0018454d 414e564544001858 45444e4946490018 4550595456454400
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000562678e1c880 00007fdbf2117b70 0000000000000061 0000000000302e36
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 003a6166703a756b 733a302e30312d35 33712d6370727663 3a3174633a554d45
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 516e76633a302e30 312d3533712d6370 7276703a29393030 322c394843492b35
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3351284350647261 646e6174536e703a 554d45516e76733a 302e3072623a3431
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 30322f31302f3430 64623a322d332e36 312e312d6e616962 65642d332e36312e
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000014100 000000000000303d 44440045525f5346 0054242044492065
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81ae60a3 RDX=ffff888025a60000
RSI=ffffffff81ae60eb RDI=ffffffff9418be40 RBP=0000000000000000 RSP=ffffc900006a0fd0
R8 =0000000000000001 R9 =fffffbfff28317c8 R10=ffffffff9418be47 R11=ffffc900006a0ff8
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81ae60ec RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00000000
FS =0000 00007f58682b36c0 ffffffff 00000000
GS =0000 ffff8880d63e7000 ffffffff 00000000
LDT=0000 0000000000000000 ffffffff 00000000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f5434a21ff8 CR3=0000000013a53000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 726573755f757063 7265705f65676173
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff9805bc16
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff9805bc16 00007fff9805bc1c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5433c33274
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5433c332b4
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5433c33418
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5433c332a6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6379656b00657461 69746e6174736e69 246c746379656b00 7974697275636573
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 00000000000000a0
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81ae60a3 RDX=ffff88801eab4a00
RSI=ffffffff81ae60eb RDI=ffffffff9418be40 RBP=0000000000000000 RSP=ffffc90000648fd0
R8 =0000000000000001 R9 =fffffbfff28317c8 R10=ffffffff9418be47 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81ae60ec RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d64e7000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f5433be9f00 CR3=00000000379e4000 CR4=00350ef0
DR0=ffffffffffffffff DR1=00000000000001f8 DR2=0000000000000002 DR3=ffffffffefffff15 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7372656c6c6f7274 6e6f632e70756f72
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff13478ca6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff13478ca6 00007fff13478cac
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc7c4833274
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc7c48332b4
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc7c4833418
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc7c48332a6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6379656b00657461 69746e6174736e69 246c746379656b00 7974697275636573
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000050
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000036 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff857e4035 RDI=ffffffff9b4ffe40 RBP=ffffffff9b4ffe00 RSP=ffffc900006f8778
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=4920726566667542
R12=0000000000000000 R13=0000000000000036 R14=0000000000000010 R15=ffffffff857e3fd0
RIP=ffffffff857e405f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d65e7000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f5868292d58 CR3=000000000e596000 CR4=00352ef0
DR0=ffffffffffffffff DR1=00000000000001f8 DR2=0000000000000002 DR3=ffffffffefffff15 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000003 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 656d69745f656c64 692e7166622e6f69
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd19e130f6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd19e130f6 00007ffd19e130fc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce5ec33274
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce5ec332b4
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce5ec33418
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce5ec332a6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6379656b00657461 69746e6174736e69 246c746379656b00 7974697275636573
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000006 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001cd
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000006 0000000000000000 0000000000000000 00000000000001cd
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000