last executing test programs: 37.213528608s ago: executing program 2 (id=733): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$can_raw(0xffffffffffffffff, &(0x7f0000000040), 0x10) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$RTC_ALM_READ(r1, 0x40187014, &(0x7f0000000180)) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = dup(r3) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) ioctl$KVM_SET_CLOCK(r4, 0x4030ae7b, &(0x7f0000000100)={0x101, 0x2, 0x1, 0x8, 0x401}) setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f00000001c0)=0x1, 0x4) bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10) sendmmsg$inet(r0, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000340)="b9cd14c222ee3c0c", 0x8}], 0x1}}], 0x1, 0x20008000) getsockopt(r0, 0x58, 0x8, &(0x7f0000000200)=""/91, &(0x7f00000000c0)=0x5b) r5 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r5, &(0x7f0000000040)={0x2, 0x4e21, @multicast2}, 0x10) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000080)=@ccm_128={{0x303}, "f1a0f9fff9e440b4", "881aae83544dfa6412f91b9057e3f415", "9dca43b6", "9ecb592c6ee49fbd"}, 0x28) 36.944480277s ago: executing program 2 (id=743): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x1006) r2 = epoll_create1(0x0) epoll_wait(r2, &(0x7f0000000480)=[{}], 0x1, 0x10000200) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) epoll_pwait(r2, &(0x7f0000000040)=[{}], 0x1, 0xea5, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000080)={0x8}) 36.124574913s ago: executing program 2 (id=764): openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000003c0)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x4, @mcast1, 0xfffffff9}, 0x1c, 0x0}}], 0x1, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) openat$vimc1(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) dup(0xffffffffffffffff) syz_io_uring_setup(0x3684, &(0x7f0000000200)={0x0, 0x63af, 0x0, 0x2, 0x2cd}, 0x0, 0x0) fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) r0 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r0, @ANYBLOB="14000100"], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80) 36.065888392s ago: executing program 2 (id=766): r0 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$sock_bt_hidp_HIDPGETCONNINFO(r0, 0x800448d3, &(0x7f0000009180)={@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x9, 0x3833, 0x80, 0x1, 0x7, "69df790646a0e7c6c95842451a7a5805dcc6a08af55043573ae151d5b24b6fe29bd66e6fad171180ed198b44826f997434afe4d883b554816b9c0073fdb48c9046a60b473086c788cd8e29e80bfc85b886e451753fd39a91d838897c79b8c7974a3d5524d6a411f7af44474f8fa3f4a08701abfaf74ec30411194d0011c1e3da"}) socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00') madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x13) preadv(r1, &(0x7f0000000280)=[{&(0x7f0000000140)=""/57, 0x39}], 0x1, 0x8, 0x0) ioctl$DRM_IOCTL_WAIT_VBLANK(r1, 0xc018643a, &(0x7f00000001c0)={0x50000000, 0x2, 0x100000000}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000c00), 0xffffffffffffffff) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x44, r2, 0x2, 0x70bd2b, 0x25dfdbfd, {}, [@NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8, 0x61, 0x2}, @NL80211_ATTR_WIPHY_RETRY_LONG={0x5, 0x3e, 0x2}, @NL80211_ATTR_WIPHY_RETRY_LONG={0x5, 0x3e, 0xfb}, @NL80211_ATTR_WIPHY_FRAG_THRESHOLD={0x8, 0x3f, 0x4}, @NL80211_ATTR_WIPHY_COVERAGE_CLASS={0x5, 0x59, 0xf4}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x3}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000005}, 0x4000000) sendmsg$nl_route_sched(r3, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000640)=@newtaction={0x68, 0x30, 0x9, 0x0, 0x0, {}, [{0x54, 0x1, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x5, 0x7fff, 0x0, 0x62, 0x200}}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x4}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x9, {0x1a9}}}}]}]}, 0x68}}, 0x14) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x2, [@const={0x0, 0x0, 0x0, 0x9}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x8}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x2}}]}}, 0x0, 0x4e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20) sendmsg$NL80211_CMD_GET_MESH_CONFIG(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x48080) 36.005381958s ago: executing program 2 (id=768): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000200)='bic\x00', 0x4) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000340)=[@window, @window={0x3, 0x2, 0x1}, @window={0x3, 0x0, 0x4}, @window={0x3, 0x8, 0x2}, @sack_perm, @timestamp, @sack_perm, @sack_perm], 0x8) setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0), 0x4) sendto$inet(r1, &(0x7f00000004c0)="3ce2de4d8d957a8de4e490b6cd03b988d4edef164bd3377aa381b5f50b7ca414516489f78cd7208982e9bde22b2b7c1c7606d565477f3db9d2b077283644c0f27ab52a863a42863e06944e40a0b3c5d21c8cbe102e7f726263f28aef1bc12a069063d4c30e8f329fdb36859be727fbef4314161e5fb5f01ae00a2634d5cdecca2089c62e32f4c919886b2b88d237e287318739bec0364caf15889f38a312ef6621c0f21709a4bf2b16274cf933f6ad8fcc9c2024bc1b4713f650e860f93ae93b2361956b3e80c38c5fd29b5c1b5d7ce67edc856a8dc0ba54cee53de9a48c131389426bd06ec7c695add357934fc0321f0d3d7982e4fe5a0039decc491a663afd02facb08dd9695f854c7b031d9af8bd7350897996b5208b23030cc0feb84570730eaf24b9f2ac05d0feb3be07a29f887095f36f3c8f0e77e45509acd14a5be4a1572dd4cd1231087b830fa03e071571d4abd694710ef140469cf6df8a59839aafe046a5bffb97e5247be901789eafd726ba090337a2c49207e6b900c7e982472e6aac70e5d52ca2c1bab47b1f6d00f9601e2281686c21f770ae96e0ffec4b30496d012fa00958f794cdbd721bd155cae87", 0x109e8, 0x805, 0x0, 0x6) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) fstat(r0, &(0x7f0000000100)) 35.99617816s ago: executing program 2 (id=772): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newlink={0x4c, 0x10, 0x44b, 0x0, 0x25dfdbfc, {0x7a, 0x0, 0x0, 0x0, 0x49001, 0x4c000000}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5, 0x2b, 0x8}, @IFLA_BR_PRIORITY={0x6, 0x6, 0xc45}]}}}, @IFLA_LINKMODE={0x5, 0x11, 0x2}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4040850}, 0x0) 33.525000667s ago: executing program 0 (id=821): symlink(&(0x7f0000000040)='.\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f00000004c0)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000000140)='./bus\x00') mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='mpol=bind=stadic,\x00']) 33.456194223s ago: executing program 0 (id=822): socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="030000000400000009ff3f4c89f940a481f9fbff040000000a00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1806000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="1d00000000000000b7030000010000fb840000000c000000b70000000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0, 0xffffffffffffffff}, &(0x7f0000000200), &(0x7f00000003c0)=r1}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x8, &(0x7f0000000200)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 33.455815963s ago: executing program 0 (id=823): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10) sendmmsg$inet(r0, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, 0x0}}], 0x1, 0x20008000) getsockopt(r0, 0x58, 0x8, 0x0, &(0x7f00000000c0)) 32.556200058s ago: executing program 0 (id=834): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYBLOB="010100000000000000008100000008000300", @ANYRES32=r2, @ANYBLOB="0a0006000802110000010000060066008e8800004a0033"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) 32.556061039s ago: executing program 0 (id=835): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000200)='bic\x00', 0x4) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000340)=[@window, @window={0x3, 0x2, 0x1}, @window={0x3, 0x0, 0x4}, @window={0x3, 0x8, 0x2}, @sack_perm, @timestamp, @sack_perm, @sack_perm], 0x8) setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0), 0x4) sendto$inet(r1, &(0x7f00000004c0)="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", 0x109e8, 0x805, 0x0, 0x6) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) fstat(r0, &(0x7f0000000100)) 31.624500603s ago: executing program 0 (id=849): r0 = socket$kcm(0x10, 0x2, 0x10) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) r1 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x328000, 0x800}, 0x20) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[]) chdir(&(0x7f0000000100)='./file0\x00') r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) write$binfmt_elf64(r2, &(0x7f0000000000)=ANY=[], 0x78) close(r2) mremap(&(0x7f000015e000/0x1000)=nil, 0x1000, 0x2000, 0x7, &(0x7f000001d000/0x2000)=nil) r3 = syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00') writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000000)='4', 0x1}], 0x1) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r4) sendmsg$NFC_CMD_SE_IO(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="05072abdfe2a30c3df2508000000080001"], 0x28}, 0x1, 0x0, 0x0, 0x4010}, 0x800) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003d000b08d25a80648c7494f90224fc605a0002400c0004000300820e000000000000008000f01700d1bd", 0x2e}], 0x1}, 0x0) pwritev2(r3, &(0x7f0000000280)=[{&(0x7f0000000100)="e5339e42915088428063dbaf41a1d76937d61fd8e778c6c977c017505fa0dc8aa27d49", 0x23}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f00000001c0)="39acb69be9f4ed7a5715f560fbba9459e40180d608d8557a848e316cc79347205eb227a9c2c5c761b30d483bcd3a5f1248ea30dc518510b6c20352a6fe500201a5c43aab5790353606", 0x49}, {&(0x7f0000000240)="a87b8faf482c7d78bb22ec3a4cecb47114f0bbe4ce2221c0bfc913dbbc6f115c2bcd069bc4aa6f52c9", 0x29}], 0x4, 0xd617, 0x5, 0x10) mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x8005, &(0x7f00000014c0)=ANY=[@ANYBLOB="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", @ANYRESDEC=0x0, @ANYBLOB=',audit,\x00']) 20.963129161s ago: executing program 32 (id=772): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newlink={0x4c, 0x10, 0x44b, 0x0, 0x25dfdbfc, {0x7a, 0x0, 0x0, 0x0, 0x49001, 0x4c000000}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5, 0x2b, 0x8}, @IFLA_BR_PRIORITY={0x6, 0x6, 0xc45}]}}}, @IFLA_LINKMODE={0x5, 0x11, 0x2}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4040850}, 0x0) 16.210923448s ago: executing program 33 (id=849): r0 = socket$kcm(0x10, 0x2, 0x10) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) r1 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x328000, 0x800}, 0x20) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[]) chdir(&(0x7f0000000100)='./file0\x00') r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) write$binfmt_elf64(r2, &(0x7f0000000000)=ANY=[], 0x78) close(r2) mremap(&(0x7f000015e000/0x1000)=nil, 0x1000, 0x2000, 0x7, &(0x7f000001d000/0x2000)=nil) r3 = syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00') writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000000)='4', 0x1}], 0x1) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r4) sendmsg$NFC_CMD_SE_IO(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="05072abdfe2a30c3df2508000000080001"], 0x28}, 0x1, 0x0, 0x0, 0x4010}, 0x800) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003d000b08d25a80648c7494f90224fc605a0002400c0004000300820e000000000000008000f01700d1bd", 0x2e}], 0x1}, 0x0) pwritev2(r3, &(0x7f0000000280)=[{&(0x7f0000000100)="e5339e42915088428063dbaf41a1d76937d61fd8e778c6c977c017505fa0dc8aa27d49", 0x23}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f00000001c0)="39acb69be9f4ed7a5715f560fbba9459e40180d608d8557a848e316cc79347205eb227a9c2c5c761b30d483bcd3a5f1248ea30dc518510b6c20352a6fe500201a5c43aab5790353606", 0x49}, {&(0x7f0000000240)="a87b8faf482c7d78bb22ec3a4cecb47114f0bbe4ce2221c0bfc913dbbc6f115c2bcd069bc4aa6f52c9", 0x29}], 0x4, 0xd617, 0x5, 0x10) mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x8005, &(0x7f00000014c0)=ANY=[@ANYBLOB="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", @ANYRESDEC=0x0, @ANYBLOB=',audit,\x00']) 9.768258804s ago: executing program 5 (id=1039): r0 = accept$unix(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)=0x6e) r1 = socket$can_raw(0x1d, 0x3, 0x1) r2 = epoll_create1(0x80000) r3 = accept$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0)={0x27, 0x0}, &(0x7f0000000140)=0x60) r5 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) ppoll(&(0x7f0000000180)=[{r0, 0x10}, {r1, 0x1346}, {r2, 0x2}, {r3, 0x20}, {r5}, {0xffffffffffffffff, 0x1000}], 0x6, &(0x7f00000001c0)={0x77359400}, &(0x7f0000000200)={[0x4]}, 0x8) syz_usb_disconnect(0xffffffffffffffff) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000280)=@attr_other={0x0, 0x9, 0x0, &(0x7f0000000240)=0x20000000}) sendmsg$BATADV_CMD_SET_MESH(r5, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x84c00000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x62}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4048004}, 0x804) r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), r5) sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(r5, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x24, r6, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4800}, 0x8008010) ioctl$DRM_IOCTL_MODE_GETCRTC(r5, 0xc06864a1, &(0x7f0000000540)={&(0x7f0000000500)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_GETFB(r5, 0xc01c64ad, &(0x7f00000005c0)={r7}) setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000600)=0x3, 0x4) ioctl$DRM_IOCTL_ADD_CTX(r5, 0xc0086420, &(0x7f0000000640)={0x0}) ioctl$DRM_IOCTL_NEW_CTX(r5, 0x40086425, &(0x7f0000000680)={r8, 0x1}) getsockopt$inet_mreqn(r5, 0x0, 0x23, &(0x7f0000000c80)={@loopback, @empty, 0x0}, &(0x7f0000000cc0)=0xc) sendmmsg$inet6(r5, &(0x7f0000001040)=[{{&(0x7f00000006c0)={0xa, 0x4e20, 0xa7, @ipv4={'\x00', '\xff\xff', @remote}, 0xb}, 0x1c, &(0x7f0000000c00)=[{&(0x7f0000000700)="81d503fc72e8467912a52d53a32e15c54be1de7bec53bb71e340263f0b0f4f05ab1b08158c2d31d503205bc34b7a43de3941f1dae4073acc1168ee06ced3f22a99be41c96cbf", 0x46}, {&(0x7f0000000780)="f3bb600ec5641c0d7dc5cdaabe93165c8f16bed91daa371ebbc13e62de6fbfcfcfa3c8d4790b34c6b0fc1dc28b0007d3e46844bce3c405c0af0230a67915442688cf69a4526349dcdbe1915111024feae4558862204578582dd90ada9c911aa0430e32ec787b846c96ef20e01546fa5cfcb4a637c266f020d1c3a6a3836e778893bbfb7d0b1db77c84515552570a677d5068ce3b08147e519a141ae6627c37d408c9b33d419995898b8085686bf2b37a6fb0f803803cf2e658b4ff7a87bed678b88cbde537288e3b4d737724a495871714888437d414915372d4c90d7d8f113cbe527ea968d1b8a6c13c47917ae8", 0xee}, {&(0x7f0000000880)="df3af10ccf8398b15c85fd7c49f214855f51a4b75fd047d0b6e72b0bcbd7c13061da8551a96841edc6d25948070b48837dc19b4a630820bfb42d719fed4072b5d00d006991d8dabc1856cd4df8ac5c1e9bcbd21adafe28453b00258897c42ead91d2f1cdd4f9a6db3b4576730f91d9faef4347b3c4a26c27e9c5fc44f31a95b1921613278c0d2cc7494e4baa555cac48a9b8b865404941b25452387ebf022abd82a378b54d22307aa4ffc6ec88a7461c52fb2099dc34adc5e976c356b159c2242e88363b8425cf5f8697a6ee40fa0364682928f2", 0xd4}, {&(0x7f0000000980)="d36d90f53e25693131069ae3864a66375504e981618c7f850be39d862ae4d1ae17fb4405af7e88117f15ff0cd4f7d60164f2e5a2ab09a1d110e19b6670106b1d", 0x40}, {&(0x7f00000009c0)="e825cd161b234e3d7b40fde1a64acd28d07285de7dee8404089b16f44a1f68b32614baeb4b6ec388d0ea500e2429d5405ba375f061cd791b884448cb19cc97fc5e071a0a154b24699fc44474bc6a0ea8bfd2e786b8e90d9f9856eae2776ba8e5", 0x60}, {&(0x7f0000000a40)="6b21f0b9c860f1ebe35d2d664ca46c03c2e93879668f1e5b52bd28e40cd94bb12840148c669c7c6b00f843e2fbcb4ec3e58afa2627f5dbfe29fe110cf611c83b738c9ba4b51b6611356286d0c4135471529dd1571b01b1c0f1bbbe7f66adede99cf7b80b9feb8ee2bf3d037a111363b5adfcec2d84a6013dc6ea89ab56418bc90acfeeda1fa69ba8366b", 0x8a}, {&(0x7f0000000b00)="a681e65390db335341a669816182ea5a51945e83118108e51ba363f6c4d10410e8a6fc46cfa8e03475a4cf392e1ac2f1cd65fa9cf30572bcd91d2c69671ee87531b526f7a99ded6df1a2a3f6d0607166bb4386c9c440086a2858c8e17c76529478a7fa2e90749dc921fe948c4572513ab48baaa8b71ac493f141bf2bd03d3d022e0b15d3ef9eb15413c4fa0ca3125bd7eb91ac7578b9467ad021f7360ed67fb259d2f80e47dce05f80777a9446344307836313f1921ccd18f5cad4a4053957836a205a156e7bdeeb68e0087e5d4c4ccd08066e060330e76b438dbfecb8050cca1002", 0xe2}], 0x7, &(0x7f0000000d00)=[@pktinfo={{0x24, 0x29, 0x32, {@local, r9}}}, @rthdr_2292={{0x98, 0x29, 0x39, {0x87, 0x10, 0x2, 0x80, 0x0, [@dev={0xfe, 0x80, '\x00', 0x34}, @local, @ipv4={'\x00', '\xff\xff', @multicast1}, @remote, @remote, @mcast2, @dev={0xfe, 0x80, '\x00', 0x2d}, @mcast2]}}}, @hopopts_2292={{0x128, 0x29, 0x36, {0x2f, 0x21, '\x00', [@jumbo={0xc2, 0x4, 0x5}, @generic={0x9, 0xee, "db806262ed25af3e3876bf9cfa41e979a45bc2461311c4e457d9a6dc6fda38c3e5e512d73aba46bd1552deb219091fdf3bd7129b21ad396927973b1fcd2e0736094a38f16417e9f66042b227823f63d31e357853b67a60820e43f1d5cebf19ed1103a5d2deba73dd0d5a6b458023c4eb36fe54dd03da6beacbdba0bc656edfad4b10ae1f5b8df48b7b0527443fdd53c366abc398f0390bc8583e7c9776899ee07c159d11e616c22b89aa71070d3f6f2dd067548d220153b8f0da91a78580381d22804d869a3b7e3dbfabcbd70561cab732ddcc184c49aaaa787acfdb661a4fb787f7604ec67e322e871af31896bf"}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x10, {0x2, 0x2, 0x2, 0xaf87, [0x241e]}}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x4}}, @dstopts={{0x118, 0x29, 0x37, {0x1, 0x1f, '\x00', [@padn={0x1, 0x1, [0x0]}, @generic={0x7, 0xa8, "6f47f5d8e28cf8123e2e87b7e922c0e1b68d8cbe331227bdd9580e559a046887a8d65c2d09f8f8eb5b719d2833ae22193ee0a0fd2f1f1925e25aa37fa6de0ef9012a464f4b5bfd2687fa6987553a4b85b5a26d82f835677eb85131a94f8f918e8414a1e59f33ada62e0b7d894eb14d67a2c87b1ab77c5803d8606678079b8382e681411285f7679881d5ef5394506bb90fd072668bd08784ba037305ab5b118514444b0ca8aa9c50"}, @calipso={0x7, 0x50, {0x3, 0x12, 0x6, 0x7, [0x0, 0x5, 0x2, 0x7, 0x9, 0x8000000000000001, 0xffffffff, 0x3, 0x9]}}]}}}], 0x318}}], 0x1, 0x20008040) ioctl$VIDIOC_S_STD(r5, 0x40085618, &(0x7f0000001080)=0xc000c) r10 = syz_genetlink_get_family_id$nfc(&(0x7f0000001100), 0xffffffffffffffff) sendmsg$NFC_CMD_DISABLE_SE(0xffffffffffffffff, &(0x7f00000011c0)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001180)={&(0x7f0000001140)={0x2c, r10, 0x0, 0x70bd28, 0x25dfdbfb, {}, [@NFC_ATTR_SE_INDEX={0x8, 0x15, 0x2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r4}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000040}, 0x11) ioctl$KVM_GET_DEVICE_ATTR(r5, 0x4018aee2, &(0x7f0000001240)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000001200)}) r11 = syz_open_dev$dri(&(0x7f0000001280), 0x6, 0x101000) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r5, 0xc00c642e, &(0x7f00000012c0)={0x0, 0x0, r5}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r11, 0xc00c642d, &(0x7f0000001300)={r12}) ioctl$VIDIOC_G_TUNER(r5, 0xc054561d, &(0x7f0000001340)={0x80000000, "30cbccfa0de6140bb3e84c4bc2d756ad5ee0788497c3bdc725f1270dc32f4a69", 0x3, 0x800, 0x1b, 0x72df2097, 0x2, 0x2, 0xe0bc, 0xb24d}) setsockopt$IP_VS_SO_SET_FLUSH(r5, 0x0, 0x485, 0x0, 0x0) quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0) r13 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NFC_CMD_ENABLE_SE(r13, &(0x7f0000001540)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001500)={&(0x7f0000001480)={0x54, r10, 0x800, 0x70bd27, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r4}, @NFC_ATTR_SE_INDEX={0x8, 0x15, 0x1}, @NFC_ATTR_SE_INDEX={0x8}, @NFC_ATTR_SE_INDEX={0x8, 0x15, 0xc0}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r4}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r4}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x54}, 0x1, 0x0, 0x0, 0x24048000}, 0x10) 9.015420573s ago: executing program 5 (id=1047): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000140)) r2 = getpgrp(0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0) quotactl_fd$Q_SETQUOTA(r3, 0xffffffff80000800, 0xee01, &(0x7f0000000340)={0x0, 0x100000111, 0xd, 0x1ff, 0x7ffd, 0x200000001, 0x48cd, 0x401, 0xfff}) kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r0, &(0x7f0000000180)={r3, r3, 0x10000009}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) write$sequencer(r3, &(0x7f0000000200)=[@l={0x92, 0x4, 0xe0, 0x16, 0x7, 0x7, 0x53}, @l={0x92, 0x1, 0xb0, 0xd, 0x0, 0x80, 0x9}, @t={0x85, 0x6, 0x6, 0x81}], 0x18) sendmsg$NL80211_CMD_SET_STATION(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)={0x30, r4, 0x1, 0x2, 0x80, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0xb}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000840}, 0x0) sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x3, 0x2, 0x102, 0x0, 0x0, {0x7, 0x0, 0x3}, ["", "", ""]}, 0x14}}, 0x50) sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@updsa={0x104, 0x1a, 0x1, 0x70bd25, 0x0, {{@in6=@private1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x32}, {@in6=@dev={0xfe, 0x80, '\x00', 0x37}, 0x0, 0x3c}, @in=@loopback, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {}, {}, 0x1, 0x0, 0xa, 0x4, 0x0, 0x60}, [@coaddr={0x14, 0xe, @in6=@private2}]}, 0x104}}, 0x0) 8.965606626s ago: executing program 5 (id=1049): syz_usb_connect$cdc_ncm(0x6, 0x72, &(0x7f0000000640)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRES32], 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='mm_khugepaged_scan_pmd\x00', r0, 0x0, 0x800}, 0x18) madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) write$char_usb(r1, 0x0, 0x0) write$char_usb(r1, 0x0, 0x0) r2 = getpgid(0xffffffffffffffff) timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @tid=r2}, &(0x7f0000000000)) timer_settime(0x0, 0x1, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x989680}}, 0x0) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000001180)=0x2000000) mmap$dsp(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3, 0x12, r3, 0x0) ioctl$SNDCTL_DSP_GETOPTR(r3, 0x800c5012, &(0x7f0000000280)) openat$uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0xd, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000ce250ccd28fa8b01009f74000000bda47ce123317f8ef4dbad00000000196119a00000d24f1720595c5c4c3c71fe10b3208b846cefedd761a145b545f50f6611bc11b387f704b08871c0fe91a69e4d096b0ed2ff730b5047e7e7d45dd0cd7b0a521e5df1aa42925f9acefab3c312043380888a2c94e058919f95791ad2444a9d7f"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) socket$nl_netfilter(0x10, 0x3, 0xc) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) 1.255209397s ago: executing program 1 (id=1189): r0 = socket$inet6(0xa, 0x802, 0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="fc00000019000100000000000000000000000000000000000000000000000000fc01000000000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000b93760000000000000000000000000000000000000000000200000000000000010000000000000044000500ac141400000000000000000000000000000000003c"], 0xfc}, 0x1, 0x0, 0x0, 0x24008040}, 0x20040000) sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="c400000019000100fcfbffff00000000ac14142c000000000000000000000000fe8000000000000000000000000000aa4e2200004e2400000a00006000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000104000000000010feffffffffffffff0000004000000000000000000000f9ff19000000000000000100000000000000feffffffffffffff770000000000000005000000000000000000000000000000ff7f000000000000080000000000000001000300000000000a0010000100000000000000"], 0xc4}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000e00)={&(0x7f0000000000)=ANY=[@ANYBLOB="300000001a00010000000000000000008180800000000000cfc3ad1514000100"], 0x30}}, 0x0) sendto$inet6(r1, &(0x7f0000000240)="8a", 0x1, 0x51, &(0x7f0000000080)={0xa, 0x3, 0x1, @local, 0x9}, 0x1c) getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f00000000c0)=0x0, &(0x7f0000000100)=0x4) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f0000000200)=@dellinkprop={0xec, 0x6d, 0x20, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, 0x24400, 0x400}, [@IFLA_PROTO_DOWN={0x5, 0x27, 0xb3}, @IFLA_ALT_IFNAME={0x14, 0x35, 'bond_slave_0\x00'}, @IFLA_PORT_SELF={0x74, 0x19, 0x0, 0x1, [@IFLA_PORT_PROFILE={0x6, 0x2, '{\x00'}, @IFLA_PORT_PROFILE={0xc, 0x2, 'ip6tnl0\x00'}, @IFLA_PORT_VF={0x8, 0x1, 0xa67f}, @IFLA_PORT_REQUEST={0x5, 0x6, 0xb}, @IFLA_PORT_PROFILE={0x12, 0x2, 'memory.events\x00'}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "84a69376089f8eaf8245341c825dc53a"}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "3f13a0f77e8e57a1de521f357bf2b75d"}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x40}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x3}]}, @IFLA_PROP_LIST={0x18, 0x34, 0x0, 0x1, [{0x14, 0x35, 'vlan0\x00'}]}, @IFLA_NET_NS_PID={0x8, 0x13, 0xffffffffffffffff}, @IFLA_IFALIAS={0x14, 0x14, 'macvlan0\x00'}, @IFLA_LINKMODE={0x5, 0x11, 0x4e}]}, 0xec}, 0x1, 0x0, 0x0, 0x80}, 0x8000) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) write$cgroup_subtree(r6, &(0x7f0000000100)=ANY=[], 0x32600) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000300)={{0x1, 0x1, 0x18, r6, {0x4}}, './file0\x00'}) r8 = semget$private(0x0, 0x3, 0x0) semop(r8, &(0x7f0000000000)=[{0x1, 0xff00, 0x3000}], 0x1) semctl$GETNCNT(r8, 0x1, 0xe, 0x0) getsockopt$TIPC_CONN_TIMEOUT(r7, 0x10f, 0x82, &(0x7f0000000340), &(0x7f0000000040)=0x4) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000007"], 0x50) sendto$packet(0xffffffffffffffff, &(0x7f0000000000)='1', 0x1, 0x4000050, 0x0, 0x0) r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r9, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x40, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r11, r12, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000200)="26470f01cbb9700500000f32b946020000b8a52f0000ba000000000f30b97e0a00000f32420f01c9b9750b00000f32c4c279594d00b9f10b00000f32b9870800000f32f4", 0x44}], 0x1, 0x5c, 0x0, 0x0) ioctl$KVM_RUN(r12, 0xae80, 0x0) ioctl$KVM_RUN(r12, 0xae80, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) write$binfmt_misc(r9, &(0x7f0000000000), 0xd) 775.77653ms ago: executing program 4 (id=1193): r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) write(r0, &(0x7f0000000180)="2cd889f0253e14f3d5", 0x9) ioctl$SCSI_IOCTL_GET_IDLUN(r0, 0x5382, &(0x7f0000000080)) unshare(0x62040200) fsopen(&(0x7f0000000400)='configfs\x00', 0x1) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000280)={0x2, &(0x7f0000000240)=[{0x8006}, {0x5, 0x6, 0x2, 0xa000000}]}) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x21, 0x0, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r3 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) close_range(r3, r2, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000000)={0x7fff, 0x8, 0x100, 0x0, 0x0}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000108500000008000000bf08fffff900000055090100000000009500000000ec0000bf916a0000000000b7020000000000008500000000000000b70000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r5 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) r6 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f0000000340)={0xda2, 0x100, 0x6}) r7 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r7, 0x7a8, &(0x7f00000003c0)={{@host, 0x7}, @local, 0x0, 0x5, 0x9, 0x2, 0x2, 0x9, 0x8}) ioctl$TIOCL_SETSEL(r7, 0x5452, &(0x7f0000000100)) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb}) close_range(r2, r6, 0x0) r8 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, &(0x7f0000000140)={0x6, 0x1000, 0x800}) dup(r3) ioctl$DRM_IOCTL_MODE_MAP_DUMB(r3, 0xc01064b3, &(0x7f00000001c0)={r4}) close_range(r2, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r6, 0xc00c642e, &(0x7f0000000040)={0x0, 0x0, r8}) 636.118882ms ago: executing program 4 (id=1194): socket(0x10, 0x80002, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000030}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000580), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f0000000240)={0x0, 0xe00, &(0x7f0000000200)={&(0x7f0000000c00)={0x14, r1, 0x680822d7e3b5f37d, 0x0, 0x25dfdbfd}, 0x14}}, 0x4008000) 634.553227ms ago: executing program 4 (id=1196): r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x3280f5, 0x1000}, 0x1c) 590.235254ms ago: executing program 4 (id=1198): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', 0xffffffffffffffff, 0x0, 0xffffffffffffffff}, 0x18) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="160000000000000004000000ffff000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000008b00"/28], 0x48) (async) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="160000000000000004000000ffff000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000008b00"/28], 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001280)=[r0, r0], 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xd, 0x5a87, 0x4, 0x1, 0x0, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0x2, r1, 0x0, 0x8000000}, 0x27) (async) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0x2, r1, 0x0, 0x8000000}, 0x27) 590.135118ms ago: executing program 4 (id=1199): r0 = socket$inet6(0xa, 0x802, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001300)={'ip6gre0\x00', &(0x7f0000001280)={'ip6tnl0\x00', 0x0, 0x2f, 0x8, 0x6a, 0xfffffffa, 0x2b, @loopback={0x300}, @empty, 0x40, 0x8000, 0x7f, 0x7}}) 586.846103ms ago: executing program 5 (id=1201): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x182, 0x0) ioctl$TCFLSH(r0, 0x540b, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x119180, 0x0) r2 = dup(r1) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f00000002c0)=ANY=[@ANYBLOB="8200000000000000ff000040"]) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xf, 0x4, &(0x7f0000000480)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xbb}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) syz_emit_ethernet(0x66, &(0x7f0000000240)={@local, @random="706ab144ffe0", @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2f, 0x0, @remote, @remote}, {{0x0, 0x0, 0x1, 0x0, 0xb, 0x1, 0x0, 0x4}}}}}}, 0x0) 506.189124ms ago: executing program 5 (id=1202): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) munmap(&(0x7f0000001000/0x4000)=nil, 0x4000) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="1802000002000000000000008200000085000000410000009500000000000000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000700)={'team0\x00', 0x0}) sendmsg$TEAM_CMD_PORT_LIST_GET(r2, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYBLOB="40010000", @ANYRES16=r3, @ANYBLOB="150500000000ffdbdf250300000008000100", @ANYRES32=r4], 0x140}}, 0x0) sendmsg$NL80211_CMD_SET_BEACON(r2, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f00000011c0)={0x950, 0x0, 0x200, 0x70bd28, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE_PROBE_RESP={0x26, 0x7f, [@dsss={0x3, 0x1, 0x8c}, @rann={0x7e, 0x15, {{0x0, 0x4}, 0x2, 0x5, @broadcast, 0x4, 0x7, 0x4000000}}, @mesh_id={0x72, 0x6}]}, @NL80211_ATTR_BEACON_TAIL={0x13b, 0xf, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0xc, 0x0, 0xc}}, @rann={0x7e, 0x15, {{0x1, 0x30}, 0x5, 0x9, @device_b, 0xffff, 0xfffffffb, 0x5}}, @mesh_chsw={0x76, 0x6, {0xfc, 0x3, 0x3c, 0x1}}, @perr={0x84, 0x2f, {0xff, 0x3, [{{}, @device_b, 0x7f8, @void, 0x1a}, {{0x0, 0x1}, @device_b, 0x9, @value, 0x3f}, {{}, @device_a, 0x2, @void, 0x8}]}}, @mesh_config={0x71, 0x7, {0x0, 0x0, 0x1, 0x1, 0x2, 0x2, 0x69}}, @random_vendor={0xdd, 0x97, "4b894058e15bf3c17492731de6220ea8f5a8c4f72dc4a29bf4eb9e7a2585f1993a3fae6ecf7064f49b0a452bc6ea1cb430bb2a2d77244dd777485c2648645e3a26e05bc21a9dc830c7d5362c7ecfb4c0047f7504ee9fc76052661d79161b081f7271bbee7d5add4cf2954804749d22d65ffb9d41ac13a3d2a087749624f5036e174d8de9ff61d8700971a1d91be84892a051bc8924bd53"}, @prep={0x83, 0x25, {{0x0, 0x1}, 0x6, 0x9, @broadcast, 0x4, @value=@broadcast, 0xfffffffd, 0x3, @device_a, 0x536e33fb}}, @ibss={0x6, 0x2, 0x5}]}, @NL80211_ATTR_FTM_RESPONDER={0x338, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_LCI={0x79, 0x2, "17fb0b1d55d4fe656c28ce8c63dc8f1fe8d9fd5cfaf6fd3253369d3675807cb849a8e8638bdbcc8f47bb02885a3da7687b013c9aa5e515e317a57bf3b56c572a4054a6c9fdd704c15fa67b9d93391fae643f4b64b4e34ff8cc2b62a8c16e7348ca4d7b58079e306b7c3b0fcb5cb1cce8470c6e1bb2"}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0x47, 0x3, "6e8a68dec33f5cd7c4c9559c31b1f78501a6fa94e482183e69968fc2bb4fac9660183f83518ccdf4b9321859af2ce58eb62ef3724073da5deacefa5cf64dc72dd488a2"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_LCI={0xa0, 0x2, "70527107a902476f529f4676ad46824ef0cdca97c27289ba7799cd558319e624c32ddb2253a262adca79e9d1299d0715107d7441824441e781f0ce183bb4e612230f81f1e7a8c410d3875244c4155ee0477722bfa2acc16fb7fcb6adba0ec3d2cd3ca78e70bbdc0ba3103ea2f4fc47d02d78a3c4b71e2fc99400790b3aa11fddffc37d98069bf46cba5353431f2e3018b97312d47d46f603b3a31f7a"}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0xf5, 0x3, "8b7a92c61aaa53a95be5d4595390bb3c6c739d0ecf85c82c8395af809d76bb6108b46804973e33b78ac92ea5cfdea80f4ff03ca87946030b3183ad59c9d21c52b279c3fffa9c641d26b363f458ac78d3e2242e6aa1528138a672a553740f9132c3c87aaa97462adfa03eb2e4c85d6c241376871f06350e190098ddcabf9869f8ec3c097e61071455e6bfeacc1e5ac1e5043a1ef0e30ec06d4c8a599e342c0a13eb8c8f102d40485a60d889dc8e01fa6ca22243a432e8ce27b23ff6cd153e1026ad33d6cb7cb756caf3ec15aef6bfdc677d07cd96ec3170da7faf2d2782fb662c677a4689b838ff4e6e54f01dbbe3da6b51"}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0xc5, 0x3, "8f51b8af48fdbd7c950231bd574353fdaaa051cdcdb440a63a6e43c43baf7d362f76ea2d8f5cdbeaf8e4d5ef9e4a6a2bae4166ac55fb902b27b932f5bcaa613b0abc4c29d4206d71e22ffd547cf4defbe75a2a4fd9bc72948bc5fb44107a53a3034d92309f0424092a9fca6c3ad9bd046320b0a96196e29afa108607d6825c0f7f7cd2f0a96aca0366b9f8f89f5e70cc9ddbbbe88a6120b1a87c3dc9d6721a392dae96ecd05ad589b55845aef94eceddbbca43d820cb09b4acad3a61ba9d44b1be"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}]}, @NL80211_ATTR_BEACON_HEAD={0x1f9, 0xe, {{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x26a2}, @broadcast, @device_a, @initial, {0x3, 0xd34}}, 0x40, @random=0x4, 0x0, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x16}, {0x18, 0x1}, {0xc, 0x1}, {0xb, 0x1}, {0x9}, {0x6, 0x1}, {0x60}, {0x18}]}, @void, @val={0x4, 0x6, {0x18, 0x9, 0xf000, 0x2}}, @val={0x6, 0x2, 0x9}, @val={0x5, 0xb2, {0x5a, 0x11, 0x1, "fe218914b25d7d726421403dc373d73760e1128a457cd3a86bd987b0504bd006832e6f964c305d3c777427e5f900c82451fde9f43dc5e52368e2fa6b2bc0219d88ad7b2a451285fff817c7ee07679a4938e30a432456949ff1f2a8c18d3d0524f8e40546816146a66367fdf9ecc8b89589a6f08697d82a4c957ea0dccd5de1a14b53c9e4e34c386be2d12b705b361cc642a06c0956507ce9fa559675ebd2b72e0d23ff926870c6b5bb090324ad5767"}}, @void, @void, @val={0x3c, 0x4, {0x1, 0x1, 0x40, 0x3}}, @void, @val={0x72, 0x6}, @void, @void, [{0xdd, 0xef, "fd73e917b147601ab8454b8cda23a5eb502befa5252bd70279fdd6a335350150bfd1e7727f982df9f5094fab719650e148d6287163d124f109375f6550b71716da85f212b18e6986fd473646c28a0e50332734d8d02d2fcb574cfe7bfe67561047a023ed935f08c94bdc60da9aca9b8cbf794495068c65c32d7c36e19d6022a0c8f7cecfda9ef9df49f736a0a10f5b1bc0ee3bbd26128b15f3549ec9b797317a77cc981b58ff962c96c0e1a22aef52e6f63fabd84300ea58132952778cf54f8740e6b9a668dc103e3373cbfec5b9a17e11dab57035cffce8a123a5c88c95e7803593820380c9a3a268c4dd37e5d5f0"}]}}, @NL80211_ATTR_BEACON_TAIL={0x191, 0xf, [@fast_bss_trans={0x37, 0xbb, {0xc, 0x5, "82ed30aa7eccc15f7717ff7ab0626ad9", "cfdecf8c11d1b4a975e140ab420310900aa8f77158262aab3abda58d5d9ab5df", "cb6d720d7dabb593f5f03ed2fcaac869ca6d4788120f8f20c40c861415c4a8dd", [{0x2, 0x3, "2cf7d8"}, {0x1, 0x9, "c6891b131c6baa914b"}, {0x2, 0x28, "2b178ae10358486309d7284fbc73a511385a01a90a58145771a24b237ee7f1eddf629fee5ed10a57"}, {0x1, 0x21, "8d591de4b99579bb4dceeb11f06fa3bbd51e5585e9512bf0407ff39098bf23f0fc"}, {0x4, 0xa, "76f6dffcf29616a24c08"}]}}, @perr={0x84, 0x2, {0x7}}, @challenge={0x10, 0x1, 0x99}, @mesh_chsw={0x76, 0x6, {0x2, 0x6, 0x37, 0x2}}, @tim={0x5, 0x1c, {0xe8, 0x89, 0xdd, "7789cf7138fcd88670b27805ed03a930e88ab441bb21648dcf"}}, @measure_req={0x26, 0x96, {0xd, 0x2e, 0x6, "6d91f568da885e641ff95a75d922919ffd8488ffdb5a25f6fc050f48285e33276e7c23c7d21e90f6aaf97045aafbbe1c64dc3c9103cb33da1368ec6b4d43989d6374eeb252662a6d55130e87b50d2bbc2713e0f3bbbbe67ede6ee982694171ff3d1389d3c72ffe3922c7148be379eb19c9a7f7ef6148ec62e63096f55456176978d069b339c1618319b366870c8ea1a2945890"}}, @dsss={0x3, 0x1, 0xb4}, @cf={0x4, 0x6, {0x51, 0x1, 0x3, 0x7}}]}, @NL80211_ATTR_BEACON_HEAD={0xec, 0xe, {{{0x0, 0x0, 0x8, 0x0, 0x0, 0x1, 0x0, 0x1}, {0xe}, @device_b, @broadcast, @random="64334f0fd5dc", {0xd, 0x8}}, 0x90, @default, 0x2c00, @val={0x0, 0x6, @default_ap_ssid}, @void, @void, @val={0x4, 0x6, {0x40, 0x7, 0x4, 0xbabb}}, @val={0x6, 0x2, 0x3}, @void, @void, @void, @val={0x3c, 0x4, {0x1, 0x7f, 0xa1, 0x2}}, @val={0x2d, 0x1a, {0xc, 0x2, 0x4, 0x0, {0x9, 0xff, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x1}, 0x0, 0x1, 0x1}}, @void, @val={0x71, 0x7, {0x0, 0x1, 0x0, 0xffffffffffffffff, 0x2, 0x1, 0x1}}, @void, [{0xdd, 0x83, "577abb4799528d61482a86cd02c443c1d16f7ed86f4a1fe6423fd5e27f35f269dfd89eb53299ab29ec9b58d73182cab52f59e8518dbc4873288cfe4ffcb3b66683d40d9dfc97e7db3770a3c25bb79672b8396ae5b06e52fb58adc3378d74833126818d4680ed23d90664447d1c58f3f676d74a6720883a0c7a65db45ef9cdead05c0a0"}]}}, @NL80211_ATTR_IE={0x21, 0x2a, [@erp={0x2a, 0x1, {0x1, 0x1, 0x1}}, @dsss={0x3, 0x1, 0xac}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0xe, 0xa0, @broadcast, 0x7, 0x1, 0xffffffff}}]}]}, 0x950}, 0x1, 0x0, 0x0, 0x4000}, 0x40000) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) sendmsg$nl_xfrm(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000780)=ANY=[@ANYBLOB="280400001600e5632bbd7000fedbdf25fc010000000000000000000000000000ac1414aa0000000000000000000000004e230fff4e2300050200808021000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x428}}, 0x0) 505.829274ms ago: executing program 5 (id=1203): mkdir(&(0x7f00000003c0)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000800), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f0000002100)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0x2020) syz_fuse_handle_req(r0, &(0x7f0000004380)="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", 0x2000, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x90, 0x0, 0x4000000000000, {0x0, 0x200000000, 0x20000000, 0x4, 0x6, 0x4, {0x0, 0x10001, 0x0, 0xd, 0x0, 0x100, 0x10000, 0x2, 0x0, 0x0, 0xfffffffc, r2, 0x0, 0x7}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r0, &(0x7f0000004300)={0x50, 0x0, r1, {0x7, 0x26, 0x2d, 0xfffffffff323ca46, 0x0, 0xfffc, 0x6, 0x5d3186cf, 0x0, 0x0, 0x1, 0x10001}}, 0x50) r4 = creat(&(0x7f0000000180)='./file0/file0\x00', 0x0) syz_fuse_handle_req(r0, &(0x7f0000008400)="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", 0x2000, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e00)={0xa0, 0x0, 0x80000001, {{0x4000001, 0x0, 0x100000005, 0x0, 0xfff, 0x3, {0x1, 0x100000000, 0x1137, 0xffff, 0x1, 0x1, 0x1ff, 0xfffffffc, 0x0, 0x8000, 0x2, 0xee00, r3, 0xfffffff9, 0x1}}, {0x0, 0xd}}}, 0x0, 0x0}) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff) syz_emit_ethernet(0xf3, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x0) r7 = userfaultfd(0x80001) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) r8 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) bind$bt_hci(r8, &(0x7f0000000000)={0x27}, 0x62) setsockopt$inet_int(r4, 0x0, 0x21, &(0x7f00000000c0)=0xfffffff8, 0x4) r9 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) bind$bt_hci(r9, &(0x7f0000000000)={0x27}, 0x62) close_range(r7, 0xffffffffffffffff, 0x0) sendmsg$NL802154_CMD_GET_SEC_LEVEL(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)={0x14, r6, 0x1, 0x70bd2a, 0x0, {0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x20004074}, 0x0) 445.92747ms ago: executing program 4 (id=1204): syz_usb_connect$cdc_ncm(0x6, 0x72, 0x0, 0x0) r0 = accept$phonet_pipe(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x10) getsockopt$PNPIPE_INITSTATE(r0, 0x113, 0x4, &(0x7f0000000080), &(0x7f00000000c0)=0x4) ioctl$HCIINQUIRY(0xffffffffffffffff, 0x800448f0, &(0x7f0000000140)={0x3, 0x8cb5, "6ab586", 0xa, 0x4}) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100), 0x20, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) 274.813841ms ago: executing program 1 (id=1209): syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) munmap(&(0x7f000045e000/0x1000)=nil, 0x1000) bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000042c0)='fdinfo/3\x00') read$FUSE(r0, &(0x7f0000000080)={0x2020}, 0x2020) mremap(&(0x7f0000dde000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f0000e73000/0x3000)=nil) mremap(&(0x7f00006bd000/0x2000)=nil, 0x2000, 0x4000, 0x3, &(0x7f0000721000/0x4000)=nil) munmap(&(0x7f0000e29000/0x1000)=nil, 0x1000) munmap(&(0x7f0000a88000/0x1000)=nil, 0x1000) munmap(&(0x7f000060f000/0x4000)=nil, 0x4000) madvise(&(0x7f0000492000/0x2000)=nil, 0x2000, 0x12) munmap(&(0x7f0000694000/0x3000)=nil, 0x3000) mremap(&(0x7f0000807000/0x3000)=nil, 0x3000, 0x1000, 0x0, &(0x7f0000ffe000/0x1000)=nil) mremap(&(0x7f000061c000/0x13000)=nil, 0x13000, 0x4000, 0x3, &(0x7f0000fb0000/0x4000)=nil) mremap(&(0x7f00007b2000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000968000/0x3000)=nil) madvise(&(0x7f0000a30000/0x3000)=nil, 0x3000, 0x10) mremap(&(0x7f000046b000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000769000/0x1000)=nil) mlock2(&(0x7f000072d000/0x1000)=nil, 0x1000, 0x0) mremap(&(0x7f00009dc000/0x2000)=nil, 0x2000, 0x1000, 0xf, &(0x7f0000fa7000/0x1000)=nil) munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async) munmap(&(0x7f000045e000/0x1000)=nil, 0x1000) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48) (async) syz_open_procfs(0xffffffffffffffff, &(0x7f00000042c0)='fdinfo/3\x00') (async) read$FUSE(r0, &(0x7f0000000080)={0x2020}, 0x2020) (async) mremap(&(0x7f0000dde000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f0000e73000/0x3000)=nil) (async) mremap(&(0x7f00006bd000/0x2000)=nil, 0x2000, 0x4000, 0x3, &(0x7f0000721000/0x4000)=nil) (async) munmap(&(0x7f0000e29000/0x1000)=nil, 0x1000) (async) munmap(&(0x7f0000a88000/0x1000)=nil, 0x1000) (async) munmap(&(0x7f000060f000/0x4000)=nil, 0x4000) (async) madvise(&(0x7f0000492000/0x2000)=nil, 0x2000, 0x12) (async) munmap(&(0x7f0000694000/0x3000)=nil, 0x3000) (async) mremap(&(0x7f0000807000/0x3000)=nil, 0x3000, 0x1000, 0x0, &(0x7f0000ffe000/0x1000)=nil) (async) mremap(&(0x7f000061c000/0x13000)=nil, 0x13000, 0x4000, 0x3, &(0x7f0000fb0000/0x4000)=nil) (async) mremap(&(0x7f00007b2000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000968000/0x3000)=nil) (async) madvise(&(0x7f0000a30000/0x3000)=nil, 0x3000, 0x10) (async) mremap(&(0x7f000046b000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000769000/0x1000)=nil) (async) mlock2(&(0x7f000072d000/0x1000)=nil, 0x1000, 0x0) (async) mremap(&(0x7f00009dc000/0x2000)=nil, 0x2000, 0x1000, 0xf, &(0x7f0000fa7000/0x1000)=nil) (async) munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000) (async) 272.642899ms ago: executing program 3 (id=1210): r0 = io_uring_setup(0x66e0, &(0x7f00000001c0)={0x0, 0xa99f, 0x80, 0x1ffe, 0x3bd}) (async) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000020303000000a54f00000000000000100800010001"], 0x1c}}, 0x0) (async) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000020301040000000000000000000000000800010001"], 0x1c}}, 0x0) (async) r3 = socket$phonet_pipe(0x23, 0x5, 0x2) setsockopt$PNPIPE_INITSTATE(r3, 0x113, 0x4, 0x0, 0x0) (async) close_range(r0, 0xffffffffffffffff, 0x0) 272.539434ms ago: executing program 1 (id=1211): r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x20) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) read(r1, 0x0, 0x0) (async) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r2, 0x4b72, &(0x7f0000000040)={0x0, 0x0, 0x6, 0xc, 0x200, &(0x7f0000000880)="1ae19337aa151f36ae49bb3f8cb95c5bf840d4f1e55efaaf098d47a70eb36a7309000000000000000f4743f490c585108c1331c7749299a25a705f5096cb268cbc6070d680e1be250700000000000000472471ff550c0010000007f3c7b61abe4162256004ea8ca5e5b5f379c6eb3257eda08f7e6959090000004d13184d382747e035b4722525e00ade86b4c6d1e157c75d15c1f961ebc0a64d7f2a73f8979fcecacaa64f9b9069ebcc1d5b471edbc4f6c7f1b98ae74e909aa6f25b7fa77bf9cd4ed36d5c53dc519d11c3cc1c22a3b86cf3c645413fcea0c99ded703699d2bb6a4a663b99b6069da5aaf64785a5887c31261d4b9e57ee07000000def6f255ca26108f11f02047d47f2d0fec30f7e92482f71496e184214a4e0c5fdc48b0af0c0478940016d8f0990a0e1090fd515380aae83c5eaeed338701574b64200a16ef2811fadcf1e0f49a514df529061e09ce45e3da03a03fe9b4a6bcfa7d04594e4f6d0714a2e14ea127ab37d64a5e0db630cd4f4a2e6c985a542ff20a9b2193f265f93a258a88dd6c9d6a926dd23d32425849c5d9210007660a617f22133b6cb5087f4c6057942aa18193172bd995fa70a1f949b196f2e2a3c175858575713be5ee3f7f4dcecc98123f9ded3afdebe13d79a7f7fcb2469ae0ac503111401612df7ee995f74fb97a63bf62d61f78c062f959119ab50c1f706a930121ebcd53ccb93d158186ed360750ca8e728150d988844b9a5cff46591ccaff4175b86ea6171b046b856168f403b5253a5cc393430a09a4489a0895571e597ac8846f945ffb372a88d3a2b463dc961416c80c55773f917020751ed51cfd73c1e06fbadd156d56bedc117af95d242d6d07002ce34dccd6005e944afa92b22ec9a698469c6edc06caa2cfcd61912607d459b4c28ebea9745bcd4697d75c9601fd333d3cd797963a3c71b7cc5fdc756da8d97207936e5f53b53b732533c2722e03002293517966611602f297de6ff5408777b7a93c45cee3ee5c5601a4e94266b295ea7a86812a7ab8896ec5ea1b12643e1844b185734528399e62bceb8700cc6cd491e4a4430d0a3ba329a5a2fa170fd0b1cc4ba8294de988cd35df2cd7344aa8a9f3432b96fb889c02f484f63520cc3466a3c2733d45f176931b2db18dba54991a9553cedb7f585786388d4042dbae1c95b769e3d4e036e8afea0a04c04f542b152ca1fd1f8efee60425c5a122fd1b90e98635284abd9f217d9e19cb2a64b354c9d79509cc47d7305114990148a7291cb0fe2d1c773a6664b66ae04aa62c534d072ae54c2ca0d5962cc58945d8924abfc4d5af922462507430d8f2c17479a6678b0b3700000000000000000000000000000000000000000000f800"}) (async) preadv(r0, &(0x7f0000001b00)=[{&(0x7f00000009c0)=""/239, 0xef}], 0x1, 0x2, 0x0) (async) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000080)=@mangle={'mangle\x00', 0x1f, 0x6, 0x3a0, 0x118, 0x0, 0x330, 0x298, 0x330, 0x3f0, 0x3f0, 0x3f0, 0x3f0, 0x3f0, 0x6, 0x0, {[{{@ip={@multicast1, @remote, 0x0, 0x0, 'ip6erspan0\x00', 'pimreg0\x00'}, 0x0, 0x70, 0xa8}, @common=@inet=@SET3={0x38}}, {{@ip={@multicast2, @dev, 0x0, 0x0, 'veth0_to_bond\x00', 'syzkaller1\x00'}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, 0x0, 0x0, 'vlan0\x00', 'veth1_to_bridge\x00'}, 0x0, 0x70, 0x98}, @ECN={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @ECN={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x400) (async) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001000000000000000000dc020078000000000000000000000000ff02000000000000e26ea7250000000100000000000000000a"], 0xb8}}, 0x0) 216.25719ms ago: executing program 3 (id=1212): sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="58000000100001042abd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="030100002088020024001280110018016272696467655f736c617665000000000c00058005fe010000000000140003006272696467655f736c6176"], 0x58}, 0x1, 0x0, 0x0, 0x44801}, 0x48000) (async) syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYRES32=0x41424344], 0x0) (async) r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a", 0x2, 0xfffffffffffffffe) (async) r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xffffffffffffff02, 0x0) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0) add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0xfffffffffffffffd) (async) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = dup(r3) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil}) (async) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0) (async) syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) get_robust_list(0x0, &(0x7f0000000180)=0x0, &(0x7f00000001c0)) (async) r6 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x401) ioctl$SCSI_IOCTL_SEND_COMMAND(r6, 0x1, &(0x7f0000000840)={0x0, 0x0, 0x3b8}) (async) read(r6, &(0x7f00000000c0)=""/156, 0x9c) 216.110103ms ago: executing program 1 (id=1213): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000002c0)="2e00000011008b88040f80ee59acbc04130800480f0000005e2900421803001825800000000000000280000c0012", 0x2e}], 0x1}, 0x600000000000000) 215.432238ms ago: executing program 1 (id=1214): r0 = fsopen(&(0x7f0000000340)='mqueue\x00', 0x0) fsconfig$FSCONFIG_SET_BINARY(r0, 0x8, 0x0, 0x0, 0x0) statx(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x6000, 0x40, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) quotactl_fd$Q_GETFMT(r0, 0xffffffff80000402, r1, &(0x7f0000000200)) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="ec00000004080000040000000900000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0xa, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES8=r2, @ANYBLOB="0000000000000000b7030000070000008500000021000000b70000000000000095"], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 156.245977ms ago: executing program 1 (id=1215): r0 = syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="0d01000009000008250592d20700006a3b010902241700fa0074980904e4ff11070103000905010200ffe0000009058202"], 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000200)={0x84, 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_open_dev$char_usb(0xc, 0xb4, 0x0) syz_usb_disconnect(r0) socket$nl_route(0x10, 0x3, 0x0) syz_usb_connect(0x0, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="12014101f2c59620d016b8108ede01020301090212000100001000090400020000afb8ea22e328e8f181e3d02283ec00f831ece34cf381f28ccfe76a9af2926cdbf3ef9d52b9dfa4ce2ae57d9d89eab7fa99567613bb047e5e0ae4db0f2604d6974eafb95260e89210f04b63b5e688efafa931f2145bad88bd32fcf05ed32a02452d27773aab7da63dd0308c98cef9321a8c721d61968cd70c3067674f94d1f91a87fce1889c7b06"], 0x0) 54.605551ms ago: executing program 3 (id=1216): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) bind$bt_l2cap(r0, &(0x7f0000000240)={0x1f, 0x21, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x31}}, 0xe) (async) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x9, 0x13, r0, 0xaedeb000) (async, rerun: 32) r1 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10) (async) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) (async) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) (async) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) (async) openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a30000000060a0b04000000000000000002000000040004800900010073797a30000000000900020073797a3200000000010000001100010000000000000000000300000a"], 0x58}}, 0x8004) (async) bind$bt_l2cap(r2, &(0x7f0000000040)={0x1f, 0x0, @none}, 0xe) (async, rerun: 64) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0x400, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xffe0}, {0xfff9, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_TUPDATE={0x8, 0x4, 0x1ff}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40085}, 0x0) (rerun: 64) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00"], 0x50}}, 0x20008844) (async) ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000040)={0x5, 0x18000000, {0x0}, {0xee01}, 0xb00, 0x7e}) prctl$PR_SET_PTRACER(0x59616d61, r4) syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_role_change={{0x12, 0x8}, {0x6, @any, 0x3}}}, 0xb) (async) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r5, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0xffff}, {0xffff, 0x7}, {0x0, 0x2}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) 54.216229ms ago: executing program 3 (id=1217): r0 = syz_open_dev$loop(&(0x7f00000011c0), 0x10001, 0x4002) (async, rerun: 64) capset(&(0x7f0000001780)={0x19980330}, &(0x7f00000017c0)={0x0, 0x7, 0x410b, 0x3, 0x0, 0xffffffff}) (rerun: 64) ioctl$IOC_PR_RELEASE(r0, 0x401070ca, 0x0) (async) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="180200000000000000000000cfffffff850000001700000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'veth0_to_bond\x00', 0x0}) r4 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r1, r3, 0x25, 0x0, @void}, 0x10) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x5, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x22, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x91, @void, @value}, 0x94) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000140)={r4, r5}, 0x5) (async) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r6 = fsmount(0xffffffffffffffff, 0x0, 0x0) r7 = openat$cgroup_procs(r6, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0) open_by_handle_at(r7, &(0x7f0000000340)=ANY=[@ANYBLOB="0c000000fe00030007"], 0x88800) (async) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x293, 0x1}) (async) r8 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r8, 0x107, 0x12, &(0x7f0000000140)={0x3, 0x4}, 0x4) (async) r9 = socket(0x11, 0x3, 0x0) (async) r10 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f00000005c0)={'gre0\x00', 0x0}) bind$packet(r9, &(0x7f0000000180)={0x11, 0x0, r11, 0x1, 0x0, 0x6, @dev}, 0x14) (async, rerun: 64) setsockopt$packet_int(r9, 0x107, 0x11, &(0x7f0000000240)=0xe9, 0x4) (async, rerun: 64) sendmsg$netlink(r9, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="02011400012918000e3580009f000114000000110600ac141430e0000003808a8972bd0b72e41082b1a3d2061fd7fdfe4b88942a31f48597e36e039b1c599db6e466749c2d4c8303a0f7fbda34fb8825f80200e3c0aba61f6304a80500ffffca88faca"], 0xdd12}], 0x1}, 0x10) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_lsm={0x18, 0x7, &(0x7f0000000180)=ANY=[@ANYBLOB="8510000004000000950000000000000018000000000000000000000000000000950000000000000085100000fcffffff95"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) kexec_load(0xf5, 0x1, &(0x7f0000000b80)=[{&(0x7f00000004c0)=')', 0x1, 0x0, 0x1000}], 0x0) (async, rerun: 64) r12 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0), 0x200000, 0x0) (async, rerun: 64) r13 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r13, 0xc0285700, &(0x7f0000000040)={0x3ff, "1f138a91b80f3795181800c70511603979e1ef3b3a9b0b8c7d6a2ef124708900"}) (async) r14 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r14, &(0x7f00000006c0)=[{&(0x7f0000000200)=""/87, 0x57}], 0x1, 0x42d8, 0x6) (async) flistxattr(r12, &(0x7f00000001c0)=""/3, 0x3) 1.174551ms ago: executing program 3 (id=1218): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='sched\x00') read$FUSE(r0, &(0x7f0000001300)={0x2020}, 0x2020) syz_kvm_setup_syzos_vm$x86(r0, &(0x7f0000c00000/0x400000)=nil) r1 = socket$inet6(0xa, 0x802, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000001300)={'ip6gre0\x00', &(0x7f0000001280)={'ip6tnl0\x00', 0x0, 0x2f, 0x8, 0x6a, 0xfffffffa, 0x2b, @loopback, @empty, 0x40, 0x8000, 0x7f, 0x7}}) setsockopt$inet6_opts(r1, 0x29, 0x39, &(0x7f0000000040)=ANY=[@ANYBLOB="2bddff0000000000"], 0x8) 0s ago: executing program 3 (id=1219): r0 = socket$nl_route(0x10, 0x3, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$nl_route(r0, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000001100)=@ipv6_getnexthop={0x20, 0x6a, 0x1, 0x70bd27, 0x0, {}, [@NHA_ID={0x8}]}, 0x20}}, 0x0) 0s ago: executing program 4 (id=1221): r0 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_genetlink_get_family_id$fou(&(0x7f0000000000), r0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000640)={'wlan0\x00', 0x0}) r6 = syz_open_dev$tty1(0xc, 0x4, 0x1) r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) writev(r7, &(0x7f0000000100)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f88f7", 0x12}, {&(0x7f0000000040)="dd7fb78fb52ae97c75f16d067e11415380270996f3f4b616b45322a4415fdf5d003b", 0x22}], 0x2) r8 = dup(r6) write$UHID_INPUT(r8, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006) r9 = socket$nl_generic(0x10, 0x3, 0x10) r10 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r9, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x20, r10, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}]}, 0x20}}, 0x0) sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x38, r4, 0x400, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x4, 0x80}}}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @crypto_settings, @NL80211_ATTR_WANT_1X_4WAY_HS={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x20040804}, 0x4c800) r11 = socket$isdn(0x22, 0x2, 0x25) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x64}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) ioctl$SOUND_MIXER_READ_VOLUME(r11, 0x80044d12, 0x0) r12 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56545, 0x70bd26, 0xfffffffe, {0x0, 0x0, 0x0, r13, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x40000c0}, 0x0) r14 = socket$nl_generic(0x10, 0x3, 0x10) r15 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_TSINFO_GET(r14, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001340)={0x20, r15, 0x6a98047402e98331, 0x0, 0x80000, {0x15}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}]}]}, 0x20}}, 0x4880) sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002600)=@delqdisc={0x24, 0x25, 0x403, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, r13, {0x8, 0x1f}, {0xffe0, 0xfff1}, {0x10, 0x4}}}, 0x24}}, 0x440c0) kernel console output (not intermixed with test programs): oint 0x1 has invalid maxpacket 8 [ 71.150662][ T1975] usb 8-1: config 1 interface 213 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 4 [ 71.154979][ T1975] usb 8-1: config 1 interface 213 has no altsetting 0 [ 71.162757][ T6944] __nla_validate_parse: 4 callbacks suppressed [ 71.162771][ T6944] netlink: 20 bytes leftover after parsing attributes in process `syz.2.371'. [ 71.176684][ T839] usb 7-1: USB disconnect, device number 4 [ 71.390147][ T34] usb 5-1: USB disconnect, device number 2 [ 71.474310][ T6975] netlink: 40 bytes leftover after parsing attributes in process `syz.0.383'. [ 71.703710][ T6992] netlink: 14 bytes leftover after parsing attributes in process `syz.2.386'. [ 71.735087][ T6995] FAULT_INJECTION: forcing a failure. [ 71.735087][ T6995] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 71.739653][ T6995] CPU: 1 UID: 0 PID: 6995 Comm: syz.2.387 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 71.739667][ T6995] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 71.739673][ T6995] Call Trace: [ 71.739678][ T6995] [ 71.739682][ T6995] dump_stack_lvl+0x16c/0x1f0 [ 71.739710][ T6995] should_fail_ex+0x512/0x640 [ 71.739736][ T6995] should_fail_alloc_page+0xe7/0x130 [ 71.739763][ T6995] prepare_alloc_pages+0x3c2/0x610 [ 71.739787][ T6995] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 71.739812][ T6995] ? stack_trace_save+0x8e/0xc0 [ 71.739832][ T6995] ? __pfx_stack_trace_save+0x10/0x10 [ 71.739845][ T6995] ? stack_depot_save_flags+0x28/0xa40 [ 71.739864][ T6995] ? kasan_save_stack+0x42/0x60 [ 71.739877][ T6995] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 71.739891][ T6995] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 71.739905][ T6995] ? inode_init_always_gfp+0xce4/0x1030 [ 71.739920][ T6995] ? new_inode+0x22/0x1c0 [ 71.739929][ T6995] ? __debugfs_create_file+0x11c/0x6b0 [ 71.739943][ T6995] ? debugfs_create_file_full+0x41/0x60 [ 71.739957][ T6995] ? kvm_dev_ioctl+0x14ff/0x1ad0 [ 71.739973][ T6995] ? __x64_sys_ioctl+0x18b/0x210 [ 71.739984][ T6995] ? do_syscall_64+0xcd/0x4c0 [ 71.740000][ T6995] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.740012][ T6995] ? register_lock_class+0x41/0x4c0 [ 71.740033][ T6995] ? __lock_acquire+0xb8a/0x1c90 [ 71.740048][ T6995] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 71.740061][ T6995] ? policy_nodemask+0xea/0x4e0 [ 71.740078][ T6995] alloc_pages_mpol+0x1fb/0x550 [ 71.740094][ T6995] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 71.740110][ T6995] ? find_held_lock+0x2b/0x80 [ 71.740125][ T6995] alloc_pages_noprof+0x131/0x390 [ 71.740141][ T6995] get_free_pages_noprof+0x10/0xb0 [ 71.740158][ T6995] inode_doinit_with_dentry+0x8d6/0x12e0 [ 71.740176][ T6995] ? __pfx_inode_doinit_with_dentry+0x10/0x10 [ 71.740192][ T6995] ? new_inode+0x15a/0x1c0 [ 71.740206][ T6995] selinux_d_instantiate+0x26/0x30 [ 71.740220][ T6995] security_d_instantiate+0x142/0x1a0 [ 71.740237][ T6995] d_instantiate+0x5c/0x90 [ 71.740247][ T6995] __debugfs_create_file+0x286/0x6b0 [ 71.740263][ T6995] debugfs_create_file_full+0x41/0x60 [ 71.740279][ T6995] kvm_dev_ioctl+0x14ff/0x1ad0 [ 71.740302][ T6995] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 71.740321][ T6995] ? selinux_file_ioctl+0x180/0x270 [ 71.740335][ T6995] ? selinux_file_ioctl+0xb4/0x270 [ 71.740350][ T6995] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 71.740368][ T6995] __x64_sys_ioctl+0x18b/0x210 [ 71.740381][ T6995] do_syscall_64+0xcd/0x4c0 [ 71.740398][ T6995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.740409][ T6995] RIP: 0033:0x7f644c18e929 [ 71.740418][ T6995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 71.740428][ T6995] RSP: 002b:00007f644d0db038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 71.740439][ T6995] RAX: ffffffffffffffda RBX: 00007f644c3b5fa0 RCX: 00007f644c18e929 [ 71.740450][ T6995] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 71.740456][ T6995] RBP: 00007f644d0db090 R08: 0000000000000000 R09: 0000000000000000 [ 71.740462][ T6995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 71.740468][ T6995] R13: 0000000000000000 R14: 00007f644c3b5fa0 R15: 00007ffeb97219e8 [ 71.740485][ T6995] [ 71.974623][ T6999] netlink: 'syz.2.389': attribute type 1 has an invalid length. [ 71.991645][ T6999] ip6erspan0: entered promiscuous mode [ 72.025574][ T6997] /dev/sr0: Can't open blockdev [ 72.027652][ T7001] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 72.031286][ T7001] overlayfs: fs on './file0' does not support file handles, falling back to xino=off. [ 72.040922][ T7001] tmpfs: Bad value for 'grpquota_inode_hardlimit' [ 72.091141][ T7007] netlink: 12 bytes leftover after parsing attributes in process `syz.2.393'. [ 72.094267][ T7007] netlink: 12 bytes leftover after parsing attributes in process `syz.2.393'. [ 72.103121][ T7007] netlink: 'syz.2.393': attribute type 4 has an invalid length. [ 72.112127][ T7007] netlink: 'syz.2.393': attribute type 4 has an invalid length. [ 72.120719][ T7007] fuseblk: Unknown parameter 'sMrt' [ 72.133588][ T7012] usb 2-1: USB disconnect, device number 2 [ 72.246509][ T7015] netlink: 40 bytes leftover after parsing attributes in process `syz.0.396'. [ 72.514311][ T7030] raw_sendmsg: syz.1.401 forgot to set AF_INET. Fix it! [ 72.734568][ T7041] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7041 comm=syz.0.404 [ 72.762703][ T7043] netlink: 14 bytes leftover after parsing attributes in process `syz.2.406'. [ 72.825190][ T7047] Cannot find set identified by id 3 to match [ 72.830814][ T7048] Cannot find set identified by id 3 to match [ 73.063779][ T40] kauditd_printk_skb: 31 callbacks suppressed [ 73.063791][ T40] audit: type=1400 audit(1750423809.074:367): avc: denied { nlmsg_read } for pid=7059 comm="syz.2.413" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 73.072200][ T40] audit: type=1400 audit(1750423809.074:368): avc: denied { ioctl } for pid=7059 comm="syz.2.413" path="socket:[17558]" dev="sockfs" ino=17558 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 73.079790][ T40] audit: type=1400 audit(1750423809.084:369): avc: denied { write } for pid=7059 comm="syz.2.413" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 73.136275][ T7064] tc_dump_action: action bad kind [ 73.265933][ T7069] netlink: 68 bytes leftover after parsing attributes in process `syz.2.416'. [ 73.316035][ T7073] tipc: Enabling of bearer rejected, failed to enable media [ 73.533823][ T7085] FAULT_INJECTION: forcing a failure. [ 73.533823][ T7085] name failslab, interval 1, probability 0, space 0, times 0 [ 73.538094][ T7085] CPU: 0 UID: 0 PID: 7085 Comm: syz.0.421 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 73.538117][ T7085] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 73.538140][ T7085] Call Trace: [ 73.538148][ T7085] [ 73.538155][ T7085] dump_stack_lvl+0x16c/0x1f0 [ 73.538185][ T7085] should_fail_ex+0x512/0x640 [ 73.538208][ T7085] ? fs_reclaim_acquire+0xae/0x150 [ 73.538228][ T7085] should_failslab+0xc2/0x120 [ 73.538252][ T7085] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 73.538274][ T7085] ? security_inode_alloc+0x3b/0x2b0 [ 73.538300][ T7085] security_inode_alloc+0x3b/0x2b0 [ 73.538322][ T7085] inode_init_always_gfp+0xce4/0x1030 [ 73.538351][ T7085] alloc_inode+0x86/0x240 [ 73.538369][ T7085] new_inode+0x22/0x1c0 [ 73.538389][ T7085] __debugfs_create_file+0x11c/0x6b0 [ 73.538415][ T7085] debugfs_create_file_full+0x41/0x60 [ 73.538442][ T7085] kvm_dev_ioctl+0x14ff/0x1ad0 [ 73.538477][ T7085] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 73.538506][ T7085] ? selinux_file_ioctl+0x180/0x270 [ 73.538534][ T7085] ? selinux_file_ioctl+0xb4/0x270 [ 73.538558][ T7085] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 73.538586][ T7085] __x64_sys_ioctl+0x18b/0x210 [ 73.538608][ T7085] do_syscall_64+0xcd/0x4c0 [ 73.538636][ T7085] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 73.538654][ T7085] RIP: 0033:0x7f2a4578e929 [ 73.538668][ T7085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 73.538684][ T7085] RSP: 002b:00007f2a4650e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 73.538700][ T7085] RAX: ffffffffffffffda RBX: 00007f2a459b5fa0 RCX: 00007f2a4578e929 [ 73.538712][ T7085] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 73.538722][ T7085] RBP: 00007f2a4650e090 R08: 0000000000000000 R09: 0000000000000000 [ 73.538733][ T7085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 73.538743][ T7085] R13: 0000000000000000 R14: 00007f2a459b5fa0 R15: 00007fff71c5e7c8 [ 73.538767][ T7085] [ 73.538820][ T7085] debugfs: out of free dentries, can not create file 'mmu_cache_miss' [ 73.719952][ T1975] usb 8-1: New USB device found, idVendor=257a, idProduct=1606, bcdDevice=18.0d [ 73.723162][ T1975] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 73.726026][ T1975] usb 8-1: Product: 、 [ 73.728942][ T1975] usb 8-1: can't set config #1, error -71 [ 73.733082][ T1975] usb 8-1: USB disconnect, device number 4 [ 73.808738][ T7096] netlink: 8 bytes leftover after parsing attributes in process `syz.0.424'. [ 73.813050][ T7096] netlink: 112 bytes leftover after parsing attributes in process `syz.0.424'. [ 73.846849][ T40] audit: type=1326 audit(1750423809.854:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7109 comm="syz.2.430" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f644c18e929 code=0x0 [ 73.884373][ T40] audit: type=1400 audit(1750423809.894:371): avc: denied { ioctl } for pid=7115 comm="syz.2.432" path="socket:[15964]" dev="sockfs" ino=15964 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 73.926916][ T40] audit: type=1400 audit(1750423809.934:372): avc: denied { getopt } for pid=7120 comm="syz.0.434" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 73.963159][ T7124] loop6: detected capacity change from 0 to 524287487 [ 73.968083][ T7124] Buffer I/O error on dev loop6, logical block 0, async page read [ 73.971439][ T7124] Buffer I/O error on dev loop6, logical block 0, async page read [ 73.974541][ T7124] Buffer I/O error on dev loop6, logical block 0, async page read [ 73.977120][ T7124] Buffer I/O error on dev loop6, logical block 0, async page read [ 73.979678][ T7124] Buffer I/O error on dev loop6, logical block 0, async page read [ 73.982558][ T7124] Buffer I/O error on dev loop6, logical block 0, async page read [ 73.985373][ T7124] Buffer I/O error on dev loop6, logical block 0, async page read [ 73.987988][ T7124] Buffer I/O error on dev loop6, logical block 0, async page read [ 73.990542][ T7124] ldm_validate_partition_table(): Disk read failed. [ 73.992762][ T7124] Buffer I/O error on dev loop6, logical block 0, async page read [ 73.995484][ T7124] Buffer I/O error on dev loop6, logical block 0, async page read [ 73.998240][ T7124] Dev loop6: unable to read RDB block 0 [ 74.000393][ T7124] loop6: unable to read partition table [ 74.002615][ T7124] loop_reread_partitions: partition scan of loop6 (3 xC) failed (rc=-5) [ 74.011223][ T40] audit: type=1400 audit(1750423810.014:373): avc: denied { set_context_mgr } for pid=7126 comm="syz.2.436" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1 [ 74.014092][ T7127] tipc: Resetting bearer [ 74.054166][ T7124] loop6: detected capacity change from 524287487 to 0 [ 74.071781][ T7127] tipc: Disabling bearer [ 74.079254][ T7127] team0 (unregistering): Port device team_slave_0 removed [ 74.085221][ T7127] team0 (unregistering): Port device team_slave_1 removed [ 74.310998][ T40] audit: type=1400 audit(1750423810.314:374): avc: denied { write } for pid=7144 comm="syz.0.442" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 74.347339][ T7147] tmpfs: Unknown parameter 'usrqBxFde_har\it' [ 74.353418][ T40] audit: type=1400 audit(1750423810.364:375): avc: denied { listen } for pid=7146 comm="syz.0.443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 74.359774][ T40] audit: type=1400 audit(1750423810.364:376): avc: denied { connect } for pid=7146 comm="syz.0.443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 74.382348][ T7149] SELinux: failed to load policy [ 75.014208][ T7178] FAULT_INJECTION: forcing a failure. [ 75.014208][ T7178] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 75.018687][ T7178] CPU: 3 UID: 0 PID: 7178 Comm: syz.1.454 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 75.018704][ T7178] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 75.018711][ T7178] Call Trace: [ 75.018715][ T7178] [ 75.018719][ T7178] dump_stack_lvl+0x16c/0x1f0 [ 75.018754][ T7178] should_fail_ex+0x512/0x640 [ 75.018775][ T7178] should_fail_alloc_page+0xe7/0x130 [ 75.018792][ T7178] prepare_alloc_pages+0x3c2/0x610 [ 75.018806][ T7178] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 75.018822][ T7178] ? stack_trace_save+0x8e/0xc0 [ 75.018837][ T7178] ? __pfx_stack_trace_save+0x10/0x10 [ 75.018850][ T7178] ? stack_depot_save_flags+0x28/0xa40 [ 75.018869][ T7178] ? kasan_save_stack+0x42/0x60 [ 75.018883][ T7178] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 75.018896][ T7178] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 75.018910][ T7178] ? inode_init_always_gfp+0xce4/0x1030 [ 75.018925][ T7178] ? new_inode+0x22/0x1c0 [ 75.018935][ T7178] ? __debugfs_create_file+0x11c/0x6b0 [ 75.018948][ T7178] ? debugfs_create_file_full+0x41/0x60 [ 75.018962][ T7178] ? kvm_dev_ioctl+0x14ff/0x1ad0 [ 75.018978][ T7178] ? __x64_sys_ioctl+0x18b/0x210 [ 75.018989][ T7178] ? do_syscall_64+0xcd/0x4c0 [ 75.019004][ T7178] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.019017][ T7178] ? register_lock_class+0x41/0x4c0 [ 75.019038][ T7178] ? __lock_acquire+0xb8a/0x1c90 [ 75.019053][ T7178] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 75.019067][ T7178] ? policy_nodemask+0xea/0x4e0 [ 75.019083][ T7178] alloc_pages_mpol+0x1fb/0x550 [ 75.019099][ T7178] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 75.019115][ T7178] ? find_held_lock+0x2b/0x80 [ 75.019130][ T7178] alloc_pages_noprof+0x131/0x390 [ 75.019146][ T7178] get_free_pages_noprof+0x10/0xb0 [ 75.019162][ T7178] inode_doinit_with_dentry+0x8d6/0x12e0 [ 75.019181][ T7178] ? __pfx_inode_doinit_with_dentry+0x10/0x10 [ 75.019198][ T7178] ? new_inode+0x15a/0x1c0 [ 75.019211][ T7178] selinux_d_instantiate+0x26/0x30 [ 75.019225][ T7178] security_d_instantiate+0x142/0x1a0 [ 75.019241][ T7178] d_instantiate+0x5c/0x90 [ 75.019251][ T7178] __debugfs_create_file+0x286/0x6b0 [ 75.019268][ T7178] debugfs_create_file_full+0x41/0x60 [ 75.019284][ T7178] kvm_dev_ioctl+0x14ff/0x1ad0 [ 75.019305][ T7178] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 75.019325][ T7178] ? selinux_file_ioctl+0x180/0x270 [ 75.019339][ T7178] ? selinux_file_ioctl+0xb4/0x270 [ 75.019354][ T7178] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 75.019372][ T7178] __x64_sys_ioctl+0x18b/0x210 [ 75.019385][ T7178] do_syscall_64+0xcd/0x4c0 [ 75.019402][ T7178] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.019412][ T7178] RIP: 0033:0x7f22cdf8e929 [ 75.019426][ T7178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 75.019437][ T7178] RSP: 002b:00007f22ceeb4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 75.019447][ T7178] RAX: ffffffffffffffda RBX: 00007f22ce1b5fa0 RCX: 00007f22cdf8e929 [ 75.019454][ T7178] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 75.019460][ T7178] RBP: 00007f22ceeb4090 R08: 0000000000000000 R09: 0000000000000000 [ 75.019467][ T7178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 75.019473][ T7178] R13: 0000000000000000 R14: 00007f22ce1b5fa0 R15: 00007fffeee99318 [ 75.019486][ T7178] [ 75.652960][ T7215] FAULT_INJECTION: forcing a failure. [ 75.652960][ T7215] name failslab, interval 1, probability 0, space 0, times 0 [ 75.658028][ T7215] CPU: 1 UID: 0 PID: 7215 Comm: syz.1.470 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 75.658043][ T7215] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 75.658050][ T7215] Call Trace: [ 75.658054][ T7215] [ 75.658058][ T7215] dump_stack_lvl+0x16c/0x1f0 [ 75.658078][ T7215] should_fail_ex+0x512/0x640 [ 75.658093][ T7215] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 75.658111][ T7215] should_failslab+0xc2/0x120 [ 75.658126][ T7215] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 75.658141][ T7215] ? __d_alloc+0x31/0xaa0 [ 75.658159][ T7215] __d_alloc+0x31/0xaa0 [ 75.658177][ T7215] d_alloc+0x4a/0x1e0 [ 75.658194][ T7215] d_alloc_parallel+0xe3/0x12e0 [ 75.658207][ T7215] ? __kernel_text_address+0xd/0x40 [ 75.658219][ T7215] ? arch_stack_walk+0xa6/0x100 [ 75.658233][ T7215] ? __pfx_d_alloc_parallel+0x10/0x10 [ 75.658247][ T7215] ? lockdep_init_map_type+0x5c/0x280 [ 75.658265][ T7215] ? lockdep_init_map_type+0x5c/0x280 [ 75.658284][ T7215] __lookup_slow+0x193/0x460 [ 75.658296][ T7215] ? __pfx___lookup_slow+0x10/0x10 [ 75.658309][ T7215] ? zoneinfo_show+0xa00/0xb60 [ 75.658324][ T7215] ? zoneinfo_show+0xa00/0xb60 [ 75.658335][ T7215] ? d_lookup+0xe7/0x190 [ 75.658349][ T7215] lookup_noperm+0xe1/0x110 [ 75.658360][ T7215] start_creating.part.0+0x15a/0x3e0 [ 75.658377][ T7215] __debugfs_create_file+0xa7/0x6b0 [ 75.658394][ T7215] debugfs_create_file_full+0x41/0x60 [ 75.658410][ T7215] kvm_dev_ioctl+0x14ff/0x1ad0 [ 75.658432][ T7215] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 75.658451][ T7215] ? selinux_file_ioctl+0x180/0x270 [ 75.658466][ T7215] ? selinux_file_ioctl+0xb4/0x270 [ 75.658481][ T7215] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 75.658499][ T7215] __x64_sys_ioctl+0x18b/0x210 [ 75.658517][ T7215] do_syscall_64+0xcd/0x4c0 [ 75.658535][ T7215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.658546][ T7215] RIP: 0033:0x7f22cdf8e929 [ 75.658555][ T7215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 75.658565][ T7215] RSP: 002b:00007f22ceeb4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 75.658576][ T7215] RAX: ffffffffffffffda RBX: 00007f22ce1b5fa0 RCX: 00007f22cdf8e929 [ 75.658582][ T7215] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 75.658588][ T7215] RBP: 00007f22ceeb4090 R08: 0000000000000000 R09: 0000000000000000 [ 75.658594][ T7215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 75.658600][ T7215] R13: 0000000000000000 R14: 00007f22ce1b5fa0 R15: 00007fffeee99318 [ 75.658614][ T7215] [ 75.964085][ T7231] lo speed is unknown, defaulting to 1000 [ 75.966046][ T7231] lo speed is unknown, defaulting to 1000 [ 75.968957][ T7231] lo speed is unknown, defaulting to 1000 [ 75.974965][ T7231] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 75.981428][ T7231] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 75.996080][ T7231] lo speed is unknown, defaulting to 1000 [ 75.999064][ T7231] lo speed is unknown, defaulting to 1000 [ 76.001535][ T7231] lo speed is unknown, defaulting to 1000 [ 76.005563][ T7231] lo speed is unknown, defaulting to 1000 [ 76.215625][ T7235] __nla_validate_parse: 9 callbacks suppressed [ 76.215636][ T7235] netlink: 40 bytes leftover after parsing attributes in process `syz.0.478'. [ 76.295015][ T1426] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.297171][ T1426] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.353366][ T7243] tmpfs: Bad value for 'mpol' [ 76.675288][ T7266] netlink: 96 bytes leftover after parsing attributes in process `syz.0.491'. [ 76.906771][ T7282] input: syz0 as /devices/virtual/input/input6 [ 76.955065][ T7284] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 76.984092][ T7289] netlink: 14 bytes leftover after parsing attributes in process `syz.1.500'. [ 77.171929][ T5946] Bluetooth: hci3: command 0x0419 tx timeout [ 77.172634][ T7182] Bluetooth: hci3: Opcode 0x0401 failed: -110 [ 77.483240][ T29] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 77.483511][ T7320] binder: Bad value for 'max' [ 77.527152][ T7323] tmpfs: Bad value for 'mpol' [ 77.631826][ T29] usb 7-1: Using ep0 maxpacket: 8 [ 77.635165][ T29] usb 7-1: config index 0 descriptor too short (expected 5924, got 36) [ 77.638304][ T29] usb 7-1: config 250 has an invalid interface number: 228 but max is -1 [ 77.640916][ T29] usb 7-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config [ 77.645087][ T29] usb 7-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 77.647819][ T29] usb 7-1: config 250 has no interface number 0 [ 77.649782][ T29] usb 7-1: config 250 interface 228 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 17 [ 77.655047][ T29] usb 7-1: config 250 interface 228 has no altsetting 0 [ 77.658575][ T29] usb 7-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 77.661983][ T29] usb 7-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 77.664524][ T29] usb 7-1: Product: syz [ 77.665841][ T29] usb 7-1: SerialNumber: syz [ 77.670421][ T29] hub 7-1:250.228: bad descriptor, ignoring hub [ 77.672494][ T29] hub 7-1:250.228: probe with driver hub failed with error -5 [ 77.981988][ T1975] usb 7-1: USB disconnect, device number 6 [ 78.145580][ T7358] netlink: 8 bytes leftover after parsing attributes in process `syz.1.527'. [ 78.148356][ T7358] netlink: 244 bytes leftover after parsing attributes in process `syz.1.527'. [ 78.210612][ T40] kauditd_printk_skb: 20 callbacks suppressed [ 78.210623][ T40] audit: type=1400 audit(1750423814.214:397): avc: denied { ioctl } for pid=7362 comm="syz.1.529" path="/dev/fuse" dev="devtmpfs" ino=105 ioctlcmd=0xe501 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1 [ 78.321768][ T1975] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 78.481736][ T1975] usb 7-1: Using ep0 maxpacket: 32 [ 78.485795][ T1975] usb 7-1: config 0 interface 0 has no altsetting 0 [ 78.489874][ T1975] usb 7-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 78.492960][ T1975] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 78.495567][ T1975] usb 7-1: Product: syz [ 78.497057][ T1975] usb 7-1: Manufacturer: syz [ 78.499352][ T1975] usb 7-1: SerialNumber: syz [ 78.502203][ T1975] usb 7-1: config 0 descriptor?? [ 78.625590][ C2] vcan0: j1939_tp_rxtimer: 0xffff888025790000: rx timeout, send abort [ 78.628347][ C2] vcan0: j1939_xtp_rx_abort_one: 0xffff888025791800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 78.634173][ T40] audit: type=1400 audit(1750423814.644:398): avc: denied { search } for pid=5333 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 78.660233][ T7375] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.534'. [ 78.706797][ T1975] gs_usb 7-1:0.0: Required endpoints not found [ 78.710713][ T1975] usb 7-1: USB disconnect, device number 7 [ 78.745546][ T40] audit: type=1400 audit(1750423814.754:399): avc: denied { bind } for pid=7376 comm="syz.1.535" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 78.904025][ T7384] tmpfs: Bad value for 'mpol' [ 78.942789][ T40] audit: type=1400 audit(1750423814.954:400): avc: denied { ioctl } for pid=7385 comm="syz.1.538" path="socket:[20636]" dev="sockfs" ino=20636 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 78.996638][ T7390] netlink: 68 bytes leftover after parsing attributes in process `syz.1.539'. [ 79.000628][ T40] audit: type=1400 audit(1750423815.004:401): avc: denied { ioctl } for pid=7389 comm="syz.1.539" path="socket:[18346]" dev="sockfs" ino=18346 ioctlcmd=0x4d12 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 79.002768][ T7390] delete_channel: no stack [ 79.128177][ C2] vcan0: j1939_tp_rxtimer: 0xffff888025790000: abort rx timeout. Force session deactivation [ 79.613581][ T40] audit: type=1400 audit(1750423815.624:402): avc: denied { connect } for pid=7417 comm="syz.2.550" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 79.728789][ T7424] netlink: 12 bytes leftover after parsing attributes in process `syz.2.553'. [ 79.783621][ T7429] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 79.894966][ T40] audit: type=1400 audit(1750423815.904:403): avc: denied { create } for pid=7437 comm="syz.2.558" name="file7" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 79.940535][ T7440] ieee802154 phy0 wpan0: encryption failed: -22 [ 80.036546][ T7443] netlink: 20 bytes leftover after parsing attributes in process `syz.2.560'. [ 80.051854][ T7355] Bluetooth: hci3: Opcode 0x0401 failed: -110 [ 80.054803][ T5946] Bluetooth: hci3: command 0x0419 tx timeout [ 80.072792][ T7447] netlink: 14 bytes leftover after parsing attributes in process `syz.2.562'. [ 80.150069][ T7453] FAULT_INJECTION: forcing a failure. [ 80.150069][ T7453] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 80.158283][ T7453] CPU: 1 UID: 0 PID: 7453 Comm: syz.1.565 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 80.158309][ T7453] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 80.158321][ T7453] Call Trace: [ 80.158327][ T7453] [ 80.158334][ T7453] dump_stack_lvl+0x16c/0x1f0 [ 80.158365][ T7453] should_fail_ex+0x512/0x640 [ 80.158392][ T7453] should_fail_alloc_page+0xe7/0x130 [ 80.158418][ T7453] prepare_alloc_pages+0x3c2/0x610 [ 80.158440][ T7453] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 80.158465][ T7453] ? stack_trace_save+0x8e/0xc0 [ 80.158488][ T7453] ? __pfx_stack_trace_save+0x10/0x10 [ 80.158510][ T7453] ? stack_depot_save_flags+0x28/0xa40 [ 80.158541][ T7453] ? kasan_save_stack+0x42/0x60 [ 80.158563][ T7453] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 80.158586][ T7453] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 80.158608][ T7453] ? inode_init_always_gfp+0xce4/0x1030 [ 80.158632][ T7453] ? new_inode+0x22/0x1c0 [ 80.158647][ T7453] ? __debugfs_create_file+0x11c/0x6b0 [ 80.158669][ T7453] ? debugfs_create_file_full+0x41/0x60 [ 80.158691][ T7453] ? kvm_dev_ioctl+0x14ff/0x1ad0 [ 80.158716][ T7453] ? __x64_sys_ioctl+0x18b/0x210 [ 80.158734][ T7453] ? do_syscall_64+0xcd/0x4c0 [ 80.158759][ T7453] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.158780][ T7453] ? register_lock_class+0x41/0x4c0 [ 80.158813][ T7453] ? __lock_acquire+0xb8a/0x1c90 [ 80.158837][ T7453] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 80.158859][ T7453] ? policy_nodemask+0xea/0x4e0 [ 80.158886][ T7453] alloc_pages_mpol+0x1fb/0x550 [ 80.158912][ T7453] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 80.158938][ T7453] ? find_held_lock+0x2b/0x80 [ 80.158962][ T7453] alloc_pages_noprof+0x131/0x390 [ 80.158988][ T7453] get_free_pages_noprof+0x10/0xb0 [ 80.159015][ T7453] inode_doinit_with_dentry+0x8d6/0x12e0 [ 80.159046][ T7453] ? __pfx_inode_doinit_with_dentry+0x10/0x10 [ 80.159071][ T7453] ? new_inode+0x15a/0x1c0 [ 80.159093][ T7453] selinux_d_instantiate+0x26/0x30 [ 80.159116][ T7453] security_d_instantiate+0x142/0x1a0 [ 80.159147][ T7453] d_instantiate+0x5c/0x90 [ 80.159164][ T7453] __debugfs_create_file+0x286/0x6b0 [ 80.159190][ T7453] debugfs_create_file_full+0x41/0x60 [ 80.159218][ T7453] kvm_dev_ioctl+0x14ff/0x1ad0 [ 80.159253][ T7453] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 80.159285][ T7453] ? selinux_file_ioctl+0x180/0x270 [ 80.159308][ T7453] ? selinux_file_ioctl+0xb4/0x270 [ 80.159333][ T7453] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 80.159358][ T7453] __x64_sys_ioctl+0x18b/0x210 [ 80.159380][ T7453] do_syscall_64+0xcd/0x4c0 [ 80.159407][ T7453] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.159423][ T7453] RIP: 0033:0x7f22cdf8e929 [ 80.159438][ T7453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 80.159455][ T7453] RSP: 002b:00007f22ceeb4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 80.159472][ T7453] RAX: ffffffffffffffda RBX: 00007f22ce1b5fa0 RCX: 00007f22cdf8e929 [ 80.159485][ T7453] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 80.159495][ T7453] RBP: 00007f22ceeb4090 R08: 0000000000000000 R09: 0000000000000000 [ 80.159505][ T7453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 80.159515][ T7453] R13: 0000000000000000 R14: 00007f22ce1b5fa0 R15: 00007fffeee99318 [ 80.159540][ T7453] [ 80.376682][ T7461] openvswitch: netlink: Message has 240 unknown bytes. [ 80.635854][ T40] audit: type=1400 audit(1750423816.644:404): avc: denied { mount } for pid=7478 comm="syz.2.576" name="/" dev="rpc_pipefs" ino=21620 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1 [ 80.649347][ T40] audit: type=1400 audit(1750423816.654:405): avc: denied { mounton } for pid=7478 comm="syz.2.576" path="/154/file0" dev="rpc_pipefs" ino=21620 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=dir permissive=1 [ 80.668085][ T40] audit: type=1400 audit(1750423816.674:406): avc: denied { unmount } for pid=5943 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1 [ 81.745677][ T7550] __nla_validate_parse: 3 callbacks suppressed [ 81.745694][ T7550] netlink: 20 bytes leftover after parsing attributes in process `syz.3.599'. [ 82.021980][ T29] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 82.171849][ T29] usb 8-1: Using ep0 maxpacket: 8 [ 82.175704][ T29] usb 8-1: config index 0 descriptor too short (expected 301, got 45) [ 82.179175][ T29] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 82.183458][ T29] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 82.187281][ T29] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 82.191235][ T29] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 82.195533][ T29] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 82.198394][ T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 82.407127][ T29] usb 8-1: usb_control_msg returned -32 [ 82.409611][ T29] usbtmc 8-1:16.0: can't read capabilities [ 82.712408][ T7565] kvm: vcpu 0: requested 88 ns lapic timer period limited to 200000 ns [ 82.769512][ T7570] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 82.775658][ T7570] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 82.861834][ T5946] Bluetooth: hci3: command 0x0419 tx timeout [ 82.863877][ T7502] Bluetooth: hci3: Opcode 0x0401 failed: -110 [ 82.936259][ T7575] netlink: 40 bytes leftover after parsing attributes in process `syz.2.607'. [ 83.415614][ T7594] netlink: 96 bytes leftover after parsing attributes in process `syz.1.615'. [ 83.416877][ T7570] syz.3.600 (7570): drop_caches: 1 [ 83.438070][ T7570] syz.3.600 (7570): drop_caches: 1 [ 83.439786][ T7600] FAULT_INJECTION: forcing a failure. [ 83.439786][ T7600] name failslab, interval 1, probability 0, space 0, times 0 [ 83.443840][ T7600] CPU: 2 UID: 0 PID: 7600 Comm: syz.2.616 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 83.443856][ T7600] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 83.443862][ T7600] Call Trace: [ 83.443867][ T7600] [ 83.443871][ T7600] dump_stack_lvl+0x16c/0x1f0 [ 83.443904][ T7600] should_fail_ex+0x512/0x640 [ 83.443923][ T7600] ? fs_reclaim_acquire+0xae/0x150 [ 83.443935][ T7600] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 83.443951][ T7600] should_failslab+0xc2/0x120 [ 83.443967][ T7600] __kmalloc_noprof+0xd2/0x510 [ 83.443984][ T7600] tomoyo_realpath_from_path+0xc2/0x6e0 [ 83.444001][ T7600] ? tomoyo_profile+0x47/0x60 [ 83.444019][ T7600] tomoyo_path_number_perm+0x245/0x580 [ 83.444031][ T7600] ? tomoyo_path_number_perm+0x237/0x580 [ 83.444046][ T7600] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 83.444059][ T7600] ? find_held_lock+0x2b/0x80 [ 83.444085][ T7600] ? find_held_lock+0x2b/0x80 [ 83.444098][ T7600] ? hook_file_ioctl_common+0x145/0x410 [ 83.444111][ T7600] ? __fget_files+0x20e/0x3c0 [ 83.444128][ T7600] security_file_ioctl+0x9b/0x240 [ 83.444145][ T7600] __x64_sys_ioctl+0xb7/0x210 [ 83.444158][ T7600] do_syscall_64+0xcd/0x4c0 [ 83.444175][ T7600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 83.444187][ T7600] RIP: 0033:0x7f644c18e929 [ 83.444195][ T7600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 83.444206][ T7600] RSP: 002b:00007f644d0db038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 83.444217][ T7600] RAX: ffffffffffffffda RBX: 00007f644c3b5fa0 RCX: 00007f644c18e929 [ 83.444223][ T7600] RDX: 00002000000000c0 RSI: 00000000c040565f RDI: 0000000000000003 [ 83.444230][ T7600] RBP: 00007f644d0db090 R08: 0000000000000000 R09: 0000000000000000 [ 83.444236][ T7600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 83.444242][ T7600] R13: 0000000000000000 R14: 00007f644c3b5fa0 R15: 00007ffeb97219e8 [ 83.444255][ T7600] [ 83.444259][ T7600] ERROR: Out of memory at tomoyo_realpath_from_path. [ 83.532909][ T7602] netlink: 40 bytes leftover after parsing attributes in process `syz.1.617'. [ 84.025063][ T40] kauditd_printk_skb: 2 callbacks suppressed [ 84.025080][ T40] audit: type=1400 audit(1750423820.034:409): avc: denied { remount } for pid=7625 comm="syz.2.628" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 84.146161][ T40] audit: type=1400 audit(1750423820.154:410): avc: denied { ioctl } for pid=7630 comm="syz.1.629" path="socket:[21879]" dev="sockfs" ino=21879 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 84.183029][ T7633] FAULT_INJECTION: forcing a failure. [ 84.183029][ T7633] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 84.187178][ T7633] CPU: 2 UID: 0 PID: 7633 Comm: syz.1.630 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 84.187194][ T7633] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 84.187202][ T7633] Call Trace: [ 84.187206][ T7633] [ 84.187210][ T7633] dump_stack_lvl+0x16c/0x1f0 [ 84.187231][ T7633] should_fail_ex+0x512/0x640 [ 84.187249][ T7633] _copy_from_user+0x2e/0xd0 [ 84.187265][ T7633] video_usercopy+0xedd/0x1720 [ 84.187281][ T7633] ? __pfx___video_do_ioctl+0x10/0x10 [ 84.187295][ T7633] ? selinux_kernel_read_file+0x130/0x130 [ 84.187311][ T7633] ? __pfx_video_usercopy+0x10/0x10 [ 84.187333][ T7633] v4l2_ioctl+0x1bd/0x250 [ 84.187346][ T7633] ? __pfx_v4l2_ioctl+0x10/0x10 [ 84.187360][ T7633] __x64_sys_ioctl+0x18b/0x210 [ 84.187378][ T7633] do_syscall_64+0xcd/0x4c0 [ 84.187396][ T7633] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 84.187407][ T7633] RIP: 0033:0x7f22cdf8e929 [ 84.187417][ T7633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 84.187427][ T7633] RSP: 002b:00007f22ceeb4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 84.187438][ T7633] RAX: ffffffffffffffda RBX: 00007f22ce1b5fa0 RCX: 00007f22cdf8e929 [ 84.187445][ T7633] RDX: 00002000000000c0 RSI: 00000000c040565f RDI: 0000000000000003 [ 84.187451][ T7633] RBP: 00007f22ceeb4090 R08: 0000000000000000 R09: 0000000000000000 [ 84.187458][ T7633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 84.187464][ T7633] R13: 0000000000000000 R14: 00007f22ce1b5fa0 R15: 00007fffeee99318 [ 84.187477][ T7633] [ 84.366171][ T40] audit: type=1400 audit(1750423820.374:411): avc: denied { connect } for pid=7634 comm="syz.0.631" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 84.471907][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 84.501585][ T40] audit: type=1400 audit(1750423820.504:412): avc: denied { unmount } for pid=5942 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 84.557050][ T7653] overlayfs: failed to resolve './file1': -2 [ 84.731356][ T7663] Cannot find add_set index 0 as target [ 84.768685][ T7665] netlink: 104 bytes leftover after parsing attributes in process `syz.1.643'. [ 84.820288][ T7669] netlink: 'syz.1.645': attribute type 11 has an invalid length. [ 84.823581][ T7669] netlink: 'syz.1.645': attribute type 11 has an invalid length. [ 84.826071][ T7669] netlink: 224 bytes leftover after parsing attributes in process `syz.1.645'. [ 84.934033][ T7680] netlink: 40 bytes leftover after parsing attributes in process `syz.0.646'. [ 84.942797][ T40] audit: type=1400 audit(1750423820.954:413): avc: denied { setopt } for pid=7674 comm="syz.1.648" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 84.943922][ T837] usb 8-1: USB disconnect, device number 5 [ 85.016703][ T7696] netlink: 104 bytes leftover after parsing attributes in process `syz.1.654'. [ 85.064610][ T7700] FAULT_INJECTION: forcing a failure. [ 85.064610][ T7700] name failslab, interval 1, probability 0, space 0, times 0 [ 85.069014][ T7700] CPU: 3 UID: 0 PID: 7700 Comm: syz.1.655 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 85.069029][ T7700] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 85.069036][ T7700] Call Trace: [ 85.069041][ T7700] [ 85.069045][ T7700] dump_stack_lvl+0x16c/0x1f0 [ 85.069064][ T7700] should_fail_ex+0x512/0x640 [ 85.069079][ T7700] ? fs_reclaim_acquire+0xae/0x150 [ 85.069091][ T7700] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 85.069107][ T7700] should_failslab+0xc2/0x120 [ 85.069129][ T7700] __kmalloc_noprof+0xd2/0x510 [ 85.069148][ T7700] tomoyo_realpath_from_path+0xc2/0x6e0 [ 85.069165][ T7700] ? tomoyo_profile+0x47/0x60 [ 85.069183][ T7700] tomoyo_path_number_perm+0x245/0x580 [ 85.069196][ T7700] ? tomoyo_path_number_perm+0x237/0x580 [ 85.069210][ T7700] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 85.069223][ T7700] ? find_held_lock+0x2b/0x80 [ 85.069249][ T7700] ? find_held_lock+0x2b/0x80 [ 85.069261][ T7700] ? hook_file_ioctl_common+0x145/0x410 [ 85.069275][ T7700] ? __fget_files+0x20e/0x3c0 [ 85.069292][ T7700] security_file_ioctl+0x9b/0x240 [ 85.069308][ T7700] __x64_sys_ioctl+0xb7/0x210 [ 85.069321][ T7700] do_syscall_64+0xcd/0x4c0 [ 85.069350][ T7700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.069363][ T7700] RIP: 0033:0x7f22cdf8e929 [ 85.069372][ T7700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 85.069383][ T7700] RSP: 002b:00007f22ceeb4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 85.069393][ T7700] RAX: ffffffffffffffda RBX: 00007f22ce1b5fa0 RCX: 00007f22cdf8e929 [ 85.069400][ T7700] RDX: 0000200000002600 RSI: 000000008108551b RDI: 0000000000000007 [ 85.069406][ T7700] RBP: 00007f22ceeb4090 R08: 0000000000000000 R09: 0000000000000000 [ 85.069412][ T7700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 85.069418][ T7700] R13: 0000000000000000 R14: 00007f22ce1b5fa0 R15: 00007fffeee99318 [ 85.069432][ T7700] [ 85.069463][ T7700] ERROR: Out of memory at tomoyo_realpath_from_path. [ 85.240901][ T7714] FAULT_INJECTION: forcing a failure. [ 85.240901][ T7714] name failslab, interval 1, probability 0, space 0, times 0 [ 85.244985][ T7714] CPU: 2 UID: 0 PID: 7714 Comm: syz.3.659 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 85.245000][ T7714] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 85.245007][ T7714] Call Trace: [ 85.245011][ T7714] [ 85.245015][ T7714] dump_stack_lvl+0x16c/0x1f0 [ 85.245034][ T7714] should_fail_ex+0x512/0x640 [ 85.245049][ T7714] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 85.245065][ T7714] should_failslab+0xc2/0x120 [ 85.245081][ T7714] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 85.245102][ T7714] ? __d_alloc+0x31/0xaa0 [ 85.245121][ T7714] __d_alloc+0x31/0xaa0 [ 85.245139][ T7714] d_alloc+0x4a/0x1e0 [ 85.245155][ T7714] d_alloc_parallel+0xe3/0x12e0 [ 85.245168][ T7714] ? __kernel_text_address+0xd/0x40 [ 85.245182][ T7714] ? arch_stack_walk+0xa6/0x100 [ 85.245196][ T7714] ? __pfx_d_alloc_parallel+0x10/0x10 [ 85.245209][ T7714] ? lockdep_init_map_type+0x5c/0x280 [ 85.245227][ T7714] ? lockdep_init_map_type+0x5c/0x280 [ 85.245247][ T7714] __lookup_slow+0x193/0x460 [ 85.245259][ T7714] ? __pfx___lookup_slow+0x10/0x10 [ 85.245272][ T7714] ? zoneinfo_show+0xa00/0xb60 [ 85.245287][ T7714] ? zoneinfo_show+0xa00/0xb60 [ 85.245298][ T7714] ? d_lookup+0xe7/0x190 [ 85.245312][ T7714] lookup_noperm+0xe1/0x110 [ 85.245323][ T7714] start_creating.part.0+0x15a/0x3e0 [ 85.245341][ T7714] __debugfs_create_file+0xa7/0x6b0 [ 85.245358][ T7714] debugfs_create_file_full+0x41/0x60 [ 85.245374][ T7714] kvm_dev_ioctl+0x14ff/0x1ad0 [ 85.245396][ T7714] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 85.245415][ T7714] ? selinux_file_ioctl+0x180/0x270 [ 85.245430][ T7714] ? selinux_file_ioctl+0xb4/0x270 [ 85.245445][ T7714] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 85.245463][ T7714] __x64_sys_ioctl+0x18b/0x210 [ 85.245476][ T7714] do_syscall_64+0xcd/0x4c0 [ 85.245493][ T7714] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.245504][ T7714] RIP: 0033:0x7f528d38e929 [ 85.245514][ T7714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 85.245524][ T7714] RSP: 002b:00007f528e210038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 85.245534][ T7714] RAX: ffffffffffffffda RBX: 00007f528d5b5fa0 RCX: 00007f528d38e929 [ 85.245542][ T7714] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 85.245548][ T7714] RBP: 00007f528e210090 R08: 0000000000000000 R09: 0000000000000000 [ 85.245554][ T7714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 85.245560][ T7714] R13: 0000000000000000 R14: 00007f528d5b5fa0 R15: 00007ffdfc05a438 [ 85.245573][ T7714] [ 85.420160][ T7721] netlink: 596 bytes leftover after parsing attributes in process `syz.1.662'. [ 85.460630][ T7728] netlink: 104 bytes leftover after parsing attributes in process `syz.3.664'. [ 85.493996][ T40] audit: type=1400 audit(1750423821.504:414): avc: denied { create } for pid=7729 comm="syz.3.665" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1 [ 85.773072][ T7748] FAULT_INJECTION: forcing a failure. [ 85.773072][ T7748] name failslab, interval 1, probability 0, space 0, times 0 [ 85.777047][ T7748] CPU: 3 UID: 0 PID: 7748 Comm: syz.0.670 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 85.777068][ T7748] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 85.777075][ T7748] Call Trace: [ 85.777080][ T7748] [ 85.777084][ T7748] dump_stack_lvl+0x16c/0x1f0 [ 85.777104][ T7748] should_fail_ex+0x512/0x640 [ 85.777119][ T7748] ? fs_reclaim_acquire+0xae/0x150 [ 85.777132][ T7748] ? tomoyo_encode2+0x100/0x3e0 [ 85.777147][ T7748] should_failslab+0xc2/0x120 [ 85.777163][ T7748] __kmalloc_noprof+0xd2/0x510 [ 85.777177][ T7748] ? d_absolute_path+0x136/0x1a0 [ 85.777191][ T7748] tomoyo_encode2+0x100/0x3e0 [ 85.777214][ T7748] tomoyo_encode+0x29/0x50 [ 85.777233][ T7748] tomoyo_realpath_from_path+0x18f/0x6e0 [ 85.777257][ T7748] tomoyo_path_number_perm+0x245/0x580 [ 85.777270][ T7748] ? tomoyo_path_number_perm+0x237/0x580 [ 85.777284][ T7748] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 85.777298][ T7748] ? find_held_lock+0x2b/0x80 [ 85.777326][ T7748] ? find_held_lock+0x2b/0x80 [ 85.777339][ T7748] ? hook_file_ioctl_common+0x145/0x410 [ 85.777353][ T7748] ? __fget_files+0x20e/0x3c0 [ 85.777370][ T7748] security_file_ioctl+0x9b/0x240 [ 85.777386][ T7748] __x64_sys_ioctl+0xb7/0x210 [ 85.777400][ T7748] do_syscall_64+0xcd/0x4c0 [ 85.777418][ T7748] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.777429][ T7748] RIP: 0033:0x7f2a4578e929 [ 85.777439][ T7748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 85.777449][ T7748] RSP: 002b:00007f2a4650e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 85.777461][ T7748] RAX: ffffffffffffffda RBX: 00007f2a459b5fa0 RCX: 00007f2a4578e929 [ 85.777471][ T7748] RDX: 0000200000002600 RSI: 000000008108551b RDI: 0000000000000007 [ 85.777480][ T7748] RBP: 00007f2a4650e090 R08: 0000000000000000 R09: 0000000000000000 [ 85.777489][ T7748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 85.777499][ T7748] R13: 0000000000000000 R14: 00007f2a459b5fa0 R15: 00007fff71c5e7c8 [ 85.777514][ T7748] [ 85.777527][ T7748] ERROR: Out of memory at tomoyo_realpath_from_path. [ 85.803418][ T7702] syz.2.656 (7702): drop_caches: 2 [ 85.811247][ T7732] loop6: detected capacity change from 0 to 63 [ 85.877634][ T7732] buffer_io_error: 6 callbacks suppressed [ 85.877646][ T7732] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 85.891794][ T7732] Buffer I/O error on dev loop6, logical block 1, lost async page write [ 85.894492][ T7732] Buffer I/O error on dev loop6, logical block 2, lost async page write [ 85.897036][ T7732] Buffer I/O error on dev loop6, logical block 3, lost async page write [ 85.899695][ T7732] Buffer I/O error on dev loop6, logical block 4, lost async page write [ 85.915281][ T7732] Buffer I/O error on dev loop6, logical block 5, lost async page write [ 85.917991][ T7732] Buffer I/O error on dev loop6, logical block 6, lost async page write [ 85.952943][ T7755] FAULT_INJECTION: forcing a failure. [ 85.952943][ T7755] name failslab, interval 1, probability 0, space 0, times 0 [ 85.956961][ T7755] CPU: 0 UID: 0 PID: 7755 Comm: syz.2.674 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 85.956977][ T7755] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 85.956984][ T7755] Call Trace: [ 85.956989][ T7755] [ 85.956994][ T7755] dump_stack_lvl+0x16c/0x1f0 [ 85.957014][ T7755] should_fail_ex+0x512/0x640 [ 85.957029][ T7755] ? fs_reclaim_acquire+0xae/0x150 [ 85.957041][ T7755] should_failslab+0xc2/0x120 [ 85.957057][ T7755] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 85.957076][ T7755] ? security_inode_alloc+0x3b/0x2b0 [ 85.957092][ T7755] security_inode_alloc+0x3b/0x2b0 [ 85.957106][ T7755] inode_init_always_gfp+0xce4/0x1030 [ 85.957124][ T7755] alloc_inode+0x86/0x240 [ 85.957135][ T7755] new_inode+0x22/0x1c0 [ 85.957147][ T7755] __debugfs_create_file+0x11c/0x6b0 [ 85.957164][ T7755] debugfs_create_file_full+0x41/0x60 [ 85.957181][ T7755] kvm_dev_ioctl+0x14ff/0x1ad0 [ 85.957204][ T7755] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 85.957223][ T7755] ? selinux_file_ioctl+0x180/0x270 [ 85.957238][ T7755] ? selinux_file_ioctl+0xb4/0x270 [ 85.957254][ T7755] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 85.957271][ T7755] __x64_sys_ioctl+0x18b/0x210 [ 85.957285][ T7755] do_syscall_64+0xcd/0x4c0 [ 85.957302][ T7755] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.957314][ T7755] RIP: 0033:0x7f644c18e929 [ 85.957324][ T7755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 85.957334][ T7755] RSP: 002b:00007f644d0db038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 85.957345][ T7755] RAX: ffffffffffffffda RBX: 00007f644c3b5fa0 RCX: 00007f644c18e929 [ 85.957352][ T7755] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 85.957358][ T7755] RBP: 00007f644d0db090 R08: 0000000000000000 R09: 0000000000000000 [ 85.957364][ T7755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 85.957370][ T7755] R13: 0000000000000000 R14: 00007f644c3b5fa0 R15: 00007ffeb97219e8 [ 85.957384][ T7755] [ 85.957400][ T7755] debugfs: out of free dentries, can not create file 'pages_1g' [ 85.992374][ T7760] overlayfs: failed to resolve './file1': -2 [ 86.127161][ T40] audit: type=1400 audit(1750423822.134:415): avc: denied { view } for pid=7765 comm="syz.0.678" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 86.396015][ T7801] FAULT_INJECTION: forcing a failure. [ 86.396015][ T7801] name failslab, interval 1, probability 0, space 0, times 0 [ 86.400048][ T7801] CPU: 1 UID: 0 PID: 7801 Comm: syz.1.691 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 86.400065][ T7801] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 86.400072][ T7801] Call Trace: [ 86.400081][ T7801] [ 86.400086][ T7801] dump_stack_lvl+0x16c/0x1f0 [ 86.400118][ T7801] should_fail_ex+0x512/0x640 [ 86.400140][ T7801] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 86.400155][ T7801] should_failslab+0xc2/0x120 [ 86.400175][ T7801] __kmalloc_cache_noprof+0x6a/0x3e0 [ 86.400188][ T7801] ? kvm_dev_ioctl+0x1396/0x1ad0 [ 86.400207][ T7801] kvm_dev_ioctl+0x1396/0x1ad0 [ 86.400228][ T7801] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 86.400247][ T7801] ? selinux_file_ioctl+0x180/0x270 [ 86.400262][ T7801] ? selinux_file_ioctl+0xb4/0x270 [ 86.400277][ T7801] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 86.400295][ T7801] __x64_sys_ioctl+0x18b/0x210 [ 86.400308][ T7801] do_syscall_64+0xcd/0x4c0 [ 86.400326][ T7801] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.400337][ T7801] RIP: 0033:0x7f22cdf8e929 [ 86.400347][ T7801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 86.400358][ T7801] RSP: 002b:00007f22ceeb4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 86.400368][ T7801] RAX: ffffffffffffffda RBX: 00007f22ce1b5fa0 RCX: 00007f22cdf8e929 [ 86.400375][ T7801] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 86.400393][ T7801] RBP: 00007f22ceeb4090 R08: 0000000000000000 R09: 0000000000000000 [ 86.400400][ T7801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 86.400406][ T7801] R13: 0000000000000000 R14: 00007f22ce1b5fa0 R15: 00007fffeee99318 [ 86.400420][ T7801] [ 86.457746][ C1] vkms_vblank_simulate: vblank timer overrun [ 86.539855][ T7803] kvm: pic: non byte write [ 86.545204][ T54] cfg80211: failed to load regulatory.db [ 86.728624][ T40] audit: type=1400 audit(1750423822.734:416): avc: denied { create } for pid=7812 comm="syz.2.696" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 86.729996][ T7813] netlink: 'syz.2.696': attribute type 6 has an invalid length. [ 86.735079][ T40] audit: type=1400 audit(1750423822.734:417): avc: denied { accept } for pid=7812 comm="syz.2.696" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 86.751310][ T40] audit: type=1400 audit(1750423822.754:418): avc: denied { getopt } for pid=7812 comm="syz.2.696" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 86.806123][ T7817] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 86.974551][ T7829] netlink: 'syz.3.701': attribute type 10 has an invalid length. [ 86.988532][ T7829] 8021q: adding VLAN 0 to HW filter on device team0 [ 86.996162][ T7829] bond0: (slave team0): Enslaving as an active interface with an up link [ 87.313439][ T7855] 9pnet_virtio: no channels available for device ./file0 [ 87.317759][ T7850] __nla_validate_parse: 5 callbacks suppressed [ 87.317770][ T7850] netlink: 40 bytes leftover after parsing attributes in process `syz.3.709'. [ 87.445425][ T7861] Cannot find add_set index 0 as target [ 87.481385][ T7869] netlink: 20 bytes leftover after parsing attributes in process `syz.1.713'. [ 87.494201][ T7874] netlink: 32 bytes leftover after parsing attributes in process `syz.0.717'. [ 87.504131][ T7871] netlink: 8 bytes leftover after parsing attributes in process `syz.2.716'. [ 87.546922][ T7882] FAULT_INJECTION: forcing a failure. [ 87.546922][ T7882] name failslab, interval 1, probability 0, space 0, times 0 [ 87.552846][ T7882] CPU: 0 UID: 0 PID: 7882 Comm: syz.2.720 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 87.552869][ T7882] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 87.552880][ T7882] Call Trace: [ 87.552885][ T7882] [ 87.552893][ T7882] dump_stack_lvl+0x16c/0x1f0 [ 87.552944][ T7882] should_fail_ex+0x512/0x640 [ 87.552972][ T7882] ? fs_reclaim_acquire+0xae/0x150 [ 87.552991][ T7882] should_failslab+0xc2/0x120 [ 87.553016][ T7882] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 87.553039][ T7882] ? security_inode_alloc+0x3b/0x2b0 [ 87.553065][ T7882] security_inode_alloc+0x3b/0x2b0 [ 87.553087][ T7882] inode_init_always_gfp+0xce4/0x1030 [ 87.553114][ T7882] alloc_inode+0x86/0x240 [ 87.553131][ T7882] new_inode+0x22/0x1c0 [ 87.553151][ T7882] __debugfs_create_file+0x11c/0x6b0 [ 87.553177][ T7882] debugfs_create_file_full+0x41/0x60 [ 87.553202][ T7882] kvm_dev_ioctl+0x14ff/0x1ad0 [ 87.553237][ T7882] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 87.553266][ T7882] ? selinux_file_ioctl+0x180/0x270 [ 87.553290][ T7882] ? selinux_file_ioctl+0xb4/0x270 [ 87.553314][ T7882] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 87.553341][ T7882] __x64_sys_ioctl+0x18b/0x210 [ 87.553361][ T7882] do_syscall_64+0xcd/0x4c0 [ 87.553393][ T7882] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 87.553411][ T7882] RIP: 0033:0x7f644c18e929 [ 87.553425][ T7882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 87.553442][ T7882] RSP: 002b:00007f644d0db038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 87.553457][ T7882] RAX: ffffffffffffffda RBX: 00007f644c3b5fa0 RCX: 00007f644c18e929 [ 87.553470][ T7882] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 87.553479][ T7882] RBP: 00007f644d0db090 R08: 0000000000000000 R09: 0000000000000000 [ 87.553488][ T7882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 87.553499][ T7882] R13: 0000000000000000 R14: 00007f644c3b5fa0 R15: 00007ffeb97219e8 [ 87.553521][ T7882] [ 87.553543][ T7882] debugfs: out of free dentries, can not create file 'nx_lpage_splits' [ 87.639391][ T7888] netlink: 40 bytes leftover after parsing attributes in process `syz.1.722'. [ 87.765113][ T7890] cdrom: dropping to single frame dma [ 87.788364][ T7897] netlink: 14 bytes leftover after parsing attributes in process `syz.2.726'. [ 87.797424][ T7899] cgroup: Need name or subsystem set [ 87.806305][ T7899] netlink: 12 bytes leftover after parsing attributes in process `syz.1.727'. [ 87.831250][ T7901] netlink: 88 bytes leftover after parsing attributes in process `syz.0.728'. [ 87.842072][ T7903] netlink: 20 bytes leftover after parsing attributes in process `syz.2.729'. [ 87.883723][ T7910] netlink: 40 bytes leftover after parsing attributes in process `syz.3.732'. [ 87.936167][ T7915] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0 [ 87.951924][ T7917] FAULT_INJECTION: forcing a failure. [ 87.951924][ T7917] name failslab, interval 1, probability 0, space 0, times 0 [ 87.956763][ T7917] CPU: 0 UID: 0 PID: 7917 Comm: syz.3.735 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 87.956786][ T7917] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 87.956797][ T7917] Call Trace: [ 87.956804][ T7917] [ 87.956811][ T7917] dump_stack_lvl+0x16c/0x1f0 [ 87.956842][ T7917] should_fail_ex+0x512/0x640 [ 87.956865][ T7917] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 87.956888][ T7917] should_failslab+0xc2/0x120 [ 87.956914][ T7917] __kmalloc_cache_noprof+0x6a/0x3e0 [ 87.956934][ T7917] ? kvm_dev_ioctl+0x1396/0x1ad0 [ 87.956962][ T7917] kvm_dev_ioctl+0x1396/0x1ad0 [ 87.956992][ T7917] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 87.957022][ T7917] ? selinux_file_ioctl+0x180/0x270 [ 87.957045][ T7917] ? selinux_file_ioctl+0xb4/0x270 [ 87.957068][ T7917] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 87.957104][ T7917] __x64_sys_ioctl+0x18b/0x210 [ 87.957126][ T7917] do_syscall_64+0xcd/0x4c0 [ 87.957154][ T7917] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 87.957172][ T7917] RIP: 0033:0x7f528d38e929 [ 87.957187][ T7917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 87.957203][ T7917] RSP: 002b:00007f528e210038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 87.957221][ T7917] RAX: ffffffffffffffda RBX: 00007f528d5b5fa0 RCX: 00007f528d38e929 [ 87.957233][ T7917] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 87.957243][ T7917] RBP: 00007f528e210090 R08: 0000000000000000 R09: 0000000000000000 [ 87.957253][ T7917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 87.957263][ T7917] R13: 0000000000000000 R14: 00007f528d5b5fa0 R15: 00007ffdfc05a438 [ 87.957286][ T7917] [ 88.346826][ T7945] kvm: pic: non byte write [ 88.432925][ T7956] hfs: unable to load iocharset "io#harset" [ 88.438141][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x2 [ 88.440662][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.443268][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.445755][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.448478][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.451078][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.454629][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.457578][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.460718][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.465130][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.467682][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.470216][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.475496][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.478279][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.480621][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.483379][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.485922][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.488306][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.491069][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.496428][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.499667][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.504101][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.507288][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.510422][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.514122][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.517326][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.520175][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.523013][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.525448][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.527856][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.530295][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.533685][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.536789][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.539812][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.542944][ T9] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 88.547713][ T9] hid-generic 0000:007F:FFFFFFFE.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 88.929832][ T7984] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=7984 comm=syz.1.761 [ 88.952599][ T7986] Cannot find add_set index 0 as target [ 89.079399][ T40] kauditd_printk_skb: 4 callbacks suppressed [ 89.079416][ T40] audit: type=1400 audit(1750423825.084:423): avc: denied { setattr } for pid=5943 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 89.118721][ T8008] Invalid ELF header type: 0 != 1 [ 89.123647][ T8010] Invalid ELF header type: 0 != 1 [ 89.295810][ T8018] Cannot find del_set index 128 as target [ 89.319517][ T8020] overlay: ./file0 is not a directory [ 89.322549][ T8020] bridge_slave_1: left allmulticast mode [ 89.324928][ T8020] bridge_slave_1: left promiscuous mode [ 89.328348][ T8020] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.329647][ T40] audit: type=1400 audit(1750423825.334:424): avc: denied { kexec_image_load } for pid=8021 comm="syz.3.776" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1 [ 89.344987][ T8020] bridge_slave_0: left allmulticast mode [ 89.347637][ T8020] bridge_slave_0: left promiscuous mode [ 89.350282][ T8020] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.624480][ T8048] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null. [ 89.628936][ T8048] overlayfs: overlapping lowerdir path [ 89.881876][ T6004] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 90.044521][ T6004] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 90.049003][ T6004] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 90.055100][ T6004] usb 5-1: New USB device found, idVendor=056a, idProduct=0063, bcdDevice= 0.00 [ 90.058841][ T6004] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 90.064635][ T6004] usb 5-1: config 0 descriptor?? [ 90.283418][ T6004] usbhid 5-1:0.0: can't add hid device: -71 [ 90.286088][ T6004] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 90.293617][ T8086] Cannot find add_set index 0 as target [ 90.293719][ T6004] usb 5-1: USB disconnect, device number 3 [ 90.904409][ T40] audit: type=1400 audit(1750423826.914:425): avc: denied { watch watch_with_perm } for pid=8115 comm="syz.0.806" path="/174/bus" dev="tmpfs" ino=912 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 91.110185][ T40] audit: type=1400 audit(1750423827.114:426): avc: denied { getopt } for pid=8123 comm="syz.0.810" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 91.249628][ T8127] overlayfs: failed to resolve './file0': -2 [ 91.347606][ T8131] syzkaller1: entered promiscuous mode [ 91.349646][ T8131] syzkaller1: entered allmulticast mode [ 91.526620][ T40] audit: type=1400 audit(1750423827.534:427): avc: denied { getopt } for pid=8149 comm="syz.0.819" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 91.564765][ T8155] overlayfs: failed to resolve './file0': -2 [ 91.565318][ T8153] syz.3.820(8153): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 91.676445][ T8163] netlink: 'syz.3.824': attribute type 30 has an invalid length. [ 91.715859][ T40] audit: type=1400 audit(1750423827.724:428): avc: denied { ioctl } for pid=8166 comm="syz.3.825" path="socket:[24245]" dev="sockfs" ino=24245 ioctlcmd=0x890d scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 92.002257][ T40] audit: type=1400 audit(1750423828.014:429): avc: denied { accept } for pid=8172 comm="syz.3.827" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 92.099700][ T40] audit: type=1400 audit(1750423828.104:430): avc: denied { write } for pid=8178 comm="syz.3.830" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 92.371842][ T8088] Bluetooth: hci3: Opcode 0x0401 failed: -110 [ 92.373947][ T5946] Bluetooth: hci3: command 0x0419 tx timeout [ 92.438954][ T40] audit: type=1400 audit(1750423828.444:431): avc: denied { mount } for pid=8187 comm="syz.3.833" name="/" dev="nfsd" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfsd_fs_t tclass=filesystem permissive=1 [ 92.745079][ T40] audit: type=1400 audit(1750423828.754:432): avc: denied { unmount } for pid=5950 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfsd_fs_t tclass=filesystem permissive=1 [ 92.912953][ T8201] __nla_validate_parse: 17 callbacks suppressed [ 92.912970][ T8201] netlink: 16 bytes leftover after parsing attributes in process `syz.1.837'. [ 93.172773][ T8213] netlink: 16 bytes leftover after parsing attributes in process `syz.1.843'. [ 93.517525][ T8230] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9) [ 93.520081][ T8230] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 93.526268][ T8230] vhci_hcd vhci_hcd.0: Device attached [ 93.578290][ T8231] vhci_hcd: connection closed [ 93.579957][ T12] vhci_hcd: stop threads [ 93.585428][ T12] vhci_hcd: release socket [ 93.587473][ T12] vhci_hcd: disconnect device [ 94.315858][ T8243] sctp: [Deprecated]: syz.3.853 (pid 8243) Use of int in max_burst socket option deprecated. [ 94.315858][ T8243] Use struct sctp_assoc_value instead [ 94.355937][ T8245] netlink: 24 bytes leftover after parsing attributes in process `syz.3.854'. [ 94.591908][ T6004] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 94.753147][ T6004] usb 8-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 94.758019][ T6004] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 94.760973][ T6004] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 94.763937][ T6004] usb 8-1: SerialNumber: syz [ 94.969032][ T8245] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=23 sclass=netlink_route_socket pid=8245 comm=syz.3.854 [ 94.975147][ T8245] netlink: 8 bytes leftover after parsing attributes in process `syz.3.854'. [ 94.977946][ T8245] netlink: 20 bytes leftover after parsing attributes in process `syz.3.854'. [ 94.985412][ T8245] geneve2: entered promiscuous mode [ 94.987373][ T8245] geneve2: entered allmulticast mode [ 94.993962][ T6004] cdc_ether 8-1:1.0: probe with driver cdc_ether failed with error -71 [ 94.999263][ T6004] usb 8-1: USB disconnect, device number 6 [ 95.252127][ T8217] Bluetooth: hci3: Opcode 0x0401 failed: -110 [ 95.261815][ T5946] Bluetooth: hci3: command 0x0419 tx timeout [ 95.630324][ T8251] syzkaller1: entered promiscuous mode [ 95.632594][ T8251] syzkaller1: entered allmulticast mode [ 95.861478][ T8259] netlink: 12 bytes leftover after parsing attributes in process `syz.1.860'. [ 95.941821][ T8266] netlink: 4 bytes leftover after parsing attributes in process `syz.3.863'. [ 96.251827][ T9] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 96.414159][ T9] usb 8-1: Using ep0 maxpacket: 32 [ 96.419168][ T9] usb 8-1: config index 0 descriptor too short (expected 156, got 27) [ 96.422940][ T9] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 96.426520][ T9] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 96.430291][ T9] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 96.435035][ T9] usb 8-1: config 0 interface 0 has no altsetting 0 [ 96.439238][ T9] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 96.446105][ T9] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 96.449262][ T9] usb 8-1: Product: syz [ 96.450595][ T9] usb 8-1: Manufacturer: syz [ 96.452392][ T9] usb 8-1: SerialNumber: syz [ 96.455269][ T9] usb 8-1: config 0 descriptor?? [ 96.463109][ T9] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 96.468609][ T9] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 96.508545][ T8279] netlink: 8 bytes leftover after parsing attributes in process `syz.1.868'. [ 96.513347][ T8279] netlink: 8 bytes leftover after parsing attributes in process `syz.1.868'. [ 96.516168][ T8279] netlink: 8 bytes leftover after parsing attributes in process `syz.1.868'. [ 97.531177][ T8290] netlink: 'syz.1.871': attribute type 2 has an invalid length. [ 98.877749][ T40] kauditd_printk_skb: 2 callbacks suppressed [ 98.877835][ T40] audit: type=1400 audit(1750423834.884:435): avc: denied { mounton } for pid=8306 comm="syz.1.877" path="mnt:[4026533161]" dev="nsfs" ino=4026533161 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 98.963230][ T6004] usb 8-1: USB disconnect, device number 7 [ 98.967900][ T6004] ldusb 8-1:0.0: LD USB Device #0 now disconnected [ 99.193844][ T40] audit: type=1400 audit(1750423835.204:436): avc: denied { connect } for pid=8311 comm="syz.3.879" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 99.275012][ T40] audit: type=1400 audit(1750423835.284:437): avc: denied { create } for pid=8317 comm="syz.1.880" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 99.280804][ T40] audit: type=1400 audit(1750423835.284:438): avc: denied { accept } for pid=8317 comm="syz.1.880" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 99.672812][ T8337] trusted_key: syz.3.885 sent an empty control message without MSG_MORE. [ 99.709603][ T8339] SELinux: unknown common r [ 99.711241][ T8339] SELinux: failed to load policy [ 100.250124][ T40] audit: type=1400 audit(1750423836.254:439): avc: denied { read } for pid=8344 comm="syz.3.888" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 100.791769][ T6032] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 100.944486][ T6032] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 100.948440][ T6032] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 100.962219][ T6032] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 100.966242][ T6032] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 100.969006][ T6032] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 100.983587][ T6032] usb 6-1: config 0 descriptor?? [ 101.116942][ T8351] block nbd3: NBD_DISCONNECT [ 101.211093][ T8356] Bluetooth: MGMT ver 1.23 [ 101.246032][ T8356] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 101.392435][ T6032] usbhid 6-1:0.0: can't add hid device: -71 [ 101.394843][ T6032] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 101.398812][ T6032] usb 6-1: USB disconnect, device number 2 [ 101.543670][ T29] usb 8-1: new high-speed USB device number 8 using dummy_hcd [ 101.732272][ T29] usb 8-1: Using ep0 maxpacket: 8 [ 101.736169][ T29] usb 8-1: config index 0 descriptor too short (expected 5924, got 36) [ 101.739166][ T29] usb 8-1: config 250 has an invalid interface number: 228 but max is -1 [ 101.742243][ T29] usb 8-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 101.745430][ T29] usb 8-1: config 250 has no interface number 0 [ 101.747922][ T29] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 101.751818][ T29] usb 8-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 101.755039][ T29] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0 [ 101.758283][ T29] usb 8-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 101.762611][ T29] usb 8-1: config 250 interface 228 has no altsetting 0 [ 101.765910][ T29] usb 8-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 101.768720][ T29] usb 8-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 101.771260][ T29] usb 8-1: Product: syz [ 101.774133][ T29] usb 8-1: SerialNumber: syz [ 101.778320][ T29] hub 8-1:250.228: bad descriptor, ignoring hub [ 101.780322][ T29] hub 8-1:250.228: probe with driver hub failed with error -5 [ 102.022595][ T8368] netlink: 'syz.1.896': attribute type 4 has an invalid length. [ 102.091876][ T9] usb 8-1: USB disconnect, device number 8 [ 102.174436][ T8372] program syz.1.898 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 102.437956][ T8382] netlink: 'syz.1.901': attribute type 10 has an invalid length. [ 102.441317][ T8382] __nla_validate_parse: 2 callbacks suppressed [ 102.441331][ T8382] netlink: 40 bytes leftover after parsing attributes in process `syz.1.901'. [ 102.451848][ T9] usb 8-1: new high-speed USB device number 9 using dummy_hcd [ 102.465107][ T8382] team0: Failed to send port change of device geneve0 via netlink (err -105) [ 102.469088][ T8382] team0: Failed to send options change via netlink (err -105) [ 102.474022][ T8382] team0: Port device geneve0 added [ 102.523349][ T40] audit: type=1400 audit(1750423838.534:440): avc: denied { listen } for pid=8383 comm="syz.1.902" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 102.611775][ T9] usb 8-1: Using ep0 maxpacket: 32 [ 102.615037][ T9] usb 8-1: config 0 interface 0 has no altsetting 0 [ 102.618659][ T9] usb 8-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 102.621466][ T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 102.624324][ T9] usb 8-1: Product: syz [ 102.625654][ T9] usb 8-1: Manufacturer: syz [ 102.627129][ T9] usb 8-1: SerialNumber: syz [ 102.629886][ T9] usb 8-1: config 0 descriptor?? [ 102.835094][ T9] gs_usb 8-1:0.0: Required endpoints not found [ 102.838568][ T9] usb 8-1: USB disconnect, device number 9 [ 103.376090][ T8397] netlink: 36 bytes leftover after parsing attributes in process `syz.3.906'. [ 103.941820][ T54] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 104.091876][ T54] usb 6-1: Using ep0 maxpacket: 8 [ 104.095617][ T54] usb 6-1: config index 0 descriptor too short (expected 5924, got 36) [ 104.099057][ T54] usb 6-1: config 250 has an invalid interface number: 228 but max is -1 [ 104.104582][ T54] usb 6-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 104.108343][ T54] usb 6-1: config 250 has no interface number 0 [ 104.111010][ T54] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 104.116981][ T40] audit: type=1400 audit(1750423840.124:441): avc: denied { execute } for pid=8420 comm="syz-executor" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 104.119613][ T54] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 104.125927][ T40] audit: type=1400 audit(1750423840.124:442): avc: denied { execute_no_trans } for pid=8420 comm="syz-executor" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 104.135262][ T54] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0 [ 104.135289][ T54] usb 6-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 104.135312][ T54] usb 6-1: config 250 interface 228 has no altsetting 0 [ 104.140751][ T54] usb 6-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 104.150518][ T54] usb 6-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 104.154152][ T54] usb 6-1: Product: syz [ 104.155937][ T54] usb 6-1: SerialNumber: syz [ 104.165116][ T54] hub 6-1:250.228: bad descriptor, ignoring hub [ 104.167794][ T54] hub 6-1:250.228: probe with driver hub failed with error -5 [ 104.272223][ T63] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 104.278662][ T63] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 104.282557][ T63] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 104.285747][ T63] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 104.288329][ T63] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 104.300198][ T8427] nfs4: Bad value for 'source' [ 104.325660][ T8424] lo speed is unknown, defaulting to 1000 [ 104.451378][ T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.466572][ T8424] chnl_net:caif_netlink_parms(): no params data found [ 104.492371][ T54] usb 6-1: USB disconnect, device number 3 [ 104.561133][ T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.566286][ T8424] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.568670][ T8424] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.571332][ T8424] bridge_slave_0: entered allmulticast mode [ 104.576638][ T8424] bridge_slave_0: entered promiscuous mode [ 104.581950][ T8424] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.584206][ T8424] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.586449][ T8424] bridge_slave_1: entered allmulticast mode [ 104.589210][ T8424] bridge_slave_1: entered promiscuous mode [ 104.622179][ T8424] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 104.626575][ T8424] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 104.670514][ T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.680163][ T8424] team0: Port device team_slave_0 added [ 104.684048][ T8424] team0: Port device team_slave_1 added [ 104.717971][ T8424] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 104.721077][ T8424] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 104.732193][ T8424] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 104.746052][ T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.755211][ T8424] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 104.758235][ T8424] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 104.767023][ T8424] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 104.811764][ T54] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 104.823579][ T8424] hsr_slave_0: entered promiscuous mode [ 104.826260][ T8424] hsr_slave_1: entered promiscuous mode [ 104.828788][ T8424] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 104.831932][ T8424] Cannot create hsr debugfs directory [ 104.961908][ T54] usb 6-1: Using ep0 maxpacket: 32 [ 104.966211][ T54] usb 6-1: config 0 interface 0 has no altsetting 0 [ 104.971404][ T54] usb 6-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 104.975872][ T54] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 104.979331][ T54] usb 6-1: Product: syz [ 104.981101][ T54] usb 6-1: Manufacturer: syz [ 104.984129][ T54] usb 6-1: SerialNumber: syz [ 104.990225][ T54] usb 6-1: config 0 descriptor?? [ 105.168222][ T8424] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 105.172819][ T8424] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 105.179332][ T8424] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 105.183422][ T8424] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 105.198373][ T54] gs_usb 6-1:0.0: Required endpoints not found [ 105.199112][ T12] tipc: Left network mode [ 105.201585][ T54] usb 6-1: USB disconnect, device number 4 [ 105.214927][ T8424] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.217254][ T8424] bridge0: port 2(bridge_slave_1) entered forwarding state [ 105.219651][ T8424] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.222014][ T8424] bridge0: port 1(bridge_slave_0) entered forwarding state [ 105.224565][ T12] IPVS: stopping master sync thread 6026 ... [ 105.273299][ T8424] 8021q: adding VLAN 0 to HW filter on device bond0 [ 105.288788][ T89] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.299482][ T89] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.317103][ T8424] 8021q: adding VLAN 0 to HW filter on device team0 [ 105.330146][ T1184] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.332541][ T1184] bridge0: port 1(bridge_slave_0) entered forwarding state [ 105.354816][ T96] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.357086][ T96] bridge0: port 2(bridge_slave_1) entered forwarding state [ 105.398112][ T12] hsr_slave_0: left promiscuous mode [ 105.400361][ T12] hsr_slave_1: left promiscuous mode [ 105.403957][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 105.406324][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 105.409276][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 105.411619][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 105.429815][ T12] veth1_macvtap: left promiscuous mode [ 105.432737][ T12] veth0_macvtap: left promiscuous mode [ 105.434539][ T12] veth1_vlan: left promiscuous mode [ 105.436203][ T12] veth0_vlan: left promiscuous mode [ 106.374112][ T5946] Bluetooth: hci4: command tx timeout [ 106.506399][ T8424] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.672409][ T8424] veth0_vlan: entered promiscuous mode [ 106.679686][ T8424] veth1_vlan: entered promiscuous mode [ 106.700196][ T8424] veth0_macvtap: entered promiscuous mode [ 106.703317][ T5946] Bluetooth: hci3: command 0x0419 tx timeout [ 106.708666][ T8445] Bluetooth: hci3: Opcode 0x0401 failed: -110 [ 106.713392][ T8424] veth1_macvtap: entered promiscuous mode [ 106.725881][ T8424] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 106.735561][ T8424] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 106.751359][ T8424] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.754569][ T8424] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.757254][ T8424] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.760134][ T8424] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.802553][ T89] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.805582][ T89] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.811557][ T89] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.815253][ T89] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.824958][ T40] audit: type=1400 audit(1750423842.834:443): avc: denied { mounton } for pid=8424 comm="syz-executor" path="/syzkaller.tRWB8d/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 107.663503][ T838] usb 8-1: new high-speed USB device number 10 using dummy_hcd [ 107.811774][ T838] usb 8-1: Using ep0 maxpacket: 8 [ 107.814650][ T838] usb 8-1: config index 0 descriptor too short (expected 5924, got 36) [ 107.817669][ T838] usb 8-1: config 250 has an invalid interface number: 228 but max is -1 [ 107.820406][ T838] usb 8-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 107.823477][ T838] usb 8-1: config 250 has no interface number 0 [ 107.825414][ T838] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 107.828990][ T838] usb 8-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 107.833649][ T838] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0 [ 107.837933][ T838] usb 8-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 107.843505][ T838] usb 8-1: config 250 interface 228 has no altsetting 0 [ 107.848020][ T838] usb 8-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 107.852251][ T838] usb 8-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 107.855682][ T838] usb 8-1: Product: syz [ 107.857440][ T838] usb 8-1: SerialNumber: syz [ 107.862523][ T838] hub 8-1:250.228: bad descriptor, ignoring hub [ 107.864492][ T838] hub 8-1:250.228: probe with driver hub failed with error -5 [ 107.999020][ T8496] netlink: 64 bytes leftover after parsing attributes in process `syz.1.933'. [ 108.171916][ T29] usb 8-1: USB disconnect, device number 10 [ 108.451915][ T5946] Bluetooth: hci4: command tx timeout [ 108.521929][ T29] usb 8-1: new high-speed USB device number 11 using dummy_hcd [ 108.681797][ T29] usb 8-1: Using ep0 maxpacket: 32 [ 108.686152][ T29] usb 8-1: config 0 interface 0 has no altsetting 0 [ 108.689873][ T29] usb 8-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 108.692990][ T29] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 108.695820][ T29] usb 8-1: Product: syz [ 108.697187][ T29] usb 8-1: Manufacturer: syz [ 108.698671][ T29] usb 8-1: SerialNumber: syz [ 108.701409][ T29] usb 8-1: config 0 descriptor?? [ 108.889886][ T8500] netlink: 32 bytes leftover after parsing attributes in process `syz.1.935'. [ 108.895392][ T8500] netlink: 32 bytes leftover after parsing attributes in process `syz.1.935'. [ 108.906314][ T29] gs_usb 8-1:0.0: Required endpoints not found [ 108.909841][ T29] usb 8-1: USB disconnect, device number 11 [ 108.930710][ T8502] netlink: 56 bytes leftover after parsing attributes in process `syz.1.936'. [ 108.992257][ T63] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 109.003903][ T63] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 109.007265][ T63] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 109.011463][ T63] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 109.014794][ T8509] netdevsim netdevsim1: Firmware load for './cgroup/../file0' refused, path contains '..' component [ 109.018026][ T63] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 109.037059][ T8508] lo speed is unknown, defaulting to 1000 [ 109.051218][ T8513] netlink: 20 bytes leftover after parsing attributes in process `syz.1.939'. [ 109.094495][ T8517] netlink: 48 bytes leftover after parsing attributes in process `syz.1.940'. [ 109.115309][ T8508] chnl_net:caif_netlink_parms(): no params data found [ 109.211484][ T8528] team0: Port device team_slave_0 removed [ 109.218081][ T8528] team0: Port device team_slave_1 removed [ 109.221581][ T8528] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 109.228641][ T8528] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 109.231970][ T8528] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 109.234372][ T8528] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 109.253148][ T8528] team0: Port device geneve0 removed [ 109.257569][ T8508] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.260547][ T8508] bridge0: port 1(bridge_slave_0) entered disabled state [ 109.263740][ T8508] bridge_slave_0: entered allmulticast mode [ 109.267599][ T8508] bridge_slave_0: entered promiscuous mode [ 109.275336][ T8508] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.278272][ T8508] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.281211][ T8508] bridge_slave_1: entered allmulticast mode [ 109.286642][ T8508] bridge_slave_1: entered promiscuous mode [ 109.315772][ T8528] team0: Mode changed to "activebackup" [ 109.341340][ T8528] vlan0: entered promiscuous mode [ 109.348623][ T8528] team0: Port device vlan0 added [ 109.356868][ T8508] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 109.364176][ T8508] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 109.370022][ T8528] tipc: Started in network mode [ 109.372127][ T8528] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711 [ 109.374568][ T8528] tipc: Enabled bearer , priority 0 [ 109.412191][ T8528] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8528 comm=syz.1.942 [ 109.414094][ T8508] team0: Port device team_slave_0 added [ 109.423132][ T8508] team0: Port device team_slave_1 added [ 109.446836][ T40] audit: type=1400 audit(1750423845.454:444): avc: denied { mount } for pid=8533 comm="syz.3.943" name="/" dev="hugetlbfs" ino=29805 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 [ 109.456256][ T40] audit: type=1400 audit(1750423845.454:445): avc: denied { remount } for pid=8533 comm="syz.3.943" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 [ 109.463228][ T40] audit: type=1400 audit(1750423845.464:446): avc: denied { unmount } for pid=5950 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 [ 109.466099][ T8508] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 109.472846][ T8508] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 109.481086][ T8508] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 109.486699][ T8508] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 109.489715][ T8508] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 109.499814][ T8508] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 109.579315][ T8508] hsr_slave_0: entered promiscuous mode [ 109.582658][ T8508] hsr_slave_1: entered promiscuous mode [ 109.721418][ T8508] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 109.726863][ T8508] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 109.731040][ T8508] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 109.735425][ T8508] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 109.751528][ T8508] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.753895][ T8508] bridge0: port 2(bridge_slave_1) entered forwarding state [ 109.756242][ T8508] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.758558][ T8508] bridge0: port 1(bridge_slave_0) entered forwarding state [ 109.790895][ T8508] 8021q: adding VLAN 0 to HW filter on device bond0 [ 109.802875][ T96] bridge0: port 1(bridge_slave_0) entered disabled state [ 109.806411][ T96] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.815246][ T8508] 8021q: adding VLAN 0 to HW filter on device team0 [ 109.821566][ T90] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.823962][ T90] bridge0: port 1(bridge_slave_0) entered forwarding state [ 109.834675][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.836939][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 109.931520][ T8562] netlink: 28 bytes leftover after parsing attributes in process `syz.3.951'. [ 109.957115][ T8508] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 110.119190][ T8508] veth0_vlan: entered promiscuous mode [ 110.127310][ T8508] veth1_vlan: entered promiscuous mode [ 110.140409][ T8508] veth0_macvtap: entered promiscuous mode [ 110.145314][ T8508] veth1_macvtap: entered promiscuous mode [ 110.153637][ T8508] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 110.159242][ T8508] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 110.168961][ T8508] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.171791][ T8508] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.174626][ T8508] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.177332][ T8508] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.180912][ T40] audit: type=1400 audit(1750423846.184:447): avc: denied { mount } for pid=8575 comm="syz.3.953" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 110.188026][ T40] audit: type=1400 audit(1750423846.194:448): avc: denied { remount } for pid=8575 comm="syz.3.953" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 110.219403][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.222164][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.237045][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.239617][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.293625][ T40] audit: type=1400 audit(1750423846.304:449): avc: denied { unmount } for pid=5950 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 110.361268][ T5946] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201' [ 110.364611][ T5946] CPU: 0 UID: 0 PID: 5946 Comm: kworker/u33:4 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 110.364628][ T5946] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 110.364636][ T5946] Workqueue: hci3 hci_rx_work [ 110.364665][ T5946] Call Trace: [ 110.364670][ T5946] [ 110.364675][ T5946] dump_stack_lvl+0x16c/0x1f0 [ 110.364695][ T5946] sysfs_warn_dup+0x7f/0xa0 [ 110.364717][ T5946] sysfs_create_dir_ns+0x24b/0x2b0 [ 110.364733][ T5946] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 110.364747][ T5946] ? find_held_lock+0x2b/0x80 [ 110.364765][ T5946] ? do_raw_spin_unlock+0x172/0x230 [ 110.364779][ T5946] kobject_add_internal+0x2c4/0x9b0 [ 110.364794][ T5946] kobject_add+0x16e/0x240 [ 110.364806][ T5946] ? __pfx_kobject_add+0x10/0x10 [ 110.364818][ T5946] ? do_raw_spin_unlock+0x172/0x230 [ 110.364831][ T5946] ? kobject_put+0xab/0x5a0 [ 110.364853][ T5946] device_add+0x288/0x1a70 [ 110.364864][ T5946] ? __pfx_dev_set_name+0x10/0x10 [ 110.364876][ T5946] ? __pfx_device_add+0x10/0x10 [ 110.364887][ T5946] ? mgmt_send_event_skb+0x2fb/0x460 [ 110.364908][ T5946] hci_conn_add_sysfs+0x17e/0x230 [ 110.364920][ T5946] le_conn_complete_evt+0x1075/0x1d70 [ 110.364940][ T5946] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 110.364957][ T5946] ? hci_event_packet+0x459/0x11c0 [ 110.364977][ T5946] hci_le_enh_conn_complete_evt+0x23d/0x380 [ 110.364995][ T5946] ? skb_pull_data+0x166/0x210 [ 110.365012][ T5946] hci_le_meta_evt+0x357/0x5e0 [ 110.365022][ T5946] ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10 [ 110.365041][ T5946] hci_event_packet+0x682/0x11c0 [ 110.365058][ T5946] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 110.365069][ T5946] ? __pfx_hci_event_packet+0x10/0x10 [ 110.365087][ T5946] ? kcov_remote_start+0x3c9/0x6d0 [ 110.365100][ T5946] ? lockdep_hardirqs_on+0x7c/0x110 [ 110.365120][ T5946] hci_rx_work+0x2c5/0x16b0 [ 110.365130][ T5946] ? rcu_is_watching+0x12/0xc0 [ 110.365146][ T5946] process_one_work+0x9cc/0x1b70 [ 110.365169][ T5946] ? __pfx_process_one_work+0x10/0x10 [ 110.365185][ T5946] ? assign_work+0x1a0/0x250 [ 110.365205][ T5946] worker_thread+0x6c8/0xf10 [ 110.365222][ T5946] ? __pfx_worker_thread+0x10/0x10 [ 110.365234][ T5946] kthread+0x3c2/0x780 [ 110.365245][ T5946] ? __pfx_kthread+0x10/0x10 [ 110.365256][ T5946] ? rcu_is_watching+0x12/0xc0 [ 110.365269][ T5946] ? __pfx_kthread+0x10/0x10 [ 110.365281][ T5946] ret_from_fork+0x5d4/0x6f0 [ 110.365298][ T5946] ? __pfx_kthread+0x10/0x10 [ 110.365309][ T5946] ret_from_fork_asm+0x1a/0x30 [ 110.365327][ T5946] [ 110.365341][ T5946] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 110.454110][ T5946] Bluetooth: hci3: failed to register connection device [ 110.521746][ T9] tipc: Node number set to 11578026 [ 110.531853][ T5946] Bluetooth: hci4: command tx timeout [ 110.725074][ T40] audit: type=1400 audit(1750423846.734:450): avc: denied { firmware_load } for pid=8591 comm="syz.5.956" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1 [ 110.787298][ C1] vcan0: j1939_tp_rxtimer: 0xffff888029bbe000: rx timeout, send abort [ 110.790020][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888029bbe000: 0x40000: (3) A timeout occurred and this is the connection abort to close the session. [ 111.002410][ T8606] netlink: 4 bytes leftover after parsing attributes in process `syz.5.961'. [ 111.101804][ T5946] Bluetooth: hci2: command tx timeout [ 111.334114][ T34] libceph: connect (1)[c::]:6789 error -101 [ 111.336053][ T34] libceph: mon0 (1)[c::]:6789 connect error [ 111.367076][ T8635] netlink: 14548 bytes leftover after parsing attributes in process `syz.5.971'. [ 111.432915][ T8638] netlink: 'syz.1.969': attribute type 1 has an invalid length. [ 111.436099][ T8638] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 111.592185][ T34] libceph: connect (1)[c::]:6789 error -101 [ 111.595427][ T34] libceph: mon0 (1)[c::]:6789 connect error [ 111.700813][ T8645] bond0: (slave team0): Releasing backup interface [ 111.707551][ T8645] bridge_slave_0: left allmulticast mode [ 111.710014][ T8645] bridge_slave_0: left promiscuous mode [ 111.710434][ T8647] netlink: 28 bytes leftover after parsing attributes in process `syz.5.975'. [ 111.714933][ T8645] bridge0: port 1(bridge_slave_0) entered disabled state [ 111.721217][ T8645] bridge_slave_1: left allmulticast mode [ 111.724135][ T8645] bridge_slave_1: left promiscuous mode [ 111.726009][ T8645] bridge0: port 2(bridge_slave_1) entered disabled state [ 111.730630][ T8645] bond0: (slave bond_slave_0): Releasing backup interface [ 111.739094][ T8645] bond0: (slave bond_slave_1): Releasing backup interface [ 111.752856][ T8645] team0: Port device team_slave_0 removed [ 111.758750][ T8645] team0: Port device team_slave_1 removed [ 111.762651][ T8645] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 111.765100][ T8645] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 111.770623][ T8645] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 111.773515][ T8645] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 111.799800][ T8645] team0: Mode changed to "activebackup" [ 111.804159][ T8645] vlan0: entered promiscuous mode [ 111.816751][ T8645] team0: Port device vlan0 added [ 111.820327][ T8645] tipc: Started in network mode [ 111.822391][ T8645] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711 [ 111.824746][ T8645] tipc: Enabled bearer , priority 0 [ 111.970668][ T40] audit: type=1400 audit(1750423847.974:451): avc: denied { watch_mount } for pid=8663 comm="syz.3.981" path="/254" dev="tmpfs" ino=1345 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 112.103806][ T34] libceph: connect (1)[c::]:6789 error -101 [ 112.106066][ T34] libceph: mon0 (1)[c::]:6789 connect error [ 112.161099][ T8629] ceph: No mds server is up or the cluster is laggy [ 112.405931][ T40] audit: type=1400 audit(1750423848.414:452): avc: denied { ioctl } for pid=8687 comm="syz.1.990" path="socket:[31802]" dev="sockfs" ino=31802 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 112.417938][ T40] audit: type=1400 audit(1750423848.424:453): avc: denied { write } for pid=8687 comm="syz.1.990" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 112.611926][ T5946] Bluetooth: hci4: command tx timeout [ 112.832592][ T6029] tipc: Node number set to 11578026 [ 112.907782][ T8725] x_tables: duplicate underflow at hook 2 [ 113.021837][ T839] usb 8-1: new high-speed USB device number 12 using dummy_hcd [ 113.027705][ T8736] __nla_validate_parse: 5 callbacks suppressed [ 113.027717][ T8736] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1009'. [ 113.041412][ T8736] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1009'. [ 113.171815][ T5946] Bluetooth: hci2: command tx timeout [ 113.181959][ T839] usb 8-1: Using ep0 maxpacket: 16 [ 113.186609][ T839] usb 8-1: config 1 interface 0 has no altsetting 0 [ 113.191832][ T839] usb 8-1: New USB device found, idVendor=046d, idProduct=c215, bcdDevice= 0.40 [ 113.195248][ T839] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 113.198009][ T839] usb 8-1: Product: 镢੒驜絷餽뱻곾귗騔၀骥㨁츭岽㷐﹫짣獺逍숿燕뗷쮲⠲䦠嵸츄⌱꒳縆Ꮺ졃낃裓崮⠑⵮ೃ䬀ജ轠뵡뿔刺滷䏻ᶧ芆䢌媊䴘ꄱ햷䞄⍨䛵뽇뢩ꋹ僿䋶蘍⁔ꎊ쮔≳ [ 113.208316][ T839] usb 8-1: Manufacturer: ꊐ媘浩ķ餿匧櫥ὣ獽῞䠫ﺵ吼阹屘᩶窣䗷漠䍢﹓粿奞敍핸 [ 113.213808][ T839] usb 8-1: SerialNumber: ⧑鉧뺉儧䱹븸ሿᘲ엁ኼ⸟琀烦䍽蒝渟杷᥄纃鐇炄赑Ȃ픠㐾㥗㩡䖊拴鿧㭯꾫喘䂑㕨㚨딲谁잧ꭏ奙შ橾ⷭ庴갸찪 [ 113.435671][ T839] usbhid 8-1:1.0: can't add hid device: -71 [ 113.437740][ T839] usbhid 8-1:1.0: probe with driver usbhid failed with error -71 [ 113.441295][ T839] usb 8-1: USB disconnect, device number 12 [ 113.541839][ T6029] usb 10-1: new high-speed USB device number 2 using dummy_hcd [ 113.691745][ T6029] usb 10-1: Using ep0 maxpacket: 8 [ 113.695277][ T6029] usb 10-1: config index 0 descriptor too short (expected 5924, got 36) [ 113.698031][ T6029] usb 10-1: config 250 has an invalid interface number: 228 but max is -1 [ 113.700722][ T6029] usb 10-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 113.703857][ T6029] usb 10-1: config 250 has no interface number 0 [ 113.705968][ T6029] usb 10-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 113.709733][ T6029] usb 10-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 113.713185][ T6029] usb 10-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0 [ 113.716493][ T6029] usb 10-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0 [ 113.719875][ T6029] usb 10-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 113.724369][ T6029] usb 10-1: config 250 interface 228 has no altsetting 0 [ 113.728001][ T6029] usb 10-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 113.731043][ T6029] usb 10-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 113.733879][ T6029] usb 10-1: Product: syz [ 113.735275][ T6029] usb 10-1: SerialNumber: syz [ 113.740659][ T6029] hub 10-1:250.228: bad descriptor, ignoring hub [ 113.742977][ T6029] hub 10-1:250.228: probe with driver hub failed with error -5 [ 113.946450][ T6029] usblp 10-1:250.228: usblp0: USB Bidirectional printer dev 2 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 113.974671][ T6029] usb 10-1: USB disconnect, device number 2 [ 113.980278][ T6029] usblp0: removed [ 114.378491][ T8787] ip6tnl1: entered allmulticast mode [ 114.395061][ T34] usb 10-1: new high-speed USB device number 3 using dummy_hcd [ 114.405424][ T8792] ip6tnl1: entered allmulticast mode [ 114.542128][ T34] usb 10-1: Using ep0 maxpacket: 32 [ 114.547021][ T34] usb 10-1: config 0 interface 0 has no altsetting 0 [ 114.553003][ T34] usb 10-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 114.556772][ T34] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 114.560312][ T34] usb 10-1: Product: syz [ 114.562468][ T34] usb 10-1: Manufacturer: syz [ 114.564546][ T34] usb 10-1: SerialNumber: syz [ 114.568685][ T34] usb 10-1: config 0 descriptor?? [ 114.773751][ T34] gs_usb 10-1:0.0: Required endpoints not found [ 114.777169][ T34] usb 10-1: USB disconnect, device number 3 [ 114.930910][ T40] kauditd_printk_skb: 4 callbacks suppressed [ 114.930927][ T40] audit: type=1400 audit(1750423850.934:458): avc: denied { getopt } for pid=8822 comm="syz.3.1036" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 114.932410][ T8823] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1036'. [ 114.943849][ T8823] tipc: Invalid UDP bearer configuration [ 114.943890][ T8823] tipc: Enabling of bearer rejected, failed to enable media [ 115.001439][ T8825] lo speed is unknown, defaulting to 1000 [ 115.222222][ T8836] syz.1.1038: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 115.229924][ T8836] CPU: 2 UID: 0 PID: 8836 Comm: syz.1.1038 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 115.229953][ T8836] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 115.229966][ T8836] Call Trace: [ 115.229973][ T8836] [ 115.229981][ T8836] dump_stack_lvl+0x16c/0x1f0 [ 115.230038][ T8836] warn_alloc+0x248/0x3a0 [ 115.230065][ T8836] ? __pfx_warn_alloc+0x10/0x10 [ 115.230088][ T8836] ? __pfx_stack_trace_save+0x10/0x10 [ 115.230113][ T8836] ? stack_depot_save_flags+0x28/0xa40 [ 115.230151][ T8836] ? kasan_save_stack+0x42/0x60 [ 115.230174][ T8836] ? kasan_save_stack+0x33/0x60 [ 115.230194][ T8836] ? kasan_save_track+0x14/0x30 [ 115.230216][ T8836] ? xskq_create+0x52/0x1d0 [ 115.230238][ T8836] ? xsk_setsockopt+0x640/0x840 [ 115.230258][ T8836] ? do_sock_setsockopt+0x221/0x470 [ 115.230278][ T8836] ? xskq_create+0xfb/0x1d0 [ 115.230302][ T8836] __vmalloc_node_range_noprof+0xff5/0x14b0 [ 115.230332][ T8836] ? xskq_create+0xfb/0x1d0 [ 115.230361][ T8836] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 115.230390][ T8836] ? xskq_create+0xfb/0x1d0 [ 115.230414][ T8836] vmalloc_user_noprof+0x9e/0xe0 [ 115.230434][ T8836] ? xskq_create+0xfb/0x1d0 [ 115.230458][ T8836] xskq_create+0xfb/0x1d0 [ 115.230486][ T8836] xsk_setsockopt+0x640/0x840 [ 115.230509][ T8836] ? __pfx_xsk_setsockopt+0x10/0x10 [ 115.230529][ T8836] ? __lock_acquire+0x622/0x1c90 [ 115.230563][ T8836] ? selinux_socket_setsockopt+0x6a/0x80 [ 115.230588][ T8836] ? __pfx_xsk_setsockopt+0x10/0x10 [ 115.230610][ T8836] do_sock_setsockopt+0x221/0x470 [ 115.230628][ T8836] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 115.230662][ T8836] __sys_setsockopt+0x1a0/0x230 [ 115.230692][ T8836] __x64_sys_setsockopt+0xbd/0x160 [ 115.230715][ T8836] ? do_syscall_64+0x91/0x4c0 [ 115.230742][ T8836] ? lockdep_hardirqs_on+0x7c/0x110 [ 115.230767][ T8836] do_syscall_64+0xcd/0x4c0 [ 115.230797][ T8836] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.230816][ T8836] RIP: 0033:0x7f22cdf8e929 [ 115.230832][ T8836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.230849][ T8836] RSP: 002b:00007f22cee60038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 115.230872][ T8836] RAX: ffffffffffffffda RBX: 00007f22ce1b6080 RCX: 00007f22cdf8e929 [ 115.230885][ T8836] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000006 [ 115.230896][ T8836] RBP: 00007f22ce010b39 R08: 0000000000000004 R09: 0000000000000000 [ 115.230907][ T8836] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000 [ 115.230917][ T8836] R13: 0000000000000000 R14: 00007f22ce1b6080 R15: 00007fffeee99318 [ 115.230943][ T8836] [ 115.230950][ T8836] Mem-Info: [ 115.262121][ T5946] Bluetooth: hci2: command tx timeout [ 115.264995][ T8836] active_anon:4348 inactive_anon:0 isolated_anon:0 [ 115.264995][ T8836] active_file:11634 inactive_file:2817 isolated_file:0 [ 115.264995][ T8836] unevictable:1768 dirty:242 writeback:0 [ 115.264995][ T8836] slab_reclaimable:8281 slab_unreclaimable:71848 [ 115.264995][ T8836] mapped:24407 shmem:2398 pagetables:912 [ 115.264995][ T8836] sec_pagetables:304 bounce:0 [ 115.264995][ T8836] kernel_misc_reclaimable:0 [ 115.264995][ T8836] free:488394 free_pcp:28805 free_cma:0 [ 115.344277][ T8836] Node 0 active_anon:17268kB inactive_anon:0kB active_file:46536kB inactive_file:11132kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:97628kB dirty:968kB writeback:0kB shmem:6056kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12848kB pagetables:3424kB sec_pagetables:1216kB all_unreclaimable? no Balloon:0kB [ 115.355494][ T8836] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:112kB pagetables:224kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 115.365540][ T8836] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 115.375595][ T8836] lowmem_reserve[]: 0 1235 1235 1235 1235 [ 115.377805][ T8836] Node 0 DMA32 free:333936kB boost:0kB min:27516kB low:34392kB high:41268kB reserved_highatomic:0KB free_highatomic:0KB active_anon:17216kB inactive_anon:0kB active_file:46536kB inactive_file:11132kB unevictable:3536kB writepending:968kB present:2080628kB managed:1264732kB mlocked:0kB bounce:0kB free_pcp:94860kB local_pcp:20244kB free_cma:0kB [ 115.388932][ T8836] lowmem_reserve[]: 0 0 0 0 0 [ 115.389640][ T8841] program syz.4.1040 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 115.390487][ T8836] Node 1 Normal free:1604528kB boost:0kB min:39720kB low:49648kB high:59576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781956kB mlocked:0kB bounce:0kB free_pcp:19764kB local_pcp:9088kB free_cma:0kB [ 115.403741][ T8836] lowmem_reserve[]: 0 0 0 0 0 [ 115.405225][ T8836] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 115.409212][ T8836] Node 0 DMA32: 2799*4kB (UME) 1167*8kB (UME) 650*16kB (UME) 523*32kB (UME) 270*64kB (UME) 106*128kB (UME) 82*256kB (UME) 65*512kB (UME) 12*1024kB (UME) 20*2048kB (UM) 36*4096kB (UM) = 333492kB [ 115.415947][ T8836] Node 1 Normal: 6*4kB (UME) 13*8kB (UME) 25*16kB (UME) 60*32kB (UME) 21*64kB (UME) 12*128kB (UME) 7*256kB (UE) 6*512kB (UM) 3*1024kB (UE) 3*2048kB (UM) 387*4096kB (M) = 1604560kB [ 115.422005][ T8836] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 115.425986][ T8836] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 115.429808][ T8836] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 115.433889][ T8836] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 115.437723][ T8836] 16846 total pagecache pages [ 115.441347][ T8836] 0 pages in swap cache [ 115.441359][ T8836] Free swap = 124996kB [ 115.441368][ T8836] Total swap = 124996kB [ 115.441378][ T8836] 1048443 pages RAM [ 115.441386][ T8836] 0 pages HighMem/MovableOnly [ 115.441393][ T8836] 282931 pages reserved [ 115.441401][ T8836] 0 pages cma reserved [ 115.456691][ T8841] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=2816 sclass=netlink_tcpdiag_socket pid=8841 comm=syz.4.1040 [ 115.461868][ T8841] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1040'. [ 115.985779][ T5946] Bluetooth: hci3: unexpected event for opcode 0x2012 [ 116.034053][ T8867] program syz.1.1046 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 116.168684][ T8881] ata1.00: invalid multi_count 128 ignored [ 116.270434][ T40] audit: type=1400 audit(1750423852.274:459): avc: denied { shutdown } for pid=8880 comm="syz.1.1051" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 116.371249][ T8883] sctp: [Deprecated]: syz.4.1052 (pid 8883) Use of int in maxseg socket option. [ 116.371249][ T8883] Use struct sctp_assoc_value instead [ 116.554972][ T40] audit: type=1400 audit(1750423852.564:460): avc: denied { ioctl } for pid=8891 comm="syz.4.1054" path="socket:[30711]" dev="sockfs" ino=30711 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 116.582079][ T40] audit: type=1400 audit(1750423852.594:461): avc: denied { connect } for pid=8894 comm="syz.4.1055" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 116.591567][ T40] audit: type=1400 audit(1750423852.594:462): avc: denied { setopt } for pid=8894 comm="syz.4.1055" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 116.598827][ T40] audit: type=1400 audit(1750423852.604:463): avc: denied { write } for pid=8894 comm="syz.4.1055" path="socket:[30713]" dev="sockfs" ino=30713 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 117.020907][ T8919] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1063'. [ 117.331975][ T5946] Bluetooth: hci2: command tx timeout [ 117.510247][ T8932] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1068'. [ 117.545726][ T40] audit: type=1400 audit(1750423853.554:464): avc: denied { append } for pid=8939 comm="syz.3.1070" name="hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 117.629731][ T40] audit: type=1400 audit(1750423853.634:465): avc: denied { getattr } for pid=8943 comm="syz.3.1072" path="socket:[34092]" dev="sockfs" ino=34092 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 117.780746][ T8964] 9p: Unknown Cache mode or invalid value fs [ 117.934709][ T8983] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1085'. [ 117.966898][ T40] audit: type=1400 audit(1750423853.974:466): avc: denied { bind } for pid=8986 comm="syz.4.1086" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 117.996866][ T40] audit: type=1400 audit(1750423854.004:467): avc: denied { execute } for pid=8990 comm="syz.4.1087" path="/dev/video0" dev="devtmpfs" ino=956 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1 [ 118.815396][ T9013] affs: No valid root block on device nullb0 [ 118.818461][ T5946] Bluetooth: Unexpected start frame (len 16) [ 118.818607][ T9013] netlink: 260 bytes leftover after parsing attributes in process `syz.3.1094'. [ 118.823505][ T9016] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2562 sclass=netlink_route_socket pid=9016 comm=syz.1.1095 [ 118.828407][ T9016] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2560 sclass=netlink_route_socket pid=9016 comm=syz.1.1095 [ 118.833342][ T9016] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2578 sclass=netlink_route_socket pid=9016 comm=syz.1.1095 [ 118.837483][ T9016] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2569 sclass=netlink_route_socket pid=9016 comm=syz.1.1095 [ 118.842246][ T9016] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2568 sclass=netlink_route_socket pid=9016 comm=syz.1.1095 [ 118.847187][ T9016] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2565 sclass=netlink_route_socket pid=9016 comm=syz.1.1095 [ 118.852679][ T9016] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2569 sclass=netlink_route_socket pid=9016 comm=syz.1.1095 [ 118.916848][ T5946] Bluetooth: hci3: unexpected event for opcode 0x0c14 [ 120.069228][ T9063] overlayfs: missing 'lowerdir' [ 120.107975][ T40] kauditd_printk_skb: 2 callbacks suppressed [ 120.107987][ T40] audit: type=1400 audit(1750423856.114:470): avc: denied { getopt } for pid=9064 comm="syz.3.1114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 120.112235][ T5946] Bluetooth: hci3: unexpected event for opcode 0x0406 [ 120.130664][ T9067] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1115'. [ 120.131705][ T40] audit: type=1400 audit(1750423856.134:471): avc: denied { map } for pid=9066 comm="syz.1.1115" path="socket:[31225]" dev="sockfs" ino=31225 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 120.143753][ T40] audit: type=1400 audit(1750423856.134:472): avc: denied { accept } for pid=9066 comm="syz.1.1115" path="socket:[31225]" dev="sockfs" ino=31225 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 120.307003][ T40] audit: type=1400 audit(1750423856.314:473): avc: denied { remount } for pid=9083 comm="syz.1.1121" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 120.371781][ T9000] Bluetooth: hci3: Opcode 0x0401 failed: -110 [ 120.825781][ T40] audit: type=1400 audit(1750423856.834:474): avc: denied { connect } for pid=9103 comm="syz.1.1128" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 120.885421][ T9108] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 120.888366][ T9108] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 120.949919][ T9113] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1132'. [ 120.998683][ T9117] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 121.004017][ T40] audit: type=1400 audit(1750423857.014:475): avc: denied { watch } for pid=9116 comm="syz.1.1134" path="/379/file1" dev="autofs" ino=33068 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=dir permissive=1 [ 121.061750][ T40] audit: type=1400 audit(1750423857.064:476): avc: denied { mounton } for pid=9116 comm="syz.1.1134" path="/379/file1/bus" dev="autofs" ino=33072 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=dir permissive=1 [ 121.061852][ T9120] overlayfs: missing 'lowerdir' [ 121.093651][ T40] audit: type=1400 audit(1750423857.104:477): avc: denied { unmount } for pid=5942 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1 [ 121.132241][ T9122] smb3: Unknown parameter 'nocase' [ 121.165219][ T40] audit: type=1400 audit(1750423857.174:478): avc: denied { bind } for pid=9123 comm="syz.1.1136" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 121.210073][ T40] audit: type=1400 audit(1750423857.214:479): avc: denied { lock } for pid=9126 comm="syz.4.1137" path="socket:[33084]" dev="sockfs" ino=33084 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1 [ 121.264943][ T9127] netlink: 108 bytes leftover after parsing attributes in process `syz.4.1137'. [ 121.285344][ T9127] can: request_module (can-proto-0) failed. [ 121.358166][ T9135] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1138'. [ 121.364715][ T9135] vivid-003: ================= START STATUS ================= [ 121.367368][ T9135] vivid-003: Radio HW Seek Mode: Bounded [ 121.369249][ T9135] vivid-003: Radio Programmable HW Seek: false [ 121.371202][ T9135] vivid-003: RDS Rx I/O Mode: Block I/O [ 121.373677][ T9135] vivid-003: Generate RBDS Instead of RDS: false [ 121.376336][ T9135] vivid-003: RDS Reception: true [ 121.378060][ T9135] vivid-003: RDS Program Type: 0 inactive [ 121.379950][ T9135] vivid-003: RDS PS Name: inactive [ 121.381796][ T9135] vivid-003: RDS Radio Text: inactive [ 121.383635][ T9135] vivid-003: RDS Traffic Announcement: false inactive [ 121.386647][ T9135] vivid-003: RDS Traffic Program: false inactive [ 121.389603][ T9135] vivid-003: RDS Music: false inactive [ 121.391934][ T9135] vivid-003: ================== END STATUS ================== [ 121.662770][ T9139] netlink: 164 bytes leftover after parsing attributes in process `syz.4.1139'. [ 121.666593][ T9139] netlink: 164 bytes leftover after parsing attributes in process `syz.4.1139'. [ 121.669363][ T9139] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1139'. [ 121.817114][ T9145] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=69 sclass=netlink_route_socket pid=9145 comm=syz.3.1141 [ 121.823399][ T9145] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1141'. [ 122.173185][ T9166] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1150'. [ 122.296697][ T9179] overlayfs: missing 'lowerdir' [ 122.582395][ T5946] Bluetooth: Unexpected continuation frame (len 291) [ 122.582665][ T9199] deleting an unspecified loop device is not supported. [ 122.608078][ T9204] bridge1: entered promiscuous mode [ 122.619407][ T9206] overlayfs: missing 'lowerdir' [ 123.247771][ T9222] kernel read not supported for file /policy (pid: 9222 comm: syz.1.1173) [ 123.500245][ T9235] overlayfs: missing 'lowerdir' [ 123.618441][ T9245] No source specified [ 123.619811][ T9246] No source specified [ 123.891871][ T5946] Bluetooth: hci3: command 0x0419 tx timeout [ 123.891927][ T9147] Bluetooth: hci3: Opcode 0x0401 failed: -110 [ 124.115150][ T9268] __nla_validate_parse: 4 callbacks suppressed [ 124.115162][ T9268] netlink: 14 bytes leftover after parsing attributes in process `syz.4.1191'. [ 124.175934][ T9268] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 124.180215][ T9268] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 124.184568][ T9268] bond0 (unregistering): Released all slaves [ 124.310354][ T9272] lo speed is unknown, defaulting to 1000 [ 124.427151][ T9277] overlayfs: missing 'workdir' [ 124.459010][ T9281] No such timeout policy "syz1" [ 124.486662][ T9286] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1200'. [ 124.553576][ T9292] netlink: 448 bytes leftover after parsing attributes in process `syz.5.1202'. [ 124.556792][ T9292] unsupported nla_type 14345 [ 124.565124][ T9286] bond0 (unregistering): Released all slaves [ 124.685860][ T9301] overlayfs: missing 'workdir' [ 124.839547][ T9325] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1213'. [ 124.876245][ T9322] program syz.3.1212 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 125.131933][ T6029] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 125.147604][ T9348] ================================================================== [ 125.147613][ T9348] BUG: KASAN: global-out-of-bounds in bit_putcs+0xa63/0xde0 [ 125.147650][ T9348] Read of size 1 at addr ffffffff8c187a70 by task syz.4.1221/9348 [ 125.147659][ T9348] [ 125.147666][ T9348] CPU: 1 UID: 0 PID: 9348 Comm: syz.4.1221 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 125.147682][ T9348] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 125.147689][ T9348] Call Trace: [ 125.147694][ T9348] [ 125.147699][ T9348] dump_stack_lvl+0x116/0x1f0 [ 125.147727][ T9348] print_report+0xcd/0x680 [ 125.147744][ T9348] ? __virt_addr_valid+0x81/0x610 [ 125.147757][ T9348] ? __phys_addr+0xe8/0x180 [ 125.147770][ T9348] ? bit_putcs+0xa63/0xde0 [ 125.147785][ T9348] kasan_report+0xe0/0x110 [ 125.147801][ T9348] ? bit_putcs+0xa63/0xde0 [ 125.147818][ T9348] bit_putcs+0xa63/0xde0 [ 125.147838][ T9348] ? __pfx_bit_putcs+0x10/0x10 [ 125.147853][ T9348] ? find_held_lock+0x2b/0x80 [ 125.147868][ T9348] ? fb_get_color_depth+0x120/0x250 [ 125.147882][ T9348] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 125.147896][ T9348] ? __pfx_bit_putcs+0x10/0x10 [ 125.147912][ T9348] fbcon_putcs+0x383/0x4a0 [ 125.147926][ T9348] ? __pfx_fbcon_putcs+0x10/0x10 [ 125.147940][ T9348] do_con_write+0xff0/0x8280 [ 125.147960][ T9348] ? __pfx_do_con_write+0x10/0x10 [ 125.147976][ T9348] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 125.147997][ T9348] con_write+0x23/0xb0 [ 125.148012][ T9348] n_tty_write+0x40f/0x1160 [ 125.148025][ T9348] ? __pfx_n_tty_write+0x10/0x10 [ 125.148035][ T9348] ? rcu_is_watching+0x12/0xc0 [ 125.148049][ T9348] ? __pfx_woken_wake_function+0x10/0x10 [ 125.148061][ T9348] ? kfree+0x24f/0x4d0 [ 125.148072][ T9348] ? file_tty_write.constprop.0+0x6ef/0x9b0 [ 125.148088][ T9348] ? __pfx_n_tty_write+0x10/0x10 [ 125.148099][ T9348] file_tty_write.constprop.0+0x504/0x9b0 [ 125.148117][ T9348] vfs_write+0x6c4/0x1150 [ 125.148132][ T9348] ? __pfx_tty_write+0x10/0x10 [ 125.148147][ T9348] ? __pfx_vfs_write+0x10/0x10 [ 125.148160][ T9348] ? find_held_lock+0x2b/0x80 [ 125.148176][ T9348] ksys_write+0x12a/0x250 [ 125.148189][ T9348] ? __pfx_ksys_write+0x10/0x10 [ 125.148203][ T9348] ? fd_install+0x244/0x750 [ 125.148218][ T9348] do_syscall_64+0xcd/0x4c0 [ 125.148235][ T9348] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.148247][ T9348] RIP: 0033:0x7f29dff8e929 [ 125.148256][ T9348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.148267][ T9348] RSP: 002b:00007f29e0d53038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 125.148278][ T9348] RAX: ffffffffffffffda RBX: 00007f29e01b5fa0 RCX: 00007f29dff8e929 [ 125.148286][ T9348] RDX: 0000000000001006 RSI: 0000200000001980 RDI: 0000000000000009 [ 125.148292][ T9348] RBP: 00007f29e0010b39 R08: 0000000000000000 R09: 0000000000000000 [ 125.148298][ T9348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 125.148305][ T9348] R13: 0000000000000000 R14: 00007f29e01b5fa0 R15: 00007fff33db8d08 [ 125.148315][ T9348] [ 125.148318][ T9348] [ 125.148321][ T9348] The buggy address belongs to the variable: [ 125.148325][ T9348] type_check_kinds+0x230/0xc80 [ 125.148343][ T9348] [ 125.148346][ T9348] The buggy address belongs to the physical page: [ 125.148350][ T9348] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xc187 [ 125.148360][ T9348] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 125.148376][ T9348] raw: 00fff00000002000 ffffea00003061c8 ffffea00003061c8 0000000000000000 [ 125.148386][ T9348] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 125.148393][ T9348] page dumped because: kasan: bad access detected [ 125.148399][ T9348] page_owner info is not present (never set?) [ 125.148403][ T9348] [ 125.148405][ T9348] Memory state around the buggy address: [ 125.148412][ T9348] ffffffff8c187900: 00 04 f9 f9 f9 f9 f9 f9 00 00 02 f9 f9 f9 f9 f9 [ 125.148420][ T9348] ffffffff8c187980: 00 03 f9 f9 f9 f9 f9 f9 07 f9 f9 f9 f9 f9 f9 f9 [ 125.148428][ T9348] >ffffffff8c187a00: 00 01 f9 f9 f9 f9 f9 f9 00 05 f9 f9 f9 f9 f9 f9 [ 125.148434][ T9348] ^ [ 125.148441][ T9348] ffffffff8c187a80: 03 f9 f9 f9 f9 f9 f9 f9 03 f9 f9 f9 f9 f9 f9 f9 [ 125.148448][ T9348] ffffffff8c187b00: 03 f9 f9 f9 f9 f9 f9 f9 00 07 f9 f9 f9 f9 f9 f9 [ 125.148454][ T9348] ================================================================== [ 125.148461][ T9348] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 125.148468][ T9348] CPU: 1 UID: 0 PID: 9348 Comm: syz.4.1221 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) [ 125.148482][ T9348] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 125.148489][ T9348] Call Trace: [ 125.148493][ T9348] [ 125.148497][ T9348] dump_stack_lvl+0x3d/0x1f0 [ 125.148514][ T9348] panic+0x71c/0x800 [ 125.148531][ T9348] ? __pfx_panic+0x10/0x10 [ 125.148548][ T9348] ? __pfx__printk+0x10/0x10 [ 125.148560][ T9348] ? bit_putcs+0xa63/0xde0 [ 125.148576][ T9348] check_panic_on_warn+0xab/0xb0 [ 125.148592][ T9348] end_report+0x107/0x170 [ 125.148607][ T9348] kasan_report+0xee/0x110 [ 125.148623][ T9348] ? bit_putcs+0xa63/0xde0 [ 125.148639][ T9348] bit_putcs+0xa63/0xde0 [ 125.148658][ T9348] ? __pfx_bit_putcs+0x10/0x10 [ 125.148673][ T9348] ? find_held_lock+0x2b/0x80 [ 125.148687][ T9348] ? fb_get_color_depth+0x120/0x250 [ 125.148702][ T9348] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 125.148720][ T9348] ? __pfx_bit_putcs+0x10/0x10 [ 125.148736][ T9348] fbcon_putcs+0x383/0x4a0 [ 125.148751][ T9348] ? __pfx_fbcon_putcs+0x10/0x10 [ 125.148768][ T9348] do_con_write+0xff0/0x8280 [ 125.148788][ T9348] ? __pfx_do_con_write+0x10/0x10 [ 125.148804][ T9348] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 125.148824][ T9348] con_write+0x23/0xb0 [ 125.148840][ T9348] n_tty_write+0x40f/0x1160 [ 125.148853][ T9348] ? __pfx_n_tty_write+0x10/0x10 [ 125.148863][ T9348] ? rcu_is_watching+0x12/0xc0 [ 125.148877][ T9348] ? __pfx_woken_wake_function+0x10/0x10 [ 125.148890][ T9348] ? kfree+0x24f/0x4d0 [ 125.148901][ T9348] ? file_tty_write.constprop.0+0x6ef/0x9b0 [ 125.148917][ T9348] ? __pfx_n_tty_write+0x10/0x10 [ 125.148928][ T9348] file_tty_write.constprop.0+0x504/0x9b0 [ 125.148949][ T9348] vfs_write+0x6c4/0x1150 [ 125.148970][ T9348] ? __pfx_tty_write+0x10/0x10 [ 125.148992][ T9348] ? __pfx_vfs_write+0x10/0x10 [ 125.149009][ T9348] ? find_held_lock+0x2b/0x80 [ 125.149036][ T9348] ksys_write+0x12a/0x250 [ 125.149059][ T9348] ? __pfx_ksys_write+0x10/0x10 [ 125.149082][ T9348] ? fd_install+0x244/0x750 [ 125.149105][ T9348] do_syscall_64+0xcd/0x4c0 [ 125.149130][ T9348] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.149150][ T9348] RIP: 0033:0x7f29dff8e929 [ 125.149163][ T9348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.149178][ T9348] RSP: 002b:00007f29e0d53038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 125.149189][ T9348] RAX: ffffffffffffffda RBX: 00007f29e01b5fa0 RCX: 00007f29dff8e929 [ 125.149196][ T9348] RDX: 0000000000001006 RSI: 0000200000001980 RDI: 0000000000000009 [ 125.149203][ T9348] RBP: 00007f29e0010b39 R08: 0000000000000000 R09: 0000000000000000 [ 125.149210][ T9348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 125.149216][ T9348] R13: 0000000000000000 R14: 00007f29e01b5fa0 R15: 00007fff33db8d08 [ 125.149227][ T9348] [ 125.149999][ T9348] Kernel Offset: disabled VM DIAGNOSIS: 12:51:01 Registers: info registers vcpu 0 CPU#0 RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81607bc0 RDX=ffffffff8e297780 RSI=ffffffff81607c08 RDI=ffffffff93d1f080 RBP=0000000000000000 RSP=ffffc90000007fd0 R8 =0000000000000001 R9 =fffffbfff27a3e10 R10=ffffffff93d1f087 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81607c09 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d6753000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000200000002000 CR3=0000000048b22000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000010000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffd1157e20 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9f5611b12 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9f5611b1f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9f5611b19 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9f5611b2d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9f5611bb3 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9f5611c91 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff855b8b95 RDI=ffffffff9b087320 RBP=ffffffff9b0872e0 RSP=ffffc90003267270 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552 R12=0000000000000000 R13=0000000000000020 R14=ffffffff9b0872e0 R15=ffffffff855b8b30 RIP=ffffffff855b8bbf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 00007f29e0d536c0 ffffffff 00c00000 GS =0000 ffff8880d6853000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c26c616 CR3=0000000048de6000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000020100001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f29e0d52bf0 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f29e0011b12 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f29e0011b1f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f29e0011b19 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f29e0011b2d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f29e0011bb3 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f29e0011c91 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a732520656c6261 7462650064656c69 61662029736e7465 6e28736e74657300 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1f56000540494744 514740004140494c 4443050c564b5140 4b0d564b51405600 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81607bc0 RDX=ffff88801debc880 RSI=ffffffff81607c08 RDI=ffffffff93d1f080 RBP=0000000000000002 RSP=ffffc90000648fd0 R8 =0000000000000001 R9 =fffffbfff27a3e10 R10=ffffffff93d1f087 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81607c09 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d6953000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c262ee5 CR3=000000004d4b4000 CR4=00350ef0 DR0=ffffffffffffffff DR1=0000000000000047 DR2=0000000000000005 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000010000100 Opmask01=0000000000000000 Opmask02=0000000002fefcfe Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffeee996a0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f22ce011b12 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f22ce011b1f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f22ce011b19 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f22ce011b2d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f22ce011bb3 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f22ce011c91 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff81607bc0 RDX=ffff888035f64880 RSI=ffffffff81607c08 RDI=ffffffff93d1f080 RBP=0000000000000003 RSP=ffffc900006f8fd0 R8 =0000000000000001 R9 =fffffbfff27a3e10 R10=ffffffff93d1f087 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81607c09 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 00007f528e2106c0 ffffffff 00c00000 GS =0000 ffff8880d6a53000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f528e20ff98 CR3=000000004bbcd000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000087 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000010000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdfc05a7c0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f528d411b12 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f528d411b1f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f528d411b19 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f528d411b2d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f528d411bb3 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f528d411c91 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000