last executing test programs:
4m14.144739887s ago: executing program 3 (id=4):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x80002, 0x0)
preadv2(r0, &(0x7f00000002c0)=[{&(0x7f0000000080)=""/139, 0x8b}, {&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000200)=""/57, 0x39}, {&(0x7f0000000240)=""/115, 0x73}], 0x4, 0xffff, 0xe23d, 0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000004c0)='cmdline\x00')
flock(r2, 0x2)
flock(r2, 0x5)
r3 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000400)=@base={0xe, 0x4, 0x8, 0x6, 0x4, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = socket$inet6(0xa, 0x80002, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000800)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4a32b, 0x80}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_LINK_NETNSID={0x8, 0x25, 0x1}]}, 0x3c}}, 0x0)
getresuid(&(0x7f00000003c0), &(0x7f0000000480)=<r6=>0x0, &(0x7f0000000500))
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000380), 0x820, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@version_9p2000}, {@dfltuid={'dfltuid', 0x3d, r6}}, {@directio}, {@cache_readahead}, {@cache_fscache}, {@cache_mmap}, {@msize={'msize', 0x3d, 0xfffffffffffffc01}}], [{@flag='posixacl'}, {@obj_type={'obj_type', 0x3d, ']$,'}}, {@euid_eq={'euid', 0x3d, 0xee01}}, {@smackfshat={'smackfshat', 0x3d, '-'}}, {@mask={'mask', 0x3d, 'MAY_READ'}}, {@dont_measure}]}})
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r3, &(0x7f0000000280), &(0x7f0000001840)=@udp6=r4}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r3, &(0x7f0000000140), &(0x7f0000000000)=""/82}, 0x20)
ioctl(r0, 0x5, &(0x7f0000000000)="e688be30906189c5df23ad94df2f2480f27c1db0a0cf73a672c630ed741a0886494ec946bfdc55b8c4d0e101bb6500514c0745ef4432fff996")
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r7, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x16)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
4m13.76004337s ago: executing program 3 (id=8):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000b40)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r2, @ANYBLOB="10007d8005"], 0x2c}}, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0x4002})
write$tun(r5, &(0x7f0000000340)={@void, @void, @mpls={[], @generic="b19e05d0d9ddfc27dc20af6d46d571abb2483a"}}, 0x13)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r7 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r7, 0x1, 0x3e, &(0x7f00000002c0)=r6, 0x161)
sendmsg$inet(r7, &(0x7f0000007940)={&(0x7f0000000100)={0x2, 0x4e24, @rand_addr=0x20}, 0x10, &(0x7f0000000140)=[{0x0, 0xfffd}], 0x1, &(0x7f0000007880)=[@ip_tos_u8={{0x11, 0x34000}}, @ip_pktinfo={{0x1c, 0xfd000f00, 0x8, {0x0, @remote, @multicast1}}}, @ip_retopts={{0x24, 0x0, 0x7, {[@ra={0x94, 0x4}, @timestamp={0x44, 0x10, 0x88, 0x0, 0x0, [0x0, 0x0, 0x0]}]}}}, @ip_tos_u8={{0x11}}], 0x78}, 0xe000)
chdir(&(0x7f0000000140)='./file1\x00')
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cpuset.memory_pressure\x00', 0x275a, 0x0)
quotactl_fd$Q_QUOTAON(r8, 0xffffffff80000201, 0x0, 0x0)
r9 = syz_open_dev$video4linux(&(0x7f0000000000), 0x2c, 0x40500)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r9, 0xc040564a, &(0x7f0000000200)={0x0, 0x0, 0x101b, 0x401, 0x0, 0x20000000, 0x84e})
r10 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000bdb000/0x3000)=nil, 0x3000, &(0x7f0000000040)='&\x00')
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r11, r13, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, 0x0}], 0x1, 0x52, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r10, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x3c, 0x3, 0x4, '\x00', 0x8})
ioctl$KVM_SET_LAPIC(r10, 0x4400ae8f, &(0x7f0000000e00)={"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"})
4m13.587502739s ago: executing program 3 (id=10):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0xfffffffd)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000002c0)={0x1, r2})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x1f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffa, @void, @value}, 0x94)
r4 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r4, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000020000402505a1a44000010203010902"], 0x0)
ioctl$VHOST_VDPA_GET_CONFIG(0xffffffffffffffff, 0x8008af73, &(0x7f00000005c0)={0x0, 0x53, ""/83})
sendto$packet(0xffffffffffffffff, &(0x7f0000000000)='O', 0x1, 0x0, 0x0, 0x0)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000080)={0x1, r2})
r5 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000001d00070f000000000000000007000000", @ANYBLOB="d6ceeb800000000061000076", @ANYRES32=r6, @ANYRES16=r3, @ANYRES16=r1, @ANYRESDEC=r6, @ANYRES32=r5], 0x1c}, 0x1, 0x0, 0x0, 0x4000001}, 0x20040080)
syz_genetlink_get_family_id$fou(&(0x7f0000000040), r5)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r7, &(0x7f0000000000), 0xd)
r8 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x38011, r8, 0x0)
listen(r4, 0x5)
accept4(r4, 0x0, 0x0, 0x800)
dup(r4)
4m11.63361737s ago: executing program 3 (id=23):
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000100)=ANY=[@ANYBLOB="30000000020301020000000000000000000000000800034000000000090002000000000002"], 0x30}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="00db00000040"], 0x40}}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe80000000000000000000", @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000140)={0x100, 0x640, &(0x7f0000000240)="02e19d2dfa8f6e35b50f080d91ef49d3", 0x0, 0x10})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
4m11.609638631s ago: executing program 32 (id=23):
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000100)=ANY=[@ANYBLOB="30000000020301020000000000000000000000000800034000000000090002000000000002"], 0x30}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="00db00000040"], 0x40}}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe80000000000000000000", @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000140)={0x100, 0x640, &(0x7f0000000240)="02e19d2dfa8f6e35b50f080d91ef49d3", 0x0, 0x10})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
3m40.073386674s ago: executing program 4 (id=441):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f00000005c0)={'bridge_slave_0\x00', 0x55}) (fail_nth: 6)
3m39.903462585s ago: executing program 4 (id=444):
r0 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000040)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x9ea, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r2, &(0x7f00000000c0)="6e255ddd3fd96ed91eef7afaf88c5a439e4984edafb8636dbbb8320ee6d87713a2e17fbf6643b898ced7548d41f70e72d0030b7587d25ae0de460f5c3d7834d89e48e26960e10c0e394bd8442bafa60df374b45eacb2a7a228f8adde63cb3e08243061f39e9e69893582ab1f34c6408a3fdef36495d4358211d705d5f37bb5ced3276616bed9de3eeab484a615375ce76f7fe7fb73f85d6e5e74d6fdec3a6519727b122fe26c211be1cce68479c32d9cd73a99256c593e1d4d8bf0f7e0a446de0e9e9fa1b8ea60f896c85396", &(0x7f00000001c0)=""/35, 0x4}, 0x20)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r1)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f00000002c0), r1)
sendmsg$BATADV_CMD_SET_VLAN(r1, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, r3, 0x2, 0x70bd29, 0x25dfdbfb, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x95f4}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x50)
r4 = openat$userio(0xffffffffffffff9c, &(0x7f00000003c0), 0x8080, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r4, &(0x7f0000000400), 0x2)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000440)=0x40000000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_SET_MESH(r5, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, r3, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004801}, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f00000005c0)={'veth1_to_bond\x00', &(0x7f0000000580)=@ethtool_modinfo={0x42, 0x68, 0x1}})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000600)={0x1b, 0x0, 0x0, 0xe, 0x0, r2, 0x7f, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
sendmsg$L2TP_CMD_SESSION_GET(r5, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x1f080d0c4693acb7}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x1c, r0, 0x2, 0x70bd25, 0x25dfdbfc, {}, [@L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e22}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40800}, 0x4)
r6 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000780)=@assoc_value={<r7=>0x0}, &(0x7f00000007c0)=0x8)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000800)='./file0\x00', 0x111001, 0x19a)
io_uring_enter(r8, 0x21d9, 0xf6d, 0x31, &(0x7f0000000840)={[0xffffffffffffffff]}, 0x8)
r9 = syz_genetlink_get_family_id$tipc2(&(0x7f00000008c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_SOCK_GET(r5, &(0x7f0000000b00)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000900)={0x19c, r9, 0x8, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}]}, @TIPC_NLA_BEARER={0x128, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @multicast2}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x3, @private2, 0x2}}}}, @TIPC_NLA_BEARER_NAME={0x16, 0x1, @l2={'ib', 0x3a, 'bridge_slave_1\x00'}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}]}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x22}, @TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6a03}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}]}, @TIPC_NLA_NET={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1000}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x5}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x78}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4819}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x4c}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xfffffb6a}]}]}, 0x19c}, 0x1, 0x0, 0x0, 0x4000800}, 0x24008004)
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r8, 0x84, 0x1b, &(0x7f0000000b40)={<r10=>r7, 0x9c, "b41447a4e0870fadc60d20e0ee8e5d2a6d807127e69e2b0a6107e7a905f7544ece0140ae62a38bdf5832db29f457a4ac594c5d8bb86a30c592cd0b4235d52016038c9ada0135c65ef6c34b4a1219660563e51bb4af1725fc581a75af4445bfe25e44f2e47ca5d35de35decbe61ebd1aef6251c014f695c618e4923f46bdcaecf674fb0285cc70f278274f626636fed8575838d716effa242b45f2abd"}, &(0x7f0000000c00)=0xa4)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r6, 0x84, 0x1f, &(0x7f0000000c40)={r10, @in={{0x2, 0x4e20, @private=0xa010100}}, 0x7, 0x7}, &(0x7f0000000d00)=0x90)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000d40)={'wlan1\x00'})
ioctl(r4, 0xfc8f, &(0x7f0000000d80)="65850bd1be6d578837e94d8b7314ccf4afbb8e9d8629ab640d24")
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r8, 0x10e, 0x8, &(0x7f0000000dc0)=0x7fffffff, 0x4)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r8, 0x81f8943c, &(0x7f0000000e00))
r11 = fcntl$getown(r5, 0x9)
sched_setaffinity(r11, 0x8, &(0x7f0000001000)=0x7)
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000001040)={0x1000, {{0xa, 0x4e22, 0x6, @private2, 0x2}}}, 0x88)
3m39.901939895s ago: executing program 4 (id=445):
ioctl$CDROMPLAYMSF(0xffffffffffffffff, 0x5303, 0x0)
socket(0x18, 0xa, 0x0)
r0 = io_uring_setup(0x4c7e, &(0x7f0000000580)={0x0, 0xddfd, 0x4000, 0xfffffffe, 0x183})
close_range(r0, r0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x10, &(0x7f0000000040)=0xfffffffc, 0x4)
socket$kcm(0x21, 0x2, 0x2)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="240000001900010000000000000000001c140000fe0000010000000008000400f441f1"], 0x24}}, 0x0)
io_setup(0x100, &(0x7f0000000000)=<r3=>0x0)
r4 = syz_open_dev$vcsu(&(0x7f00000001c0), 0x8007, 0x0)
io_cancel(r3, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x6, 0x6, 0xffffffffffffffff, &(0x7f0000000300)="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", 0x142, 0x5, 0x0, 0x2, r4}, &(0x7f0000000180))
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz0\x00', 0x200002, 0x0)
syz_open_dev$hidraw(&(0x7f00000004c0), 0xffffffffffffffff, 0x142043)
3m39.722863866s ago: executing program 4 (id=450):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0)
r1 = gettid()
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)
socketpair$unix(0x1, 0x4, 0x0, &(0x7f0000000180)={<r3=>0xffffffffffffffff})
r4 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r4, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r4, 0x8)
r5 = accept4(r4, 0x0, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_STATUS(r5, 0x84, 0xe, &(0x7f00000003c0)={0x0, 0x4, 0xfffffff7, 0xac5, 0x0, 0x6, 0x27a, 0x73, {0x0, @in6={{0xa, 0x4e22, 0x5, @loopback, 0x800}}, 0xe6, 0xaaf, 0x7, 0xe9, 0x4}}, &(0x7f0000000080)=0xb0)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f00000001c0)={0x0, 0x4, 0x2, 0x4})
sigaltstack(&(0x7f0000000000)={&(0x7f0000002b40)=""/4096, 0x1, 0x1000}, 0x0)
rt_sigqueueinfo(r1, 0x21, &(0x7f00000002c0))
ioctl$vim2m_VIDIOC_G_FMT(r0, 0xc0285628, &(0x7f0000000080)={0x3, @win={{0x2}, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0, 0x40}})
3m39.583501592s ago: executing program 4 (id=451):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000040)=@x86={0x3, 0x3, 0x2, 0x0, 0x8, 0x2, 0x3, 0x1, 0xb1, 0x1, 0x1, 0x7, 0x0, 0x4, 0x1, 0x1, 0x6, 0x99, 0x40, '\x00', 0x3, 0x1})
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 6)
3m39.092533565s ago: executing program 4 (id=455):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x3d70000000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_CLEAR_DIRTY_LOG(r1, 0xc018aec0, &(0x7f0000000140)={0xfb7f0000, 0x240, 0x380, &(0x7f0000000180)=[0x6bd1a312, 0xec66, 0xff, 0x8, 0x98bd, 0x800000000000009, 0x1, 0x4, 0x100000010000, 0x100, 0x9004, 0x0, 0x8, 0x2, 0x5, 0x4b, 0x3ff, 0x5, 0x2, 0x200000000000009, 0x8, 0x7, 0xc1, 0x3, 0x2, 0x2, 0x6, 0x7, 0x96, 0xffffffff, 0xffffffff00000008, 0x0, 0x1, 0x7, 0x23b, 0x3, 0x2, 0x888f, 0x4, 0x4, 0x6, 0x6, 0x3, 0xa3de, 0x20000000006, 0x200000000008, 0x9, 0x400, 0x0, 0xfffffffffffffff7, 0xfffffffffffffffa, 0xc670, 0x10000e, 0x6, 0x4, 0xe6, 0x200000000000101, 0x5, 0x9, 0x20000000006a, 0x6, 0x7, 0x40000005, 0xfffffffeffffffff, 0x9, 0xd, 0x6, 0xbbd9, 0x80000000, 0xfffffffffffffc00, 0x2, 0x7, 0x2, 0xcda, 0xb, 0x2, 0x3, 0x1, 0x5, 0xfff, 0x6, 0x4, 0x1, 0xab6, 0x0, 0x4, 0x0, 0xffffffffffffff81, 0x9, 0xff, 0x6, 0x28000000, 0x5, 0x8061d, 0x3, 0x8, 0x8, 0x4, 0x6, 0x200, 0x7, 0x1, 0x2b, 0x8, 0x2293332f, 0x4, 0x5, 0x9, 0x8000000000000001, 0x2, 0x100000000005, 0x981, 0x2, 0x7, 0xdfd6, 0xfffd, 0xe, 0x5, 0x8, 0x200000000000001, 0x53e0f0fe, 0xeb4, 0x3, 0x9, 0xb692, 0xcc, 0x32e, 0xa]})
3m38.912164427s ago: executing program 33 (id=455):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x3d70000000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_CLEAR_DIRTY_LOG(r1, 0xc018aec0, &(0x7f0000000140)={0xfb7f0000, 0x240, 0x380, &(0x7f0000000180)=[0x6bd1a312, 0xec66, 0xff, 0x8, 0x98bd, 0x800000000000009, 0x1, 0x4, 0x100000010000, 0x100, 0x9004, 0x0, 0x8, 0x2, 0x5, 0x4b, 0x3ff, 0x5, 0x2, 0x200000000000009, 0x8, 0x7, 0xc1, 0x3, 0x2, 0x2, 0x6, 0x7, 0x96, 0xffffffff, 0xffffffff00000008, 0x0, 0x1, 0x7, 0x23b, 0x3, 0x2, 0x888f, 0x4, 0x4, 0x6, 0x6, 0x3, 0xa3de, 0x20000000006, 0x200000000008, 0x9, 0x400, 0x0, 0xfffffffffffffff7, 0xfffffffffffffffa, 0xc670, 0x10000e, 0x6, 0x4, 0xe6, 0x200000000000101, 0x5, 0x9, 0x20000000006a, 0x6, 0x7, 0x40000005, 0xfffffffeffffffff, 0x9, 0xd, 0x6, 0xbbd9, 0x80000000, 0xfffffffffffffc00, 0x2, 0x7, 0x2, 0xcda, 0xb, 0x2, 0x3, 0x1, 0x5, 0xfff, 0x6, 0x4, 0x1, 0xab6, 0x0, 0x4, 0x0, 0xffffffffffffff81, 0x9, 0xff, 0x6, 0x28000000, 0x5, 0x8061d, 0x3, 0x8, 0x8, 0x4, 0x6, 0x200, 0x7, 0x1, 0x2b, 0x8, 0x2293332f, 0x4, 0x5, 0x9, 0x8000000000000001, 0x2, 0x100000000005, 0x981, 0x2, 0x7, 0xdfd6, 0xfffd, 0xe, 0x5, 0x8, 0x200000000000001, 0x53e0f0fe, 0xeb4, 0x3, 0x9, 0xb692, 0xcc, 0x32e, 0xa]})
3m16.27316177s ago: executing program 1 (id=749):
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000100)=ANY=[@ANYBLOB="30000000020301020000000000000000000000000800034000000000090002000000000002"], 0x30}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="00db00000040"], 0x40}}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000140)={0x100, 0x640, &(0x7f0000000240)="02e19d2dfa8f6e35b50f080d91ef49d3", 0x0, 0x10})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
3m16.052931137s ago: executing program 1 (id=752):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004042, 0x0)
dup(r0)
r1 = syz_io_uring_setup(0x417a, &(0x7f00000000c0)={0x0, 0x0, 0x10710, 0x1, 0xffffffff}, &(0x7f0000000540)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4004, @fd_index=0x4, 0x0, &(0x7f0000000400)=[{&(0x7f0000000800)=""/4096, 0x1000}], 0x1})
io_uring_enter(r1, 0x567, 0x20, 0x7f00, 0x0, 0x0)
3m15.982978375s ago: executing program 1 (id=753):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x28, 0x0, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}]}]}, 0x28}}, 0x0)
semctl$SEM_STAT(0x0, 0x1, 0x12, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x4c, r2, 0x5, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_PREV_BSSID={0xa, 0x4f, @from_mac=@broadcast}, @NL80211_ATTR_BSS_SELECT={0x18, 0xe3, 0x0, 0x1, [@NL80211_BSS_SELECT_ATTR_RSSI_ADJUST={0x6, 0x3, {0x2, 0x1}}, @NL80211_BSS_SELECT_ATTR_RSSI={0x4}, @NL80211_BSS_SELECT_ATTR_RSSI={0x4}, @NL80211_BSS_SELECT_ATTR_RSSI={0x4}]}]}, 0x4c}}, 0x0)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
io_setup(0x74, &(0x7f00000002c0)=<r5=>0x0)
r6 = openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
io_submit(r5, 0x1, &(0x7f0000000380)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, r6, 0x0, 0x0, 0x81}])
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="ee000000", @ANYRES16=0x0, @ANYBLOB="0100fdffffff000000000100000008000100", @ANYRES32=0x0, @ANYBLOB="400002803c0001"], 0x5c}, 0x1, 0xf000, 0x0, 0x8c1}, 0x20040)
sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000300)=ANY=[@ANYBLOB="180100002d000100000000000000010008"], 0x118}], 0x3c, 0x0, 0x0, 0x40}, 0x0)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r0)
r8 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000000640)=@filter={'filter\x00', 0xe, 0x4, 0x468, 0xffffffff, 0x148, 0x0, 0x148, 0xffffffff, 0xffffffff, 0x398, 0x398, 0x398, 0xffffffff, 0x4, &(0x7f0000000100), {[{{@uncond, 0x0, 0x120, 0x148, 0x0, {}, [@common=@frag={{0x30}, {[0x2, 0x6], 0x2, 0x20, 0x2}}, @common=@hbh={{0x48}, {0x7818, 0x6, 0x0, [0xb, 0x5, 0x5, 0x7, 0x4, 0xc, 0x3, 0x5, 0x2, 0xe069, 0x0, 0x8001, 0x7ff, 0x2, 0x0, 0x2], 0x7}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x6}}}, {{@ipv6={@private1, @mcast2, [0xff, 0xffffffff, 0x0, 0xff], [0xff, 0xffffff00, 0xff, 0xff000000], 'dvmrp1\x00', 'ipvlan1\x00', {0xff}, {}, 0x2, 0x8, 0x1, 0x24}, 0x0, 0xa8, 0xf0}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1, 'syz1\x00', {0xde}}}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @empty}, @ipv4={'\x00', '\xff\xff', @broadcast}, [0x0, 0xffffff00, 0xff000000, 0xff000000], [0x0, 0xffffffff, 0xffffff00, 0xffffff00], 'wlan1\x00', 'veth0_to_team\x00', {0xff}, {}, 0x8, 0x4, 0xc, 0x46}, 0x0, 0x120, 0x160, 0x0, {}, [@common=@hbh={{0x48}, {0x3, 0x4, 0x1, [0x3, 0x338, 0xf800, 0x9, 0x3, 0x1, 0x0, 0x9, 0x3, 0x1, 0x96, 0x4, 0xff, 0x9, 0x27ee, 0xfff7], 0x2}}, @common=@srh={{0x30}, {0x0, 0x4, 0x7, 0xf8, 0x5, 0x0, 0x12}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x1, 0x10, "fe7fbe8135dcb0dd20ce3143f2e6088d91e046373014a677e1bc15221143"}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4c8)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r9, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00'})
r10 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40841, 0x0)
ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r11 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r11, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r10, &(0x7f00000001c0)=ANY=[@ANYBLOB="00001b1de4356c052e79aaaaaaaaaaaa88a800008100000086dd6017785c00182f0000000000000000000000000000000000fe80000000000000000000000000000e800086dd"], 0xfdef)
r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl(r12, 0x8b32, &(0x7f0000000040))
sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB='\\\x00&\x00', @ANYRES16=r7, @ANYBLOB="00032cbd7000fcdbdf2514000000300001802c0004001400010002004e23ac14142400000000000000001400020002004e24ac1414aa000000000000000018000680040002000800060000fc01000800010000000000"], 0x5c}, 0x1, 0x0, 0x0, 0x4041}, 0x20000800)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=@newlink={0x40, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x40000, 0x80000}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_LIMIT={0x5, 0xb, 0x40}]}}}]}, 0x40}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000200)={'wlan0\x00'})
3m15.772539789s ago: executing program 1 (id=761):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000000c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x2066012}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x40)
getdents64(r2, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000000)={[{@subsystem='hugetlb'}, {@subsystem='memory'}, {@subsystem='cpuacct'}, {@xattr}]})
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000080)={0x2a, 0x6, 0x0, {0x1, 0x2000000000f5, 0x1, 0x2, '\x00', 0x8}}, 0x2a)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001040)=ANY=[@ANYBLOB="b00000000000000000000000000000000000000000200000000000000000000000000000000000000200000000000000000020000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000c0000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0021000000000000467700000000000000000000000000000000000001"], 0x0, 0x0, 0x0})
r3 = syz_clone(0x8100000, &(0x7f0000000240)="7fbf6b9d8504b5b6355fc3c64f984ea77e7297bec870831f2e5091e7a51b33053396f6295caeb82de74e74f9991bc76bba7cc6b043c76e51d2beb7736cdb7501ac8c3401fceaf86ac9bda2bbbd7dc115e01f759cac92f2e5842e86251fffae5cbd7dbf85e89d10fa5eb12905f724f001c00b443a1a7bd95795783fdb6528", 0x7e, &(0x7f00000002c0), &(0x7f0000000300), &(0x7f0000000340)="c83a4a9f8b104ae3ef0083f990464432927ec8560feec7fdc231a572c5e935ee71f8a8d699dae1cb9368c938b5ce0b998da01f4f3c8fe69bc9850f0721100649ff4ea08b79c3105c9cdc7e061c7f5705bb960114a8de68606edf5310e6b2069d44d97f54320862404097f80f8f50f5400074c9f7b3f732fc9dba2de5bcefc283289dedad23f4ea03d062e1703b12b81b362eea1ab979c88a663194f27b46d331ba1d54219e8e56d459e388bda0d9fbe8726e97e30beac183f5a18d101b1d5a5a24b7452ae20104d511aef99b3a")
sched_setscheduler(r3, 0x1, &(0x7f0000000440)=0x9)
3m15.47982826s ago: executing program 1 (id=768):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x92)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@verity_require}]})
r0 = open(&(0x7f0000000440)='./file0\x00', 0x620200, 0x0)
mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00') (fail_nth: 19)
3m15.212862194s ago: executing program 1 (id=775):
r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x1f7ff6, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x8, 0x1, 0x1})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xe1000, 0x280000b, 0x28011, r0, 0x2100)
3m15.153987866s ago: executing program 34 (id=775):
r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x1f7ff6, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x8, 0x1, 0x1})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xe1000, 0x280000b, 0x28011, r0, 0x2100)
53.371712901s ago: executing program 0 (id=2281):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000300)={0x0, 0xffffffffffffff36, &(0x7f0000000200)="952bb3e006ae9a4c3a"})
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000040)={0x15, 0x0, 0x0})
ioctl$EVIOCGKEY(r0, 0x80404518, 0x0)
52.921849568s ago: executing program 0 (id=2286):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_to_bond\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x2c, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r1, 0x364, 0x2}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FLAGS={0x8}]}]}, 0x2c}}, 0x0)
52.851493076s ago: executing program 0 (id=2288):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002140)=@newqdisc={0x40, 0x24, 0xf0b, 0xfffffffc, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xffff, 0x2}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}, @TCA_RATE={0x6, 0x5, {0x4}}]}, 0x40}}, 0x4000000)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000080000000000000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00'}, 0x10)
setresuid(0x0, 0x0, 0xffffffffffffffff)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000140), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x11, &(0x7f00000003c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x22}, @snprintf]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
52.570903741s ago: executing program 0 (id=2290):
socket$alg(0x26, 0x5, 0x0)
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000001040), 0x0, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000940)={{0xfffc, 0x8001}, 'syz1\x00', 0x2e})
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001080)='/proc/bus/input/devices\x00', 0x0, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x4)
ioctl$UI_DEV_CREATE(r0, 0x5501)
read$FUSE(r1, &(0x7f00000010c0)={0x2020}, 0x2020)
52.460549393s ago: executing program 0 (id=2292):
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x16, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xc, 0x2, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYBLOB, @ANYRES32=0x0], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
setsockopt$bt_BT_CHANNEL_POLICY(r3, 0x112, 0xa, &(0x7f0000000000)=0x4, 0x4)
50.781769327s ago: executing program 0 (id=2295):
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = msgget(0x0, 0x2c4)
msgsnd(r2, &(0x7f0000000100)=ANY=[], 0x2000, 0x0)
msgctl$IPC_RMID(r2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4c004)
sendmsg$ETHTOOL_MSG_RINGS_GET(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
35.23617767s ago: executing program 35 (id=2295):
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = msgget(0x0, 0x2c4)
msgsnd(r2, &(0x7f0000000100)=ANY=[], 0x2000, 0x0)
msgctl$IPC_RMID(r2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4c004)
sendmsg$ETHTOOL_MSG_RINGS_GET(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
3.631294931s ago: executing program 7 (id=2493):
r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ftruncate(r0, 0x8000)
3.631090289s ago: executing program 6 (id=2494):
r0 = userfaultfd(0x1)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, &(0x7f0000000000)={{0x80}, 'port1\x00', 0x0, 0x0, 0xf4e, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80})
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa07, &(0x7f0000000040)={{&(0x7f00004be000/0x2000)=nil, 0x2000}, 0x1})
3.630933333s ago: executing program 7 (id=2495):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001280)={0x18, 0x18, 0xa01, 0x0, 0x40000000, {0x4}, [@nested={0x4, 0x19}]}, 0x18}}, 0x0)
3.630789258s ago: executing program 6 (id=2496):
execveat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x800)
syz_open_procfs(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x3, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
ioctl$sock_SIOCSIFBR(r2, 0x8941, &(0x7f0000000000)=@generic={0x1, 0xe, 0x6})
3.55600777s ago: executing program 7 (id=2497):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x5}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAPCLR(r3, 0x4b68, 0x0)
3.393027124s ago: executing program 5 (id=2499):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet6(0xa, 0x3, 0x8000000003c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key$user(0x0, &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000003c0)="c1a365bda086edb91ba82dc551344f522c58d8ec1184501d8cd4e665d31715c470f32e331f74c7a86c0482db1e24bf33a3fcbce4a2844037fd34cc9bfd478b1f36097a563d00b8eb6af55a35c2da373c12c290fc5dff17af4594371a9044d40d492f", 0x62, 0xffffffffffffffff)
add_key$keyring(&(0x7f0000000280), 0x0, 0x0, 0x0, 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYRES16, @ANYBLOB="010000000000000000003b000000080003", @ANYRES32=r3, @ANYRES8=r2], 0x3c}, 0x1, 0x0, 0x0, 0x4010}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x20, &(0x7f0000000080)={[{@nr_inodes={'nr_inodes', 0x3d, [0x50]}}]})
2.653461711s ago: executing program 6 (id=2503):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
getpid()
r1 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000200)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@private, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
sendmmsg(r1, &(0x7f0000000480), 0x2e9, 0x0)
2.38115786s ago: executing program 6 (id=2506):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000180)={{{@in=@broadcast, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x32}, 0x0, @in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}}, 0xe8)
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0xd, &(0x7f0000000100)=""/129, 0x0)
r0 = io_uring_setup(0x1f84, &(0x7f0000000340)={0x0, 0xec1e, 0x8, 0x2, 0x1e4})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)
syz_emit_ethernet(0x6e, &(0x7f00000003c0)={@link_local, @dev, @val={@val={0x88a8, 0x5, 0x0, 0x4}}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f53a04", 0x30, 0x3a, 0x0, @remote, @mcast2, {[], @param_prob={0x2, 0x0, 0x0, 0x500, {0x0, 0x6, "508359", 0x0, 0x0, 0x0, @private1, @private1}}}}}}}, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCMIWAIT(r2, 0x545c, 0x7cb7562f2d67)
ioctl$TIOCMSET(r2, 0x5418, &(0x7f0000000140)=0xfffffe00)
2.245293022s ago: executing program 6 (id=2507):
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0x1ac81b, 0x0, 0x0, 0x0, 0x1000000}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x66, 0x8, 0x0, 0x0, 0x1010000}, @initr0, @exit, @alu={0x6, 0x0, 0x3, 0xa, 0x0, 0x0, 0x300}, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0xff5c, &(0x7f0000000340)=""/222, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
2.233978847s ago: executing program 7 (id=2510):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_DEL_KEY(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000b00)={0x30, r0, 0x1, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x8084}, 0x4014)
2.131253304s ago: executing program 6 (id=2511):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x4, 0x0, 0x0)
connect$inet(r0, 0x0, 0x0)
setsockopt$inet_mreq(r0, 0x0, 0x23, 0x0, 0x0)
mkdir(0x0, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
readv(r0, &(0x7f0000000080)=[{&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f00000011c0)=""/90, 0x5a}], 0x2)
read$FUSE(r1, &(0x7f0000006300)={0x2020}, 0x2020)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x4, 0xe, &(0x7f0000000880)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000001c0), 0x8, 0x10, &(0x7f0000000040), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f0000000180)={0x24, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x22, 0xf, {[@global=@item_012={0x0, 0x1, 0x5}, @main=@item_012={0x2, 0x0, 0xb, '\x00\x00'}, @main=@item_4={0x3, 0x0, 0x9, "5aa8257f"}, @main=@item_012={0x0, 0x0, 0x9}, @main=@item_4={0x3, 0x0, 0xb, "9e3ce079"}]}}, 0x0}, 0x0)
r3 = syz_open_dev$hiddev(&(0x7f0000000140), 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0x4802, 0x0)
syz_open_dev$hiddev(&(0x7f00000015c0), 0x6, 0x40101)
2.131055131s ago: executing program 5 (id=2512):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00\b\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0xc2}}}}}}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000640)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "101040", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0x10, 0x0, 0x0, 0x6}}}}}}}, 0x0)
1.970895232s ago: executing program 5 (id=2514):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x4, 0x6, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='workqueue_queue_work\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, 0x0, &(0x7f0000000880)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
1.908762477s ago: executing program 7 (id=2516):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
pwritev(0xffffffffffffffff, &(0x7f0000000600)=[{0x0}], 0x1, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f00000004c0)=""/102392, 0x18ff8)
r1 = syz_open_procfs(0x0, 0x0)
pread64(r1, 0x0, 0x0, 0x2000000000)
getpid()
ioctl$KDSIGACCEPT(0xffffffffffffffff, 0x5607, 0x38)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r2, 0x5607, 0x10)
ioctl$KDSETMODE(r2, 0x4b3a, 0x1)
sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, 0x0, 0x0)
ioctl$TCXONC(r2, 0x4b3a, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = signalfd(r0, &(0x7f0000000100)={[0x9]}, 0x8)
ioctl$TIOCGPTLCK(r3, 0x80045439, &(0x7f0000000180))
r4 = gettid()
process_vm_writev(r4, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x3a, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x8927, &(0x7f0000000000)="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")
1.908449107s ago: executing program 5 (id=2517):
socket(0x2, 0x3, 0xff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000700)=@mangle={'mangle\x00', 0x64, 0x6, 0x510, 0x370, 0x1b8, 0x370, 0x1b8, 0x4b8, 0x610, 0x610, 0x610, 0x610, 0x610, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x0, 0x5}}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @local, [], [0x0, 0x0, 0xff, 0xff000000], 'macvtap0\x00', 'ip6tnl0\x00', {}, {}, 0x6, 0x0, 0x0, 0x4a}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@broadcast, 0x4}}}, {{@ipv6={@mcast2, @loopback, [], [], 'veth0_to_team\x00', 'syzkaller0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffd}}, {{@uncond, 0x0, 0xa8, 0xd0}, @inet=@DSCP={0x28}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@dev}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x570)
r1 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x15, 0x10, 0x4, 0x0, 0x0, 0x1, 0x0, '\x00', 0x0, r1, 0x0, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x2e}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
781.699749ms ago: executing program 5 (id=2518):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000098c0), 0x0, 0x0)
ioctl$TIOCGRS485(r0, 0x541e, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000002d01000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r2, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
781.536686ms ago: executing program 5 (id=2519):
msgsnd(0x0, &(0x7f00000058c0)={0x3, "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"}, 0xfd1, 0x0)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000180)}], 0x1)
socket(0x10, 0x80002, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x1, &(0x7f0000000000), 0x4)
read$FUSE(r1, &(0x7f0000000340)={0x2020}, 0x2020)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00')
read$FUSE(r3, &(0x7f0000001680)={0x2020}, 0x2020)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x30, 0x10, 0x801, 0x0, 0xfffffffc, {0x0, 0x0, 0x4c, 0x0, 0xc3}, [@IFLA_GROUP={0x8}, @IFLA_OPERSTATE={0x5, 0x10, 0x5}]}, 0x30}, 0x1, 0xffffa888}, 0x8810)
711.311152ms ago: executing program 2 (id=2520):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x18)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000002100)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000001c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a700000095"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_BIND_MAP(0x23, &(0x7f00000002c0)={r3, r4}, 0xc)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000040)={r3, r1}, 0xc)
340.71679ms ago: executing program 2 (id=2521):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$inet_udplite(0x2, 0x2, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d2, 0x0)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000008c0)={0xac, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}]}]}, 0xac}}, 0x0)
340.453216ms ago: executing program 2 (id=2522):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0)
mremap(&(0x7f0000241000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg(r1, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
sendmsg$unix(r2, &(0x7f0000000840)={&(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e, 0x0, 0x0, &(0x7f0000000880)=ANY=[], 0xd, 0x800}, 0x4000080)
close(r0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040000}, 0x20000000)
r5 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, @fixed}, &(0x7f0000000740)=0xe, 0x81800)
ioctl$sock_SIOCDELDLCI(r5, 0x8981, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB], 0x8)
108.695849ms ago: executing program 2 (id=2523):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0xa6, 0x0, 0x5, 0x0, 0xfffffffffffffdfc}, {0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, 0xff, 0x2, 0x0, 0x800000000000000}, {0x2, 0x3, 0x0, 0x0, 0x4, 0x5, 0x4, 0x0, 0x5}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{0x0, 0xffff, 0x6, 0x81, 0x7, 0x1b, 0x9, 0xe, 0x4, 0x6, 0x7f, 0x7, 0x6}, {0x5, 0x3, 0x13, 0x1, 0x7, 0xfe, 0x7c, 0x2, 0x3, 0x4, 0x0, 0x43, 0x5}, {0x4, 0xfff8, 0xaf, 0xf6, 0x6, 0x3d, 0xb9, 0x0, 0x8, 0x0, 0xa, 0x2, 0x10}], 0x9})
234.809µs ago: executing program 7 (id=2524):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180200002343ffff0000000000000000850000004100000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r1, r2, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000000a80)=ANY=[], 0x0)
75.645µs ago: executing program 2 (id=2525):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x6, 0x10, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000c50000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000780)=ANY=[@ANYRES32=r1, @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={r2, 0xe0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000080)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, 0x8, 0x0, 0x0}}, 0x10)
0s ago: executing program 2 (id=2526):
lseek(0xffffffffffffffff, 0xc6c3, 0x0)
ioctl$BINDER_GET_FROZEN_INFO(0xffffffffffffffff, 0xc00c620f, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
gettid()
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f00000001c0)="f3420fc7fdc443e9789c5e0b00000005c4027d79c9c4827918d766400f6eb358000000c4a2c1910cf2c4e3dd0be409430f060f21dc66baa000b002ee", 0x3c}], 0x1, 0x48, 0x0, 0x0)
signalfd4(0xffffffffffffffff, &(0x7f00000004c0)={[0x4]}, 0x8, 0x80800)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
kernel console output (not intermixed with test programs):
16c/0x1f0
[ 204.615457][T12176] should_fail_ex+0x50a/0x650
[ 204.615474][T12176] _copy_from_user+0x2e/0xd0
[ 204.615490][T12176] lo_ioctl+0x385/0x1e20
[ 204.615504][T12176] ? __pfx___lock_acquire+0x10/0x10
[ 204.615521][T12176] ? kasan_save_stack+0x42/0x60
[ 204.615532][T12176] ? kasan_save_stack+0x33/0x60
[ 204.615544][T12176] ? find_held_lock+0x2d/0x110
[ 204.615557][T12176] ? avc_has_extended_perms+0x33f/0x1580
[ 204.615574][T12176] ? __pfx_lo_ioctl+0x10/0x10
[ 204.615586][T12176] ? __pfx_mark_lock+0x10/0x10
[ 204.615601][T12176] ? lock_acquire+0x2f/0xb0
[ 204.615614][T12176] ? avc_has_extended_perms+0x210/0x1580
[ 204.615631][T12176] ? avc_has_extended_perms+0x481/0x1580
[ 204.615650][T12176] ? __pfx_avc_has_extended_perms+0x10/0x10
[ 204.615667][T12176] ? tomoyo_path_number_perm+0x298/0x590
[ 204.615684][T12176] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 204.615701][T12176] ? blkdev_common_ioctl+0x1d0/0x2210
[ 204.615727][T12176] ? __pfx_lock_release+0x10/0x10
[ 204.615744][T12176] ? __pfx_lo_ioctl+0x10/0x10
[ 204.615757][T12176] blkdev_ioctl+0x276/0x6d0
[ 204.615771][T12176] ? __pfx_blkdev_ioctl+0x10/0x10
[ 204.615785][T12176] ? selinux_file_ioctl+0x180/0x270
[ 204.615799][T12176] ? selinux_file_ioctl+0xb4/0x270
[ 204.615814][T12176] ? __pfx_blkdev_ioctl+0x10/0x10
[ 204.615829][T12176] __x64_sys_ioctl+0x190/0x200
[ 204.615845][T12176] do_syscall_64+0xcd/0x250
[ 204.615860][T12176] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 204.615875][T12176] RIP: 0033:0x7f972278d169
[ 204.615884][T12176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 204.615894][T12176] RSP: 002b:00007f97205f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 204.615905][T12176] RAX: ffffffffffffffda RBX: 00007f97229a5fa0 RCX: 00007f972278d169
[ 204.615911][T12176] RDX: 00002000000002c0 RSI: 0000000000004c0a RDI: 0000000000000003
[ 204.615918][T12176] RBP: 00007f97205f6090 R08: 0000000000000000 R09: 0000000000000000
[ 204.615924][T12176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 204.615930][T12176] R13: 0000000000000000 R14: 00007f97229a5fa0 R15: 00007ffc8fef4c58
[ 204.615942][T12176] </TASK>
[ 204.715908][ T10] cdc_ncm 10-1:1.0: bind() failure
[ 204.721023][ T10] cdc_ncm 10-1:1.1: CDC Union missing and no IAD found
[ 204.723113][ T10] cdc_ncm 10-1:1.1: bind() failure
[ 204.727008][ T10] usb 10-1: USB disconnect, device number 20
[ 204.821659][ T40] audit: type=1400 audit(1742887593.266:750): avc: denied { mount } for pid=12178 comm="syz.6.2001" name="/" dev="nfsd" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfsd_fs_t tclass=filesystem permissive=1
[ 204.829164][ T40] audit: type=1400 audit(1742887593.276:751): avc: denied { search } for pid=12178 comm="syz.6.2001" name="/" dev="nfsd" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfsd_fs_t tclass=dir permissive=1
[ 204.836207][ T40] audit: type=1400 audit(1742887593.276:752): avc: denied { read } for pid=12178 comm="syz.6.2001" name="/" dev="nfsd" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfsd_fs_t tclass=dir permissive=1
[ 204.842181][ T40] audit: type=1400 audit(1742887593.276:753): avc: denied { open } for pid=12178 comm="syz.6.2001" path="/" dev="nfsd" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfsd_fs_t tclass=dir permissive=1
[ 204.853535][T12185] input: syz0 as /devices/virtual/input/input15
[ 205.099767][T12196] kvm: Disabled LAPIC found during irq injection
[ 205.209929][T12205] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2009'.
[ 205.212648][T12199] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2009'.
[ 205.247456][T12207] netlink: 'syz.5.2011': attribute type 1 has an invalid length.
[ 205.353346][T12207] 8021q: adding VLAN 0 to HW filter on device bond4
[ 205.359837][T12208] bond4: (slave ip6erspan0): making interface the new active one
[ 205.362959][T12208] bond4: (slave ip6erspan0): Enslaving as an active interface with an up link
[ 205.408011][T12211] sctp: [Deprecated]: syz.5.2013 (pid 12211) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 205.408011][T12211] Use struct sctp_sack_info instead
[ 205.473650][T12214] FAULT_INJECTION: forcing a failure.
[ 205.473650][T12214] name failslab, interval 1, probability 0, space 0, times 0
[ 205.477201][T12214] CPU: 0 UID: 0 PID: 12214 Comm: syz.6.2014 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 205.477215][T12214] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 205.477222][T12214] Call Trace:
[ 205.477226][T12214] <TASK>
[ 205.477230][T12214] dump_stack_lvl+0x16c/0x1f0
[ 205.477249][T12214] should_fail_ex+0x50a/0x650
[ 205.477266][T12214] ? fs_reclaim_acquire+0xae/0x150
[ 205.477290][T12214] ? __list_lru_init+0xe8/0x4c0
[ 205.477309][T12214] should_failslab+0xc2/0x120
[ 205.477327][T12214] __kmalloc_noprof+0xcb/0x510
[ 205.477351][T12214] __list_lru_init+0xe8/0x4c0
[ 205.477371][T12214] alloc_super+0x909/0xbd0
[ 205.477400][T12214] ? __pfx_super_s_dev_test+0x10/0x10
[ 205.477421][T12214] sget_fc+0x116/0xc20
[ 205.477446][T12214] ? __pfx_super_s_dev_set+0x10/0x10
[ 205.477470][T12214] get_tree_bdev_flags+0x1bc/0x620
[ 205.477485][T12214] ? __pfx_isofs_fill_super+0x10/0x10
[ 205.477511][T12214] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 205.477546][T12214] ? bpf_lsm_capable+0x9/0x10
[ 205.477568][T12214] ? security_capable+0x7e/0x260
[ 205.477587][T12214] vfs_get_tree+0x8b/0x340
[ 205.477610][T12214] path_mount+0x14e6/0x1f20
[ 205.477636][T12214] ? kmem_cache_free+0x2e2/0x4d0
[ 205.477653][T12214] ? __pfx_path_mount+0x10/0x10
[ 205.477677][T12214] ? putname+0x154/0x1a0
[ 205.477702][T12214] __x64_sys_mount+0x28f/0x310
[ 205.477722][T12214] ? __pfx___x64_sys_mount+0x10/0x10
[ 205.477751][T12214] do_syscall_64+0xcd/0x250
[ 205.477776][T12214] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 205.477799][T12214] RIP: 0033:0x7f972278d169
[ 205.477813][T12214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 205.477829][T12214] RSP: 002b:00007f97205d5038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 205.477846][T12214] RAX: ffffffffffffffda RBX: 00007f97229a6080 RCX: 00007f972278d169
[ 205.477858][T12214] RDX: 0000200000000080 RSI: 00002000000002c0 RDI: 0000200000000100
[ 205.477870][T12214] RBP: 00007f97205d5090 R08: 0000000000000000 R09: 0000000000000000
[ 205.477880][T12214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 205.477891][T12214] R13: 0000000000000000 R14: 00007f97229a6080 R15: 00007ffc8fef4c58
[ 205.477914][T12214] </TASK>
[ 205.542313][ C0] vkms_vblank_simulate: vblank timer overrun
[ 206.564645][T12245] FAULT_INJECTION: forcing a failure.
[ 206.564645][T12245] name failslab, interval 1, probability 0, space 0, times 0
[ 206.568428][T12245] CPU: 3 UID: 0 PID: 12245 Comm: syz.2.2019 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 206.568443][T12245] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 206.568450][T12245] Call Trace:
[ 206.568453][T12245] <TASK>
[ 206.568457][T12245] dump_stack_lvl+0x16c/0x1f0
[ 206.568476][T12245] should_fail_ex+0x50a/0x650
[ 206.568491][T12245] ? fs_reclaim_acquire+0xae/0x150
[ 206.568507][T12245] ? p9_fcall_init+0x97/0x260
[ 206.568517][T12245] should_failslab+0xc2/0x120
[ 206.568530][T12245] __kmalloc_noprof+0xcb/0x510
[ 206.568541][T12245] ? rcu_is_watching+0x12/0xc0
[ 206.568555][T12245] p9_fcall_init+0x97/0x260
[ 206.568567][T12245] p9_tag_alloc+0x21c/0x660
[ 206.568580][T12245] ? __pfx_p9_tag_alloc+0x10/0x10
[ 206.568590][T12245] ? stack_trace_save+0x95/0xd0
[ 206.568603][T12245] ? hlock_class+0x4e/0x130
[ 206.568614][T12245] ? stack_depot_save_flags+0x28/0x9c0
[ 206.568631][T12245] p9_client_prepare_req+0x19f/0x4d0
[ 206.568644][T12245] ? __pfx_p9_client_prepare_req+0x10/0x10
[ 206.568656][T12245] ? path_lookupat+0x289/0x770
[ 206.568672][T12245] ? __x64_sys_chown+0x7b/0xc0
[ 206.568685][T12245] ? do_syscall_64+0xcd/0x250
[ 206.568698][T12245] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 206.568717][T12245] p9_client_rpc+0x1c3/0xc50
[ 206.568730][T12245] ? __pfx_p9_client_rpc+0x10/0x10
[ 206.568751][T12245] p9_client_stat+0x103/0x250
[ 206.568763][T12245] ? __pfx_p9_client_stat+0x10/0x10
[ 206.568775][T12245] ? _raw_spin_unlock+0x28/0x50
[ 206.568786][T12245] ? v9fs_fid_find+0x20f/0x360
[ 206.568800][T12245] ? __pfx_v9fs_fid_find+0x10/0x10
[ 206.568813][T12245] v9fs_refresh_inode+0xba/0x240
[ 206.568829][T12245] ? __pfx_v9fs_refresh_inode+0x10/0x10
[ 206.568846][T12245] ? v9fs_fid_lookup+0xe9/0xec0
[ 206.568860][T12245] __v9fs_lookup_revalidate+0x181/0x2b0
[ 206.568873][T12245] complete_walk+0x25f/0x330
[ 206.568892][T12245] path_lookupat+0x289/0x770
[ 206.568917][T12245] filename_lookup+0x224/0x600
[ 206.568929][T12245] ? __pfx_filename_lookup+0x10/0x10
[ 206.568949][T12245] ? getname_flags.part.0+0x1c2/0x540
[ 206.568965][T12245] user_path_at+0x3a/0x60
[ 206.568976][T12245] do_fchownat+0xfa/0x200
[ 206.568994][T12245] ? __pfx_do_fchownat+0x10/0x10
[ 206.569011][T12245] ? ksys_write+0x1ba/0x250
[ 206.569021][T12245] ? __pfx_ksys_write+0x10/0x10
[ 206.569033][T12245] __x64_sys_chown+0x7b/0xc0
[ 206.569044][T12245] ? lockdep_hardirqs_on+0x7c/0x110
[ 206.569057][T12245] do_syscall_64+0xcd/0x250
[ 206.569071][T12245] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 206.569086][T12245] RIP: 0033:0x7f890c18d169
[ 206.569095][T12245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 206.569105][T12245] RSP: 002b:00007f890cf01038 EFLAGS: 00000246 ORIG_RAX: 000000000000005c
[ 206.569116][T12245] RAX: ffffffffffffffda RBX: 00007f890c3a5fa0 RCX: 00007f890c18d169
[ 206.569122][T12245] RDX: 0000000000000000 RSI: 000000000000ee00 RDI: 0000200000000240
[ 206.569128][T12245] RBP: 00007f890cf01090 R08: 0000000000000000 R09: 0000000000000000
[ 206.569134][T12245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 206.569140][T12245] R13: 0000000000000000 R14: 00007f890c3a5fa0 R15: 00007ffd7320f668
[ 206.569153][T12245] </TASK>
[ 206.649429][ T5293] Bluetooth: hci1: ACL packet for unknown connection handle 201
[ 207.387037][T12250] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2022'.
[ 207.514460][T12260] FAULT_INJECTION: forcing a failure.
[ 207.514460][T12260] name failslab, interval 1, probability 0, space 0, times 0
[ 207.519049][T12260] CPU: 1 UID: 0 PID: 12260 Comm: syz.0.2025 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 207.519066][T12260] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 207.519073][T12260] Call Trace:
[ 207.519077][T12260] <TASK>
[ 207.519082][T12260] dump_stack_lvl+0x16c/0x1f0
[ 207.519101][T12260] should_fail_ex+0x50a/0x650
[ 207.519117][T12260] ? fs_reclaim_acquire+0xae/0x150
[ 207.519134][T12260] should_failslab+0xc2/0x120
[ 207.519148][T12260] kmem_cache_alloc_noprof+0x6e/0x3d0
[ 207.519159][T12260] ? __kvm_mmu_topup_memory_cache+0x451/0x600
[ 207.519176][T12260] ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[ 207.519193][T12260] __kvm_mmu_topup_memory_cache+0x18f/0x600
[ 207.519211][T12260] mmu_topup_memory_caches+0x25/0x170
[ 207.519225][T12260] kvm_mmu_load+0xda/0x22a0
[ 207.519238][T12260] ? kvm_apic_has_interrupt+0xb6/0x190
[ 207.519254][T12260] ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[ 207.519270][T12260] ? kvm_guest_time_update+0x71e/0xeb0
[ 207.519283][T12260] ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[ 207.519297][T12260] ? __pfx_kvm_mmu_load+0x10/0x10
[ 207.519309][T12260] ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[ 207.519324][T12260] ? kvm_check_and_inject_events+0x725/0x12e0
[ 207.519336][T12260] ? x86_decode_emulated_instruction+0xa1/0xb0
[ 207.519351][T12260] vcpu_run+0x2e8b/0x4cc0
[ 207.519367][T12260] ? __pfx_vcpu_run+0x10/0x10
[ 207.519378][T12260] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 207.519393][T12260] ? rcu_is_watching+0x12/0xc0
[ 207.519405][T12260] ? trace_lock_acquire+0x14e/0x1f0
[ 207.519416][T12260] ? __local_bh_enable_ip+0xa4/0x120
[ 207.519432][T12260] ? lockdep_hardirqs_on+0x7c/0x110
[ 207.519445][T12260] ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[ 207.519460][T12260] ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[ 207.519472][T12260] kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[ 207.519488][T12260] kvm_vcpu_ioctl+0x5ea/0x1680
[ 207.519502][T12260] ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 207.519517][T12260] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[ 207.519539][T12260] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 207.519556][T12260] ? __pfx_lock_release+0x10/0x10
[ 207.519575][T12260] ? selinux_file_ioctl+0x180/0x270
[ 207.519589][T12260] ? selinux_file_ioctl+0xb4/0x270
[ 207.519603][T12260] ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 207.519616][T12260] __x64_sys_ioctl+0x190/0x200
[ 207.519632][T12260] do_syscall_64+0xcd/0x250
[ 207.519647][T12260] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 207.519662][T12260] RIP: 0033:0x7f5211b8d169
[ 207.519671][T12260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 207.519681][T12260] RSP: 002b:00007f5212998038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 207.519691][T12260] RAX: ffffffffffffffda RBX: 00007f5211da5fa0 RCX: 00007f5211b8d169
[ 207.519698][T12260] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[ 207.519704][T12260] RBP: 00007f5212998090 R08: 0000000000000000 R09: 0000000000000000
[ 207.519710][T12260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 207.519716][T12260] R13: 0000000000000000 R14: 00007f5211da5fa0 R15: 00007ffce5ecb728
[ 207.519728][T12260] </TASK>
[ 207.757848][T12263] sctp: [Deprecated]: syz.6.2026 (pid 12263) Use of int in maxseg socket option.
[ 207.757848][T12263] Use struct sctp_assoc_value instead
[ 207.845175][ T40] audit: type=1400 audit(1742887596.286:754): avc: denied { create } for pid=12267 comm="syz.5.2028" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[ 208.323365][ T40] audit: type=1400 audit(1742887596.766:755): avc: denied { create } for pid=12274 comm="syz.0.2031" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[ 208.328894][ T40] audit: type=1400 audit(1742887596.776:756): avc: denied { getopt } for pid=12274 comm="syz.0.2031" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[ 208.366075][T12277] syz.0.2032: vmalloc error: size 8192, failed to allocate pages, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 208.370567][T12277] CPU: 1 UID: 0 PID: 12277 Comm: syz.0.2032 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 208.370581][T12277] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 208.370587][T12277] Call Trace:
[ 208.370591][T12277] <TASK>
[ 208.370596][T12277] dump_stack_lvl+0x16c/0x1f0
[ 208.370614][T12277] warn_alloc+0x24d/0x3a0
[ 208.370627][T12277] ? __pfx_warn_alloc+0x10/0x10
[ 208.370639][T12277] ? alloc_pages_mpol+0x25b/0x540
[ 208.370652][T12277] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 208.370665][T12277] ? trace_kmalloc+0x2d/0xd0
[ 208.370682][T12277] __vmalloc_node_range_noprof+0x12bd/0x1530
[ 208.370703][T12277] ? vhost_task_create+0x1d3/0x2e0
[ 208.370721][T12277] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 208.370738][T12277] ? rcu_is_watching+0x12/0xc0
[ 208.370750][T12277] ? trace_kmem_cache_alloc+0x2d/0xd0
[ 208.370764][T12277] ? kmem_cache_alloc_node_noprof+0x272/0x3c0
[ 208.370775][T12277] ? mark_held_locks+0x9f/0xe0
[ 208.370789][T12277] ? copy_process+0x4be/0x8c30
[ 208.370799][T12277] ? vhost_task_create+0x1d3/0x2e0
[ 208.370812][T12277] copy_process+0x2ef2/0x8c30
[ 208.370822][T12277] ? vhost_task_create+0x1d3/0x2e0
[ 208.370834][T12277] ? kasan_save_stack+0x33/0x60
[ 208.370844][T12277] ? kasan_save_track+0x14/0x30
[ 208.370854][T12277] ? __kasan_kmalloc+0xaa/0xb0
[ 208.370863][T12277] ? vhost_task_create+0xe6/0x2e0
[ 208.370875][T12277] ? kvm_mmu_post_init_vm+0x1b7/0x370
[ 208.370888][T12277] ? kvm_arch_vcpu_ioctl_run+0x66/0x17f0
[ 208.370900][T12277] ? kvm_vcpu_ioctl+0x5ea/0x1680
[ 208.370911][T12277] ? __x64_sys_ioctl+0x190/0x200
[ 208.370925][T12277] ? do_syscall_64+0xcd/0x250
[ 208.370939][T12277] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 208.370960][T12277] ? __pfx_copy_process+0x10/0x10
[ 208.370977][T12277] ? lockdep_init_map_type+0x16d/0x7d0
[ 208.370992][T12277] ? __raw_spin_lock_init+0x3a/0x110
[ 208.371003][T12277] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[ 208.371019][T12277] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[ 208.371038][T12277] vhost_task_create+0x1d3/0x2e0
[ 208.371051][T12277] ? __pfx_vhost_task_create+0x10/0x10
[ 208.371063][T12277] ? kvm_mmu_post_init_vm+0xb4/0x370
[ 208.371080][T12277] ? __pfx_vhost_task_fn+0x10/0x10
[ 208.371094][T12277] ? lock_acquire.part.0+0x11b/0x380
[ 208.371108][T12277] ? find_held_lock+0x2d/0x110
[ 208.371123][T12277] kvm_mmu_post_init_vm+0x1b7/0x370
[ 208.371140][T12277] kvm_arch_vcpu_ioctl_run+0x66/0x17f0
[ 208.371152][T12277] ? lock_acquire+0x2f/0xb0
[ 208.371166][T12277] ? kvm_vcpu_ioctl+0x149a/0x1680
[ 208.371181][T12277] kvm_vcpu_ioctl+0x5ea/0x1680
[ 208.371194][T12277] ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 208.371211][T12277] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[ 208.371227][T12277] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 208.371244][T12277] ? __pfx_lock_release+0x10/0x10
[ 208.371264][T12277] ? selinux_file_ioctl+0x180/0x270
[ 208.371281][T12277] ? selinux_file_ioctl+0xb4/0x270
[ 208.371296][T12277] ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 208.371309][T12277] __x64_sys_ioctl+0x190/0x200
[ 208.371325][T12277] do_syscall_64+0xcd/0x250
[ 208.371339][T12277] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 208.371353][T12277] RIP: 0033:0x7f5211b8d169
[ 208.371362][T12277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 208.371372][T12277] RSP: 002b:00007f5212998038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 208.371382][T12277] RAX: ffffffffffffffda RBX: 00007f5211da5fa0 RCX: 00007f5211b8d169
[ 208.371388][T12277] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[ 208.371394][T12277] RBP: 00007f5212998090 R08: 0000000000000000 R09: 0000000000000000
[ 208.371400][T12277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 208.371406][T12277] R13: 0000000000000000 R14: 00007f5211da5fa0 R15: 00007ffce5ecb728
[ 208.371419][T12277] </TASK>
[ 208.371423][T12277] Mem-Info:
[ 208.479057][T12277] active_anon:7575 inactive_anon:0 isolated_anon:0
[ 208.479057][T12277] active_file:8922 inactive_file:48773 isolated_file:0
[ 208.479057][T12277] unevictable:1784 dirty:125 writeback:0
[ 208.479057][T12277] slab_reclaimable:12353 slab_unreclaimable:80643
[ 208.479057][T12277] mapped:25841 shmem:3007 pagetables:1256
[ 208.479057][T12277] sec_pagetables:305 bounce:0
[ 208.479057][T12277] kernel_misc_reclaimable:0
[ 208.479057][T12277] free:448811 free_pcp:4529 free_cma:0
[ 208.493305][T12277] Node 0 active_anon:30300kB inactive_anon:0kB active_file:31700kB inactive_file:179920kB unevictable:3600kB isolated(anon):0kB isolated(file):0kB mapped:102288kB dirty:500kB writeback:0kB shmem:8492kB shmem_thp:2048kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13168kB pagetables:5024kB sec_pagetables:1220kB all_unreclaimable? no
[ 208.503016][T12277] Node 1 active_anon:0kB inactive_anon:0kB active_file:3988kB inactive_file:15172kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:1076kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:112kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 208.511828][T12277] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 208.519136][T12277] lowmem_reserve[]: 0 1240 1240 1240 1240
[ 208.520763][T12277] Node 0 DMA32 free:226904kB boost:0kB min:27608kB low:34508kB high:41408kB reserved_highatomic:0KB active_anon:30300kB inactive_anon:0kB active_file:31700kB inactive_file:179920kB unevictable:3600kB writepending:500kB present:2080628kB managed:1270112kB mlocked:64kB bounce:0kB free_pcp:3172kB local_pcp:1280kB free_cma:0kB
[ 208.529662][T12277] lowmem_reserve[]: 0 0 0 0 0
[ 208.531061][T12277] Node 1 Normal free:1553616kB boost:0kB min:39632kB low:49540kB high:59448kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:3988kB inactive_file:15172kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:15080kB local_pcp:0kB free_cma:0kB
[ 208.540348][T12277] lowmem_reserve[]: 0 0 0 0 0
[ 208.542372][T12277] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 208.547212][T12277] Node 0 DMA32: 231*4kB (UM) 363*8kB (UME) 301*16kB (UME) 559*32kB (UME) 319*64kB (UME) 142*128kB (UME) 57*256kB (UME) 26*512kB (UM) 27*1024kB (UME) 16*2048kB (UME) 18*4096kB (M) = 227172kB
[ 208.554022][T12277] Node 1 Normal: 154*4kB (UME) 229*8kB (UME) 324*16kB (UME) 250*32kB (UME) 75*64kB (UME) 28*128kB (UME) 22*256kB (UME) 9*512kB (UM) 8*1024kB (ME) 2*2048kB (M) 368*4096kB (UM) = 1553872kB
[ 208.561126][T12277] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 208.564877][T12277] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[ 208.568128][T12277] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 208.570911][T12277] Node 1 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[ 208.573684][T12277] 60702 total pagecache pages
[ 208.575579][T12277] 0 pages in swap cache
[ 208.576864][T12277] Free swap = 124428kB
[ 208.578155][T12277] Total swap = 124996kB
[ 208.579425][T12277] 1048443 pages RAM
[ 208.580556][T12277] 0 pages HighMem/MovableOnly
[ 208.581951][T12277] 281594 pages reserved
[ 208.583217][T12277] 0 pages cma reserved
[ 208.928363][ T5942] usb 11-1: new full-speed USB device number 12 using dummy_hcd
[ 209.066726][ T40] audit: type=1400 audit(1742887597.506:757): avc: denied { connect } for pid=12281 comm="syz.2.2035" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[ 209.074977][ T40] audit: type=1400 audit(1742887597.516:758): avc: denied { map } for pid=12281 comm="syz.2.2035" path="socket:[66755]" dev="sockfs" ino=66755 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[ 209.082909][ T5942] usb 11-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 512, setting to 64
[ 209.083017][ T40] audit: type=1400 audit(1742887597.526:759): avc: denied { map } for pid=12285 comm="syz.0.2034" path="/dev/input/event1" dev="devtmpfs" ino=942 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[ 209.085862][ T5942] usb 11-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 209.088618][ T5942] usb 11-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 209.097726][ T40] audit: type=1400 audit(1742887597.526:760): avc: denied { execute } for pid=12285 comm="syz.0.2034" path="/dev/input/event1" dev="devtmpfs" ino=942 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[ 209.106483][ T5942] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 209.108948][ T5942] usb 11-1: Product: syz
[ 209.110202][ T5942] usb 11-1: Manufacturer: syz
[ 209.111570][ T5942] usb 11-1: SerialNumber: syz
[ 209.114592][T12289] fuse: Bad value for 'rootmode'
[ 209.116858][ T5942] usb 11-1: rejected 1 configuration due to insufficient available bus power
[ 209.119556][ T5942] usb 11-1: no configuration chosen from 1 choice
[ 209.545238][T12298] net_ratelimit: 3 callbacks suppressed
[ 209.545255][T12298] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 209.596613][T12302] FAULT_INJECTION: forcing a failure.
[ 209.596613][T12302] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 209.600238][T12302] CPU: 1 UID: 0 PID: 12302 Comm: syz.5.2040 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 209.600252][T12302] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 209.600259][T12302] Call Trace:
[ 209.600263][T12302] <TASK>
[ 209.600267][T12302] dump_stack_lvl+0x16c/0x1f0
[ 209.600286][T12302] should_fail_ex+0x50a/0x650
[ 209.600300][T12302] ? __pfx___might_resched+0x10/0x10
[ 209.600318][T12302] should_fail_alloc_page+0xe7/0x130
[ 209.600332][T12302] prepare_alloc_pages.constprop.0+0x16f/0x560
[ 209.600348][T12302] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 209.600363][T12302] __alloc_frozen_pages_noprof+0x18e/0x2470
[ 209.600375][T12302] ? unwind_get_return_address+0x59/0xa0
[ 209.600392][T12302] ? arch_stack_walk+0xa7/0x100
[ 209.600405][T12302] ? hlock_class+0x4e/0x130
[ 209.600417][T12302] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 209.600433][T12302] ? __pfx___lock_acquire+0x10/0x10
[ 209.600447][T12302] ? kasan_save_stack+0x42/0x60
[ 209.600457][T12302] ? kasan_save_stack+0x33/0x60
[ 209.600466][T12302] ? kasan_save_track+0x14/0x30
[ 209.600476][T12302] ? __kasan_slab_alloc+0x89/0x90
[ 209.600486][T12302] ? kmem_cache_alloc_node_noprof+0x223/0x3c0
[ 209.600497][T12302] ? alloc_vmap_area+0x636/0x2a60
[ 209.600510][T12302] ? __get_vm_area_node+0x19e/0x2f0
[ 209.600524][T12302] ? __vmalloc_node_range_noprof+0x26a/0x1530
[ 209.600540][T12302] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 209.600558][T12302] ? policy_nodemask+0xea/0x4e0
[ 209.600575][T12302] alloc_pages_mpol+0x1fc/0x540
[ 209.600588][T12302] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 209.600600][T12302] ? __page_table_check_ptes_set+0x16b/0x3e0
[ 209.600612][T12302] ? do_raw_spin_lock+0x12d/0x2c0
[ 209.600622][T12302] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 209.600634][T12302] alloc_pages_noprof+0x131/0x390
[ 209.600646][T12302] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 209.600662][T12302] get_free_pages_noprof+0xc/0x40
[ 209.600675][T12302] kasan_populate_vmalloc_pte+0x2d/0x160
[ 209.600691][T12302] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 209.600708][T12302] __apply_to_page_range+0x5fd/0xd30
[ 209.600726][T12302] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 209.600745][T12302] ? __pfx___apply_to_page_range+0x10/0x10
[ 209.600761][T12302] ? insert_vmap_area+0x2ef/0x4d0
[ 209.600776][T12302] alloc_vmap_area+0x93e/0x2a60
[ 209.600794][T12302] ? __pfx_alloc_vmap_area+0x10/0x10
[ 209.600811][T12302] __get_vm_area_node+0x19e/0x2f0
[ 209.600828][T12302] __vmalloc_node_range_noprof+0x26a/0x1530
[ 209.600844][T12302] ? array_map_alloc+0x27d/0x730
[ 209.600859][T12302] ? avc_has_perm_noaudit+0x143/0x3a0
[ 209.600877][T12302] ? cred_has_capability.isra.0+0x192/0x2f0
[ 209.600890][T12302] ? array_map_alloc+0x27d/0x730
[ 209.600906][T12302] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 209.600923][T12302] ? cap_capable+0xb3/0x250
[ 209.600936][T12302] ? array_map_alloc+0x27d/0x730
[ 209.600948][T12302] __bpf_map_area_alloc+0xea/0x190
[ 209.600960][T12302] ? array_map_alloc+0x27d/0x730
[ 209.600975][T12302] array_map_alloc+0x27d/0x730
[ 209.600990][T12302] map_create+0x5c5/0x1d20
[ 209.601002][T12302] ? __pfx_avc_has_perm+0x10/0x10
[ 209.601016][T12302] ? trace_lock_acquire+0x14e/0x1f0
[ 209.601028][T12302] ? __pfx_map_create+0x10/0x10
[ 209.601038][T12302] ? lock_acquire+0x2f/0xb0
[ 209.601051][T12302] ? __might_fault+0xe3/0x190
[ 209.601064][T12302] ? selinux_bpf+0xde/0x130
[ 209.601080][T12302] __sys_bpf+0x43f9/0x49f0
[ 209.601091][T12302] ? __pfx_lock_release+0x10/0x10
[ 209.601106][T12302] ? __pfx___sys_bpf+0x10/0x10
[ 209.601116][T12302] ? vfs_write+0x306/0x1150
[ 209.601128][T12302] ? __mutex_unlock_slowpath+0x164/0x6a0
[ 209.601149][T12302] ? fput+0x70/0xf0
[ 209.601161][T12302] ? ksys_write+0x1ba/0x250
[ 209.601170][T12302] ? __pfx_ksys_write+0x10/0x10
[ 209.601182][T12302] __x64_sys_bpf+0x78/0xc0
[ 209.601193][T12302] ? lockdep_hardirqs_on+0x7c/0x110
[ 209.601206][T12302] do_syscall_64+0xcd/0x250
[ 209.601221][T12302] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 209.601236][T12302] RIP: 0033:0x7f960838d169
[ 209.601254][T12302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 209.601266][T12302] RSP: 002b:00007f9609240038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 209.601276][T12302] RAX: ffffffffffffffda RBX: 00007f96085a5fa0 RCX: 00007f960838d169
[ 209.601282][T12302] RDX: 0000000000000050 RSI: 0000200000000040 RDI: 0b00000000000000
[ 209.601289][T12302] RBP: 00007f9609240090 R08: 0000000000000000 R09: 0000000000000000
[ 209.601295][T12302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 209.601301][T12302] R13: 0000000000000001 R14: 00007f96085a5fa0 R15: 00007fffb5892dc8
[ 209.601313][T12302] </TASK>
[ 209.943117][T12308] input: syz1 as /devices/virtual/input/input16
[ 210.351754][T12318] netlink: 'syz.2.2047': attribute type 28 has an invalid length.
[ 210.354303][T12318] netlink: 'syz.2.2047': attribute type 3 has an invalid length.
[ 210.356817][T12318] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2047'.
[ 210.366115][T12318] nftables ruleset with unbound set
[ 210.469921][ T40] audit: type=1400 audit(1742887598.916:761): avc: denied { nlmsg_write } for pid=12322 comm="syz.2.2049" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[ 210.487188][T12321] FAULT_INJECTION: forcing a failure.
[ 210.487188][T12321] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 210.489135][T12323] ������ speed is unknown, defaulting to 1000
[ 210.492940][T12321] CPU: 1 UID: 0 PID: 12321 Comm: syz.5.2048 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 210.492959][T12321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 210.492968][T12321] Call Trace:
[ 210.492973][T12321] <TASK>
[ 210.492978][T12321] dump_stack_lvl+0x16c/0x1f0
[ 210.493001][T12321] should_fail_ex+0x50a/0x650
[ 210.493022][T12321] __kvm_read_guest_page+0x16b/0x220
[ 210.493040][T12321] kvm_fetch_guest_virt+0x128/0x1a0
[ 210.493064][T12321] __do_insn_fetch_bytes+0x420/0x6d0
[ 210.493087][T12321] ? __pfx___do_insn_fetch_bytes+0x10/0x10
[ 210.493107][T12321] ? kvm_io_bus_write+0x13a/0x2a0
[ 210.493121][T12321] ? __pfx_kvm_io_bus_write+0x10/0x10
[ 210.493135][T12321] ? __pfx_mark_lock+0x10/0x10
[ 210.493156][T12321] x86_decode_insn+0xb91/0x5530
[ 210.493175][T12321] ? hlock_class+0x4e/0x130
[ 210.493192][T12321] ? vmx_segment_cache_test_set+0x14b/0x400
[ 210.493216][T12321] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 210.493242][T12321] ? __pfx_x86_decode_insn+0x10/0x10
[ 210.493260][T12321] ? vmx_cache_reg+0x333/0x5e0
[ 210.493283][T12321] ? kvm_register_read_raw+0xe9/0x240
[ 210.493306][T12321] ? init_decode_cache+0xd/0x210
[ 210.493324][T12321] ? init_emulate_ctxt+0x338/0x510
[ 210.493340][T12321] ? __pfx_init_emulate_ctxt+0x10/0x10
[ 210.493357][T12321] ? rcu_qs+0x2b/0xe0
[ 210.493373][T12321] ? __pfx_mark_lock+0x10/0x10
[ 210.493392][T12321] ? clear_bhb_loop+0x35/0x90
[ 210.493416][T12321] x86_emulate_instruction+0x9c1/0x1a90
[ 210.493436][T12321] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 210.493461][T12321] handle_io+0x261/0x2b0
[ 210.493481][T12321] ? __pfx_handle_io+0x10/0x10
[ 210.493500][T12321] vmx_handle_exit+0x6a4/0x1a30
[ 210.493527][T12321] vcpu_run+0x2af3/0x4cc0
[ 210.493552][T12321] ? __pfx_vcpu_run+0x10/0x10
[ 210.493568][T12321] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 210.493589][T12321] ? rcu_is_watching+0x12/0xc0
[ 210.493604][T12321] ? trace_lock_acquire+0x14e/0x1f0
[ 210.493620][T12321] ? __local_bh_enable_ip+0xa4/0x120
[ 210.493642][T12321] ? lockdep_hardirqs_on+0x7c/0x110
[ 210.493660][T12321] ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[ 210.493683][T12321] ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[ 210.493700][T12321] kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[ 210.493723][T12321] kvm_vcpu_ioctl+0x5ea/0x1680
[ 210.493744][T12321] ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 210.493768][T12321] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[ 210.493791][T12321] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 210.493815][T12321] ? __pfx_lock_release+0x10/0x10
[ 210.493844][T12321] ? selinux_file_ioctl+0x180/0x270
[ 210.493863][T12321] ? selinux_file_ioctl+0xb4/0x270
[ 210.493884][T12321] ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 210.493902][T12321] __x64_sys_ioctl+0x190/0x200
[ 210.493926][T12321] do_syscall_64+0xcd/0x250
[ 210.493947][T12321] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 210.493967][T12321] RIP: 0033:0x7f960838d169
[ 210.493980][T12321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 210.493995][T12321] RSP: 002b:00007f9609240038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 210.494010][T12321] RAX: ffffffffffffffda RBX: 00007f96085a5fa0 RCX: 00007f960838d169
[ 210.494020][T12321] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[ 210.494029][T12321] RBP: 00007f9609240090 R08: 0000000000000000 R09: 0000000000000000
[ 210.494037][T12321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 210.494046][T12321] R13: 0000000000000000 R14: 00007f96085a5fa0 R15: 00007fffb5892dc8
[ 210.494067][T12321] </TASK>
[ 210.739012][T12332] netlink: 'syz.0.2051': attribute type 2 has an invalid length.
[ 210.741649][T12332] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2051'.
[ 210.765364][ T40] audit: type=1400 audit(1742887599.206:762): avc: denied { getopt } for pid=12331 comm="syz.0.2051" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[ 211.287577][ T40] audit: type=1400 audit(1742887599.726:763): avc: denied { setcurrent } for pid=12340 comm="syz.5.2053" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 211.685627][ T5981] usb 11-1: USB disconnect, device number 12
[ 212.151042][ T13] wlan0: Creating new IBSS network, BSSID 92:3a:a2:f8:9a:c8
[ 212.260887][T12359] openvswitch: netlink: push_nsh: missing base or metadata attributes
[ 212.264204][T12359] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 213.133168][T12372] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2062'.
[ 213.174051][T12374] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2063'.
[ 213.187750][T12374] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2063'.
[ 213.195920][ T40] kauditd_printk_skb: 6 callbacks suppressed
[ 213.195930][ T40] audit: type=1400 audit(1742887601.636:770): avc: denied { ioctl } for pid=12373 comm="syz.5.2063" path="/416/file0/net_prio.prioidx" dev="9p" ino=36831582 ioctlcmd=0x6104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 214.145699][T12381] netfs: Couldn't get user pages (rc=-14)
[ 214.156740][T12385] 9pnet_virtio: no channels available for device syz
[ 214.161504][T12385] FAULT_INJECTION: forcing a failure.
[ 214.161504][T12385] name failslab, interval 1, probability 0, space 0, times 0
[ 214.165382][T12385] CPU: 0 UID: 0 PID: 12385 Comm: syz.5.2068 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 214.165396][T12385] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 214.165403][T12385] Call Trace:
[ 214.165406][T12385] <TASK>
[ 214.165411][T12385] dump_stack_lvl+0x116/0x1f0
[ 214.165430][T12385] should_fail_ex+0x50a/0x650
[ 214.165445][T12385] ? trace_lock_acquire+0x14e/0x1f0
[ 214.165459][T12385] should_failslab+0xc2/0x120
[ 214.165472][T12385] kmem_cache_alloc_noprof+0x6e/0x3d0
[ 214.165484][T12385] ? __send_signal_locked+0x159/0x12c0
[ 214.165498][T12385] ? sig_get_ucounts+0x1c0/0x5b0
[ 214.165511][T12385] __send_signal_locked+0x159/0x12c0
[ 214.165527][T12385] force_sig_info_to_task+0x31d/0x660
[ 214.165546][T12385] force_sig_fault+0xc5/0x110
[ 214.165562][T12385] ? __pfx_force_sig_fault+0x10/0x10
[ 214.165577][T12385] ? do_user_addr_fault+0xe50/0x13f0
[ 214.165594][T12385] ? fixup_vdso_exception+0x34b/0x400
[ 214.165610][T12385] do_user_addr_fault+0x1280/0x13f0
[ 214.165627][T12385] exc_page_fault+0x5c/0xc0
[ 214.165640][T12385] asm_exc_page_fault+0x26/0x30
[ 214.165655][T12385] RIP: 0033:0x7f960824d677
[ 214.165664][T12385] Code: 00 00 00 48 89 7c 24 f0 48 89 74 24 e8 48 89 54 24 e0 48 8b 4c 24 f0 48 8b 54 24 e8 48 8b 74 24 e0 8b 41 40 23 81 00 01 00 00 <f3> 0f 6f 06 c1 e0 06 48 01 d0 0f 11 00 f3 0f 6f 4e 10 0f 11 48 10
[ 214.165674][T12385] RSP: 002b:00007f9609240028 EFLAGS: 00010246
[ 214.165683][T12385] RAX: 0000000000000000 RBX: 00007f96085a5fa0 RCX: 00007f960919f000
[ 214.165689][T12385] RDX: 00007f96060f7000 RSI: 0000200000000000 RDI: 00007f960919f000
[ 214.165696][T12385] RBP: 00007f9609240090 R08: 0000000000000000 R09: 0000000000000000
[ 214.165702][T12385] R10: 00007f960919f000 R11: 0000200000000000 R12: 0000000000000001
[ 214.165708][T12385] R13: 0000000000000000 R14: 00007f96085a5fa0 R15: 00007fffb5892dc8
[ 214.165720][T12385] </TASK>
[ 214.214955][ C0] vkms_vblank_simulate: vblank timer overrun
[ 214.259371][T12387] kvm: Disabled LAPIC found during irq injection
[ 214.650540][T12389] loop2: detected capacity change from 0 to 7
[ 214.652648][T12389] Dev loop2: unable to read RDB block 7
[ 214.654161][T12389] loop2: unable to read partition table
[ 214.655790][T12389] loop2: partition table beyond EOD, truncated
[ 214.657503][T12389] loop_reread_partitions: partition scan of loop2 (�被x������� ) failed (rc=-5)
[ 215.043428][T12398] vlan2: entered allmulticast mode
[ 215.045083][T12398] �: entered allmulticast mode
[ 215.046479][T12398] bond_slave_0: entered allmulticast mode
[ 215.048617][T12398] bond_slave_1: entered allmulticast mode
[ 215.117984][T12398] �: left allmulticast mode
[ 215.119689][T12398] bond_slave_0: left allmulticast mode
[ 215.123681][T12398] bond_slave_1: left allmulticast mode
[ 215.142659][T12402] netfs: Couldn't get user pages (rc=-14)
[ 215.212106][T12402] ��: renamed from hsr0 (while UP)
[ 215.335623][T12401] wg2: entered promiscuous mode
[ 215.337170][T12401] wg2: entered allmulticast mode
[ 216.132546][ T40] audit: type=1326 audit(1742887604.576:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 216.144655][ T40] audit: type=1326 audit(1742887604.576:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f890c144777 code=0x7ff00000
[ 216.154860][ T40] audit: type=1326 audit(1742887604.576:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f890c143e87 code=0x7ff00000
[ 216.161982][ T40] audit: type=1326 audit(1742887604.576:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 216.168647][ T40] audit: type=1326 audit(1742887604.576:775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f890c143ee6 code=0x7ff00000
[ 216.174975][ T40] audit: type=1326 audit(1742887604.576:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 216.181741][ T40] audit: type=1326 audit(1742887604.576:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 216.188250][ T40] audit: type=1326 audit(1742887604.576:778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 216.194184][ T40] audit: type=1326 audit(1742887604.576:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 217.114775][T12437] netlink: 'syz.6.2088': attribute type 142 has an invalid length.
[ 217.147939][T12439] netlink: 'syz.6.2088': attribute type 142 has an invalid length.
[ 217.259301][T12447] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2092'.
[ 217.262009][T12447] netlink: 'syz.6.2092': attribute type 30 has an invalid length.
[ 217.266029][T12447] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 217.268469][T12447] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 217.271523][T12447] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 217.274683][T12447] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 217.312084][T12447] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2092'.
[ 217.314564][T12447] netlink: 'syz.6.2092': attribute type 30 has an invalid length.
[ 217.360757][T12451] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2094'.
[ 217.530287][T12449] kvm_pr_unimpl_wrmsr: 9 callbacks suppressed
[ 217.530301][T12449] kvm: kvm [12448]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000
[ 217.553164][T12449] kvm: kvm [12448]: vcpu0, guest rIP: 0x29 Unhandled WRMSR(0xc2) = 0x3fd
[ 217.577737][T12449] kvm: kvm [12448]: vcpu0, guest rIP: 0x29 Unhandled WRMSR(0xc2) = 0x1b25
[ 217.583080][T12449] kvm: kvm [12448]: vcpu0, guest rIP: 0x29 Unhandled WRMSR(0xc2) = 0x595
[ 218.197831][ T40] kauditd_printk_skb: 32829 callbacks suppressed
[ 218.197842][ T40] audit: type=1326 audit(1742887606.636:33609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 218.205406][ T40] audit: type=1326 audit(1742887606.646:33611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 218.213145][ T40] audit: type=1326 audit(1742887606.646:33612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 218.220078][ T40] audit: type=1326 audit(1742887606.646:33613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 218.225941][ T40] audit: type=1326 audit(1742887606.646:33614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 218.233138][ T40] audit: type=1326 audit(1742887606.646:33615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 218.239122][ T40] audit: type=1326 audit(1742887606.646:33616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 218.244871][ T40] audit: type=1326 audit(1742887606.646:33617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 218.250689][ T40] audit: type=1326 audit(1742887606.646:33618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 218.256491][ T40] audit: type=1326 audit(1742887606.646:33619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.2.2081" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890c18d169 code=0x7ff00000
[ 219.073772][T12467] FAULT_INJECTION: forcing a failure.
[ 219.073772][T12467] name failslab, interval 1, probability 0, space 0, times 0
[ 219.077073][T12467] CPU: 0 UID: 0 PID: 12467 Comm: syz.6.2100 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 219.077087][T12467] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 219.077094][T12467] Call Trace:
[ 219.077098][T12467] <TASK>
[ 219.077102][T12467] dump_stack_lvl+0x16c/0x1f0
[ 219.077121][T12467] should_fail_ex+0x50a/0x650
[ 219.077139][T12467] ? fs_reclaim_acquire+0xae/0x150
[ 219.077156][T12467] should_failslab+0xc2/0x120
[ 219.077168][T12467] kmem_cache_alloc_noprof+0x6e/0x3d0
[ 219.077179][T12467] ? __kvm_mmu_topup_memory_cache+0x451/0x600
[ 219.077195][T12467] ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[ 219.077211][T12467] __kvm_mmu_topup_memory_cache+0x18f/0x600
[ 219.077229][T12467] mmu_topup_memory_caches+0x25/0x170
[ 219.077243][T12467] kvm_mmu_load+0xda/0x22a0
[ 219.077255][T12467] ? kvm_apic_has_interrupt+0xb6/0x190
[ 219.077272][T12467] ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[ 219.077288][T12467] ? kvm_guest_time_update+0x71e/0xeb0
[ 219.077301][T12467] ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[ 219.077315][T12467] ? __pfx_kvm_mmu_load+0x10/0x10
[ 219.077327][T12467] ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[ 219.077343][T12467] ? kvm_check_and_inject_events+0x725/0x12e0
[ 219.077355][T12467] ? x86_decode_emulated_instruction+0xa1/0xb0
[ 219.077369][T12467] vcpu_run+0x2e8b/0x4cc0
[ 219.077386][T12467] ? __pfx_vcpu_run+0x10/0x10
[ 219.077396][T12467] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 219.077413][T12467] ? rcu_is_watching+0x12/0xc0
[ 219.077425][T12467] ? trace_lock_acquire+0x14e/0x1f0
[ 219.077436][T12467] ? __local_bh_enable_ip+0xa4/0x120
[ 219.077452][T12467] ? lockdep_hardirqs_on+0x7c/0x110
[ 219.077465][T12467] ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[ 219.077480][T12467] ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[ 219.077493][T12467] kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[ 219.077508][T12467] kvm_vcpu_ioctl+0x5ea/0x1680
[ 219.077522][T12467] ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 219.077549][T12467] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[ 219.077567][T12467] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 219.077584][T12467] ? __pfx_lock_release+0x10/0x10
[ 219.077603][T12467] ? selinux_file_ioctl+0x180/0x270
[ 219.077617][T12467] ? selinux_file_ioctl+0xb4/0x270
[ 219.077632][T12467] ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 219.077645][T12467] __x64_sys_ioctl+0x190/0x200
[ 219.077661][T12467] do_syscall_64+0xcd/0x250
[ 219.077676][T12467] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 219.077690][T12467] RIP: 0033:0x7f972278d169
[ 219.077699][T12467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 219.077709][T12467] RSP: 002b:00007f97205f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 219.077719][T12467] RAX: ffffffffffffffda RBX: 00007f97229a5fa0 RCX: 00007f972278d169
[ 219.077726][T12467] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[ 219.077732][T12467] RBP: 00007f97205f6090 R08: 0000000000000000 R09: 0000000000000000
[ 219.077737][T12467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 219.077743][T12467] R13: 0000000000000000 R14: 00007f97229a5fa0 R15: 00007ffc8fef4c58
[ 219.077756][T12467] </TASK>
[ 219.228937][T12465] FAULT_INJECTION: forcing a failure.
[ 219.228937][T12465] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 219.232344][T12465] CPU: 1 UID: 0 PID: 12465 Comm: syz.0.2099 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 219.232358][T12465] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 219.232364][T12465] Call Trace:
[ 219.232367][T12465] <TASK>
[ 219.232371][T12465] dump_stack_lvl+0x16c/0x1f0
[ 219.232389][T12465] should_fail_ex+0x50a/0x650
[ 219.232403][T12465] ? __pfx___might_resched+0x10/0x10
[ 219.232422][T12465] should_fail_alloc_page+0xe7/0x130
[ 219.232436][T12465] prepare_alloc_pages.constprop.0+0x16f/0x560
[ 219.232454][T12465] __alloc_frozen_pages_noprof+0x18e/0x2470
[ 219.232467][T12465] ? lock_acquire+0x2f/0xb0
[ 219.232481][T12465] ? mlock_drain_local+0x6f/0x4f0
[ 219.232497][T12465] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 219.232513][T12465] ? find_held_lock+0x2d/0x110
[ 219.232526][T12465] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 219.232544][T12465] ? policy_nodemask+0xea/0x4e0
[ 219.232557][T12465] alloc_pages_mpol+0x1fc/0x540
[ 219.232569][T12465] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 219.232585][T12465] folio_alloc_mpol_noprof+0x36/0x2f0
[ 219.232600][T12465] alloc_migration_target_by_mpol+0x247/0x490
[ 219.232616][T12465] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[ 219.232630][T12465] ? __pfx_folio_lock_anon_vma_read+0x10/0x10
[ 219.232642][T12465] ? __pfx___might_resched+0x10/0x10
[ 219.232657][T12465] ? folio_get_anon_vma+0xdd/0x760
[ 219.232669][T12465] migrate_pages_batch+0x3c0/0x3150
[ 219.232684][T12465] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[ 219.232703][T12465] ? __pfx_migrate_pages_batch+0x10/0x10
[ 219.232719][T12465] ? __pfx_walk_pgd_range+0x10/0x10
[ 219.232733][T12465] migrate_pages_sync+0x131/0x910
[ 219.232747][T12465] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[ 219.232764][T12465] ? queue_pages_test_walk+0x279/0x410
[ 219.232777][T12465] ? __pfx_migrate_pages_sync+0x10/0x10
[ 219.232796][T12465] migrate_pages+0x1acf/0x2290
[ 219.232811][T12465] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[ 219.232829][T12465] ? __pfx_migrate_pages+0x10/0x10
[ 219.232842][T12465] ? do_mbind+0x4e4/0xed0
[ 219.232855][T12465] ? __pfx_lock_release+0x10/0x10
[ 219.232874][T12465] ? up_write+0x1b2/0x520
[ 219.232891][T12465] do_mbind+0x6c0/0xed0
[ 219.232908][T12465] ? __pfx_do_mbind+0x10/0x10
[ 219.232922][T12465] ? vfs_write+0x306/0x1150
[ 219.232934][T12465] ? __mutex_unlock_slowpath+0x164/0x6a0
[ 219.232951][T12465] ? __pfx_get_nodes+0x10/0x10
[ 219.232963][T12465] ? __fget_files+0x20e/0x3b0
[ 219.232975][T12465] kernel_mbind+0x1e8/0x200
[ 219.232990][T12465] ? __pfx_kernel_mbind+0x10/0x10
[ 219.233008][T12465] do_syscall_64+0xcd/0x250
[ 219.233023][T12465] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 219.233037][T12465] RIP: 0033:0x7f5211b8d169
[ 219.233046][T12465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 219.233057][T12465] RSP: 002b:00007f5212998038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[ 219.233067][T12465] RAX: ffffffffffffffda RBX: 00007f5211da5fa0 RCX: 00007f5211b8d169
[ 219.233073][T12465] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000001000
[ 219.233079][T12465] RBP: 00007f5212998090 R08: 0000000000020000 R09: 0000000000000002
[ 219.233085][T12465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 219.233091][T12465] R13: 0000000000000000 R14: 00007f5211da5fa0 R15: 00007ffce5ecb728
[ 219.233103][T12465] </TASK>
[ 219.872840][T12478] bridge: RTM_NEWNEIGH with invalid ether address
[ 220.023304][T12488] FAULT_INJECTION: forcing a failure.
[ 220.023304][T12488] name failslab, interval 1, probability 0, space 0, times 0
[ 220.027176][T12488] CPU: 0 UID: 0 PID: 12488 Comm: syz.6.2108 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 220.027190][T12488] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 220.027197][T12488] Call Trace:
[ 220.027201][T12488] <TASK>
[ 220.027205][T12488] dump_stack_lvl+0x16c/0x1f0
[ 220.027223][T12488] should_fail_ex+0x50a/0x650
[ 220.027238][T12488] ? fs_reclaim_acquire+0xae/0x150
[ 220.027254][T12488] should_failslab+0xc2/0x120
[ 220.027268][T12488] kmem_cache_alloc_noprof+0x6e/0x3d0
[ 220.027278][T12488] ? __kvm_mmu_topup_memory_cache+0x451/0x600
[ 220.027294][T12488] ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[ 220.027310][T12488] __kvm_mmu_topup_memory_cache+0x18f/0x600
[ 220.027329][T12488] mmu_topup_memory_caches+0x25/0x170
[ 220.027343][T12488] kvm_mmu_load+0xda/0x22a0
[ 220.027355][T12488] ? kvm_apic_has_interrupt+0xb6/0x190
[ 220.027372][T12488] ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[ 220.027388][T12488] ? kvm_guest_time_update+0x71e/0xeb0
[ 220.027401][T12488] ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[ 220.027415][T12488] ? __pfx_kvm_mmu_load+0x10/0x10
[ 220.027427][T12488] ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[ 220.027442][T12488] ? kvm_check_and_inject_events+0x725/0x12e0
[ 220.027454][T12488] ? x86_decode_emulated_instruction+0xa1/0xb0
[ 220.027469][T12488] vcpu_run+0x2e8b/0x4cc0
[ 220.027489][T12488] ? __pfx_vcpu_run+0x10/0x10
[ 220.027500][T12488] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 220.027516][T12488] ? rcu_is_watching+0x12/0xc0
[ 220.027537][T12488] ? trace_lock_acquire+0x14e/0x1f0
[ 220.027551][T12488] ? __local_bh_enable_ip+0xa4/0x120
[ 220.027566][T12488] ? lockdep_hardirqs_on+0x7c/0x110
[ 220.027579][T12488] ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[ 220.027594][T12488] ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[ 220.027607][T12488] kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[ 220.027622][T12488] kvm_vcpu_ioctl+0x5ea/0x1680
[ 220.027636][T12488] ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 220.027652][T12488] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[ 220.027668][T12488] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 220.027685][T12488] ? __pfx_lock_release+0x10/0x10
[ 220.027705][T12488] ? selinux_file_ioctl+0x180/0x270
[ 220.027718][T12488] ? selinux_file_ioctl+0xb4/0x270
[ 220.027732][T12488] ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 220.027745][T12488] __x64_sys_ioctl+0x190/0x200
[ 220.027762][T12488] do_syscall_64+0xcd/0x250
[ 220.027777][T12488] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 220.027792][T12488] RIP: 0033:0x7f972278d169
[ 220.027801][T12488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 220.027811][T12488] RSP: 002b:00007f97205f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 220.027822][T12488] RAX: ffffffffffffffda RBX: 00007f97229a5fa0 RCX: 00007f972278d169
[ 220.027828][T12488] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[ 220.027834][T12488] RBP: 00007f97205f6090 R08: 0000000000000000 R09: 0000000000000000
[ 220.027841][T12488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 220.027847][T12488] R13: 0000000000000000 R14: 00007f97229a5fa0 R15: 00007ffc8fef4c58
[ 220.027859][T12488] </TASK>
[ 220.243815][T12493] usb usb9: check_ctrlrecip: process 12493 (syz.0.2111) requesting ep 01 but needs 81
[ 220.247268][T12493] usb usb9: usbfs: process 12493 (syz.0.2111) did not claim interface 0 before use
[ 220.709771][T12502] FAULT_INJECTION: forcing a failure.
[ 220.709771][T12502] name failslab, interval 1, probability 0, space 0, times 0
[ 220.713650][T12502] CPU: 2 UID: 0 PID: 12502 Comm: syz.6.2114 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 220.713670][T12502] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 220.713679][T12502] Call Trace:
[ 220.713685][T12502] <TASK>
[ 220.713692][T12502] dump_stack_lvl+0x16c/0x1f0
[ 220.713717][T12502] should_fail_ex+0x50a/0x650
[ 220.713737][T12502] ? fs_reclaim_acquire+0xae/0x150
[ 220.713762][T12502] ? nf_tables_addchain.constprop.0+0x2e2/0x1ab0
[ 220.713779][T12502] should_failslab+0xc2/0x120
[ 220.713800][T12502] __kmalloc_cache_noprof+0x68/0x410
[ 220.713824][T12502] ? find_held_lock+0x2d/0x110
[ 220.713845][T12502] nf_tables_addchain.constprop.0+0x2e2/0x1ab0
[ 220.713867][T12502] ? lock_acquire+0x2f/0xb0
[ 220.713887][T12502] ? nft_chain_lookup+0x101/0x3e0
[ 220.713909][T12502] ? __pfx_nf_tables_addchain.constprop.0+0x10/0x10
[ 220.713927][T12502] ? __pfx_nft_chain_lookup+0x10/0x10
[ 220.713964][T12502] ? nla_strcmp+0xff/0x130
[ 220.713988][T12502] ? nft_table_lookup.part.0+0x1e3/0x230
[ 220.714007][T12502] nf_tables_newchain+0x1cc4/0x27f0
[ 220.714029][T12502] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 220.714055][T12502] ? __nla_validate_parse+0x521/0x2880
[ 220.714076][T12502] ? __pfx_nf_tables_newchain+0x10/0x10
[ 220.714088][T12502] ? __pfx___nla_validate_parse+0x10/0x10
[ 220.714105][T12502] ? net_generic+0xea/0x2a0
[ 220.714118][T12502] ? __pfx_lock_release+0x10/0x10
[ 220.714137][T12502] ? __nla_parse+0x40/0x60
[ 220.714156][T12502] nfnetlink_rcv_batch+0x1a2a/0x24e0
[ 220.714178][T12502] ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[ 220.714197][T12502] ? avc_has_perm_noaudit+0x119/0x3a0
[ 220.714219][T12502] ? avc_has_perm_noaudit+0x143/0x3a0
[ 220.714247][T12502] ? __nla_parse+0x40/0x60
[ 220.714264][T12502] nfnetlink_rcv+0x3c3/0x430
[ 220.714279][T12502] ? __pfx_nfnetlink_rcv+0x10/0x10
[ 220.714296][T12502] netlink_unicast+0x53c/0x7f0
[ 220.714311][T12502] ? __pfx_netlink_unicast+0x10/0x10
[ 220.714328][T12502] netlink_sendmsg+0x8cb/0xd70
[ 220.714343][T12502] ? __pfx_netlink_sendmsg+0x10/0x10
[ 220.714355][T12502] ? __import_iovec+0x1cd/0x660
[ 220.714376][T12502] ____sys_sendmsg+0xa87/0xc70
[ 220.714410][T12502] ? copy_msghdr_from_user+0x10b/0x160
[ 220.714431][T12502] ? __pfx_____sys_sendmsg+0x10/0x10
[ 220.714447][T12502] ___sys_sendmsg+0x135/0x1e0
[ 220.714461][T12502] ? __pfx____sys_sendmsg+0x10/0x10
[ 220.714480][T12502] ? __pfx_lock_release+0x10/0x10
[ 220.714494][T12502] ? trace_lock_acquire+0x14e/0x1f0
[ 220.714510][T12502] ? __fget_files+0x20e/0x3b0
[ 220.714524][T12502] __sys_sendmsg+0x16e/0x220
[ 220.714538][T12502] ? __pfx___sys_sendmsg+0x10/0x10
[ 220.714560][T12502] do_syscall_64+0xcd/0x250
[ 220.714575][T12502] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 220.714590][T12502] RIP: 0033:0x7f972278d169
[ 220.714599][T12502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 220.714609][T12502] RSP: 002b:00007f97205f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 220.714620][T12502] RAX: ffffffffffffffda RBX: 00007f97229a5fa0 RCX: 00007f972278d169
[ 220.714626][T12502] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[ 220.714632][T12502] RBP: 00007f97205f6090 R08: 0000000000000000 R09: 0000000000000000
[ 220.714638][T12502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 220.714644][T12502] R13: 0000000000000000 R14: 00007f97229a5fa0 R15: 00007ffc8fef4c58
[ 220.714656][T12502] </TASK>
[ 221.551985][T12529] 9pnet_fd: Insufficient options for proto=fd
[ 221.751897][T12544] warn_alloc: 1 callbacks suppressed
[ 221.751907][T12544] syz.0.2130: vmalloc error: size 8192, failed to allocate pages, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 221.758183][T12544] CPU: 0 UID: 0 PID: 12544 Comm: syz.0.2130 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 221.758197][T12544] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 221.758204][T12544] Call Trace:
[ 221.758207][T12544] <TASK>
[ 221.758211][T12544] dump_stack_lvl+0x16c/0x1f0
[ 221.758229][T12544] warn_alloc+0x24d/0x3a0
[ 221.758241][T12544] ? __pfx_warn_alloc+0x10/0x10
[ 221.758253][T12544] ? alloc_pages_mpol+0x25b/0x540
[ 221.758266][T12544] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 221.758280][T12544] ? trace_kmalloc+0x2d/0xd0
[ 221.758297][T12544] __vmalloc_node_range_noprof+0x12bd/0x1530
[ 221.758318][T12544] ? vhost_task_create+0x1d3/0x2e0
[ 221.758334][T12544] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 221.758351][T12544] ? rcu_is_watching+0x12/0xc0
[ 221.758363][T12544] ? trace_kmem_cache_alloc+0x2d/0xd0
[ 221.758377][T12544] ? kmem_cache_alloc_node_noprof+0x272/0x3c0
[ 221.758410][T12544] ? mark_held_locks+0x9f/0xe0
[ 221.758425][T12544] ? copy_process+0x4be/0x8c30
[ 221.758436][T12544] ? vhost_task_create+0x1d3/0x2e0
[ 221.758449][T12544] copy_process+0x2ef2/0x8c30
[ 221.758459][T12544] ? vhost_task_create+0x1d3/0x2e0
[ 221.758471][T12544] ? kasan_save_stack+0x33/0x60
[ 221.758486][T12544] ? kasan_save_track+0x14/0x30
[ 221.758495][T12544] ? __kasan_kmalloc+0xaa/0xb0
[ 221.758504][T12544] ? vhost_task_create+0xe6/0x2e0
[ 221.758517][T12544] ? kvm_mmu_post_init_vm+0x1b7/0x370
[ 221.758530][T12544] ? kvm_arch_vcpu_ioctl_run+0x66/0x17f0
[ 221.758543][T12544] ? kvm_vcpu_ioctl+0x5ea/0x1680
[ 221.758555][T12544] ? __x64_sys_ioctl+0x190/0x200
[ 221.758569][T12544] ? do_syscall_64+0xcd/0x250
[ 221.758583][T12544] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 221.758605][T12544] ? __pfx_copy_process+0x10/0x10
[ 221.758622][T12544] ? lockdep_init_map_type+0x16d/0x7d0
[ 221.758637][T12544] ? __raw_spin_lock_init+0x3a/0x110
[ 221.758648][T12544] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[ 221.758665][T12544] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[ 221.758683][T12544] vhost_task_create+0x1d3/0x2e0
[ 221.758696][T12544] ? __pfx_vhost_task_create+0x10/0x10
[ 221.758709][T12544] ? kvm_mmu_post_init_vm+0xb4/0x370
[ 221.758725][T12544] ? __pfx_vhost_task_fn+0x10/0x10
[ 221.758740][T12544] ? lock_acquire.part.0+0x11b/0x380
[ 221.758754][T12544] ? find_held_lock+0x2d/0x110
[ 221.758769][T12544] kvm_mmu_post_init_vm+0x1b7/0x370
[ 221.758783][T12544] kvm_arch_vcpu_ioctl_run+0x66/0x17f0
[ 221.758795][T12544] ? lock_acquire+0x2f/0xb0
[ 221.758808][T12544] ? kvm_vcpu_ioctl+0x149a/0x1680
[ 221.758823][T12544] kvm_vcpu_ioctl+0x5ea/0x1680
[ 221.758836][T12544] ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 221.758853][T12544] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[ 221.758869][T12544] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 221.758895][T12544] ? __pfx_lock_release+0x10/0x10
[ 221.758918][T12544] ? selinux_file_ioctl+0x180/0x270
[ 221.758931][T12544] ? selinux_file_ioctl+0xb4/0x270
[ 221.758949][T12544] ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 221.758962][T12544] __x64_sys_ioctl+0x190/0x200
[ 221.758978][T12544] do_syscall_64+0xcd/0x250
[ 221.758993][T12544] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 221.759007][T12544] RIP: 0033:0x7f5211b8d169
[ 221.759020][T12544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 221.759031][T12544] RSP: 002b:00007f5212998038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 221.759041][T12544] RAX: ffffffffffffffda RBX: 00007f5211da5fa0 RCX: 00007f5211b8d169
[ 221.759047][T12544] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[ 221.759053][T12544] RBP: 00007f5212998090 R08: 0000000000000000 R09: 0000000000000000
[ 221.759059][T12544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 221.759068][T12544] R13: 0000000000000000 R14: 00007f5211da5fa0 R15: 00007ffce5ecb728
[ 221.759081][T12544] </TASK>
[ 221.759088][T12544] Mem-Info:
[ 221.882992][T12544] active_anon:7611 inactive_anon:0 isolated_anon:0
[ 221.882992][T12544] active_file:7932 inactive_file:48777 isolated_file:0
[ 221.882992][T12544] unevictable:1768 dirty:378 writeback:0
[ 221.882992][T12544] slab_reclaimable:12349 slab_unreclaimable:80435
[ 221.882992][T12544] mapped:25381 shmem:3023 pagetables:1306
[ 221.882992][T12544] sec_pagetables:305 bounce:0
[ 221.882992][T12544] kernel_misc_reclaimable:0
[ 221.882992][T12544] free:449225 free_pcp:4527 free_cma:0
[ 221.897423][T12544] Node 0 active_anon:30444kB inactive_anon:0kB active_file:27740kB inactive_file:179936kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:101440kB dirty:1512kB writeback:0kB shmem:8556kB shmem_thp:2048kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13232kB pagetables:5224kB sec_pagetables:1220kB all_unreclaimable? no
[ 221.914531][T12544] Node 1 active_anon:0kB inactive_anon:0kB active_file:3988kB inactive_file:15172kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:84kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:112kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 221.923725][T12544] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 221.932436][T12544] lowmem_reserve[]: 0 1240 1240 1240 1240
[ 221.934470][T12544] Node 0 DMA32 free:227612kB boost:0kB min:27608kB low:34508kB high:41408kB reserved_highatomic:0KB active_anon:30444kB inactive_anon:0kB active_file:27740kB inactive_file:179936kB unevictable:3536kB writepending:1512kB present:2080628kB managed:1270112kB mlocked:0kB bounce:0kB free_pcp:2184kB local_pcp:448kB free_cma:0kB
[ 221.944404][T12544] lowmem_reserve[]: 0 0 0 0 0
[ 221.946029][T12544] Node 1 Normal free:1553024kB boost:0kB min:39632kB low:49540kB high:59448kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:3988kB inactive_file:15172kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:15648kB local_pcp:0kB free_cma:0kB
[ 221.963677][T12544] lowmem_reserve[]: 0 0 0 0 0
[ 221.965312][T12544] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 221.969977][T12544] Node 0 DMA32: 32*4kB (UME) 327*8kB (UME) 305*16kB (UME) 403*32kB (UME) 359*64kB (UME) 149*128kB (UME) 62*256kB (UME) 21*512kB (UM) 23*1024kB (UME) 19*2048kB (UME) 19*4096kB (UM) = 229480kB
[ 221.975639][T12544] Node 1 Normal: 149*4kB (UME) 200*8kB (UME) 311*16kB (UME) 248*32kB (UME) 84*64kB (UME) 27*128kB (UME) 23*256kB (UME) 9*512kB (UM) 9*1024kB (UME) 1*2048kB (M) 368*4096kB (UM) = 1553028kB
[ 221.981097][T12544] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 221.984260][T12544] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[ 221.987345][T12544] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 221.990847][T12544] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 221.993818][T12544] 59732 total pagecache pages
[ 221.995472][T12544] 0 pages in swap cache
[ 221.996796][T12544] Free swap = 124428kB
[ 221.998045][T12544] Total swap = 124996kB
[ 221.999240][T12544] 1048443 pages RAM
[ 222.000319][T12544] 0 pages HighMem/MovableOnly
[ 222.001679][T12544] 281594 pages reserved
[ 222.002883][T12544] 0 pages cma reserved
[ 222.039125][T12550] syz.2.2132 uses old SIOCAX25GETINFO
[ 222.161917][T12554] FAULT_INJECTION: forcing a failure.
[ 222.161917][T12554] name failslab, interval 1, probability 0, space 0, times 0
[ 222.165311][T12554] CPU: 3 UID: 0 PID: 12554 Comm: syz.2.2133 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 222.165325][T12554] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 222.165332][T12554] Call Trace:
[ 222.165336][T12554] <TASK>
[ 222.165340][T12554] dump_stack_lvl+0x16c/0x1f0
[ 222.165357][T12554] should_fail_ex+0x50a/0x650
[ 222.165372][T12554] ? fs_reclaim_acquire+0xae/0x150
[ 222.165389][T12554] should_failslab+0xc2/0x120
[ 222.165402][T12554] kmem_cache_alloc_noprof+0x6e/0x3d0
[ 222.165413][T12554] ? __kvm_mmu_topup_memory_cache+0x451/0x600
[ 222.165428][T12554] ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[ 222.165444][T12554] __kvm_mmu_topup_memory_cache+0x18f/0x600
[ 222.165463][T12554] mmu_topup_memory_caches+0x25/0x170
[ 222.165476][T12554] kvm_mmu_load+0xda/0x22a0
[ 222.165489][T12554] ? kvm_apic_has_interrupt+0xb6/0x190
[ 222.165506][T12554] ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[ 222.165521][T12554] ? kvm_guest_time_update+0x71e/0xeb0
[ 222.165534][T12554] ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[ 222.165548][T12554] ? __pfx_kvm_mmu_load+0x10/0x10
[ 222.165560][T12554] ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[ 222.165576][T12554] ? kvm_check_and_inject_events+0x725/0x12e0
[ 222.165588][T12554] ? x86_decode_emulated_instruction+0xa1/0xb0
[ 222.165602][T12554] vcpu_run+0x2e8b/0x4cc0
[ 222.165619][T12554] ? __pfx_vcpu_run+0x10/0x10
[ 222.165629][T12554] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 222.165646][T12554] ? rcu_is_watching+0x12/0xc0
[ 222.165657][T12554] ? trace_lock_acquire+0x14e/0x1f0
[ 222.165669][T12554] ? __local_bh_enable_ip+0xa4/0x120
[ 222.165684][T12554] ? lockdep_hardirqs_on+0x7c/0x110
[ 222.165697][T12554] ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[ 222.165713][T12554] ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[ 222.165725][T12554] kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[ 222.165740][T12554] kvm_vcpu_ioctl+0x5ea/0x1680
[ 222.165754][T12554] ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 222.165770][T12554] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[ 222.165786][T12554] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 222.165803][T12554] ? __pfx_lock_release+0x10/0x10
[ 222.165822][T12554] ? selinux_file_ioctl+0x180/0x270
[ 222.165836][T12554] ? selinux_file_ioctl+0xb4/0x270
[ 222.165850][T12554] ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 222.165863][T12554] __x64_sys_ioctl+0x190/0x200
[ 222.165880][T12554] do_syscall_64+0xcd/0x250
[ 222.165895][T12554] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 222.165910][T12554] RIP: 0033:0x7f890c18d169
[ 222.165919][T12554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 222.165929][T12554] RSP: 002b:00007f890cf01038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 222.165939][T12554] RAX: ffffffffffffffda RBX: 00007f890c3a5fa0 RCX: 00007f890c18d169
[ 222.165945][T12554] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[ 222.165951][T12554] RBP: 00007f890cf01090 R08: 0000000000000000 R09: 0000000000000000
[ 222.165957][T12554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 222.165963][T12554] R13: 0000000000000000 R14: 00007f890c3a5fa0 R15: 00007ffd7320f668
[ 222.165975][T12554] </TASK>
[ 222.785231][T12565] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 222.840604][T12571] x_tables: duplicate underflow at hook 1
[ 223.186280][T12579] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2143'.
[ 223.291929][T12581] NILFS (nullb0): couldn't find nilfs on the device
[ 223.307234][T12581] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2144'.
[ 223.340039][T12583] x_tables: duplicate underflow at hook 1
[ 223.345879][T12583] pimreg3: entered allmulticast mode
[ 223.349557][T12584] x_tables: duplicate underflow at hook 1
[ 223.394932][ T40] kauditd_printk_skb: 14788 callbacks suppressed
[ 223.394947][ T40] audit: type=1326 audit(1742887611.836:48407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12561 comm="syz.5.2136" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f960838d169 code=0x7fc00000
[ 223.538991][T12598] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2149'.
[ 224.034528][T12601] x_tables: duplicate underflow at hook 1
[ 224.069457][T12598] syz.5.2149 (12598): drop_caches: 2
[ 224.101471][T12598] syz.5.2149 (12598): drop_caches: 2
[ 224.324640][T12607] netlink: 36 bytes leftover after parsing attributes in process `syz.6.2153'.
[ 224.327504][T12607] netlink: 'syz.6.2153': attribute type 10 has an invalid length.
[ 224.330920][T12607] bridge0: left allmulticast mode
[ 224.335559][T12607] bridge0: entered allmulticast mode
[ 224.337212][T12607] bond0: (slave bridge0): Enslaving as an active interface with an up link
[ 224.827678][ T10] usb 10-1: new high-speed USB device number 21 using dummy_hcd
[ 224.977634][ T10] usb 10-1: Using ep0 maxpacket: 16
[ 224.981542][ T10] usb 10-1: config 0 has an invalid interface number: 195 but max is 0
[ 224.983752][ T10] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 224.986371][ T10] usb 10-1: config 0 has no interface number 0
[ 224.989656][ T10] usb 10-1: New USB device found, idVendor=0421, idProduct=0418, bcdDevice=95.ff
[ 224.992977][ T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 224.995928][ T10] usb 10-1: Product: syz
[ 224.997488][ T10] usb 10-1: Manufacturer: syz
[ 224.999568][ T10] usb 10-1: SerialNumber: syz
[ 225.003521][ T10] usb 10-1: config 0 descriptor??
[ 225.675269][ T5942] usb 10-1: USB disconnect, device number 21
[ 226.206279][T12621] FAULT_INJECTION: forcing a failure.
[ 226.206279][T12621] name failslab, interval 1, probability 0, space 0, times 0
[ 226.210534][T12621] CPU: 1 UID: 0 PID: 12621 Comm: syz.5.2158 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 226.210551][T12621] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 226.210570][T12621] Call Trace:
[ 226.210575][T12621] <TASK>
[ 226.210580][T12621] dump_stack_lvl+0x16c/0x1f0
[ 226.210612][T12621] should_fail_ex+0x50a/0x650
[ 226.210633][T12621] ? fs_reclaim_acquire+0xae/0x150
[ 226.210650][T12621] ? security_load_policy+0xcc/0x12a0
[ 226.210665][T12621] should_failslab+0xc2/0x120
[ 226.210679][T12621] __kmalloc_cache_noprof+0x68/0x410
[ 226.210696][T12621] ? handle_mm_fault+0x497/0xaa0
[ 226.210710][T12621] security_load_policy+0xcc/0x12a0
[ 226.210726][T12621] ? mark_held_locks+0x9f/0xe0
[ 226.210752][T12621] ? irqentry_exit+0x3b/0x90
[ 226.210770][T12621] ? __pfx_security_load_policy+0x10/0x10
[ 226.210791][T12621] ? _copy_from_user+0x93/0xd0
[ 226.210808][T12621] sel_write_load+0x343/0x1c80
[ 226.210821][T12621] ? __pfx___lock_acquire+0x10/0x10
[ 226.210839][T12621] ? __pfx_sel_write_load+0x10/0x10
[ 226.210851][T12621] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 226.210867][T12621] ? rcu_is_watching+0x12/0xc0
[ 226.210879][T12621] ? trace_lock_acquire+0x14e/0x1f0
[ 226.210895][T12621] ? __pfx_sel_write_load+0x10/0x10
[ 226.210905][T12621] vfs_write+0x24c/0x1150
[ 226.210917][T12621] ? __pfx___mutex_lock+0x10/0x10
[ 226.210932][T12621] ? __pfx_vfs_write+0x10/0x10
[ 226.210945][T12621] ? __fget_files+0x20e/0x3b0
[ 226.210960][T12621] ksys_write+0x12b/0x250
[ 226.210969][T12621] ? __pfx_ksys_write+0x10/0x10
[ 226.210983][T12621] do_syscall_64+0xcd/0x250
[ 226.210998][T12621] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 226.211013][T12621] RIP: 0033:0x7f960838d169
[ 226.211022][T12621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 226.211032][T12621] RSP: 002b:00007f9609240038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 226.211042][T12621] RAX: ffffffffffffffda RBX: 00007f96085a5fa0 RCX: 00007f960838d169
[ 226.211049][T12621] RDX: 0000000000002000 RSI: 0000200000000000 RDI: 0000000000000003
[ 226.211055][T12621] RBP: 00007f9609240090 R08: 0000000000000000 R09: 0000000000000000
[ 226.211061][T12621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 226.211067][T12621] R13: 0000000000000000 R14: 00007f96085a5fa0 R15: 00007fffb5892dc8
[ 226.211080][T12621] </TASK>
[ 226.211843][T12621] SELinux: failed to load policy
[ 226.245822][T12623] netlink: 172 bytes leftover after parsing attributes in process `syz.0.2159'.
[ 226.289336][T12625] x_tables: duplicate underflow at hook 1
[ 226.401457][T12627] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2162'.
[ 226.403997][T12627] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2162'.
[ 226.410653][T12627] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2162'.
[ 226.547252][T12633] SELinux: ebitmap: truncated map
[ 226.550494][T12635] xt_cluster: you have exceeded the maximum number of cluster nodes (4095 > 32)
[ 226.554768][ T40] audit: type=1400 audit(1742887614.996:48408): avc: denied { create } for pid=12634 comm="syz.2.2164" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[ 226.556299][T12633] SELinux: failed to load policy
[ 226.569148][ T40] audit: type=1400 audit(1742887615.016:48409): avc: denied { sys_admin } for pid=12634 comm="syz.2.2164" capability=21 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[ 226.595596][T12635] ������ speed is unknown, defaulting to 1000
[ 226.882691][T12651] netlink: 'syz.2.2168': attribute type 4 has an invalid length.
[ 227.257972][ T6068] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[ 227.277689][ T6009] usb 11-1: new high-speed USB device number 13 using dummy_hcd
[ 227.388030][ T6068] usb 7-1: device descriptor read/64, error -71
[ 227.427719][ T6009] usb 11-1: Using ep0 maxpacket: 8
[ 227.430491][ T6009] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[ 227.433964][ T6009] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 227.437175][ T6009] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 227.440790][ T6009] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 227.445232][ T6009] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 227.448612][ T6009] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 227.623542][T12661] dns_resolver: Unsupported server list version (0)
[ 227.627836][ T6068] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[ 227.655984][ T6009] usb 11-1: GET_CAPABILITIES returned 0
[ 227.658579][ T6009] usbtmc 11-1:16.0: can't read capabilities
[ 227.677844][T12663] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2172'.
[ 227.680170][T12663] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2172'.
[ 227.685158][T12663] geneve2: entered promiscuous mode
[ 227.686597][T12663] geneve2: entered allmulticast mode
[ 227.692394][T12663] use of bytesused == 0 is deprecated and will be removed in the future,
[ 227.695022][T12663] use the actual size instead.
[ 227.767671][ T6068] usb 7-1: device descriptor read/64, error -71
[ 227.864575][ C1] usbtmc 11-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[ 227.869508][T12657] usbtmc 11-1:16.0: Unable to send data, error -71
[ 227.877962][ T6068] usb usb7-port1: attempt power cycle
[ 228.237880][ T6068] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[ 228.258311][ T6068] usb 7-1: device descriptor read/8, error -71
[ 228.376371][T12669] nbd: must specify a size in bytes for the device
[ 228.507723][ T6068] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[ 228.530475][ T6068] usb 7-1: device descriptor read/8, error -71
[ 228.641349][ T6068] usb usb7-port1: unable to enumerate USB device
[ 229.819972][ T12] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 230.032690][T12683] ip6t_srh: unknown srh match flags 4000
[ 230.034959][T12683] netlink: 'syz.5.2179': attribute type 13 has an invalid length.
[ 230.047431][T12683] gretap0: refused to change device tx_queue_len
[ 230.049400][T12683] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 230.093724][ T40] audit: type=1400 audit(1742887618.536:48410): avc: denied { read } for pid=12684 comm="syz.2.2180" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[ 230.140059][T12688] RDS: rds_bind could not find a transport for fe80::41, load rds_tcp or rds_rdma?
[ 230.273163][ T40] audit: type=1400 audit(1742887618.716:48411): avc: denied { mounton } for pid=12691 comm="syz.2.2183" path="/556/file1" dev="9p" ino=36831502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 230.273196][T12694] 9pnet_virtio: no channels available for device syz
[ 230.837894][ T6009] usb 11-1: USB disconnect, device number 13
[ 230.926642][T12704] lo: left allmulticast mode
[ 230.932526][T12704] tunl0: left allmulticast mode
[ 230.935355][T12704] gre0: left allmulticast mode
[ 230.939673][T12704] gretap0: left allmulticast mode
[ 230.942656][T12704] erspan0: left allmulticast mode
[ 230.945319][T12704] ip_vti0: left allmulticast mode
[ 230.947422][T12704] ip6_vti0: left allmulticast mode
[ 230.949783][T12704] sit0: left allmulticast mode
[ 230.954008][T12704] ip6tnl0: left allmulticast mode
[ 230.956796][T12704] ip6gre0: left allmulticast mode
[ 230.962021][T12704] syz_tun: left allmulticast mode
[ 230.964990][T12704] ip6gretap0: left allmulticast mode
[ 230.970060][T12704] vcan0: left allmulticast mode
[ 230.971864][T12704] bond0: left allmulticast mode
[ 230.973212][T12704] bridge0: left allmulticast mode
[ 230.976025][T12704] 8021q: adding VLAN 0 to HW filter on device bond0
[ 230.978826][T12704] team0: left allmulticast mode
[ 230.980477][T12704] 8021q: adding VLAN 0 to HW filter on device team0
[ 230.983645][T12704] dummy0: left allmulticast mode
[ 230.985703][T12704] nlmon0: left allmulticast mode
[ 231.027960][T12704] caif0: left allmulticast mode
[ 231.030932][T12704] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 231.161768][ T5293] Bluetooth: hci2: ACL packet for unknown connection handle 200
[ 231.189260][T12717] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2189'.
[ 231.528763][T12721] syz.2.2190: attempt to access beyond end of device
[ 231.528763][T12721] nbd2: rw=0, sector=0, nr_sectors = 2 limit=0
[ 231.533876][T12721] befs: (nbd2): unable to read superblock
[ 231.600940][T12723] FAULT_INJECTION: forcing a failure.
[ 231.600940][T12723] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 231.605938][T12723] CPU: 3 UID: 0 PID: 12723 Comm: syz.2.2191 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 231.605961][T12723] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 231.605972][T12723] Call Trace:
[ 231.605979][T12723] <TASK>
[ 231.605986][T12723] dump_stack_lvl+0x16c/0x1f0
[ 231.606013][T12723] should_fail_ex+0x50a/0x650
[ 231.606040][T12723] _copy_from_user+0x2e/0xd0
[ 231.606067][T12723] copy_msghdr_from_user+0x99/0x160
[ 231.606090][T12723] ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 231.606124][T12723] ___sys_sendmsg+0xff/0x1e0
[ 231.606147][T12723] ? __pfx____sys_sendmsg+0x10/0x10
[ 231.606178][T12723] ? __pfx_lock_release+0x10/0x10
[ 231.606202][T12723] ? trace_lock_acquire+0x14e/0x1f0
[ 231.606229][T12723] ? __fget_files+0x20e/0x3b0
[ 231.606252][T12723] __sys_sendmsg+0x16e/0x220
[ 231.606274][T12723] ? __pfx___sys_sendmsg+0x10/0x10
[ 231.606333][T12723] do_syscall_64+0xcd/0x250
[ 231.606360][T12723] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 231.606389][T12723] RIP: 0033:0x7f890c18d169
[ 231.606403][T12723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 231.606418][T12723] RSP: 002b:00007f890cf01038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 231.606435][T12723] RAX: ffffffffffffffda RBX: 00007f890c3a5fa0 RCX: 00007f890c18d169
[ 231.606446][T12723] RDX: 0000000000000050 RSI: 0000200000001080 RDI: 0000000000000003
[ 231.606456][T12723] RBP: 00007f890cf01090 R08: 0000000000000000 R09: 0000000000000000
[ 231.606466][T12723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 231.606475][T12723] R13: 0000000000000000 R14: 00007f890c3a5fa0 R15: 00007ffd7320f668
[ 231.606498][T12723] </TASK>
[ 232.086279][T12717] team0 (unregistering): Port device team_slave_0 removed
[ 232.092152][T12717] team0 (unregistering): Port device team_slave_1 removed
[ 232.163362][T12728] ������ speed is unknown, defaulting to 1000
[ 232.201959][ T5293] Bluetooth: hci0: ACL packet for unknown connection handle 200
[ 232.235153][T12733] overlayfs: failed to get inode (-116)
[ 232.237492][T12733] overlayfs: failed to get inode (-116)
[ 232.312664][T12738] overlayfs: empty lowerdir
[ 232.334387][T12738] fuse: Bad value for 'fd'
[ 232.336507][T12738] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2196'.
[ 232.577525][T12744] ISOFS: Unable to identify CD-ROM format.
[ 232.774347][T12751] ������ speed is unknown, defaulting to 1000
[ 233.197743][ T5942] usb 10-1: new high-speed USB device number 22 using dummy_hcd
[ 233.327704][ T5942] usb 10-1: device descriptor read/64, error -71
[ 233.567660][ T5942] usb 10-1: new high-speed USB device number 23 using dummy_hcd
[ 233.697655][ T5942] usb 10-1: device descriptor read/64, error -71
[ 233.727648][ T6009] usb 11-1: new high-speed USB device number 14 using dummy_hcd
[ 233.807888][ T5942] usb usb10-port1: attempt power cycle
[ 233.877692][ T6009] usb 11-1: Using ep0 maxpacket: 8
[ 233.882722][ T6009] usb 11-1: config 168 descriptor has 1 excess byte, ignoring
[ 233.885470][ T6009] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[ 233.889851][ T6009] usb 11-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 233.894015][ T6009] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 233.899925][ T6009] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 233.905100][ T6009] usb 11-1: config 168 descriptor has 1 excess byte, ignoring
[ 233.907744][ T6009] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[ 233.912784][ T6009] usb 11-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 233.917145][ T6009] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 233.921226][ T6009] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 233.926402][ T6009] usb 11-1: config 168 descriptor has 1 excess byte, ignoring
[ 233.929157][ T6009] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[ 233.933143][ T6009] usb 11-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 233.937296][ T6009] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 233.941064][ T6009] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 233.947756][ T6009] usb 11-1: string descriptor 0 read error: -22
[ 233.950035][ T6009] usb 11-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 233.953303][ T6009] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 233.976261][ T6009] adutux 11-1:168.0: ADU100 now attached to /dev/usb/adutux0
[ 234.147612][ T5942] usb 10-1: new high-speed USB device number 24 using dummy_hcd
[ 234.168475][ T5942] usb 10-1: device descriptor read/8, error -71
[ 234.176827][ T9] usb 11-1: USB disconnect, device number 14
[ 234.217663][ T6068] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[ 234.347691][ T6068] usb 7-1: device descriptor read/64, error -71
[ 234.381224][T12765] adutux: No device or device unplugged -19
[ 234.407657][ T5942] usb 10-1: new high-speed USB device number 25 using dummy_hcd
[ 234.428400][ T5942] usb 10-1: device descriptor read/8, error -71
[ 234.537943][ T5942] usb usb10-port1: unable to enumerate USB device
[ 234.587628][ T6068] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[ 234.717773][ T6068] usb 7-1: device descriptor read/64, error -71
[ 234.829528][ T6068] usb usb7-port1: attempt power cycle
[ 235.168018][ T6068] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[ 235.189679][ T6068] usb 7-1: device descriptor read/8, error -71
[ 235.428821][ T6068] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[ 235.448220][ T6068] usb 7-1: device descriptor read/8, error -71
[ 235.557921][ T6068] usb usb7-port1: unable to enumerate USB device
[ 235.745330][T12782] netlink: 'syz.0.2210': attribute type 3 has an invalid length.
[ 235.747385][T12782] netlink: 558 bytes leftover after parsing attributes in process `syz.0.2210'.
[ 236.052714][T12784] input: syz0 as /devices/virtual/input/input17
[ 236.229907][T12794] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[ 236.229907][T12794] The task syz.6.2213 (12794) triggered the difference, watch for misbehavior.
[ 237.008508][T12804] xt_cgroup: invalid path, errno=-2
[ 239.211779][ T40] audit: type=1400 audit(1742887627.646:48412): avc: denied { write } for pid=12829 comm="syz.2.2227" name="net" dev="proc" ino=64079 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[ 239.226901][ T40] audit: type=1400 audit(1742887627.656:48413): avc: denied { add_name } for pid=12829 comm="syz.2.2227" name="pfkey" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[ 239.235021][ T40] audit: type=1400 audit(1742887627.656:48414): avc: denied { create } for pid=12829 comm="syz.2.2227" name="pfkey" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=file permissive=1
[ 239.242381][ T40] audit: type=1400 audit(1742887627.656:48415): avc: denied { associate } for pid=12829 comm="syz.2.2227" name="pfkey" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[ 241.582329][ T40] audit: type=1400 audit(1742887630.026:48416): avc: denied { watch watch_reads } for pid=12849 comm="syz.6.2231" path="/proc/911/task/912/net/netfilter" dev="proc" ino=4026533791 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=dir permissive=1
[ 241.945395][ T0] sched: DL replenish lagged too much
[ 244.051853][T12869] batadv_slave_1: entered promiscuous mode
[ 244.053827][T12868] batadv_slave_1: left promiscuous mode
[ 244.377677][ T6068] usb 10-1: new high-speed USB device number 26 using dummy_hcd
[ 244.742055][T12899] ������ speed is unknown, defaulting to 1000
[ 244.948104][ T6009] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[ 245.098833][ T6009] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 245.105036][ T6009] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 245.108440][ T6009] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 245.112134][ T6009] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 245.114654][ T6009] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 245.178341][ T1149] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 245.182148][ T6009] usb 5-1: config 0 descriptor??
[ 245.258404][ T6068] usb 10-1: Using ep0 maxpacket: 16
[ 245.261156][ T6068] usb 10-1: config 0 interface 0 has no altsetting 0
[ 245.264324][ T6068] usb 10-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice=29.82
[ 245.266732][ T6068] usb 10-1: New USB device strings: Mfr=83, Product=5, SerialNumber=10
[ 245.269568][ T6068] usb 10-1: Product: syz
[ 245.270779][ T6068] usb 10-1: Manufacturer: syz
[ 245.272111][ T6068] usb 10-1: SerialNumber: syz
[ 245.274455][ T6068] usb 10-1: config 0 descriptor??
[ 245.312324][T12919] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2260'.
[ 245.505466][ T6068] snd-usb-audio 10-1:0.0: probe with driver snd-usb-audio failed with error -22
[ 245.508625][ T6068] usb 10-1: USB disconnect, device number 26
[ 245.597825][ T6009] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[ 245.607934][ T6009] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[ 245.610124][ T6009] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[ 245.612805][ T6009] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[ 245.614811][ T6009] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[ 245.618980][ T6009] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[ 245.622921][ T6009] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[ 245.701188][ T5931] udevd[5931]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 245.876745][ T6009] usb 5-1: USB disconnect, device number 32
[ 247.307731][ T5942] usb 10-1: new high-speed USB device number 27 using dummy_hcd
[ 247.567962][ T5942] usb 10-1: Using ep0 maxpacket: 32
[ 247.584484][ T5942] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 247.590374][ T5942] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 247.597638][ T5942] usb 10-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[ 247.601045][ T5942] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 247.611737][ T5942] usb 10-1: config 0 descriptor??
[ 247.629284][T12984] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2283'.
[ 247.871721][T12990] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check.
[ 248.023973][ T5942] koneplus 0003:1E7D:2D51.0007: unknown main item tag 0x0
[ 248.034271][ T5942] koneplus 0003:1E7D:2D51.0007: unknown main item tag 0x0
[ 248.042527][ T5942] koneplus 0003:1E7D:2D51.0007: unknown main item tag 0x0
[ 248.051380][ T5942] koneplus 0003:1E7D:2D51.0007: unknown main item tag 0x0
[ 248.057252][ T5942] koneplus 0003:1E7D:2D51.0007: unknown main item tag 0x0
[ 248.070421][ T5942] koneplus 0003:1E7D:2D51.0007: hidraw1: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.5-1/input0
[ 248.283264][ T5942] koneplus 0003:1E7D:2D51.0007: couldn't init struct koneplus_device
[ 248.286856][ T5942] koneplus 0003:1E7D:2D51.0007: couldn't install mouse
[ 248.295073][ T5942] koneplus 0003:1E7D:2D51.0007: probe with driver koneplus failed with error -71
[ 248.299029][ T5942] usb 10-1: USB disconnect, device number 27
[ 248.375715][T13004] input: syz1 as /devices/virtual/input/input18
[ 248.885712][ T40] audit: type=1326 audit(1742887637.326:48417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13011 comm="syz.5.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f960838d169 code=0x50000
[ 248.904842][ T40] audit: type=1326 audit(1742887637.326:48418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13011 comm="syz.5.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f960838d169 code=0x50000
[ 248.918081][ T40] audit: type=1326 audit(1742887637.326:48419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13011 comm="syz.5.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f960838d169 code=0x50000
[ 248.935735][ T40] audit: type=1326 audit(1742887637.326:48420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13011 comm="syz.5.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f960838d169 code=0x50000
[ 249.058004][ T40] audit: type=1326 audit(1742887637.326:48421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13011 comm="syz.5.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f960838d169 code=0x50000
[ 249.064300][ T40] audit: type=1326 audit(1742887637.326:48422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13011 comm="syz.5.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f960838d169 code=0x50000
[ 249.070337][ T40] audit: type=1326 audit(1742887637.326:48423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13011 comm="syz.5.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f960838d169 code=0x50000
[ 249.076578][ T40] audit: type=1326 audit(1742887637.326:48424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13011 comm="syz.5.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f960838d169 code=0x50000
[ 249.082777][ T40] audit: type=1326 audit(1742887637.326:48425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13011 comm="syz.5.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f960838d169 code=0x50000
[ 249.088988][ T40] audit: type=1326 audit(1742887637.326:48426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13011 comm="syz.5.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f960838d169 code=0x50000
[ 251.008793][ T9] usb 11-1: new high-speed USB device number 15 using dummy_hcd
[ 251.157642][ T9] usb 11-1: device descriptor read/64, error -71
[ 251.797613][ T9] usb 11-1: new high-speed USB device number 16 using dummy_hcd
[ 251.927762][ T9] usb 11-1: device descriptor read/64, error -71
[ 252.045209][ T9] usb usb11-port1: attempt power cycle
[ 252.054017][T13041] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 252.687735][ T9] usb 11-1: new high-speed USB device number 17 using dummy_hcd
[ 252.708297][ T9] usb 11-1: device descriptor read/8, error -71
[ 252.967808][ T9] usb 11-1: new high-speed USB device number 18 using dummy_hcd
[ 252.998044][ T9] usb 11-1: device descriptor read/8, error -71
[ 253.120316][ T9] usb usb11-port1: unable to enumerate USB device
[ 254.346167][ T40] kauditd_printk_skb: 9389 callbacks suppressed
[ 254.346177][ T40] audit: type=1326 audit(1742887642.786:57816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13072 comm="syz.6.2314" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f972278d169 code=0x7ffc0000
[ 254.354201][ T40] audit: type=1326 audit(1742887642.786:57817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13072 comm="syz.6.2314" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f972278d169 code=0x7ffc0000
[ 254.379793][ T40] audit: type=1326 audit(1742887642.796:57818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13072 comm="syz.6.2314" exe="/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f972278d169 code=0x7ffc0000
[ 254.411015][ T40] audit: type=1326 audit(1742887642.796:57819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13072 comm="syz.6.2314" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f972278d169 code=0x7ffc0000
[ 254.457062][ T40] audit: type=1326 audit(1742887642.796:57820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13072 comm="syz.6.2314" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f972278d169 code=0x7ffc0000
[ 254.502367][ T40] audit: type=1326 audit(1742887642.806:57821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13072 comm="syz.6.2314" exe="/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f972278d169 code=0x7ffc0000
[ 254.539596][ T40] audit: type=1326 audit(1742887642.806:57822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13072 comm="syz.6.2314" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9722729359 code=0x7ffc0000
[ 254.569203][ T40] audit: type=1326 audit(1742887642.806:57823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13072 comm="syz.6.2314" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9722729359 code=0x7ffc0000
[ 254.595516][ T40] audit: type=1326 audit(1742887642.806:57824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13072 comm="syz.6.2314" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9722729359 code=0x7ffc0000
[ 254.634982][ T40] audit: type=1326 audit(1742887642.806:57825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13072 comm="syz.6.2314" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9722729359 code=0x7ffc0000
[ 254.755492][ T5941] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 254.772586][ T5941] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 254.776824][ T5941] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 254.786336][ T5941] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 254.794023][ T5941] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 254.798990][ T5941] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 255.002561][T13075] ������ speed is unknown, defaulting to 1000
[ 255.439029][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[ 256.081738][ T6471] syz_tun (unregistering): left allmulticast mode
[ 256.101848][ T6471] syz_tun (unregistering): left promiscuous mode
[ 256.103736][ T6471] bridge0: port 4(syz_tun) entered disabled state
[ 256.172699][T13075] chnl_net:caif_netlink_parms(): no params data found
[ 256.328764][T13075] bridge0: port 1(bridge_slave_0) entered blocking state
[ 256.330793][T13075] bridge0: port 1(bridge_slave_0) entered disabled state
[ 256.332754][T13075] bridge_slave_0: entered allmulticast mode
[ 256.335314][T13075] bridge_slave_0: entered promiscuous mode
[ 256.345377][T13075] bridge0: port 2(bridge_slave_1) entered blocking state
[ 256.348392][T13075] bridge0: port 2(bridge_slave_1) entered disabled state
[ 256.351152][T13075] bridge_slave_1: entered allmulticast mode
[ 256.354213][T13075] bridge_slave_1: entered promiscuous mode
[ 256.397465][T13075] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 256.407885][T13075] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 256.448504][T13075] team0: Port device team_slave_0 added
[ 256.453336][T13075] team0: Port device team_slave_1 added
[ 256.481197][T13075] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 256.484795][T13075] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 256.491906][T13075] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 256.495944][T13075] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 256.499583][T13075] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 256.509700][T13075] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 256.561272][T13075] hsr_slave_0: entered promiscuous mode
[ 256.563420][T13075] hsr_slave_1: entered promiscuous mode
[ 256.858216][ T5293] Bluetooth: hci4: command tx timeout
[ 257.794848][T13075] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 257.869950][ T5942] kernel write not supported for file /1265/attr/exec (pid: 5942 comm: kworker/0:3)
[ 258.536935][T13075] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 259.529654][T13147] __vm_enough_memory: pid: 13147, comm: syz.5.2336, bytes: 21199761137664 not enough memory for the allocation
[ 259.548920][T13075] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 259.747650][ T5293] Bluetooth: hci4: command tx timeout
[ 260.599329][T13075] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 260.605792][T13156] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 260.642240][T13155] input: syz1 as /devices/virtual/input/input19
[ 261.568388][T13075] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 261.574894][T13075] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 261.581502][T13075] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 261.588738][T13075] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 261.641971][T13075] 8021q: adding VLAN 0 to HW filter on device bond0
[ 261.649767][T13075] 8021q: adding VLAN 0 to HW filter on device team0
[ 261.654805][ T77] bridge0: port 1(bridge_slave_0) entered blocking state
[ 261.657086][ T77] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 261.661804][ T77] bridge0: port 2(bridge_slave_1) entered blocking state
[ 261.664292][ T77] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 261.773648][T13075] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 262.251380][ T5293] Bluetooth: hci4: command tx timeout
[ 262.254912][ T13] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 262.286181][T13075] veth0_vlan: entered promiscuous mode
[ 262.341430][T13075] veth1_vlan: entered promiscuous mode
[ 262.510797][T13075] veth0_macvtap: entered promiscuous mode
[ 262.534360][T13075] veth1_macvtap: entered promiscuous mode
[ 262.651527][T13075] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 262.654567][T13075] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 262.665564][T13075] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 262.691800][T13075] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 262.694893][T13075] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 262.699130][T13075] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 262.718199][T13075] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 262.722984][T13075] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 262.725836][T13075] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 262.728644][T13075] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 263.050028][ T1145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 263.053077][ T1145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 263.193314][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 263.196391][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 263.826722][ T40] kauditd_printk_skb: 71 callbacks suppressed
[ 263.826764][ T40] audit: type=1400 audit(1742887652.266:57897): avc: denied { watch_mount } for pid=13199 comm="syz.2.2356" path="/2" dev="tmpfs" ino=23 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 264.307643][ T5293] Bluetooth: hci4: command tx timeout
[ 265.897439][ T40] audit: type=1400 audit(1742887654.336:57898): avc: denied { block_suspend } for pid=13236 comm="syz.5.2369" capability=36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 266.955298][ T5941] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 267.012812][ T5951] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 267.018286][ T5951] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 267.020517][ T5951] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 267.023235][ T5951] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 267.025265][ T5951] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 267.594492][T13240] ������ speed is unknown, defaulting to 1000
[ 267.820847][T13240] chnl_net:caif_netlink_parms(): no params data found
[ 267.884618][T13240] bridge0: port 1(bridge_slave_0) entered blocking state
[ 267.886689][T13240] bridge0: port 1(bridge_slave_0) entered disabled state
[ 267.889177][T13240] bridge_slave_0: entered allmulticast mode
[ 267.891410][T13240] bridge_slave_0: entered promiscuous mode
[ 267.894071][T13240] bridge0: port 2(bridge_slave_1) entered blocking state
[ 267.896069][T13240] bridge0: port 2(bridge_slave_1) entered disabled state
[ 267.898746][T13240] bridge_slave_1: entered allmulticast mode
[ 267.900941][T13240] bridge_slave_1: entered promiscuous mode
[ 267.941516][T13240] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 267.945158][T13240] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 267.983432][T13240] team0: Port device team_slave_0 added
[ 267.987787][T13240] team0: Port device team_slave_1 added
[ 268.033411][T13240] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 268.035744][T13240] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 268.044640][T13240] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 268.050109][T13240] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 268.053135][T13240] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 268.062499][T13240] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 268.102476][T13240] hsr_slave_0: entered promiscuous mode
[ 268.104401][T13240] hsr_slave_1: entered promiscuous mode
[ 268.106186][T13240] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 268.108675][T13240] Cannot create hsr debugfs directory
[ 268.225729][T13240] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 268.233999][T13240] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 268.238810][T13240] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 268.243935][T13240] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 268.246627][T13278] kvm: kvm [13277]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000
[ 268.256039][T13240] bridge0: port 2(bridge_slave_1) entered blocking state
[ 268.258013][T13240] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 268.260086][T13240] bridge0: port 1(bridge_slave_0) entered blocking state
[ 268.262010][T13240] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 268.292655][T13240] 8021q: adding VLAN 0 to HW filter on device bond0
[ 268.302261][ T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 268.306608][ T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 268.330847][T13240] 8021q: adding VLAN 0 to HW filter on device team0
[ 268.344658][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 268.346697][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 268.352468][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 268.354427][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 268.451056][T13240] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 268.563629][T13240] veth0_vlan: entered promiscuous mode
[ 268.567060][T13240] veth1_vlan: entered promiscuous mode
[ 268.589092][T13240] veth0_macvtap: entered promiscuous mode
[ 268.593090][T13240] veth1_macvtap: entered promiscuous mode
[ 268.601050][T13240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 268.608454][T13240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 268.611084][T13240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 268.613783][T13240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 268.617066][T13240] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 268.636234][T13240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 268.639275][T13240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 268.641847][T13240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 268.644568][T13240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 268.651714][T13240] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 268.656285][T13240] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 268.659407][T13240] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 268.661836][T13240] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 268.664101][T13240] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 268.716899][ T1138] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 268.722078][ T1138] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 268.743437][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 268.754121][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 268.869387][T13330] ������ speed is unknown, defaulting to 1000
[ 269.099370][ T5293] Bluetooth: hci3: command tx timeout
[ 271.071912][ T40] audit: type=1400 audit(1742887659.506:57899): avc: denied { read } for pid=5339 comm="acpid" name="mouse9" dev="devtmpfs" ino=3130 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[ 271.118226][ T40] audit: type=1400 audit(1742887659.516:57900): avc: denied { open } for pid=5339 comm="acpid" path="/dev/input/mouse9" dev="devtmpfs" ino=3130 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[ 271.126616][ T40] audit: type=1400 audit(1742887659.516:57901): avc: denied { ioctl } for pid=5339 comm="acpid" path="/dev/input/mouse9" dev="devtmpfs" ino=3130 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[ 271.189562][ T5293] Bluetooth: hci3: command tx timeout
[ 271.613268][ T9] kernel read not supported for file /vcs (pid: 9 comm: kworker/0:0)
[ 271.898575][ T5293] Bluetooth: hci0: Invalid handle: 0x2100 > 0x0eff
[ 273.128521][T13415] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input21
[ 273.257616][ T5293] Bluetooth: hci3: command tx timeout
[ 273.979081][ T5293] Bluetooth: hci0: command 0x0405 tx timeout
[ 275.337778][ T5293] Bluetooth: hci3: command tx timeout
[ 275.338004][ T1145] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 275.342262][ T1145] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 275.432595][T13446] SELinux: syz.2.2441 (13446) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[ 275.772265][ T1145] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 275.776133][ T1145] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 276.338680][ T10] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[ 276.549485][ T1138] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 276.691429][ T1145] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 276.694424][ T10] usb 7-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 276.697723][ T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 276.698494][ T1145] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 276.709729][ T10] usb 7-1: config 0 descriptor??
[ 276.748215][ T10] cp210x 7-1:0.0: cp210x converter detected
[ 276.928362][ T1145] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 276.931110][ T1145] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 277.215382][ T10] usb 7-1: cp210x converter now attached to ttyUSB0
[ 277.313377][ T1145] bridge_slave_1: left allmulticast mode
[ 277.315086][ T1145] bridge_slave_1: left promiscuous mode
[ 277.316674][ T1145] bridge0: port 2(bridge_slave_1) entered disabled state
[ 277.325178][ T1145] bridge_slave_0: left allmulticast mode
[ 277.326726][ T1145] bridge_slave_0: left promiscuous mode
[ 277.330151][ T1145] bridge0: port 1(bridge_slave_0) entered disabled state
[ 277.434214][ T6068] usb 7-1: USB disconnect, device number 26
[ 277.446602][ T6068] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 277.452255][ T6068] cp210x 7-1:0.0: device disconnected
[ 277.667110][T13477] xt_limit: Overflow, try lower: 687865856/40
[ 278.727291][T13504] usb usb8: usbfs: process 13504 (syz.6.2457) did not claim interface 0 before use
[ 278.891641][ T1145] erspan0 (unregistering): left promiscuous mode
[ 278.983086][ T1145] gretap0 (unregistering): left promiscuous mode
[ 279.397810][ T5999] usb 11-1: new high-speed USB device number 19 using dummy_hcd
[ 279.567697][ T5999] usb 11-1: Using ep0 maxpacket: 8
[ 279.571415][ T5999] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 279.574759][ T5999] usb 11-1: New USB device found, idVendor=1241, idProduct=5015, bcdDevice= 0.00
[ 279.578289][ T5999] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 279.582619][ T5999] usb 11-1: config 0 descriptor??
[ 280.673366][ T5999] holtek 0003:1241:5015.0008: unknown main item tag 0x0
[ 280.675313][ T5999] holtek 0003:1241:5015.0008: unknown main item tag 0x0
[ 280.677163][ T5999] holtek 0003:1241:5015.0008: unknown main item tag 0x0
[ 280.679240][ T5999] holtek 0003:1241:5015.0008: unknown main item tag 0x0
[ 280.681110][ T5999] holtek 0003:1241:5015.0008: unknown main item tag 0x0
[ 280.686402][ T5999] holtek 0003:1241:5015.0008: hidraw1: USB HID vff.ff Device [HID 1241:5015] on usb-dummy_hcd.6-1/input0
[ 280.689911][ T5999] holtek 0003:1241:5015.0008: no inputs found
[ 280.767008][T13523] kvm: kvm [13522]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x9f
[ 280.790179][T13523] kvm: kvm [13522]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x8aa
[ 280.793890][T13523] kvm: kvm [13522]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x2
[ 280.811255][T13523] kvm: kvm [13522]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x6a
[ 280.816426][T13523] kvm: kvm [13522]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x7
[ 280.876398][ T34] usb 11-1: USB disconnect, device number 19
[ 281.000363][ T1145] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 281.050140][ T1145] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 281.100055][ T1145] bond0 (unregistering): Released all slaves
[ 281.107117][ T1145] bond1 (unregistering): Released all slaves
[ 281.415853][ T5951] Bluetooth: hci0: ACL packet for unknown connection handle 200
[ 281.968725][ T1145] bond2 (unregistering): Released all slaves
[ 281.973373][ T1145] bond3 (unregistering): Released all slaves
[ 282.087794][ T1145] tipc: Left network mode
[ 282.139766][ T1145] IPVS: stopping backup sync thread 6022 ...
[ 282.418534][ T24] usb 12-1: new high-speed USB device number 2 using dummy_hcd
[ 282.606615][ T1145] hsr_slave_0: left promiscuous mode
[ 282.607782][ T24] usb 12-1: Using ep0 maxpacket: 8
[ 282.610410][ T1145] hsr_slave_1: left promiscuous mode
[ 282.611627][ T24] usb 12-1: New USB device found, idVendor=2833, idProduct=0201, bcdDevice=2a.d5
[ 282.615395][ T24] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 282.620773][ T24] usb 12-1: config 0 descriptor??
[ 282.656738][ T1145] veth1_macvtap: left promiscuous mode
[ 282.658709][ T1145] veth0_macvtap: left promiscuous mode
[ 282.660089][ T1145] veth1_vlan: left promiscuous mode
[ 282.661380][ T1145] veth0_vlan: left promiscuous mode
[ 282.828484][ T24] usb 12-1: string descriptor 0 read error: -71
[ 282.830349][ T24] usb 12-1: Found UVC 0.00 device <unnamed> (2833:0201)
[ 282.832265][ T24] usb 12-1: No valid video chain found.
[ 282.834501][ T24] usb 12-1: USB disconnect, device number 2
[ 283.847116][ T13] smc: removing ib device syz0
[ 285.278224][ T40] audit: type=1400 audit(1742887673.726:57902): avc: denied { map } for pid=13575 comm="syz.2.2484" path="socket:[74953]" dev="sockfs" ino=74953 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 285.286544][ T40] audit: type=1400 audit(1742887673.726:57903): avc: denied { accept } for pid=13575 comm="syz.2.2484" path="socket:[74953]" dev="sockfs" ino=74953 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 286.248374][ T24] usb 7-1: new full-speed USB device number 27 using dummy_hcd
[ 286.398965][ T24] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 286.401729][ T24] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 286.404594][ T24] usb 7-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 286.409744][ T24] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 286.412536][ T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 286.414857][ T24] usb 7-1: Product: syz
[ 286.416001][ T24] usb 7-1: Manufacturer: syz
[ 286.417236][ T24] usb 7-1: SerialNumber: syz
[ 286.830916][ T24] cdc_ncm 7-1:1.0: bind() failure
[ 286.834007][ T24] cdc_ncm 7-1:1.1: probe with driver cdc_ncm failed with error -71
[ 286.836380][ T24] cdc_mbim 7-1:1.1: probe with driver cdc_mbim failed with error -71
[ 286.840074][ T24] usbtest 7-1:1.1: probe with driver usbtest failed with error -71
[ 286.843728][ T24] usb 7-1: USB disconnect, device number 27
[ 288.658536][ T40] audit: type=1326 audit(1742887677.106:57904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13589 comm="syz.2.2489" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d2f8d169 code=0x7ffc0000
[ 288.664483][ T40] audit: type=1326 audit(1742887677.106:57905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13589 comm="syz.2.2489" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d2f8d169 code=0x7ffc0000
[ 288.670531][ T40] audit: type=1326 audit(1742887677.106:57906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13589 comm="syz.2.2489" exe="/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f77d2f8d169 code=0x7ffc0000
[ 288.679398][ T40] audit: type=1326 audit(1742887677.106:57907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13589 comm="syz.2.2489" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d2f8d169 code=0x7ffc0000
[ 288.688335][ T40] audit: type=1326 audit(1742887677.106:57908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13589 comm="syz.2.2489" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d2f8d169 code=0x7ffc0000
[ 289.002185][T13597] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2492'.
[ 290.203754][ T1145] team0 (unregistering): Port device team_slave_1 removed
[ 290.701739][ T1145] team0 (unregistering): Port device team_slave_0 removed
[ 293.818468][ T12] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 298.446602][ T1145] IPVS: stop unused estimator thread 0...
[ 298.958708][T13653] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2513'.
[ 299.176608][ T24] usb 11-1: new high-speed USB device number 20 using dummy_hcd
[ 299.998575][ T24] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 300.001717][ T24] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 300.179153][ T24] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 300.182765][ T24] usb 11-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 300.185279][ T24] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 300.203651][ T24] usb 11-1: config 0 descriptor??
[ 300.258750][T13673] bridge0: port 2(bridge_slave_1) entered blocking state
[ 300.260712][T13673] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 300.262823][T13673] bridge0: port 1(����) entered blocking state
[ 300.264468][T13673] bridge0: port 1(����) entered forwarding state
[ 300.337981][T13673] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 300.640621][ T24] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving
[ 300.651596][ T24] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[ 300.953232][T13686] BUG: Bad page state in process syz.7.2524 pfn:2dbbb
[ 300.955690][T13686] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88802dbbbf00 pfn:0x2dbbb
[ 300.961258][T13686] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 300.963802][T13686] raw: 00fff00000000000 dead000000000040 ffff888020d2d000 0000000000000000
[ 300.966806][T13686] raw: ffff88802dbbbf00 3ffffffffffffffe 00000000ffffffff 0000000000000000
[ 300.969757][T13686] page dumped because: page_pool leak
[ 300.971722][T13686] page_owner tracks the page as allocated
[ 300.974359][T13686] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 10185, tgid 10182 (syz.6.1309), ts 148671941288, free_ts 147177820542
[ 300.980471][T13686] post_alloc_hook+0x181/0x1b0
[ 300.982260][T13686] get_page_from_freelist+0xfce/0x2f80
[ 300.984262][T13686] __alloc_frozen_pages_noprof+0x221/0x2470
[ 300.986502][T13686] alloc_pages_bulk_noprof+0x6f9/0x1390
[ 300.988576][T13686] __page_pool_alloc_pages_slow+0x18c/0x770
[ 300.990648][T13686] page_pool_alloc_netmems+0xc4/0x160
[ 300.992534][T13686] page_pool_alloc_frag_netmem+0x220/0x760
[ 300.994562][T13686] skb_pp_cow_data+0x571/0xf10
[ 300.996320][T13686] skb_cow_data_for_xdp+0x88/0xb0
[ 300.998144][T13686] do_xdp_generic+0x3f1/0xe70
[ 300.999890][T13686] tun_get_user+0x1e04/0x3e50
[ 301.001685][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.003556][T13686] vfs_write+0x5ae/0x1150
[ 301.005088][T13686] ksys_write+0x12b/0x250
[ 301.006647][T13686] do_syscall_64+0xcd/0x250
[ 301.008391][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.010532][T13686] page last free pid 10161 tgid 10160 stack trace:
[ 301.012920][T13686] free_frozen_pages+0x6db/0xfb0
[ 301.014723][T13686] tlb_remove_table_rcu+0x116/0x1a0
[ 301.016623][T13686] rcu_core+0x79d/0x14d0
[ 301.018257][T13686] handle_softirqs+0x213/0x8f0
[ 301.020052][T13686] __irq_exit_rcu+0x109/0x170
[ 301.021806][T13686] irq_exit_rcu+0x9/0x30
[ 301.023443][T13686] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 301.025501][T13686] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 301.027877][T13686] Modules linked in:
[ 301.029413][T13686] CPU: 1 UID: 0 PID: 13686 Comm: syz.7.2524 Not tainted 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 301.029438][T13686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 301.029450][T13686] Call Trace:
[ 301.029457][T13686] <TASK>
[ 301.029466][T13686] dump_stack_lvl+0x16c/0x1f0
[ 301.029493][T13686] bad_page+0xb3/0x1f0
[ 301.029518][T13686] ? __pfx_bad_page+0x10/0x10
[ 301.029543][T13686] ? page_bad_reason+0x9d/0x1e0
[ 301.029569][T13686] free_frozen_pages+0x701/0xfb0
[ 301.029592][T13686] page_frag_free+0x255/0x2a0
[ 301.029615][T13686] __xdp_return+0x363/0xac0
[ 301.029641][T13686] ? kmem_cache_free+0x2e2/0x4d0
[ 301.029679][T13686] bpf_xdp_adjust_tail+0x9de/0xf70
[ 301.029720][T13686] bpf_prog_f476d5219b92964a+0x1e/0x20
[ 301.029736][T13686] bpf_prog_run_generic_xdp+0xe33/0x1500
[ 301.029769][T13686] do_xdp_generic+0x70a/0xe70
[ 301.029785][T13686] ? __pfx_do_xdp_generic+0x10/0x10
[ 301.029804][T13686] ? tun_get_user+0x1d55/0x3e50
[ 301.029823][T13686] tun_get_user+0x1e04/0x3e50
[ 301.029843][T13686] ? __pfx_tun_get_user+0x10/0x10
[ 301.029858][T13686] ? find_held_lock+0x2d/0x110
[ 301.029872][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.029893][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.029909][T13686] vfs_write+0x5ae/0x1150
[ 301.029919][T13686] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 301.029935][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.029950][T13686] ? __pfx_vfs_write+0x10/0x10
[ 301.029960][T13686] ? lock_acquire+0x2f/0xb0
[ 301.029974][T13686] ? __fget_files+0x40/0x3b0
[ 301.029990][T13686] ksys_write+0x12b/0x250
[ 301.030000][T13686] ? __pfx_ksys_write+0x10/0x10
[ 301.030013][T13686] do_syscall_64+0xcd/0x250
[ 301.030029][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.030044][T13686] RIP: 0033:0x7f3bb178bc1f
[ 301.030054][T13686] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 301.030064][T13686] RSP: 002b:00007f3bb25e2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 301.030075][T13686] RAX: ffffffffffffffda RBX: 00007f3bb19a5fa0 RCX: 00007f3bb178bc1f
[ 301.030081][T13686] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 301.030088][T13686] RBP: 00007f3bb180e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 301.030095][T13686] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 301.030101][T13686] R13: 0000000000000000 R14: 00007f3bb19a5fa0 R15: 00007fffb3befe88
[ 301.030114][T13686] </TASK>
[ 301.030118][T13686] Disabling lock debugging due to kernel taint
[ 301.101451][T13686] BUG: Bad page state in process syz.7.2524 pfn:320ed
[ 301.103246][T13686] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x320ed
[ 301.105505][T13686] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 301.107363][T13686] raw: 00fff00000000000 dead000000000040 ffff888020d2d000 0000000000000000
[ 301.109864][T13686] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 301.112229][T13686] page dumped because: page_pool leak
[ 301.113717][T13686] page_owner tracks the page as allocated
[ 301.115293][T13686] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 13686, tgid 13685 (syz.7.2524), ts 300953165046, free_ts 298214301378
[ 301.120173][T13686] post_alloc_hook+0x181/0x1b0
[ 301.121582][T13686] get_page_from_freelist+0xfce/0x2f80
[ 301.123106][T13686] __alloc_frozen_pages_noprof+0x221/0x2470
[ 301.124763][T13686] alloc_pages_bulk_noprof+0x6f9/0x1390
[ 301.126287][T13686] __page_pool_alloc_pages_slow+0x18c/0x770
[ 301.127940][T13686] page_pool_alloc_netmems+0xc4/0x160
[ 301.129402][T13686] skb_pp_cow_data+0x776/0xf10
[ 301.130763][T13686] skb_cow_data_for_xdp+0x88/0xb0
[ 301.132203][T13686] do_xdp_generic+0x3f1/0xe70
[ 301.133516][T13686] tun_get_user+0x1e04/0x3e50
[ 301.134862][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.136244][T13686] vfs_write+0x5ae/0x1150
[ 301.137460][T13686] ksys_write+0x12b/0x250
[ 301.138723][T13686] do_syscall_64+0xcd/0x250
[ 301.139982][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.141572][T13686] page last free pid 5981 tgid 5981 stack trace:
[ 301.143233][T13686] free_frozen_pages+0x6db/0xfb0
[ 301.144540][T13686] kasan_depopulate_vmalloc_pte+0x63/0x80
[ 301.146016][T13686] __apply_to_page_range+0x5fd/0xd30
[ 301.147405][T13686] kasan_release_vmalloc+0xd1/0xe0
[ 301.148811][T13686] purge_vmap_node+0x1d1/0xa40
[ 301.150204][T13686] __purge_vmap_area_lazy+0x9bf/0xc10
[ 301.151677][T13686] drain_vmap_area_work+0x27/0x40
[ 301.153088][T13686] process_one_work+0x9c5/0x1ba0
[ 301.154436][T13686] worker_thread+0x6c8/0xf00
[ 301.155759][T13686] kthread+0x3af/0x750
[ 301.156861][T13686] ret_from_fork+0x45/0x80
[ 301.158110][T13686] ret_from_fork_asm+0x1a/0x30
[ 301.159398][T13686] Modules linked in:
[ 301.160499][T13686] CPU: 1 UID: 0 PID: 13686 Comm: syz.7.2524 Tainted: G B 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 301.160525][T13686] Tainted: [B]=BAD_PAGE
[ 301.160529][T13686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 301.160537][T13686] Call Trace:
[ 301.160546][T13686] <TASK>
[ 301.160551][T13686] dump_stack_lvl+0x16c/0x1f0
[ 301.160567][T13686] bad_page+0xb3/0x1f0
[ 301.160581][T13686] ? __pfx_bad_page+0x10/0x10
[ 301.160595][T13686] ? page_bad_reason+0x9d/0x1e0
[ 301.160608][T13686] free_frozen_pages+0x701/0xfb0
[ 301.160622][T13686] page_frag_free+0x255/0x2a0
[ 301.160651][T13686] __xdp_return+0x363/0xac0
[ 301.160666][T13686] ? kmem_cache_free+0x2e2/0x4d0
[ 301.160678][T13686] bpf_xdp_adjust_tail+0x9de/0xf70
[ 301.160700][T13686] bpf_prog_f476d5219b92964a+0x1e/0x20
[ 301.160709][T13686] bpf_prog_run_generic_xdp+0xe33/0x1500
[ 301.160724][T13686] do_xdp_generic+0x70a/0xe70
[ 301.160736][T13686] ? __pfx_do_xdp_generic+0x10/0x10
[ 301.160752][T13686] ? tun_get_user+0x1d55/0x3e50
[ 301.160768][T13686] tun_get_user+0x1e04/0x3e50
[ 301.160785][T13686] ? __pfx_tun_get_user+0x10/0x10
[ 301.160799][T13686] ? find_held_lock+0x2d/0x110
[ 301.160811][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.160828][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.160843][T13686] vfs_write+0x5ae/0x1150
[ 301.160852][T13686] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 301.160867][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.160881][T13686] ? __pfx_vfs_write+0x10/0x10
[ 301.160891][T13686] ? lock_acquire+0x2f/0xb0
[ 301.160904][T13686] ? __fget_files+0x40/0x3b0
[ 301.160917][T13686] ksys_write+0x12b/0x250
[ 301.160926][T13686] ? __pfx_ksys_write+0x10/0x10
[ 301.160937][T13686] do_syscall_64+0xcd/0x250
[ 301.160952][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.160967][T13686] RIP: 0033:0x7f3bb178bc1f
[ 301.160976][T13686] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 301.160986][T13686] RSP: 002b:00007f3bb25e2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 301.160996][T13686] RAX: ffffffffffffffda RBX: 00007f3bb19a5fa0 RCX: 00007f3bb178bc1f
[ 301.161003][T13686] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 301.161009][T13686] RBP: 00007f3bb180e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 301.161016][T13686] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 301.161022][T13686] R13: 0000000000000000 R14: 00007f3bb19a5fa0 R15: 00007fffb3befe88
[ 301.161031][T13686] </TASK>
[ 301.161038][T13686] BUG: Bad page state in process syz.7.2524 pfn:322be
[ 301.229247][T13686] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x322be
[ 301.231554][T13686] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 301.233378][T13686] raw: 00fff00000000000 dead000000000040 ffff888020d2d000 0000000000000000
[ 301.235581][T13686] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 301.237935][T13686] page dumped because: page_pool leak
[ 301.239409][T13686] page_owner tracks the page as allocated
[ 301.240979][T13686] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 13686, tgid 13685 (syz.7.2524), ts 300953157465, free_ts 298214309416
[ 301.245612][T13686] post_alloc_hook+0x181/0x1b0
[ 301.246959][T13686] get_page_from_freelist+0xfce/0x2f80
[ 301.248500][T13686] __alloc_frozen_pages_noprof+0x221/0x2470
[ 301.250129][T13686] alloc_pages_bulk_noprof+0x6f9/0x1390
[ 301.251671][T13686] __page_pool_alloc_pages_slow+0x18c/0x770
[ 301.253303][T13686] page_pool_alloc_netmems+0xc4/0x160
[ 301.254803][T13686] skb_pp_cow_data+0x776/0xf10
[ 301.256143][T13686] skb_cow_data_for_xdp+0x88/0xb0
[ 301.257585][T13686] do_xdp_generic+0x3f1/0xe70
[ 301.258915][T13686] tun_get_user+0x1e04/0x3e50
[ 301.260225][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.261600][T13686] vfs_write+0x5ae/0x1150
[ 301.262744][T13686] ksys_write+0x12b/0x250
[ 301.263887][T13686] do_syscall_64+0xcd/0x250
[ 301.265150][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.266748][T13686] page last free pid 5981 tgid 5981 stack trace:
[ 301.268474][T13686] free_frozen_pages+0x6db/0xfb0
[ 301.269795][T13686] kasan_depopulate_vmalloc_pte+0x63/0x80
[ 301.271348][T13686] __apply_to_page_range+0x5fd/0xd30
[ 301.272763][T13686] kasan_release_vmalloc+0xd1/0xe0
[ 301.274207][T13686] purge_vmap_node+0x1d1/0xa40
[ 301.275524][T13686] __purge_vmap_area_lazy+0x9bf/0xc10
[ 301.276970][T13686] drain_vmap_area_work+0x27/0x40
[ 301.278368][T13686] process_one_work+0x9c5/0x1ba0
[ 301.279679][T13686] worker_thread+0x6c8/0xf00
[ 301.280944][T13686] kthread+0x3af/0x750
[ 301.282042][T13686] ret_from_fork+0x45/0x80
[ 301.283221][T13686] ret_from_fork_asm+0x1a/0x30
[ 301.284525][T13686] Modules linked in:
[ 301.285588][T13686] CPU: 1 UID: 0 PID: 13686 Comm: syz.7.2524 Tainted: G B 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 301.285605][T13686] Tainted: [B]=BAD_PAGE
[ 301.285609][T13686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 301.285616][T13686] Call Trace:
[ 301.285620][T13686] <TASK>
[ 301.285625][T13686] dump_stack_lvl+0x16c/0x1f0
[ 301.285640][T13686] bad_page+0xb3/0x1f0
[ 301.285664][T13686] ? __pfx_bad_page+0x10/0x10
[ 301.285679][T13686] ? page_bad_reason+0x9d/0x1e0
[ 301.285693][T13686] free_frozen_pages+0x701/0xfb0
[ 301.285704][T13686] page_frag_free+0x255/0x2a0
[ 301.285716][T13686] __xdp_return+0x363/0xac0
[ 301.285731][T13686] ? kmem_cache_free+0x2e2/0x4d0
[ 301.285742][T13686] bpf_xdp_adjust_tail+0x9de/0xf70
[ 301.285761][T13686] bpf_prog_f476d5219b92964a+0x1e/0x20
[ 301.285770][T13686] bpf_prog_run_generic_xdp+0xe33/0x1500
[ 301.285785][T13686] do_xdp_generic+0x70a/0xe70
[ 301.285797][T13686] ? __pfx_do_xdp_generic+0x10/0x10
[ 301.285811][T13686] ? tun_get_user+0x1d55/0x3e50
[ 301.285828][T13686] tun_get_user+0x1e04/0x3e50
[ 301.285845][T13686] ? __pfx_tun_get_user+0x10/0x10
[ 301.285860][T13686] ? find_held_lock+0x2d/0x110
[ 301.285873][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.285890][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.285906][T13686] vfs_write+0x5ae/0x1150
[ 301.285916][T13686] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 301.285931][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.285946][T13686] ? __pfx_vfs_write+0x10/0x10
[ 301.285955][T13686] ? lock_acquire+0x2f/0xb0
[ 301.285969][T13686] ? __fget_files+0x40/0x3b0
[ 301.285982][T13686] ksys_write+0x12b/0x250
[ 301.285992][T13686] ? __pfx_ksys_write+0x10/0x10
[ 301.286003][T13686] do_syscall_64+0xcd/0x250
[ 301.286018][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.286033][T13686] RIP: 0033:0x7f3bb178bc1f
[ 301.286042][T13686] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 301.286052][T13686] RSP: 002b:00007f3bb25e2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 301.286063][T13686] RAX: ffffffffffffffda RBX: 00007f3bb19a5fa0 RCX: 00007f3bb178bc1f
[ 301.286069][T13686] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 301.286076][T13686] RBP: 00007f3bb180e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 301.286082][T13686] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 301.286089][T13686] R13: 0000000000000000 R14: 00007f3bb19a5fa0 R15: 00007fffb3befe88
[ 301.286098][T13686] </TASK>
[ 301.286105][T13686] BUG: Bad page state in process syz.7.2524 pfn:32103
[ 301.354933][T13686] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x32103
[ 301.357202][T13686] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 301.359121][T13686] raw: 00fff00000000000 dead000000000040 ffff888020d2d000 0000000000000000
[ 301.361365][T13686] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 301.363711][T13686] page dumped because: page_pool leak
[ 301.365158][T13686] page_owner tracks the page as allocated
[ 301.366707][T13686] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 13686, tgid 13685 (syz.7.2524), ts 300953149188, free_ts 298214317028
[ 301.371265][T13686] post_alloc_hook+0x181/0x1b0
[ 301.372588][T13686] get_page_from_freelist+0xfce/0x2f80
[ 301.374039][T13686] __alloc_frozen_pages_noprof+0x221/0x2470
[ 301.375613][T13686] alloc_pages_bulk_noprof+0x6f9/0x1390
[ 301.377092][T13686] __page_pool_alloc_pages_slow+0x18c/0x770
[ 301.378754][T13686] page_pool_alloc_netmems+0xc4/0x160
[ 301.380205][T13686] skb_pp_cow_data+0x776/0xf10
[ 301.381515][T13686] skb_cow_data_for_xdp+0x88/0xb0
[ 301.382918][T13686] do_xdp_generic+0x3f1/0xe70
[ 301.384211][T13686] tun_get_user+0x1e04/0x3e50
[ 301.385462][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.386792][T13686] vfs_write+0x5ae/0x1150
[ 301.387995][T13686] ksys_write+0x12b/0x250
[ 301.389167][T13686] do_syscall_64+0xcd/0x250
[ 301.390434][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.392077][T13686] page last free pid 5981 tgid 5981 stack trace:
[ 301.393821][T13686] free_frozen_pages+0x6db/0xfb0
[ 301.395204][T13686] kasan_depopulate_vmalloc_pte+0x63/0x80
[ 301.396780][T13686] __apply_to_page_range+0x5fd/0xd30
[ 301.398319][T13686] kasan_release_vmalloc+0xd1/0xe0
[ 301.399777][T13686] purge_vmap_node+0x1d1/0xa40
[ 301.401137][T13686] __purge_vmap_area_lazy+0x9bf/0xc10
[ 301.402658][T13686] drain_vmap_area_work+0x27/0x40
[ 301.404059][T13686] process_one_work+0x9c5/0x1ba0
[ 301.405440][T13686] worker_thread+0x6c8/0xf00
[ 301.406749][T13686] kthread+0x3af/0x750
[ 301.407918][T13686] ret_from_fork+0x45/0x80
[ 301.409165][T13686] ret_from_fork_asm+0x1a/0x30
[ 301.410511][T13686] Modules linked in:
[ 301.411634][T13686] CPU: 1 UID: 0 PID: 13686 Comm: syz.7.2524 Tainted: G B 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 301.411651][T13686] Tainted: [B]=BAD_PAGE
[ 301.411654][T13686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 301.411661][T13686] Call Trace:
[ 301.411665][T13686] <TASK>
[ 301.411670][T13686] dump_stack_lvl+0x16c/0x1f0
[ 301.411686][T13686] bad_page+0xb3/0x1f0
[ 301.411699][T13686] ? __pfx_bad_page+0x10/0x10
[ 301.411712][T13686] ? page_bad_reason+0x9d/0x1e0
[ 301.411725][T13686] free_frozen_pages+0x701/0xfb0
[ 301.411736][T13686] page_frag_free+0x255/0x2a0
[ 301.411749][T13686] __xdp_return+0x363/0xac0
[ 301.411764][T13686] ? kmem_cache_free+0x2e2/0x4d0
[ 301.411775][T13686] bpf_xdp_adjust_tail+0x9de/0xf70
[ 301.411795][T13686] bpf_prog_f476d5219b92964a+0x1e/0x20
[ 301.411803][T13686] bpf_prog_run_generic_xdp+0xe33/0x1500
[ 301.411819][T13686] do_xdp_generic+0x70a/0xe70
[ 301.411831][T13686] ? __pfx_do_xdp_generic+0x10/0x10
[ 301.411845][T13686] ? tun_get_user+0x1d55/0x3e50
[ 301.411861][T13686] tun_get_user+0x1e04/0x3e50
[ 301.411878][T13686] ? __pfx_tun_get_user+0x10/0x10
[ 301.411893][T13686] ? find_held_lock+0x2d/0x110
[ 301.411906][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.411924][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.411939][T13686] vfs_write+0x5ae/0x1150
[ 301.411949][T13686] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 301.411964][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.411979][T13686] ? __pfx_vfs_write+0x10/0x10
[ 301.411988][T13686] ? lock_acquire+0x2f/0xb0
[ 301.412002][T13686] ? __fget_files+0x40/0x3b0
[ 301.412015][T13686] ksys_write+0x12b/0x250
[ 301.412025][T13686] ? __pfx_ksys_write+0x10/0x10
[ 301.412036][T13686] do_syscall_64+0xcd/0x250
[ 301.412051][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.412066][T13686] RIP: 0033:0x7f3bb178bc1f
[ 301.412074][T13686] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 301.412084][T13686] RSP: 002b:00007f3bb25e2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 301.412094][T13686] RAX: ffffffffffffffda RBX: 00007f3bb19a5fa0 RCX: 00007f3bb178bc1f
[ 301.412101][T13686] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 301.412107][T13686] RBP: 00007f3bb180e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 301.412113][T13686] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 301.412119][T13686] R13: 0000000000000000 R14: 00007f3bb19a5fa0 R15: 00007fffb3befe88
[ 301.412128][T13686] </TASK>
[ 301.412134][T13686] BUG: Bad page state in process syz.7.2524 pfn:322d8
[ 301.481797][T13686] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x322d8
[ 301.484113][T13686] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 301.486124][T13686] raw: 00fff00000000000 dead000000000040 ffff888020d2d000 0000000000000000
[ 301.488608][T13686] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 301.491065][T13686] page dumped because: page_pool leak
[ 301.492548][T13686] page_owner tracks the page as allocated
[ 301.494111][T13686] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 13686, tgid 13685 (syz.7.2524), ts 300953140652, free_ts 298214324959
[ 301.498900][T13686] post_alloc_hook+0x181/0x1b0
[ 301.500255][T13686] get_page_from_freelist+0xfce/0x2f80
[ 301.501820][T13686] __alloc_frozen_pages_noprof+0x221/0x2470
[ 301.503398][T13686] alloc_pages_bulk_noprof+0x6f9/0x1390
[ 301.504851][T13686] __page_pool_alloc_pages_slow+0x18c/0x770
[ 301.506426][T13686] page_pool_alloc_netmems+0xc4/0x160
[ 301.508006][T13686] skb_pp_cow_data+0x776/0xf10
[ 301.509444][T13686] skb_cow_data_for_xdp+0x88/0xb0
[ 301.510914][T13686] do_xdp_generic+0x3f1/0xe70
[ 301.512307][T13686] tun_get_user+0x1e04/0x3e50
[ 301.513647][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.514992][T13686] vfs_write+0x5ae/0x1150
[ 301.516197][T13686] ksys_write+0x12b/0x250
[ 301.517400][T13686] do_syscall_64+0xcd/0x250
[ 301.518729][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.520373][T13686] page last free pid 5981 tgid 5981 stack trace:
[ 301.522143][T13686] free_frozen_pages+0x6db/0xfb0
[ 301.523520][T13686] kasan_depopulate_vmalloc_pte+0x63/0x80
[ 301.525110][T13686] __apply_to_page_range+0x5fd/0xd30
[ 301.526587][T13686] kasan_release_vmalloc+0xd1/0xe0
[ 301.528053][T13686] purge_vmap_node+0x1d1/0xa40
[ 301.529380][T13686] __purge_vmap_area_lazy+0x9bf/0xc10
[ 301.530874][T13686] drain_vmap_area_work+0x27/0x40
[ 301.532305][T13686] process_one_work+0x9c5/0x1ba0
[ 301.533692][T13686] worker_thread+0x6c8/0xf00
[ 301.534992][T13686] kthread+0x3af/0x750
[ 301.536126][T13686] ret_from_fork+0x45/0x80
[ 301.537374][T13686] ret_from_fork_asm+0x1a/0x30
[ 301.538760][T13686] Modules linked in:
[ 301.539852][T13686] CPU: 1 UID: 0 PID: 13686 Comm: syz.7.2524 Tainted: G B 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 301.539868][T13686] Tainted: [B]=BAD_PAGE
[ 301.539872][T13686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 301.539879][T13686] Call Trace:
[ 301.539884][T13686] <TASK>
[ 301.539888][T13686] dump_stack_lvl+0x16c/0x1f0
[ 301.539904][T13686] bad_page+0xb3/0x1f0
[ 301.539917][T13686] ? __pfx_bad_page+0x10/0x10
[ 301.539930][T13686] ? page_bad_reason+0x9d/0x1e0
[ 301.539943][T13686] free_frozen_pages+0x701/0xfb0
[ 301.539954][T13686] page_frag_free+0x255/0x2a0
[ 301.539967][T13686] __xdp_return+0x363/0xac0
[ 301.539982][T13686] ? kmem_cache_free+0x2e2/0x4d0
[ 301.539993][T13686] bpf_xdp_adjust_tail+0x9de/0xf70
[ 301.540012][T13686] bpf_prog_f476d5219b92964a+0x1e/0x20
[ 301.540021][T13686] bpf_prog_run_generic_xdp+0xe33/0x1500
[ 301.540036][T13686] do_xdp_generic+0x70a/0xe70
[ 301.540048][T13686] ? __pfx_do_xdp_generic+0x10/0x10
[ 301.540062][T13686] ? tun_get_user+0x1d55/0x3e50
[ 301.540079][T13686] tun_get_user+0x1e04/0x3e50
[ 301.540096][T13686] ? __pfx_tun_get_user+0x10/0x10
[ 301.540111][T13686] ? find_held_lock+0x2d/0x110
[ 301.540124][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.540142][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.540157][T13686] vfs_write+0x5ae/0x1150
[ 301.540167][T13686] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 301.540183][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.540197][T13686] ? __pfx_vfs_write+0x10/0x10
[ 301.540207][T13686] ? lock_acquire+0x2f/0xb0
[ 301.540220][T13686] ? __fget_files+0x40/0x3b0
[ 301.540234][T13686] ksys_write+0x12b/0x250
[ 301.540243][T13686] ? __pfx_ksys_write+0x10/0x10
[ 301.540254][T13686] do_syscall_64+0xcd/0x250
[ 301.540269][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.540284][T13686] RIP: 0033:0x7f3bb178bc1f
[ 301.540292][T13686] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 301.540303][T13686] RSP: 002b:00007f3bb25e2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 301.540313][T13686] RAX: ffffffffffffffda RBX: 00007f3bb19a5fa0 RCX: 00007f3bb178bc1f
[ 301.540320][T13686] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 301.540326][T13686] RBP: 00007f3bb180e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 301.540332][T13686] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 301.540339][T13686] R13: 0000000000000000 R14: 00007f3bb19a5fa0 R15: 00007fffb3befe88
[ 301.540348][T13686] </TASK>
[ 301.540355][T13686] BUG: Bad page state in process syz.7.2524 pfn:31f96
[ 301.610542][T13686] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x31f96
[ 301.612912][T13686] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 301.614854][T13686] raw: 00fff00000000000 dead000000000040 ffff888020d2d000 0000000000000000
[ 301.617179][T13686] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 301.619567][T13686] page dumped because: page_pool leak
[ 301.621045][T13686] page_owner tracks the page as allocated
[ 301.622642][T13686] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 13686, tgid 13685 (syz.7.2524), ts 300953132534, free_ts 298214332561
[ 301.627242][T13686] post_alloc_hook+0x181/0x1b0
[ 301.628619][T13686] get_page_from_freelist+0xfce/0x2f80
[ 301.630130][T13686] __alloc_frozen_pages_noprof+0x221/0x2470
[ 301.631768][T13686] alloc_pages_bulk_noprof+0x6f9/0x1390
[ 301.633281][T13686] __page_pool_alloc_pages_slow+0x18c/0x770
[ 301.634921][T13686] page_pool_alloc_netmems+0xc4/0x160
[ 301.636386][T13686] skb_pp_cow_data+0x776/0xf10
[ 301.637756][T13686] skb_cow_data_for_xdp+0x88/0xb0
[ 301.639144][T13686] do_xdp_generic+0x3f1/0xe70
[ 301.640454][T13686] tun_get_user+0x1e04/0x3e50
[ 301.641779][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.643138][T13686] vfs_write+0x5ae/0x1150
[ 301.644330][T13686] ksys_write+0x12b/0x250
[ 301.645522][T13686] do_syscall_64+0xcd/0x250
[ 301.646782][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.648451][T13686] page last free pid 5981 tgid 5981 stack trace:
[ 301.650171][T13686] free_frozen_pages+0x6db/0xfb0
[ 301.651541][T13686] kasan_depopulate_vmalloc_pte+0x63/0x80
[ 301.653103][T13686] __apply_to_page_range+0x5fd/0xd30
[ 301.654580][T13686] kasan_release_vmalloc+0xd1/0xe0
[ 301.655991][T13686] purge_vmap_node+0x1d1/0xa40
[ 301.657316][T13686] __purge_vmap_area_lazy+0x9bf/0xc10
[ 301.658841][T13686] drain_vmap_area_work+0x27/0x40
[ 301.660233][T13686] process_one_work+0x9c5/0x1ba0
[ 301.661619][T13686] worker_thread+0x6c8/0xf00
[ 301.662907][T13686] kthread+0x3af/0x750
[ 301.664079][T13686] ret_from_fork+0x45/0x80
[ 301.665315][T13686] ret_from_fork_asm+0x1a/0x30
[ 301.666648][T13686] Modules linked in:
[ 301.667789][T13686] CPU: 1 UID: 0 PID: 13686 Comm: syz.7.2524 Tainted: G B 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 301.667806][T13686] Tainted: [B]=BAD_PAGE
[ 301.667810][T13686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 301.667818][T13686] Call Trace:
[ 301.667822][T13686] <TASK>
[ 301.667826][T13686] dump_stack_lvl+0x16c/0x1f0
[ 301.667843][T13686] bad_page+0xb3/0x1f0
[ 301.667855][T13686] ? __pfx_bad_page+0x10/0x10
[ 301.667868][T13686] ? page_bad_reason+0x9d/0x1e0
[ 301.667882][T13686] free_frozen_pages+0x701/0xfb0
[ 301.667893][T13686] page_frag_free+0x255/0x2a0
[ 301.667905][T13686] __xdp_return+0x363/0xac0
[ 301.667922][T13686] ? kmem_cache_free+0x2e2/0x4d0
[ 301.667933][T13686] bpf_xdp_adjust_tail+0x9de/0xf70
[ 301.667952][T13686] bpf_prog_f476d5219b92964a+0x1e/0x20
[ 301.667961][T13686] bpf_prog_run_generic_xdp+0xe33/0x1500
[ 301.667976][T13686] do_xdp_generic+0x70a/0xe70
[ 301.667988][T13686] ? __pfx_do_xdp_generic+0x10/0x10
[ 301.668003][T13686] ? tun_get_user+0x1d55/0x3e50
[ 301.668019][T13686] tun_get_user+0x1e04/0x3e50
[ 301.668036][T13686] ? __pfx_tun_get_user+0x10/0x10
[ 301.668051][T13686] ? find_held_lock+0x2d/0x110
[ 301.668063][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.668081][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.668097][T13686] vfs_write+0x5ae/0x1150
[ 301.668107][T13686] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 301.668122][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.668136][T13686] ? __pfx_vfs_write+0x10/0x10
[ 301.668146][T13686] ? lock_acquire+0x2f/0xb0
[ 301.668160][T13686] ? __fget_files+0x40/0x3b0
[ 301.668173][T13686] ksys_write+0x12b/0x250
[ 301.668183][T13686] ? __pfx_ksys_write+0x10/0x10
[ 301.668194][T13686] do_syscall_64+0xcd/0x250
[ 301.668209][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.668225][T13686] RIP: 0033:0x7f3bb178bc1f
[ 301.668233][T13686] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 301.668244][T13686] RSP: 002b:00007f3bb25e2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 301.668254][T13686] RAX: ffffffffffffffda RBX: 00007f3bb19a5fa0 RCX: 00007f3bb178bc1f
[ 301.668261][T13686] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 301.668268][T13686] RBP: 00007f3bb180e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 301.668274][T13686] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 301.668281][T13686] R13: 0000000000000000 R14: 00007f3bb19a5fa0 R15: 00007fffb3befe88
[ 301.668290][T13686] </TASK>
[ 301.668297][T13686] BUG: Bad page state in process syz.7.2524 pfn:31948
[ 301.737521][T13686] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x31948
[ 301.739962][T13686] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 301.741931][T13686] raw: 00fff00000000000 dead000000000040 ffff888020d2d000 0000000000000000
[ 301.744256][T13686] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 301.746602][T13686] page dumped because: page_pool leak
[ 301.748145][T13686] page_owner tracks the page as allocated
[ 301.749721][T13686] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 13686, tgid 13685 (syz.7.2524), ts 300953123689, free_ts 298214518226
[ 301.754282][T13686] post_alloc_hook+0x181/0x1b0
[ 301.755579][T13686] get_page_from_freelist+0xfce/0x2f80
[ 301.757029][T13686] __alloc_frozen_pages_noprof+0x221/0x2470
[ 301.758687][T13686] alloc_pages_bulk_noprof+0x6f9/0x1390
[ 301.760137][T13686] __page_pool_alloc_pages_slow+0x18c/0x770
[ 301.761740][T13686] page_pool_alloc_netmems+0xc4/0x160
[ 301.763128][T13686] skb_pp_cow_data+0x776/0xf10
[ 301.764392][T13686] skb_cow_data_for_xdp+0x88/0xb0
[ 301.765777][T13686] do_xdp_generic+0x3f1/0xe70
[ 301.767088][T13686] tun_get_user+0x1e04/0x3e50
[ 301.768446][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.769827][T13686] vfs_write+0x5ae/0x1150
[ 301.771021][T13686] ksys_write+0x12b/0x250
[ 301.772246][T13686] do_syscall_64+0xcd/0x250
[ 301.773510][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.775117][T13686] page last free pid 13075 tgid 13075 stack trace:
[ 301.776817][T13686] free_frozen_pages+0x6db/0xfb0
[ 301.778207][T13686] vfree+0x174/0x950
[ 301.779245][T13686] __do_replace+0x7e0/0x9f0
[ 301.780460][T13686] do_ip6t_set_ctl+0x885/0xb10
[ 301.781770][T13686] nf_setsockopt+0x8a/0xf0
[ 301.782968][T13686] ipv6_setsockopt+0x135/0x170
[ 301.784289][T13686] tcp_setsockopt+0xa4/0x100
[ 301.785561][T13686] do_sock_setsockopt+0x222/0x480
[ 301.786954][T13686] __sys_setsockopt+0x1a0/0x230
[ 301.788333][T13686] __x64_sys_setsockopt+0xbd/0x160
[ 301.789759][T13686] do_syscall_64+0xcd/0x250
[ 301.791022][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.792676][T13686] Modules linked in:
[ 301.793772][T13686] CPU: 1 UID: 0 PID: 13686 Comm: syz.7.2524 Tainted: G B 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 301.793788][T13686] Tainted: [B]=BAD_PAGE
[ 301.793792][T13686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 301.793799][T13686] Call Trace:
[ 301.793804][T13686] <TASK>
[ 301.793809][T13686] dump_stack_lvl+0x16c/0x1f0
[ 301.793824][T13686] bad_page+0xb3/0x1f0
[ 301.793838][T13686] ? __pfx_bad_page+0x10/0x10
[ 301.793850][T13686] ? page_bad_reason+0x9d/0x1e0
[ 301.793863][T13686] free_frozen_pages+0x701/0xfb0
[ 301.793874][T13686] page_frag_free+0x255/0x2a0
[ 301.793887][T13686] __xdp_return+0x363/0xac0
[ 301.793902][T13686] ? kmem_cache_free+0x2e2/0x4d0
[ 301.793913][T13686] bpf_xdp_adjust_tail+0x9de/0xf70
[ 301.793932][T13686] bpf_prog_f476d5219b92964a+0x1e/0x20
[ 301.793940][T13686] bpf_prog_run_generic_xdp+0xe33/0x1500
[ 301.793956][T13686] do_xdp_generic+0x70a/0xe70
[ 301.793968][T13686] ? __pfx_do_xdp_generic+0x10/0x10
[ 301.793982][T13686] ? tun_get_user+0x1d55/0x3e50
[ 301.793998][T13686] tun_get_user+0x1e04/0x3e50
[ 301.794015][T13686] ? __pfx_tun_get_user+0x10/0x10
[ 301.794030][T13686] ? find_held_lock+0x2d/0x110
[ 301.794042][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.794059][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.794075][T13686] vfs_write+0x5ae/0x1150
[ 301.794085][T13686] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 301.794100][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.794114][T13686] ? __pfx_vfs_write+0x10/0x10
[ 301.794124][T13686] ? lock_acquire+0x2f/0xb0
[ 301.794137][T13686] ? __fget_files+0x40/0x3b0
[ 301.794150][T13686] ksys_write+0x12b/0x250
[ 301.794160][T13686] ? __pfx_ksys_write+0x10/0x10
[ 301.794171][T13686] do_syscall_64+0xcd/0x250
[ 301.794185][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.794200][T13686] RIP: 0033:0x7f3bb178bc1f
[ 301.794208][T13686] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 301.794219][T13686] RSP: 002b:00007f3bb25e2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 301.794229][T13686] RAX: ffffffffffffffda RBX: 00007f3bb19a5fa0 RCX: 00007f3bb178bc1f
[ 301.794235][T13686] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 301.794242][T13686] RBP: 00007f3bb180e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 301.794248][T13686] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 301.794264][T13686] R13: 0000000000000000 R14: 00007f3bb19a5fa0 R15: 00007fffb3befe88
[ 301.794273][T13686] </TASK>
[ 301.794280][T13686] BUG: Bad page state in process syz.7.2524 pfn:32bf3
[ 301.863503][T13686] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888032bf34b0 pfn:0x32bf3
[ 301.866126][T13686] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 301.868102][T13686] raw: 00fff00000000000 dead000000000040 ffff888020d2d000 0000000000000000
[ 301.870440][T13686] raw: ffff888032bf34b0 0000000000000001 00000000ffffffff 0000000000000000
[ 301.872730][T13686] page dumped because: page_pool leak
[ 301.874180][T13686] page_owner tracks the page as allocated
[ 301.875720][T13686] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 13686, tgid 13685 (syz.7.2524), ts 300953102085, free_ts 300910010715
[ 301.880265][T13686] post_alloc_hook+0x181/0x1b0
[ 301.881629][T13686] get_page_from_freelist+0xfce/0x2f80
[ 301.883136][T13686] __alloc_frozen_pages_noprof+0x221/0x2470
[ 301.884761][T13686] alloc_pages_bulk_noprof+0x6f9/0x1390
[ 301.886286][T13686] __page_pool_alloc_pages_slow+0x18c/0x770
[ 301.887954][T13686] page_pool_alloc_netmems+0xc4/0x160
[ 301.889438][T13686] skb_pp_cow_data+0x776/0xf10
[ 301.890698][T13686] skb_cow_data_for_xdp+0x88/0xb0
[ 301.892031][T13686] do_xdp_generic+0x3f1/0xe70
[ 301.892150][ T5965] usb 11-1: USB disconnect, device number 20
[ 301.893292][T13686] tun_get_user+0x1e04/0x3e50
[ 301.893310][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.893324][T13686] vfs_write+0x5ae/0x1150
[ 301.893334][T13686] ksys_write+0x12b/0x250
[ 301.899942][T13686] do_syscall_64+0xcd/0x250
[ 301.901157][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.902747][T13686] page last free pid 13649 tgid 13649 stack trace:
[ 301.904499][T13686] free_frozen_pages+0x6db/0xfb0
[ 301.906023][T13686] __put_partials+0x14c/0x170
[ 301.907357][T13686] qlist_free_all+0x4e/0x120
[ 301.908674][T13686] kasan_quarantine_reduce+0x195/0x1e0
[ 301.910133][T13686] __kasan_slab_alloc+0x69/0x90
[ 301.911467][T13686] kmem_cache_alloc_node_noprof+0x223/0x3c0
[ 301.913096][T13686] __alloc_skb+0x2b1/0x380
[ 301.914351][T13686] netlink_alloc_large_skb+0x69/0x130
[ 301.915803][T13686] netlink_sendmsg+0x686/0xd70
[ 301.917116][T13686] ____sys_sendmsg+0xa87/0xc70
[ 301.918474][T13686] ___sys_sendmsg+0x135/0x1e0
[ 301.919771][T13686] __sys_sendmsg+0x16e/0x220
[ 301.921049][T13686] do_syscall_64+0xcd/0x250
[ 301.922276][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.923837][T13686] Modules linked in:
[ 301.924912][T13686] CPU: 1 UID: 0 PID: 13686 Comm: syz.7.2524 Tainted: G B 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 301.924928][T13686] Tainted: [B]=BAD_PAGE
[ 301.924932][T13686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 301.924939][T13686] Call Trace:
[ 301.924943][T13686] <TASK>
[ 301.924947][T13686] dump_stack_lvl+0x16c/0x1f0
[ 301.924961][T13686] bad_page+0xb3/0x1f0
[ 301.924974][T13686] ? __pfx_bad_page+0x10/0x10
[ 301.924987][T13686] ? page_bad_reason+0x9d/0x1e0
[ 301.925000][T13686] free_frozen_pages+0x701/0xfb0
[ 301.925011][T13686] page_frag_free+0x255/0x2a0
[ 301.925023][T13686] __xdp_return+0x363/0xac0
[ 301.925038][T13686] ? kmem_cache_free+0x2e2/0x4d0
[ 301.925049][T13686] bpf_xdp_adjust_tail+0x9de/0xf70
[ 301.925068][T13686] bpf_prog_f476d5219b92964a+0x1e/0x20
[ 301.925077][T13686] bpf_prog_run_generic_xdp+0xe33/0x1500
[ 301.925092][T13686] do_xdp_generic+0x70a/0xe70
[ 301.925104][T13686] ? __pfx_do_xdp_generic+0x10/0x10
[ 301.925119][T13686] ? tun_get_user+0x1d55/0x3e50
[ 301.925136][T13686] tun_get_user+0x1e04/0x3e50
[ 301.925153][T13686] ? __pfx_tun_get_user+0x10/0x10
[ 301.925167][T13686] ? find_held_lock+0x2d/0x110
[ 301.925180][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.925197][T13686] tun_chr_write_iter+0xdc/0x210
[ 301.925213][T13686] vfs_write+0x5ae/0x1150
[ 301.925223][T13686] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 301.925238][T13686] ? __pfx_lock_release+0x10/0x10
[ 301.925252][T13686] ? __pfx_vfs_write+0x10/0x10
[ 301.925262][T13686] ? lock_acquire+0x2f/0xb0
[ 301.925275][T13686] ? __fget_files+0x40/0x3b0
[ 301.925288][T13686] ksys_write+0x12b/0x250
[ 301.925298][T13686] ? __pfx_ksys_write+0x10/0x10
[ 301.925309][T13686] do_syscall_64+0xcd/0x250
[ 301.925323][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.925338][T13686] RIP: 0033:0x7f3bb178bc1f
[ 301.925346][T13686] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 301.925357][T13686] RSP: 002b:00007f3bb25e2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 301.925367][T13686] RAX: ffffffffffffffda RBX: 00007f3bb19a5fa0 RCX: 00007f3bb178bc1f
[ 301.925374][T13686] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 301.925380][T13686] RBP: 00007f3bb180e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 301.925387][T13686] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 301.925393][T13686] R13: 0000000000000000 R14: 00007f3bb19a5fa0 R15: 00007fffb3befe88
[ 301.925402][T13686] </TASK>
[ 301.925412][T13686] BUG: Bad page state in process syz.7.2524 pfn:320bf
[ 301.993752][T13686] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880320bff00 pfn:0x320bf
[ 301.996406][T13686] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 301.999216][T13686] raw: 00fff00000000000 dead000000000040 ffff888020d2d000 0000000000000000
[ 302.001798][T13686] raw: ffff8880320bff00 0000000000000001 00000000ffffffff 0000000000000000
[ 302.004179][T13686] page dumped because: page_pool leak
[ 302.005668][T13686] page_owner tracks the page as allocated
[ 302.007243][T13686] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 13686, tgid 13685 (syz.7.2524), ts 300953093511, free_ts 300910014632
[ 302.011802][T13686] post_alloc_hook+0x181/0x1b0
[ 302.013089][T13686] get_page_from_freelist+0xfce/0x2f80
[ 302.014557][T13686] __alloc_frozen_pages_noprof+0x221/0x2470
[ 302.016156][T13686] alloc_pages_bulk_noprof+0x6f9/0x1390
[ 302.017666][T13686] __page_pool_alloc_pages_slow+0x18c/0x770
[ 302.019308][T13686] page_pool_alloc_netmems+0xc4/0x160
[ 302.020742][T13686] skb_pp_cow_data+0x776/0xf10
[ 302.022090][T13686] skb_cow_data_for_xdp+0x88/0xb0
[ 302.023440][T13686] do_xdp_generic+0x3f1/0xe70
[ 302.024736][T13686] tun_get_user+0x1e04/0x3e50
[ 302.026048][T13686] tun_chr_write_iter+0xdc/0x210
[ 302.027368][T13686] vfs_write+0x5ae/0x1150
[ 302.028577][T13686] ksys_write+0x12b/0x250
[ 302.029772][T13686] do_syscall_64+0xcd/0x250
[ 302.031047][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.032618][T13686] page last free pid 13649 tgid 13649 stack trace:
[ 302.034369][T13686] free_frozen_pages+0x6db/0xfb0
[ 302.035713][T13686] __put_partials+0x14c/0x170
[ 302.037032][T13686] qlist_free_all+0x4e/0x120
[ 302.038339][T13686] kasan_quarantine_reduce+0x195/0x1e0
[ 302.039836][T13686] __kasan_slab_alloc+0x69/0x90
[ 302.041135][T13686] kmem_cache_alloc_node_noprof+0x223/0x3c0
[ 302.042720][T13686] __alloc_skb+0x2b1/0x380
[ 302.043914][T13686] netlink_alloc_large_skb+0x69/0x130
[ 302.045355][T13686] netlink_sendmsg+0x686/0xd70
[ 302.046655][T13686] ____sys_sendmsg+0xa87/0xc70
[ 302.048008][T13686] ___sys_sendmsg+0x135/0x1e0
[ 302.049246][T13686] __sys_sendmsg+0x16e/0x220
[ 302.050489][T13686] do_syscall_64+0xcd/0x250
[ 302.051697][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.053339][T13686] Modules linked in:
[ 302.054462][T13686] CPU: 1 UID: 0 PID: 13686 Comm: syz.7.2524 Tainted: G B 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 302.054477][T13686] Tainted: [B]=BAD_PAGE
[ 302.054481][T13686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 302.054488][T13686] Call Trace:
[ 302.054497][T13686] <TASK>
[ 302.054502][T13686] dump_stack_lvl+0x16c/0x1f0
[ 302.054517][T13686] bad_page+0xb3/0x1f0
[ 302.054531][T13686] ? __pfx_bad_page+0x10/0x10
[ 302.054544][T13686] ? page_bad_reason+0x9d/0x1e0
[ 302.054556][T13686] free_frozen_pages+0x701/0xfb0
[ 302.054568][T13686] page_frag_free+0x255/0x2a0
[ 302.054580][T13686] __xdp_return+0x363/0xac0
[ 302.054606][T13686] ? kmem_cache_free+0x2e2/0x4d0
[ 302.054616][T13686] bpf_xdp_adjust_tail+0x9de/0xf70
[ 302.054635][T13686] bpf_prog_f476d5219b92964a+0x1e/0x20
[ 302.054644][T13686] bpf_prog_run_generic_xdp+0xe33/0x1500
[ 302.054659][T13686] do_xdp_generic+0x70a/0xe70
[ 302.054671][T13686] ? __pfx_do_xdp_generic+0x10/0x10
[ 302.054686][T13686] ? tun_get_user+0x1d55/0x3e50
[ 302.054702][T13686] tun_get_user+0x1e04/0x3e50
[ 302.054719][T13686] ? __pfx_tun_get_user+0x10/0x10
[ 302.054734][T13686] ? find_held_lock+0x2d/0x110
[ 302.054747][T13686] ? __pfx_lock_release+0x10/0x10
[ 302.054764][T13686] tun_chr_write_iter+0xdc/0x210
[ 302.054779][T13686] vfs_write+0x5ae/0x1150
[ 302.054790][T13686] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 302.054805][T13686] ? __pfx_lock_release+0x10/0x10
[ 302.054819][T13686] ? __pfx_vfs_write+0x10/0x10
[ 302.054829][T13686] ? lock_acquire+0x2f/0xb0
[ 302.054842][T13686] ? __fget_files+0x40/0x3b0
[ 302.054855][T13686] ksys_write+0x12b/0x250
[ 302.054865][T13686] ? __pfx_ksys_write+0x10/0x10
[ 302.054875][T13686] do_syscall_64+0xcd/0x250
[ 302.054890][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.054905][T13686] RIP: 0033:0x7f3bb178bc1f
[ 302.054913][T13686] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 302.054924][T13686] RSP: 002b:00007f3bb25e2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 302.054934][T13686] RAX: ffffffffffffffda RBX: 00007f3bb19a5fa0 RCX: 00007f3bb178bc1f
[ 302.054941][T13686] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 302.054948][T13686] RBP: 00007f3bb180e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 302.054954][T13686] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 302.054960][T13686] R13: 0000000000000000 R14: 00007f3bb19a5fa0 R15: 00007fffb3befe88
[ 302.054969][T13686] </TASK>
[ 302.054983][T13686] BUG: Bad page state in process syz.7.2524 pfn:4c49a
[ 302.125059][T13686] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88804c49a1e0 pfn:0x4c49a
[ 302.127822][T13686] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 302.129754][T13686] raw: 00fff00000000000 dead000000000040 ffff888020d2d000 0000000000000000
[ 302.132102][T13686] raw: ffff88804c49a1e0 0000000000000001 00000000ffffffff 0000000000000000
[ 302.134460][T13686] page dumped because: page_pool leak
[ 302.135939][T13686] page_owner tracks the page as allocated
[ 302.137505][T13686] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 13686, tgid 13685 (syz.7.2524), ts 300953086952, free_ts 300910018025
[ 302.142185][T13686] post_alloc_hook+0x181/0x1b0
[ 302.143522][T13686] get_page_from_freelist+0xfce/0x2f80
[ 302.145050][T13686] __alloc_frozen_pages_noprof+0x221/0x2470
[ 302.146694][T13686] alloc_pages_bulk_noprof+0x6f9/0x1390
[ 302.148265][T13686] __page_pool_alloc_pages_slow+0x18c/0x770
[ 302.149906][T13686] page_pool_alloc_netmems+0xc4/0x160
[ 302.151414][T13686] skb_pp_cow_data+0x776/0xf10
[ 302.152752][T13686] skb_cow_data_for_xdp+0x88/0xb0
[ 302.154162][T13686] do_xdp_generic+0x3f1/0xe70
[ 302.155483][T13686] tun_get_user+0x1e04/0x3e50
[ 302.156781][T13686] tun_chr_write_iter+0xdc/0x210
[ 302.158198][T13686] vfs_write+0x5ae/0x1150
[ 302.159394][T13686] ksys_write+0x12b/0x250
[ 302.160597][T13686] do_syscall_64+0xcd/0x250
[ 302.161888][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.163516][T13686] page last free pid 13649 tgid 13649 stack trace:
[ 302.165285][T13686] free_frozen_pages+0x6db/0xfb0
[ 302.166665][T13686] __put_partials+0x14c/0x170
[ 302.168018][T13686] qlist_free_all+0x4e/0x120
[ 302.169301][T13686] kasan_quarantine_reduce+0x195/0x1e0
[ 302.170810][T13686] __kasan_slab_alloc+0x69/0x90
[ 302.172162][T13686] kmem_cache_alloc_node_noprof+0x223/0x3c0
[ 302.173804][T13686] __alloc_skb+0x2b1/0x380
[ 302.175049][T13686] netlink_alloc_large_skb+0x69/0x130
[ 302.176529][T13686] netlink_sendmsg+0x686/0xd70
[ 302.177906][T13686] ____sys_sendmsg+0xa87/0xc70
[ 302.179237][T13686] ___sys_sendmsg+0x135/0x1e0
[ 302.180546][T13686] __sys_sendmsg+0x16e/0x220
[ 302.181841][T13686] do_syscall_64+0xcd/0x250
[ 302.183101][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.184723][T13686] Modules linked in:
[ 302.185818][T13686] CPU: 1 UID: 0 PID: 13686 Comm: syz.7.2524 Tainted: G B 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 302.185835][T13686] Tainted: [B]=BAD_PAGE
[ 302.185839][T13686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 302.185846][T13686] Call Trace:
[ 302.185851][T13686] <TASK>
[ 302.185856][T13686] dump_stack_lvl+0x16c/0x1f0
[ 302.185871][T13686] bad_page+0xb3/0x1f0
[ 302.185885][T13686] ? __pfx_bad_page+0x10/0x10
[ 302.185898][T13686] ? page_bad_reason+0x9d/0x1e0
[ 302.185911][T13686] free_frozen_pages+0x701/0xfb0
[ 302.185922][T13686] page_frag_free+0x255/0x2a0
[ 302.185935][T13686] __xdp_return+0x363/0xac0
[ 302.185949][T13686] ? kmem_cache_free+0x2e2/0x4d0
[ 302.185960][T13686] bpf_xdp_adjust_tail+0x9de/0xf70
[ 302.185979][T13686] bpf_prog_f476d5219b92964a+0x1e/0x20
[ 302.185988][T13686] bpf_prog_run_generic_xdp+0xe33/0x1500
[ 302.186003][T13686] do_xdp_generic+0x70a/0xe70
[ 302.186015][T13686] ? __pfx_do_xdp_generic+0x10/0x10
[ 302.186030][T13686] ? tun_get_user+0x1d55/0x3e50
[ 302.186046][T13686] tun_get_user+0x1e04/0x3e50
[ 302.186063][T13686] ? __pfx_tun_get_user+0x10/0x10
[ 302.186078][T13686] ? find_held_lock+0x2d/0x110
[ 302.186091][T13686] ? __pfx_lock_release+0x10/0x10
[ 302.186108][T13686] tun_chr_write_iter+0xdc/0x210
[ 302.186124][T13686] vfs_write+0x5ae/0x1150
[ 302.186134][T13686] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 302.186150][T13686] ? __pfx_lock_release+0x10/0x10
[ 302.186164][T13686] ? __pfx_vfs_write+0x10/0x10
[ 302.186174][T13686] ? lock_acquire+0x2f/0xb0
[ 302.186188][T13686] ? __fget_files+0x40/0x3b0
[ 302.186201][T13686] ksys_write+0x12b/0x250
[ 302.186210][T13686] ? __pfx_ksys_write+0x10/0x10
[ 302.186221][T13686] do_syscall_64+0xcd/0x250
[ 302.186236][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.186251][T13686] RIP: 0033:0x7f3bb178bc1f
[ 302.186259][T13686] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 302.186270][T13686] RSP: 002b:00007f3bb25e2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 302.186280][T13686] RAX: ffffffffffffffda RBX: 00007f3bb19a5fa0 RCX: 00007f3bb178bc1f
[ 302.186287][T13686] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 302.186293][T13686] RBP: 00007f3bb180e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 302.186299][T13686] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 302.186306][T13686] R13: 0000000000000000 R14: 00007f3bb19a5fa0 R15: 00007fffb3befe88
[ 302.186315][T13686] </TASK>
[ 302.186322][T13686] BUG: Bad page state in process syz.7.2524 pfn:4c49d
[ 302.256232][T13686] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88804c49dd20 pfn:0x4c49d
[ 302.258995][T13686] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 302.260929][T13686] raw: 00fff00000000000 dead000000000040 ffff888020d2d000 0000000000000000
[ 302.263289][T13686] raw: ffff88804c49dd20 0000000000000001 00000000ffffffff 0000000000000000
[ 302.265622][T13686] page dumped because: page_pool leak
[ 302.267105][T13686] page_owner tracks the page as allocated
[ 302.268709][T13686] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 13686, tgid 13685 (syz.7.2524), ts 300953079330, free_ts 300910022889
[ 302.273339][T13686] post_alloc_hook+0x181/0x1b0
[ 302.274665][T13686] get_page_from_freelist+0xfce/0x2f80
[ 302.276165][T13686] __alloc_frozen_pages_noprof+0x221/0x2470
[ 302.277849][T13686] alloc_pages_bulk_noprof+0x6f9/0x1390
[ 302.279376][T13686] __page_pool_alloc_pages_slow+0x18c/0x770
[ 302.281012][T13686] page_pool_alloc_netmems+0xc4/0x160
[ 302.282510][T13686] skb_pp_cow_data+0x776/0xf10
[ 302.283850][T13686] skb_cow_data_for_xdp+0x88/0xb0
[ 302.285250][T13686] do_xdp_generic+0x3f1/0xe70
[ 302.286570][T13686] tun_get_user+0x1e04/0x3e50
[ 302.287933][T13686] tun_chr_write_iter+0xdc/0x210
[ 302.289311][T13686] vfs_write+0x5ae/0x1150
[ 302.290521][T13686] ksys_write+0x12b/0x250
[ 302.291736][T13686] do_syscall_64+0xcd/0x250
[ 302.293002][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.294651][T13686] page last free pid 13649 tgid 13649 stack trace:
[ 302.296433][T13686] free_frozen_pages+0x6db/0xfb0
[ 302.297851][T13686] __put_partials+0x14c/0x170
[ 302.299165][T13686] qlist_free_all+0x4e/0x120
[ 302.300448][T13686] kasan_quarantine_reduce+0x195/0x1e0
[ 302.301955][T13686] __kasan_slab_alloc+0x69/0x90
[ 302.303302][T13686] kmem_cache_alloc_node_noprof+0x223/0x3c0
[ 302.304927][T13686] __alloc_skb+0x2b1/0x380
[ 302.306176][T13686] netlink_alloc_large_skb+0x69/0x130
[ 302.307714][T13686] netlink_sendmsg+0x686/0xd70
[ 302.309052][T13686] ____sys_sendmsg+0xa87/0xc70
[ 302.310415][T13686] ___sys_sendmsg+0x135/0x1e0
[ 302.311733][T13686] __sys_sendmsg+0x16e/0x220
[ 302.313046][T13686] do_syscall_64+0xcd/0x250
[ 302.314329][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.315974][T13686] Modules linked in:
[ 302.317074][T13686] CPU: 1 UID: 0 PID: 13686 Comm: syz.7.2524 Tainted: G B 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 302.317090][T13686] Tainted: [B]=BAD_PAGE
[ 302.317094][T13686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 302.317101][T13686] Call Trace:
[ 302.317105][T13686] <TASK>
[ 302.317109][T13686] dump_stack_lvl+0x16c/0x1f0
[ 302.317124][T13686] bad_page+0xb3/0x1f0
[ 302.317138][T13686] ? __pfx_bad_page+0x10/0x10
[ 302.317151][T13686] ? page_bad_reason+0x9d/0x1e0
[ 302.317164][T13686] free_frozen_pages+0x701/0xfb0
[ 302.317175][T13686] page_frag_free+0x255/0x2a0
[ 302.317187][T13686] __xdp_return+0x363/0xac0
[ 302.317202][T13686] ? kmem_cache_free+0x2e2/0x4d0
[ 302.317213][T13686] bpf_xdp_adjust_tail+0x9de/0xf70
[ 302.317232][T13686] bpf_prog_f476d5219b92964a+0x1e/0x20
[ 302.317241][T13686] bpf_prog_run_generic_xdp+0xe33/0x1500
[ 302.317256][T13686] do_xdp_generic+0x70a/0xe70
[ 302.317268][T13686] ? __pfx_do_xdp_generic+0x10/0x10
[ 302.317283][T13686] ? tun_get_user+0x1d55/0x3e50
[ 302.317299][T13686] tun_get_user+0x1e04/0x3e50
[ 302.317316][T13686] ? __pfx_tun_get_user+0x10/0x10
[ 302.317330][T13686] ? find_held_lock+0x2d/0x110
[ 302.317343][T13686] ? __pfx_lock_release+0x10/0x10
[ 302.317361][T13686] tun_chr_write_iter+0xdc/0x210
[ 302.317377][T13686] vfs_write+0x5ae/0x1150
[ 302.317387][T13686] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 302.317402][T13686] ? __pfx_lock_release+0x10/0x10
[ 302.317421][T13686] ? __pfx_vfs_write+0x10/0x10
[ 302.317430][T13686] ? lock_acquire+0x2f/0xb0
[ 302.317444][T13686] ? __fget_files+0x40/0x3b0
[ 302.317457][T13686] ksys_write+0x12b/0x250
[ 302.317467][T13686] ? __pfx_ksys_write+0x10/0x10
[ 302.317478][T13686] do_syscall_64+0xcd/0x250
[ 302.317492][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.317507][T13686] RIP: 0033:0x7f3bb178bc1f
[ 302.317514][T13686] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 302.317525][T13686] RSP: 002b:00007f3bb25e2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 302.317546][T13686] RAX: ffffffffffffffda RBX: 00007f3bb19a5fa0 RCX: 00007f3bb178bc1f
[ 302.317552][T13686] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 302.317559][T13686] RBP: 00007f3bb180e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 302.317566][T13686] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 302.317572][T13686] R13: 0000000000000000 R14: 00007f3bb19a5fa0 R15: 00007fffb3befe88
[ 302.317581][T13686] </TASK>
[ 302.386073][T13686] BUG: Bad page state in process syz.7.2524 pfn:4c49e
[ 302.387986][T13686] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88804c49ef00 pfn:0x4c49e
[ 302.390735][T13686] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 302.392692][T13686] raw: 00fff00000000000 dead000000000040 ffff888020d2d000 0000000000000000
[ 302.395056][T13686] raw: ffff88804c49ef00 0000000000000001 00000000ffffffff 0000000000000000
[ 302.397398][T13686] page dumped because: page_pool leak
[ 302.398945][T13686] page_owner tracks the page as allocated
[ 302.400517][T13686] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 13686, tgid 13685 (syz.7.2524), ts 300953071364, free_ts 300910026558
[ 302.405088][T13686] post_alloc_hook+0x181/0x1b0
[ 302.406452][T13686] get_page_from_freelist+0xfce/0x2f80
[ 302.408010][T13686] __alloc_frozen_pages_noprof+0x221/0x2470
[ 302.409586][T13686] alloc_pages_bulk_noprof+0x6f9/0x1390
[ 302.411088][T13686] __page_pool_alloc_pages_slow+0x18c/0x770
[ 302.412759][T13686] page_pool_alloc_netmems+0xc4/0x160
[ 302.414279][T13686] skb_pp_cow_data+0x776/0xf10
[ 302.415617][T13686] skb_cow_data_for_xdp+0x88/0xb0
[ 302.416997][T13686] do_xdp_generic+0x3f1/0xe70
[ 302.418370][T13686] tun_get_user+0x1e04/0x3e50
[ 302.419696][T13686] tun_chr_write_iter+0xdc/0x210
[ 302.421088][T13686] vfs_write+0x5ae/0x1150
[ 302.422350][T13686] ksys_write+0x12b/0x250
[ 302.423573][T13686] do_syscall_64+0xcd/0x250
[ 302.424852][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.426505][T13686] page last free pid 13649 tgid 13649 stack trace:
[ 302.428323][T13686] free_frozen_pages+0x6db/0xfb0
[ 302.429715][T13686] __put_partials+0x14c/0x170
[ 302.431022][T13686] qlist_free_all+0x4e/0x120
[ 302.432323][T13686] kasan_quarantine_reduce+0x195/0x1e0
[ 302.433835][T13686] __kasan_slab_alloc+0x69/0x90
[ 302.435189][T13686] kmem_cache_alloc_node_noprof+0x223/0x3c0
[ 302.436813][T13686] __alloc_skb+0x2b1/0x380
[ 302.438101][T13686] netlink_alloc_large_skb+0x69/0x130
[ 302.439577][T13686] netlink_sendmsg+0x686/0xd70
[ 302.440905][T13686] ____sys_sendmsg+0xa87/0xc70
[ 302.442234][T13686] ___sys_sendmsg+0x135/0x1e0
[ 302.443538][T13686] __sys_sendmsg+0x16e/0x220
[ 302.444819][T13686] do_syscall_64+0xcd/0x250
[ 302.446086][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.447762][T13686] Modules linked in:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 302.448854][T13686] CPU: 1 UID: 0 PID: 13686 Comm: syz.7.2524 Tainted: G B 6.14.0-syzkaller-00685-g3ba7dfb8da62 #0
[ 302.448870][T13686] Tainted: [B]=BAD_PAGE
[ 302.448873][T13686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 302.448881][T13686] Call Trace:
[ 302.448885][T13686] <TASK>
[ 302.448889][T13686] dump_stack_lvl+0x16c/0x1f0
[ 302.448905][T13686] bad_page+0xb3/0x1f0
[ 302.448918][T13686] ? __pfx_bad_page+0x10/0x10
[ 302.448930][T13686] ? page_bad_reason+0x9d/0x1e0
[ 302.448943][T13686] free_frozen_pages+0x701/0xfb0
[ 302.448955][T13686] page_frag_free+0x255/0x2a0
[ 302.448967][T13686] __xdp_return+0x363/0xac0
[ 302.448983][T13686] ? kmem_cache_free+0x2e2/0x4d0
[ 302.448994][T13686] bpf_xdp_adjust_tail+0x9de/0xf70
[ 302.449013][T13686] bpf_prog_f476d5219b92964a+0x1e/0x20
[ 302.449021][T13686] bpf_prog_run_generic_xdp+0xe33/0x1500
[ 302.449036][T13686] do_xdp_generic+0x70a/0xe70
[ 302.449048][T13686] ? __pfx_do_xdp_generic+0x10/0x10
[ 302.449063][T13686] ? tun_get_user+0x1d55/0x3e50
[ 302.449079][T13686] tun_get_user+0x1e04/0x3e50
[ 302.449097][T13686] ? __pfx_tun_get_user+0x10/0x10
[ 302.449111][T13686] ? find_held_lock+0x2d/0x110
[ 302.449124][T13686] ? __pfx_lock_release+0x10/0x10
[ 302.449142][T13686] tun_chr_write_iter+0xdc/0x210
[ 302.449157][T13686] vfs_write+0x5ae/0x1150
[ 302.449167][T13686] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 302.449182][T13686] ? __pfx_lock_release+0x10/0x10
[ 302.449197][T13686] ? __pfx_vfs_write+0x10/0x10
[ 302.449206][T13686] ? lock_acquire+0x2f/0xb0
[ 302.449220][T13686] ? __fget_files+0x40/0x3b0
[ 302.449233][T13686] ksys_write+0x12b/0x250
[ 302.449242][T13686] ? __pfx_ksys_write+0x10/0x10
[ 302.449253][T13686] do_syscall_64+0xcd/0x250
[ 302.449268][T13686] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.449282][T13686] RIP: 0033:0x7f3bb178bc1f
[ 302.449290][T13686] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 302.449301][T13686] RSP: 002b:00007f3bb25e2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 302.449311][T13686] RAX: ffffffffffffffda RBX: 00007f3bb19a5fa0 RCX: 00007f3bb178bc1f
[ 302.449317][T13686] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 302.449323][T13686] RBP: 00007f3bb180e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 302.449330][T13686] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 302.449336][T13686] R13: 0000000000000000 R14: 00007f3bb19a5fa0 R15: 00007fffb3befe88
[ 302.449345][T13686] </TASK>
[ 302.908274][ T46] netdevsim netdevsim6 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 303.145082][ T46] netdevsim netdevsim6 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 303.308385][ T46] netdevsim netdevsim6 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 303.418708][ T46] netdevsim netdevsim6 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 303.618728][ T46] bridge_slave_1: left promiscuous mode
[ 303.620526][ T46] bridge0: port 2(bridge_slave_1) entered disabled state
[ 303.623183][ T46] bridge_slave_0: left promiscuous mode
[ 303.625037][ T46] bridge0: port 1(bridge_slave_0) entered disabled state
[ 304.749867][ T46] bond0 (unregistering): (slave bridge0): Releasing backup interface
[ 305.642405][ T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 305.678707][ T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 305.717952][ T46] bond0 (unregistering): Released all slaves
[ 305.779266][ T46] tipc: Left network mode
[ 305.808180][ T46] IPVS: stopping backup sync thread 9195 ...
[ 306.198006][ T46] hsr_slave_0: left promiscuous mode
[ 306.200231][ T46] hsr_slave_1: left promiscuous mode
[ 306.201932][ T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 306.203945][ T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 306.268076][ T46] pimreg3 (unregistering): left allmulticast mode
VM DIAGNOSIS:
06:45:29 Registers:
info registers vcpu 0
CPU#0
RAX=00000000dead4ead RBX=ffffffff9aa94170 RCX=ffffffff8195d22e RDX=0000000000000000
RSI=ffffffff8b6d0040 RDI=ffffffff9aa94174 RBP=1ffff9200001ef1e RSP=ffffc900000f78e8
R8 =0000000000000000 R9 =fffffbfff2dd8d98 R10=ffffffff96ec6cc7 R11=0000000000000004
R12=ffffffff9aa94168 R13=00000000000011d9 R14=0000000000000000 R15=ffff88804f9ae500
RIP=ffffffff8197380a RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f77d3d26f98 CR3=0000000052210000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004000040 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffb5893150 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f960840f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f960840f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f960840f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f960840f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f960840f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f960840f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
CPU#1
RAX=0000000000000064 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85408d15 RDI=ffffffff9ab846c0 RBP=ffffffff9ab84680 RSP=ffffc9000c29efc0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000005
R12=0000000000000000 R13=0000000000000064 R14=ffffffff9ab84680 R15=0000000000000000
RIP=ffffffff85408d3f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007f3bb25e26c0 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000010000 CR3=000000004645a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3bb180f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3bb180f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3bb180f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3bb180f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3bb180f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3bb180f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3bb197c488 00007f3bb197c480 00007f3bb197c478 00007f3bb197c450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3bb24dd100 00007f3bb197c440 00007f3bb197c458 00007f3bb197c4a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3bb197c498 00007f3bb197c490 00007f3bb197c488 00007f3bb197c480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 00000000000000a0
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2
CPU#2
RAX=0000000000000001 RBX=ffff88810486e3c2 RCX=ffffc900265d1000 RDX=000000000000000f
RSI=00000000ffffffff RDI=ffffffff8e1bd0c0 RBP=ffffc9000c82f970 RSP=ffffc9000c82f8d8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000003
R12=0000000000000003 R13=00000000ffffffff R14=0000000000000000 R15=0000000000000001
RIP=ffffffff8b57c742 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007f77d3d276c0 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT= fffffe000008f000 0000007f
IDT= fffffe0000000000 0000ffff
CR0=80050033 CR2=00002000000d6000 CR3=000000002e356000 CR4=00352ef0
DR0=0000000000000007 DR1=000000000000000b DR2=0000000000000002 DR3=0000000000000009
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=0000000000000fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff812bf56f ffffffff812bf56f
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 ffffffff812bf56f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f77d300f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f77d300f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f77d300f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f77d300f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f77d300f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f77d300f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff818421eb ffffffff8184217f ffffffff81842137 ffffffff815f3125
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8237e3da ffffffff8237e3c7 ffffffff00040008 0000000f0010000c
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8237dfe9 ffffffff8237dfb6 ffffffff8237df99 ffffffff8237de55
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3
CPU#3
RAX=00000000004d9507 RBX=0000000000000003 RCX=ffffffff8b57d619 RDX=0000000000000000
RSI=ffffffff8b6cfd40 RDI=ffffffff8bd356a0 RBP=ffffed1003ad1000 RSP=ffffc90000197e08
R8 =0000000000000001 R9 =ffffed100d526f85 R10=ffff88806a937c2b R11=0000000000000000
R12=0000000000000003 R13=ffff88801d688000 R14=ffffffff90625210 R15=0000000000000000
RIP=ffffffff8b57e9ff RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT= fffffe00000d6000 0000007f
IDT= fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f77d2f839d3 CR3=0000000029f5a000 CR4=00352ef0
DR0=0000000000000007 DR1=000000000000000b DR2=0000000000000002 DR3=0000000000000009
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0023766564646968 2f6273752f766564
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f972280f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f972280f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f972280f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f972280f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f972280f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f972280f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d7810509000f2201 0000402109000000 0315000004090000 0000010024020901
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f97234dd100 00007f972297c440 00007f9722970004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f972297c498 00007f972297c490 00007f972297c488 00007f972297c480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000