last executing test programs: 2.600067863s ago: executing program 3 (id=922): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xd) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0xec25, 0x0, 0x0, 0x40000333}, 0x0, &(0x7f00000001c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(0x0, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0) 2.141143689s ago: executing program 1 (id=929): pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newqdisc={0x3c, 0x24, 0x2, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x9, 0x5}, {0xc, 0x6}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_INTERVAL={0x8, 0x3, 0x7}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x20000000) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) write$char_usb(0xffffffffffffffff, &(0x7f0000000040)="e2", 0x2250) ioctl$TCSETSW(0xffffffffffffffff, 0x5457, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x3, "a9872c1672d92f052f98a1aa41eda503b5bcf2"}) write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0) 1.760243802s ago: executing program 3 (id=939): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup/syz1\x00', 0x1ff) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000001c0)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = gettid() sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4008840) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) get_mempolicy(0x0, 0x0, 0x4000, &(0x7f0000fff000/0x1000)=nil, 0x2) socket$inet6(0xa, 0x3, 0x6) socket(0x1, 0x803, 0x0) r3 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r3, 0xc01864c6, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000008000d000100000008001b000000000095cb9c6561ecc6d36840ee99399a55ea729e028590d4e2e552731a6e38d895995746133a4a296c3e1e50260b9415bf0dc279a89dde586e887b5c32ab634cb028e06fd0353dc4539c5a9a138b7dcffc93272f50608f93c5ab9d4b802e4bb17d3c62c92847904e7455fde813df590ac175c60b32992c53324027c72d55caf34d8925ca7d54b9f05254c04814db59a87e768c7a1613f2ded9b3dcf61b82b3b5d4edc3faa6960123f8353c332baa3a61345acf996135d84e7e6b30727644263809"], 0x30}}, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x2c, r6, 0x1, 0x20400000, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x20, 0x1, [0x60, 0xc]}]}]}]}, 0x2c}}, 0x0) 1.760177331s ago: executing program 2 (id=940): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x1c, r1, 0x205, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 1.688896374s ago: executing program 2 (id=941): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58", '\x00', '#\x00'}, 0x28) mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0) sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000240)="6e37cff5b582e082d58cb23de3c19dc4971d9b59ddb52ae25a3ca48e8d5284721b4b722d1fd011fc3144e4ceb18b32b5b819d56f4aa3fe1aaf904aa07b7b748ab54c9b47531624c0ca3cc3e9246587e7cea8af062e15c1c27d8e9d9328114f2bda697decbedc50cc278f543faa13098717d9f379121225b179faeebe79be6a82dea4403a3bc7990b1cfee9e5a1aaf11b32facecc76bc0ad86f4fa184dd6e451992a564475498a4e85e9484c9a357c08060637ee267f307d605e87225cb4175be29", 0xc1}, {&(0x7f0000000340)="5fdbd61342a1560054f74cee82024cacdf79b6be94f99a7aea5b7678644cc1ef33880d4a59cad1fd0852b05064b02335eb6064c24f1ad325e032", 0x3a}], 0x2}, 0x0) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28) readv(r0, &(0x7f0000000e40)=[{&(0x7f0000000f40)=""/250, 0xfa}, {&(0x7f0000003300)=""/4095, 0xfff}], 0x2) 1.68867609s ago: executing program 2 (id=942): r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) write$UHID_CREATE(r0, &(0x7f0000002a00)={0x0, {'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b, 0x0, 0x7f, 0xfffffffe}}, 0x120) write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4) gettid() timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) readv(r0, &(0x7f0000000300)=[{&(0x7f0000000380)=""/4096, 0x1000}], 0x1) 1.488974277s ago: executing program 2 (id=944): ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, &(0x7f0000000100)=0x80000) ioctl$IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, &(0x7f0000000140)={@my=0x1}) ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(0xffffffffffffffff, 0x7a8, &(0x7f00000001c0)={{@host}, @host, 0x0, 0x0, 0x2449, 0xfffffffffffffffd}) ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(0xffffffffffffffff, 0x7a8, &(0x7f0000000040)={{@my=0x1}, @any, 0x0, 0x1, 0x9, 0xfffffffffffffffd, 0x80004}) ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, &(0x7f00000000c0)=0xb0000) ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(0xffffffffffffffff, 0x7a4, &(0x7f0000000380)={{@host}, 0x8199, 0x800000000000000, 0x1}) 1.48878547s ago: executing program 2 (id=945): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f00000010c0)=0x5, 0x4) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000280)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0241, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r2 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r1, &(0x7f00000003c0)=ANY=[], 0xfdef) 1.360697868s ago: executing program 2 (id=946): r0 = socket$netlink(0x10, 0x3, 0xb) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newlink={0x54, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0xa54, 0x18}}, @IFLA_VLAN_ID={0x6}, @IFLA_VLAN_INGRESS_QOS={0x4}]}}}, @IFLA_LINK={0x8, 0x5, r3}]}, 0x54}, 0x1, 0xba01}, 0x810) bind$netlink(r0, 0x0, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000000)=0xc, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) pipe2$watch_queue(0x0, 0x80) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0) syz_genetlink_get_family_id$devlink(&(0x7f0000000080), r0) sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x0) syz_usb_control_io$hid(r4, 0x0, 0x0) syz_usb_control_io$hid(r4, &(0x7f0000000f00)={0x24, &(0x7f0000000d80)={0x40, 0x10, 0x2, {0x2, 0xf}}, 0x0, 0x0, 0x0}, 0x0) msgsnd(0x0, &(0x7f0000000340)={0x2}, 0x8, 0x800) msgrcv(0x0, &(0x7f0000000380)={0x0, ""/114}, 0x7a, 0x3, 0x2000) msgctl$IPC_RMID(0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000b80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=""/32, 0x20}, 0xfffffffd}], 0x1, 0x40, 0x0) syz_usb_ep_write(r4, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084") 1.280695864s ago: executing program 1 (id=947): mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x12, 0xffffffffffffffff, 0x100000) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r3 = dup(r2) ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f00000006c0)=ANY=[@ANYRES8]) 1.150057606s ago: executing program 1 (id=950): r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="78000000100003040000000000000000000074", @ANYRES32=0x0, @ANYBLOB="00000000600000005800128008000100677470004c00028008000100", @ANYRES32=r0], 0x78}}, 0x20000800) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x3f, &(0x7f0000000400)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x8, 0x31, 0xfffe, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x1, 0x4e20, 0x1d, 0x0, @gue={{0x2, 0x0, 0x0, 0x6, 0x100, @val=0x80}, "c0eac2624d04cbdf1b700b22ee"}}}}}}, 0x0) 1.149720043s ago: executing program 1 (id=951): ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000005080000024d564b"]) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x82000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x200) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newtfilter={0x4c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x3}, {0x0, 0xc}, {0x1c}}, [@filter_kind_options=@f_flower={{0xb}, {0x1c, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x5}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0x3}]}]}]}}]}, 0x4c}}, 0x0) ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r2, 0x4068aea3, &(0x7f0000000080)={0xbe, 0x0, 0x1}) ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000040)) 1.09115778s ago: executing program 1 (id=952): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58", '\x00', '#\x00'}, 0x28) mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0) sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000240)="6e37cff5b582e082d58cb23de3c19dc4971d9b59ddb52ae25a3ca48e8d5284721b4b722d1fd011fc3144e4ceb18b32b5b819d56f4aa3fe1aaf904aa07b7b748ab54c9b47531624c0ca3cc3e9246587e7cea8af062e15c1c27d8e9d9328114f2bda697decbedc50cc278f543faa13098717d9f379121225b179faeebe79be6a82dea4403a3bc7990b1cfee9e5a1aaf11b32facecc76bc0ad86f4fa184dd6e451992a564475498a4e85e9484c9a357c08060637ee267f307d605e87225cb4175be29", 0xc1}, {&(0x7f0000000340)="5fdbd61342a1560054f74cee82024cacdf79b6be94f99a7aea5b7678644cc1ef33880d4a59cad1fd0852b05064b02335eb6064c24f1ad325e032", 0x3a}], 0x2}, 0x0) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28) readv(r0, &(0x7f0000000e40)=[{&(0x7f0000000f40)=""/250, 0xfa}, {&(0x7f0000003300)=""/4095, 0xfff}], 0x2) 841.147842ms ago: executing program 3 (id=953): r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) write$UHID_CREATE(r0, &(0x7f0000002a00)={0x0, {'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b, 0x0, 0x7f, 0xfffffffe}}, 0x120) write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000000140)) timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) readv(r0, &(0x7f0000000300)=[{&(0x7f0000000380)=""/4096, 0x1000}], 0x1) 710.987312ms ago: executing program 3 (id=954): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f00000010c0)=0x5, 0x4) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000280)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0241, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r2 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r1, &(0x7f00000003c0)=ANY=[], 0xfdef) 601.018399ms ago: executing program 3 (id=955): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000280)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_PMKSA(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB, @ANYRES32=r2, @ANYBLOB="0a0034000202020202020000140055"], 0x44}, 0x1, 0x0, 0x0, 0x801}, 0x44800) 600.703023ms ago: executing program 3 (id=956): pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newqdisc={0x34, 0x24, 0x2, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x9, 0x5}, {0xc, 0x6}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x20000000) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) write$char_usb(0xffffffffffffffff, &(0x7f0000000040)="e2", 0x2250) ioctl$TCSETSW(0xffffffffffffffff, 0x5457, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x3, "a9872c1672d92f052f98a1aa41eda503b5bcf2"}) write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0) 350.792321ms ago: executing program 0 (id=957): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB], 0x114}], 0x1}, 0x0) 350.516873ms ago: executing program 0 (id=958): mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x12, 0xffffffffffffffff, 0x100000) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r3 = dup(r2) ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f00000006c0)=ANY=[@ANYRES8]) 218.652647ms ago: executing program 1 (id=959): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) r2 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r3 = userfaultfd(0x801) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000140)) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1}) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x0, &(0x7f0000000100), 0xc06620, 0x4) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=@deltfilter={0x24, 0x2d, 0x1, 0x78bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0xfff3, 0x3}, {0x7, 0xffff}, {0x6, 0xb}}}, 0x24}}, 0x20044000) 218.406721ms ago: executing program 0 (id=960): r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="7800000010000304000000000000000000007400", @ANYRES32=0x0, @ANYBLOB="00000000600000005800128008000100677470004c00028008000100", @ANYRES32=r0], 0x78}}, 0x20000800) bind$inet(r0, 0x0, 0x0) syz_emit_ethernet(0x3f, &(0x7f0000000400)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x8, 0x31, 0xfffe, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x1, 0x4e20, 0x1d, 0x0, @gue={{0x2, 0x0, 0x0, 0x6, 0x100, @val=0x80}, "c0eac2624d04cbdf1b700b22ee"}}}}}}, 0x0) 129.404184ms ago: executing program 0 (id=961): ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000005080000024d564b"]) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x82000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x200) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r2, 0x4068aea3, &(0x7f0000000080)={0xbe, 0x0, 0x1}) ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000040)) 302.877µs ago: executing program 0 (id=962): r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x2) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=@newtfilter={0x64, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xc}, {0xfff2}, {0xfff1, 0x3d}}, [@filter_kind_options=@f_bpf={{0x8}, {0x38, 0x2, [@TCA_BPF_ACT={0x34, 0x1, [@m_skbmod={0x30, 0x5, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3}}}}]}]}}]}, 0x64}}, 0x0) 0s ago: executing program 0 (id=963): socket$packet(0x11, 0x3, 0x300) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f00000001c0)=0x7ff, 0x4) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) sendto$inet6(r1, &(0x7f0000000080), 0x0, 0x1, 0x0, 0x0) splice(r1, 0x0, r0, 0x0, 0x406f413, 0x0) kernel console output (not intermixed with test programs): 96.222933][ T40] audit: type=1326 audit(1744556591.149:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7106 comm="syz.3.387" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f95b8d169 code=0x7ffc0000 [ 96.229660][ T40] audit: type=1326 audit(1744556591.149:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7106 comm="syz.3.387" exe="/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f4f95b8d169 code=0x7ffc0000 [ 96.236770][ T40] audit: type=1326 audit(1744556591.149:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7106 comm="syz.3.387" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f95b8d169 code=0x7ffc0000 [ 96.245308][ T40] audit: type=1326 audit(1744556591.149:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7106 comm="syz.3.387" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f95b8d169 code=0x7ffc0000 [ 96.258886][ T7109] netlink: 12 bytes leftover after parsing attributes in process `syz.3.388'. [ 96.335786][ T7115] syz_tun: entered allmulticast mode [ 96.408962][ T7114] syz_tun: left allmulticast mode [ 96.475664][ T7119] netlink: 4 bytes leftover after parsing attributes in process `syz.3.393'. [ 96.674126][ T7127] netlink: 12 bytes leftover after parsing attributes in process `syz.3.397'. [ 96.729883][ T7131] netlink: 64 bytes leftover after parsing attributes in process `syz.0.399'. [ 96.735933][ T7133] syz_tun: entered allmulticast mode [ 96.741730][ T7132] syz_tun: left allmulticast mode [ 96.799604][ T7139] netlink: 20 bytes leftover after parsing attributes in process `syz.3.403'. [ 96.802226][ T7139] netlink: 72 bytes leftover after parsing attributes in process `syz.3.403'. [ 96.923587][ T7147] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 97.206223][ T835] usb 8-1: new high-speed USB device number 14 using dummy_hcd [ 97.241076][ T57] usb 6-1: USB disconnect, device number 11 [ 97.263621][ T7157] syz_tun: entered allmulticast mode [ 97.267820][ T7156] syz_tun: left allmulticast mode [ 97.357729][ T835] usb 8-1: config 0 has no interfaces? [ 97.361526][ T835] usb 8-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 97.364142][ T835] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 97.367338][ T835] usb 8-1: Product: syz [ 97.368824][ T835] usb 8-1: Manufacturer: syz [ 97.370138][ T835] usb 8-1: SerialNumber: syz [ 97.373022][ T835] usb 8-1: config 0 descriptor?? [ 97.375938][ T5982] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 97.535995][ T5982] usb 7-1: Using ep0 maxpacket: 8 [ 97.539232][ T5982] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 97.541350][ T5982] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 97.544366][ T5982] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 97.547678][ T5982] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 97.550787][ T5982] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 97.554510][ T5982] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 97.556669][ T5982] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 97.559732][ T5982] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 97.562888][ T5982] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 97.566147][ T5982] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 97.570382][ T5982] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 97.572446][ T5982] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 97.575561][ T5982] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 97.579086][ T5982] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 97.583088][ T5982] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 97.588840][ T5982] usb 7-1: string descriptor 0 read error: -22 [ 97.590624][ T5982] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 97.593075][ T5982] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 97.599274][ T5982] adutux 7-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 97.755082][ T40] audit: type=1400 audit(1744556592.679:483): avc: denied { name_bind } for pid=7164 comm="syz.0.413" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1 [ 97.793016][ T7168] usb 8-1: USB disconnect, device number 14 [ 97.799846][ T9] usb 7-1: USB disconnect, device number 10 [ 98.468700][ T40] audit: type=1400 audit(1744556593.389:484): avc: denied { getopt } for pid=7173 comm="syz.2.415" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 98.610982][ T7183] netlink: 20 bytes leftover after parsing attributes in process `syz.0.419'. [ 98.694194][ T7187] netlink: 4 bytes leftover after parsing attributes in process `syz.0.421'. [ 99.216258][ T9] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 99.366027][ T9] usb 7-1: Using ep0 maxpacket: 32 [ 99.369829][ T9] usb 7-1: config 0 has an invalid interface number: 192 but max is 0 [ 99.373021][ T9] usb 7-1: config 0 has no interface number 0 [ 99.377236][ T9] usb 7-1: New USB device found, idVendor=12d6, idProduct=0444, bcdDevice=f1.46 [ 99.379765][ T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 99.382120][ T9] usb 7-1: Product: syz [ 99.383309][ T9] usb 7-1: Manufacturer: syz [ 99.384621][ T9] usb 7-1: SerialNumber: syz [ 99.388391][ T9] usb 7-1: config 0 descriptor?? [ 99.392495][ T9] ems_usb 7-1:0.192 (unnamed net_device) (uninitialized): couldn't initialize controller: -22 [ 99.395952][ T9] ems_usb 7-1:0.192: probe with driver ems_usb failed with error -22 [ 99.594837][ T7204] tipc: Enabled bearer , priority 10 [ 99.598141][ T1345] usb 7-1: USB disconnect, device number 11 [ 99.644260][ T7208] syz_tun: entered allmulticast mode [ 99.669265][ T7208] kvm: Disabled LAPIC found during irq injection [ 99.720128][ T7207] syz_tun: left allmulticast mode [ 99.983799][ T7226] netlink: 12 bytes leftover after parsing attributes in process `syz.3.439'. [ 100.206128][ T7248] netlink: 12 bytes leftover after parsing attributes in process `syz.2.449'. [ 100.297348][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 100.297364][ T40] audit: type=1400 audit(1744556595.229:486): avc: denied { listen } for pid=7252 comm="syz.0.451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 100.307908][ T40] audit: type=1400 audit(1744556595.229:487): avc: denied { connect } for pid=7252 comm="syz.0.451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 100.315267][ T40] audit: type=1400 audit(1744556595.229:488): avc: denied { write } for pid=7252 comm="syz.0.451" path="socket:[14835]" dev="sockfs" ino=14835 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 100.324382][ T40] audit: type=1400 audit(1744556595.239:489): avc: denied { getopt } for pid=7254 comm="syz.2.452" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 100.339841][ T7257] netlink: 44 bytes leftover after parsing attributes in process `syz.0.453'. [ 100.442139][ T7267] loop6: detected capacity change from 0 to 524287999 [ 100.447915][ C3] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 100.450440][ C3] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 100.454845][ T13] loop: Write error at byte offset 1, length 4096. [ 100.457928][ C0] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0 [ 100.461381][ C0] buffer_io_error: 6 callbacks suppressed [ 100.461392][ C0] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 100.467751][ T13] loop: Write error at byte offset 1, length 4096. [ 100.469844][ C3] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0 [ 100.472421][ C3] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 100.621963][ T40] audit: type=1400 audit(1744556595.549:490): avc: denied { map } for pid=7279 comm="syz.0.464" path="/dev/video3" dev="devtmpfs" ino=959 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1 [ 100.624049][ T7280] netlink: 8 bytes leftover after parsing attributes in process `syz.0.464'. [ 100.665715][ T40] audit: type=1400 audit(1744556595.589:491): avc: denied { map } for pid=7283 comm="syz.0.466" path="socket:[14118]" dev="sockfs" ino=14118 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 100.690399][ T7288] netlink: 4 bytes leftover after parsing attributes in process `syz.0.468'. [ 100.727019][ T7292] netlink: 168 bytes leftover after parsing attributes in process `syz.0.470'. [ 100.728707][ T40] audit: type=1400 audit(1744556595.659:492): avc: denied { setopt } for pid=7291 comm="syz.0.470" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 100.970302][ T7312] netlink: 12 bytes leftover after parsing attributes in process `syz.0.478'. [ 101.015465][ T7314] netlink: 4 bytes leftover after parsing attributes in process `syz.3.479'. [ 101.026449][ T40] audit: type=1400 audit(1744556595.959:493): avc: denied { read write } for pid=7315 comm="syz.0.480" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 101.036333][ T40] audit: type=1400 audit(1744556595.959:494): avc: denied { open } for pid=7315 comm="syz.0.480" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 101.052734][ T7316] syzkaller1: entered promiscuous mode [ 101.054463][ T7316] syzkaller1: entered allmulticast mode [ 101.202545][ T40] audit: type=1400 audit(1744556596.129:495): avc: denied { append } for pid=7321 comm="syz.3.483" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 102.585957][ T5982] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 102.735932][ T5982] usb 5-1: Using ep0 maxpacket: 8 [ 102.739487][ T5982] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 102.742248][ T5982] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 102.746458][ T5982] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 102.750825][ T5982] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 102.754812][ T5982] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 102.759963][ T5982] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 102.762935][ T5982] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 102.767186][ T5982] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 102.771439][ T5982] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 102.775567][ T5982] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 102.780826][ T5982] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 102.783542][ T5982] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 102.787869][ T5982] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 102.791861][ T5982] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 102.795935][ T5982] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 102.802562][ T5982] usb 5-1: string descriptor 0 read error: -22 [ 102.804971][ T5982] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 102.807797][ T5982] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 102.814520][ T5982] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 103.016427][ T6378] usb 5-1: USB disconnect, device number 13 [ 104.457105][ T7389] syz_tun: entered allmulticast mode [ 104.492581][ T7389] kvm: Disabled LAPIC found during irq injection [ 104.567827][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.570656][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.572835][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.574981][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.578103][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.580317][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.582439][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.584606][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.590788][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.592935][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.595130][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.597549][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.599812][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.602015][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.604153][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.604666][ T7388] syz_tun: left allmulticast mode [ 104.606623][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.610156][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.612291][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.614462][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.616722][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.618887][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.621038][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.623353][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.625574][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.627808][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.629928][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.632063][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.634212][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.636583][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.638767][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.640915][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.643072][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.645217][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.647725][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.649894][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.652022][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.654160][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.656681][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.658893][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.661020][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.663817][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.666279][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.668430][ T9] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 104.673977][ T9] hid-generic 0000:007F:FFFFFFFE.0006: hidraw1: HID v0.00 Device [syz1] on syz0 [ 104.694407][ T7405] loop6: detected capacity change from 0 to 524287999 [ 104.848130][ T7417] kvm: Disabled LAPIC found during irq injection [ 105.081368][ T7430] __nla_validate_parse: 1 callbacks suppressed [ 105.081380][ T7430] netlink: 64 bytes leftover after parsing attributes in process `syz.0.531'. [ 105.890396][ T7450] netlink: 8 bytes leftover after parsing attributes in process `syz.2.539'. [ 106.200076][ T7460] vivid-007: ================= START STATUS ================= [ 106.202866][ T7460] vivid-007: Enable Output Cropping: true [ 106.204509][ T7460] vivid-007: Enable Output Composing: true [ 106.207910][ T7460] vivid-007: Enable Output Scaler: true [ 106.216182][ T7460] vivid-007: Tx RGB Quantization Range: Automatic [ 106.218707][ T7460] vivid-007: Transmit Mode: HDMI [ 106.220657][ T7460] vivid-007: Hotplug Present: 0x00000000 [ 106.222835][ T7460] vivid-007: RxSense Present: 0x00000000 [ 106.224939][ T7460] vivid-007: EDID Present: 0x00000000 [ 106.227636][ T7460] vivid-007: ================== END STATUS ================== [ 106.291911][ T7463] netlink: 4 bytes leftover after parsing attributes in process `syz.1.544'. [ 106.456396][ T7467] kvm: Disabled LAPIC found during irq injection [ 106.725504][ T7483] netlink: 4 bytes leftover after parsing attributes in process `syz.1.554'. [ 106.996018][ T34] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 107.151956][ T34] usb 6-1: Using ep0 maxpacket: 8 [ 107.154629][ T34] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 107.156788][ T34] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 107.159856][ T34] usb 6-1: config 168 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 107.163610][ T34] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 107.166067][ T34] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 107.169112][ T34] usb 6-1: config 168 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 107.172787][ T34] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 107.174873][ T34] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 107.178610][ T34] usb 6-1: config 168 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 107.183646][ T34] usb 6-1: string descriptor 0 read error: -22 [ 107.185416][ T34] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 107.188587][ T34] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 107.194061][ T34] adutux 6-1:168.0: interrupt endpoints not found [ 107.288825][ T7491] kvm: Disabled LAPIC found during irq injection [ 107.399702][ T34] usb 6-1: USB disconnect, device number 12 [ 107.446872][ T7497] netlink: 88 bytes leftover after parsing attributes in process `syz.0.561'. [ 107.652770][ T40] kauditd_printk_skb: 8 callbacks suppressed [ 107.652787][ T40] audit: type=1400 audit(1744556602.579:504): avc: denied { accept } for pid=7500 comm="syz.0.563" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 108.011588][ T7509] netlink: 4 bytes leftover after parsing attributes in process `syz.1.565'. [ 108.671372][ T7529] netlink: 'syz.3.571': attribute type 1 has an invalid length. [ 109.049500][ T7535] kvm: Disabled LAPIC found during irq injection [ 109.220402][ T7539] netlink: 4 bytes leftover after parsing attributes in process `syz.2.574'. [ 109.618865][ T7552] netlink: 4 bytes leftover after parsing attributes in process `syz.0.580'. [ 109.624886][ T7552] team_slave_0: entered promiscuous mode [ 109.626744][ T7552] team_slave_1: entered promiscuous mode [ 109.628506][ T7552] macvtap1: entered promiscuous mode [ 109.629932][ T7552] team0: entered promiscuous mode [ 109.631712][ T7552] macvtap1: entered allmulticast mode [ 109.633392][ T7552] team0: entered allmulticast mode [ 109.634847][ T7552] team_slave_0: entered allmulticast mode [ 109.636961][ T7552] team_slave_1: entered allmulticast mode [ 109.639123][ T7552] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 109.643362][ T7552] netlink: 4 bytes leftover after parsing attributes in process `syz.0.580'. [ 109.646537][ T7552] team0: left allmulticast mode [ 109.647881][ T7552] team_slave_0: left allmulticast mode [ 109.649348][ T7552] team_slave_1: left allmulticast mode [ 109.651245][ T7552] team0: left promiscuous mode [ 109.653395][ T7552] team_slave_0: left promiscuous mode [ 109.655452][ T7552] team_slave_1: left promiscuous mode [ 109.803838][ T7557] kvm: Disabled LAPIC found during irq injection [ 109.910173][ T7559] netlink: 76 bytes leftover after parsing attributes in process `syz.0.583'. [ 109.944045][ T7561] fuse: Bad value for 'fd' [ 110.443546][ T7576] kvm: Disabled LAPIC found during irq injection [ 110.555448][ T7580] netlink: 76 bytes leftover after parsing attributes in process `syz.2.593'. [ 111.088050][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.090871][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.093771][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.097884][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.100713][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.103654][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.106863][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.109730][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.112718][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.115707][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.118878][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.121460][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.123708][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.126592][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.129222][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.131353][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.133739][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.136963][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.139330][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.141602][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.143800][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.146268][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.149214][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.152136][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.155073][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.158292][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.161199][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.163466][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.165947][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.168699][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.171112][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.173384][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.176067][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.178410][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.180520][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.182763][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.185097][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.188036][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.190954][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.193913][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.197037][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.199961][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.202488][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0 [ 111.207920][ T5983] hid-generic 0000:007F:FFFFFFFE.0007: hidraw1: HID v0.00 Device [syz1] on syz0 [ 111.261002][ T7601] netlink: 76 bytes leftover after parsing attributes in process `syz.0.602'. [ 111.436864][ T7609] netlink: 8 bytes leftover after parsing attributes in process `syz.1.606'. [ 111.576231][ T6011] usb 5-1: new low-speed USB device number 14 using dummy_hcd [ 111.626803][ T7621] netlink: 76 bytes leftover after parsing attributes in process `syz.3.611'. [ 111.716012][ T6011] usb 5-1: device descriptor read/64, error -71 [ 111.955933][ T6011] usb 5-1: new low-speed USB device number 15 using dummy_hcd [ 112.086083][ T6011] usb 5-1: device descriptor read/64, error -71 [ 112.196396][ T6011] usb usb5-port1: attempt power cycle [ 112.488293][ T40] audit: type=1326 audit(1744556607.419:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7622 comm="syz.2.612" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca558d169 code=0x7fc00000 [ 112.536658][ T6011] usb 5-1: new low-speed USB device number 16 using dummy_hcd [ 112.556633][ T6011] usb 5-1: device descriptor read/8, error -71 [ 112.601628][ T7647] IPv6: addrconf: prefix option has invalid lifetime [ 112.796001][ T6011] usb 5-1: new low-speed USB device number 17 using dummy_hcd [ 112.818409][ T6011] usb 5-1: device descriptor read/8, error -71 [ 112.926509][ T6011] usb usb5-port1: unable to enumerate USB device [ 113.876591][ T7680] netlink: 72 bytes leftover after parsing attributes in process `syz.2.632'. [ 113.928892][ T7684] fuse: Bad value for 'fd' [ 113.959149][ T7686] netlink: 24 bytes leftover after parsing attributes in process `syz.2.635'. [ 114.492451][ T7712] fuse: Bad value for 'fd' [ 115.280013][ T7731] IPVS: length: 95 != 24 [ 115.526034][ T5983] usb 7-1: new high-speed USB device number 12 using dummy_hcd [ 115.675940][ T5983] usb 7-1: Using ep0 maxpacket: 8 [ 115.686741][ T5983] usb 7-1: config 9 has an invalid interface number: 170 but max is 0 [ 115.689077][ T5983] usb 7-1: config 9 has no interface number 0 [ 115.690844][ T5983] usb 7-1: config 9 interface 170 has no altsetting 0 [ 115.698048][ T5983] usb 7-1: New USB device found, idVendor=19d2, idProduct=1105, bcdDevice=71.4e [ 115.700612][ T5983] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 115.703223][ T5983] usb 7-1: Product: syz [ 115.704440][ T5983] usb 7-1: Manufacturer: syz [ 115.706027][ T5983] usb 7-1: SerialNumber: syz [ 115.820002][ T7737] netlink: 8 bytes leftover after parsing attributes in process `syz.0.653'. [ 115.918791][ T5983] option 7-1:9.170: GSM modem (1-port) converter detected [ 115.926959][ T5983] usb 7-1: USB disconnect, device number 12 [ 115.929566][ T5983] option 7-1:9.170: device disconnected [ 116.835260][ T7767] futex_wake_op: syz.2.664 tries to shift op by -33; fix this program [ 116.858241][ T7767] netdevsim netdevsim2: Direct firmware load for . [ 116.858241][ T7767] failed with error -2 [ 116.861986][ T40] audit: type=1400 audit(1744556611.789:506): avc: denied { firmware_load } for pid=7764 comm="syz.2.664" scontext=system_u:system_r:kernel_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 116.862003][ T7767] netdevsim netdevsim2: Falling back to sysfs fallback for: . [ 116.862003][ T7767] [ 117.197652][ T7773] netlink: 8 bytes leftover after parsing attributes in process `syz.1.665'. [ 117.502876][ T7767] syz.2.664 (7767) used greatest stack depth: 20232 bytes left [ 117.965949][ T5982] usb 7-1: new high-speed USB device number 13 using dummy_hcd [ 118.096129][ T5982] usb 7-1: device descriptor read/64, error -71 [ 118.335935][ T5982] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 118.465953][ T5982] usb 7-1: device descriptor read/64, error -71 [ 118.586142][ T5982] usb usb7-port1: attempt power cycle [ 118.925914][ T5982] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 118.946691][ T5982] usb 7-1: device descriptor read/8, error -71 [ 119.185905][ T5982] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 119.206286][ T5982] usb 7-1: device descriptor read/8, error -71 [ 119.316957][ T5982] usb usb7-port1: unable to enumerate USB device [ 119.618987][ T7822] netlink: 64 bytes leftover after parsing attributes in process `syz.0.682'. [ 119.650555][ T40] audit: type=1326 audit(1744556614.579:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7823 comm="syz.0.683" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27b78d169 code=0x7ffc0000 [ 119.656887][ T40] audit: type=1326 audit(1744556614.579:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7823 comm="syz.0.683" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27b78d169 code=0x7ffc0000 [ 119.663119][ T40] audit: type=1326 audit(1744556614.579:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7823 comm="syz.0.683" exe="/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fa27b78d169 code=0x7ffc0000 [ 119.670858][ T40] audit: type=1326 audit(1744556614.579:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7823 comm="syz.0.683" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27b78d169 code=0x7ffc0000 [ 119.677953][ T40] audit: type=1326 audit(1744556614.579:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7823 comm="syz.0.683" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27b78d169 code=0x7ffc0000 [ 119.684068][ T40] audit: type=1326 audit(1744556614.579:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7823 comm="syz.0.683" exe="/syz-executor" sig=0 arch=c000003e syscall=75 compat=0 ip=0x7fa27b78d169 code=0x7ffc0000 [ 119.691011][ T40] audit: type=1326 audit(1744556614.579:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7823 comm="syz.0.683" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27b78d169 code=0x7ffc0000 [ 119.698233][ T40] audit: type=1326 audit(1744556614.579:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7823 comm="syz.0.683" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27b78d169 code=0x7ffc0000 [ 119.779269][ T7831] netlink: 8 bytes leftover after parsing attributes in process `syz.0.686'. [ 119.890837][ T7839] netlink: 36 bytes leftover after parsing attributes in process `syz.0.690'. [ 119.893384][ T7839] netlink: 16 bytes leftover after parsing attributes in process `syz.0.690'. [ 119.895725][ T7839] netlink: 36 bytes leftover after parsing attributes in process `syz.0.690'. [ 119.898322][ T7839] netlink: 36 bytes leftover after parsing attributes in process `syz.0.690'. [ 120.110932][ T7848] netlink: 12 bytes leftover after parsing attributes in process `syz.0.694'. [ 120.516416][ T7862] block device autoloading is deprecated and will be removed. [ 121.183222][ T7870] loop6: detected capacity change from 0 to 524287999 [ 121.187729][ C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 121.246061][ T7874] netlink: 12 bytes leftover after parsing attributes in process `syz.0.704'. [ 121.262295][ T7808] delete_channel: no stack [ 121.545958][ T57] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 121.675948][ T57] usb 5-1: device descriptor read/64, error -71 [ 121.745405][ T7893] xt_hashlimit: size too large, truncated to 1048576 [ 121.798046][ T7896] netlink: 'syz.1.711': attribute type 1 has an invalid length. [ 121.801105][ T7896] netlink: 'syz.1.711': attribute type 3 has an invalid length. [ 121.804073][ T7896] netlink: 224 bytes leftover after parsing attributes in process `syz.1.711'. [ 121.935907][ T57] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 122.047638][ T40] audit: type=1400 audit(1744556616.979:515): avc: denied { listen } for pid=7901 comm="syz.1.714" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 122.053042][ T40] audit: type=1400 audit(1744556616.979:516): avc: denied { accept } for pid=7901 comm="syz.1.714" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 122.075905][ T57] usb 5-1: device descriptor read/64, error -71 [ 122.109355][ T7903] mkiss: ax0: crc mode is auto. [ 122.115266][ T40] audit: type=1400 audit(1744556617.039:517): avc: denied { search } for pid=5656 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 122.186711][ T57] usb usb5-port1: attempt power cycle [ 122.210589][ T7905] netlink: 12 bytes leftover after parsing attributes in process `syz.3.715'. [ 122.525964][ T57] usb 5-1: new high-speed USB device number 20 using dummy_hcd [ 122.546586][ T57] usb 5-1: device descriptor read/8, error -71 [ 122.617471][ T7919] FAULT_INJECTION: forcing a failure. [ 122.617471][ T7919] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 122.621162][ T7919] CPU: 1 UID: 0 PID: 7919 Comm: syz.2.720 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 122.621177][ T7919] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 122.621183][ T7919] Call Trace: [ 122.621188][ T7919] [ 122.621192][ T7919] dump_stack_lvl+0x16c/0x1f0 [ 122.621209][ T7919] should_fail_ex+0x512/0x640 [ 122.621233][ T7919] _copy_from_user+0x2e/0xd0 [ 122.621246][ T7919] do_sock_getsockopt+0x5f4/0x800 [ 122.621263][ T7919] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 122.621278][ T7919] ? __fget_files+0x204/0x3c0 [ 122.621294][ T7919] __sys_getsockopt+0x12f/0x260 [ 122.621309][ T7919] __x64_sys_getsockopt+0xbd/0x160 [ 122.621320][ T7919] ? do_syscall_64+0x91/0x260 [ 122.621335][ T7919] ? lockdep_hardirqs_on+0x7c/0x110 [ 122.621348][ T7919] do_syscall_64+0xcd/0x260 [ 122.621363][ T7919] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.621373][ T7919] RIP: 0033:0x7f0ca558d169 [ 122.621381][ T7919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.621391][ T7919] RSP: 002b:00007f0ca64c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 122.621401][ T7919] RAX: ffffffffffffffda RBX: 00007f0ca57a5fa0 RCX: 00007f0ca558d169 [ 122.621408][ T7919] RDX: 0000000000000083 RSI: 0000000000000000 RDI: 0000000000000003 [ 122.621413][ T7919] RBP: 00007f0ca64c6090 R08: 0000200000000140 R09: 0000000000000000 [ 122.621419][ T7919] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001 [ 122.621425][ T7919] R13: 0000000000000000 R14: 00007f0ca57a5fa0 R15: 00007fff2200a448 [ 122.621437][ T7919] [ 122.698006][ T7923] netlink: 8 bytes leftover after parsing attributes in process `syz.2.721'. [ 122.815976][ T57] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 122.847541][ T57] usb 5-1: device descriptor read/8, error -71 [ 122.960172][ T57] usb usb5-port1: unable to enumerate USB device [ 123.032293][ T7944] warning: `syz.1.730' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 123.051377][ T7942] FAULT_INJECTION: forcing a failure. [ 123.051377][ T7942] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 123.055704][ T7942] CPU: 3 UID: 0 PID: 7942 Comm: syz.2.729 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 123.055719][ T7942] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 123.055726][ T7942] Call Trace: [ 123.055730][ T7942] [ 123.055734][ T7942] dump_stack_lvl+0x16c/0x1f0 [ 123.055751][ T7942] should_fail_ex+0x512/0x640 [ 123.055765][ T7942] _copy_to_user+0x32/0xd0 [ 123.055778][ T7942] simple_read_from_buffer+0xcb/0x170 [ 123.055796][ T7942] proc_fail_nth_read+0x197/0x270 [ 123.055813][ T7942] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 123.055841][ T7942] ? rw_verify_area+0xcf/0x680 [ 123.055856][ T7942] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 123.055872][ T7942] vfs_read+0x1de/0xc70 [ 123.055889][ T7942] ? __pfx___mutex_lock+0x10/0x10 [ 123.055904][ T7942] ? __pfx_vfs_read+0x10/0x10 [ 123.055923][ T7942] ? __fget_files+0x20e/0x3c0 [ 123.055937][ T7942] ksys_read+0x12a/0x240 [ 123.055945][ T7942] ? __pfx_ksys_read+0x10/0x10 [ 123.055958][ T7942] do_syscall_64+0xcd/0x260 [ 123.055974][ T7942] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.055984][ T7942] RIP: 0033:0x7f0ca558bb7c [ 123.055992][ T7942] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 123.056003][ T7942] RSP: 002b:00007f0ca64c6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 123.056013][ T7942] RAX: ffffffffffffffda RBX: 00007f0ca57a5fa0 RCX: 00007f0ca558bb7c [ 123.056019][ T7942] RDX: 000000000000000f RSI: 00007f0ca64c60a0 RDI: 0000000000000004 [ 123.056026][ T7942] RBP: 00007f0ca64c6090 R08: 0000000000000000 R09: 0000000000000000 [ 123.056032][ T7942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 123.056038][ T7942] R13: 0000000000000000 R14: 00007f0ca57a5fa0 R15: 00007fff2200a448 [ 123.056050][ T7942] [ 123.133055][ T7947] loop6: detected capacity change from 0 to 524287999 [ 123.135452][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 123.158010][ T7949] futex_wake_op: syz.2.732 tries to shift op by -1; fix this program [ 123.163050][ T40] audit: type=1400 audit(1744556618.089:518): avc: denied { read } for pid=7948 comm="syz.2.732" name="usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 123.169983][ T40] audit: type=1400 audit(1744556618.089:519): avc: denied { open } for pid=7948 comm="syz.2.732" path="/dev/usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 123.179123][ T40] audit: type=1400 audit(1744556618.089:520): avc: denied { ioctl } for pid=7948 comm="syz.2.732" path="/dev/usbmon0" dev="devtmpfs" ino=737 ioctlcmd=0x9201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 123.185737][ T40] audit: type=1400 audit(1744556618.099:521): avc: denied { ioctl } for pid=7948 comm="syz.2.732" path="/dev/ptp0" dev="devtmpfs" ino=729 ioctlcmd=0x3d05 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 123.204351][ T5296] Bluetooth: hci1: unexpected event 0x2f length: 509 > 260 [ 123.260157][ T7955] FAULT_INJECTION: forcing a failure. [ 123.260157][ T7955] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 123.266403][ T7955] CPU: 3 UID: 0 PID: 7955 Comm: syz.2.735 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 123.266424][ T7955] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 123.266434][ T7955] Call Trace: [ 123.266440][ T7955] [ 123.266446][ T7955] dump_stack_lvl+0x16c/0x1f0 [ 123.266472][ T7955] should_fail_ex+0x512/0x640 [ 123.266493][ T7955] _copy_to_iter+0x2a4/0x15a0 [ 123.266516][ T7955] ? __pfx__copy_to_iter+0x10/0x10 [ 123.266534][ T7955] ? unwind_get_return_address+0x59/0xa0 [ 123.266554][ T7955] ? arch_stack_walk+0xa6/0x100 [ 123.266572][ T7955] tcp_recvmsg_locked+0x20b4/0x2880 [ 123.266587][ T7955] ? do_raw_spin_lock+0x12c/0x2b0 [ 123.266599][ T7955] ? __pfx_tcp_recvmsg_locked+0x10/0x10 [ 123.266612][ T7955] ? __local_bh_enable_ip+0xa4/0x120 [ 123.266628][ T7955] tcp_recvmsg+0x12f/0x680 [ 123.266640][ T7955] ? __pfx_tcp_recvmsg+0x10/0x10 [ 123.266649][ T7955] ? sock_has_perm+0x259/0x2f0 [ 123.266666][ T7955] ? __pfx_tcp_recvmsg+0x10/0x10 [ 123.266674][ T7955] inet_recvmsg+0x12a/0x6a0 [ 123.266684][ T7955] ? __fget_files+0x204/0x3c0 [ 123.266695][ T7955] ? __pfx_inet_recvmsg+0x10/0x10 [ 123.266707][ T7955] sock_recvmsg+0x1b2/0x250 [ 123.266723][ T7955] __sys_recvfrom+0x203/0x310 [ 123.266735][ T7955] ? __pfx___sys_recvfrom+0x10/0x10 [ 123.266757][ T7955] ? ksys_write+0x1b9/0x240 [ 123.266766][ T7955] ? __pfx_ksys_write+0x10/0x10 [ 123.266774][ T7955] ? rcu_is_watching+0x12/0xc0 [ 123.266788][ T7955] __x64_sys_recvfrom+0xe0/0x1c0 [ 123.266799][ T7955] ? do_syscall_64+0x91/0x260 [ 123.266813][ T7955] ? lockdep_hardirqs_on+0x7c/0x110 [ 123.266826][ T7955] do_syscall_64+0xcd/0x260 [ 123.266841][ T7955] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.266851][ T7955] RIP: 0033:0x7f0ca558d169 [ 123.266860][ T7955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 123.266870][ T7955] RSP: 002b:00007f0ca64c6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 123.266880][ T7955] RAX: ffffffffffffffda RBX: 00007f0ca57a5fa0 RCX: 00007f0ca558d169 [ 123.266886][ T7955] RDX: 0000000000000003 RSI: 0000200000000100 RDI: 0000000000000003 [ 123.266892][ T7955] RBP: 00007f0ca64c6090 R08: 0000000000000000 R09: 0000000000000000 [ 123.266898][ T7955] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001 [ 123.266903][ T7955] R13: 0000000000000000 R14: 00007f0ca57a5fa0 R15: 00007fff2200a448 [ 123.266915][ T7955] [ 123.365570][ T40] audit: type=1400 audit(1744556618.289:522): avc: denied { write } for pid=7961 comm="syz.2.737" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 123.656150][ T7969] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=16246 sclass=netlink_route_socket pid=7969 comm=syz.2.740 [ 123.661549][ T40] audit: type=1400 audit(1744556618.589:523): avc: denied { create } for pid=7968 comm="syz.2.740" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 123.663280][ T7969] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7969 comm=syz.2.740 [ 123.669171][ T40] audit: type=1400 audit(1744556618.589:524): avc: denied { write } for pid=7968 comm="syz.2.740" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 123.767754][ T7972] netlink: 16 bytes leftover after parsing attributes in process `syz.2.741'. [ 123.893143][ T7982] netlink: 40 bytes leftover after parsing attributes in process `syz.1.745'. [ 123.897074][ T7978] FAULT_INJECTION: forcing a failure. [ 123.897074][ T7978] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 123.900694][ T7978] CPU: 2 UID: 0 PID: 7978 Comm: syz.2.744 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 123.900708][ T7978] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 123.900714][ T7978] Call Trace: [ 123.900718][ T7978] [ 123.900722][ T7978] dump_stack_lvl+0x16c/0x1f0 [ 123.900739][ T7978] should_fail_ex+0x512/0x640 [ 123.900753][ T7978] _copy_from_user+0x2e/0xd0 [ 123.900765][ T7978] copy_msghdr_from_user+0x98/0x160 [ 123.900780][ T7978] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 123.900798][ T7978] ___sys_sendmsg+0xfe/0x1d0 [ 123.900811][ T7978] ? __pfx____sys_sendmsg+0x10/0x10 [ 123.900837][ T7978] __sys_sendmsg+0x16d/0x220 [ 123.900849][ T7978] ? __pfx___sys_sendmsg+0x10/0x10 [ 123.900869][ T7978] do_syscall_64+0xcd/0x260 [ 123.900884][ T7978] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.900910][ T7978] RIP: 0033:0x7f0ca558d169 [ 123.900920][ T7978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 123.900930][ T7978] RSP: 002b:00007f0ca64c6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 123.900940][ T7978] RAX: ffffffffffffffda RBX: 00007f0ca57a5fa0 RCX: 00007f0ca558d169 [ 123.900947][ T7978] RDX: 0000000000040044 RSI: 0000200000000200 RDI: 0000000000000003 [ 123.900953][ T7978] RBP: 00007f0ca64c6090 R08: 0000000000000000 R09: 0000000000000000 [ 123.900959][ T7978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 123.900965][ T7978] R13: 0000000000000000 R14: 00007f0ca57a5fa0 R15: 00007fff2200a448 [ 123.900976][ T7978] [ 123.983724][ T7986] loop6: detected capacity change from 0 to 524287999 [ 123.986704][ C1] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 123.990346][ C1] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 123.994214][ T46] loop: Write error at byte offset 1, length 4096. [ 124.001764][ C3] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0 [ 124.004363][ C3] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 124.012191][ T7984] overlayfs: missing 'lowerdir' [ 124.095494][ T7992] netlink: 16 bytes leftover after parsing attributes in process `syz.2.750'. [ 124.177072][ T7996] kvm: Disabled LAPIC found during irq injection [ 124.183996][ T7998] FAULT_INJECTION: forcing a failure. [ 124.183996][ T7998] name failslab, interval 1, probability 0, space 0, times 1 [ 124.188682][ T7998] CPU: 1 UID: 0 PID: 7998 Comm: syz.1.751 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 124.188697][ T7998] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 124.188704][ T7998] Call Trace: [ 124.188708][ T7998] [ 124.188712][ T7998] dump_stack_lvl+0x16c/0x1f0 [ 124.188730][ T7998] should_fail_ex+0x512/0x640 [ 124.188742][ T7998] ? fs_reclaim_acquire+0xae/0x150 [ 124.188758][ T7998] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 124.188773][ T7998] should_failslab+0xc2/0x120 [ 124.188785][ T7998] __kmalloc_noprof+0xd2/0x510 [ 124.188798][ T7998] tomoyo_realpath_from_path+0xc2/0x6e0 [ 124.188814][ T7998] ? tomoyo_profile+0x47/0x60 [ 124.188824][ T7998] tomoyo_path_number_perm+0x245/0x580 [ 124.188837][ T7998] ? tomoyo_path_number_perm+0x237/0x580 [ 124.188850][ T7998] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 124.188864][ T7998] ? find_held_lock+0x2b/0x80 [ 124.188909][ T7998] ? find_held_lock+0x2b/0x80 [ 124.188923][ T7998] ? hook_file_ioctl_common+0x145/0x410 [ 124.188936][ T7998] ? __fget_files+0x20e/0x3c0 [ 124.188948][ T7998] security_file_ioctl+0x9b/0x240 [ 124.188964][ T7998] __x64_sys_ioctl+0xb7/0x200 [ 124.188980][ T7998] do_syscall_64+0xcd/0x260 [ 124.188995][ T7998] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.189006][ T7998] RIP: 0033:0x7f743f78d169 [ 124.189015][ T7998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 124.189025][ T7998] RSP: 002b:00007f744063e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 124.189035][ T7998] RAX: ffffffffffffffda RBX: 00007f743f9a5fa0 RCX: 00007f743f78d169 [ 124.189042][ T7998] RDX: 0000200000000280 RSI: 000000008208ae63 RDI: 0000000000000004 [ 124.189048][ T7998] RBP: 00007f744063e090 R08: 0000000000000000 R09: 0000000000000000 [ 124.189054][ T7998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 124.189060][ T7998] R13: 0000000000000000 R14: 00007f743f9a5fa0 R15: 00007ffddbe35778 [ 124.189072][ T7998] [ 124.189076][ T7998] ERROR: Out of memory at tomoyo_realpath_from_path. [ 124.252138][ T7998] kvm: Disabled LAPIC found during irq injection [ 124.359305][ T5296] Bluetooth: hci2: Malformed LE Event: 0x0d [ 124.359397][ T8012] netlink: 180 bytes leftover after parsing attributes in process `syz.0.759'. [ 124.383372][ T8015] FAULT_INJECTION: forcing a failure. [ 124.383372][ T8015] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 124.387857][ T8015] CPU: 2 UID: 0 PID: 8015 Comm: syz.2.758 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 124.387871][ T8015] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 124.387878][ T8015] Call Trace: [ 124.387882][ T8015] [ 124.387886][ T8015] dump_stack_lvl+0x16c/0x1f0 [ 124.387904][ T8015] should_fail_ex+0x512/0x640 [ 124.387918][ T8015] should_fail_alloc_page+0xe7/0x130 [ 124.387931][ T8015] prepare_alloc_pages+0x3c2/0x610 [ 124.387948][ T8015] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 124.387962][ T8015] ? process_measurement+0x1e7/0x2360 [ 124.387980][ T8015] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 124.387998][ T8015] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 124.388011][ T8015] ? policy_nodemask+0xea/0x4e0 [ 124.388023][ T8015] alloc_pages_mpol+0x1fb/0x550 [ 124.388035][ T8015] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 124.388046][ T8015] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 124.388064][ T8015] alloc_pages_noprof+0x131/0x390 [ 124.388076][ T8015] __pud_alloc+0x39/0x690 [ 124.388090][ T8015] __handle_mm_fault+0x996/0x2a40 [ 124.388110][ T8015] ? __pfx___handle_mm_fault+0x10/0x10 [ 124.388133][ T8015] ? find_vma+0xbf/0x140 [ 124.388145][ T8015] ? __pfx_find_vma+0x10/0x10 [ 124.388160][ T8015] handle_mm_fault+0x3fe/0xad0 [ 124.388178][ T8015] do_user_addr_fault+0x7a6/0x1370 [ 124.388192][ T8015] ? rcu_is_watching+0x12/0xc0 [ 124.388212][ T8015] exc_page_fault+0x5c/0xc0 [ 124.388225][ T8015] asm_exc_page_fault+0x26/0x30 [ 124.388235][ T8015] RIP: 0010:_copy_from_user+0x93/0xd0 [ 124.388247][ T8015] Code: 94 eb fc 89 ee 4c 89 ef 48 b8 00 f0 ff ff ff 7f 00 00 48 39 c3 48 0f 47 d8 e8 99 0e 51 fd 0f 01 cb 4c 89 ef 48 89 de 48 89 e9 a4 0f 1f 00 49 89 cc 48 89 cb 0f 01 ca 31 ff 48 89 ce e8 f5 8f [ 124.388258][ T8015] RSP: 0018:ffffc9000d4afd68 EFLAGS: 00050297 [ 124.388266][ T8015] RAX: 0000000000000001 RBX: 0000200000000140 RCX: 0000000000000004 [ 124.388272][ T8015] RDX: fffff52001a95fbc RSI: 0000200000000140 RDI: ffffc9000d4afde0 [ 124.388279][ T8015] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff52001a95fbc [ 124.388285][ T8015] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 124.388290][ T8015] R13: ffffc9000d4afde0 R14: 0000000000000000 R15: 0000000000000000 [ 124.388302][ T8015] ? _copy_from_user+0x87/0xd0 [ 124.388314][ T8015] do_sock_getsockopt+0x5f4/0x800 [ 124.388332][ T8015] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 124.388347][ T8015] ? __fget_files+0x204/0x3c0 [ 124.388362][ T8015] __sys_getsockopt+0x12f/0x260 [ 124.388377][ T8015] __x64_sys_getsockopt+0xbd/0x160 [ 124.388388][ T8015] ? do_syscall_64+0x91/0x260 [ 124.388402][ T8015] ? lockdep_hardirqs_on+0x7c/0x110 [ 124.388414][ T8015] do_syscall_64+0xcd/0x260 [ 124.388429][ T8015] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.388439][ T8015] RIP: 0033:0x7f0ca558d169 [ 124.388449][ T8015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 124.388459][ T8015] RSP: 002b:00007f0ca64a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 124.388467][ T8015] RAX: ffffffffffffffda RBX: 00007f0ca57a6080 RCX: 00007f0ca558d169 [ 124.388473][ T8015] RDX: 0000000000000083 RSI: 0000000000000000 RDI: 0000000000000003 [ 124.388479][ T8015] RBP: 00007f0ca64a5090 R08: 0000200000000140 R09: 0000000000000000 [ 124.388485][ T8015] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001 [ 124.388491][ T8015] R13: 0000000000000000 R14: 00007f0ca57a6080 R15: 00007fff2200a448 [ 124.388503][ T8015] [ 124.565107][ T8032] netlink: 24 bytes leftover after parsing attributes in process `syz.1.762'. [ 124.623144][ T8038] netlink: 40 bytes leftover after parsing attributes in process `syz.3.768'. [ 124.637183][ T8042] capability: warning: `syz.2.769' uses deprecated v2 capabilities in a way that may be insecure [ 124.671013][ T8046] FAULT_INJECTION: forcing a failure. [ 124.671013][ T8046] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 124.674547][ T8046] CPU: 2 UID: 0 PID: 8046 Comm: syz.2.771 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 124.674561][ T8046] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 124.674568][ T8046] Call Trace: [ 124.674572][ T8046] [ 124.674576][ T8046] dump_stack_lvl+0x16c/0x1f0 [ 124.674594][ T8046] should_fail_ex+0x512/0x640 [ 124.674607][ T8046] _copy_to_user+0x32/0xd0 [ 124.674620][ T8046] simple_read_from_buffer+0xcb/0x170 [ 124.674639][ T8046] proc_fail_nth_read+0x197/0x270 [ 124.674655][ T8046] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 124.674672][ T8046] ? rw_verify_area+0xcf/0x680 [ 124.674686][ T8046] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 124.674702][ T8046] vfs_read+0x1de/0xc70 [ 124.674719][ T8046] ? __pfx___mutex_lock+0x10/0x10 [ 124.674734][ T8046] ? __pfx_vfs_read+0x10/0x10 [ 124.674753][ T8046] ? __fget_files+0x20e/0x3c0 [ 124.674766][ T8046] ksys_read+0x12a/0x240 [ 124.674775][ T8046] ? __pfx_ksys_read+0x10/0x10 [ 124.674783][ T8046] ? rcu_is_watching+0x12/0xc0 [ 124.674800][ T8046] do_syscall_64+0xcd/0x260 [ 124.674815][ T8046] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.674826][ T8046] RIP: 0033:0x7f0ca558bb7c [ 124.674834][ T8046] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 124.674844][ T8046] RSP: 002b:00007f0ca64c6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 124.674854][ T8046] RAX: ffffffffffffffda RBX: 00007f0ca57a5fa0 RCX: 00007f0ca558bb7c [ 124.674860][ T8046] RDX: 000000000000000f RSI: 00007f0ca64c60a0 RDI: 0000000000000004 [ 124.674866][ T8046] RBP: 00007f0ca64c6090 R08: 0000000000000000 R09: 0000000000000000 [ 124.674872][ T8046] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001 [ 124.674878][ T8046] R13: 0000000000000000 R14: 00007f0ca57a5fa0 R15: 00007fff2200a448 [ 124.674890][ T8046] [ 124.885950][ T1345] usb 5-1: new high-speed USB device number 22 using dummy_hcd [ 125.015906][ T1345] usb 5-1: device descriptor read/64, error -71 [ 125.205914][ T5296] Bluetooth: hci1: command tx timeout [ 125.265926][ T1345] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 125.400973][ T8059] bond0: entered promiscuous mode [ 125.402430][ T8059] bond_slave_0: entered promiscuous mode [ 125.404077][ T8059] bond_slave_1: entered promiscuous mode [ 125.406165][ T1345] usb 5-1: device descriptor read/64, error -71 [ 125.408343][ T8059] 8021q: adding VLAN 0 to HW filter on device hsr1 [ 125.412194][ T8059] bond0: left promiscuous mode [ 125.413647][ T8059] bond_slave_0: left promiscuous mode [ 125.415315][ T8059] bond_slave_1: left promiscuous mode [ 125.528039][ T1345] usb usb5-port1: attempt power cycle [ 125.623484][ T8072] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22 [ 125.836851][ T8093] kvm: Disabled LAPIC found during irq injection [ 125.876002][ T1345] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 125.906392][ T1345] usb 5-1: device descriptor read/8, error -71 [ 125.990142][ T8096] kvm: Disabled LAPIC found during irq injection [ 126.089230][ T8098] FAULT_INJECTION: forcing a failure. [ 126.089230][ T8098] name failslab, interval 1, probability 0, space 0, times 0 [ 126.092767][ T8098] CPU: 2 UID: 0 PID: 8098 Comm: syz.3.792 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 126.092781][ T8098] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 126.092788][ T8098] Call Trace: [ 126.092791][ T8098] [ 126.092795][ T8098] dump_stack_lvl+0x16c/0x1f0 [ 126.092813][ T8098] should_fail_ex+0x512/0x640 [ 126.092825][ T8098] ? fs_reclaim_acquire+0xae/0x150 [ 126.092841][ T8098] ? tomoyo_encode2+0x100/0x3e0 [ 126.092855][ T8098] should_failslab+0xc2/0x120 [ 126.092867][ T8098] __kmalloc_noprof+0xd2/0x510 [ 126.092896][ T8098] tomoyo_encode2+0x100/0x3e0 [ 126.092912][ T8098] tomoyo_encode+0x29/0x50 [ 126.092926][ T8098] tomoyo_realpath_from_path+0x18f/0x6e0 [ 126.092942][ T8098] ? tomoyo_profile+0x47/0x60 [ 126.092953][ T8098] tomoyo_path_number_perm+0x245/0x580 [ 126.092965][ T8098] ? tomoyo_path_number_perm+0x237/0x580 [ 126.092979][ T8098] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 126.092992][ T8098] ? find_held_lock+0x2b/0x80 [ 126.093016][ T8098] ? find_held_lock+0x2b/0x80 [ 126.093029][ T8098] ? hook_file_ioctl_common+0x145/0x410 [ 126.093042][ T8098] ? __fget_files+0x20e/0x3c0 [ 126.093053][ T8098] security_file_ioctl+0x9b/0x240 [ 126.093069][ T8098] __x64_sys_ioctl+0xb7/0x200 [ 126.093084][ T8098] do_syscall_64+0xcd/0x260 [ 126.093100][ T8098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.093110][ T8098] RIP: 0033:0x7f4f95b8d169 [ 126.093119][ T8098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 126.093129][ T8098] RSP: 002b:00007f4f96ac5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 126.093139][ T8098] RAX: ffffffffffffffda RBX: 00007f4f95da5fa0 RCX: 00007f4f95b8d169 [ 126.093145][ T8098] RDX: 0000200000000280 RSI: 000000008208ae63 RDI: 0000000000000004 [ 126.093151][ T8098] RBP: 00007f4f96ac5090 R08: 0000000000000000 R09: 0000000000000000 [ 126.093157][ T8098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 126.093163][ T8098] R13: 0000000000000000 R14: 00007f4f95da5fa0 R15: 00007ffcd2593e48 [ 126.093175][ T8098] [ 126.093196][ T8098] ERROR: Out of memory at tomoyo_realpath_from_path. [ 126.145933][ T1345] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 126.147061][ T8098] kvm: Disabled LAPIC found during irq injection [ 126.170908][ T1345] usb 5-1: device descriptor read/8, error -71 [ 126.282363][ T8100] loop6: detected capacity change from 0 to 524287999 [ 126.285479][ C1] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.286939][ T1345] usb usb5-port1: unable to enumerate USB device [ 126.289960][ C0] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.294762][ T64] loop: Write error at byte offset 1, length 4096. [ 126.297459][ C0] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0 [ 126.300711][ C0] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 126.304167][ T64] loop: Write error at byte offset 1, length 4096. [ 126.306192][ C1] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0 [ 126.308734][ C1] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 126.345098][ T8102] sch_tbf: burst 19872 is lower than device lo mtu (39799) ! [ 126.516432][ T8107] __nla_validate_parse: 4 callbacks suppressed [ 126.516445][ T8107] netlink: 8 bytes leftover after parsing attributes in process `syz.1.796'. [ 126.542876][ T8109] loop6: detected capacity change from 0 to 524287999 [ 126.547198][ C1] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.550080][ C1] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.552702][ T12] loop: Write error at byte offset 1, length 4096. [ 126.554588][ C1] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0 [ 126.557856][ C1] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 126.561591][ T8109] FAULT_INJECTION: forcing a failure. [ 126.561591][ T8109] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 126.565302][ T8109] CPU: 3 UID: 0 PID: 8109 Comm: syz.1.797 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 126.565316][ T8109] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 126.565323][ T8109] Call Trace: [ 126.565327][ T8109] [ 126.565331][ T8109] dump_stack_lvl+0x16c/0x1f0 [ 126.565350][ T8109] should_fail_ex+0x512/0x640 [ 126.565362][ T8109] ? page_copy_sane+0xcd/0x2d0 [ 126.565373][ T8109] copy_page_from_iter_atomic+0x3ad/0x1950 [ 126.565390][ T8109] ? __lock_acquire+0xaa4/0x1ba0 [ 126.565400][ T8109] ? __pfx_copy_page_from_iter_atomic+0x10/0x10 [ 126.565412][ T8109] ? fault_in_readable+0x1a7/0x200 [ 126.565427][ T8109] ? __pfx_fault_in_readable+0x10/0x10 [ 126.565439][ T8109] ? rcu_is_watching+0x12/0xc0 [ 126.565452][ T8109] ? I_BDEV+0xd/0x20 [ 126.565466][ T8109] ? inode_to_bdi+0x9e/0x160 [ 126.565480][ T8109] iomap_file_buffered_write+0x645/0xcb0 [ 126.565501][ T8109] ? ns_to_timespec64+0x59/0xc0 [ 126.565518][ T8109] ? __pfx_iomap_file_buffered_write+0x10/0x10 [ 126.565541][ T8109] ? __mark_inode_dirty+0x2a7/0xe50 [ 126.565556][ T8109] ? preempt_count_add+0x76/0x150 [ 126.565567][ T8109] ? mnt_put_write_access_file+0xc1/0xf0 [ 126.565579][ T8109] blkdev_write_iter+0x57d/0xdf0 [ 126.565593][ T8109] vfs_write+0x5ba/0x1180 [ 126.565603][ T8109] ? __pfx_blkdev_write_iter+0x10/0x10 [ 126.565615][ T8109] ? __pfx_vfs_write+0x10/0x10 [ 126.565623][ T8109] ? find_held_lock+0x2b/0x80 [ 126.565641][ T8109] ksys_write+0x12a/0x240 [ 126.565650][ T8109] ? __pfx_ksys_write+0x10/0x10 [ 126.565659][ T8109] ? rcu_is_watching+0x12/0xc0 [ 126.565673][ T8109] do_syscall_64+0xcd/0x260 [ 126.565688][ T8109] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.565699][ T8109] RIP: 0033:0x7f743f78d169 [ 126.565708][ T8109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 126.565718][ T8109] RSP: 002b:00007f744063e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 126.565728][ T8109] RAX: ffffffffffffffda RBX: 00007f743f9a5fa0 RCX: 00007f743f78d169 [ 126.565734][ T8109] RDX: 0000000000000090 RSI: 00002000000002c0 RDI: 0000000000000005 [ 126.565740][ T8109] RBP: 00007f744063e090 R08: 0000000000000000 R09: 0000000000000000 [ 126.565746][ T8109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 126.565751][ T8109] R13: 0000000000000000 R14: 00007f743f9a5fa0 R15: 00007ffddbe35778 [ 126.565762][ T8109] [ 126.635344][ T1236] loop: Write error at byte offset 1, length 4096. [ 126.637339][ C0] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0 [ 126.639896][ C0] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 126.747787][ T8121] netlink: 28 bytes leftover after parsing attributes in process `syz.1.803'. [ 126.813971][ T8131] ata1.00: invalid multi_count 1 ignored [ 127.057217][ T8147] netlink: 28 bytes leftover after parsing attributes in process `syz.2.814'. [ 127.079476][ T40] kauditd_printk_skb: 20 callbacks suppressed [ 127.079485][ T40] audit: type=1400 audit(1744556622.009:545): avc: denied { create } for pid=8148 comm="syz.2.815" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 127.087572][ T40] audit: type=1400 audit(1744556622.009:546): avc: denied { setattr } for pid=8148 comm="syz.2.815" name="NETLINK" dev="sockfs" ino=23764 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 127.291914][ T8163] kvm: Disabled LAPIC found during irq injection [ 127.383918][ T8166] netlink: 28 bytes leftover after parsing attributes in process `syz.3.819'. [ 127.466274][ T8170] kvm: Disabled LAPIC found during irq injection [ 127.498256][ T8174] netlink: 28 bytes leftover after parsing attributes in process `syz.2.823'. [ 127.592669][ T8184] netlink: 28 bytes leftover after parsing attributes in process `syz.3.828'. [ 127.593735][ T8185] loop6: detected capacity change from 0 to 524287999 [ 127.602433][ C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 127.700258][ T8196] loop6: detected capacity change from 0 to 524287999 [ 127.704164][ C0] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 127.707320][ T102] loop: Write error at byte offset 1, length 4096. [ 127.709193][ C0] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 127.714390][ T1182] loop: Write error at byte offset 1, length 4096. [ 127.716268][ C1] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 127.731305][ T8200] netlink: 88 bytes leftover after parsing attributes in process `syz.3.835'. [ 127.752398][ T8204] netlink: 28 bytes leftover after parsing attributes in process `syz.1.837'. [ 127.789683][ T40] audit: type=1400 audit(1744556622.719:547): avc: denied { create } for pid=8201 comm="syz.0.836" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 127.807936][ T40] audit: type=1400 audit(1744556622.739:548): avc: denied { write } for pid=8201 comm="syz.0.836" path="socket:[23797]" dev="sockfs" ino=23797 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 127.828289][ T8216] netlink: 8 bytes leftover after parsing attributes in process `syz.3.841'. [ 127.869243][ T8221] input: syz1 as /devices/virtual/input/input10 [ 127.901719][ T8224] FAULT_INJECTION: forcing a failure. [ 127.901719][ T8224] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 127.910058][ T8224] CPU: 3 UID: 0 PID: 8224 Comm: syz.0.844 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 127.910075][ T8224] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 127.910082][ T8224] Call Trace: [ 127.910086][ T8224] [ 127.910090][ T8224] dump_stack_lvl+0x16c/0x1f0 [ 127.910109][ T8224] should_fail_ex+0x512/0x640 [ 127.910123][ T8224] _copy_from_iter+0x2a4/0x15b0 [ 127.910137][ T8224] ? __alloc_skb+0x200/0x380 [ 127.910151][ T8224] ? __pfx__copy_from_iter+0x10/0x10 [ 127.910164][ T8224] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 127.910185][ T8224] netlink_sendmsg+0x829/0xdd0 [ 127.910202][ T8224] ? __pfx_netlink_sendmsg+0x10/0x10 [ 127.910222][ T8224] ____sys_sendmsg+0xa95/0xc70 [ 127.910240][ T8224] ? copy_msghdr_from_user+0x10a/0x160 [ 127.910252][ T8224] ? __pfx_____sys_sendmsg+0x10/0x10 [ 127.910276][ T8224] ___sys_sendmsg+0x134/0x1d0 [ 127.910290][ T8224] ? __pfx____sys_sendmsg+0x10/0x10 [ 127.910320][ T8224] __sys_sendmsg+0x16d/0x220 [ 127.910333][ T8224] ? __pfx___sys_sendmsg+0x10/0x10 [ 127.910350][ T8224] ? rcu_is_watching+0x12/0xc0 [ 127.910369][ T8224] do_syscall_64+0xcd/0x260 [ 127.910385][ T8224] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.910396][ T8224] RIP: 0033:0x7fa27b78d169 [ 127.910405][ T8224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 127.910416][ T8224] RSP: 002b:00007fa2795f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 127.910427][ T8224] RAX: ffffffffffffffda RBX: 00007fa27b9a5fa0 RCX: 00007fa27b78d169 [ 127.910433][ T8224] RDX: 0000000000000040 RSI: 0000200000000200 RDI: 0000000000000003 [ 127.910440][ T8224] RBP: 00007fa2795f6090 R08: 0000000000000000 R09: 0000000000000000 [ 127.910446][ T8224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 127.910452][ T8224] R13: 0000000000000000 R14: 00007fa27b9a5fa0 R15: 00007ffd7e18ae38 [ 127.910465][ T8224] [ 127.979221][ T8229] netlink: 88 bytes leftover after parsing attributes in process `syz.1.846'. [ 128.014520][ T8234] fuse: Unknown parameter 'grou00000000000000000000' [ 128.078078][ T40] audit: type=1400 audit(1744556623.009:549): avc: denied { create } for pid=8238 comm="syz.1.850" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1 [ 128.085343][ T8239] Cannot find del_set index 4 as target [ 128.101778][ T40] audit: type=1400 audit(1744556623.029:550): avc: denied { write } for pid=8238 comm="syz.1.850" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1 [ 128.204271][ T40] audit: type=1400 audit(1744556623.129:551): avc: denied { listen } for pid=8255 comm="syz.3.857" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 128.210764][ T40] audit: type=1400 audit(1744556623.129:552): avc: denied { setopt } for pid=8255 comm="syz.3.857" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 128.229397][ T8261] fuse: Unknown parameter 'grou00000000000000000000' [ 128.271059][ T40] audit: type=1400 audit(1744556623.189:553): avc: denied { accept } for pid=8263 comm="syz.1.860" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 128.287170][ T40] audit: type=1400 audit(1744556623.219:554): avc: denied { mount } for pid=8262 comm="syz.3.859" name="/" dev="hugetlbfs" ino=22319 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 [ 128.466430][ T8284] loop6: detected capacity change from 0 to 524287999 [ 128.535035][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.537297][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.539491][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.541562][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.545611][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.547978][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.550076][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.552091][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.554125][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.556281][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.558332][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.560357][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.562403][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.564438][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.566742][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.568779][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.571210][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.573221][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.575248][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.577362][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.579408][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.581428][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.583446][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.585491][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.587683][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.589730][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.591764][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.593839][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.595923][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.597994][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.598077][ T8292] FAULT_INJECTION: forcing a failure. [ 128.598077][ T8292] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 128.600020][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.603612][ T8292] CPU: 2 UID: 0 PID: 8292 Comm: syz.2.870 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 128.603627][ T8292] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 128.603633][ T8292] Call Trace: [ 128.603637][ T8292] [ 128.603641][ T8292] dump_stack_lvl+0x16c/0x1f0 [ 128.603659][ T8292] should_fail_ex+0x512/0x640 [ 128.603672][ T8292] _copy_from_user+0x2e/0xd0 [ 128.603684][ T8292] memdup_user+0x6b/0xe0 [ 128.603697][ T8292] kvm_arch_vm_ioctl+0x11ca/0x1cf0 [ 128.603715][ T8292] ? __pfx_kvm_arch_vm_ioctl+0x10/0x10 [ 128.603732][ T8292] ? __lock_acquire+0x5ca/0x1ba0 [ 128.603744][ T8292] ? __lock_acquire+0x5ca/0x1ba0 [ 128.603755][ T8292] ? __lock_acquire+0x5ca/0x1ba0 [ 128.603767][ T8292] ? __lock_acquire+0x5ca/0x1ba0 [ 128.603785][ T8292] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 128.603800][ T8292] ? is_bpf_text_address+0x94/0x1a0 [ 128.603811][ T8292] ? kernel_text_address+0x8d/0x100 [ 128.603824][ T8292] ? __kernel_text_address+0xd/0x40 [ 128.603836][ T8292] ? unwind_get_return_address+0x59/0xa0 [ 128.603850][ T8292] ? arch_stack_walk+0xa6/0x100 [ 128.603868][ T8292] ? stack_trace_save+0x8e/0xc0 [ 128.603881][ T8292] ? __pfx_stack_trace_save+0x10/0x10 [ 128.603894][ T8292] ? stack_depot_save_flags+0x28/0xa50 [ 128.603906][ T8292] ? __lock_acquire+0xaa4/0x1ba0 [ 128.603916][ T8292] ? kasan_save_stack+0x42/0x60 [ 128.603925][ T8292] ? kasan_save_stack+0x33/0x60 [ 128.603934][ T8292] ? kasan_save_track+0x14/0x30 [ 128.603942][ T8292] ? kasan_save_free_info+0x3b/0x60 [ 128.603956][ T8292] ? __kasan_slab_free+0x51/0x70 [ 128.603965][ T8292] ? kfree+0x2b6/0x4d0 [ 128.603979][ T8292] ? tomoyo_path_number_perm+0x470/0x580 [ 128.603992][ T8292] ? security_file_ioctl+0x9b/0x240 [ 128.604006][ T8292] ? __x64_sys_ioctl+0xb7/0x200 [ 128.604020][ T8292] ? do_syscall_64+0xcd/0x260 [ 128.604035][ T8292] kvm_vm_ioctl+0x1985/0x3d40 [ 128.604053][ T8292] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 128.604072][ T8292] ? kasan_quarantine_put+0x10a/0x240 [ 128.604081][ T8292] ? lockdep_hardirqs_on+0x7c/0x110 [ 128.604096][ T8292] ? find_held_lock+0x2b/0x80 [ 128.604109][ T8292] ? tomoyo_path_number_perm+0x295/0x580 [ 128.604123][ T8292] ? tomoyo_path_number_perm+0x18d/0x580 [ 128.604137][ T8292] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 128.604149][ T8292] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 128.604161][ T8292] ? do_vfs_ioctl+0x512/0x1990 [ 128.604175][ T8292] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 128.604192][ T8292] ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450 [ 128.604213][ T8292] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 128.604233][ T8292] ? hook_file_ioctl_common+0x145/0x410 [ 128.604246][ T8292] ? selinux_file_ioctl+0x180/0x270 [ 128.604261][ T8292] ? selinux_file_ioctl+0xb4/0x270 [ 128.604277][ T8292] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 128.604290][ T8292] __x64_sys_ioctl+0x190/0x200 [ 128.604305][ T8292] do_syscall_64+0xcd/0x260 [ 128.604319][ T8292] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.604330][ T8292] RIP: 0033:0x7f0ca558d169 [ 128.604338][ T8292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 128.604348][ T8292] RSP: 002b:00007f0ca64c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 128.604358][ T8292] RAX: ffffffffffffffda RBX: 00007f0ca57a5fa0 RCX: 00007f0ca558d169 [ 128.604365][ T8292] RDX: 0000200000000280 RSI: 000000008208ae63 RDI: 0000000000000004 [ 128.604371][ T8292] RBP: 00007f0ca64c6090 R08: 0000000000000000 R09: 0000000000000000 [ 128.604376][ T8292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 128.604382][ T8292] R13: 0000000000000000 R14: 00007f0ca57a5fa0 R15: 00007fff2200a448 [ 128.604394][ T8292] [ 128.706571][ T835] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 128.710078][ T835] hid-generic 0000:0000:0000.0008: hidraw1: HID vffffff.ff Device [syz0] on syz0 [ 128.803958][ T64] loop: Write error at byte offset 1, length 4096. [ 128.806218][ C0] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 128.808961][ T1182] loop: Write error at byte offset 1, length 4096. [ 128.811457][ C2] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 128.831515][ C1] Buffer I/O error on dev loop6, logical block 65535968, async page read [ 128.901186][ T8299] FAULT_INJECTION: forcing a failure. [ 128.901186][ T8299] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 128.904879][ T8299] CPU: 2 UID: 0 PID: 8299 Comm: syz.2.873 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 128.904894][ T8299] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 128.904901][ T8299] Call Trace: [ 128.904904][ T8299] [ 128.904908][ T8299] dump_stack_lvl+0x16c/0x1f0 [ 128.904927][ T8299] should_fail_ex+0x512/0x640 [ 128.904940][ T8299] should_fail_alloc_page+0xe7/0x130 [ 128.904953][ T8299] prepare_alloc_pages+0x3c2/0x610 [ 128.904971][ T8299] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 128.904987][ T8299] ? stack_trace_save+0x8e/0xc0 [ 128.905001][ T8299] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 128.905014][ T8299] ? __alloc_frozen_pages_noprof+0x298/0x23a0 [ 128.905026][ T8299] ? kasan_save_track+0x14/0x30 [ 128.905036][ T8299] ? __kasan_slab_alloc+0x89/0x90 [ 128.905045][ T8299] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 128.905055][ T8299] ? __pmd_alloc+0xc3/0x870 [ 128.905067][ T8299] ? __handle_mm_fault+0x948/0x2a40 [ 128.905082][ T8299] ? handle_mm_fault+0x3fe/0xad0 [ 128.905097][ T8299] ? do_user_addr_fault+0x7a6/0x1370 [ 128.905109][ T8299] ? exc_page_fault+0x5c/0xc0 [ 128.905121][ T8299] ? asm_exc_page_fault+0x26/0x30 [ 128.905131][ T8299] ? _copy_from_user+0x93/0xd0 [ 128.905142][ T8299] ? do_sock_getsockopt+0x5f4/0x800 [ 128.905161][ T8299] ? __sys_getsockopt+0x12f/0x260 [ 128.905171][ T8299] ? __x64_sys_getsockopt+0xbd/0x160 [ 128.905182][ T8299] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 128.905194][ T8299] ? policy_nodemask+0xea/0x4e0 [ 128.905207][ T8299] alloc_pages_mpol+0x1fb/0x550 [ 128.905219][ T8299] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 128.905234][ T8299] alloc_pages_noprof+0x131/0x390 [ 128.905246][ T8299] pte_alloc_one+0x19/0x380 [ 128.905260][ T8299] __pte_alloc+0x6d/0x3c0 [ 128.905272][ T8299] ? __pfx___pte_alloc+0x10/0x10 [ 128.905285][ T8299] ? do_raw_spin_lock+0x12c/0x2b0 [ 128.905297][ T8299] ? find_held_lock+0x2b/0x80 [ 128.905311][ T8299] do_pte_missing+0x2925/0x3fb0 [ 128.905328][ T8299] ? _raw_spin_unlock+0x28/0x50 [ 128.905340][ T8299] ? __pmd_alloc+0x3c2/0x870 [ 128.905355][ T8299] __handle_mm_fault+0x103d/0x2a40 [ 128.905375][ T8299] ? __pfx___handle_mm_fault+0x10/0x10 [ 128.905398][ T8299] ? find_vma+0xbf/0x140 [ 128.905410][ T8299] ? __pfx_find_vma+0x10/0x10 [ 128.905424][ T8299] handle_mm_fault+0x3fe/0xad0 [ 128.905442][ T8299] do_user_addr_fault+0x7a6/0x1370 [ 128.905455][ T8299] ? rcu_is_watching+0x12/0xc0 [ 128.905470][ T8299] exc_page_fault+0x5c/0xc0 [ 128.905483][ T8299] asm_exc_page_fault+0x26/0x30 [ 128.905492][ T8299] RIP: 0010:_copy_from_user+0x93/0xd0 [ 128.905504][ T8299] Code: 94 eb fc 89 ee 4c 89 ef 48 b8 00 f0 ff ff ff 7f 00 00 48 39 c3 48 0f 47 d8 e8 99 0e 51 fd 0f 01 cb 4c 89 ef 48 89 de 48 89 e9 a4 0f 1f 00 49 89 cc 48 89 cb 0f 01 ca 31 ff 48 89 ce e8 f5 8f [ 128.905514][ T8299] RSP: 0018:ffffc9002077fd68 EFLAGS: 00050297 [ 128.905523][ T8299] RAX: 0000000000000001 RBX: 0000200000000140 RCX: 0000000000000004 [ 128.905530][ T8299] RDX: fffff520040effbc RSI: 0000200000000140 RDI: ffffc9002077fde0 [ 128.905536][ T8299] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff520040effbc [ 128.905542][ T8299] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 128.905547][ T8299] R13: ffffc9002077fde0 R14: 0000000000000000 R15: 0000000000000000 [ 128.905560][ T8299] ? _copy_from_user+0x87/0xd0 [ 128.905571][ T8299] do_sock_getsockopt+0x5f4/0x800 [ 128.905588][ T8299] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 128.905602][ T8299] ? __fget_files+0x204/0x3c0 [ 128.905618][ T8299] __sys_getsockopt+0x12f/0x260 [ 128.905632][ T8299] __x64_sys_getsockopt+0xbd/0x160 [ 128.905643][ T8299] ? do_syscall_64+0x91/0x260 [ 128.905657][ T8299] ? lockdep_hardirqs_on+0x7c/0x110 [ 128.905670][ T8299] do_syscall_64+0xcd/0x260 [ 128.905685][ T8299] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.905694][ T8299] RIP: 0033:0x7f0ca558d169 [ 128.905703][ T8299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 128.905712][ T8299] RSP: 002b:00007f0ca64c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 128.905721][ T8299] RAX: ffffffffffffffda RBX: 00007f0ca57a5fa0 RCX: 00007f0ca558d169 [ 128.905727][ T8299] RDX: 0000000000000083 RSI: 0000000000000000 RDI: 0000000000000003 [ 128.905732][ T8299] RBP: 00007f0ca64c6090 R08: 0000200000000140 R09: 0000000000000000 [ 128.905738][ T8299] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001 [ 128.905744][ T8299] R13: 0000000000000000 R14: 00007f0ca57a5fa0 R15: 00007fff2200a448 [ 128.905756][ T8299] [ 129.027759][ C2] vkms_vblank_simulate: vblank timer overrun [ 129.214760][ T8311] syz.0.877 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 129.258789][ T8318] FAULT_INJECTION: forcing a failure. [ 129.258789][ T8318] name failslab, interval 1, probability 0, space 0, times 0 [ 129.262226][ T8318] CPU: 1 UID: 0 PID: 8318 Comm: syz.0.881 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 129.262241][ T8318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 129.262247][ T8318] Call Trace: [ 129.262251][ T8318] [ 129.262255][ T8318] dump_stack_lvl+0x16c/0x1f0 [ 129.262274][ T8318] should_fail_ex+0x512/0x640 [ 129.262288][ T8318] should_failslab+0xc2/0x120 [ 129.262300][ T8318] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 129.262311][ T8318] ? skb_clone+0x190/0x3f0 [ 129.262327][ T8318] skb_clone+0x190/0x3f0 [ 129.262340][ T8318] netlink_deliver_tap+0xabd/0xd30 [ 129.262357][ T8318] netlink_unicast+0x5df/0x7f0 [ 129.262373][ T8318] ? __pfx_netlink_unicast+0x10/0x10 [ 129.262391][ T8318] netlink_sendmsg+0x8d1/0xdd0 [ 129.262407][ T8318] ? __pfx_netlink_sendmsg+0x10/0x10 [ 129.262426][ T8318] ____sys_sendmsg+0xa95/0xc70 [ 129.262442][ T8318] ? copy_msghdr_from_user+0x10a/0x160 [ 129.262455][ T8318] ? __pfx_____sys_sendmsg+0x10/0x10 [ 129.262476][ T8318] ___sys_sendmsg+0x134/0x1d0 [ 129.262490][ T8318] ? __pfx____sys_sendmsg+0x10/0x10 [ 129.262518][ T8318] __sys_sendmsg+0x16d/0x220 [ 129.262530][ T8318] ? __pfx___sys_sendmsg+0x10/0x10 [ 129.262551][ T8318] do_syscall_64+0xcd/0x260 [ 129.262570][ T8318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.262581][ T8318] RIP: 0033:0x7fa27b78d169 [ 129.262589][ T8318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 129.262599][ T8318] RSP: 002b:00007fa2795f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 129.262609][ T8318] RAX: ffffffffffffffda RBX: 00007fa27b9a5fa0 RCX: 00007fa27b78d169 [ 129.262615][ T8318] RDX: 0000000000000040 RSI: 0000200000000200 RDI: 0000000000000003 [ 129.262621][ T8318] RBP: 00007fa2795f6090 R08: 0000000000000000 R09: 0000000000000000 [ 129.262627][ T8318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 129.262633][ T8318] R13: 0000000000000000 R14: 00007fa27b9a5fa0 R15: 00007ffd7e18ae38 [ 129.262645][ T8318] [ 129.347440][ T8325] SELinux: Context system_u:object_r:semanage_exec_t:s0 is not valid (left unmapped). [ 130.155628][ T8335] fuse: Unknown parameter 'group_i00000000000000000000' [ 130.217108][ T8341] overlayfs: conflicting options: userxattr,metacopy=on [ 130.222467][ T8341] nfs4: Unknown parameter 'fsname' [ 130.291163][ T8344] kvm: Disabled LAPIC found during irq injection [ 130.406529][ T8352] FAULT_INJECTION: forcing a failure. [ 130.406529][ T8352] name failslab, interval 1, probability 0, space 0, times 0 [ 130.411101][ T8352] CPU: 0 UID: 0 PID: 8352 Comm: syz.2.893 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 130.411123][ T8352] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 130.411133][ T8352] Call Trace: [ 130.411139][ T8352] [ 130.411145][ T8352] dump_stack_lvl+0x16c/0x1f0 [ 130.411170][ T8352] should_fail_ex+0x512/0x640 [ 130.411190][ T8352] should_failslab+0xc2/0x120 [ 130.411209][ T8352] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 130.411227][ T8352] ? skb_clone+0x190/0x3f0 [ 130.411249][ T8352] skb_clone+0x190/0x3f0 [ 130.411268][ T8352] netlink_deliver_tap+0xabd/0xd30 [ 130.411294][ T8352] netlink_unicast+0x5df/0x7f0 [ 130.411317][ T8352] ? __pfx_netlink_unicast+0x10/0x10 [ 130.411343][ T8352] netlink_sendmsg+0x8d1/0xdd0 [ 130.411365][ T8352] ? __pfx_netlink_sendmsg+0x10/0x10 [ 130.411393][ T8352] ____sys_sendmsg+0xa95/0xc70 [ 130.411416][ T8352] ? copy_msghdr_from_user+0x10a/0x160 [ 130.411440][ T8352] ? __pfx_____sys_sendmsg+0x10/0x10 [ 130.411463][ T8352] ___sys_sendmsg+0x134/0x1d0 [ 130.411476][ T8352] ? __pfx____sys_sendmsg+0x10/0x10 [ 130.411504][ T8352] __sys_sendmsg+0x16d/0x220 [ 130.411516][ T8352] ? __pfx___sys_sendmsg+0x10/0x10 [ 130.411532][ T8352] ? rcu_is_watching+0x12/0xc0 [ 130.411550][ T8352] do_syscall_64+0xcd/0x260 [ 130.411566][ T8352] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 130.411576][ T8352] RIP: 0033:0x7f0ca558d169 [ 130.411585][ T8352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 130.411595][ T8352] RSP: 002b:00007f0ca64c6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 130.411605][ T8352] RAX: ffffffffffffffda RBX: 00007f0ca57a5fa0 RCX: 00007f0ca558d169 [ 130.411612][ T8352] RDX: 0000000000040044 RSI: 0000200000000200 RDI: 0000000000000003 [ 130.411618][ T8352] RBP: 00007f0ca64c6090 R08: 0000000000000000 R09: 0000000000000000 [ 130.411624][ T8352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 130.411629][ T8352] R13: 0000000000000000 R14: 00007f0ca57a5fa0 R15: 00007fff2200a448 [ 130.411642][ T8352] [ 130.627782][ T57] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 130.796527][ T57] usb 5-1: too many configurations: 9, using maximum allowed: 8 [ 130.800130][ T57] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.802674][ T57] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.805672][ T57] usb 5-1: config 0 interface 0 has no altsetting 0 [ 130.808416][ T57] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.810883][ T57] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.813868][ T57] usb 5-1: config 0 interface 0 has no altsetting 0 [ 130.816557][ T57] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.819212][ T57] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.823071][ T57] usb 5-1: config 0 interface 0 has no altsetting 0 [ 130.826283][ T57] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.829933][ T57] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.833169][ T57] usb 5-1: config 0 interface 0 has no altsetting 0 [ 130.836336][ T57] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.839629][ T57] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.842711][ T57] usb 5-1: config 0 interface 0 has no altsetting 0 [ 130.845538][ T57] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.848317][ T57] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.851467][ T57] usb 5-1: config 0 interface 0 has no altsetting 0 [ 130.854122][ T57] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.856693][ T57] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.859675][ T57] usb 5-1: config 0 interface 0 has no altsetting 0 [ 130.862268][ T57] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.864738][ T57] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.867819][ T57] usb 5-1: config 0 interface 0 has no altsetting 0 [ 130.871201][ T57] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 130.873786][ T57] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 130.876171][ T57] usb 5-1: Product: syz [ 130.877493][ T57] usb 5-1: Manufacturer: syz [ 130.878817][ T57] usb 5-1: SerialNumber: syz [ 130.881384][ T57] usb 5-1: config 0 descriptor?? [ 130.886571][ T57] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0 [ 131.082391][ T8364] fuse: Unknown parameter 'group_i00000000000000000000' [ 131.564615][ T8374] __nla_validate_parse: 17 callbacks suppressed [ 131.564626][ T8374] netlink: 8 bytes leftover after parsing attributes in process `syz.3.900'. [ 131.575699][ T8375] kvm: Disabled LAPIC found during irq injection [ 131.577868][ T8375] FAULT_INJECTION: forcing a failure. [ 131.577868][ T8375] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 131.581569][ T8375] CPU: 2 UID: 0 PID: 8375 Comm: syz.2.901 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 131.581584][ T8375] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 131.581590][ T8375] Call Trace: [ 131.581594][ T8375] [ 131.581598][ T8375] dump_stack_lvl+0x16c/0x1f0 [ 131.581615][ T8375] should_fail_ex+0x512/0x640 [ 131.581629][ T8375] _copy_to_user+0x32/0xd0 [ 131.581643][ T8375] simple_read_from_buffer+0xcb/0x170 [ 131.581660][ T8375] proc_fail_nth_read+0x197/0x270 [ 131.581677][ T8375] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 131.581694][ T8375] ? rw_verify_area+0xcf/0x680 [ 131.581708][ T8375] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 131.581724][ T8375] vfs_read+0x1de/0xc70 [ 131.581741][ T8375] ? __pfx___mutex_lock+0x10/0x10 [ 131.581756][ T8375] ? __pfx_vfs_read+0x10/0x10 [ 131.581774][ T8375] ? __fget_files+0x20e/0x3c0 [ 131.581788][ T8375] ksys_read+0x12a/0x240 [ 131.581796][ T8375] ? __pfx_ksys_read+0x10/0x10 [ 131.581808][ T8375] do_syscall_64+0xcd/0x260 [ 131.581823][ T8375] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.581834][ T8375] RIP: 0033:0x7f0ca558bb7c [ 131.581842][ T8375] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 131.581852][ T8375] RSP: 002b:00007f0ca64c6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 131.581862][ T8375] RAX: ffffffffffffffda RBX: 00007f0ca57a5fa0 RCX: 00007f0ca558bb7c [ 131.581869][ T8375] RDX: 000000000000000f RSI: 00007f0ca64c60a0 RDI: 0000000000000006 [ 131.581875][ T8375] RBP: 00007f0ca64c6090 R08: 0000000000000000 R09: 0000000000000000 [ 131.581880][ T8375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 131.581886][ T8375] R13: 0000000000000000 R14: 00007f0ca57a5fa0 R15: 00007fff2200a448 [ 131.581898][ T8375] [ 131.597972][ T8377] netlink: 28 bytes leftover after parsing attributes in process `syz.3.902'. [ 131.690459][ T8381] FAULT_INJECTION: forcing a failure. [ 131.690459][ T8381] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 131.694565][ T8381] CPU: 3 UID: 0 PID: 8381 Comm: syz.3.904 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 131.694586][ T8381] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 131.694595][ T8381] Call Trace: [ 131.694601][ T8381] [ 131.694607][ T8381] dump_stack_lvl+0x16c/0x1f0 [ 131.694634][ T8381] should_fail_ex+0x512/0x640 [ 131.694653][ T8381] _copy_from_user+0x2e/0xd0 [ 131.694670][ T8381] copy_msghdr_from_user+0x98/0x160 [ 131.694689][ T8381] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 131.694717][ T8381] ___sys_sendmsg+0xfe/0x1d0 [ 131.694735][ T8381] ? __pfx____sys_sendmsg+0x10/0x10 [ 131.694777][ T8381] __sys_sendmsg+0x16d/0x220 [ 131.694795][ T8381] ? __pfx___sys_sendmsg+0x10/0x10 [ 131.694825][ T8381] do_syscall_64+0xcd/0x260 [ 131.694846][ T8381] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.694861][ T8381] RIP: 0033:0x7f4f95b8d169 [ 131.694873][ T8381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.694888][ T8381] RSP: 002b:00007f4f96ac5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 131.694902][ T8381] RAX: ffffffffffffffda RBX: 00007f4f95da5fa0 RCX: 00007f4f95b8d169 [ 131.694911][ T8381] RDX: 0000000020044000 RSI: 0000200000000040 RDI: 0000000000000003 [ 131.694921][ T8381] RBP: 00007f4f96ac5090 R08: 0000000000000000 R09: 0000000000000000 [ 131.694929][ T8381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 131.694937][ T8381] R13: 0000000000000000 R14: 00007f4f95da5fa0 R15: 00007ffcd2593e48 [ 131.694957][ T8381] [ 131.729275][ T8383] FAULT_INJECTION: forcing a failure. [ 131.729275][ T8383] name failslab, interval 1, probability 0, space 0, times 0 [ 131.746659][ T8383] CPU: 2 UID: 0 PID: 8383 Comm: syz.2.905 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 131.746673][ T8383] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 131.746680][ T8383] Call Trace: [ 131.746684][ T8383] [ 131.746688][ T8383] dump_stack_lvl+0x16c/0x1f0 [ 131.746706][ T8383] should_fail_ex+0x512/0x640 [ 131.746718][ T8383] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 131.746730][ T8383] should_failslab+0xc2/0x120 [ 131.746742][ T8383] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 131.746753][ T8383] ? ptlock_alloc+0x1f/0x70 [ 131.746771][ T8383] ptlock_alloc+0x1f/0x70 [ 131.746786][ T8383] pte_alloc_one+0x6d/0x380 [ 131.746800][ T8383] __pte_alloc+0x6d/0x3c0 [ 131.746813][ T8383] ? __pfx___pte_alloc+0x10/0x10 [ 131.746826][ T8383] ? do_raw_spin_lock+0x12c/0x2b0 [ 131.746837][ T8383] ? find_held_lock+0x2b/0x80 [ 131.746851][ T8383] do_pte_missing+0x2925/0x3fb0 [ 131.746868][ T8383] ? _raw_spin_unlock+0x28/0x50 [ 131.746880][ T8383] ? __pmd_alloc+0x3c2/0x870 [ 131.746895][ T8383] __handle_mm_fault+0x103d/0x2a40 [ 131.746914][ T8383] ? __pfx___handle_mm_fault+0x10/0x10 [ 131.746937][ T8383] ? find_vma+0xbf/0x140 [ 131.746949][ T8383] ? __pfx_find_vma+0x10/0x10 [ 131.746963][ T8383] handle_mm_fault+0x3fe/0xad0 [ 131.746982][ T8383] do_user_addr_fault+0x7a6/0x1370 [ 131.746995][ T8383] ? rcu_is_watching+0x12/0xc0 [ 131.747009][ T8383] exc_page_fault+0x5c/0xc0 [ 131.747023][ T8383] asm_exc_page_fault+0x26/0x30 [ 131.747032][ T8383] RIP: 0010:_copy_from_user+0x93/0xd0 [ 131.747045][ T8383] Code: 94 eb fc 89 ee 4c 89 ef 48 b8 00 f0 ff ff ff 7f 00 00 48 39 c3 48 0f 47 d8 e8 99 0e 51 fd 0f 01 cb 4c 89 ef 48 89 de 48 89 e9 a4 0f 1f 00 49 89 cc 48 89 cb 0f 01 ca 31 ff 48 89 ce e8 f5 8f [ 131.747054][ T8383] RSP: 0018:ffffc90022d57d68 EFLAGS: 00050297 [ 131.747063][ T8383] RAX: 0000000000000001 RBX: 0000200000000140 RCX: 0000000000000004 [ 131.747069][ T8383] RDX: fffff520045aafbc RSI: 0000200000000140 RDI: ffffc90022d57de0 [ 131.747076][ T8383] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff520045aafbc [ 131.747082][ T8383] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 131.747087][ T8383] R13: ffffc90022d57de0 R14: 0000000000000000 R15: 0000000000000000 [ 131.747099][ T8383] ? _copy_from_user+0x87/0xd0 [ 131.747111][ T8383] do_sock_getsockopt+0x5f4/0x800 [ 131.747128][ T8383] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 131.747143][ T8383] ? __fget_files+0x204/0x3c0 [ 131.747158][ T8383] __sys_getsockopt+0x12f/0x260 [ 131.747173][ T8383] __x64_sys_getsockopt+0xbd/0x160 [ 131.747184][ T8383] ? do_syscall_64+0x91/0x260 [ 131.747198][ T8383] ? lockdep_hardirqs_on+0x7c/0x110 [ 131.747210][ T8383] do_syscall_64+0xcd/0x260 [ 131.747225][ T8383] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.747235][ T8383] RIP: 0033:0x7f0ca558d169 [ 131.747243][ T8383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.747253][ T8383] RSP: 002b:00007f0ca64c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 131.747261][ T8383] RAX: ffffffffffffffda RBX: 00007f0ca57a5fa0 RCX: 00007f0ca558d169 [ 131.747268][ T8383] RDX: 0000000000000083 RSI: 0000000000000000 RDI: 0000000000000003 [ 131.747273][ T8383] RBP: 00007f0ca64c6090 R08: 0000200000000140 R09: 0000000000000000 [ 131.747279][ T8383] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001 [ 131.747285][ T8383] R13: 0000000000000000 R14: 00007f0ca57a5fa0 R15: 00007fff2200a448 [ 131.747298][ T8383] [ 131.851361][ C2] vkms_vblank_simulate: vblank timer overrun [ 131.874468][ T8389] fuse: Unknown parameter 'group_i00000000000000000000' [ 131.929226][ T8396] FAULT_INJECTION: forcing a failure. [ 131.929226][ T8396] name failslab, interval 1, probability 0, space 0, times 0 [ 131.932731][ T8396] CPU: 2 UID: 0 PID: 8396 Comm: syz.3.909 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 131.932745][ T8396] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 131.932751][ T8396] Call Trace: [ 131.932755][ T8396] [ 131.932759][ T8396] dump_stack_lvl+0x16c/0x1f0 [ 131.932778][ T8396] should_fail_ex+0x512/0x640 [ 131.932789][ T8396] ? __kmalloc_noprof+0xbf/0x510 [ 131.932801][ T8396] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 131.932836][ T8396] should_failslab+0xc2/0x120 [ 131.932852][ T8396] __kmalloc_noprof+0xd2/0x510 [ 131.932863][ T8396] ? avc_has_perm_noaudit+0x149/0x3b0 [ 131.932875][ T8396] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 131.932895][ T8396] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 131.932912][ T8396] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 131.932933][ T8396] ? bpf_lsm_capable+0x9/0x10 [ 131.932942][ T8396] ? security_capable+0x7e/0x260 [ 131.932954][ T8396] ? ns_capable+0xd7/0x110 [ 131.932969][ T8396] genl_rcv_msg+0x55c/0x800 [ 131.932986][ T8396] ? __pfx_genl_rcv_msg+0x10/0x10 [ 131.933002][ T8396] ? __pfx___dev_queue_xmit+0x10/0x10 [ 131.933013][ T8396] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 131.933027][ T8396] ? __pfx_nl80211_new_key+0x10/0x10 [ 131.933041][ T8396] ? __pfx_nl80211_post_doit+0x10/0x10 [ 131.933056][ T8396] ? __lock_acquire+0xaa4/0x1ba0 [ 131.933068][ T8396] netlink_rcv_skb+0x16a/0x440 [ 131.933082][ T8396] ? __pfx_genl_rcv_msg+0x10/0x10 [ 131.933098][ T8396] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 131.933119][ T8396] ? __pfx_down_read+0x10/0x10 [ 131.933147][ T8396] ? netlink_deliver_tap+0x1ae/0xd30 [ 131.933162][ T8396] genl_rcv+0x28/0x40 [ 131.933177][ T8396] netlink_unicast+0x53a/0x7f0 [ 131.933192][ T8396] ? __pfx_netlink_unicast+0x10/0x10 [ 131.933210][ T8396] netlink_sendmsg+0x8d1/0xdd0 [ 131.933226][ T8396] ? __pfx_netlink_sendmsg+0x10/0x10 [ 131.933248][ T8396] ____sys_sendmsg+0xa95/0xc70 [ 131.933265][ T8396] ? copy_msghdr_from_user+0x10a/0x160 [ 131.933277][ T8396] ? __pfx_____sys_sendmsg+0x10/0x10 [ 131.933298][ T8396] ___sys_sendmsg+0x134/0x1d0 [ 131.933311][ T8396] ? __pfx____sys_sendmsg+0x10/0x10 [ 131.933338][ T8396] __sys_sendmsg+0x16d/0x220 [ 131.933351][ T8396] ? __pfx___sys_sendmsg+0x10/0x10 [ 131.933367][ T8396] ? rcu_is_watching+0x12/0xc0 [ 131.933383][ T8396] do_syscall_64+0xcd/0x260 [ 131.933398][ T8396] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.933409][ T8396] RIP: 0033:0x7f4f95b8d169 [ 131.933418][ T8396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.933428][ T8396] RSP: 002b:00007f4f96ac5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 131.933437][ T8396] RAX: ffffffffffffffda RBX: 00007f4f95da5fa0 RCX: 00007f4f95b8d169 [ 131.933444][ T8396] RDX: 0000000000000040 RSI: 0000200000000200 RDI: 0000000000000003 [ 131.933449][ T8396] RBP: 00007f4f96ac5090 R08: 0000000000000000 R09: 0000000000000000 [ 131.933455][ T8396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 131.933461][ T8396] R13: 0000000000000000 R14: 00007f4f95da5fa0 R15: 00007ffcd2593e48 [ 131.933473][ T8396] [ 131.988090][ T8402] netlink: 28 bytes leftover after parsing attributes in process `syz.2.911'. [ 131.988484][ C2] vkms_vblank_simulate: vblank timer overrun [ 132.025821][ C2] vkms_vblank_simulate: vblank timer overrun [ 132.266611][ T8431] fuse: Unknown parameter 'group_id00000000000000000000' [ 132.487608][ T1422] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.489456][ T1422] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.509291][ T8450] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=2127025820 (17016206560 ns) > initial count (531146608 ns). Using initial count to start timer. [ 132.514883][ T8450] kvm: Disabled LAPIC found during irq injection [ 132.889395][ T40] kauditd_printk_skb: 21 callbacks suppressed [ 132.889406][ T40] audit: type=1326 audit(1744556627.819:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.3.914" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f95b8d169 code=0x7fc00000 [ 132.934420][ T8452] netlink: 28 bytes leftover after parsing attributes in process `syz.1.921'. [ 132.961322][ T8456] netlink: 48 bytes leftover after parsing attributes in process `syz.1.923'. [ 133.085207][ T8458] netlink: 4 bytes leftover after parsing attributes in process `syz.1.924'. [ 133.126657][ C1] usb 5-1: yurex_control_callback - control failed: -2 [ 133.128859][ C1] usb 5-1: yurex_control_callback - control failed: -32 [ 133.132621][ T6378] usb 5-1: USB disconnect, device number 26 [ 133.139760][ T6378] yurex 5-1:0.0: USB YUREX #0 now disconnected [ 133.222049][ T40] audit: type=1400 audit(1744556628.149:577): avc: denied { ioctl } for pid=8464 comm="syz.1.925" path="/dev/nullb0" dev="devtmpfs" ino=707 ioctlcmd=0x127f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 133.309399][ T8467] fuse: Unknown parameter 'group_id00000000000000000000' [ 133.345383][ T40] audit: type=1400 audit(1744556628.269:578): avc: denied { mounton } for pid=8471 comm="syz.2.928" path="/289/bus" dev="tmpfs" ino=1506 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1 [ 133.345427][ T8472] ./bus: Can't lookup blockdev [ 133.370330][ T8469] netlink: 4 bytes leftover after parsing attributes in process `syz.1.927'. [ 133.370343][ T8469] FAULT_INJECTION: forcing a failure. [ 133.370343][ T8469] name failslab, interval 1, probability 0, space 0, times 0 [ 133.370357][ T8469] CPU: 1 UID: 0 PID: 8469 Comm: syz.1.927 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 133.370372][ T8469] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 133.370379][ T8469] Call Trace: [ 133.370382][ T8469] [ 133.370386][ T8469] dump_stack_lvl+0x16c/0x1f0 [ 133.370405][ T8469] should_fail_ex+0x512/0x640 [ 133.370416][ T8469] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 133.370429][ T8469] should_failslab+0xc2/0x120 [ 133.370441][ T8469] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 133.370451][ T8469] ? __alloc_skb+0x2b2/0x380 [ 133.370465][ T8469] __alloc_skb+0x2b2/0x380 [ 133.370476][ T8469] ? __pfx___alloc_skb+0x10/0x10 [ 133.370487][ T8469] ? __pfx_rtnl_dellink+0x10/0x10 [ 133.370504][ T8469] netlink_ack+0x15d/0xb80 [ 133.370523][ T8469] netlink_rcv_skb+0x347/0x440 [ 133.370537][ T8469] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 133.370551][ T8469] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 133.370572][ T8469] ? netlink_deliver_tap+0x1ae/0xd30 [ 133.370587][ T8469] netlink_unicast+0x53a/0x7f0 [ 133.370603][ T8469] ? __pfx_netlink_unicast+0x10/0x10 [ 133.370620][ T8469] netlink_sendmsg+0x8d1/0xdd0 [ 133.370636][ T8469] ? __pfx_netlink_sendmsg+0x10/0x10 [ 133.370655][ T8469] ____sys_sendmsg+0xa95/0xc70 [ 133.370671][ T8469] ? copy_msghdr_from_user+0x10a/0x160 [ 133.370683][ T8469] ? __pfx_____sys_sendmsg+0x10/0x10 [ 133.370704][ T8469] ___sys_sendmsg+0x134/0x1d0 [ 133.370716][ T8469] ? __pfx____sys_sendmsg+0x10/0x10 [ 133.370743][ T8469] __sys_sendmsg+0x16d/0x220 [ 133.370755][ T8469] ? __pfx___sys_sendmsg+0x10/0x10 [ 133.370771][ T8469] ? rcu_is_watching+0x12/0xc0 [ 133.370788][ T8469] do_syscall_64+0xcd/0x260 [ 133.370820][ T8469] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.370832][ T8469] RIP: 0033:0x7f743f78d169 [ 133.370841][ T8469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.370851][ T8469] RSP: 002b:00007f744063e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 133.370861][ T8469] RAX: ffffffffffffffda RBX: 00007f743f9a5fa0 RCX: 00007f743f78d169 [ 133.370867][ T8469] RDX: 0000000000040044 RSI: 0000200000000200 RDI: 0000000000000003 [ 133.370873][ T8469] RBP: 00007f744063e090 R08: 0000000000000000 R09: 0000000000000000 [ 133.370879][ T8469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 133.370886][ T8469] R13: 0000000000000000 R14: 00007f743f9a5fa0 R15: 00007ffddbe35778 [ 133.370898][ T8469] [ 133.445469][ T8479] netlink: 12 bytes leftover after parsing attributes in process `syz.1.929'. [ 133.481471][ T8479] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 133.484800][ T8479] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 133.484846][ T8479] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 133.484868][ T8479] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 133.494794][ T8479] vxlan0: entered promiscuous mode [ 133.578537][ T8481] netlink: 8 bytes leftover after parsing attributes in process `syz.2.930'. [ 133.587188][ T8481] program syz.2.930 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 133.634219][ T8486] netlink: 12 bytes leftover after parsing attributes in process `syz.2.932'. [ 133.665637][ T8490] FAULT_INJECTION: forcing a failure. [ 133.665637][ T8490] name failslab, interval 1, probability 0, space 0, times 0 [ 133.669655][ T8490] CPU: 0 UID: 0 PID: 8490 Comm: syz.2.934 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 133.669669][ T8490] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 133.669676][ T8490] Call Trace: [ 133.669681][ T8490] [ 133.669684][ T8490] dump_stack_lvl+0x16c/0x1f0 [ 133.669702][ T8490] should_fail_ex+0x512/0x640 [ 133.669713][ T8490] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 133.669727][ T8490] should_failslab+0xc2/0x120 [ 133.669740][ T8490] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 133.669750][ T8490] ? __alloc_skb+0x2b2/0x380 [ 133.669764][ T8490] __alloc_skb+0x2b2/0x380 [ 133.669776][ T8490] ? __pfx___alloc_skb+0x10/0x10 [ 133.669789][ T8490] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 133.669806][ T8490] netlink_alloc_large_skb+0x69/0x130 [ 133.669821][ T8490] netlink_sendmsg+0x6a1/0xdd0 [ 133.669837][ T8490] ? __pfx_netlink_sendmsg+0x10/0x10 [ 133.669856][ T8490] ____sys_sendmsg+0xa95/0xc70 [ 133.669872][ T8490] ? copy_msghdr_from_user+0x10a/0x160 [ 133.669884][ T8490] ? __pfx_____sys_sendmsg+0x10/0x10 [ 133.669905][ T8490] ___sys_sendmsg+0x134/0x1d0 [ 133.669918][ T8490] ? __pfx____sys_sendmsg+0x10/0x10 [ 133.669944][ T8490] __sys_sendmsg+0x16d/0x220 [ 133.669956][ T8490] ? __pfx___sys_sendmsg+0x10/0x10 [ 133.669972][ T8490] ? rcu_is_watching+0x12/0xc0 [ 133.669989][ T8490] do_syscall_64+0xcd/0x260 [ 133.670004][ T8490] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.670015][ T8490] RIP: 0033:0x7f0ca558d169 [ 133.670023][ T8490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.670033][ T8490] RSP: 002b:00007f0ca64c6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 133.670043][ T8490] RAX: ffffffffffffffda RBX: 00007f0ca57a5fa0 RCX: 00007f0ca558d169 [ 133.670049][ T8490] RDX: 0000000020044000 RSI: 0000200000000040 RDI: 0000000000000003 [ 133.670055][ T8490] RBP: 00007f0ca64c6090 R08: 0000000000000000 R09: 0000000000000000 [ 133.670065][ T8490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 133.670071][ T8490] R13: 0000000000000000 R14: 00007f0ca57a5fa0 R15: 00007fff2200a448 [ 133.670083][ T8490] [ 133.747006][ T40] audit: type=1400 audit(1744556628.679:579): avc: denied { getopt } for pid=8491 comm="syz.0.935" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 133.756997][ T8494] fuse: Unknown parameter 'group_id00000000000000000000' [ 133.810693][ T8496] FAULT_INJECTION: forcing a failure. [ 133.810693][ T8496] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 133.814515][ T8496] CPU: 1 UID: 0 PID: 8496 Comm: syz.0.937 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 133.814530][ T8496] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 133.814537][ T8496] Call Trace: [ 133.814541][ T8496] [ 133.814545][ T8496] dump_stack_lvl+0x16c/0x1f0 [ 133.814563][ T8496] should_fail_ex+0x512/0x640 [ 133.814577][ T8496] _copy_from_user+0x2e/0xd0 [ 133.814589][ T8496] copy_from_sockptr_offset.constprop.0+0x153/0x1a0 [ 133.814608][ T8496] ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10 [ 133.814624][ T8496] ? __pmd_alloc+0x3c2/0x870 [ 133.814641][ T8496] do_ip_getsockopt+0x27f/0x2220 [ 133.814652][ T8496] ? __pfx_do_ip_getsockopt+0x10/0x10 [ 133.814664][ T8496] ? cgroup_rstat_updated+0x2a/0xb20 [ 133.814680][ T8496] ? find_held_lock+0x2b/0x80 [ 133.814693][ T8496] ? count_memcg_events_mm.constprop.0+0x138/0x340 [ 133.814707][ T8496] ? __up_read+0x1f8/0x750 [ 133.814719][ T8496] ? __pfx___up_read+0x10/0x10 [ 133.814729][ T8496] ? do_user_addr_fault+0x829/0x1370 [ 133.814744][ T8496] ? do_user_addr_fault+0x843/0x1370 [ 133.814759][ T8496] ip_getsockopt+0x9b/0x1e0 [ 133.814769][ T8496] ? __pfx_ip_getsockopt+0x10/0x10 [ 133.814782][ T8496] raw_getsockopt+0x4d/0x1f0 [ 133.814797][ T8496] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 133.814813][ T8496] do_sock_getsockopt+0x3fc/0x800 [ 133.814830][ T8496] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 133.814844][ T8496] ? __fget_files+0x204/0x3c0 [ 133.814860][ T8496] __sys_getsockopt+0x12f/0x260 [ 133.814874][ T8496] __x64_sys_getsockopt+0xbd/0x160 [ 133.814885][ T8496] ? do_syscall_64+0x91/0x260 [ 133.814899][ T8496] ? lockdep_hardirqs_on+0x7c/0x110 [ 133.814912][ T8496] do_syscall_64+0xcd/0x260 [ 133.814927][ T8496] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.814938][ T8496] RIP: 0033:0x7fa27b78d169 [ 133.814947][ T8496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.814957][ T8496] RSP: 002b:00007fa2795f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 133.814967][ T8496] RAX: ffffffffffffffda RBX: 00007fa27b9a5fa0 RCX: 00007fa27b78d169 [ 133.814974][ T8496] RDX: 0000000000000083 RSI: 0000000000000000 RDI: 0000000000000003 [ 133.814979][ T8496] RBP: 00007fa2795f6090 R08: 0000200000000140 R09: 0000000000000000 [ 133.814985][ T8496] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001 [ 133.814991][ T8496] R13: 0000000000000000 R14: 00007fa27b9a5fa0 R15: 00007ffd7e18ae38 [ 133.815003][ T8496] [ 133.875750][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.890445][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.893266][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.896110][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.898859][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.901630][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.904008][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.906230][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.908422][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.911058][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.913604][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.915960][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.918141][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.920261][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.922418][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.924563][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.927580][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.930339][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.933080][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.935654][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.937908][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.940112][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.942304][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.945961][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.949028][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.954285][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.957263][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.960061][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.962857][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.965672][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.968582][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.970848][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.973022][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.975271][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.977573][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.979742][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.981916][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.984064][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.986724][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.989516][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.992427][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.994708][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 133.997405][ T34] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0 [ 134.001997][ T34] hid-generic 0000:007F:FFFFFFFE.0009: hidraw1: HID v0.00 Device [syz1] on syz0 [ 134.166112][ T40] audit: type=1400 audit(1744556629.099:580): avc: denied { create } for pid=8519 comm="syz.2.946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1 [ 134.184899][ T40] audit: type=1400 audit(1744556629.109:581): avc: denied { bind } for pid=8519 comm="syz.2.946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1 [ 134.203880][ T40] audit: type=1400 audit(1744556629.129:582): avc: denied { setopt } for pid=8519 comm="syz.2.946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1 [ 134.455989][ T34] usb 7-1: new high-speed USB device number 17 using dummy_hcd [ 134.617263][ T34] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 134.620371][ T34] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 134.622968][ T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 134.629843][ T34] usb 7-1: config 0 descriptor?? [ 134.694277][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.696652][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.698972][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.701200][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.703378][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.705769][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.709177][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.711318][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.713455][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.715771][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.718238][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.720434][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.722616][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.724841][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.727261][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.729431][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.731633][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.733940][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.736169][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.738365][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.740606][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.742812][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.745032][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.747454][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.749614][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.751761][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.753950][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.756090][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.758181][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.760340][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.762431][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.764572][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.766885][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.769178][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.771293][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.773473][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.775691][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.778061][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.780247][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.782421][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.784607][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.787241][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.789431][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0 [ 134.792704][ T6011] hid-generic 0000:007F:FFFFFFFE.000A: hidraw1: HID v0.00 Device [syz1] on syz0 [ 134.833196][ T40] audit: type=1400 audit(1744556629.759:583): avc: denied { write } for pid=8519 comm="syz.2.946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1 [ 135.018155][ T8545] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 135.020649][ T8545] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 135.023081][ T8545] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 135.025495][ T8545] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 135.029382][ T8545] vxlan0: entered promiscuous mode [ 135.040544][ T34] keytouch 0003:0926:3333.000B: fixing up Keytouch IEC report descriptor [ 135.045096][ T34] input: HID 0926:3333 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0926:3333.000B/input/input11 [ 135.118230][ T34] keytouch 0003:0926:3333.000B: input,hidraw1: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.2-1/input0 [ 135.341930][ T40] audit: type=1400 audit(1744556630.269:584): avc: denied { read } for pid=8550 comm="poweroff" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 135.557032][ T6378] usb 7-1: USB disconnect, device number 17 Connection to localhost closed by remote host. Stopping sshd: OK Stopping dhcpcd... stopped /sbin/dhcpcd (pid 5655) Stopping network: [ 135.970676][ T40] audit: type=1400 audit(1744556630.899:585): avc: denied { read write } for pid=8581 comm="ip" path="/dev/console" dev="rootfs" ino=2122 scontext=system_u:system_r:ifconfig_t tcontext=system_u:object_r:root_t tclass=chr_file permissive=1 OK Stopping iptables: OK Stopping system message bus: done Stopping klogd: OK Stopping acpid: OK Stopping syslogd: OK umount: can't remount debugfs read-only umount: sysfs busy - remounted read-only umount: devtmpfs busy - remounted read-only umount: can't remount /dev/root read-only The system is going down NOW! Sent SIGTERM to all processes [ 138.469430][ T8482] syz_tun (unregistering): left allmulticast mode [ 138.736532][ T64] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 138.739479][ T64] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 138.796589][ T64] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 138.799474][ T64] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 138.875911][ T64] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 138.878770][ T64] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 138.948185][ T64] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 138.951708][ T64] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 139.028539][ T64] bridge_slave_1: left allmulticast mode [ 139.030224][ T64] bridge_slave_1: left promiscuous mode [ 139.032314][ T64] bridge0: port 2(bridge_slave_1) entered disabled state [ 139.039675][ T64] bridge_slave_0: left allmulticast mode [ 139.041589][ T64] bridge_slave_0: left promiscuous mode [ 139.043625][ T64] bridge0: port 1(bridge_slave_0) entered disabled state [ 139.297497][ T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 139.302651][ T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 139.307216][ T64] bond0 (unregistering): Released all slaves Sent SIGKILL to all processes Requesting system poweroff [ 139.699500][ T64] hsr_slave_0: left promiscuous mode [ 139.701403][ T64] hsr_slave_1: left promiscuous mode [ 139.703324][ T64] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 139.706021][ T64] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 139.708621][ T64] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 139.710766][ T64] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 139.727657][ T64] veth1_macvtap: left promiscuous mode [ 139.729456][ T64] veth0_macvtap: left promiscuous mode [ 139.731101][ T64] veth1_vlan: left promiscuous mode [ 139.733350][ T64] veth0_vlan: left promiscuous mode [ 140.210901][ T64] team0 (unregistering): Port device team_slave_1 removed [ 140.262911][ T64] team0 (unregistering): Port device team_slave_0 removed [ 140.462858][ T8619] sd 0:0:0:0: [sda] Synchronizing SCSI cache [ 140.470265][ T8619] sd 0:0:0:0: [sda] Stopping disk [ 140.556636][ T34] ------------[ cut here ]------------ [ 140.558766][ T34] WARNING: CPU: 3 PID: 34 at drivers/gpu/drm/virtio/virtgpu_vq.c:414 virtio_gpu_queue_fenced_ctrl_buffer+0xbcf/0xfc0 [ 140.562852][ T34] Modules linked in: [ 140.564329][ T34] CPU: 3 UID: 0 PID: 34 Comm: kworker/3:0 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 140.569312][ T34] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 140.572459][ T34] Workqueue: events drm_fb_helper_damage_work [ 140.574702][ T34] RIP: 0010:virtio_gpu_queue_fenced_ctrl_buffer+0xbcf/0xfc0 [ 140.577218][ T34] Code: df e8 a5 45 d5 fe 48 89 9c 24 a8 01 00 00 c7 44 24 30 02 00 00 00 48 c7 44 24 18 00 00 00 00 e9 4f f6 ff ff e8 f2 97 c3 fb 90 <0f> 0b 90 e9 02 fa ff ff e8 e4 97 c3 fb 90 0f 0b e8 dc 97 c3 fb 90 [ 140.582524][ T34] RSP: 0018:ffffc900006df488 EFLAGS: 00010293 [ 140.584238][ T34] RAX: 0000000000000000 RBX: 00000000fffffffb RCX: ffffffff85f79f81 [ 140.586548][ T34] RDX: ffff88801e2d4880 RSI: ffffffff85f7a57e RDI: 0000000000000005 [ 140.588757][ T34] RBP: ffff888104ea7c00 R08: 0000000000000005 R09: 0000000000000000 [ 140.590990][ T34] R10: 00000000fffffffb R11: 0000000000000000 R12: ffffed10209d4f85 [ 140.593255][ T34] R13: ffff8880245976f8 R14: ffff888025553ac8 R15: 0000000000000001 [ 140.595752][ T34] FS: 0000000000000000(0000) GS:ffff8880d6cb2000(0000) knlGS:0000000000000000 [ 140.598289][ T34] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 140.600137][ T34] CR2: 00007fa4a49be440 CR3: 000000000e182000 CR4: 0000000000352ef0 [ 140.602359][ T34] DR0: 00000000000007ff DR1: 0000000000000009 DR2: 0002000000000000 [ 140.604567][ T34] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 140.606919][ T34] Call Trace: [ 140.607877][ T34] [ 140.608729][ T34] ? __pfx_virtio_gpu_queue_fenced_ctrl_buffer+0x10/0x10 [ 140.610708][ T34] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 140.612295][ T34] ? virtio_gpu_get_vbuf+0x50/0x180 [ 140.613788][ T34] ? __asan_memset+0x23/0x50 [ 140.615106][ T34] ? virtio_gpu_cmd_transfer_to_host_2d+0x147/0x500 [ 140.617126][ T34] virtio_gpu_primary_plane_update+0xda0/0x1540 [ 140.618897][ T34] ? __pfx_virtio_gpu_primary_plane_update+0x10/0x10 [ 140.620770][ T34] ? drm_crtc_next_vblank_start+0x25a/0x300 [ 140.622444][ T34] drm_atomic_helper_commit_planes+0x954/0x1010 [ 140.624201][ T34] drm_atomic_helper_commit_tail+0x69/0xf0 [ 140.625899][ T34] commit_tail+0x35b/0x400 [ 140.627179][ T34] drm_atomic_helper_commit+0x2fd/0x380 [ 140.628760][ T34] ? __pfx_drm_atomic_helper_commit+0x10/0x10 [ 140.630491][ T34] drm_atomic_commit+0x231/0x300 [ 140.631893][ T34] ? __pfx_drm_atomic_commit+0x10/0x10 [ 140.633447][ T34] ? __pfx___drm_printfn_info+0x10/0x10 [ 140.634990][ T34] ? modeset_lock+0x114/0x6e0 [ 140.636390][ T34] drm_atomic_helper_dirtyfb+0x5fd/0x780 [ 140.637959][ T34] ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10 [ 140.639685][ T34] ? do_raw_spin_lock+0x12c/0x2b0 [ 140.641121][ T34] ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10 [ 140.642841][ T34] drm_fbdev_shmem_helper_fb_dirty+0x1c9/0x340 [ 140.644570][ T34] drm_fb_helper_damage_work+0x27b/0x5f0 [ 140.646201][ T34] ? __pfx_drm_fb_helper_damage_work+0x10/0x10 [ 140.647928][ T34] ? rcu_is_watching+0x12/0xc0 [ 140.649293][ T34] process_one_work+0x9cc/0x1b70 [ 140.650694][ T34] ? __pfx_fb_flashcursor+0x10/0x10 [ 140.652158][ T34] ? __pfx_process_one_work+0x10/0x10 [ 140.653687][ T34] ? assign_work+0x1a0/0x250 [ 140.654997][ T34] worker_thread+0x6c8/0xf10 [ 140.656364][ T34] ? __pfx_worker_thread+0x10/0x10 [ 140.657816][ T34] kthread+0x3c2/0x780 [ 140.658979][ T34] ? __pfx_kthread+0x10/0x10 [ 140.660283][ T34] ? __pfx_kthread+0x10/0x10 [ 140.661604][ T34] ? __pfx_kthread+0x10/0x10 [ 140.662920][ T34] ? __pfx_kthread+0x10/0x10 [ 140.664230][ T34] ? rcu_is_watching+0x12/0xc0 [ 140.665605][ T34] ? __pfx_kthread+0x10/0x10 [ 140.667026][ T34] ret_from_fork+0x45/0x80 [ 140.668329][ T34] ? __pfx_kthread+0x10/0x10 [ 140.669651][ T34] ret_from_fork_asm+0x1a/0x30 [ 140.671023][ T34] [ 140.671908][ T34] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 140.673952][ T34] CPU: 3 UID: 0 PID: 34 Comm: kworker/3:0 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 140.677233][ T34] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 140.680201][ T34] Workqueue: events drm_fb_helper_damage_work [ 140.681930][ T34] Call Trace: [ 140.682888][ T34] [ 140.683747][ T34] dump_stack_lvl+0x3d/0x1f0 [ 140.685069][ T34] panic+0x71c/0x800 [ 140.686180][ T34] ? __pfx_panic+0x10/0x10 [ 140.687449][ T34] ? show_trace_log_lvl+0x29b/0x3e0 [ 140.688925][ T34] ? check_panic_on_warn+0x1f/0xb0 [ 140.690375][ T34] ? virtio_gpu_queue_fenced_ctrl_buffer+0xbcf/0xfc0 [ 140.692241][ T34] check_panic_on_warn+0xab/0xb0 [ 140.693662][ T34] __warn+0xf6/0x3c0 [ 140.694779][ T34] ? virtio_gpu_queue_fenced_ctrl_buffer+0xbcf/0xfc0 [ 140.696705][ T34] report_bug+0x3c3/0x580 [ 140.697943][ T34] ? virtio_gpu_queue_fenced_ctrl_buffer+0xbcf/0xfc0 [ 140.699797][ T34] handle_bug+0x184/0x210 [ 140.701034][ T34] exc_invalid_op+0x17/0x50 [ 140.702321][ T34] asm_exc_invalid_op+0x1a/0x20 [ 140.703699][ T34] RIP: 0010:virtio_gpu_queue_fenced_ctrl_buffer+0xbcf/0xfc0 [ 140.705732][ T34] Code: df e8 a5 45 d5 fe 48 89 9c 24 a8 01 00 00 c7 44 24 30 02 00 00 00 48 c7 44 24 18 00 00 00 00 e9 4f f6 ff ff e8 f2 97 c3 fb 90 <0f> 0b 90 e9 02 fa ff ff e8 e4 97 c3 fb 90 0f 0b e8 dc 97 c3 fb 90 [ 140.711031][ T34] RSP: 0018:ffffc900006df488 EFLAGS: 00010293 [ 140.712734][ T34] RAX: 0000000000000000 RBX: 00000000fffffffb RCX: ffffffff85f79f81 [ 140.714965][ T34] RDX: ffff88801e2d4880 RSI: ffffffff85f7a57e RDI: 0000000000000005 [ 140.717152][ T34] RBP: ffff888104ea7c00 R08: 0000000000000005 R09: 0000000000000000 [ 140.719331][ T34] R10: 00000000fffffffb R11: 0000000000000000 R12: ffffed10209d4f85 [ 140.721605][ T34] R13: ffff8880245976f8 R14: ffff888025553ac8 R15: 0000000000000001 [ 140.723795][ T34] ? virtio_gpu_queue_fenced_ctrl_buffer+0x5d1/0xfc0 [ 140.725655][ T34] ? virtio_gpu_queue_fenced_ctrl_buffer+0xbce/0xfc0 [ 140.727505][ T34] ? virtio_gpu_queue_fenced_ctrl_buffer+0xbce/0xfc0 [ 140.729379][ T34] ? __pfx_virtio_gpu_queue_fenced_ctrl_buffer+0x10/0x10 [ 140.731337][ T34] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 140.732930][ T34] ? virtio_gpu_get_vbuf+0x50/0x180 [ 140.734398][ T34] ? __asan_memset+0x23/0x50 [ 140.735717][ T34] ? virtio_gpu_cmd_transfer_to_host_2d+0x147/0x500 [ 140.737574][ T34] virtio_gpu_primary_plane_update+0xda0/0x1540 [ 140.739331][ T34] ? __pfx_virtio_gpu_primary_plane_update+0x10/0x10 [ 140.741203][ T34] ? drm_crtc_next_vblank_start+0x25a/0x300 [ 140.742871][ T34] drm_atomic_helper_commit_planes+0x954/0x1010 [ 140.744625][ T34] drm_atomic_helper_commit_tail+0x69/0xf0 [ 140.746268][ T34] commit_tail+0x35b/0x400 [ 140.747543][ T34] drm_atomic_helper_commit+0x2fd/0x380 [ 140.749105][ T34] ? __pfx_drm_atomic_helper_commit+0x10/0x10 [ 140.750816][ T34] drm_atomic_commit+0x231/0x300 [ 140.752196][ T34] ? __pfx_drm_atomic_commit+0x10/0x10 [ 140.753741][ T34] ? __pfx___drm_printfn_info+0x10/0x10 [ 140.755361][ T34] ? modeset_lock+0x114/0x6e0 [ 140.756698][ T34] drm_atomic_helper_dirtyfb+0x5fd/0x780 [ 140.758275][ T34] ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10 [ 140.759990][ T34] ? do_raw_spin_lock+0x12c/0x2b0 [ 140.761414][ T34] ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10 [ 140.763135][ T34] drm_fbdev_shmem_helper_fb_dirty+0x1c9/0x340 [ 140.764863][ T34] drm_fb_helper_damage_work+0x27b/0x5f0 [ 140.766436][ T34] ? __pfx_drm_fb_helper_damage_work+0x10/0x10 [ 140.768154][ T34] ? rcu_is_watching+0x12/0xc0 [ 140.769515][ T34] process_one_work+0x9cc/0x1b70 [ 140.770914][ T34] ? __pfx_fb_flashcursor+0x10/0x10 [ 140.772368][ T34] ? __pfx_process_one_work+0x10/0x10 [ 140.773890][ T34] ? assign_work+0x1a0/0x250 [ 140.775186][ T34] worker_thread+0x6c8/0xf10 [ 140.776502][ T34] ? __pfx_worker_thread+0x10/0x10 [ 140.777944][ T34] kthread+0x3c2/0x780 [ 140.779105][ T34] ? __pfx_kthread+0x10/0x10 [ 140.780410][ T34] ? __pfx_kthread+0x10/0x10 [ 140.781718][ T34] ? __pfx_kthread+0x10/0x10 [ 140.783024][ T34] ? __pfx_kthread+0x10/0x10 [ 140.784332][ T34] ? rcu_is_watching+0x12/0xc0 [ 140.785708][ T34] ? __pfx_kthread+0x10/0x10 [ 140.787027][ T34] ret_from_fork+0x45/0x80 [ 140.788285][ T34] ? __pfx_kthread+0x10/0x10 [ 140.789604][ T34] ret_from_fork_asm+0x1a/0x30 [ 140.790964][ T34] [ 140.792410][ T34] Kernel Offset: disabled [ 140.793649][ T34] Rebooting in 86400 seconds.. VM DIAGNOSIS: 15:03:55 Registers: info registers vcpu 0 CPU#0 RAX=00000000002a21d1 RBX=0000000000000000 RCX=ffffffff8b727439 RDX=0000000000000000 RSI=ffffffff8dbef526 RDI=ffffffff8bf46380 RBP=fffffbfff1c12ee8 RSP=ffffffff8e007e10 R8 =0000000000000001 R9 =ffffed100d4865bd R10=ffff88806a432deb R11=0000000000000000 R12=0000000000000000 R13=ffffffff8e097740 R14=ffffffff90865e10 R15=0000000000000000 RIP=ffffffff8b725ccf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d69b2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f0ca62d7d60 CR3=000000000e182000 CR4=00352ef0 DR0=00000000000007ff DR1=0000000000000009 DR2=0002000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008420000 Opmask01=0000000000001d1f Opmask02=00000000ff001fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5649705aafa3c050 d3cd9b78bd5d0d47 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 01eb4b5e20c09a35 c5cce57c81b38287 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8b334d5fb2f3ec4e 4251bbd9e08b369f ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 810bc2b3578a12ee fed0e59635fcd492 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000016040 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5ceed7abdc4947fc f1e9c42200560ffa ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 35340588cd5c60c1 d2fc1a36180a2a50 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 446ee655efd40996 b9e00cc73004b441 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff50de5000000056 a2a20000420362c3 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 390a7812a6df3adc 18ff6fc789333d42 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1ac732d944b42e12 775def6764327481 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65776f7000746c61 68004c4c494b0073 65737365636f7270 206c6c61206f7420 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 40524a5500514944 4d004c4c494b0056 40565640464a5755 05494944054a5105 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=dffffc0000000000 RBX=ffffffff9ab635e0 RCX=ffffffff85524cc4 RDX=1ffff1100d4a6c19 RSI=ffffffff85524cfa RDI=0000000000000005 RBP=0000000000000200 RSP=ffffc900006a0b40 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000 R12=ffff88806a5360a0 R13=1ffff920000d416b R14=ffff88806a5360c8 R15=000000000000000d RIP=ffffffff85524d29 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d6ab2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007ffe4a4e56a0 CR3=0000000020918000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000001000009 Opmask01=0000000000001d1f Opmask02=00000000ff001fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000006f20 74276e6163003a23 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd729eaeb0 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff0f0e0d0c0b0a 0908070605040302 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000006f20 74276e6163003a23 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6362696c5f5f0045 5441564952505f43 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 454c4f534e4f4300 3120444950207361 206e757220656220 7473756d00712d00 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 454c4f534e4f4300 1405444950055644 054b505705404705 5156504800540800 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=00000000001f7af7 RBX=0000000000000002 RCX=ffffffff8b727439 RDX=0000000000000000 RSI=ffffffff8dbef526 RDI=ffffffff8bf46380 RBP=ffffed1003ad0910 RSP=ffffc90000187df8 R8 =0000000000000001 R9 =ffffed100d4c65bd R10=ffff88806a632deb R11=0000000000000000 R12=0000000000000002 R13=ffff88801d684880 R14=ffffffff90865e10 R15=0000000000000000 RIP=ffffffff8b725ccf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d6bb2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055c832d37000 CR3=0000000020918000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000001000009 Opmask01=0000000000001d1f Opmask02=00000000ff001fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 835ca001ce1b607c 9a2070ede2c69a47 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d1872a7ea8477ede 3c9eb633c7570e95 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c1db0618f1b2e9e0 74f997dcc2f309ce ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0cad6175e53f37e0 fe673cd587a0bfc8 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000016080 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00563312005637ce 010000000056386e ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e4b916a6abca0080 2310bfe25730bd15 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 87f6455725181ce9 572aeebd95970000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 235e00800dc5a961 01000000d5e42c66 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5649705aafa3c050 d3cd9b78bd5d0d47 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 01eb4b5e20c09a35 c5cce57c81b38287 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 454c4f534e4f4300 3120444950207361 206e757220656220 7473756d00712d00 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 454c4f534e4f4300 1405444950055644 054b505705404705 5156504800540800 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=000000000000006b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff854e1065 RDI=ffffffff9ae26460 RBP=ffffffff9ae26420 RSP=ffffc900006dedf0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=000000000000006b R14=ffffffff9ae26420 R15=ffffffff854e1000 RIP=ffffffff854e108f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d6cb2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007fa4a49be440 CR3=000000000e182000 CR4=00352ef0 DR0=00000000000007ff DR1=0000000000000009 DR2=0002000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 20741ea7d9ab08fe 3159c16d92b7f546 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 25ae6f415cdbaf6f 00b3acb6cba33b8a ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 93f44e3e03326c63 09ceb236587f7b1f ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8286295571154aeb 50ba1c5bb8f03961 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000015e40 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 27560080a4ec0080 0054f37a575a0080 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100000001000000 3cbd00001a900080 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0054f37801000000 f43a00800054f377 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 010000000054f3aa 0054f37c01000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b369f1b89c54c2c2 bbc779b4164b9429 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 95de685410e86d10 0dcdaeef296a4179 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000050 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000