last executing test programs: 3.742118433s ago: executing program 0 (id=1066): setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x98, 0x30, 0x1, 0x0, 0x0, {}, [{0x84, 0x1, [@m_ct={0x44, 0x1e, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x7, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}, @m_tunnel_key={0x3c, 0x4, 0x0, 0x0, {{0xf}, {0xc, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0xc}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x4}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80) ftruncate(r1, 0x2007ffb) sendfile(r1, r1, 0x0, 0x1000000201005) ftruncate(r1, 0x6) 3.480722581s ago: executing program 0 (id=1069): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)={0x74, r1, 0x5, 0xfffffffe, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x39, 0xe, {{{}, {0x7}, @device_a, @broadcast}, 0x0, @default, 0x9850, @val={0x0, 0x6, @default_ibss_ssid}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @val={0x71, 0x7, {0x0, 0x4, 0x1, 0x1, 0x0, 0xa, 0x8}}, @void}}, @NL80211_ATTR_PROBE_RESP={0xa, 0x91, "a911da6fc303"}], @chandef_params, @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x74}}, 0x0) 3.480179209s ago: executing program 0 (id=1070): openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8042, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x1, &(0x7f0000000ac0)=ANY=[@ANYBLOB="e7e4861f4bcfc6ea1143faf5be5b5e6bb7fabe3baafc310136a16290571ae8331b4e694ced800eb58807a4", @ANYBLOB=',rootmo']) openat$iommufd(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) getpeername$qrtr(0xffffffffffffffff, &(0x7f0000000280), &(0x7f0000000500)=0xc) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be7d", 0x7) r4 = accept4(r3, 0x0, 0x0, 0x800) sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 3.259907515s ago: executing program 0 (id=1071): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000"], 0x84}, 0x1, 0x0, 0x0, 0x24004050}, 0x20000044) r1 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r1, &(0x7f0000002c80)={0xa, 0x14e24, 0x0, @rand_addr, 0xfffffffc}, 0x1c) connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c) sendmmsg(r1, &(0x7f00000092c0), 0x4ff, 0x0) 3.258357071s ago: executing program 0 (id=1072): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f0000000240)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000000100)='./bus\x00') rename(&(0x7f0000000400)='./bus\x00', &(0x7f0000000f00)='./file0\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)='./file0/../file0\x00') 3.130709856s ago: executing program 0 (id=1073): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000d3750820c80a2103be6f000000010902120001000000000904"], 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000540)={0x1c, &(0x7f00000000c0)=ANY=[], 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000a80)={0x84, &(0x7f0000000640)={0x0, 0xe}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000c40)={0x84, &(0x7f0000000500)={0x20, 0xe}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) 1.540517011s ago: executing program 2 (id=1110): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, 0x0, &(0x7f0000000080)='ramfs\x00', 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@redirect_dir_follow}]}) r0 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43) mknodat$loop(r0, &(0x7f00000002c0)='./file1\x00', 0xffffffffffff8000, 0x0) chdir(&(0x7f00000003c0)='./bus\x00') linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x2) 1.539810207s ago: executing program 2 (id=1112): mkdir(&(0x7f0000000140)='./file0\x00', 0x5) mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn']) chdir(&(0x7f0000000080)='./file0\x00') mount$nfs(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x2000, 0x0) 1.468924341s ago: executing program 2 (id=1114): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff274140000001100"], 0x84}, 0x1, 0x0, 0x0, 0x24004050}, 0x20000044) r1 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r1, &(0x7f0000002c80)={0xa, 0x14e24, 0x0, @rand_addr, 0xfffffffc}, 0x1c) connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c) sendmmsg(r1, &(0x7f00000092c0), 0x4ff, 0x0) 1.468532012s ago: executing program 2 (id=1116): r0 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_open_dev$sndmidi(0x0, 0x2, 0x141101) r1 = userfaultfd(0x80001) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000140)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1}) madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19) r2 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x1}, 0x1c) ioctl$UFFDIO_COPY(r1, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x3000}) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, 0x0}) close_range(r3, 0xffffffffffffffff, 0x0) 970.279996ms ago: executing program 3 (id=1126): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x69, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="300000001e0021002bbd7000000000000a000000050000000000000014"], 0x30}}, 0x0) 899.934435ms ago: executing program 3 (id=1128): r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000005c0)=ANY=[@ANYBLOB="12010000ff000040720501cb6526010203010902120001000000000904"], 0x0) syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000500)={0x14, 0x0, &(0x7f00000004c0)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000f00)={0x24, 0x0, &(0x7f0000000d80)={0x0, 0x3, 0x4, @lang_id={0xd, 0x3, 0x2c01}}, 0x0, 0x0}, 0x0) syz_usb_control_io$uac1(r0, &(0x7f0000000180)={0x14, 0x0, &(0x7f0000000000)={0x0, 0x3, 0x2d, @string={0x2d, 0x3, "0b80a21a2825f9bbb8c95a15b70aec495b6ab15e6a935ee91b326215d641d77e9c81821fd18decd04976dd"}}}, 0x0) 490.604592ms ago: executing program 2 (id=1135): socket$inet6_sctp(0xa, 0x5, 0x84) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020}, 0x2020) r0 = socket$pptp(0x18, 0x1, 0x2) socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x0, 0x0}, &(0x7f0000000080)=0xc) bind$pptp(r0, &(0x7f0000000200)={0x18, 0x2, {0xfeff, @local}}, 0x1e) connect$pptp(r0, &(0x7f0000000700)={0x18, 0x2, {0x0, @loopback}}, 0x1e) r1 = socket$pppl2tp(0x18, 0x1, 0x1) r2 = syz_io_uring_setup(0x7165, &(0x7f0000002100)={0x0, 0x7f11, 0x10100, 0x402, 0x16d}, 0x0, 0x0) io_uring_enter(r2, 0x79a9, 0x2, 0x46, 0x0, 0x0) syz_open_dev$midi(&(0x7f0000001080), 0x6, 0x28080) openat$proc_mixer(0xffffff9c, 0x0, 0x8000, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(r2, 0x6, 0x0, 0x0) ioctl$SIOCSIFMTU(r1, 0x8923, &(0x7f0000000000)={'bridge_slave_0\x00', 0x1}) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d}, 0x94) r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0) ioctl$EVIOCGPROP(r3, 0x40047438, &(0x7f0000000180)=""/246) writev(r3, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1) 397.152144ms ago: executing program 3 (id=1138): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) mkdirat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x118) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e"]) chdir(&(0x7f00000000c0)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x19d) write$P9_RREADLINK(r0, &(0x7f0000000180)={0xffffffffffffff9e, 0x17, 0xfffd, {0x7, './file0'}}, 0x10) 309.581932ms ago: executing program 3 (id=1140): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x80}, 0x4000) recvmmsg(r0, &(0x7f0000002c00)=[{{0x0, 0x0, 0x0}, 0x1feffe}, {{0x0, 0x0, 0x0}, 0x5}, {{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000740)=""/181, 0xb5}, {&(0x7f0000000900)=""/219, 0xdb}, {&(0x7f0000003e00)=""/4093, 0xffd}, {&(0x7f0000000800)=""/239, 0xef}], 0x4}, 0x101}, {{0x0, 0x0, 0x0}, 0xff7}, {{0x0, 0x0, 0x0}, 0x6}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f00000006c0)=""/124, 0x7c}, {&(0x7f00000003c0)=""/215, 0xd7}, {&(0x7f0000004e40)=""/4096, 0x1000}, {&(0x7f0000000a00)=""/4087, 0xff7}, {&(0x7f00000004c0)=""/107, 0x6b}, {&(0x7f0000000540)=""/130, 0x82}], 0x6}, 0x4db}, {{0x0, 0x0, 0x0}, 0x6}], 0x8, 0x40010000, 0x0) 309.482025ms ago: executing program 1 (id=1141): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@redirect_dir_follow}]}) r0 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43) mknodat$loop(r0, &(0x7f00000002c0)='./file1\x00', 0xffffffffffff8000, 0x0) chdir(&(0x7f00000003c0)='./bus\x00') linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x2) 260.167943ms ago: executing program 3 (id=1142): unshare(0x68040200) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) socket(0x1e, 0x4, 0x0) r0 = socket(0x840000000002, 0x3, 0xff) sendmmsg$inet(r0, &(0x7f0000000440)=[{{&(0x7f0000000180)={0x2, 0x0, @empty}, 0x10, &(0x7f0000000200)=[{&(0x7f00000005c0)="a1c0ffff000039a9029e2d34161c00006145f0d9", 0x14}], 0x1}}], 0x1, 0x20000880) 209.675662ms ago: executing program 2 (id=1143): r0 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_open_dev$sndmidi(0x0, 0x2, 0x141101) r1 = userfaultfd(0x80001) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000140)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1}) madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19) r2 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x1}, 0x1c) ioctl$UFFDIO_COPY(r1, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x3000}) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, 0x0}) close_range(r3, 0xffffffffffffffff, 0x0) 208.774293ms ago: executing program 1 (id=1144): mkdir(&(0x7f0000000140)='./file0\x00', 0x5) mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn']) chdir(&(0x7f0000000080)='./file0\x00') mount$nfs(&(0x7f00000001c0)='>/.4\x8e\xc5\x16+\xec\xf6\bP\xca.v%\x05k\xa9\xcb\x00.\xa1\x82\xb5F\x03\xb8\x04\xd6%\x91-a\xb2\xd5\x00\xe5\xa5V8\x16sd@F\r\xb2Y\x8b!r~\xc1\x02\xee,\x93\a\xa2{}h\xaa\xc1e\xc0\x8e\xf4;\x7f\x90\\\'\xc3\r\x9a\x8d\x1d\x86\xff\x03\x973hr\xa3\"w\xf2\xea\xff\xb2\xe3\x9c\x81-\x92\x85\xa4\xf8\'\xc7\x11\xf4\x19\xa0\x1c\x03\x14\xc4P\\\x95h\xb5\x9b\xa3\x1fG5+\x84\xc3(\'\tCA6^)\xa73\xa4|\x04\x84\x03\xadQ\xd1\xf8\xea8\\\x97{F4\xdc\x99)b\xdb.\x9b\xfd2e{#\x8d\xaa\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x0, 0x0, 0x2000, 0x0) 130.584751ms ago: executing program 1 (id=1145): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x24004050}, 0x20000044) r1 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r1, 0x0, 0x0) connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c) sendmmsg(r1, &(0x7f00000092c0), 0x4ff, 0x0) 70.826145ms ago: executing program 1 (id=1146): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000000)={0x4, 0x1f, 0x10, 0x80, 0x100, &(0x7f0000000040)="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"}) 70.647502ms ago: executing program 1 (id=1147): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x69, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="300000001e0021002bbd7000000000000a000000050000000000000014"], 0x30}}, 0x0) 226.502µs ago: executing program 1 (id=1148): r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000040)={0x3, 0x6576, 0xd}) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r0, 0x100000000) 0s ago: executing program 3 (id=1149): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) mkdirat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x118) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e"]) chdir(&(0x7f00000000c0)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x19d) write$P9_RREADLINK(r0, &(0x7f0000000180)={0xffffffffffffff9e, 0x17, 0xfffd, {0x7, './file0'}}, 0x10) kernel console output (not intermixed with test programs): [ 57.972579][ T40] audit: type=1400 audit(1760541984.159:61): avc: denied { siginh } for pid=5890 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 Warning: Permanently added '[localhost]:24681' (ED25519) to the list of known hosts. [ 59.048551][ T40] audit: type=1400 audit(1760541985.249:62): avc: denied { name_bind } for pid=5911 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 59.075512][ T40] audit: type=1400 audit(1760541985.279:63): avc: denied { write } for pid=5914 comm="sh" path="pipe:[6650]" dev="pipefs" ino=6650 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 59.092761][ T40] audit: type=1400 audit(1760541985.299:64): avc: denied { execute } for pid=5914 comm="sh" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 59.102225][ T40] audit: type=1400 audit(1760541985.299:65): avc: denied { execute_no_trans } for pid=5914 comm="sh" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 61.226517][ T40] audit: type=1400 audit(1760541987.429:66): avc: denied { mounton } for pid=5914 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 61.239106][ T5914] cgroup: Unknown subsys name 'net' [ 61.383447][ T5914] cgroup: Unknown subsys name 'cpuset' [ 61.387922][ T5914] cgroup: Unknown subsys name 'rlimit' [ 61.611312][ T5926] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 62.370498][ T5914] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 65.799700][ T40] kauditd_printk_skb: 13 callbacks suppressed [ 65.799719][ T40] audit: type=1400 audit(1760541991.999:80): avc: denied { execmem } for pid=5931 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 66.080390][ T40] audit: type=1400 audit(1760541992.279:81): avc: denied { create } for pid=5935 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 66.086951][ T40] audit: type=1400 audit(1760541992.279:82): avc: denied { read write } for pid=5935 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 66.094616][ T40] audit: type=1400 audit(1760541992.279:83): avc: denied { open } for pid=5935 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 66.102193][ T40] audit: type=1400 audit(1760541992.299:84): avc: denied { ioctl } for pid=5936 comm="syz-executor" path="socket:[7193]" dev="sockfs" ino=7193 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 66.119337][ T5940] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 66.123443][ T5940] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 66.129375][ T5947] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 66.132639][ T5291] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 66.133151][ T5951] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 66.135768][ T5291] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 66.138007][ T5951] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 66.140350][ T5291] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 66.142728][ T5951] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 66.145047][ T5291] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 66.149164][ T5291] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 66.153279][ T5946] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 66.157421][ T5949] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 66.157698][ T40] audit: type=1400 audit(1760541992.359:85): avc: denied { read } for pid=5935 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 66.159020][ T5291] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 66.167514][ T5949] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 66.167927][ T5946] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 66.168209][ T5946] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 66.169297][ T40] audit: type=1400 audit(1760541992.359:86): avc: denied { open } for pid=5935 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 66.173120][ T5949] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 66.174260][ T40] audit: type=1400 audit(1760541992.359:87): avc: denied { mounton } for pid=5935 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 66.177867][ T5949] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 66.196855][ T5949] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 66.365685][ T40] audit: type=1400 audit(1760541992.569:88): avc: denied { module_request } for pid=5937 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 66.453592][ T5937] chnl_net:caif_netlink_parms(): no params data found [ 66.475715][ T5935] chnl_net:caif_netlink_parms(): no params data found [ 66.537086][ T5936] chnl_net:caif_netlink_parms(): no params data found [ 66.605034][ T5937] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.608046][ T5937] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.610657][ T5937] bridge_slave_0: entered allmulticast mode [ 66.613636][ T5937] bridge_slave_0: entered promiscuous mode [ 66.620335][ T5937] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.622668][ T5937] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.625009][ T5937] bridge_slave_1: entered allmulticast mode [ 66.627723][ T5937] bridge_slave_1: entered promiscuous mode [ 66.653335][ T5948] chnl_net:caif_netlink_parms(): no params data found [ 66.728004][ T5937] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.770949][ T5937] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.774005][ T5935] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.776319][ T5935] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.778723][ T5935] bridge_slave_0: entered allmulticast mode [ 66.781899][ T5935] bridge_slave_0: entered promiscuous mode [ 66.822055][ T5936] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.824433][ T5936] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.826773][ T5936] bridge_slave_0: entered allmulticast mode [ 66.829484][ T5936] bridge_slave_0: entered promiscuous mode [ 66.882181][ T5935] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.884556][ T5935] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.886892][ T5935] bridge_slave_1: entered allmulticast mode [ 66.889989][ T5935] bridge_slave_1: entered promiscuous mode [ 66.927061][ T5936] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.929370][ T5936] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.932594][ T5936] bridge_slave_1: entered allmulticast mode [ 66.935620][ T5936] bridge_slave_1: entered promiscuous mode [ 66.955608][ T5937] team0: Port device team_slave_0 added [ 66.977711][ T5935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.999754][ T5936] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 67.005052][ T5937] team0: Port device team_slave_1 added [ 67.008647][ T5935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 67.032754][ T5936] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 67.073673][ T5935] team0: Port device team_slave_0 added [ 67.138185][ T5935] team0: Port device team_slave_1 added [ 67.173095][ T5948] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.175639][ T5948] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.177969][ T5948] bridge_slave_0: entered allmulticast mode [ 67.181299][ T5948] bridge_slave_0: entered promiscuous mode [ 67.184953][ T5936] team0: Port device team_slave_0 added [ 67.187494][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 67.189913][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 67.197898][ T5937] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 67.225940][ T5948] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.228378][ T5948] bridge0: port 2(bridge_slave_1) entered disabled state [ 67.235828][ T5948] bridge_slave_1: entered allmulticast mode [ 67.238958][ T5948] bridge_slave_1: entered promiscuous mode [ 67.243186][ T5936] team0: Port device team_slave_1 added [ 67.246096][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 67.248280][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 67.256605][ T5937] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 67.261125][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 67.263392][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 67.272354][ T5935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 67.308786][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 67.311213][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 67.319256][ T5935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 67.352968][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 67.355277][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 67.364155][ T5936] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 67.373046][ T5948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 67.377878][ T5948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 67.381367][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 67.383624][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 67.392570][ T5936] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 67.502084][ T5948] team0: Port device team_slave_0 added [ 67.507311][ T5935] hsr_slave_0: entered promiscuous mode [ 67.509950][ T5935] hsr_slave_1: entered promiscuous mode [ 67.515462][ T5937] hsr_slave_0: entered promiscuous mode [ 67.517825][ T5937] hsr_slave_1: entered promiscuous mode [ 67.520985][ T5937] debugfs: 'hsr0' already exists in 'hsr' [ 67.523524][ T5937] Cannot create hsr debugfs directory [ 67.542340][ T5948] team0: Port device team_slave_1 added [ 67.598711][ T5936] hsr_slave_0: entered promiscuous mode [ 67.601144][ T5936] hsr_slave_1: entered promiscuous mode [ 67.603276][ T5936] debugfs: 'hsr0' already exists in 'hsr' [ 67.605145][ T5936] Cannot create hsr debugfs directory [ 67.608243][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 67.610587][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 67.618716][ T5948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 67.623461][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 67.625739][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 67.634359][ T5948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 67.823025][ T5948] hsr_slave_0: entered promiscuous mode [ 67.825869][ T5948] hsr_slave_1: entered promiscuous mode [ 67.828823][ T5948] debugfs: 'hsr0' already exists in 'hsr' [ 67.831261][ T5948] Cannot create hsr debugfs directory [ 68.076367][ T5937] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 68.096659][ T5937] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 68.101923][ T5937] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 68.111976][ T5937] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 68.142790][ T5936] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 68.149207][ T5936] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 68.163780][ T5936] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 68.169181][ T5936] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 68.190414][ T5940] Bluetooth: hci2: command tx timeout [ 68.190447][ T5949] Bluetooth: hci0: command tx timeout [ 68.190691][ T5946] Bluetooth: hci1: command tx timeout [ 68.202307][ T5935] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 68.215234][ T5935] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 68.223458][ T5935] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 68.242198][ T5935] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 68.270691][ T5949] Bluetooth: hci3: command tx timeout [ 68.293446][ T5948] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 68.298025][ T5948] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 68.305006][ T5948] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 68.312141][ T5948] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 68.384939][ T5937] 8021q: adding VLAN 0 to HW filter on device bond0 [ 68.395191][ T5936] 8021q: adding VLAN 0 to HW filter on device bond0 [ 68.416201][ T5937] 8021q: adding VLAN 0 to HW filter on device team0 [ 68.429490][ T76] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.431948][ T76] bridge0: port 1(bridge_slave_0) entered forwarding state [ 68.441161][ T5936] 8021q: adding VLAN 0 to HW filter on device team0 [ 68.447323][ T1233] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.449758][ T1233] bridge0: port 2(bridge_slave_1) entered forwarding state [ 68.457920][ T5935] 8021q: adding VLAN 0 to HW filter on device bond0 [ 68.468997][ T853] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.471370][ T853] bridge0: port 1(bridge_slave_0) entered forwarding state [ 68.485047][ T853] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.487406][ T853] bridge0: port 2(bridge_slave_1) entered forwarding state [ 68.493733][ T5948] 8021q: adding VLAN 0 to HW filter on device bond0 [ 68.504099][ T5935] 8021q: adding VLAN 0 to HW filter on device team0 [ 68.525957][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.528310][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 68.536760][ T5948] 8021q: adding VLAN 0 to HW filter on device team0 [ 68.542431][ T853] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.544818][ T853] bridge0: port 2(bridge_slave_1) entered forwarding state [ 68.555618][ T76] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.558134][ T76] bridge0: port 1(bridge_slave_0) entered forwarding state [ 68.571726][ T40] audit: type=1400 audit(1760541994.779:89): avc: denied { sys_module } for pid=5937 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 68.582530][ T1233] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.584908][ T1233] bridge0: port 2(bridge_slave_1) entered forwarding state [ 68.674162][ T5937] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 68.703489][ T5937] veth0_vlan: entered promiscuous mode [ 68.717434][ T5937] veth1_vlan: entered promiscuous mode [ 68.736215][ T5936] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 68.753177][ T5935] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 68.766279][ T5937] veth0_macvtap: entered promiscuous mode [ 68.773588][ T5937] veth1_macvtap: entered promiscuous mode [ 68.780196][ T5948] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 68.805824][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 68.830224][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 68.834118][ T5936] veth0_vlan: entered promiscuous mode [ 68.837837][ T5935] veth0_vlan: entered promiscuous mode [ 68.854762][ T5936] veth1_vlan: entered promiscuous mode [ 68.858050][ T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.863393][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.866994][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.870763][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.874975][ T5935] veth1_vlan: entered promiscuous mode [ 68.911084][ T5936] veth0_macvtap: entered promiscuous mode [ 68.922816][ T5936] veth1_macvtap: entered promiscuous mode [ 68.926485][ T5948] veth0_vlan: entered promiscuous mode [ 68.950401][ T5935] veth0_macvtap: entered promiscuous mode [ 68.958122][ T5935] veth1_macvtap: entered promiscuous mode [ 68.964557][ T853] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.965116][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 68.968049][ T853] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.972287][ T5948] veth1_vlan: entered promiscuous mode [ 68.988625][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 69.002854][ T853] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.008013][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 69.014252][ T853] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.017342][ T853] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.023648][ T1233] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.024793][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 69.026215][ T1233] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.034497][ T853] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.047735][ T853] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.051590][ T853] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.058769][ T853] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.062345][ T853] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.084124][ T5948] veth0_macvtap: entered promiscuous mode [ 69.084959][ T5937] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 69.088703][ T5948] veth1_macvtap: entered promiscuous mode [ 69.120070][ T853] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.123379][ T853] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.124400][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 69.138734][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 69.164199][ T76] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.167055][ T76] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.176777][ T76] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.181163][ T76] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.184667][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.187213][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.193094][ T1233] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.196423][ T1233] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.213837][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.216506][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.270409][ T55] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.273029][ T55] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.303471][ T1233] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.306572][ T1233] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.889864][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 70.090100][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 70.093380][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 70.096926][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 70.100781][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 70.240303][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 70.270218][ T5949] Bluetooth: hci1: command tx timeout [ 70.270602][ T5940] Bluetooth: hci2: command tx timeout [ 70.279746][ T5940] Bluetooth: hci0: command tx timeout [ 70.314088][ T6053] mkiss: ax0: crc mode is auto. [ 70.351087][ T5940] Bluetooth: hci3: command tx timeout [ 70.379768][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 70.382581][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 70.399930][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 70.439807][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 70.942865][ T40] kauditd_printk_skb: 77 callbacks suppressed [ 70.942921][ T40] audit: type=1400 audit(1760541997.149:167): avc: denied { create } for pid=6066 comm="syz.3.14" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 70.955616][ T40] audit: type=1400 audit(1760541997.159:168): avc: denied { write } for pid=6066 comm="syz.3.14" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 71.236982][ T40] audit: type=1400 audit(1760541997.439:169): avc: denied { read } for pid=6073 comm="syz.3.16" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 71.259986][ T40] audit: type=1400 audit(1760541997.439:170): avc: denied { open } for pid=6073 comm="syz.3.16" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 71.269882][ T40] audit: type=1400 audit(1760541997.459:171): avc: denied { ioctl } for pid=6073 comm="syz.3.16" path="/dev/binderfs/binder0" dev="binder" ino=7 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 71.278010][ T40] audit: type=1400 audit(1760541997.459:172): avc: denied { set_context_mgr } for pid=6073 comm="syz.3.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1 [ 71.288140][ T40] audit: type=1400 audit(1760541997.459:173): avc: denied { map } for pid=6073 comm="syz.3.16" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 71.399070][ T40] audit: type=1400 audit(1760541997.599:174): avc: denied { read } for pid=6075 comm="syz.2.17" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 71.417583][ T6083] ptrace attach of ""[6084] was attempted by "/syz-executor exec"[6083] [ 71.438374][ T40] audit: type=1400 audit(1760541997.599:175): avc: denied { open } for pid=6075 comm="syz.2.17" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 71.707928][ T6080] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 71.710991][ T6080] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 71.719545][ T6080] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 71.728913][ T6080] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 71.731215][ T6080] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 71.743726][ T6080] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 71.813367][ T6080] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 71.815430][ T6080] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 71.823295][ T6080] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 71.890120][ T6080] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 71.892303][ T6080] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 71.896342][ T6080] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 73.209035][ T6114] ptrace attach of ""[6115] was attempted by "/syz-executor exec"[6114] [ 73.709700][ T5940] Bluetooth: hci0: command 0x0419 tx timeout [ 73.800083][ T5940] Bluetooth: hci2: command 0x0419 tx timeout [ 73.870125][ T5940] Bluetooth: hci1: command 0x0419 tx timeout [ 73.950766][ T5940] Bluetooth: hci3: command 0x0419 tx timeout [ 74.457884][ T6140] ptrace attach of ""[6142] was attempted by "/syz-executor exec"[6140] [ 74.479120][ T40] audit: type=1804 audit(1760542000.679:176): pid=6138 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.32" name="/newroot/3/file0/file0" dev="9p" ino=71827785 res=1 errno=0 [ 75.280343][ T842] libceph: connect (1)[c::]:6789 error -101 [ 75.285744][ T842] libceph: mon0 (1)[c::]:6789 connect error [ 75.296148][ T842] libceph: connect (1)[c::]:6789 error -101 [ 75.298764][ T842] libceph: mon0 (1)[c::]:6789 connect error [ 75.390928][ T6170] ptrace attach of ""[6171] was attempted by "/syz-executor exec"[6170] [ 75.561278][ T5974] libceph: connect (1)[c::]:6789 error -101 [ 75.563381][ T5974] libceph: mon0 (1)[c::]:6789 connect error [ 75.751935][ T6164] ceph: No mds server is up or the cluster is laggy [ 75.789746][ T5940] Bluetooth: hci0: command 0x0419 tx timeout [ 75.870067][ T5940] Bluetooth: hci2: command 0x0419 tx timeout [ 75.928106][ T6197] ptrace attach of ""[6198] was attempted by "/syz-executor exec"[6197] [ 75.982678][ T5940] Bluetooth: hci1: command 0x0419 tx timeout [ 76.029693][ T5940] Bluetooth: hci3: command 0x0419 tx timeout [ 76.186163][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 76.186207][ T40] audit: type=1804 audit(1760542002.389:178): pid=6205 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.55" name="/newroot/12/file0/file0" dev="9p" ino=71827785 res=1 errno=0 [ 76.601046][ T40] audit: type=1400 audit(1760542002.809:179): avc: denied { create } for pid=6210 comm="syz.0.61" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 76.664604][ T40] audit: type=1400 audit(1760542002.869:180): avc: denied { create } for pid=6210 comm="syz.0.61" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 76.671796][ T40] audit: type=1400 audit(1760542002.869:181): avc: denied { create } for pid=6210 comm="syz.0.61" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 76.680050][ T40] audit: type=1400 audit(1760542002.869:182): avc: denied { connect } for pid=6210 comm="syz.0.61" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 76.719230][ T40] audit: type=1400 audit(1760542002.919:183): avc: denied { write } for pid=6210 comm="syz.0.61" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 76.941586][ T40] audit: type=1400 audit(1760542003.149:184): avc: denied { create } for pid=6218 comm="syz.1.64" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 76.957663][ T40] audit: type=1400 audit(1760542003.149:185): avc: denied { bind } for pid=6218 comm="syz.1.64" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 77.027231][ T6226] ptrace attach of ""[6227] was attempted by "/syz-executor exec"[6226] [ 77.169674][ T40] audit: type=1400 audit(1760542003.349:186): avc: denied { setopt } for pid=6218 comm="syz.1.64" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 77.324195][ T40] audit: type=1400 audit(1760542003.359:187): avc: denied { accept } for pid=6218 comm="syz.1.64" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 77.473099][ T1422] ieee802154 phy0 wpan0: encryption failed: -22 [ 77.475294][ T1422] ieee802154 phy1 wpan1: encryption failed: -22 [ 77.869726][ T5940] Bluetooth: hci0: command 0x0419 tx timeout [ 77.935563][ T6255] ptrace attach of ""[6256] was attempted by "/syz-executor exec"[6255] [ 77.959689][ T5940] Bluetooth: hci2: command 0x0419 tx timeout [ 78.030051][ T5940] Bluetooth: hci1: command 0x0419 tx timeout [ 78.124151][ T5940] Bluetooth: hci3: command 0x0419 tx timeout [ 78.600843][ T6274] 9pnet_virtio: no channels available for device syz [ 78.944691][ T6280] ptrace attach of ""[6283] was attempted by "/syz-executor exec"[6280] [ 79.329822][ T5978] usb 6-1: new full-speed USB device number 2 using dummy_hcd [ 79.499458][ T5978] usb 6-1: config index 0 descriptor too short (expected 156, got 27) [ 79.503883][ T5978] usb 6-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 79.518777][ T5978] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0 [ 79.523424][ T5978] usb 6-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 79.528157][ T5978] usb 6-1: config 0 interface 0 has no altsetting 0 [ 79.533457][ T5978] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 79.536882][ T5978] usb 6-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 79.540981][ T5978] usb 6-1: Product: syz [ 79.542461][ T5978] usb 6-1: Manufacturer: syz [ 79.544143][ T5978] usb 6-1: SerialNumber: syz [ 79.551950][ T5978] usb 6-1: config 0 descriptor?? [ 79.558309][ T5978] ldusb 6-1:0.0: Interrupt in endpoint not found [ 79.938678][ T6312] ptrace attach of ""[6314] was attempted by "/syz-executor exec"[6312] [ 79.949877][ T5940] Bluetooth: hci0: command 0x0419 tx timeout [ 80.031103][ T5940] Bluetooth: hci2: command 0x0419 tx timeout [ 80.109779][ T5940] Bluetooth: hci1: command 0x0419 tx timeout [ 80.189705][ T5940] Bluetooth: hci3: command 0x0419 tx timeout [ 80.399924][ T6331] 9pnet_virtio: no channels available for device syz [ 81.126167][ T6337] ptrace attach of ""[6339] was attempted by "/syz-executor exec"[6337] [ 81.702958][ T40] kauditd_printk_skb: 14 callbacks suppressed [ 81.702976][ T40] audit: type=1804 audit(1760542007.909:202): pid=6363 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.112" name="/newroot/32/file0/file0" dev="9p" ino=71827785 res=1 errno=0 [ 81.827349][ T54] usb 6-1: USB disconnect, device number 2 [ 82.297689][ T6369] ptrace attach of ""[6370] was attempted by "/syz-executor exec"[6369] [ 82.434536][ T40] audit: type=1400 audit(1760542008.639:203): avc: denied { call } for pid=6373 comm="syz.1.116" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1 [ 82.434694][ T6374] binder_alloc: 6373: binder_alloc_buf, no vma [ 82.598512][ T6379] Cache volume key already in use (9p,syz,) [ 82.903031][ T6396] ptrace attach of ""[6397] was attempted by "/syz-executor exec"[6396] [ 83.530130][ T6427] ptrace attach of ""[6428] was attempted by "/syz-executor exec"[6427] [ 83.532986][ T40] audit: type=1804 audit(1760542009.739:204): pid=6424 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.129" name="/newroot/28/file0/file0" dev="9p" ino=71827785 res=1 errno=0 [ 83.617363][ T6432] binder_alloc: 6431: binder_alloc_buf, no vma [ 83.733527][ T6437] 9pnet_virtio: no channels available for device syz [ 84.403979][ T6455] ptrace attach of ""[6456] was attempted by "/syz-executor exec"[6455] [ 84.615452][ T40] audit: type=1400 audit(1760542010.819:205): avc: denied { write } for pid=6451 comm="syz.0.139" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 85.198933][ T40] audit: type=1804 audit(1760542011.399:206): pid=6487 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.149" name="/newroot/43/file0/file0" dev="9p" ino=71827785 res=1 errno=0 [ 85.222591][ T6489] ptrace attach of ""[6490] was attempted by "/syz-executor exec"[6489] [ 85.286840][ T6492] binder_alloc: 6491: binder_alloc_buf, no vma [ 85.897272][ T6514] 9pnet_virtio: no channels available for device syz [ 86.167654][ T6521] ptrace attach of ""[6522] was attempted by "/syz-executor exec"[6521] [ 86.479989][ T6529] netlink: 'syz.3.163': attribute type 10 has an invalid length. [ 86.496666][ T6529] batman_adv: batadv0: Adding interface: team0 [ 86.498756][ T6529] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 86.506832][ T6529] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 86.520332][ T6529] netlink: 'syz.3.163': attribute type 10 has an invalid length. [ 86.523051][ T6529] netlink: 2 bytes leftover after parsing attributes in process `syz.3.163'. [ 86.526017][ T6529] team0: entered promiscuous mode [ 86.527732][ T6529] team_slave_0: entered promiscuous mode [ 86.529860][ T6529] team_slave_1: entered promiscuous mode [ 86.533053][ T6529] 8021q: adding VLAN 0 to HW filter on device team0 [ 86.535422][ T6529] batman_adv: batadv0: Interface activated: team0 [ 86.537524][ T6529] batman_adv: batadv0: Interface deactivated: team0 [ 86.542344][ T6529] batman_adv: batadv0: Removing interface: team0 [ 86.551160][ T6529] bridge0: port 3(team0) entered blocking state [ 86.559943][ T6529] bridge0: port 3(team0) entered disabled state [ 86.562169][ T6529] team0: entered allmulticast mode [ 86.563880][ T6529] team_slave_0: entered allmulticast mode [ 86.565708][ T6529] team_slave_1: entered allmulticast mode [ 86.571355][ T6529] bridge0: port 3(team0) entered blocking state [ 86.573572][ T6529] bridge0: port 3(team0) entered forwarding state [ 87.193215][ T6557] ptrace attach of ""[6558] was attempted by "/syz-executor exec"[6557] [ 87.357876][ T6569] 9pnet_virtio: no channels available for device syz [ 88.287573][ T6594] ptrace attach of ""[6597] was attempted by "/syz-executor exec"[6594] [ 88.645253][ T6618] 9pnet_virtio: no channels available for device syz [ 89.078218][ T6625] ptrace attach of ""[6626] was attempted by "/syz-executor exec"[6625] [ 89.348039][ T6636] binder: BINDER_SET_CONTEXT_MGR already set [ 89.359824][ T6636] binder: 6635:6636 ioctl 4018620d 200000004a80 returned -16 [ 89.451250][ T6646] block nbd1: NBD_DISCONNECT [ 89.466921][ T6646] ======================================================= [ 89.466921][ T6646] WARNING: The mand mount option has been deprecated and [ 89.466921][ T6646] and is ignored by this kernel. Remove the mand [ 89.466921][ T6646] option from the mount to silence this warning. [ 89.466921][ T6646] ======================================================= [ 89.481379][ T6646] overlayfs: conflicting options: userxattr,redirect_dir=on [ 89.484810][ T40] audit: type=1400 audit(1760542015.689:207): avc: denied { read write } for pid=6648 comm="syz.0.197" name="rdma_cm" dev="devtmpfs" ino=1294 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1 [ 89.492747][ T40] audit: type=1400 audit(1760542015.689:208): avc: denied { open } for pid=6648 comm="syz.0.197" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1294 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1 [ 89.505641][ T6646] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 89.524829][ T40] audit: type=1400 audit(1760542015.729:209): avc: denied { write } for pid=6648 comm="syz.0.197" name="binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 89.581687][ T6652] ptrace attach of ""[6653] was attempted by "/syz-executor exec"[6652] [ 89.598171][ T40] audit: type=1400 audit(1760542015.799:210): avc: denied { write } for pid=6648 comm="syz.0.197" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 89.607082][ T40] audit: type=1400 audit(1760542015.799:211): avc: denied { create } for pid=6648 comm="syz.0.197" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 89.614317][ T40] audit: type=1400 audit(1760542015.799:212): avc: denied { watch watch_reads } for pid=6648 comm="syz.0.197" path="/41" dev="tmpfs" ino=236 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 90.486654][ T6676] 9pnet_virtio: no channels available for device syz [ 90.661184][ T6682] ptrace attach of ""[6683] was attempted by "/syz-executor exec"[6682] [ 90.928507][ T6692] binder: BINDER_SET_CONTEXT_MGR already set [ 90.931817][ T6692] binder: 6691:6692 ioctl 4018620d 200000004a80 returned -16 [ 91.039453][ T40] audit: type=1400 audit(1760542017.239:213): avc: denied { mount } for pid=6693 comm="syz.2.217" name="/" dev="ramfs" ino=11735 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 92.283327][ C2] vkms_vblank_simulate: vblank timer overrun [ 92.457617][ T6735] Zero length message leads to an empty skb [ 92.522071][ T40] audit: type=1400 audit(1760542018.729:214): avc: denied { write } for pid=6734 comm="syz.0.230" name="loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 92.548236][ T40] audit: type=1400 audit(1760542018.739:215): avc: denied { open } for pid=6734 comm="syz.0.230" path="/dev/loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 92.565739][ T40] audit: type=1400 audit(1760542018.739:216): avc: denied { ioctl } for pid=6734 comm="syz.0.230" path="/dev/loop-control" dev="devtmpfs" ino=657 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 92.832170][ T840] cfg80211: failed to load regulatory.db [ 92.978898][ T6740] binder: BINDER_SET_CONTEXT_MGR already set [ 92.982124][ T6740] binder: 6739:6740 ioctl 4018620d 200000004a80 returned -16 [ 93.448144][ T6756] ptrace attach of ""[6757] was attempted by "/syz-executor exec"[6756] [ 93.474895][ T6748] : renamed from bridge_slave_0 (while UP) [ 93.716944][ T6770] 9pnet_virtio: no channels available for device syz [ 94.020472][ T6773] syz.1.243 uses obsolete (PF_INET,SOCK_PACKET) [ 94.217775][ T6783] ptrace attach of ""[6784] was attempted by "/syz-executor exec"[6783] [ 94.495583][ T6793] : renamed from bridge_slave_0 (while UP) [ 94.759250][ T6811] ptrace attach of ""[6812] was attempted by "/syz-executor exec"[6811] [ 94.799315][ T40] kauditd_printk_skb: 11 callbacks suppressed [ 94.799327][ T40] audit: type=1400 audit(1760542020.999:228): avc: denied { unlink } for pid=6813 comm="syz.2.261" name="#1" dev="tmpfs" ino=430 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 94.829858][ T40] audit: type=1400 audit(1760542021.019:229): avc: denied { mount } for pid=6813 comm="syz.2.261" name="/" dev="overlay" ino=425 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 95.164050][ T40] audit: type=1400 audit(1760542021.369:230): avc: denied { read } for pid=6828 comm="syz.1.265" name="event1" dev="devtmpfs" ino=942 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 95.179717][ T40] audit: type=1400 audit(1760542021.379:231): avc: denied { open } for pid=6828 comm="syz.1.265" path="/dev/input/event1" dev="devtmpfs" ino=942 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 95.192352][ T40] audit: type=1400 audit(1760542021.399:232): avc: denied { ioctl } for pid=6828 comm="syz.1.265" path="/dev/input/event1" dev="devtmpfs" ino=942 ioctlcmd=0x4503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 95.342555][ T40] audit: type=1400 audit(1760542021.549:233): avc: denied { create } for pid=6838 comm="syz.1.269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 95.352615][ T40] audit: type=1400 audit(1760542021.559:234): avc: denied { connect } for pid=6838 comm="syz.1.269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 95.564434][ T40] audit: type=1400 audit(1760542021.769:235): avc: denied { bind } for pid=6838 comm="syz.1.269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 95.971108][ T40] audit: type=1400 audit(1760542022.179:236): avc: denied { read write } for pid=6856 comm="syz.2.276" name="fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1 [ 95.979862][ T40] audit: type=1400 audit(1760542022.179:237): avc: denied { open } for pid=6856 comm="syz.2.276" path="/dev/fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1 [ 98.197657][ T6897] process 'syz.0.291' launched '/dev/fd/7' with NULL argv: empty string added [ 99.524493][ T6918] netlink: 'syz.3.298': attribute type 2 has an invalid length. [ 99.527549][ T6918] netlink: 192 bytes leftover after parsing attributes in process `syz.3.298'. [ 99.663778][ T6915] random: crng reseeded on system resumption [ 99.883083][ T40] kauditd_printk_skb: 13 callbacks suppressed [ 99.883099][ T40] audit: type=1400 audit(1760542026.089:251): avc: denied { write } for pid=6927 comm="syz.2.301" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 99.891766][ T40] audit: type=1400 audit(1760542026.089:252): avc: denied { setopt } for pid=6927 comm="syz.2.301" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 100.589769][ T5940] Bluetooth: hci2: command 0x0419 tx timeout [ 100.819789][ T6947] netlink: 4 bytes leftover after parsing attributes in process `syz.2.308'. [ 100.860501][ T6947] netlink: 4 bytes leftover after parsing attributes in process `syz.2.308'. [ 100.948280][ T40] audit: type=1400 audit(1760542027.149:253): avc: denied { write } for pid=6942 comm="syz.3.306" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1 [ 100.959403][ T40] audit: type=1400 audit(1760542027.149:254): avc: denied { open } for pid=6942 comm="syz.3.306" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1 [ 101.101842][ T6954] binder: BINDER_SET_CONTEXT_MGR already set [ 101.104146][ T6954] binder: 6953:6954 ioctl 4018620d 200000004a80 returned -16 [ 101.114437][ T6956] ptrace attach of ""[6957] was attempted by "/syz-executor exec"[6956] [ 101.885405][ T6972] : renamed from bridge_slave_0 (while UP) [ 101.896016][ T5978] libceph: connect (1)[c::]:6789 error -101 [ 101.898135][ T5978] libceph: mon0 (1)[c::]:6789 connect error [ 102.160050][ T5978] libceph: connect (1)[c::]:6789 error -101 [ 102.163633][ T5978] libceph: mon0 (1)[c::]:6789 connect error [ 102.298773][ T6999] binder: BINDER_SET_CONTEXT_MGR already set [ 102.301748][ T6999] binder: 6998:6999 ioctl 4018620d 200000004a80 returned -16 [ 102.483083][ T6973] ceph: No mds server is up or the cluster is laggy [ 102.962056][ T40] audit: type=1400 audit(1760542029.169:255): avc: denied { ioctl } for pid=7013 comm="syz.1.332" path="/dev/vhost-vsock" dev="devtmpfs" ino=1301 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 103.641658][ T40] audit: type=1400 audit(1760542029.839:256): avc: denied { mounton } for pid=7038 comm="syz.3.339" path="/86/file0" dev="tmpfs" ino=471 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 103.652860][ T40] audit: type=1400 audit(1760542029.859:257): avc: denied { ioctl } for pid=7038 comm="syz.3.339" path="/dev/fuse" dev="devtmpfs" ino=105 ioctlcmd=0xe500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1 [ 104.625845][ T40] audit: type=1326 audit(1760542030.829:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7069 comm="syz.2.352" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2467b8eec9 code=0x0 [ 104.667380][ T7080] syzkaller0: entered promiscuous mode [ 104.669320][ T7080] syzkaller0: entered allmulticast mode [ 105.642079][ T40] audit: type=1400 audit(1760542031.849:259): avc: denied { create } for pid=7085 comm="syz.3.356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 105.775567][ T7114] syzkaller0: entered promiscuous mode [ 105.777999][ T7114] syzkaller0: entered allmulticast mode [ 105.878477][ T7116] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 106.067499][ T7130] syz_tun: entered allmulticast mode [ 106.077179][ T7130] dvmrp1: entered allmulticast mode [ 106.095380][ T7129] syz_tun: left allmulticast mode [ 106.593026][ T40] audit: type=1400 audit(1760542032.789:260): avc: denied { firmware_load } for pid=7141 comm="syz.2.374" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1 [ 106.831425][ T7147] syzkaller0: entered promiscuous mode [ 106.833821][ T7147] syzkaller0: entered allmulticast mode [ 106.956547][ T40] audit: type=1804 audit(1760542033.159:261): pid=7150 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.376" name="/newroot/92/file0/file0" dev="9p" ino=71827785 res=1 errno=0 [ 107.257362][ T7143] syz.2.374 (7143) used greatest stack depth: 17928 bytes left [ 107.335500][ T7160] ptrace attach of ""[7162] was attempted by "/syz-executor exec"[7160] [ 107.585904][ T7167] netlink: 20 bytes leftover after parsing attributes in process `syz.0.379'. [ 107.752332][ T40] audit: type=1400 audit(1760542033.959:262): avc: denied { relabelfrom } for pid=7155 comm="syz.0.379" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 107.758632][ T40] audit: type=1400 audit(1760542033.959:263): avc: denied { relabelto } for pid=7155 comm="syz.0.379" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 108.239648][ T40] audit: type=1400 audit(1760542034.439:264): avc: denied { sqpoll } for pid=7181 comm="syz.0.387" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 108.651473][ T40] audit: type=1400 audit(1760542034.859:265): avc: denied { create } for pid=7179 comm="syz.2.386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 108.666034][ T40] audit: type=1400 audit(1760542034.869:266): avc: denied { write } for pid=7179 comm="syz.2.386" path="socket:[13637]" dev="sockfs" ino=13637 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 109.377502][ T40] audit: type=1400 audit(1760542035.579:267): avc: denied { create } for pid=7171 comm="syz.1.383" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1 [ 109.384084][ T40] audit: type=1400 audit(1760542035.579:268): avc: denied { write } for pid=7171 comm="syz.1.383" path="socket:[13640]" dev="sockfs" ino=13640 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1 [ 109.579213][ T7203] random: crng reseeded on system resumption [ 109.631727][ T7206] ptrace attach of ""[7207] was attempted by "/syz-executor exec"[7206] [ 110.009438][ T7218] netlink: 12 bytes leftover after parsing attributes in process `syz.3.397'. [ 110.640133][ T53] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 110.818973][ T40] kauditd_printk_skb: 16 callbacks suppressed [ 110.818999][ T40] audit: type=1326 audit(1760542037.019:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7222 comm="syz.0.398" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff619d8eec9 code=0x7fc00000 [ 110.862746][ T7239] ptrace attach of ""[7241] was attempted by "/syz-executor exec"[7239] [ 110.876505][ T53] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 16 [ 110.885488][ T53] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023 [ 110.926569][ T53] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 110.929511][ T53] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 110.937060][ T53] usb 7-1: Product: syz [ 110.938810][ T53] usb 7-1: Manufacturer: syz [ 110.941490][ T53] usb 7-1: SerialNumber: syz [ 111.297635][ T40] audit: type=1400 audit(1760542037.499:286): avc: denied { map } for pid=7226 comm="syz.2.399" path="socket:[14911]" dev="sockfs" ino=14911 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 111.314800][ T40] audit: type=1400 audit(1760542037.509:287): avc: denied { accept } for pid=7226 comm="syz.2.399" path="socket:[14911]" dev="sockfs" ino=14911 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 112.460074][ T7262] trusted_key: encrypted_key: key user:syz not found [ 112.462738][ T7262] netlink: 16 bytes leftover after parsing attributes in process `syz.1.410'. [ 113.214847][ T53] cdc_ncm 7-1:1.0: bind() failure [ 113.219512][ T53] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found [ 113.222169][ T53] cdc_ncm 7-1:1.1: bind() failure [ 113.231542][ T53] usb 7-1: USB disconnect, device number 2 [ 113.960765][ T40] audit: type=1804 audit(1760542040.169:288): pid=7278 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.415" name="/newroot/108/file0/file0" dev="9p" ino=71827785 res=1 errno=0 [ 114.056268][ T7284] ptrace attach of ""[7285] was attempted by "/syz-executor exec"[7284] [ 114.159298][ T7294] syz_tun: entered allmulticast mode [ 114.195215][ T7292] syz_tun: left allmulticast mode [ 114.934563][ T7306] syzkaller0: entered promiscuous mode [ 114.936458][ T7306] syzkaller0: entered allmulticast mode [ 115.301157][ T7323] syz_tun: entered allmulticast mode [ 115.312448][ T7321] syz_tun: left allmulticast mode [ 115.531398][ T7332] 9pnet: Unknown protocol version 9p200 [ 116.075892][ T40] audit: type=1400 audit(1760542042.279:289): avc: denied { create } for pid=7344 comm="syz.2.437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 116.082562][ T40] audit: type=1400 audit(1760542042.279:290): avc: denied { connect } for pid=7344 comm="syz.2.437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 116.088991][ T40] audit: type=1400 audit(1760542042.279:291): avc: denied { setopt } for pid=7344 comm="syz.2.437" laddr=fe80::13 lport=10239 faddr=fe80::31 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 116.097138][ T40] audit: type=1400 audit(1760542042.279:292): avc: denied { write } for pid=7344 comm="syz.2.437" laddr=fe80::13 lport=10239 faddr=fe80::31 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 116.575532][ T7362] syz_tun: entered allmulticast mode [ 116.621833][ T7361] syz_tun: left allmulticast mode [ 117.206994][ T40] audit: type=1400 audit(1760542043.409:293): avc: denied { ioctl } for pid=7365 comm="syz.0.444" path="socket:[13832]" dev="sockfs" ino=13832 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 117.210205][ T7378] comedi comedi3: ni_at_a2150: I/O port conflict (0x1,28) [ 117.238504][ T40] audit: type=1400 audit(1760542043.429:294): avc: denied { setopt } for pid=7365 comm="syz.0.444" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 118.358302][ T7403] netlink: 40 bytes leftover after parsing attributes in process `syz.1.452'. [ 118.549345][ T7387] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5) [ 118.552450][ T7387] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 118.558032][ T7401] vhci_hcd: connection closed [ 118.560131][ T7387] vhci_hcd vhci_hcd.0: Device attached [ 118.648167][ T76] vhci_hcd: stop threads [ 118.650139][ T76] vhci_hcd: release socket [ 118.651697][ T76] vhci_hcd: disconnect device [ 119.936983][ T40] audit: type=1400 audit(1760542046.139:295): avc: denied { read } for pid=7419 comm="syz.2.457" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1 [ 119.947034][ T40] audit: type=1400 audit(1760542046.149:296): avc: denied { ioctl } for pid=7419 comm="syz.2.457" path="/dev/fb0" dev="devtmpfs" ino=637 ioctlcmd=0x4605 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1 [ 120.360714][ T40] audit: type=1400 audit(1760542046.569:297): avc: denied { mount } for pid=7425 comm="syz.3.458" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 120.371041][ T7426] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 120.452610][ T40] audit: type=1400 audit(1760542046.649:298): avc: denied { bind } for pid=7425 comm="syz.3.458" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 120.966606][ T7450] syz_tun: entered allmulticast mode [ 120.977086][ T7450] dvmrp1: entered allmulticast mode [ 120.980542][ T7449] syz_tun: left allmulticast mode [ 121.204537][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 121.204554][ T40] audit: type=1400 audit(1760542047.409:300): avc: denied { unmount } for pid=5936 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 121.249830][ T34] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 121.401267][ T34] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 121.405258][ T34] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 121.408147][ T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 121.412716][ T34] usb 5-1: config 0 descriptor?? [ 121.482891][ T7458] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 121.544476][ T7459] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7) [ 121.546620][ T7459] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 121.549779][ T7459] vhci_hcd vhci_hcd.0: Device attached [ 121.555948][ T40] audit: type=1400 audit(1760542047.759:301): avc: denied { bind } for pid=7457 comm="syz.3.469" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 121.626065][ T34] usbhid 5-1:0.0: can't add hid device: -71 [ 121.628018][ T34] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 121.638706][ T34] usb 5-1: USB disconnect, device number 2 [ 121.714808][ T40] audit: type=1400 audit(1760542047.919:302): avc: denied { create } for pid=7465 comm="syz.1.471" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 121.790502][ T24] usb 43-1: new low-speed USB device number 2 using vhci_hcd [ 122.060798][ T34] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 122.219684][ T34] usb 5-1: Using ep0 maxpacket: 32 [ 122.223772][ T34] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 122.228254][ T34] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40 [ 122.234362][ T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 122.243229][ T34] usb 5-1: config 0 descriptor?? [ 122.256537][ T34] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 122.269988][ T34] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 122.321615][ T7460] vhci_hcd: connection reset by peer [ 122.323657][ T55] vhci_hcd: stop threads [ 122.325095][ T55] vhci_hcd: release socket [ 122.328453][ T55] vhci_hcd: disconnect device [ 122.718499][ T56] usb 5-1: USB disconnect, device number 3 [ 122.740877][ T56] ldusb 5-1:0.0: LD USB Device #0 now disconnected [ 122.929097][ T7492] syzkaller0: entered promiscuous mode [ 122.932358][ T7492] syzkaller0: entered allmulticast mode [ 123.054345][ T7495] binder: 7494:7495 ioctl 4018620d 0 returned -22 [ 123.544999][ T7520] syzkaller0: entered promiscuous mode [ 123.547706][ T7520] syzkaller0: entered allmulticast mode [ 123.572706][ T7517] fuse: Bad value for 'fd' [ 124.617851][ T7543] syzkaller0: entered promiscuous mode [ 124.619772][ T7543] syzkaller0: entered allmulticast mode [ 124.768604][ T7549] binder: 7548:7549 ioctl 4018620d 0 returned -22 [ 124.772751][ T40] audit: type=1400 audit(1760542050.939:303): avc: denied { write } for pid=7538 comm="syz.3.494" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 124.834933][ T7554] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 124.916352][ T7558] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 125.108543][ T7565] netlink: 12 bytes leftover after parsing attributes in process `syz.0.503'. [ 125.115932][ T7565] netlink: 12 bytes leftover after parsing attributes in process `syz.0.503'. [ 125.336981][ T40] audit: type=1400 audit(1760542051.539:304): avc: denied { write } for pid=7570 comm="syz.2.504" name="rtc0" dev="devtmpfs" ino=944 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 125.779243][ T7590] loop6: detected capacity change from 0 to 524287999 [ 125.781520][ T40] audit: type=1400 audit(1760542051.979:305): avc: denied { append } for pid=7589 comm="syz.2.514" name="loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 126.016169][ T7602] binder: 7601:7602 ioctl 4018620d 0 returned -22 [ 126.546211][ T7622] netlink: 'syz.0.525': attribute type 10 has an invalid length. [ 126.586951][ T7622] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 126.800879][ T7630] netlink: 8 bytes leftover after parsing attributes in process `syz.0.527'. [ 126.804911][ T7629] netlink: 40 bytes leftover after parsing attributes in process `syz.3.526'. [ 126.812917][ T40] audit: type=1400 audit(1760542052.979:306): avc: denied { create } for pid=7623 comm="syz.3.526" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 126.841198][ T40] audit: type=1400 audit(1760542052.979:307): avc: denied { ioctl } for pid=7623 comm="syz.3.526" path="socket:[13938]" dev="sockfs" ino=13938 ioctlcmd=0x89e9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 126.910891][ T24] vhci_hcd: vhci_device speed not set [ 127.510144][ T40] audit: type=1804 audit(1760542053.719:308): pid=7635 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.529" name="/newroot/133/file0/file0" dev="9p" ino=71827785 res=1 errno=0 [ 127.879700][ T5949] Bluetooth: hci1: command 0x0419 tx timeout [ 127.912991][ T40] audit: type=1400 audit(1760542054.119:309): avc: denied { add_name } for pid=7651 comm="syz.0.539" name="cpuset.memory_pressure_enabled" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 127.921719][ T40] audit: type=1400 audit(1760542054.119:310): avc: denied { create } for pid=7651 comm="syz.0.539" name="cpuset.memory_pressure_enabled" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 127.930264][ T40] audit: type=1400 audit(1760542054.119:311): avc: denied { associate } for pid=7651 comm="syz.0.539" name="cpuset.memory_pressure_enabled" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 127.979908][ T40] audit: type=1400 audit(1760542054.129:312): avc: denied { append } for pid=7651 comm="syz.0.539" path="/121/file0/cpuset.memory_pressure_enabled" dev="9p" ino=71827929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 128.184861][ T7665] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 128.228625][ T40] audit: type=1804 audit(1760542054.429:313): pid=7663 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.540" name="/newroot/122/file0/file0" dev="9p" ino=71827785 res=1 errno=0 [ 128.302468][ T7667] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer. [ 128.755814][ T7679] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 129.018995][ T7686] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 129.029277][ T7686] netlink: 8 bytes leftover after parsing attributes in process `syz.0.546'. [ 129.034129][ T40] audit: type=1400 audit(1760542055.239:314): avc: denied { nlmsg_write } for pid=7680 comm="syz.0.546" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 129.133151][ T7688] macvlan2: entered allmulticast mode [ 129.135289][ T7688] veth1_vlan: entered allmulticast mode [ 129.142985][ T7688] veth1_vlan: left allmulticast mode [ 129.189908][ T40] audit: type=1400 audit(1760542055.309:315): avc: denied { ioctl } for pid=7680 comm="syz.0.546" path="socket:[13986]" dev="sockfs" ino=13986 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 129.264292][ T7694] syzkaller0: entered promiscuous mode [ 129.266809][ T7694] syzkaller0: entered allmulticast mode [ 129.424006][ T7696] : renamed from bridge_slave_0 (while UP) [ 129.534158][ T7701] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 129.604177][ T7705] syz_tun: entered allmulticast mode [ 129.616177][ T7705] dvmrp1: entered allmulticast mode [ 129.623173][ T7704] syz_tun: left allmulticast mode [ 129.928785][ T7719] syzkaller0: entered promiscuous mode [ 129.934458][ T7719] syzkaller0: entered allmulticast mode [ 130.337652][ T7735] syz_tun: entered allmulticast mode [ 130.344547][ T7734] syz_tun: left allmulticast mode [ 130.570485][ T7740] binder: BINDER_SET_CONTEXT_MGR already set [ 130.572495][ T7740] binder: 7739:7740 ioctl 4018620d 200000004a80 returned -16 [ 130.618096][ T7741] random: crng reseeded on system resumption [ 131.369536][ T7748] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 131.884792][ T7768] MTD: Attempt to mount non-MTD device "/dev/sr0" [ 131.895812][ T40] kauditd_printk_skb: 3 callbacks suppressed [ 131.895829][ T40] audit: type=1400 audit(1760542058.089:319): avc: denied { mounton } for pid=7762 comm="syz.1.577" path="/syzcgroup/unified/syz1" dev="cgroup2" ino=38 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1 [ 132.067808][ T7768] /dev/sr0: Can't open blockdev [ 132.582557][ T7774] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 132.647767][ T7776] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer. [ 132.666900][ T7780] binder: 7779:7780 ioctl c0306201 0 returned -14 [ 132.859820][ T54] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 133.012980][ T54] usb 6-1: too many configurations: 9, using maximum allowed: 8 [ 133.018398][ T54] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.021745][ T54] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.024873][ T54] usb 6-1: config 0 interface 0 has no altsetting 0 [ 133.027868][ T54] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.031680][ T54] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.034789][ T54] usb 6-1: config 0 interface 0 has no altsetting 0 [ 133.037925][ T54] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.040914][ T54] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.044041][ T54] usb 6-1: config 0 interface 0 has no altsetting 0 [ 133.046856][ T54] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.050284][ T54] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.054179][ T54] usb 6-1: config 0 interface 0 has no altsetting 0 [ 133.057412][ T54] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.061035][ T54] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.064223][ T54] usb 6-1: config 0 interface 0 has no altsetting 0 [ 133.067174][ T54] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.070043][ T54] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.073193][ T54] usb 6-1: config 0 interface 0 has no altsetting 0 [ 133.075976][ T54] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.079117][ T54] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.082770][ T54] usb 6-1: config 0 interface 0 has no altsetting 0 [ 133.085853][ T54] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.088572][ T54] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.091784][ T54] usb 6-1: config 0 interface 0 has no altsetting 0 [ 133.095430][ T54] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 133.098416][ T54] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 133.101628][ T54] usb 6-1: Product: syz [ 133.103270][ T54] usb 6-1: Manufacturer: syz [ 133.105050][ T54] usb 6-1: SerialNumber: syz [ 133.116426][ T54] usb 6-1: config 0 descriptor?? [ 133.124118][ T54] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0 [ 133.210268][ T7791] netlink: 12 bytes leftover after parsing attributes in process `syz.0.585'. [ 133.281730][ T7795] syz_tun: entered allmulticast mode [ 133.326541][ T10] usb 6-1: USB disconnect, device number 3 [ 133.334349][ T10] yurex 6-1:0.0: USB YUREX #0 now disconnected [ 133.873724][ T7805] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 134.539825][ T7827] binder: 7825:7827 ioctl c0306201 0 returned -14 [ 134.616111][ T7833] syz_tun: entered allmulticast mode [ 135.458607][ T7857] syzkaller0: entered promiscuous mode [ 135.463509][ T7857] syzkaller0: entered allmulticast mode [ 135.820698][ T7873] binder: 7872:7873 ioctl c0306201 0 returned -14 [ 136.042390][ T7891] syzkaller0: entered promiscuous mode [ 136.044813][ T7891] syzkaller0: entered allmulticast mode [ 136.869740][ T53] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 137.018856][ T7931] 9pnet: Unknown protocol version 9 [ 137.022140][ T53] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 137.025938][ T53] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 137.029151][ T53] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 137.039792][ T53] usb 6-1: config 0 descriptor?? [ 137.061201][ T7933] warning: `syz.3.638' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 137.255855][ T53] usbhid 6-1:0.0: can't add hid device: -71 [ 137.259470][ T53] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 137.280310][ T53] usb 6-1: USB disconnect, device number 4 [ 137.342608][ T7950] 9pnet: Unknown protocol version 9 [ 137.633126][ T7961] random: crng reseeded on system resumption [ 137.938311][ T7970] syzkaller0: entered promiscuous mode [ 137.940326][ T7970] syzkaller0: entered allmulticast mode [ 138.049901][ T53] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 138.114640][ T7976] 9pnet: Unknown protocol version 9 [ 138.156407][ T7978] syz_tun: entered allmulticast mode [ 138.161407][ T7977] syz_tun: left allmulticast mode [ 138.267305][ T53] usb 6-1: Using ep0 maxpacket: 32 [ 138.275530][ T53] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 138.279182][ T53] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40 [ 138.282898][ T53] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 138.287549][ T53] usb 6-1: config 0 descriptor?? [ 138.299313][ T53] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 138.309038][ T53] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 138.646511][ T7993] syzkaller0: entered promiscuous mode [ 138.648521][ T7993] syzkaller0: entered allmulticast mode [ 138.709338][ T7997] 9pnet: Unknown protocol version 9p200 [ 138.912002][ T1422] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.914153][ T1422] ieee802154 phy1 wpan1: encryption failed: -22 [ 139.023311][ T8021] 9pnet: Unknown protocol version 9p200 [ 139.037147][ T8023] syzkaller0: entered promiscuous mode [ 139.039058][ T8023] syzkaller0: entered allmulticast mode [ 139.602710][ T10] usb 6-1: USB disconnect, device number 5 [ 139.606044][ T10] ldusb 6-1:0.0: LD USB Device #0 now disconnected [ 139.698625][ T8050] 9pnet: Unknown protocol version 9p200 [ 139.824277][ T8057] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 139.869232][ T40] audit: type=1400 audit(1760542066.069:320): avc: denied { unmount } for pid=5937 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 140.140441][ T8085] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 141.065210][ T8109] syz_tun: entered allmulticast mode [ 141.135525][ T8113] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 141.426751][ T8128] 9pnet: Unknown protocol version 9p2000. [ 141.506480][ T8132] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 141.890124][ T8148] 9pnet: Unknown protocol version 9p2000. [ 141.955849][ T8154] overlayfs: failed to resolve './file1': -2 [ 142.267618][ T8177] netlink: 'syz.1.741': attribute type 10 has an invalid length. [ 142.274491][ T8177] team0: Device ipvlan1 failed to register rx_handler [ 142.743554][ T8207] overlayfs: failed to resolve './file1': -2 [ 142.823890][ T8211] syzkaller0: entered promiscuous mode [ 142.826444][ T8211] syzkaller0: entered allmulticast mode [ 142.994609][ T8222] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 143.298126][ T8248] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 143.363446][ T8259] netlink: 'syz.0.777': attribute type 5 has an invalid length. [ 143.366177][ T8259] netlink: 168 bytes leftover after parsing attributes in process `syz.0.777'. [ 143.395188][ T8263] netlink: 20 bytes leftover after parsing attributes in process `syz.1.778'. [ 143.406408][ T8266] syzkaller0: entered promiscuous mode [ 143.408475][ T8266] syzkaller0: entered allmulticast mode [ 143.446899][ T8269] overlayfs: failed to resolve './file1': -2 [ 143.735603][ T8287] netlink: 60 bytes leftover after parsing attributes in process `syz.0.787'. [ 143.740631][ T8284] netlink: 60 bytes leftover after parsing attributes in process `syz.0.787'. [ 143.762429][ T8286] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 143.767803][ T8289] netlink: zone id is out of range [ 143.771056][ T8289] netlink: zone id is out of range [ 143.773076][ T8289] netlink: del zone limit has 4 unknown bytes [ 143.817336][ T8294] overlayfs: failed to resolve './file1': -2 [ 143.839368][ T40] audit: type=1804 audit(1760542070.039:321): pid=8296 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.791" name="/newroot/223/file0/file0" dev="9p" ino=71827785 res=1 errno=0 [ 144.212055][ T8322] overlayfs: failed to resolve './file0': -2 [ 144.397586][ T8333] syz_tun: entered allmulticast mode [ 144.407156][ T8333] dvmrp1: entered allmulticast mode [ 144.412000][ T8335] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 144.412564][ T8332] syz_tun: left allmulticast mode [ 144.453595][ T8339] syzkaller0: entered promiscuous mode [ 144.455582][ T8339] syzkaller0: entered allmulticast mode [ 144.540949][ T8346] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 144.715474][ T8362] netlink: 830 bytes leftover after parsing attributes in process `syz.1.821'. [ 144.807684][ T8370] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 144.897663][ T8374] syz_tun: entered allmulticast mode [ 144.902272][ T8373] syz_tun: left allmulticast mode [ 144.947469][ T8378] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 145.004297][ T8383] syzkaller0: entered promiscuous mode [ 145.006503][ T8383] syzkaller0: entered allmulticast mode [ 145.121779][ T8392] overlayfs: failed to resolve './file0': -2 [ 145.154559][ T8396] overlayfs: failed to resolve './file0': -2 [ 145.216357][ T40] audit: type=1400 audit(1760542071.419:322): avc: denied { write } for pid=8403 comm="syz.1.842" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 145.348270][ T8415] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 145.351011][ T8413] syzkaller0: entered promiscuous mode [ 145.354223][ T8413] syzkaller0: entered allmulticast mode [ 145.575149][ T8437] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 145.670011][ T8447] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=53 sclass=netlink_route_socket pid=8447 comm=syz.1.859 [ 145.673569][ T8448] netlink: 56 bytes leftover after parsing attributes in process `syz.0.862'. [ 145.676011][ T8443] netlink: 'syz.1.859': attribute type 29 has an invalid length. [ 145.854395][ T8462] overlayfs: failed to resolve './file0': -2 [ 145.909391][ T8467] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 146.292611][ T8492] overlayfs: failed to resolve './file0': -2 [ 146.387523][ T40] audit: type=1400 audit(1760542072.589:323): avc: denied { write } for pid=8497 comm="syz.1.884" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 146.508623][ T8508] overlayfs: failed to resolve './file0': -2 [ 146.588186][ T8521] kAFS: No cell specified [ 146.647704][ T8530] overlayfs: failed to resolve './file1': -2 [ 146.692436][ T40] audit: type=1400 audit(1760542072.899:324): avc: denied { nlmsg_write } for pid=8531 comm="syz.3.902" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 146.782063][ T8548] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 146.801148][ T8551] netlink: 60 bytes leftover after parsing attributes in process `syz.1.903'. [ 146.804398][ T8534] netlink: 60 bytes leftover after parsing attributes in process `syz.1.903'. [ 146.808593][ T8541] netlink: 60 bytes leftover after parsing attributes in process `syz.1.903'. [ 146.866928][ T8560] netlink: 28 bytes leftover after parsing attributes in process `syz.1.914'. [ 146.932722][ T40] audit: type=1400 audit(1760542073.139:325): avc: denied { write } for pid=8564 comm="syz.0.917" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 147.126287][ T40] audit: type=1400 audit(1760542073.319:326): avc: denied { setopt } for pid=8580 comm="syz.1.925" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 147.132947][ T40] audit: type=1400 audit(1760542073.319:327): avc: denied { write } for pid=8580 comm="syz.1.925" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 147.238853][ T8597] kAFS: No cell specified [ 147.240218][ T8598] overlayfs: failed to resolve './file1': -2 [ 147.419496][ T8623] kAFS: No cell specified [ 147.427868][ T8625] overlayfs: failed to resolve './file1': -2 [ 147.479263][ T8633] overlayfs: failed to resolve './file1': -2 [ 147.487176][ T8635] netlink: zone id is out of range [ 147.489436][ T8635] netlink: zone id is out of range [ 147.585950][ T8641] overlayfs: failed to clone upperpath [ 147.594839][ T8646] netlink: 'syz.0.954': attribute type 1 has an invalid length. [ 147.666715][ T8656] kAFS: No cell specified [ 147.700367][ T40] audit: type=1400 audit(1760542073.909:328): avc: denied { nlmsg_read } for pid=8659 comm="syz.2.960" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 147.716163][ T8664] overlayfs: failed to resolve './file1': -2 [ 147.791381][ T1149] wlan1: Trigger new scan to find an IBSS to join [ 147.874141][ T8681] kAFS: No cell specified [ 147.914719][ T8690] overlayfs: failed to resolve './file1': -2 [ 148.154886][ T8715] overlayfs: failed to clone upperpath [ 148.710343][ T8765] netlink: 'syz.2.1004': attribute type 30 has an invalid length. [ 148.748912][ T8769] overlayfs: failed to clone upperpath [ 148.799365][ T8775] kAFS: No cell specified [ 148.900320][ T40] audit: type=1400 audit(1760542075.099:329): avc: denied { read } for pid=8783 comm="syz.1.1013" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 148.928479][ T8790] __nla_validate_parse: 16 callbacks suppressed [ 148.928500][ T8790] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1016'. [ 148.934387][ T8790] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1016'. [ 148.944229][ T8793] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1014'. [ 148.948125][ T8786] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1014'. [ 148.955882][ T8786] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1014'. [ 148.999124][ T8799] : entered promiscuous mode [ 149.002016][ T8803] overlayfs: failed to resolve './file0': -2 [ 149.043509][ T8807] afs: Unknown parameter 'dy' [ 149.212862][ T8824] binder: 8822:8824 ioctl c0306201 0 returned -14 [ 149.408081][ T8836] afs: Unknown parameter 'dy' [ 149.576601][ T8857] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 149.579949][ T8857] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 149.583053][ T8857] comedi comedi3: 8255: I/O port conflict (0x4,4) [ 149.587334][ T8857] comedi comedi3: 8255: I/O port conflict (0xc9,4) [ 149.590836][ T8857] comedi comedi3: 8255: I/O port conflict (0x5c952399,4) [ 149.594158][ T8857] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 149.646848][ T8861] afs: Unknown parameter 'dy' [ 149.709650][ T8867] netlink: 'syz.0.1048': attribute type 29 has an invalid length. [ 149.714103][ T8867] netlink: 'syz.0.1048': attribute type 29 has an invalid length. [ 149.942408][ T8881] overlayfs: failed to resolve './file0': -2 [ 150.060552][ T8890] can0: slcan on ttyS3. [ 150.139082][ T8901] netlink: 'syz.1.1062': attribute type 29 has an invalid length. [ 150.141630][ T8890] can0 (unregistered): slcan off ttyS3. [ 150.147177][ T8901] netlink: 'syz.1.1062': attribute type 29 has an invalid length. [ 150.306200][ T8914] binder: 8913:8914 ioctl c0306201 0 returned -14 [ 150.449688][ T5974] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 150.609838][ T5974] usb 7-1: Using ep0 maxpacket: 32 [ 150.618153][ T5974] usb 7-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0 [ 150.622880][ T5974] usb 7-1: config 0 interface 0 altsetting 16 endpoint 0x2 has invalid wMaxPacketSize 0 [ 150.627002][ T5974] usb 7-1: config 0 interface 0 altsetting 16 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 150.633186][ T5974] usb 7-1: config 0 interface 0 has no altsetting 0 [ 150.635753][ T5974] usb 7-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00 [ 150.639454][ T5974] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 150.649390][ T5974] usb 7-1: config 0 descriptor?? [ 150.830811][ T76] wlan1: Trigger new scan to find an IBSS to join [ 151.099741][ T2298] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 151.156543][ T5974] hid-thrustmaster 0003:044F:B65D.0002: unknown main item tag 0x0 [ 151.159222][ T5974] hid-thrustmaster 0003:044F:B65D.0002: unknown main item tag 0x0 [ 151.163288][ T5974] hid-thrustmaster 0003:044F:B65D.0002: unknown main item tag 0x0 [ 151.165792][ T5974] hid-thrustmaster 0003:044F:B65D.0002: unknown main item tag 0x0 [ 151.168286][ T5974] hid-thrustmaster 0003:044F:B65D.0002: unknown main item tag 0x0 [ 151.177242][ T8939] overlayfs: failed to resolve './file0': -2 [ 151.259730][ T2298] usb 5-1: Using ep0 maxpacket: 32 [ 151.265216][ T2298] usb 5-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be [ 151.268455][ T2298] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 151.272983][ T5974] hid-thrustmaster 0003:044F:B65D.0002: hidraw1: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.2-1/input0 [ 151.276989][ T5974] hid-thrustmaster 0003:044F:B65D.0002: Unexpected non-int endpoint [ 151.280192][ T2298] usb 5-1: config 0 descriptor?? [ 151.284034][ C0] hid-thrustmaster 0003:044F:B65D.0002: URB to get model id failed with error -71 [ 151.288379][ T5974] usb 7-1: USB disconnect, device number 3 [ 151.290156][ T2298] gspca_main: vc032x-2.14.0 probing 0ac8:0321 [ 151.336469][ T8944] fido_id[8944]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb7/report_descriptor': No such file or directory [ 151.469777][ T40] audit: type=1400 audit(1760542077.669:330): avc: denied { bind } for pid=8950 comm="syz.1.1083" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 151.476077][ T40] audit: type=1400 audit(1760542077.679:331): avc: denied { read } for pid=8950 comm="syz.1.1083" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 151.486106][ T40] audit: type=1400 audit(1760542077.689:332): avc: denied { ioctl } for pid=8927 comm="syz.0.1073" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 151.727611][ T8956] sg_write: process 686 (syz.1.1085) changed security contexts after opening file descriptor, this is not allowed. [ 151.850492][ T8960] 9pnet: Unknown protocol version 9p200 [ 151.878602][ T40] audit: type=1400 audit(1760542078.079:333): avc: denied { create } for pid=8957 comm="syz.1.1086" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 151.885790][ T40] audit: type=1400 audit(1760542078.079:334): avc: denied { bind } for pid=8957 comm="syz.1.1086" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 151.892088][ T40] audit: type=1400 audit(1760542078.089:335): avc: denied { connect } for pid=8957 comm="syz.1.1086" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 151.898519][ T40] audit: type=1400 audit(1760542078.089:336): avc: denied { ioctl } for pid=8957 comm="syz.1.1086" path="socket:[20419]" dev="sockfs" ino=20419 ioctlcmd=0x8923 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 151.969811][ T8971] fuse: Bad value for 'fd' [ 151.999384][ T40] audit: type=1400 audit(1760542078.199:337): avc: denied { create } for pid=8974 comm="syz.1.1093" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 152.008865][ T40] audit: type=1400 audit(1760542078.209:338): avc: denied { write } for pid=8974 comm="syz.1.1093" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 152.046288][ T8975] fuse: Unknown parameter 'fd0x000000000000000b' [ 152.049336][ T40] audit: type=1400 audit(1760542078.249:339): avc: denied { write } for pid=8974 comm="syz.1.1093" name="comedi4" dev="devtmpfs" ino=1306 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 152.052225][ T8979] netlink: 'syz.3.1095': attribute type 29 has an invalid length. [ 152.053176][ T8979] netlink: 'syz.3.1095': attribute type 29 has an invalid length. [ 152.123423][ T8988] overlayfs: failed to clone upperpath [ 152.247906][ T9000] netlink: 'syz.2.1105': attribute type 29 has an invalid length. [ 152.252709][ T9000] netlink: 'syz.2.1105': attribute type 29 has an invalid length. [ 152.359519][ T9008] capability: warning: `syz.2.1108' uses deprecated v2 capabilities in a way that may be insecure [ 152.466558][ T9015] overlayfs: missing 'lowerdir' [ 153.044455][ T9051] validate_nla: 2 callbacks suppressed [ 153.044469][ T9051] netlink: 'syz.3.1126': attribute type 29 has an invalid length. [ 153.058689][ T9053] 9pnet: Unknown protocol version 9p2000. [ 153.119668][ T2298] gspca_vc032x: I2c Bus Busy Wait 00 [ 153.636092][ T9076] netlink: 'syz.1.1137': attribute type 29 has an invalid length. [ 153.638439][ T9077] 9pnet: Unknown protocol version 9p2000. [ 153.715488][ T853] wlan1: Creating new IBSS network, BSSID 46:cc:62:a1:62:58 [ 153.947525][ T9102] netlink: 'syz.1.1147': attribute type 29 has an invalid length. [ 154.011463][ T9106] 9pnet: Unknown protocol version 9p2000. [ 154.016736][ T9104] ================================================================== [ 154.019336][ T9104] BUG: KASAN: slab-out-of-bounds in __cpa_addr+0x1d3/0x220 [ 154.021934][ T9104] Read of size 8 at addr ffff88803423d2f8 by task syz.1.1148/9104 [ 154.025833][ T9104] [ 154.027653][ T9104] CPU: 0 UID: 0 PID: 9104 Comm: syz.1.1148 Not tainted syzkaller #0 PREEMPT(full) [ 154.027677][ T9104] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 154.027690][ T9104] Call Trace: [ 154.027723][ T9104] [ 154.027731][ T9104] dump_stack_lvl+0x116/0x1f0 [ 154.027951][ T9104] print_report+0xcd/0x630 [ 154.028035][ T9104] ? __virt_addr_valid+0x81/0x610 [ 154.028056][ T9104] ? __phys_addr+0xe8/0x180 [ 154.028076][ T9104] ? __cpa_addr+0x1d3/0x220 [ 154.028096][ T9104] kasan_report+0xe0/0x110 [ 154.028124][ T9104] ? __cpa_addr+0x1d3/0x220 [ 154.028149][ T9104] __cpa_addr+0x1d3/0x220 [ 154.028170][ T9104] cpa_flush+0x28b/0x8a0 [ 154.028192][ T9104] ? __pfx_cpa_flush+0x10/0x10 [ 154.028215][ T9104] ? pgprot2cachemode+0x9a/0x130 [ 154.028233][ T9104] ? __pfx_pgprot2cachemode+0x10/0x10 [ 154.028247][ T9104] ? drm_gem_get_pages+0x6a0/0xa10 [ 154.028394][ T9104] change_page_attr_set_clr+0x34e/0x4a0 [ 154.028414][ T9104] ? __pfx_change_page_attr_set_clr+0x10/0x10 [ 154.028438][ T9104] _set_pages_array+0x1ab/0x2c0 [ 154.028457][ T9104] drm_gem_shmem_get_pages_locked+0x384/0x490 [ 154.028477][ T9104] ? __pfx_drm_gem_shmem_get_pages_locked+0x10/0x10 [ 154.028494][ T9104] ? __pfx___might_resched+0x10/0x10 [ 154.028542][ T9104] drm_gem_shmem_mmap+0xc9/0x550 [ 154.028558][ T9104] ? __pfx_drm_gem_shmem_object_mmap+0x10/0x10 [ 154.028575][ T9104] drm_gem_mmap_obj+0x1b5/0x560 [ 154.028594][ T9104] drm_gem_mmap+0x40b/0x620 [ 154.028613][ T9104] ? __pfx_drm_gem_mmap+0x10/0x10 [ 154.028634][ T9104] ? vm_area_alloc+0x1f/0x160 [ 154.028666][ T9104] ? lockdep_init_map_type+0x5c/0x280 [ 154.028685][ T9104] __mmap_region+0x1309/0x27a0 [ 154.028702][ T9104] ? __pfx___mmap_region+0x10/0x10 [ 154.028717][ T9104] ? __pfx_avc_audit_post_callback+0x10/0x10 [ 154.028792][ T9104] ? audit_log_end+0x1f/0x30 [ 154.028811][ T9104] ? audit_log_end+0x1f/0x30 [ 154.028827][ T9104] ? common_lsm_audit+0x260/0x300 [ 154.028861][ T9104] ? __lock_acquire+0xb8a/0x1c90 [ 154.028878][ T9104] mmap_region+0x1ab/0x3f0 [ 154.028891][ T9104] ? __get_unmapped_area+0x267/0x440 [ 154.028907][ T9104] do_mmap+0xa3e/0x1210 [ 154.028923][ T9104] ? __pfx_do_mmap+0x10/0x10 [ 154.028938][ T9104] ? __pfx_down_write_killable+0x10/0x10 [ 154.028979][ T9104] vm_mmap_pgoff+0x29e/0x470 [ 154.029001][ T9104] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 154.029021][ T9104] ? __fget_files+0x20e/0x3c0 [ 154.029041][ T9104] ksys_mmap_pgoff+0x32c/0x5c0 [ 154.029059][ T9104] __x64_sys_mmap+0x125/0x190 [ 154.029078][ T9104] do_syscall_64+0xcd/0xfa0 [ 154.029092][ T9104] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.029105][ T9104] RIP: 0033:0x7f94b9b8eec9 [ 154.029128][ T9104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.029141][ T9104] RSP: 002b:00007f94ba9c2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 154.029169][ T9104] RAX: ffffffffffffffda RBX: 00007f94b9de5fa0 RCX: 00007f94b9b8eec9 [ 154.029178][ T9104] RDX: 0000000000000004 RSI: 0000000000004000 RDI: 0000200000001000 [ 154.029186][ T9104] RBP: 00007f94b9c11f91 R08: 0000000000000003 R09: 0000000100000000 [ 154.029193][ T9104] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000 [ 154.029201][ T9104] R13: 00007f94b9de6038 R14: 00007f94b9de5fa0 R15: 00007fffb44f2d88 [ 154.029214][ T9104] [ 154.029218][ T9104] [ 154.136855][ T9104] Allocated by task 9104: [ 154.138495][ T9104] kasan_save_stack+0x33/0x60 [ 154.140259][ T9104] kasan_save_track+0x14/0x30 [ 154.141834][ T9104] __kasan_kmalloc+0xaa/0xb0 [ 154.143368][ T9104] __kvmalloc_node_noprof+0x3a3/0x9c0 [ 154.145080][ T9104] drm_gem_get_pages+0x144/0xa10 [ 154.146694][ T9104] drm_gem_shmem_get_pages_locked+0x1e6/0x490 [ 154.148673][ T9104] drm_gem_shmem_mmap+0xc9/0x550 [ 154.150269][ T9104] drm_gem_mmap_obj+0x1b5/0x560 [ 154.151837][ T9104] drm_gem_mmap+0x40b/0x620 [ 154.153334][ T9104] __mmap_region+0x1309/0x27a0 [ 154.154888][ T9104] mmap_region+0x1ab/0x3f0 [ 154.156328][ T9104] do_mmap+0xa3e/0x1210 [ 154.157688][ T9104] vm_mmap_pgoff+0x29e/0x470 [ 154.159179][ T9104] ksys_mmap_pgoff+0x32c/0x5c0 [ 154.160715][ T9104] __x64_sys_mmap+0x125/0x190 [ 154.162240][ T9104] do_syscall_64+0xcd/0xfa0 [ 154.163746][ T9104] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.165785][ T9104] [ 154.166593][ T9104] The buggy address belongs to the object at ffff88803423d200 [ 154.166593][ T9104] which belongs to the cache kmalloc-256 of size 256 [ 154.171154][ T9104] The buggy address is located 0 bytes to the right of [ 154.171154][ T9104] allocated 248-byte region [ffff88803423d200, ffff88803423d2f8) [ 154.176673][ T9104] [ 154.177593][ T9104] The buggy address belongs to the physical page: [ 154.179649][ T9104] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3423c [ 154.182554][ T9104] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 154.185309][ T9104] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 154.187881][ T9104] page_type: f5(slab) [ 154.189147][ T9104] raw: 00fff00000000040 ffff88801b442b40 0000000000000000 dead000000000001 [ 154.191818][ T9104] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 154.194617][ T9104] head: 00fff00000000040 ffff88801b442b40 0000000000000000 dead000000000001 [ 154.198062][ T9104] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 154.201785][ T9104] head: 00fff00000000001 ffffea0000d08f01 00000000ffffffff 00000000ffffffff [ 154.204581][ T9104] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 154.207342][ T9104] page dumped because: kasan: bad access detected [ 154.209335][ T9104] page_owner tracks the page as allocated [ 154.211164][ T9104] page last allocated via order 1, migratetype Unmovable, gfp_mask 0x252800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 6044, tgid 6043 (syz.0.7), ts 69933123903, free_ts 69835120821 [ 154.218324][ T9104] post_alloc_hook+0x1c0/0x230 [ 154.220445][ T9104] get_page_from_freelist+0x10a3/0x3a30 [ 154.222678][ T9104] __alloc_frozen_pages_noprof+0x25f/0x2470 [ 154.224718][ T9104] new_slab+0xa5/0x360 [ 154.226093][ T9104] ___slab_alloc+0xdc4/0x1ae0 [ 154.227684][ T9104] __slab_alloc.constprop.0+0x63/0x110 [ 154.229438][ T9104] __kmalloc_node_noprof+0x4dd/0x8a0 [ 154.231149][ T9104] alloc_slab_obj_exts+0x3a/0xd0 [ 154.232737][ T9104] __memcg_slab_post_alloc_hook+0x251/0x940 [ 154.234703][ T9104] kmem_cache_alloc_noprof+0x550/0x6e0 [ 154.236536][ T9104] vm_area_alloc+0x1f/0x160 [ 154.238498][ T9104] __mmap_region+0xf85/0x27a0 [ 154.240609][ T9104] mmap_region+0x1ab/0x3f0 [ 154.242872][ T9104] do_mmap+0xa3e/0x1210 [ 154.245091][ T9104] vm_mmap_pgoff+0x29e/0x470 [ 154.247257][ T9104] ksys_mmap_pgoff+0x7d/0x5c0 [ 154.249281][ T9104] page last free pid 5341 tgid 5341 stack trace: [ 154.252005][ T9104] __free_frozen_pages+0x7df/0x1160 [ 154.253957][ T9104] __put_partials+0x130/0x170 [ 154.255471][ T9104] qlist_free_all+0x4d/0x120 [ 154.256990][ T9104] kasan_quarantine_reduce+0x195/0x1e0 [ 154.258749][ T9104] __kasan_slab_alloc+0x69/0x90 [ 154.260317][ T9104] kmem_cache_alloc_noprof+0x250/0x6e0 [ 154.262109][ T9104] getname_flags.part.0+0x4c/0x550 [ 154.263777][ T9104] __x64_sys_unlink+0xb0/0x110 [ 154.265360][ T9104] do_syscall_64+0xcd/0xfa0 [ 154.266923][ T9104] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.268974][ T9104] [ 154.269932][ T9104] Memory state around the buggy address: [ 154.271979][ T9104] ffff88803423d180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 154.274709][ T9104] ffff88803423d200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 154.277252][ T9104] >ffff88803423d280: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc [ 154.279787][ T9104] ^ [ 154.282293][ T9104] ffff88803423d300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 154.284910][ T9104] ffff88803423d380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 154.287656][ T9104] ================================================================== [ 154.295179][ T9104] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 154.297578][ T9104] CPU: 0 UID: 0 PID: 9104 Comm: syz.1.1148 Not tainted syzkaller #0 PREEMPT(full) [ 154.300479][ T9104] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 154.304698][ T9104] Call Trace: [ 154.305998][ T9104] [ 154.307113][ T9104] dump_stack_lvl+0x3d/0x1f0 [ 154.308736][ T9104] vpanic+0x640/0x6f0 [ 154.310127][ T9104] panic+0xca/0xd0 [ 154.311365][ T9104] ? __pfx_panic+0x10/0x10 [ 154.312948][ T9104] ? __cpa_addr+0x1d3/0x220 [ 154.314907][ T9104] ? preempt_schedule_common+0x44/0xc0 [ 154.317180][ T9104] ? preempt_schedule_thunk+0x16/0x30 [ 154.319231][ T9104] check_panic_on_warn+0xab/0xb0 [ 154.320826][ T9104] end_report+0x107/0x170 [ 154.322237][ T9104] kasan_report+0xee/0x110 [ 154.323732][ T9104] ? __cpa_addr+0x1d3/0x220 [ 154.325205][ T9104] __cpa_addr+0x1d3/0x220 [ 154.326617][ T9104] cpa_flush+0x28b/0x8a0 [ 154.328010][ T9104] ? __pfx_cpa_flush+0x10/0x10 [ 154.329569][ T9104] ? pgprot2cachemode+0x9a/0x130 [ 154.331156][ T9104] ? __pfx_pgprot2cachemode+0x10/0x10 [ 154.332885][ T9104] ? drm_gem_get_pages+0x6a0/0xa10 [ 154.334647][ T9104] change_page_attr_set_clr+0x34e/0x4a0 [ 154.336423][ T9104] ? __pfx_change_page_attr_set_clr+0x10/0x10 [ 154.338150][ T9104] _set_pages_array+0x1ab/0x2c0 [ 154.339656][ T9104] drm_gem_shmem_get_pages_locked+0x384/0x490 [ 154.341660][ T9104] ? __pfx_drm_gem_shmem_get_pages_locked+0x10/0x10 [ 154.343948][ T9104] ? __pfx___might_resched+0x10/0x10 [ 154.345768][ T9104] drm_gem_shmem_mmap+0xc9/0x550 [ 154.347402][ T9104] ? __pfx_drm_gem_shmem_object_mmap+0x10/0x10 [ 154.349406][ T9104] drm_gem_mmap_obj+0x1b5/0x560 [ 154.350986][ T9104] drm_gem_mmap+0x40b/0x620 [ 154.352471][ T9104] ? __pfx_drm_gem_mmap+0x10/0x10 [ 154.354167][ T9104] ? vm_area_alloc+0x1f/0x160 [ 154.355700][ T9104] ? lockdep_init_map_type+0x5c/0x280 [ 154.357429][ T9104] __mmap_region+0x1309/0x27a0 [ 154.358997][ T9104] ? __pfx___mmap_region+0x10/0x10 [ 154.360660][ T9104] ? __pfx_avc_audit_post_callback+0x10/0x10 [ 154.362620][ T9104] ? audit_log_end+0x1f/0x30 [ 154.364155][ T9104] ? audit_log_end+0x1f/0x30 [ 154.365688][ T9104] ? common_lsm_audit+0x260/0x300 [ 154.367338][ T9104] ? __lock_acquire+0xb8a/0x1c90 [ 154.368951][ T9104] mmap_region+0x1ab/0x3f0 [ 154.370425][ T9104] ? __get_unmapped_area+0x267/0x440 [ 154.372141][ T9104] do_mmap+0xa3e/0x1210 [ 154.373576][ T9104] ? __pfx_do_mmap+0x10/0x10 [ 154.375096][ T9104] ? __pfx_down_write_killable+0x10/0x10 [ 154.377011][ T9104] vm_mmap_pgoff+0x29e/0x470 [ 154.378720][ T9104] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 154.380634][ T9104] ? __fget_files+0x20e/0x3c0 [ 154.382316][ T9104] ksys_mmap_pgoff+0x32c/0x5c0 [ 154.384262][ T9104] __x64_sys_mmap+0x125/0x190 [ 154.386174][ T9104] do_syscall_64+0xcd/0xfa0 [ 154.387984][ T9104] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.390438][ T9104] RIP: 0033:0x7f94b9b8eec9 [ 154.392277][ T9104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.400889][ T9104] RSP: 002b:00007f94ba9c2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 154.405128][ T9104] RAX: ffffffffffffffda RBX: 00007f94b9de5fa0 RCX: 00007f94b9b8eec9 [ 154.408730][ T9104] RDX: 0000000000000004 RSI: 0000000000004000 RDI: 0000200000001000 [ 154.412039][ T9104] RBP: 00007f94b9c11f91 R08: 0000000000000003 R09: 0000000100000000 [ 154.415334][ T9104] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000 [ 154.418589][ T9104] R13: 00007f94b9de6038 R14: 00007f94b9de5fa0 R15: 00007fffb44f2d88 [ 154.421797][ T9104] [ 154.423785][ T9104] Kernel Offset: disabled [ 154.425739][ T9104] Rebooting in 86400 seconds.. VM DIAGNOSIS: 15:28:00 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000064 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85308595 RDI=ffffffff9ae077e0 RBP=ffffffff9ae077a0 RSP=ffffc900037eedf8 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552 R12=0000000000000000 R13=0000000000000064 R14=ffffffff9ae077a0 R15=ffffffff85308530 RIP=ffffffff853085bf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f94ba9c26c0 ffffffff 00c00000 GS =0000 ffff8880d69d9000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f94b9b72b60 CR3=0000000054d98000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000ffffc000 Opmask01=0000000001000001 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f94b9c12fbe ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f94b9c12fcb ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f94b9c12fc5 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f94b9c12fd9 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f94b9c1305f ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f94b9c1313d ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 2323232323232323 2323232323232323 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000030647261632f 6972642f7665642f ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000013475142400c 4a51470c5546470c ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000001 RBX=ffff888057778a80 RCX=ffffffff81996673 RDX=dffffc0000000000 RSI=0000000000000004 RDI=ffff888057778a80 RBP=ffff888057778a88 RSP=ffffc900044cf8a0 R8 =0000000000000000 R9 =ffffed100aeef150 R10=ffff888057778a83 R11=0000000000000001 R12=ffff888057778a90 R13=0000200000000000 R14=ffff888057778000 R15=ffffc900044cfc58 RIP=ffffffff81996792 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f24689996c0 ffffffff 00c00000 GS =0000 ffff8880d6ad9000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f94ba9c1f98 CR3=0000000032554000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000015 000000000003bf12 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557ce22e18 000055557ce22d40 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557ce1f684 000055557ce1f680 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557ce2d70f 000055557ce2d6b0 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3d65686361632c79 6e613d7373816363 612c646e65747865 6f6e2c6f69747269 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 80040780040a0142 ae2e303030327039 3d6e6f6973726576 2c65686361637366 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0030656c69662f2e 01ffffffffffffff ffef080380033080 0400100013800412 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 080043d80030656c 69662f2e01ffffff ffffffffffef0800 03038004020103c0 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0120100006800401 0000000806060178 dc30656c69662f2e 01ffffffffffffff ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fff1080692030e04 00068e0307fffa04 00068a032e020006 880301c308000680 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0306ba040031a282 0800000401c70800 080043d80030656c 69662f2e01ffffff ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffef0800 03038004020103c0 0030656c69662f2e 01ffffffffffffff ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=ffff88806a63b580 RCX=ffffffff81b14373 RDX=ffff88801d6d4900 RSI=ffffffff81b1434d RDI=0000000000000005 RBP=ffffc90000157cf8 RSP=ffffc90000157ba0 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=fffffbfff1c79e5e R12=1ffff9200002af7c R13=0000000000000001 R14=0000000000000001 R15=ffffed100d4c76b1 RIP=ffffffff81b1434f RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d6bd9000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c2f5f59 CR3=0000000031d03000 CR4=00352ef0 DR0=ffffffffffffffff DR1=00000000000001f8 DR2=0000000000000083 DR3=ffffffffefffff15 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=000000000534c002 Opmask01=0000000000000000 Opmask02=00000000f0000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055a7ef948600 000055a7ef948600 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffda1cdb0c0 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c737973007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49565c56005600 0b56000041000b56 000040494a564b4a 460a5340410a000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3038383866666666 2072646461207461 203820657a697320 666f206461655220 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f6563697665643a 725f7463656a626f 3a755f6d65747379 733d747865746e6f ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 637420745f6d6461 7379733a725f6d64 617379733a746f6f 723d747865746e6f ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 637320363033313d 6f6e692022736670 6d74766564223d76 6564202234696465 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6d6f63223d656d61 6e2022333930312e 312e7a7973223d6d 6d6f632034373938 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000003 RBX=ffffffff8e3c4460 RCX=ffffffff823c072e RDX=ffff88802cc4a480 RSI=ffffffff823c055e RDI=ffffffff8e3c4460 RBP=0000000000000001 RSP=ffffc90003c1fb10 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=ffffffff823c055e R13=ffff88802a4905e0 R14=ffffc90003c1fc98 R15=ffffc90003c1fc60 RIP=ffffffff81991275 RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 000055555fe66500 ffffffff 00c00000 GS =0000 ffff8880d6cd9000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055555fe89608 CR3=0000000050e74000 CR4=00352ef0 DR0=ffffffffffffffff DR1=00000000000001f8 DR2=0000000000000083 DR3=ffffffffefffff15 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000020081 Opmask01=0000000001000001 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff4ec9e120 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cb9812fbe ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cb9812fcb ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cb9812fc5 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cb9812fd9 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cb981305f ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cb981313d ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 2074657365720064 656c696166202973 2528746174736c00 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 0551405640570041 40494c4443050c56 000d514451564900 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000