last executing test programs: 4.490008867s ago: executing program 3 (id=3538): r0 = socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)=@deltfilter={0x2c, 0x2d, 0x100, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xf, 0x4}, {0x4, 0xd}, {0x7, 0x9}}, [@TCA_RATE={0x6, 0x5, {0x8, 0x6}}]}, 0x2c}}, 0x0) getsockname$packet(r0, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newtfilter={0x48, 0x2c, 0xd27, 0x0, 0x1, {0x0, 0x0, 0x0, r1, {0x0, 0x10}, {}, {0x4}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_CT_LABELS={0x14, 0x61, "b2e220bdf4e96636afe048eecee12c09"}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4040}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x14183, 0x0) truncate(&(0x7f0000000040)='./file0\x00', 0x4) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000000000)={'geneve1\x00', 0x400}) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) mknod(&(0x7f0000f80000)='./file0\x00', 0x4, 0x0) execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0) ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000000)={0x3}) r5 = gettid() prctl$PR_SET_PTRACER(0x59616d61, r5) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) syz_clone3(&(0x7f00000002c0)={0x202000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000100)=[0x0], 0x1}, 0x58) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, &(0x7f0000000140)={'team_slave_1\x00', 0x400}) socket$packet(0x11, 0x2, 0x300) r6 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'bond0\x00', 0x0}) r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r8) ptrace(0x8, r8) wait4(0x0, 0x0, 0x40000000, 0x0) r9 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100000000000000002eeed88696", @ANYRES32=r7], 0x20}}, 0x0) sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) 3.869586989s ago: executing program 3 (id=3545): syz_usb_connect(0x0, 0x24, 0x0, 0x0) r0 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) preadv(r0, &(0x7f00000023c0)=[{&(0x7f0000000000)=""/80, 0x50}, {&(0x7f0000000240)=""/4089, 0x1000}, {&(0x7f0000001240)=""/4096, 0x1000}, {&(0x7f0000000100), 0xffffffffffffff58}, {&(0x7f0000000140)=""/2, 0x2}, {&(0x7f0000000180)=""/43, 0x2b}, {&(0x7f0000002240)=""/160, 0xa0}, {&(0x7f0000002300)=""/150, 0x96}, {&(0x7f00000001c0)=""/28, 0x1c}], 0x9, 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x6, 0x3, &(0x7f0000000140)=ANY=[], 0x0, 0x4, 0x0, 0x0, 0x0, 0x39, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'syz_tun\x00'}) bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@bloom_filter={0x1e, 0x4, 0x1, 0x7, 0x24600, 0xffffffffffffffff, 0x80000000, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x2, 0xb, @void, @value, @void, @value}, 0x50) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="2c0000001800010000002810a8e6ff000000000a001400000000000000000008001700ff"], 0x2c}}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x6, 0x0, 0x0) add_key(&(0x7f00000001c0)='big_key\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff) syz_io_uring_setup(0x4f79, &(0x7f0000000400)={0x0, 0xffffffff, 0x200, 0x2, 0xa0}, &(0x7f0000000080), &(0x7f0000000100)) r3 = memfd_secret(0x0) ftruncate(r3, 0x5) socket$nl_netfilter(0x10, 0x3, 0xc) r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) setsockopt$netrom_NETROM_IDLE(r4, 0x103, 0x7, &(0x7f0000000000)=0x100, 0x4) r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f0000000200)={0xc, 0x0, 0x0}) ioctl$IOMMU_TEST_OP_ADD_RESERVED(r5, 0x3ba0, &(0x7f00000006c0)={0x48, 0x1, r6, 0x0, 0x155}) ioctl$SIOCNRDECOBS(r4, 0x89e2) 2.132995286s ago: executing program 3 (id=3551): r0 = openat$sysfs(0xffffff9c, &(0x7f00000002c0)='/sys/kernel/warn_count', 0x410400, 0xa0) fcntl$getflags(r0, 0x40a) r1 = syz_open_dev$video(&(0x7f0000000000), 0x75, 0x0) ioctl$VIDIOC_S_PARM(r1, 0xc0cc5616, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000040)={0x0, 0x34325842, 0x280, 0x168, 0x0, @stepwise={{0x2, 0x6}, {0x1, 0xfffffffd}, {0x2, 0x10000000}}}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000ed000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r3}, 0x10) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, 0x0, 0x0) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r4, 0x800448d4, &(0x7f0000000000)={0x0, 0x1, '\x00X('}) r5 = dup(0xffffffffffffffff) ioctl$KVM_SET_MSRS(r5, 0x4048aecb, &(0x7f00000000c0)=ANY=[@ANYRES64=r2, @ANYRES64]) 1.829721504s ago: executing program 3 (id=3557): r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x49001, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000040), 0x2) ioctl$MEDIA_IOC_ENUM_LINKS(r0, 0xc0287c02, &(0x7f0000000140)={0x80000000, &(0x7f0000000080), &(0x7f00000000c0)=[{{}, {0x80000000}}]}) ioctl$MEDIA_IOC_ENUM_LINKS(r0, 0xc0287c02, &(0x7f0000000240)={0x80000000, &(0x7f0000000180), &(0x7f00000001c0)=[{}, {{0x80000000, 0x0}}]}) ioctl$MEDIA_IOC_G_TOPOLOGY(r0, 0xc0487c04, &(0x7f0000000800)={0x0, 0x8, 0x0, &(0x7f0000000280)=[{}, {}, {}, {}, {}, {0x80000000}, {}, {}], 0x4, 0x0, &(0x7f0000000580)=[{}, {}, {}, {}], 0x2, 0x0, &(0x7f0000000740)=[{}, {}], 0x3, 0x0, &(0x7f0000000780)=[{}, {}, {}]}) ioctl$MEDIA_IOC_G_TOPOLOGY(r0, 0xc0487c04, &(0x7f0000000a40)={0x0, 0x1, 0x0, &(0x7f0000000880)=[{}], 0x1, 0x0, &(0x7f0000000900)=[{}], 0x1, 0x0, &(0x7f0000000980)=[{0x0, 0x80000000, 0x0, {0x0}}], 0x3, 0x0, &(0x7f00000009c0)=[{}, {}, {}]}) ioctl$MEDIA_IOC_SETUP_LINK(r0, 0xc0347c03, &(0x7f0000000ac0)={{r3, r4, 0x3, [0x5, 0x7d79]}, {r5, r6, 0x4, [0xf, 0x7]}, 0x10000000, [0x9, 0xb59]}) close(r0) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r0, 0xc008551c, &(0x7f0000000b00)={0x7, 0x10, [0x5, 0xfffff620, 0x80000000, 0x6]}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000000b40)={0x2, [{}, {}, {}, {}, {}, {}, {}, {0x0}], 0x2, "a0cae81833ffbd"}) ioctl$BTRFS_IOC_INO_LOOKUP(r1, 0xd0009412, &(0x7f0000001b40)={r7, 0x9}) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$batadv(&(0x7f0000002b80), r0) getsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000002bc0)={@local, @multicast2, 0x0}, &(0x7f0000002c00)=0xc) sendmsg$BATADV_CMD_TP_METER_CANCEL(r8, &(0x7f0000002d00)={&(0x7f0000002b40)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000002cc0)={&(0x7f0000002c40)={0x60, r9, 0x200, 0x70bd28, 0x25dfdbfe, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x2}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r10}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_ELP_INTERVAL={0x8}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000040}, 0x0) r11 = accept4$unix(r0, &(0x7f0000002d40), &(0x7f0000002dc0)=0x6e, 0x80000) ioctl$sock_SIOCETHTOOL(r11, 0x8946, &(0x7f0000002e40)={'syz_tun\x00', &(0x7f0000002e00)=@ethtool_rxfh_indir={0x39, 0x4, [0xffffff00, 0x0, 0x2, 0xa]}}) r12 = getpgrp(0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000005180)={{{@in6=@ipv4={""/10, ""/2, @local}, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@loopback}}, &(0x7f0000005280)=0xe8) getgroups(0x7, &(0x7f00000052c0)=[0xee00, 0xee00, 0x0, 0xee01, 0xffffffffffffffff, 0xffffffffffffffff, 0xee01]) r15 = geteuid() lstat(&(0x7f0000005380)='./file0\x00', &(0x7f00000053c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000055c0)={0x0, 0x0, 0x0}, &(0x7f0000005600)=0xc) ioctl$DRM_IOCTL_GET_CLIENT(r0, 0xc0286405, &(0x7f0000005640)={0xffffffff, 0x57a, {}, {0x0}, 0x5}) read$FUSE(r0, &(0x7f0000005680)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0x2020) r20 = geteuid() r21 = getegid() syz_fuse_handle_req(r0, &(0x7f0000002e80)="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", 0x2000, &(0x7f000000a3c0)={&(0x7f0000004e80)={0x50, 0x0, 0xfffffffffffffff9, {0x7, 0x28, 0x8, 0x2000000, 0x101, 0x2, 0x1ff, 0x401}}, &(0x7f0000004f00)={0x18, 0xfffffffffffffffe, 0x3, {0x9}}, &(0x7f0000004f40)={0x18, 0x0, 0x9, {0x1}}, &(0x7f0000004f80)={0x18, 0x0, 0x8, {0x7}}, &(0x7f0000004fc0)={0x18, 0x0, 0x5, {0x7}}, &(0x7f0000005000)={0x28, 0xffffffffffffffda, 0xc, {{0x161, 0x800, 0x0, r12}}}, &(0x7f0000005040)={0x60, 0x0, 0x80000001, {{0x5, 0x6, 0x8, 0x6, 0x3, 0x7f, 0x903, 0x13}}}, &(0x7f00000050c0)={0x18, 0x0, 0x1ff, {0xa79}}, &(0x7f0000005100)={0x17, 0xfffffffffffffffe, 0x1, {'batadv\x00'}}, &(0x7f0000005140)={0x20, 0x7fffffffffffffed, 0xd, {0x0, 0x1c}}, &(0x7f0000005300)={0x78, 0x0, 0x100, {0xffffffffffff0000, 0x0, 0x0, {0x1, 0x2, 0x80, 0xffffffff, 0xcd, 0xfffffffffffffffe, 0x80, 0x1, 0xe7e, 0x8000, 0xd6, r13, r14, 0xfffffe01, 0x7}}}, &(0x7f0000005440)={0x90, 0x0, 0x1, {0x0, 0x3, 0x4, 0xffffffff, 0x0, 0x9, {0x2, 0x6, 0x9, 0x8001, 0x2, 0x64a, 0x9, 0x3, 0x9, 0x4000, 0x0, r15, r16, 0x9, 0x7}}}, &(0x7f0000005500)={0xb0, 0xfffffffffffffffe, 0x8, [{0x6, 0xeac7, 0x1, 0x5, '\x00'}, {0x0, 0x4b89, 0xa, 0x2, '/dev/null\x00'}, {0x3, 0x41e1dd23, 0x1, 0x85, '\x00'}, {0x6, 0xc, 0x2, 0xfffffffd, ']$'}, {0x3, 0x8000000000000001}]}, &(0x7f0000009c40)={0x5c0, 0x0, 0x7f, [{{0x5, 0x2, 0xc, 0x6, 0x2, 0x1, {0x3, 0x64, 0xd, 0x7f, 0x5, 0x3, 0x4, 0x4, 0xc, 0xc000, 0x5, 0xee01, r17, 0xd3}}, {0x3, 0x2, 0x5, 0x0, '%)\xd3!:'}}, {{0x1, 0x0, 0x8000000000000000, 0x10000, 0x884e, 0x8, {0x2, 0x7, 0x7, 0x0, 0xc, 0xb75, 0x3, 0xffffffff, 0x1, 0x1000, 0x4, r18, r19, 0x800, 0x5}}, {0x4, 0xfffffffffffffd07, 0x7, 0x9, 'batadv\x00'}}, {{0x3, 0x1, 0x7, 0x7549, 0x8, 0x200, {0x6, 0x2c0000, 0x100000001, 0x7fff, 0xb, 0xfff, 0x5, 0x6bc, 0x8, 0x8000, 0x8, r20, r21, 0x56, 0x10001}}, {0x4, 0xfffffffffffffffb, 0x6, 0x5, '^\\-@-{'}}, {{0x4, 0x2, 0x6, 0x8, 0x95, 0x3, {0x2, 0x8, 0x4, 0x1, 0x7, 0x4, 0x5ca6c0e8, 0xccb, 0xffff5f9b, 0x4000, 0x6, 0x0, 0x0, 0x9, 0x643d}}, {0x4, 0x1, 0x7, 0x2, 'batadv\x00'}}, {{0x2, 0x1, 0xf, 0x3, 0x8001, 0x28000000, {0x1, 0x9, 0x5, 0x9, 0x6, 0x51, 0x37, 0x1, 0x5, 0x8000, 0x6, 0xffffffffffffffff, 0x0, 0x7, 0x7fff}}, {0x4, 0x317a, 0x5, 0x69d00000, '}%,/\''}}, {{0x1, 0x3, 0x0, 0x4, 0xb0b, 0xb, {0x5, 0xd, 0xf, 0x8, 0x100000000000, 0x4, 0x0, 0x8, 0x9, 0x4000, 0x8, 0xee00, 0x0, 0x1, 0x1}}, {0x1, 0x4, 0x7, 0x7fff, 'batadv\x00'}}, {{0x5, 0x0, 0x400, 0x8, 0xfd, 0x9, {0x0, 0x3, 0x9, 0xbf7, 0x7, 0x3, 0x5, 0xffff, 0x80000001, 0x5000, 0x2, 0x0, 0x0, 0x4, 0x5}}, {0x6, 0x8, 0x2, 0x7, '{@'}}, {{0x1, 0x2, 0x5, 0x59, 0x8000, 0x2, {0x3, 0x4, 0x80000001, 0x4, 0x5, 0x0, 0x2, 0x81, 0xffff, 0x0, 0x6, 0xffffffffffffffff, 0x0, 0x6, 0x8}}, {0x3, 0x9, 0x1, 0x1ab, '{'}}, {{0x6, 0x0, 0x7fffffffffffffff, 0xb3e, 0xfffffff5, 0x2, {0x5, 0x0, 0x2, 0x8, 0x8, 0x3, 0x2, 0x2000, 0xc55, 0x1000, 0x7, 0x0, 0x0, 0x8000, 0x4}}, {0x0, 0x8001, 0x14, 0x7e2, '.\xd2}${@&\xed&:(*[[*/\xf0)#.'}}]}, &(0x7f000000a2c0)={0xa0, 0x0, 0x966d, {{0x0, 0x2, 0x3, 0x4, 0x0, 0xfffffff1, {0x5, 0x7, 0x2d6, 0x3000000000000000, 0xf35, 0xffffffffffff588f, 0x6, 0xf, 0x5, 0xa000, 0x14b1, 0x0, 0x0, 0xfffffffa, 0x5}}, {0x0, 0x2}}}, &(0x7f000000a380)={0x20, 0x0, 0x1, {0xb98e, 0x4, 0x7d, 0xffffff2c}}}) 1.619348089s ago: executing program 0 (id=3562): socket$kcm(0x10, 0x400000002, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) socket$kcm(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0xc8}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x1800, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) r0 = socket$kcm(0x2, 0x5, 0x84) r1 = socket$kcm(0x10, 0x2, 0x4) close(r1) r2 = socket$kcm(0x10, 0x2, 0x4) close(r2) socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="5c00000012006bab9e3fe3d86e17aa31076b876c1d0000037ea60864160af36505001a0038001d00810000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f4d4938037e786a6d0bdd7fcf50e4509c5bb5b64f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)="240000001e006bcd9e3fe3dc6e08000007000000000000007ea60864160af36504005425", 0x24}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a4000000230000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) getpid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30) r3 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) openat$cgroup_procs(r3, 0x0, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000540)}, 0x0) 1.468378126s ago: executing program 0 (id=3564): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f00000001c0), 0x4) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) recvmsg$unix(0xffffffffffffffff, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) r3 = syz_io_uring_setup(0x110, &(0x7f0000000140), &(0x7f0000000240)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_FADVISE={0x18, 0x10, 0x0, @fd=r1, 0xd, 0x0, 0xf340, 0x2, 0x1}) io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) ioctl$CDROMREADMODE2(0xffffffffffffffff, 0x530c, &(0x7f0000000680)={0x8, 0xae, 0x1, 0x0, 0x13, 0x62}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x4, &(0x7f0000000080)=[{0x6, 0x20, 0x1, 0xf75b}, {0x7, 0x7f, 0x3, 0x501a}, {0xfb7c, 0x6, 0x81, 0x7}, {0xfffc, 0x9, 0x3, 0x1}]}) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 1.367504023s ago: executing program 1 (id=3568): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000840)={{0x14}, [@NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xe}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x40}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_DATA_TYPE={0x8}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x1}]}], {0x14, 0x10}}, 0x74}}, 0x0) 1.172902604s ago: executing program 2 (id=3570): r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xb0000) (async) ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000140)={@my=0x0}) (async) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000180)=@o_path={&(0x7f0000000100)='./file0\x00', 0x1}, 0x18) (async) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0) r1 = syz_open_dev$media(&(0x7f0000000080), 0x1, 0x0) r2 = syz_open_dev$ttys(0xc, 0x2, 0x0) (async) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) r4 = fcntl$dupfd(r2, 0x0, r3) ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0xf) (async) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x7, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000300"/15], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async) r7 = socket$nl_route(0x10, 0x3, 0x0) (async) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'macvlan1\x00', 0x0}) sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800c0001006d61637674617000040002800800", @ANYRES32=r8, @ANYRES32=r6], 0x44}}, 0x0) (async) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r4, 0x89f3, &(0x7f0000000280)={'syztnl0\x00', &(0x7f0000000100)={'ip6gre0\x00', r8, 0x29, 0x2, 0x9, 0x401, 0x40, @empty, @dev={0xfe, 0x80, '\x00', 0xb}, 0x8000, 0xf810, 0x7, 0x80000001}}) (async) write$nci(r4, 0x0, 0x0) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000000)='cifs\x00', 0x0, &(0x7f00000001c0)='=\n\x9b\xa1Q\x83\xe9\n@\xf6\"2a\xd7\x1fch\x1a}#\xfa\xe4`\xdc[\x03\x97\xcd\xf1\xa6b\x9a\x1f\xff\xff\xffIT\xe4\x8c&\xac\xe6:\xc5\xe8\xd9\"\x82\xd5\xeb\x90\xef1:\xba\xc3\xc3\xd3\xad\'\xc44\x17,,\x8dZz\x04\x17-#F\xc7<\xe6\xf5]%gC\x9e\xca\nS\xc3\xc8\x98\xd8\xc8\x9eZ\xa76\x9f\xc2=\xaa\xcet7\xb9\xbd\xd47\xe3\xc8@$8\v\x9f\xfd\xe1!\x11\x19Y\x06J\x8f\x80\xef9Tw8\x1b\xe2\xf3\x85\xd5}\xa5\xb7\xd5|') r9 = socket(0x10, 0x3, 0x0) (async) r10 = socket$packet(0x11, 0x3, 0x300) ioctl$FS_IOC_MEASURE_VERITY(r9, 0xc0046686, &(0x7f00000005c0)={0x1, 0x14, "7b5101792660a73607366231e13b0d8153b3dd2d"}) (async) ioctl$ifreq_SIOCGIFINDEX_team(r10, 0x8933, &(0x7f0000000580)={'team0\x00', 0x0}) sendmsg$nl_route_sched(r9, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x48, 0x24, 0xd0b, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r11, {0x10}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18}}}]}, 0x48}, 0x1, 0x8100000000000000}, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={r6, 0xe0, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x7, 0x6, &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x89, &(0x7f0000000400)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000440), &(0x7f0000000480), 0x8, 0x7c, 0x8, 0x8, &(0x7f00000004c0)}}, 0x10) (async) r12 = getpid() process_vm_readv(r12, &(0x7f0000000540), 0x0, &(0x7f0000008640), 0x0, 0x0) (async) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000600)={r4, r4, 0x37, 0x0, @void}, 0x10) ioctl$MEDIA_IOC_REQUEST_ALLOC(r1, 0x80047c05, &(0x7f00000006c0)=0xffffffffffffffff) ppoll(&(0x7f0000000240)=[{r13, 0x801a}], 0x1, 0x0, 0x0, 0x0) 1.058775767s ago: executing program 1 (id=3571): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000840)={{0x14}, [@NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xe}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x40}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_DATA_TYPE={0x8}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x1}]}], {0x14, 0x10}}, 0x74}}, 0x0) (fail_nth: 1) 953.856004ms ago: executing program 1 (id=3572): socket$kcm(0x10, 0x400000002, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) socket$kcm(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0xc8}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x1800, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) r0 = socket$kcm(0x2, 0x5, 0x84) r1 = socket$kcm(0x10, 0x2, 0x4) close(r1) r2 = socket$kcm(0x10, 0x2, 0x4) close(r2) socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="5c00000012006bab9e3fe3d86e17aa31076b876c1d0000037ea60864160af36505001a0038001d00810000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f4d4938037e786a6d0bdd7fcf50e4509c5bb5b64f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)="240000001e006bcd9e3fe3dc6e08000007000000000000007ea60864160af36504005425", 0x24}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a4000000230000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) getpid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30) r3 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) openat$cgroup_procs(r3, 0x0, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000540)}, 0x0) 952.737562ms ago: executing program 2 (id=3573): r0 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0) ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x502, {0x125, 0x7f, 0x80, 0x5, 0xfdfc, 0x20, 0x4, 0x4, 0x3e3d, 0x0, 0x0, 0x1, 0x0, 0x0, "12d56163d7287bd287881d942450c7153a3243937ca9a58be1476b1500"}}) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000002000000a4c000009821a93040000200000000000000000000900010073797a3100000000080005400000000e08000340000000400900020073797a3100000000080000000000000000000a4000000001140000001000010000000000000000000000000ad5afaf3a7a7c5a19264fc5f468b0ffd6d2c17e21c26bec82b7e1dbbdc0d0985403cd61355f3ffd70ec2bdbeaa2c4f28d85cb571abec6c5b06aa8272665fde7cab1f53cbf1d8920ee2d2f0d61098268e54df5ec2cc7c8df9d66ab8444fcd269fb883f8a593d04317f943e"], 0x74}}, 0x0) 952.466935ms ago: executing program 3 (id=3574): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_PMKSA(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000500)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) 951.991231ms ago: executing program 3 (id=3575): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYRES64=0x0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x74, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) mkdir(&(0x7f0000000140)='./control\x00', 0x9) prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x7f, 0x8d}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000000)=0x9) r3 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r3, &(0x7f0000000100)={0x2, 0x4e24, @local}, 0x10) setsockopt$sock_int(r3, 0x1, 0x6, &(0x7f0000000140)=0x32, 0x4) setsockopt$inet_int(r3, 0x0, 0x14, 0x0, 0x0) connect$inet(r3, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000080)=0x540, 0x4) sendmmsg$inet(r3, &(0x7f0000002080)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}], 0x1, 0x0) setsockopt$inet_int(r3, 0x0, 0x12, &(0x7f0000001140)=0x100, 0x4) recvmsg(r3, &(0x7f00000008c0)={0x0, 0x0, 0x0}, 0x40002100) r4 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r4, 0x0, 0x0) setsockopt$sock_int(r4, 0x1, 0x2c, 0x0, 0x0) connect$inet(r4, 0x0, 0x0) setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x25, &(0x7f0000000080)=0x540, 0x4) sendmmsg$inet(r4, &(0x7f0000002080), 0x0, 0x0) setsockopt$inet_int(r4, 0x0, 0x12, 0x0, 0x0) recvmsg(r4, 0x0, 0x40002100) bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000003940), 0x0, 0x404c0c0) pipe(&(0x7f0000002480)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r1, 0x0, r5, 0x0, 0x7, 0x0) write$P9_RWRITE(r5, &(0x7f0000000040)={0xb}, 0x11000) write(r5, &(0x7f0000000140)='i', 0x1) 877.476749ms ago: executing program 1 (id=3576): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (fail_nth: 16) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x2, 0x0}, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 877.141426ms ago: executing program 2 (id=3577): r0 = openat$sysfs(0xffffff9c, &(0x7f00000002c0)='/sys/kernel/warn_count', 0x410400, 0xa0) fcntl$getflags(r0, 0x40a) r1 = syz_open_dev$video(&(0x7f0000000000), 0x75, 0x0) ioctl$VIDIOC_S_PARM(r1, 0xc0cc5616, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000040)={0x0, 0x34325842, 0x280, 0x168, 0x0, @stepwise={{0x2, 0x6}, {0x1, 0xfffffffd}, {0x2, 0x10000000}}}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000ed000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r4}, 0x10) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, 0x0, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r6 = dup(r5) ioctl$KVM_SET_MSRS(r6, 0x4048aecb, &(0x7f00000000c0)=ANY=[@ANYRES64=r2, @ANYRES64]) 668.182064ms ago: executing program 2 (id=3578): r0 = gettid() bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$SMC_PNETID_DEL(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000021c0)={0x20, r2, 0x1, 0x0, 0x0, {0x3, 0x2, 0x2}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x20}, 0x1, 0x40030000000000}, 0x0) r3 = socket$l2tp6(0xa, 0x2, 0x73) setsockopt$sock_int(r3, 0x1, 0x28, &(0x7f00000000c0)=0x5, 0x4) bind$l2tp6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x20) syz_emit_ethernet(0x8e, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaaaa1acd1f78800d86dd608a37f200587300fe8000000000000000000000000000bbfe8000000000000000000000000000aa00000000", @ANYRES8], 0x0) capget(&(0x7f0000000180)={0x19980330, r0}, &(0x7f0000000000)={0x10, 0x0, 0x2, 0x0, 0x9, 0x3}) 610.923131ms ago: executing program 0 (id=3579): fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)={0x1, 0x0, [{0x491}]}) r3 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x8a803, 0x0) ioctl$CDROM_SEND_PACKET(r3, 0x5306, &(0x7f0000000280)={"002002000000000100000020", 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xc, 0x0}) bind$inet(0xffffffffffffffff, 0x0, 0x0) r4 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000440)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) r5 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x0}, &(0x7f00000005c0)="ffffff7f0000000086fd8a0e874fade10f9d5875644adf600933f72ecc5c00953873a7ff53e09e34ae95c051ac3b12cb491f69d29d19565c45eb683e130280119549bdfd28cbf19a1d1255fcc20e74e6f268be2f6c3d1a0ca6305f386e2feb3699", 0x61, 0xfffffffffffffffe) r6 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440)={'syz', 0x2}, &(0x7f00000000c0), 0xd2, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000140)={r6, r6, r5}, 0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000280)={'sha3-512-ce\x00'}}) keyctl$search(0xa, r4, &(0x7f0000000500)='keyring\x00', &(0x7f0000000540)={'syz', 0x2}, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000640)=ANY=[], 0x50}, 0x1, 0x0, 0x0, 0x850}, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000002880)={0x0, 0x0, &(0x7f0000002840)={&(0x7f0000000000)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00f23a000000080003000000000000000000", @ANYRES32=0x0, @ANYBLOB="30003300c0000000ffffffffffff080211000000505050505050000000008c1000005949c420d180981fa725d0e22002"], 0x4c}}, 0x0) r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/protocols\x00') lseek(r9, 0x8, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r7, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r8, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r10, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0) r11 = syz_open_dev$media(&(0x7f0000000040), 0x7, 0x40) ioctl$MEDIA_IOC_ENUM_LINKS(r9, 0xc0287c02, &(0x7f0000000240)={0x80000000, 0x0, &(0x7f0000000180)=[{{}, {0x80000000}}]}) ioctl$MEDIA_IOC_ENUM_LINKS(r11, 0x4020940d, &(0x7f0000000340)={r12, 0x0, 0x0}) socket$inet_smc(0x2b, 0x1, 0x0) pselect6(0xfe41, &(0x7f0000000040)={0xd, 0x0, 0x0, 0x8000000}, 0x0, 0x0, 0x0, 0x0) ioctl$MEDIA_IOC_ENUM_ENTITIES(0xffffffffffffffff, 0xc1007c01, &(0x7f0000000080)={r12}) 610.314323ms ago: executing program 2 (id=3580): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text64={0x40, &(0x7f0000000200)="c744240044000000c744240200600000ff2c240f06c4c1605e5200660f3a61590000c744240008000000c744240200500000c7442406000000000f011c24450f005e83660f381c2f36440f07b9800000c00f3235001000000f7d0f821f", 0xfffffffffffffd77}], 0x1, 0x16, 0x0, 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0) write$binfmt_aout(r3, &(0x7f0000000080)=ANY=[], 0xff2e) clock_adjtime(0x0, &(0x7f0000000040)={0xd51, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}) ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000100)) (async) ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000100)) r4 = syz_open_pts(r3, 0x60c40) dup3(r4, r3, 0x0) splice(r3, 0x0, r2, 0x0, 0x3, 0x0) (async) splice(r3, 0x0, r2, 0x0, 0x3, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000140)) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}]}) (async) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x2004cb, 0x0, 0x0, 0x0, 0x3], 0x0, 0x845}) ioctl$KVM_RUN(r5, 0xae80, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) socket$nl_route(0x10, 0x3, 0x0) (async) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@bridge_getvlan={0x20, 0x72, 0x8, 0x0, 0x0, {}, [@BRIDGE_VLANDB_DUMP_FLAGS={0x8, 0x1, 0x1}]}, 0x20}}, 0x40000) add_key$keyring(&(0x7f0000000100), 0x0, 0x0, 0x0, 0xfffffffffffffffd) (async) add_key$keyring(&(0x7f0000000100), 0x0, 0x0, 0x0, 0xfffffffffffffffd) syz_genetlink_get_family_id$mptcp(&(0x7f00000003c0), 0xffffffffffffffff) (async) syz_genetlink_get_family_id$mptcp(&(0x7f00000003c0), 0xffffffffffffffff) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae03, 0x4a) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r7 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r8 = dup(r7) write$6lowpan_enable(r8, &(0x7f0000000000)='0', 0xfffffd2c) (async) write$6lowpan_enable(r8, &(0x7f0000000000)='0', 0xfffffd2c) socket$kcm(0x29, 0x2, 0x0) syz_open_dev$radio(&(0x7f0000000000), 0x2, 0x2) (async) syz_open_dev$radio(&(0x7f0000000000), 0x2, 0x2) 553.749833ms ago: executing program 1 (id=3581): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfe) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x2, 0x0}, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 180.688182ms ago: executing program 0 (id=3582): socket$inet(0x2, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800001008000000000000210d0000aaa8fa017242ba9380d440fe0000000000002900000010000000", 0xfe60) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000000)=@ipmr_delroute={0x24, 0x18, 0x1, 0x0, 0x0, {0x80, 0x20, 0x0, 0x0, 0x0, 0x4, 0x0, 0x5}, [@RTA_MARK={0x8}]}, 0x24}}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000140)={0x18, r2, 0x333, 0x0, 0x0, {0x1c}, [@HEADER={0x4}]}, 0x18}, 0x1, 0xa60d000000000000}, 0x0) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r5, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r5, &(0x7f0000000040)="05000000010001", 0x7) 180.318425ms ago: executing program 2 (id=3583): socket$inet6_sctp(0xa, 0x801, 0x84) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_io_uring_setup(0xed2, &(0x7f0000000400)={0x0, 0x0, 0x200, 0x1}, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r1, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) socket$packet(0x11, 0x3, 0x300) r2 = socket$can_j1939(0x1d, 0x2, 0x7) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-aesni-avx2\x00'}, 0x58) r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) close_range(r4, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'erspan0\x00'}) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000580)='tracefs\x00', 0x0, 0x0) r5 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) getdents(r5, 0x0, 0x0) fchdir(r4) mount(0x0, &(0x7f0000000380)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) r6 = inotify_init1(0x0) fcntl$setown(r6, 0x8, 0xffffffffffffffff) fcntl$getownex(r6, 0x10, &(0x7f0000000140)={0x0, 0x0}) r8 = syz_open_procfs(r7, &(0x7f0000000600)='fd/4\x00') ioctl$EXT4_IOC_GET_ES_CACHE(r8, 0xc020662a, &(0x7f0000000480)={0x0, 0x738, 0x0, 0x0, 0x1, [{}]}) syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2) r9 = userfaultfd(0x1) ioctl$UFFDIO_API(r9, 0xc018aa3f, &(0x7f0000000040)) fcntl$dupfd(0xffffffffffffffff, 0x406, r9) 58.742143ms ago: executing program 0 (id=3584): socket$kcm(0x10, 0x400000002, 0x0) socket$kcm(0x10, 0x0, 0x10) socket$kcm(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0xc8}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x1800, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) r0 = socket$kcm(0x2, 0x5, 0x84) r1 = socket$kcm(0x10, 0x2, 0x4) close(r1) r2 = socket$kcm(0x10, 0x2, 0x4) close(r2) socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="5c00000012006bab9e3fe3d86e17aa31076b876c1d0000037ea60864160af36505001a0038001d00810000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f4d4938037e786a6d0bdd7fcf50e4509c5bb5b64f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)="240000001e006bcd9e3fe3dc6e08000007000000000000007ea60864160af36504005425", 0x24}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a4000000230000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) getpid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30) r3 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) openat$cgroup_procs(r3, 0x0, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000540)}, 0x0) 1.572982ms ago: executing program 0 (id=3585): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = socket(0x200000000000011, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00'}) r1 = socket(0xa, 0x3, 0xff) ioctl$sock_inet_tcp_SIOCOUTQ(r1, 0x89a2, &(0x7f0000000000)) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) socket$inet6(0xa, 0x1, 0x0) r3 = socket$inet6(0xa, 0x3, 0x2) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = syz_open_dev$video4linux(&(0x7f0000000000), 0x6b, 0x0) pidfd_getfd(r3, r5, 0x0) socket(0x2, 0x80805, 0x0) sendmsg$nl_route(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="2c000000180000012dbd7000fedbdf250a10000fff00c80300140000"], 0x2c}}, 0x80) ioctl$FS_IOC_GETFSLABEL(r3, 0x81009431, &(0x7f0000000480)) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) r6 = syz_open_dev$sg(&(0x7f0000000180), 0xa, 0x50041) ioctl$SCSI_IOCTL_SEND_COMMAND(r6, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYRESDEC]) add_key(&(0x7f0000000380)='asymmetric\x00', 0x0, &(0x7f0000000440)="1082", 0x2, 0xffffffffffffffff) socket$nl_xfrm(0x10, 0x3, 0x6) r7 = syz_open_dev$tty1(0xc, 0x4, 0x1) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYBLOB="043e1f0a00c9000001aaaaaaaaaa50ff"], 0x22) r8 = openat$cgroup_int(r7, &(0x7f0000000280)='cgroup.clone_children\x00', 0x2, 0x0) ioctl$BTRFS_IOC_SEND(r8, 0x40489426, &(0x7f00000019c0)={{r5}, 0x5, &(0x7f0000000040)=[0x0, 0x0, 0x6, 0x7fff, 0x0], 0x579a038c, 0xd, 0x1}) 0s ago: executing program 1 (id=3593): socket$kcm(0x10, 0x400000002, 0x0) socket$kcm(0x10, 0x0, 0x10) socket$kcm(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0xc8}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x1800, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) r0 = socket$kcm(0x2, 0x5, 0x84) r1 = socket$kcm(0x10, 0x2, 0x4) close(r1) r2 = socket$kcm(0x10, 0x2, 0x4) close(r2) socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="5c00000012006bab9e3fe3d86e17aa31076b876c1d0000037ea60864160af36505001a0038001d00810000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f4d4938037e786a6d0bdd7fcf50e4509c5bb5b64f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)="240000001e006bcd9e3fe3dc6e08000007000000000000007ea60864160af36504005425", 0x24}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a4000000230000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) getpid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30) r3 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) openat$cgroup_procs(r3, 0x0, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000540)}, 0x0) kernel console output (not intermixed with test programs): 0280 RDI: 0000000000000003 [ 562.050891][T16204] RBP: 00007f42accb1090 R08: 0000000000000000 R09: 0000000000000000 [ 562.053733][T16204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 562.056508][T16204] R13: 0000000000000000 R14: 00007f42ac135f80 R15: 00007fff59b49008 [ 562.058757][T16204] [ 562.059615][ C2] vkms_vblank_simulate: vblank timer overrun [ 562.183688][T16218] netlink: 92 bytes leftover after parsing attributes in process `syz.0.2876'. [ 562.224298][T16214] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2869'. [ 562.387518][T16228] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 562.463310][T16227] ALSA: mixer_oss: invalid OSS volume '' [ 562.464918][T16227] ALSA: mixer_oss: invalid OSS volume '' [ 563.117572][ T63] usb 7-1: USB disconnect, device number 11 [ 564.065719][T16254] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2879'. [ 564.184429][T16260] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2879'. [ 564.211201][T16262] random: crng reseeded on system resumption [ 565.068787][ T39] kauditd_printk_skb: 11 callbacks suppressed [ 565.068798][ T39] audit: type=1400 audit(1728972478.147:1696): avc: denied { setattr } for pid=16275 comm="syz.1.2884" name="KEY" dev="sockfs" ino=57546 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 566.002583][ T9] usb 6-1: new high-speed USB device number 22 using dummy_hcd [ 566.154265][ T9] usb 6-1: Using ep0 maxpacket: 8 [ 566.156744][ T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 566.159504][ T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 566.162125][ T9] usb 6-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 566.164811][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 566.167858][ T9] usb 6-1: config 0 descriptor?? [ 566.172001][ T9] usbhid 6-1:0.0: can't add hid device: -22 [ 566.176327][ T9] usbhid 6-1:0.0: probe with driver usbhid failed with error -22 [ 566.315968][T16293] /dev/sr0: Can't open blockdev [ 567.168921][T16314] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2896'. [ 567.367275][T16315] FAULT_INJECTION: forcing a failure. [ 567.367275][T16315] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 567.371666][T16315] CPU: 1 UID: 0 PID: 16315 Comm: syz.0.2895 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 567.375266][T16315] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 567.378447][T16315] Call Trace: [ 567.379335][T16315] [ 567.380124][T16315] dump_stack_lvl+0x16c/0x1f0 [ 567.381442][T16315] should_fail_ex+0x497/0x5b0 [ 567.382882][T16315] _copy_to_user+0x30/0xc0 [ 567.384066][T16315] simple_read_from_buffer+0xd0/0x160 [ 567.385500][T16315] proc_fail_nth_read+0x198/0x270 [ 567.386836][T16315] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 567.388290][T16315] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 567.389789][T16315] vfs_read+0x1ce/0xbd0 [ 567.390899][T16315] ? __fget_files+0x23a/0x3f0 [ 567.392146][T16315] ? fdget_pos+0x24c/0x360 [ 567.393336][T16315] ? __pfx_lock_release+0x10/0x10 [ 567.394658][T16315] ? trace_lock_acquire+0x14a/0x1d0 [ 567.396037][T16315] ? __pfx_vfs_read+0x10/0x10 [ 567.397301][T16315] ? __pfx___mutex_lock+0x10/0x10 [ 567.398645][T16315] ? __fget_files+0x244/0x3f0 [ 567.399904][T16315] ksys_read+0x12f/0x260 [ 567.401091][T16315] ? __pfx_ksys_read+0x10/0x10 [ 567.402368][T16315] do_syscall_64+0xcd/0x250 [ 567.403583][T16315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 567.405147][T16315] RIP: 0033:0x7f42abf7ca3c [ 567.406322][T16315] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 567.411919][T16315] RSP: 002b:00007f42acc90030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 567.414105][T16315] RAX: ffffffffffffffda RBX: 00007f42ac136058 RCX: 00007f42abf7ca3c [ 567.416171][T16315] RDX: 000000000000000f RSI: 00007f42acc900a0 RDI: 0000000000000005 [ 567.418238][T16315] RBP: 00007f42acc90090 R08: 0000000000000000 R09: 0000000000000000 [ 567.420306][T16315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 567.422388][T16315] R13: 0000000000000000 R14: 00007f42ac136058 R15: 00007fff59b49008 [ 567.424452][T16315] [ 567.499775][T16317] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2897'. [ 567.516065][T16317] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2897'. [ 567.526254][T16317] vlan2: entered allmulticast mode [ 567.916527][T16335] netlink: 'syz.3.2901': attribute type 4 has an invalid length. [ 568.007907][T16336] syzkaller1: entered promiscuous mode [ 568.011677][T16336] syzkaller1: entered allmulticast mode [ 568.063200][T16336] netlink: 'syz.3.2901': attribute type 17 has an invalid length. [ 568.528701][T16342] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2904'. [ 568.718387][T16357] FAULT_INJECTION: forcing a failure. [ 568.718387][T16357] name failslab, interval 1, probability 0, space 0, times 0 [ 568.721875][T16357] CPU: 1 UID: 0 PID: 16357 Comm: syz.0.2909 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 568.724625][T16357] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 568.727440][T16357] Call Trace: [ 568.728325][T16357] [ 568.729115][T16357] dump_stack_lvl+0x16c/0x1f0 [ 568.730360][T16357] should_fail_ex+0x497/0x5b0 [ 568.731597][T16357] ? fs_reclaim_acquire+0xae/0x150 [ 568.732947][T16357] should_failslab+0xc2/0x120 [ 568.734179][T16357] __kmalloc_noprof+0xcb/0x400 [ 568.735430][T16357] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 568.736915][T16357] tomoyo_realpath_from_path+0xb9/0x720 [ 568.738391][T16357] ? tomoyo_path_number_perm+0x232/0x590 [ 568.739922][T16357] tomoyo_path_number_perm+0x245/0x590 [ 568.741365][T16357] ? tomoyo_path_number_perm+0x232/0x590 [ 568.742830][T16357] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 568.744398][T16357] ? trace_lock_acquire+0x14a/0x1d0 [ 568.745774][T16357] ? lock_acquire+0x2f/0xb0 [ 568.746960][T16357] ? __fget_files+0x40/0x3f0 [ 568.748178][T16357] ? __fget_files+0x244/0x3f0 [ 568.749426][T16357] security_file_ioctl+0x9b/0x240 [ 568.750746][T16357] __x64_sys_ioctl+0xbb/0x220 [ 568.751979][T16357] do_syscall_64+0xcd/0x250 [ 568.753172][T16357] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 568.754707][T16357] RIP: 0033:0x7f42abf7dff9 [ 568.755900][T16357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 568.760850][T16357] RSP: 002b:00007f42accb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 568.762997][T16357] RAX: ffffffffffffffda RBX: 00007f42ac135f80 RCX: 00007f42abf7dff9 [ 568.765025][T16357] RDX: 0000000020000280 RSI: 00000000c01064c8 RDI: 0000000000000003 [ 568.767060][T16357] RBP: 00007f42accb1090 R08: 0000000000000000 R09: 0000000000000000 [ 568.769096][T16357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 568.771138][T16357] R13: 0000000000000000 R14: 00007f42ac135f80 R15: 00007fff59b49008 [ 568.773182][T16357] [ 568.774375][ T39] audit: type=1400 audit(1728972482.001:1697): avc: denied { map } for pid=16355 comm="syz.2.2908" path="/dev/nullb0" dev="devtmpfs" ino=691 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 568.780170][ T39] audit: type=1400 audit(1728972482.001:1698): avc: denied { execute } for pid=16355 comm="syz.2.2908" path="/dev/nullb0" dev="devtmpfs" ino=691 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 568.782985][T16357] ERROR: Out of memory at tomoyo_realpath_from_path. [ 568.802568][ T9] usb 6-1: USB disconnect, device number 22 [ 568.815076][T16363] random: crng reseeded on system resumption [ 569.868651][ T4769] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201' [ 569.871445][ T4769] CPU: 2 UID: 0 PID: 4769 Comm: kworker/u33:1 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 569.874259][ T4769] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 569.877031][ T4769] Workqueue: hci3 hci_rx_work [ 569.878616][ T4769] Call Trace: [ 569.879510][ T4769] [ 569.880300][ T4769] dump_stack_lvl+0x16c/0x1f0 [ 569.881581][ T4769] sysfs_warn_dup+0x7f/0xa0 [ 569.882787][ T4769] sysfs_create_dir_ns+0x24d/0x2b0 [ 569.884175][ T4769] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 569.885988][ T4769] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 569.887724][ T4769] ? kobject_add_internal+0x12d/0x990 [ 569.889467][ T4769] ? do_raw_spin_unlock+0x172/0x230 [ 569.890823][ T4769] kobject_add_internal+0x2c8/0x990 [ 569.892429][ T4769] kobject_add+0x16f/0x240 [ 569.893774][ T4769] ? __pfx_kobject_add+0x10/0x10 [ 569.895154][ T4769] ? class_to_subsys+0x3e/0x160 [ 569.896447][ T4769] ? do_raw_spin_unlock+0x172/0x230 [ 569.898111][ T4769] ? kobject_put+0xab/0x5a0 [ 569.899261][ T4769] device_add+0x289/0x1a70 [ 569.900609][ T4769] ? __pfx_dev_set_name+0x10/0x10 [ 569.901933][ T4769] ? __pfx_device_add+0x10/0x10 [ 569.903142][ T4769] ? mgmt_send_event_skb+0x2f2/0x460 [ 569.904777][ T4769] hci_conn_add_sysfs+0x17e/0x230 [ 569.906444][ T4769] le_conn_complete_evt+0x1078/0x1d80 [ 569.907988][ T4769] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 569.909664][ T4769] ? trace_contention_end+0xea/0x140 [ 569.911301][ T4769] hci_le_enh_conn_complete_evt+0x23d/0x380 [ 569.912791][ T4769] ? skb_pull_data+0x166/0x210 [ 569.914009][ T4769] hci_le_meta_evt+0x2e2/0x5d0 [ 569.915185][ T4769] ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10 [ 569.916798][ T4769] hci_event_packet+0x666/0x1180 [ 569.918057][ T4769] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 569.919399][ T4769] ? __pfx_hci_event_packet+0x10/0x10 [ 569.920752][ T4769] ? mark_held_locks+0x9f/0xe0 [ 569.921684][T16398] ubi0: attaching mtd0 [ 569.921968][ T4769] ? kcov_remote_start+0x3cf/0x6e0 [ 569.924512][ T4769] ? lockdep_hardirqs_on+0x7c/0x110 [ 569.925864][ T4769] hci_rx_work+0x2c6/0x16c0 [ 569.927021][ T4769] ? lock_acquire+0x2f/0xb0 [ 569.928189][ T4769] ? process_one_work+0x921/0x1ba0 [ 569.929502][ T4769] process_one_work+0x9c5/0x1ba0 [ 569.930776][ T4769] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 569.932188][ T4769] ? __pfx_process_one_work+0x10/0x10 [ 569.933542][ T4769] ? assign_work+0x1a0/0x250 [ 569.934719][ T4769] worker_thread+0x6c8/0xf00 [ 569.935937][ T4769] ? __pfx_worker_thread+0x10/0x10 [ 569.937227][ T4769] kthread+0x2c1/0x3a0 [ 569.938267][ T4769] ? _raw_spin_unlock_irq+0x23/0x50 [ 569.939567][ T4769] ? __pfx_kthread+0x10/0x10 [ 569.940755][ T4769] ret_from_fork+0x45/0x80 [ 569.941893][ T4769] ? __pfx_kthread+0x10/0x10 [ 569.943042][ T4769] ret_from_fork_asm+0x1a/0x30 [ 569.944240][ T4769] [ 569.945085][ C2] vkms_vblank_simulate: vblank timer overrun [ 569.946975][ T4769] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 569.950536][ T4769] Bluetooth: hci3: failed to register connection device [ 569.960969][T16398] ubi0: scanning is finished [ 569.963114][T16398] ubi0: empty MTD device detected [ 570.440922][T16405] FAULT_INJECTION: forcing a failure. [ 570.440922][T16405] name failslab, interval 1, probability 0, space 0, times 0 [ 570.444550][T16405] CPU: 1 UID: 0 PID: 16405 Comm: syz.1.2924 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 570.447343][T16405] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 570.450126][T16405] Call Trace: [ 570.451010][T16405] [ 570.451788][T16405] dump_stack_lvl+0x16c/0x1f0 [ 570.453034][T16405] should_fail_ex+0x497/0x5b0 [ 570.454274][T16405] should_failslab+0xc2/0x120 [ 570.455504][T16405] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 570.456919][T16405] ? dev_queue_xmit_nit+0x43/0xba0 [ 570.458259][T16405] ? skb_clone+0x190/0x3f0 [ 570.459497][T16405] skb_clone+0x190/0x3f0 [ 570.460609][T16405] dev_queue_xmit_nit+0x38f/0xba0 [ 570.461958][T16405] dev_hard_start_xmit+0x56/0x790 [ 570.463279][T16405] ? __dev_queue_xmit+0x252/0x4350 [ 570.464619][T16405] __dev_queue_xmit+0x7c7/0x4350 [ 570.465950][T16405] ? do_splice_direct+0x178/0x250 [ 570.467264][T16405] ? do_sendfile+0xb0c/0xe40 [ 570.468475][T16405] ? __x64_sys_sendfile64+0x1da/0x220 [ 570.469881][T16405] ? do_syscall_64+0xcd/0x250 [ 570.471115][T16405] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.472698][T16405] ? __pfx___dev_queue_xmit+0x10/0x10 [ 570.474116][T16405] ? __asan_memcpy+0x3c/0x60 [ 570.475325][T16405] ? __asan_memcpy+0x3c/0x60 [ 570.476530][T16405] ? __skb_clone+0x570/0x760 [ 570.477752][T16405] netlink_deliver_tap+0xa7d/0xd90 [ 570.479089][T16405] netlink_dump+0xb2d/0xcc0 [ 570.480278][T16405] ? __pfx_netlink_dump+0x10/0x10 [ 570.481615][T16405] ? __asan_memset+0x23/0x50 [ 570.482830][T16405] ? genl_start+0x677/0x950 [ 570.484023][T16405] __netlink_dump_start+0x6ca/0x970 [ 570.485386][T16405] genl_family_rcv_msg_dumpit+0x1e1/0x2e0 [ 570.486867][T16405] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 570.488491][T16405] ? genl_op_from_small+0x25/0x440 [ 570.489845][T16405] ? __pfx_genl_get_cmd+0x10/0x10 [ 570.491165][T16405] ? __pfx_genl_start+0x10/0x10 [ 570.492440][T16405] ? __pfx_genl_dumpit+0x10/0x10 [ 570.493746][T16405] ? __pfx_genl_done+0x10/0x10 [ 570.495003][T16405] ? bpf_lsm_capable+0x9/0x10 [ 570.496227][T16405] ? security_capable+0x7e/0x260 [ 570.497525][T16405] ? ns_capable+0xd7/0x110 [ 570.498700][T16405] genl_rcv_msg+0x470/0x800 [ 570.499892][T16405] ? __pfx_genl_rcv_msg+0x10/0x10 [ 570.501221][T16405] ? __pfx_batadv_gw_dump+0x10/0x10 [ 570.502580][T16405] netlink_rcv_skb+0x16b/0x440 [ 570.503838][T16405] ? __pfx_genl_rcv_msg+0x10/0x10 [ 570.505170][T16405] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 570.506631][T16405] ? down_read+0xc9/0x330 [ 570.507920][T16405] ? __pfx_down_read+0x10/0x10 [ 570.509206][T16405] ? netlink_deliver_tap+0x1ae/0xd90 [ 570.510628][T16405] genl_rcv+0x28/0x40 [ 570.511681][T16405] netlink_unicast+0x53c/0x7f0 [ 570.512943][T16405] ? __pfx_netlink_unicast+0x10/0x10 [ 570.514318][T16405] netlink_sendmsg+0x8b8/0xd70 [ 570.515574][T16405] ? __pfx_netlink_sendmsg+0x10/0x10 [ 570.516956][T16405] ? stack_trace_save+0x95/0xd0 [ 570.518233][T16405] ? stack_depot_save_flags+0x28/0x8f0 [ 570.519662][T16405] sock_sendmsg+0x3cb/0x470 [ 570.520853][T16405] ? __kasan_slab_free+0x51/0x70 [ 570.522151][T16405] ? __pfx_sock_sendmsg+0x10/0x10 [ 570.523460][T16405] ? splice_direct_to_actor+0x2a4/0xa40 [ 570.524910][T16405] splice_to_socket+0xaac/0x1040 [ 570.526212][T16405] ? __pfx_splice_to_socket+0x10/0x10 [ 570.527604][T16405] ? kasan_quarantine_put+0x10a/0x240 [ 570.529033][T16405] ? __pfx_splice_to_socket+0x10/0x10 [ 570.530405][T16405] direct_splice_actor+0x18f/0x6c0 [ 570.531722][T16405] splice_direct_to_actor+0x346/0xa40 [ 570.533125][T16405] ? __pfx_direct_splice_actor+0x10/0x10 [ 570.534582][T16405] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 570.536091][T16405] ? __pfx_file_has_perm+0x10/0x10 [ 570.537438][T16405] do_splice_direct+0x178/0x250 [ 570.538712][T16405] ? __pfx_do_splice_direct+0x10/0x10 [ 570.540104][T16405] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 570.541655][T16405] ? bpf_lsm_file_permission+0x9/0x10 [ 570.543049][T16405] ? security_file_permission+0x71/0x210 [ 570.544500][T16405] do_sendfile+0xb0c/0xe40 [ 570.545680][T16405] ? __pfx_do_sendfile+0x10/0x10 [ 570.546978][T16405] __x64_sys_sendfile64+0x1da/0x220 [ 570.548313][T16405] ? ksys_write+0x1ad/0x260 [ 570.549508][T16405] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 570.550981][T16405] ? __secure_computing+0x273/0x3f0 [ 570.552335][T16405] do_syscall_64+0xcd/0x250 [ 570.553530][T16405] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.556522][T16405] RIP: 0033:0x7ff1e5f7dff9 [ 570.556549][T16405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 570.556560][T16405] RSP: 002b:00007ff1e6ca7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 570.556572][T16405] RAX: ffffffffffffffda RBX: 00007ff1e6135f80 RCX: 00007ff1e5f7dff9 [ 570.556579][T16405] RDX: 0000000000000000 RSI: 000000000000000b RDI: 000000000000000c [ 570.556585][T16405] RBP: 00007ff1e6ca7090 R08: 0000000000000000 R09: 0000000000000000 [ 570.571922][T16405] R10: 0000000100000002 R11: 0000000000000246 R12: 0000000000000002 [ 570.574168][T16405] R13: 0000000000000000 R14: 00007ff1e6135f80 R15: 00007ffd9b905ce8 [ 570.576513][T16405] [ 570.639454][T16398] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 570.641903][T16398] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 570.643849][T16398] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 570.645684][T16398] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 570.647689][T16398] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 570.649509][T16398] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 570.651612][T16398] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 250404012 [ 570.654217][T16398] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 570.657915][T16410] ubi0: background thread "ubi_bgt0d" started, PID 16410 [ 571.021009][ T39] audit: type=1400 audit(1728972484.405:1699): avc: denied { nlmsg_write } for pid=16412 comm="syz.0.2927" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 571.856619][T16433] IPVS: length: 60 != 8 [ 571.868733][T13840] Bluetooth: hci3: command 0x0406 tx timeout [ 572.776915][T16459] fuse: Bad value for 'fd' [ 573.730100][T13840] Bluetooth: hci4: command 0x0405 tx timeout [ 574.088388][ T39] audit: type=1326 audit(1728972487.628:1700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16471 comm="syz.3.2947" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7fc00000 [ 574.094505][ T39] audit: type=1326 audit(1728972487.628:1701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16471 comm="syz.3.2947" exe="/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7fc0d9b7dff9 code=0x7fc00000 [ 574.101160][ T39] audit: type=1326 audit(1728972487.628:1702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16471 comm="syz.3.2947" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7fc00000 [ 574.113914][ T39] audit: type=1326 audit(1728972487.628:1703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16471 comm="syz.3.2947" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7fc00000 [ 574.115847][T16476] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2948'. [ 574.121118][ T39] audit: type=1326 audit(1728972487.628:1704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16471 comm="syz.3.2947" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7fc00000 [ 574.129130][ T39] audit: type=1326 audit(1728972487.628:1705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16471 comm="syz.3.2947" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7fc00000 [ 574.142348][ T39] audit: type=1326 audit(1728972487.628:1706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16471 comm="syz.3.2947" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7fc00000 [ 574.149554][ T39] audit: type=1326 audit(1728972487.628:1707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16471 comm="syz.3.2947" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7fc00000 [ 574.161204][ T39] audit: type=1326 audit(1728972487.628:1708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16471 comm="syz.3.2947" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7fc00000 [ 574.641779][T16490] netlink: 104 bytes leftover after parsing attributes in process `syz.1.2951'. [ 574.650736][T16490] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2951'. [ 575.660495][T16508] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2954'. [ 575.885087][T16521] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2958'. [ 576.760864][ T39] kauditd_printk_skb: 3 callbacks suppressed [ 576.760875][ T39] audit: type=1400 audit(1728972490.431:1712): avc: denied { append } for pid=16531 comm="syz.1.2962" name="dlm-control" dev="devtmpfs" ino=100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 576.772078][T16532] dlm: no local IP address has been set [ 576.779202][T16532] dlm: cannot start dlm midcomms -107 [ 577.301263][T16543] FAULT_INJECTION: forcing a failure. [ 577.301263][T16543] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 577.304720][T16543] CPU: 0 UID: 0 PID: 16543 Comm: syz.0.2963 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 577.307483][T16543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 577.310254][T16543] Call Trace: [ 577.311133][T16543] [ 577.311913][T16543] dump_stack_lvl+0x16c/0x1f0 [ 577.313172][T16543] should_fail_ex+0x497/0x5b0 [ 577.314409][T16543] _copy_from_iter+0x2a1/0x1540 [ 577.315680][T16543] ? __pfx__copy_from_iter+0x10/0x10 [ 577.317056][T16543] ? __virt_addr_valid+0x1a4/0x590 [ 577.318385][T16543] ? __virt_addr_valid+0x5e/0x590 [ 577.319693][T16543] ? __phys_addr_symbol+0x30/0x80 [ 577.321018][T16543] ? __check_object_size+0x488/0x710 [ 577.322392][T16543] netlink_sendmsg+0x813/0xd70 [ 577.323654][T16543] ? __pfx_netlink_sendmsg+0x10/0x10 [ 577.325040][T16543] ? __import_iovec+0x1fd/0x6e0 [ 577.326315][T16543] ____sys_sendmsg+0xaaf/0xc90 [ 577.327565][T16543] ? copy_msghdr_from_user+0x10b/0x160 [ 577.328995][T16543] ? __pfx_____sys_sendmsg+0x10/0x10 [ 577.330371][T16543] ? __pfx___lock_acquire+0x10/0x10 [ 577.331732][T16543] ___sys_sendmsg+0x135/0x1e0 [ 577.332972][T16543] ? __pfx____sys_sendmsg+0x10/0x10 [ 577.334333][T16543] ? lock_acquire+0x2f/0xb0 [ 577.335516][T16543] ? __fget_files+0x40/0x3f0 [ 577.336733][T16543] ? fdget+0x176/0x210 [ 577.337808][T16543] __sys_sendmsg+0x117/0x1f0 [ 577.339024][T16543] ? __pfx___sys_sendmsg+0x10/0x10 [ 577.340367][T16543] ? __fget_files+0x244/0x3f0 [ 577.341630][T16543] do_syscall_64+0xcd/0x250 [ 577.342821][T16543] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 577.344354][T16543] RIP: 0033:0x7f42abf7dff9 [ 577.345528][T16543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 577.350851][T16543] RSP: 002b:00007f42acc90038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 577.353036][T16543] RAX: ffffffffffffffda RBX: 00007f42ac136058 RCX: 00007f42abf7dff9 [ 577.355087][T16543] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 000000000000000b [ 577.357151][T16543] RBP: 00007f42acc90090 R08: 0000000000000000 R09: 0000000000000000 [ 577.359215][T16543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 577.361299][T16543] R13: 0000000000000000 R14: 00007f42ac136058 R15: 00007fff59b49008 [ 577.363362][T16543] [ 577.455862][T16546] FAULT_INJECTION: forcing a failure. [ 577.455862][T16546] name failslab, interval 1, probability 0, space 0, times 0 [ 577.459119][T16546] CPU: 0 UID: 0 PID: 16546 Comm: syz.1.2964 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 577.461903][T16546] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 577.464724][T16546] Call Trace: [ 577.465641][T16546] [ 577.466432][T16546] dump_stack_lvl+0x16c/0x1f0 [ 577.467734][T16546] should_fail_ex+0x497/0x5b0 [ 577.469025][T16546] ? fs_reclaim_acquire+0xae/0x150 [ 577.470362][T16546] should_failslab+0xc2/0x120 [ 577.471600][T16546] kmem_cache_alloc_node_noprof+0x71/0x310 [ 577.473468][T16546] ? __alloc_skb+0x2b1/0x380 [ 577.474939][T16546] __alloc_skb+0x2b1/0x380 [ 577.476313][T16546] ? __pfx___alloc_skb+0x10/0x10 [ 577.477974][T16546] ? __pfx___lock_acquire+0x10/0x10 [ 577.479610][T16546] ? hlock_class+0x4e/0x130 [ 577.481123][T16546] ? __lock_acquire+0x163e/0x3ce0 [ 577.482789][T16546] __ip6_append_data.isra.0+0x2a9e/0x4540 [ 577.484240][T16546] ? __pfx_raw6_getfrag+0x10/0x10 [ 577.485572][T16546] ? __pfx___ip6_append_data.isra.0+0x10/0x10 [ 577.487164][T16546] ? ip6_mtu+0x231/0x4a0 [ 577.488289][T16546] ? ip6_setup_cork+0xbdc/0x1370 [ 577.489599][T16546] ip6_append_data+0x1e6/0x500 [ 577.490866][T16546] ? __pfx_raw6_getfrag+0x10/0x10 [ 577.492191][T16546] rawv6_sendmsg+0x1565/0x43d0 [ 577.493500][T16546] ? avc_has_perm_noaudit+0x119/0x3a0 [ 577.494969][T16546] ? __pfx_rawv6_sendmsg+0x10/0x10 [ 577.496364][T16546] ? avc_has_perm_noaudit+0x143/0x3a0 [ 577.497830][T16546] ? avc_has_perm+0x11b/0x1c0 [ 577.499103][T16546] ? __pfx_avc_has_perm+0x10/0x10 [ 577.500471][T16546] ? __pfx_mark_lock+0x10/0x10 [ 577.501755][T16546] ? find_held_lock+0x2d/0x110 [ 577.503035][T16546] ? __import_iovec+0x1fd/0x6e0 [ 577.504315][T16546] ? __pfx_rawv6_sendmsg+0x10/0x10 [ 577.505660][T16546] ? inet_sendmsg+0x119/0x140 [ 577.506888][T16546] inet_sendmsg+0x119/0x140 [ 577.508068][T16546] ____sys_sendmsg+0x98c/0xc90 [ 577.509320][T16546] ? copy_msghdr_from_user+0x10b/0x160 [ 577.510734][T16546] ? __pfx_____sys_sendmsg+0x10/0x10 [ 577.512108][T16546] ? hlock_class+0x4e/0x130 [ 577.513305][T16546] ? __lock_acquire+0x163e/0x3ce0 [ 577.514608][T16546] ___sys_sendmsg+0x135/0x1e0 [ 577.515841][T16546] ? __pfx____sys_sendmsg+0x10/0x10 [ 577.517199][T16546] ? __pfx___lock_acquire+0x10/0x10 [ 577.518562][T16546] ? __pfx___might_resched+0x10/0x10 [ 577.519943][T16546] ? __might_fault+0xe3/0x190 [ 577.521191][T16546] __sys_sendmmsg+0x1a1/0x450 [ 577.522444][T16546] ? __pfx___sys_sendmmsg+0x10/0x10 [ 577.523787][T16546] ? vfs_write+0x14d/0x1140 [ 577.524986][T16546] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 577.526540][T16546] ? fput+0x30/0x390 [ 577.527569][T16546] ? ksys_write+0x1ad/0x260 [ 577.528753][T16546] ? __pfx_ksys_write+0x10/0x10 [ 577.530050][T16546] __x64_sys_sendmmsg+0x9c/0x100 [ 577.531339][T16546] ? lockdep_hardirqs_on+0x7c/0x110 [ 577.532694][T16546] do_syscall_64+0xcd/0x250 [ 577.533893][T16546] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 577.535407][T16546] RIP: 0033:0x7ff1e5f7dff9 [ 577.536572][T16546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 577.541528][T16546] RSP: 002b:00007ff1e6ca7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 577.543675][T16546] RAX: ffffffffffffffda RBX: 00007ff1e6135f80 RCX: 00007ff1e5f7dff9 [ 577.545719][T16546] RDX: 00000000000002e9 RSI: 0000000020000480 RDI: 0000000000000003 [ 577.547757][T16546] RBP: 00007ff1e6ca7090 R08: 0000000000000000 R09: 0000000000000000 [ 577.549803][T16546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 577.551847][T16546] R13: 0000000000000000 R14: 00007ff1e6135f80 R15: 00007ffd9b905ce8 [ 577.553899][T16546] [ 578.222856][ T4769] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection [ 578.592964][ T39] audit: type=1400 audit(1728972492.311:1713): avc: denied { read } for pid=16563 comm="syz.2.2971" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 578.714664][ T39] audit: type=1400 audit(1728972492.479:1714): avc: denied { read write } for pid=16567 comm="syz.3.2973" name="bus" dev="9p" ino=37617849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 578.724749][ T39] audit: type=1400 audit(1728972492.479:1715): avc: denied { open } for pid=16567 comm="syz.3.2973" path="/117/file0/bus" dev="9p" ino=37617849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 578.754794][ T39] audit: type=1400 audit(1728972492.521:1716): avc: denied { create } for pid=16567 comm="syz.3.2973" name="file6" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 578.785539][T16573] netfs: Couldn't get user pages (rc=-14) [ 579.087976][ T39] audit: type=1400 audit(1728972492.857:1717): avc: denied { map } for pid=16577 comm="syz.1.2975" path="socket:[60721]" dev="sockfs" ino=60721 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 579.093893][ T39] audit: type=1400 audit(1728972492.857:1718): avc: denied { read } for pid=16577 comm="syz.1.2975" path="socket:[60721]" dev="sockfs" ino=60721 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 579.614568][T16597] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2981'. [ 579.836184][ T39] audit: type=1326 audit(1728972493.665:1719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16606 comm="syz.2.2984" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcb6d17dff9 code=0x0 [ 581.024840][T16637] FAULT_INJECTION: forcing a failure. [ 581.024840][T16637] name failslab, interval 1, probability 0, space 0, times 0 [ 581.028043][T16637] CPU: 2 UID: 0 PID: 16637 Comm: syz.3.2993 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 581.030789][T16637] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 581.033560][T16637] Call Trace: [ 581.034437][T16637] [ 581.035215][T16637] dump_stack_lvl+0x16c/0x1f0 [ 581.036441][T16637] should_fail_ex+0x497/0x5b0 [ 581.037684][T16637] ? fs_reclaim_acquire+0xae/0x150 [ 581.039013][T16637] should_failslab+0xc2/0x120 [ 581.040234][T16637] kmem_cache_alloc_node_noprof+0x71/0x310 [ 581.041759][T16637] ? __alloc_skb+0x2b1/0x380 [ 581.042969][T16637] __alloc_skb+0x2b1/0x380 [ 581.044130][T16637] ? __pfx___alloc_skb+0x10/0x10 [ 581.045421][T16637] ? genl_rcv_msg+0x4bd/0x800 [ 581.046653][T16637] netlink_ack+0x164/0xb90 [ 581.047830][T16637] netlink_rcv_skb+0x348/0x440 [ 581.049092][T16637] ? __pfx_genl_rcv_msg+0x10/0x10 [ 581.050406][T16637] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 581.051792][T16637] ? down_read+0xc9/0x330 [ 581.052936][T16637] ? __pfx_down_read+0x10/0x10 [ 581.054196][T16637] ? netlink_deliver_tap+0x1ae/0xd90 [ 581.055579][T16637] genl_rcv+0x28/0x40 [ 581.056635][T16637] netlink_unicast+0x53c/0x7f0 [ 581.057899][T16637] ? __pfx_netlink_unicast+0x10/0x10 [ 581.059282][T16637] netlink_sendmsg+0x8b8/0xd70 [ 581.060551][T16637] ? __pfx_netlink_sendmsg+0x10/0x10 [ 581.061937][T16637] ? __import_iovec+0x1fd/0x6e0 [ 581.063218][T16637] ____sys_sendmsg+0xaaf/0xc90 [ 581.064476][T16637] ? copy_msghdr_from_user+0x10b/0x160 [ 581.065901][T16637] ? __pfx_____sys_sendmsg+0x10/0x10 [ 581.067271][T16637] ? __lock_task_sighand+0xc2/0x340 [ 581.068627][T16637] ? __pfx___lock_acquire+0x10/0x10 [ 581.069995][T16637] ___sys_sendmsg+0x135/0x1e0 [ 581.071234][T16637] ? __pfx____sys_sendmsg+0x10/0x10 [ 581.072618][T16637] ? lock_acquire+0x2f/0xb0 [ 581.073824][T16637] ? __fget_files+0x40/0x3f0 [ 581.075038][T16637] ? fdget+0x176/0x210 [ 581.076108][T16637] __sys_sendmsg+0x117/0x1f0 [ 581.077329][T16637] ? __pfx___sys_sendmsg+0x10/0x10 [ 581.078669][T16637] ? bpf_trace_run2+0x2a6/0x590 [ 581.079950][T16637] ? rcu_is_watching+0x12/0xc0 [ 581.081217][T16637] do_syscall_64+0xcd/0x250 [ 581.082401][T16637] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 581.083930][T16637] RIP: 0033:0x7fc0d9b7dff9 [ 581.085095][T16637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 581.090019][T16637] RSP: 002b:00007fc0d95ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 581.092171][T16637] RAX: ffffffffffffffda RBX: 00007fc0d9d35f80 RCX: 00007fc0d9b7dff9 [ 581.094218][T16637] RDX: 0000000004040080 RSI: 0000000020000380 RDI: 0000000000000003 [ 581.096247][T16637] RBP: 00007fc0d95ff090 R08: 0000000000000000 R09: 0000000000000000 [ 581.098283][T16637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 581.100318][T16637] R13: 0000000000000000 R14: 00007fc0d9d35f80 R15: 00007ffebeb287e8 [ 581.102382][T16637] [ 581.174790][T16639] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.2991'. [ 582.177454][ T39] audit: type=1400 audit(1728972496.122:1720): avc: denied { view } for pid=16656 comm="syz.3.2998" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 582.957670][T16658] sp0: Synchronizing with TNC [ 583.263849][ T39] audit: type=1326 audit(1728972497.256:1721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.3.3003" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 583.276254][ T39] audit: type=1326 audit(1728972497.256:1722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.3.3003" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 583.304707][ T39] audit: type=1326 audit(1728972497.277:1723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.3.3003" exe="/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 583.316624][ T39] audit: type=1326 audit(1728972497.277:1724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.3.3003" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 583.331789][ T39] audit: type=1326 audit(1728972497.277:1725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.3.3003" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 583.340512][ T39] audit: type=1326 audit(1728972497.277:1726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.3.3003" exe="/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 583.360118][ T39] audit: type=1326 audit(1728972497.277:1727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.3.3003" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 583.373910][ T39] audit: type=1326 audit(1728972497.277:1728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.3.3003" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 583.389377][ T39] audit: type=1326 audit(1728972497.277:1729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.3.3003" exe="/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 584.079115][T13840] Bluetooth: hci3: SCO packet for unknown connection handle 200 [ 585.059618][T16724] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3018'. [ 587.278686][ T39] kauditd_printk_skb: 69 callbacks suppressed [ 587.278696][ T39] audit: type=1400 audit(1728972501.476:1799): avc: denied { ioctl } for pid=16761 comm="syz.2.3030" path="/dev/fuse" dev="devtmpfs" ino=105 ioctlcmd=0xe500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1 [ 587.647348][T16789] FAULT_INJECTION: forcing a failure. [ 587.647348][T16789] name failslab, interval 1, probability 0, space 0, times 0 [ 587.651780][T16789] CPU: 0 UID: 0 PID: 16789 Comm: syz.0.3038 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 587.654642][T16789] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 587.657417][T16789] Call Trace: [ 587.658293][T16789] [ 587.659072][T16789] dump_stack_lvl+0x16c/0x1f0 [ 587.660309][T16789] should_fail_ex+0x497/0x5b0 [ 587.661563][T16789] ? fs_reclaim_acquire+0xae/0x150 [ 587.662898][T16789] should_failslab+0xc2/0x120 [ 587.664128][T16789] __kmalloc_node_track_caller_noprof+0xcf/0x430 [ 587.665779][T16789] ? v9fs_statfs+0x4c1/0x4d0 [ 587.666991][T16789] ? v9fs_session_init+0xf5/0x1a80 [ 587.668325][T16789] kstrdup+0x3c/0x70 [ 587.669363][T16789] v9fs_session_init+0xf5/0x1a80 [ 587.670664][T16789] ? __pfx_v9fs_session_init+0x10/0x10 [ 587.672098][T16789] ? kasan_save_track+0x14/0x30 [ 587.673378][T16789] v9fs_mount+0xc6/0xa50 [ 587.674487][T16789] ? __pfx_v9fs_mount+0x10/0x10 [ 587.675766][T16789] ? selinux_sb_eat_lsm_opts+0x594/0x700 [ 587.677239][T16789] ? cap_capable+0x1cf/0x240 [ 587.678465][T16789] ? __pfx_v9fs_mount+0x10/0x10 [ 587.679744][T16789] legacy_get_tree+0x109/0x220 [ 587.681035][T16789] vfs_get_tree+0x8f/0x380 [ 587.682218][T16789] path_mount+0x14e6/0x1f20 [ 587.683416][T16789] ? kmem_cache_free+0x152/0x4b0 [ 587.684722][T16789] ? __pfx_path_mount+0x10/0x10 [ 587.686009][T16789] ? putname+0x12e/0x170 [ 587.687122][T16789] __x64_sys_mount+0x294/0x320 [ 587.688376][T16789] ? __pfx___x64_sys_mount+0x10/0x10 [ 587.689770][T16789] do_syscall_64+0xcd/0x250 [ 587.690971][T16789] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 587.692509][T16789] RIP: 0033:0x7f42abf7dff9 [ 587.693679][T16789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 587.698637][T16789] RSP: 002b:00007f42accb1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 587.700825][T16789] RAX: ffffffffffffffda RBX: 00007f42ac135f80 RCX: 00007f42abf7dff9 [ 587.702740][T16789] RDX: 00000000200000c0 RSI: 0000000020000080 RDI: 0000000000000000 [ 587.704795][T16789] RBP: 00007f42accb1090 R08: 0000000020001340 R09: 0000000000000000 [ 587.706841][T16789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 587.708888][T16789] R13: 0000000000000000 R14: 00007f42ac135f80 R15: 00007fff59b49008 [ 587.710931][T16789] [ 587.711854][ C0] vkms_vblank_simulate: vblank timer overrun [ 587.718941][T16791] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=30 sclass=netlink_tcpdiag_socket pid=16791 comm=syz.1.3039 [ 587.868148][T16800] netlink: 'syz.0.3040': attribute type 33 has an invalid length. [ 587.870748][T16800] netlink: 160 bytes leftover after parsing attributes in process `syz.0.3040'. [ 589.701871][T16853] FAULT_INJECTION: forcing a failure. [ 589.701871][T16853] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 589.705529][T16853] CPU: 0 UID: 0 PID: 16853 Comm: syz.2.3061 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 589.708293][T16853] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 589.711060][T16853] Call Trace: [ 589.711935][T16853] [ 589.712714][T16853] dump_stack_lvl+0x16c/0x1f0 [ 589.713940][T16853] should_fail_ex+0x497/0x5b0 [ 589.715162][T16853] _copy_from_user+0x30/0xf0 [ 589.716356][T16853] wext_handle_ioctl+0xc5/0x2c0 [ 589.717638][T16853] ? __pfx_wext_handle_ioctl+0x10/0x10 [ 589.719055][T16853] ? ioctl_has_perm.constprop.0.isra.0+0x2ea/0x460 [ 589.720767][T16853] ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460 [ 589.722441][T16853] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 589.724199][T16853] sock_ioctl+0x3a6/0x6c0 [ 589.725335][T16853] ? __pfx_sock_ioctl+0x10/0x10 [ 589.726607][T16853] ? selinux_file_ioctl+0x180/0x270 [ 589.727951][T16853] ? selinux_file_ioctl+0xb4/0x270 [ 589.729285][T16853] ? __pfx_sock_ioctl+0x10/0x10 [ 589.730564][T16853] __x64_sys_ioctl+0x18f/0x220 [ 589.731813][T16853] do_syscall_64+0xcd/0x250 [ 589.732999][T16853] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 589.734523][T16853] RIP: 0033:0x7fcb6d17dff9 [ 589.735679][T16853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 589.740599][T16853] RSP: 002b:00007fcb6dec8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 589.742740][T16853] RAX: ffffffffffffffda RBX: 00007fcb6d335f80 RCX: 00007fcb6d17dff9 [ 589.744767][T16853] RDX: 0000000020000000 RSI: 0000000000008b18 RDI: 0000000000000003 [ 589.746759][T16853] RBP: 00007fcb6dec8090 R08: 0000000000000000 R09: 0000000000000000 [ 589.748788][T16853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 589.750804][T16853] R13: 0000000000000000 R14: 00007fcb6d335f80 R15: 00007ffcd79a5278 [ 589.752840][T16853] [ 589.753766][ C0] vkms_vblank_simulate: vblank timer overrun [ 589.899644][T16866] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3067'. [ 589.924919][ T39] audit: type=1326 audit(1728972504.227:1800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16865 comm="syz.3.3067" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 589.932848][ T39] audit: type=1326 audit(1728972504.238:1801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16865 comm="syz.3.3067" exe="/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 589.940575][ T39] audit: type=1326 audit(1728972504.238:1802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16865 comm="syz.3.3067" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 589.947995][ T39] audit: type=1326 audit(1728972504.238:1803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16865 comm="syz.3.3067" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 589.959667][ T39] audit: type=1326 audit(1728972504.238:1804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16865 comm="syz.3.3067" exe="/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 589.967428][ T39] audit: type=1326 audit(1728972504.238:1805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16865 comm="syz.3.3067" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 589.975014][ T39] audit: type=1326 audit(1728972504.238:1806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16865 comm="syz.3.3067" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 589.983430][ T39] audit: type=1326 audit(1728972504.238:1807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16865 comm="syz.3.3067" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 589.993281][ T39] audit: type=1326 audit(1728972504.238:1808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16865 comm="syz.3.3067" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0d9b7dff9 code=0x7ffc0000 [ 591.539979][T16892] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3073'. [ 591.542793][T16892] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 591.545952][T16892] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 591.957481][T16902] netlink: 'syz.3.3075': attribute type 1 has an invalid length. [ 591.960120][T16902] netlink: 9348 bytes leftover after parsing attributes in process `syz.3.3075'. [ 591.963190][T16902] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3075'. [ 592.472461][T16911] random: crng reseeded on system resumption [ 592.911151][T16929] netlink: 'syz.3.3085': attribute type 9 has an invalid length. [ 592.913195][T16929] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.3085'. [ 592.969331][T16929] netlink: 'syz.3.3085': attribute type 9 has an invalid length. [ 592.971301][T16929] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.3085'. [ 593.708820][ T39] kauditd_printk_skb: 65 callbacks suppressed [ 593.708838][ T39] audit: type=1400 audit(1728972508.206:1874): avc: denied { append } for pid=16941 comm="syz.3.3087" name="video7" dev="devtmpfs" ino=895 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1 [ 594.527936][T16959] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3093'. [ 595.295219][T16971] FAULT_INJECTION: forcing a failure. [ 595.295219][T16971] name failslab, interval 1, probability 0, space 0, times 0 [ 595.298781][T16971] CPU: 0 UID: 0 PID: 16971 Comm: syz.3.3098 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 595.301562][T16971] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 595.304295][T16971] Call Trace: [ 595.305169][T16971] [ 595.305943][T16971] dump_stack_lvl+0x16c/0x1f0 [ 595.307171][T16971] should_fail_ex+0x497/0x5b0 [ 595.308395][T16971] ? fs_reclaim_acquire+0xae/0x150 [ 595.309728][T16971] should_failslab+0xc2/0x120 [ 595.310948][T16971] __kmalloc_node_noprof+0xd1/0x430 [ 595.312289][T16971] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 595.313709][T16971] __kvmalloc_node_noprof+0xad/0x1a0 [ 595.315081][T16971] bucket_table_alloc.isra.0+0x86/0x460 [ 595.316515][T16971] rhashtable_init_noprof+0x41a/0x7e0 [ 595.317918][T16971] ? __pfx_br_dev_init+0x10/0x10 [ 595.319200][T16971] br_dev_init+0x29/0x400 [ 595.320323][T16971] ? kasan_save_track+0x14/0x30 [ 595.321593][T16971] ? __pfx_br_dev_init+0x10/0x10 [ 595.322876][T16971] register_netdevice+0x672/0x1e90 [ 595.324194][T16971] ? __pfx_register_netdevice+0x10/0x10 [ 595.325620][T16971] ? validate_linkmsg+0x6d2/0x9a0 [ 595.326921][T16971] br_dev_newlink+0x27/0x110 [ 595.328117][T16971] ? __pfx_br_dev_newlink+0x10/0x10 [ 595.329459][T16971] __rtnl_newlink+0x1197/0x1920 [ 595.330726][T16971] ? __pfx___rtnl_newlink+0x10/0x10 [ 595.332081][T16971] rtnl_newlink+0x67/0xa0 [ 595.333210][T16971] ? __pfx_rtnl_newlink+0x10/0x10 [ 595.334510][T16971] rtnetlink_rcv_msg+0x3c7/0xea0 [ 595.335793][T16971] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 595.337205][T16971] netlink_rcv_skb+0x16b/0x440 [ 595.338459][T16971] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 595.339865][T16971] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 595.341252][T16971] ? netlink_deliver_tap+0x1ae/0xd90 [ 595.342622][T16971] netlink_unicast+0x53c/0x7f0 [ 595.343863][T16971] ? __pfx_netlink_unicast+0x10/0x10 [ 595.345235][T16971] netlink_sendmsg+0x8b8/0xd70 [ 595.346473][T16971] ? __pfx_netlink_sendmsg+0x10/0x10 [ 595.347836][T16971] ? __import_iovec+0x1fd/0x6e0 [ 595.349105][T16971] ____sys_sendmsg+0xaaf/0xc90 [ 595.350342][T16971] ? copy_msghdr_from_user+0x10b/0x160 [ 595.351743][T16971] ? __pfx_____sys_sendmsg+0x10/0x10 [ 595.353117][T16971] ? __pfx___lock_acquire+0x10/0x10 [ 595.354456][T16971] ___sys_sendmsg+0x135/0x1e0 [ 595.355680][T16971] ? __pfx____sys_sendmsg+0x10/0x10 [ 595.357039][T16971] ? lock_acquire+0x2f/0xb0 [ 595.358212][T16971] ? __fget_files+0x40/0x3f0 [ 595.359415][T16971] ? fdget+0x176/0x210 [ 595.360482][T16971] __sys_sendmsg+0x117/0x1f0 [ 595.361688][T16971] ? __pfx___sys_sendmsg+0x10/0x10 [ 595.363011][T16971] ? __fget_files+0x244/0x3f0 [ 595.364236][T16971] do_syscall_64+0xcd/0x250 [ 595.365422][T16971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.366947][T16971] RIP: 0033:0x7fc0d9b7dff9 [ 595.368111][T16971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 595.373030][T16971] RSP: 002b:00007fc0d95ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 595.375160][T16971] RAX: ffffffffffffffda RBX: 00007fc0d9d35f80 RCX: 00007fc0d9b7dff9 [ 595.377195][T16971] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003 [ 595.379217][T16971] RBP: 00007fc0d95ff090 R08: 0000000000000000 R09: 0000000000000000 [ 595.381259][T16971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 595.383289][T16971] R13: 0000000000000000 R14: 00007fc0d9d35f80 R15: 00007ffebeb287e8 [ 595.385342][T16971] [ 596.888864][T17011] cgroup: No subsys list or none specified [ 597.063714][T17018] loop7: detected capacity change from 0 to 1036 [ 597.083942][ T39] audit: type=1400 audit(1728972511.776:1875): avc: denied { read } for pid=17014 comm="syz.1.3114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 597.592658][T13840] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201' [ 597.595390][T13840] CPU: 1 UID: 0 PID: 13840 Comm: kworker/u33:0 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 597.598066][T13840] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 597.600823][T13840] Workqueue: hci4 hci_rx_work [ 597.602059][T13840] Call Trace: [ 597.602938][T13840] [ 597.603713][T13840] dump_stack_lvl+0x16c/0x1f0 [ 597.604954][T13840] sysfs_warn_dup+0x7f/0xa0 [ 597.606138][T13840] sysfs_create_dir_ns+0x24d/0x2b0 [ 597.607460][T13840] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 597.608904][T13840] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 597.610302][T13840] ? kobject_add_internal+0x12d/0x990 [ 597.611713][T13840] ? do_raw_spin_unlock+0x172/0x230 [ 597.613204][T13840] kobject_add_internal+0x2c8/0x990 [ 597.614579][T13840] kobject_add+0x16f/0x240 [ 597.615824][T13840] ? __pfx_kobject_add+0x10/0x10 [ 597.617144][T13840] ? class_to_subsys+0x3e/0x160 [ 597.618428][T13840] ? do_raw_spin_unlock+0x172/0x230 [ 597.619800][T13840] ? kobject_put+0xab/0x5a0 [ 597.621004][T13840] device_add+0x289/0x1a70 [ 597.622167][T13840] ? __pfx_dev_set_name+0x10/0x10 [ 597.623469][T13840] ? __pfx_device_add+0x10/0x10 [ 597.624747][T13840] ? mgmt_send_event_skb+0x2f2/0x460 [ 597.626113][T13840] hci_conn_add_sysfs+0x17e/0x230 [ 597.627421][T13840] le_conn_complete_evt+0x1078/0x1d80 [ 597.628803][T13840] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 597.630272][T13840] ? trace_contention_end+0xea/0x140 [ 597.631647][T13840] hci_le_enh_conn_complete_evt+0x23d/0x380 [ 597.633188][T13840] ? skb_pull_data+0x166/0x210 [ 597.634451][T13840] hci_le_meta_evt+0x2e2/0x5d0 [ 597.635699][T13840] ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10 [ 597.637363][T13840] hci_event_packet+0x666/0x1180 [ 597.638659][T13840] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 597.640027][T13840] ? __pfx_hci_event_packet+0x10/0x10 [ 597.641438][T13840] ? mark_held_locks+0x9f/0xe0 [ 597.642677][T13840] ? kcov_remote_start+0x3cf/0x6e0 [ 597.643998][T13840] ? lockdep_hardirqs_on+0x7c/0x110 [ 597.645353][T13840] hci_rx_work+0x2c6/0x16c0 [ 597.646498][T13840] ? lock_acquire+0x2f/0xb0 [ 597.647681][T13840] ? process_one_work+0x921/0x1ba0 [ 597.649038][T13840] process_one_work+0x9c5/0x1ba0 [ 597.650320][T13840] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 597.651809][T13840] ? __pfx_process_one_work+0x10/0x10 [ 597.653201][T13840] ? assign_work+0x1a0/0x250 [ 597.654402][T13840] worker_thread+0x6c8/0xf00 [ 597.655601][T13840] ? __kthread_parkme+0x148/0x220 [ 597.656907][T13840] ? __pfx_worker_thread+0x10/0x10 [ 597.658257][T13840] kthread+0x2c1/0x3a0 [ 597.659319][T13840] ? _raw_spin_unlock_irq+0x23/0x50 [ 597.660690][T13840] ? __pfx_kthread+0x10/0x10 [ 597.661898][T13840] ret_from_fork+0x45/0x80 [ 597.663056][T13840] ? __pfx_kthread+0x10/0x10 [ 597.664249][T13840] ret_from_fork_asm+0x1a/0x30 [ 597.665512][T13840] [ 597.666951][T13840] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 597.670901][T13840] Bluetooth: hci4: failed to register connection device [ 598.025917][T17032] netlink: 'syz.0.3119': attribute type 13 has an invalid length. [ 598.027979][T17032] netlink: 24859 bytes leftover after parsing attributes in process `syz.0.3119'. [ 598.123316][T17036] sctp: [Deprecated]: syz.1.3120 (pid 17036) Use of struct sctp_assoc_value in delayed_ack socket option. [ 598.123316][T17036] Use struct sctp_sack_info instead [ 598.136745][T17036] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3120'. [ 598.142513][T17036] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3120'. [ 598.158193][ T39] audit: type=1400 audit(1728972512.899:1876): avc: denied { shutdown } for pid=17035 comm="syz.1.3120" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 598.287168][ T39] audit: type=1400 audit(1728972513.036:1877): avc: denied { setopt } for pid=17042 comm="syz.3.3125" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 598.491037][ T39] audit: type=1400 audit(1728972513.246:1878): avc: denied { listen } for pid=17060 comm="syz.0.3131" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 598.561393][ T39] audit: type=1400 audit(1728972513.319:1879): avc: denied { override_creds } for pid=17066 comm="syz.3.3129" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 598.655789][ T39] audit: type=1400 audit(1728972513.424:1880): avc: denied { map } for pid=17059 comm="syz.1.3130" path="/proc/1406/net/pfkey" dev="proc" ino=4026533035 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1 [ 599.504259][T17087] QAT: Invalid ioctl -903310283 [ 599.508326][T17097] rdma_rxe: rxe_newlink: failed to add vcan0 [ 599.564533][T17104] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3140'. [ 599.604463][T13840] Bluetooth: hci4: command 0x0405 tx timeout [ 600.307197][ T39] audit: type=1326 audit(1728972515.146:1881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17116 comm="syz.0.3144" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42abf7dff9 code=0x7ffc0000 [ 600.318655][ T39] audit: type=1326 audit(1728972515.167:1882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17116 comm="syz.0.3144" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42abf7dff9 code=0x7ffc0000 [ 600.331313][ T39] audit: type=1326 audit(1728972515.178:1883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17116 comm="syz.0.3144" exe="/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f42abf7dff9 code=0x7ffc0000 [ 600.442591][ T39] audit: type=1326 audit(1728972515.178:1884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17116 comm="syz.0.3144" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42abf7dff9 code=0x7ffc0000 [ 600.448464][ T39] audit: type=1326 audit(1728972515.178:1885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17116 comm="syz.0.3144" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42abf7dff9 code=0x7ffc0000 [ 600.471073][ T39] audit: type=1326 audit(1728972515.325:1886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17116 comm="syz.0.3144" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42abf7dff9 code=0x7ffc0000 [ 600.479458][ T39] audit: type=1326 audit(1728972515.325:1887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17116 comm="syz.0.3144" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42abf7dff9 code=0x7ffc0000 [ 601.925558][T17149] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 601.927506][T17149] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 601.936358][T17149] vhci_hcd vhci_hcd.0: Device attached [ 602.001397][T17159] FAULT_INJECTION: forcing a failure. [ 602.001397][T17159] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 602.004906][T17159] CPU: 1 UID: 0 PID: 17159 Comm: syz.0.3163 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 602.007713][T17159] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 602.010515][T17159] Call Trace: [ 602.011402][T17159] [ 602.012178][T17159] dump_stack_lvl+0x16c/0x1f0 [ 602.013459][T17159] should_fail_ex+0x497/0x5b0 [ 602.014721][T17159] _copy_from_user+0x30/0xf0 [ 602.015944][T17159] copy_msghdr_from_user+0x99/0x160 [ 602.017332][T17159] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 602.018860][T17159] ? kfree+0x274/0x4b0 [ 602.019936][T17159] ? __pfx___lock_acquire+0x10/0x10 [ 602.021312][T17159] ___sys_recvmsg+0xdc/0x1a0 [ 602.022532][T17159] ? __pfx____sys_recvmsg+0x10/0x10 [ 602.023901][T17159] ? find_held_lock+0x2d/0x110 [ 602.025174][T17159] ? lock_acquire+0x2f/0xb0 [ 602.026364][T17159] ? __pfx___might_resched+0x10/0x10 [ 602.027749][T17159] ? __might_fault+0xe3/0x190 [ 602.028991][T17159] do_recvmmsg+0x2ba/0x750 [ 602.030165][T17159] ? __pfx_do_recvmmsg+0x10/0x10 [ 602.031462][T17159] ? vfs_write+0x14d/0x1140 [ 602.032673][T17159] ? __mutex_unlock_slowpath+0x164/0x650 [ 602.034140][T17159] ? __fget_files+0x244/0x3f0 [ 602.035386][T17159] __x64_sys_recvmmsg+0x239/0x290 [ 602.036712][T17159] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 602.038153][T17159] do_syscall_64+0xcd/0x250 [ 602.039348][T17159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 602.040908][T17159] RIP: 0033:0x7f42abf7dff9 [ 602.042076][T17159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 602.047018][T17159] RSP: 002b:00007f42accb1038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 602.049183][T17159] RAX: ffffffffffffffda RBX: 00007f42ac135f80 RCX: 00007f42abf7dff9 [ 602.051110][T17159] RDX: 03ffffffffffff67 RSI: 0000000020002440 RDI: 0000000000000004 [ 602.053053][T17159] RBP: 00007f42accb1090 R08: 0000000000000000 R09: 0000000000000000 [ 602.055094][T17159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 602.057168][T17159] R13: 0000000000000000 R14: 00007f42ac135f80 R15: 00007fff59b49008 [ 602.059220][T17159] [ 602.060066][ C1] vkms_vblank_simulate: vblank timer overrun [ 602.185475][ T35] vhci_hcd: vhci_device speed not set [ 602.185791][ T5387] usb 7-1: new low-speed USB device number 12 using dummy_hcd [ 602.242721][ T35] usb 17-1: new full-speed USB device number 2 using vhci_hcd [ 602.540433][T17169] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 602.568713][T17163] kvm: pic: non byte read [ 602.570944][T17163] kvm: pic: level sensitive irq not supported [ 602.571222][T17163] kvm: pic: non byte read [ 602.574871][T17163] kvm: pic: level sensitive irq not supported [ 602.575215][T17163] kvm: pic: non byte read [ 602.579637][T17163] kvm: pic: level sensitive irq not supported [ 602.580085][T17163] kvm: pic: non byte read [ 602.587522][ T5387] usb 7-1: config index 0 descriptor too short (expected 301, got 45) [ 602.589922][ T5387] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 is Bulk; changing to Interrupt [ 602.592568][ T5387] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 602.595214][ T5387] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x8B is Bulk; changing to Interrupt [ 602.598267][ T5387] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 602.601803][ T5387] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 602.604240][ T5387] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 602.616382][ T5387] usbtmc 7-1:16.0: bulk endpoints not found [ 603.406285][ T39] kauditd_printk_skb: 24 callbacks suppressed [ 603.406296][ T39] audit: type=1400 audit(1728972518.411:1912): avc: denied { remount } for pid=17177 comm="syz.1.3164" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 603.410436][T17180] netlink: 'syz.3.3162': attribute type 4 has an invalid length. [ 603.415267][ T39] audit: type=1400 audit(1728972518.411:1913): avc: denied { mounton } for pid=17177 comm="syz.1.3164" path="/432/file0" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 603.494112][ T4769] Bluetooth: hci2: sending frame failed (-49) [ 603.496430][T13840] Bluetooth: hci2: Opcode 0x1003 failed: -49 [ 603.499350][T17184] Bluetooth: hci2: Frame reassembly failed (-84) [ 603.511893][T17184] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 603.515528][T17184] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 603.905762][T17195] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 603.969667][ T39] audit: type=1400 audit(1728972518.999:1914): avc: denied { append } for pid=17192 comm="syz.0.3167" path="/158/file0/hugetlb.2MB.usage_in_bytes" dev="9p" ino=37617893 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 604.211160][ T39] audit: type=1400 audit(1728972519.251:1915): avc: denied { ioctl } for pid=17192 comm="syz.0.3167" path="/158/file0/cpuacct.usage_percpu_user" dev="9p" ino=37617894 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 604.352686][T17193] netfs: Couldn't get user pages (rc=-14) [ 604.487938][T17207] random: crng reseeded on system resumption [ 604.913982][ T63] usb 7-1: USB disconnect, device number 12 [ 604.930512][T17150] vhci_hcd: connection reset by peer [ 604.942063][T14173] vhci_hcd: stop threads [ 604.943944][T14173] vhci_hcd: release socket [ 604.946363][T14173] vhci_hcd: disconnect device [ 604.982737][T17224] FAULT_INJECTION: forcing a failure. [ 604.982737][T17224] name failslab, interval 1, probability 0, space 0, times 0 [ 605.005225][T17224] CPU: 3 UID: 0 PID: 17224 Comm: syz.2.3174 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 605.008381][T17224] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 605.011062][T17224] Call Trace: [ 605.011958][T17224] [ 605.012752][T17224] dump_stack_lvl+0x16c/0x1f0 [ 605.014023][T17224] should_fail_ex+0x497/0x5b0 [ 605.015284][T17224] ? fs_reclaim_acquire+0xae/0x150 [ 605.016645][T17224] should_failslab+0xc2/0x120 [ 605.017899][T17224] __kmalloc_cache_noprof+0x6b/0x300 [ 605.019293][T17224] ? copy_mount_options+0x55/0x190 [ 605.020669][T17224] copy_mount_options+0x55/0x190 [ 605.021973][T17224] __x64_sys_mount+0x1ad/0x320 [ 605.023241][T17224] ? __pfx___x64_sys_mount+0x10/0x10 [ 605.024648][T17224] do_syscall_64+0xcd/0x250 [ 605.026085][T17224] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 605.027726][T17224] RIP: 0033:0x7fcb6d17dff9 [ 605.029094][T17224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 605.034428][T17224] RSP: 002b:00007fcb6dec8038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 605.036900][T17224] RAX: ffffffffffffffda RBX: 00007fcb6d335f80 RCX: 00007fcb6d17dff9 [ 605.038962][T17224] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 0000000000000000 [ 605.041165][T17224] RBP: 00007fcb6dec8090 R08: 0000000020000400 R09: 0000000000000000 [ 605.043480][T17224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 605.045881][T17224] R13: 0000000000000000 R14: 00007fcb6d335f80 R15: 00007ffcd79a5278 [ 605.048062][T17224] [ 605.625371][ T1378] ieee802154 phy1 wpan1: encryption failed: -22 [ 606.538671][T17243] overlayfs: failed to resolve './file0/file0': -2 [ 606.998236][T17255] netfs: Couldn't get user pages (rc=-14) [ 607.029801][ T39] audit: type=1400 audit(1728972522.212:1916): avc: denied { setattr } for pid=17265 comm="syz.3.3185" name="tun" dev="devtmpfs" ino=704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tun_tap_device_t tclass=chr_file permissive=1 [ 607.092737][ T6689] usb 5-1: new low-speed USB device number 18 using dummy_hcd [ 607.138352][ T35] vhci_hcd: vhci_device speed not set [ 607.214643][ T6689] usb 5-1: device descriptor read/64, error -71 [ 607.252038][T17273] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3187'. [ 607.268956][T17273] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3187'. [ 607.454182][ T6689] usb 5-1: new low-speed USB device number 19 using dummy_hcd [ 607.576185][ T6689] usb 5-1: device descriptor read/64, error -71 [ 607.681218][ T6689] usb usb5-port1: attempt power cycle [ 607.923489][T14178] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 608.034280][ T6689] usb 5-1: new low-speed USB device number 20 using dummy_hcd [ 608.051669][T14178] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 608.140230][ T6689] usb 5-1: device descriptor read/8, error -71 [ 608.155251][T17283] Bluetooth: Error in BCSP hdr checksum [ 608.174301][T17290] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 608.177550][T14178] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 608.184078][T17290] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 608.194161][T17290] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 608.227305][T17290] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 608.230472][T17290] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 608.240813][T14178] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 608.252650][T17290] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 608.280007][T17288] vcan0 speed is unknown, defaulting to 1000 [ 608.378777][ T6689] usb 5-1: new low-speed USB device number 21 using dummy_hcd [ 608.398770][T14179] Bluetooth: Error in BCSP hdr checksum [ 608.402491][ T6689] usb 5-1: device descriptor read/8, error -71 [ 608.490628][T17288] chnl_net:caif_netlink_parms(): no params data found [ 608.501053][ T6689] usb usb5-port1: unable to enumerate USB device [ 608.519412][T14178] bridge_slave_1: left allmulticast mode [ 608.520957][T14178] bridge_slave_1: left promiscuous mode [ 608.523168][T14178] bridge0: port 2(bridge_slave_1) entered disabled state [ 608.533658][T14178] bridge_slave_0: left allmulticast mode [ 608.535125][T14178] bridge_slave_0: left promiscuous mode [ 608.536672][T14178] bridge0: port 1(bridge_slave_0) entered disabled state [ 608.558680][T14178] gretap1: left allmulticast mode [ 608.560060][T14178] gretap1: left promiscuous mode [ 608.561451][T14178] bridge1: port 1(gretap1) entered disabled state [ 608.646182][T14179] Bluetooth: Error in BCSP hdr checksum [ 609.022468][T14178] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 609.026680][T14178] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 609.030688][T14178] bond0 (unregistering): Released all slaves [ 609.106959][T14178] tipc: Disabling bearer [ 609.110290][T14178] tipc: Left network mode [ 609.124271][T17288] bridge0: port 1(bridge_slave_0) entered blocking state [ 609.126164][T17288] bridge0: port 1(bridge_slave_0) entered disabled state [ 609.128041][T17288] bridge_slave_0: entered allmulticast mode [ 609.131545][T17288] bridge_slave_0: entered promiscuous mode [ 609.135082][T17288] bridge0: port 2(bridge_slave_1) entered blocking state [ 609.137280][T17288] bridge0: port 2(bridge_slave_1) entered disabled state [ 609.140954][T17288] bridge_slave_1: entered allmulticast mode [ 609.143083][T17288] bridge_slave_1: entered promiscuous mode [ 609.212778][T17288] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 609.221745][T17288] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 609.262920][T17288] team0: Port device team_slave_0 added [ 609.287533][T17288] team0: Port device team_slave_1 added [ 609.359222][T17288] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 609.361069][T17288] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 609.376677][T17288] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 609.392523][T17288] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 609.395476][T17288] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 609.404963][T17288] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 609.476140][T17288] hsr_slave_0: entered promiscuous mode [ 609.490947][T17288] hsr_slave_1: entered promiscuous mode [ 609.493340][T17288] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 609.495299][T17288] Cannot create hsr debugfs directory [ 609.894643][T14178] hsr_slave_0: left promiscuous mode [ 609.900822][T14178] hsr_slave_1: left promiscuous mode [ 609.908057][T14178] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 609.910112][T14178] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 609.917643][T14178] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 609.923437][T14178] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 609.925723][T14178] batman_adv: batadv0: Removing interface: ipvlan1 [ 609.978031][T14178] veth1_macvtap: left promiscuous mode [ 609.979532][T14178] veth0_macvtap: left promiscuous mode [ 609.981045][T14178] veth1_vlan: left promiscuous mode [ 609.982446][T14178] veth0_vlan: left promiscuous mode [ 610.025522][T17302] netlink: 48 bytes leftover after parsing attributes in process `syz.1.3199'. [ 610.035453][T14926] kernel write not supported for file /uhid (pid: 14926 comm: kworker/2:2) [ 610.129187][T13840] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 610.129238][T17290] Bluetooth: hci2: command 0x1003 tx timeout [ 610.195622][T13840] Bluetooth: hci4: command tx timeout [ 612.176930][T13840] Bluetooth: hci4: command tx timeout [ 612.184936][T14178] team0 (unregistering): Port device team_slave_1 removed [ 612.298836][T14178] team0 (unregistering): Port device team_slave_0 removed [ 612.878492][T14178] team0 (unregistering): Port device batadv0 removed [ 613.238779][T17323] cgroup: No subsys list or none specified [ 613.390666][T17335] QAT: Invalid ioctl -903310283 [ 613.397608][T17333] netlink: 'syz.0.3208': attribute type 1 has an invalid length. [ 613.404710][T17288] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 613.460186][T17288] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 613.466031][T17288] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 613.485308][T17288] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 613.527374][T14178] IPVS: stop unused estimator thread 0... [ 613.553308][T17288] 8021q: adding VLAN 0 to HW filter on device bond0 [ 613.570896][T17288] 8021q: adding VLAN 0 to HW filter on device team0 [ 613.574947][T14173] bridge0: port 1(bridge_slave_0) entered blocking state [ 613.577389][T14173] bridge0: port 1(bridge_slave_0) entered forwarding state [ 613.589569][T14178] bridge0: port 2(bridge_slave_1) entered blocking state [ 613.591585][T14178] bridge0: port 2(bridge_slave_1) entered forwarding state [ 613.787954][T17288] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 613.815586][T17288] veth0_vlan: entered promiscuous mode [ 613.853812][T17288] veth1_vlan: entered promiscuous mode [ 613.862508][T17288] veth0_macvtap: entered promiscuous mode [ 613.868579][T17288] veth1_macvtap: entered promiscuous mode [ 613.875290][T17288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 613.878020][T17288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 613.880541][T17288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 613.891028][T17288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 613.901336][T17288] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 613.904881][T17288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 613.907560][T17288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 613.910039][T17288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 613.922391][T17288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 613.924971][T17288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 613.927628][T17288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 613.943662][T17288] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 613.958994][T17288] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 613.967666][T17288] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 613.969908][T17288] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 613.972132][T17288] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 614.158052][T13840] Bluetooth: hci4: command tx timeout [ 614.191743][ T1197] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 614.193839][ T1197] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 614.254287][T11899] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 614.256437][T11899] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 614.342903][T17355] random: crng reseeded on system resumption [ 614.415169][T17357] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported [ 614.486150][T17364] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 614.490889][T17367] fuse: Bad value for 'fd' [ 615.269255][T17382] netlink: 'syz.1.3218': attribute type 7 has an invalid length. [ 615.288646][T17382] serio: Serial port ttynull [ 615.294602][T17389] input: syz0 as /devices/virtual/input/input18 [ 615.367981][ T39] audit: type=1400 audit(1728972530.937:1917): avc: denied { getopt } for pid=17381 comm="syz.1.3218" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 615.539768][T17403] vcan0 speed is unknown, defaulting to 1000 [ 615.956732][T17412] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3225'. [ 615.964573][T14926] kernel write not supported for file /uhid (pid: 14926 comm: kworker/2:2) [ 616.138778][T13840] Bluetooth: hci4: command tx timeout [ 616.963501][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.965500][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.967854][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.969792][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.971716][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.973656][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.975574][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.977882][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.980077][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.982043][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.984012][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.985945][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.988152][T17428] openvswitch: netlink: Missing key (keys=48, expected=80) [ 616.990143][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.992068][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.993996][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.995917][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 616.998639][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.002655][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.006042][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.008465][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.010395][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.012312][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.014291][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.016719][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.018724][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.020674][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.022595][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.024519][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.026503][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.028767][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.030749][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.032699][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.034868][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.037010][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.041138][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.043805][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.045995][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.047994][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.049929][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.051949][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.053936][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.055870][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.057808][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.059744][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.061706][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.063804][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.065761][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.068190][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.070222][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.072144][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.074324][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.074762][ T39] audit: type=1400 audit(1728972532.764:1918): avc: denied { listen } for pid=17427 comm="syz.3.3230" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 617.082417][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.084466][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.086396][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.088326][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.090264][ T63] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 617.094992][ T63] hid-generic 0001:0000:0000.0008: hidraw1: HID v0.00 Device [syz0] on syz1 [ 617.575396][ T39] audit: type=1400 audit(1728972533.278:1919): avc: denied { connect } for pid=17443 comm="syz.1.3236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 617.704102][T17451] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3238'. [ 618.166113][ T39] audit: type=1400 audit(1728972533.898:1920): avc: denied { remove_name } for pid=17465 comm="syz.1.3242" name="file0" dev="9p" ino=37617763 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 618.180686][ T39] audit: type=1400 audit(1728972533.919:1921): avc: denied { rename } for pid=17465 comm="syz.1.3242" name="file0" dev="9p" ino=37617763 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 618.193250][ T39] audit: type=1400 audit(1728972533.929:1922): avc: denied { unlink } for pid=17465 comm="syz.1.3242" name="file6" dev="9p" ino=37617879 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 618.199287][ T39] audit: type=1400 audit(1728972533.929:1923): avc: denied { rename } for pid=17465 comm="syz.1.3242" name="file6" dev="9p" ino=37617879 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 618.204805][ T39] audit: type=1400 audit(1728972533.929:1924): avc: denied { unlink } for pid=17465 comm="syz.1.3242" name="file7" dev="9p" ino=37617763 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 618.212022][T17466] netfs: Couldn't get user pages (rc=-14) [ 619.369117][T17489] 9pnet: Could not find request transport: fd(Ťfdno=0x000000000000000b [ 619.419118][T17484] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3248'. [ 619.587059][ T5382] usb 7-1: new high-speed USB device number 13 using dummy_hcd [ 619.750128][ T5382] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 619.752536][ T5382] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0 [ 619.754801][ T5382] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 619.757004][ T5382] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0 [ 619.761208][ T5382] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 619.763365][ T5382] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 619.765948][ T5382] usb 7-1: Product: syz [ 619.767066][ T5382] usb 7-1: Manufacturer: syz [ 619.768671][ T5382] usb 7-1: SerialNumber: syz [ 619.980003][ T5382] cdc_ncm 7-1:1.0: bind() failure [ 619.982543][ T5382] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found [ 619.984357][ T5382] cdc_ncm 7-1:1.1: bind() failure [ 619.996794][ T5382] usb 7-1: USB disconnect, device number 13 [ 620.190814][T17290] Bluetooth: hci4: command 0x0405 tx timeout [ 620.444266][ T25] usb 6-1: new high-speed USB device number 23 using dummy_hcd [ 620.587853][ T25] usb 6-1: Using ep0 maxpacket: 16 [ 620.593873][ T25] usb 6-1: config 0 has no interfaces? [ 620.606243][ T25] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 620.608661][ T25] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 620.610726][ T25] usb 6-1: Product: syz [ 620.611821][ T25] usb 6-1: Manufacturer: syz [ 620.613104][ T25] usb 6-1: SerialNumber: syz [ 620.615725][ T25] usb 6-1: config 0 descriptor?? [ 620.627464][ T39] audit: type=1400 audit(1728972536.491:1925): avc: denied { watch watch_reads } for pid=17515 comm="syz.2.3258" path="/proc/36/net/unix" dev="proc" ino=4026533814 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1 [ 620.639037][T17516] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3258'. [ 622.495358][T17562] syz.0.3273 (17562): drop_caches: 2 [ 622.899545][T17589] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 623.227671][T17596] rdma_rxe: rxe_newlink: failed to add vcan0 [ 623.280576][T17600] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3283'. [ 623.683687][ T5382] usb 6-1: USB disconnect, device number 23 [ 624.006098][ T5382] usb 6-1: new high-speed USB device number 24 using dummy_hcd [ 624.048057][T17607] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3287'. [ 624.051145][T17607] netlink: 'syz.2.3287': attribute type 7 has an invalid length. [ 624.053721][T17607] netlink: 'syz.2.3287': attribute type 8 has an invalid length. [ 624.056681][T17607] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3287'. [ 624.103077][T14926] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 624.105030][T14926] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 624.196802][T14926] hid-generic 0000:0000:0000.0009: hidraw1: HID v0.00 Device [syz0] on syz1 [ 624.217063][ T5382] usb 6-1: Using ep0 maxpacket: 32 [ 624.219990][ T5382] usb 6-1: config index 0 descriptor too short (expected 156, got 27) [ 624.222806][ T5382] usb 6-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 624.226686][ T5382] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 624.230499][ T5382] usb 6-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 624.234848][ T5382] usb 6-1: config 0 interface 0 has no altsetting 0 [ 624.239009][T17611] sp0: Synchronizing with TNC [ 624.249240][ T5382] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 624.251573][ T5382] usb 6-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 624.253742][ T5382] usb 6-1: Product: syz [ 624.254941][ T5382] usb 6-1: Manufacturer: syz [ 624.256150][ T5382] usb 6-1: SerialNumber: syz [ 624.259107][ T5382] usb 6-1: config 0 descriptor?? [ 624.264321][ T5382] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 624.268556][ T5382] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 624.470841][T14926] usb 6-1: USB disconnect, device number 24 [ 624.472455][ C2] ldusb 6-1:0.0: usb_submit_urb failed (-19) [ 624.475635][T14926] ldusb 6-1:0.0: LD USB Device #0 now disconnected [ 624.922765][T17605] ldusb: No device or device unplugged -19 [ 625.577238][T17625] FAULT_INJECTION: forcing a failure. [ 625.577238][T17625] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 625.581270][T17625] CPU: 0 UID: 0 PID: 17625 Comm: syz.2.3293 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 625.584028][T17625] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 625.586810][T17625] Call Trace: [ 625.587703][T17625] [ 625.588489][T17625] dump_stack_lvl+0x16c/0x1f0 [ 625.589724][T17625] should_fail_ex+0x497/0x5b0 [ 625.590972][T17625] _copy_from_user+0x30/0xf0 [ 625.592186][T17625] __sys_bpf+0x21c/0x49a0 [ 625.593333][T17625] ? __pfx___sys_bpf+0x10/0x10 [ 625.594582][T17625] ? vfs_write+0x14d/0x1140 [ 625.595776][T17625] ? __pfx_vfs_write+0x10/0x10 [ 625.597042][T17625] ? do_sys_openat2+0xb1/0x1e0 [ 625.598304][T17625] ? ksys_write+0x1ad/0x260 [ 625.599496][T17625] ? __pfx_ksys_write+0x10/0x10 [ 625.600781][T17625] __x64_sys_bpf+0x78/0xc0 [ 625.601926][T17625] ? lockdep_hardirqs_on+0x7c/0x110 [ 625.603281][T17625] do_syscall_64+0xcd/0x250 [ 625.604493][T17625] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 625.606212][T17625] RIP: 0033:0x7f94a477dff9 [ 625.607372][T17625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 625.612315][T17625] RSP: 002b:00007f94a5663038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 625.614512][T17625] RAX: ffffffffffffffda RBX: 00007f94a4935f80 RCX: 00007f94a477dff9 [ 625.616543][T17625] RDX: 0000000000000094 RSI: 00000000200004c0 RDI: 0000000000000005 [ 625.618563][T17625] RBP: 00007f94a5663090 R08: 0000000000000000 R09: 0000000000000000 [ 625.620612][T17625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 625.622639][T17625] R13: 0000000000000000 R14: 00007f94a4935f80 R15: 00007ffcfefd05d8 [ 625.624735][T17625] [ 625.645037][ T39] audit: type=1326 audit(1728972541.761:1926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17610 comm="syz.0.3289" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42abf7dff9 code=0x7ffc0000 [ 625.656015][ T39] audit: type=1326 audit(1728972541.761:1927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17610 comm="syz.0.3289" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42abf7dff9 code=0x7ffc0000 [ 625.663464][ T39] audit: type=1326 audit(1728972541.761:1928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17610 comm="syz.0.3289" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f42abf7dff9 code=0x7ffc0000 [ 625.669654][ T39] audit: type=1326 audit(1728972541.761:1929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17610 comm="syz.0.3289" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42abf7dff9 code=0x7ffc0000 [ 625.675870][ T39] audit: type=1326 audit(1728972541.761:1930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17610 comm="syz.0.3289" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42abf7dff9 code=0x7ffc0000 [ 625.682789][ T39] audit: type=1326 audit(1728972541.761:1931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17610 comm="syz.0.3289" exe="/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f42abf7dff9 code=0x7ffc0000 [ 625.939157][ T39] audit: type=1400 audit(1728972542.066:1932): avc: denied { setattr } for pid=17637 comm="syz.1.3297" name="ALG" dev="sockfs" ino=66278 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 626.714547][T17651] FAULT_INJECTION: forcing a failure. [ 626.714547][T17651] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 626.717947][T17651] CPU: 3 UID: 0 PID: 17651 Comm: syz.2.3303 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 626.720766][T17651] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 626.723498][T17651] Call Trace: [ 626.724383][T17651] [ 626.725155][T17651] dump_stack_lvl+0x16c/0x1f0 [ 626.726381][T17651] should_fail_ex+0x497/0x5b0 [ 626.727608][T17651] _copy_from_user+0x30/0xf0 [ 626.728817][T17651] __sys_bpf+0x21c/0x49a0 [ 626.729940][T17651] ? ksys_write+0x21e/0x260 [ 626.731135][T17651] ? reacquire_held_locks+0x3f0/0x4c0 [ 626.732529][T17651] ? __pfx___sys_bpf+0x10/0x10 [ 626.733771][T17651] ? vfs_write+0x14d/0x1140 [ 626.734955][T17651] ? __mutex_unlock_slowpath+0x164/0x650 [ 626.736422][T17651] ? fput+0x30/0x390 [ 626.737444][T17651] ? ksys_write+0x1ad/0x260 [ 626.738623][T17651] ? __pfx_ksys_write+0x10/0x10 [ 626.739937][T17651] __x64_sys_bpf+0x78/0xc0 [ 626.741110][T17651] ? lockdep_hardirqs_on+0x7c/0x110 [ 626.742455][T17651] do_syscall_64+0xcd/0x250 [ 626.743641][T17651] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 626.745177][T17651] RIP: 0033:0x7f94a477dff9 [ 626.746338][T17651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 626.751269][T17651] RSP: 002b:00007f94a5663038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 626.753434][T17651] RAX: ffffffffffffffda RBX: 00007f94a4935f80 RCX: 00007f94a477dff9 [ 626.755468][T17651] RDX: 000000000000000c RSI: 0000000020000500 RDI: 000000000000000a [ 626.757517][T17651] RBP: 00007f94a5663090 R08: 0000000000000000 R09: 0000000000000000 [ 626.759650][T17651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 626.761737][T17651] R13: 0000000000000000 R14: 00007f94a4935f80 R15: 00007ffcfefd05d8 [ 626.763773][T17651] [ 626.827708][ T39] audit: type=1400 audit(1728972542.990:1933): avc: denied { mount } for pid=17655 comm="syz.0.3302" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1 [ 626.843589][T17660] hsr_slave_0: left promiscuous mode [ 626.853997][T17660] hsr_slave_1: left promiscuous mode [ 627.586776][ T39] audit: type=1326 audit(1728972543.788:1934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17676 comm="syz.1.3310" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1e5f7dff9 code=0x7ffc0000 [ 627.592760][ T39] audit: type=1326 audit(1728972543.788:1935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17676 comm="syz.1.3310" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1e5f7dff9 code=0x7ffc0000 [ 627.968547][ T5400] usb 5-1: new high-speed USB device number 22 using dummy_hcd [ 628.120807][ T5400] usb 5-1: Using ep0 maxpacket: 8 [ 628.126579][ T5400] usb 5-1: config index 0 descriptor too short (expected 301, got 45) [ 628.129722][ T5400] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 628.132574][ T5400] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 628.135391][ T5400] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 628.138452][ T5400] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 628.142314][ T5400] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 628.146309][ T5400] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 628.354990][ T5400] usb 5-1: usb_control_msg returned -32 [ 628.356532][ T5400] usbtmc 5-1:16.0: can't read capabilities [ 629.395598][T17710] FAULT_INJECTION: forcing a failure. [ 629.395598][T17710] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 629.426236][T17710] CPU: 3 UID: 0 PID: 17710 Comm: syz.1.3321 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 629.429878][T17710] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 629.433463][T17710] Call Trace: [ 629.434600][T17710] [ 629.435608][T17710] dump_stack_lvl+0x16c/0x1f0 [ 629.437212][T17710] should_fail_ex+0x497/0x5b0 [ 629.438808][T17710] _copy_to_user+0x30/0xc0 [ 629.440351][T17710] simple_read_from_buffer+0xd0/0x160 [ 629.441961][T17710] proc_fail_nth_read+0x198/0x270 [ 629.443289][T17710] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 629.444752][T17710] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 629.446207][T17710] vfs_read+0x1ce/0xbd0 [ 629.447312][T17710] ? __fget_files+0x23a/0x3f0 [ 629.448574][T17710] ? fdget_pos+0x24c/0x360 [ 629.449759][T17710] ? __pfx_lock_release+0x10/0x10 [ 629.451095][T17710] ? trace_lock_acquire+0x14a/0x1d0 [ 629.452480][T17710] ? __pfx_vfs_read+0x10/0x10 [ 629.453728][T17710] ? __pfx___mutex_lock+0x10/0x10 [ 629.455060][T17710] ? __fget_files+0x244/0x3f0 [ 629.456321][T17710] ksys_read+0x12f/0x260 [ 629.457449][T17710] ? __pfx_ksys_read+0x10/0x10 [ 629.458715][T17710] do_syscall_64+0xcd/0x250 [ 629.459916][T17710] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 629.461494][T17710] RIP: 0033:0x7ff1e5f7ca3c [ 629.462676][T17710] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 629.467643][T17710] RSP: 002b:00007ff1e6ca7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 629.469821][T17710] RAX: ffffffffffffffda RBX: 00007ff1e6135f80 RCX: 00007ff1e5f7ca3c [ 629.471882][T17710] RDX: 000000000000000f RSI: 00007ff1e6ca70a0 RDI: 0000000000000004 [ 629.473945][T17710] RBP: 00007ff1e6ca7090 R08: 0000000000000000 R09: 0000000000000000 [ 629.476013][T17710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 629.478085][T17710] R13: 0000000000000000 R14: 00007ff1e6135f80 R15: 00007ffd9b905ce8 [ 629.480180][T17710] [ 630.648487][ T5400] usb 5-1: USB disconnect, device number 22 [ 630.826147][T17740] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=30 sclass=netlink_tcpdiag_socket pid=17740 comm=syz.0.3332 [ 631.834029][T17753] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=30 sclass=netlink_tcpdiag_socket pid=17753 comm=syz.0.3343 [ 633.302103][T17780] vcan0 speed is unknown, defaulting to 1000 [ 633.635868][ T5382] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 633.840849][T17792] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=30 sclass=netlink_tcpdiag_socket pid=17792 comm=syz.3.3346 [ 633.937276][ T5382] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 633.940094][ T5382] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 633.954735][ T5382] usb 7-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.10 [ 633.957358][ T5382] usb 7-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0 [ 633.959719][ T5382] usb 7-1: Manufacturer: syz [ 633.972199][ T5382] usb 7-1: config 0 descriptor?? [ 634.761951][T17806] overlayfs: failed to clone lowerpath [ 635.934223][ T55] usb 7-1: USB disconnect, device number 14 [ 636.873997][T17290] Bluetooth: hci5: command 0x0405 tx timeout [ 637.451075][T17863] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 638.752571][T17882] FAULT_INJECTION: forcing a failure. [ 638.752571][T17882] name failslab, interval 1, probability 0, space 0, times 0 [ 638.756066][T17882] CPU: 0 UID: 0 PID: 17882 Comm: syz.1.3368 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 638.758689][T17882] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 638.761410][T17882] Call Trace: [ 638.762262][T17882] [ 638.763015][T17882] dump_stack_lvl+0x16c/0x1f0 [ 638.764202][T17882] should_fail_ex+0x497/0x5b0 [ 638.765400][T17882] ? fs_reclaim_acquire+0xae/0x150 [ 638.766720][T17882] should_failslab+0xc2/0x120 [ 638.767911][T17882] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 638.769252][T17882] ? vm_area_dup+0x21/0x2f0 [ 638.770398][T17882] vm_area_dup+0x21/0x2f0 [ 638.771482][T17882] copy_process+0x7891/0x8db0 [ 638.772671][T17882] ? __pfx_copy_process+0x10/0x10 [ 638.773958][T17882] ? get_pid_task+0xfc/0x250 [ 638.775103][T17882] ? trace_lock_acquire+0x14a/0x1d0 [ 638.776410][T17882] ? find_held_lock+0x2d/0x110 [ 638.777634][T17882] kernel_clone+0xfd/0x960 [ 638.778750][T17882] ? __pfx_kernel_clone+0x10/0x10 [ 638.780022][T17882] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 638.781557][T17882] __do_sys_clone+0xba/0x100 [ 638.782744][T17882] ? __pfx___do_sys_clone+0x10/0x10 [ 638.784056][T17882] do_syscall_64+0xcd/0x250 [ 638.785219][T17882] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 638.786700][T17882] RIP: 0033:0x7ff1e5f7dff9 [ 638.787816][T17882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 638.792603][T17882] RSP: 002b:00007ff1e6ca6fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 638.794711][T17882] RAX: ffffffffffffffda RBX: 00007ff1e6135f80 RCX: 00007ff1e5f7dff9 [ 638.796698][T17882] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011 [ 638.798685][T17882] RBP: 00007ff1e6ca7090 R08: 0000000000000000 R09: 0000000000000000 [ 638.800728][T17882] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 638.802713][T17882] R13: 0000000000000001 R14: 00007ff1e6135f80 R15: 00007ffd9b905ce8 [ 638.804979][T17882] [ 639.345849][T17911] sp0: Synchronizing with TNC [ 639.632655][ T39] kauditd_printk_skb: 10 callbacks suppressed [ 639.632666][ T39] audit: type=1400 audit(1728972556.439:1946): avc: denied { accept } for pid=17925 comm="syz.1.3384" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 639.655322][ T5400] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 639.678661][T17929] netlink: 'syz.1.3385': attribute type 10 has an invalid length. [ 639.687370][T17929] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3385'. [ 639.836754][ T5400] usb 7-1: Using ep0 maxpacket: 8 [ 639.840155][ T5400] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 639.842903][ T5400] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 639.845190][ T5400] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 639.849223][ T5400] usb 7-1: config 0 descriptor?? [ 640.052078][ T5400] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 640.504115][T17947] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=17947 comm=syz.2.3379 [ 640.527817][ T5381] usb 7-1: USB disconnect, device number 15 [ 640.530129][ T5381] iowarrior 7-1:0.0: I/O-Warror #0 now disconnected [ 640.976783][T17956] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=30 sclass=netlink_tcpdiag_socket pid=17956 comm=syz.0.3391 [ 641.330921][T17979] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=30 sclass=netlink_tcpdiag_socket pid=17979 comm=syz.0.3400 [ 641.400167][T17981] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3401'. [ 641.420489][ T39] audit: type=1800 audit(1728972558.319:1947): pid=17981 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.0.3401" name="secretmem" dev="secretmem" ino=68058 res=0 errno=0 [ 642.539480][T18005] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=30 sclass=netlink_tcpdiag_socket pid=18005 comm=syz.1.3409 [ 643.739890][ T39] audit: type=1400 audit(1728972560.754:1948): avc: denied { name_bind } for pid=18029 comm="syz.0.3415" src=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1 [ 643.754201][ T39] audit: type=1400 audit(1728972560.754:1949): avc: denied { name_connect } for pid=18029 comm="syz.0.3415" dest=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1 [ 643.951179][ T39] audit: type=1400 audit(1728972560.985:1950): avc: denied { write } for pid=18039 comm="syz.1.3418" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 644.752954][T18059] FAULT_INJECTION: forcing a failure. [ 644.752954][T18059] name failslab, interval 1, probability 0, space 0, times 0 [ 644.756364][T18059] CPU: 0 UID: 0 PID: 18059 Comm: syz.0.3424 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 644.759102][T18059] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 644.761889][T18059] Call Trace: [ 644.762766][T18059] [ 644.763548][T18059] dump_stack_lvl+0x16c/0x1f0 [ 644.764798][T18059] should_fail_ex+0x497/0x5b0 [ 644.766036][T18059] should_failslab+0xc2/0x120 [ 644.767270][T18059] __kmalloc_noprof+0xcb/0x400 [ 644.768537][T18059] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 644.770001][T18059] tomoyo_realpath_from_path+0xb9/0x720 [ 644.771442][T18059] ? tomoyo_path_number_perm+0x232/0x590 [ 644.772919][T18059] tomoyo_path_number_perm+0x245/0x590 [ 644.774343][T18059] ? tomoyo_path_number_perm+0x232/0x590 [ 644.775815][T18059] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 644.777394][T18059] ? __pfx___schedule+0x10/0x10 [ 644.778674][T18059] ? irqentry_exit+0x3b/0x90 [ 644.779883][T18059] ? lockdep_hardirqs_on+0x7c/0x110 [ 644.781274][T18059] ? __x64_sys_ioctl+0x97/0x220 [ 644.782552][T18059] security_file_ioctl+0x9b/0x240 [ 644.783864][T18059] __x64_sys_ioctl+0xbb/0x220 [ 644.785114][T18059] do_syscall_64+0xcd/0x250 [ 644.786307][T18059] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 644.787847][T18059] RIP: 0033:0x7f42abf7dff9 [ 644.789019][T18059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 644.793985][T18059] RSP: 002b:00007f42acc90038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 644.796133][T18059] RAX: ffffffffffffffda RBX: 00007f42ac136058 RCX: 00007f42abf7dff9 [ 644.798194][T18059] RDX: 0000000020000080 RSI: 0000000000005404 RDI: 0000000000000005 [ 644.800249][T18059] RBP: 00007f42acc90090 R08: 0000000000000000 R09: 0000000000000000 [ 644.802289][T18059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 644.804337][T18059] R13: 0000000000000000 R14: 00007f42ac136058 R15: 00007fff59b49008 [ 644.806379][T18059] [ 644.812515][T18059] ERROR: Out of memory at tomoyo_realpath_from_path. [ 645.415627][T18079] vcan0 speed is unknown, defaulting to 1000 [ 645.462978][T18080] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3428'. [ 645.465303][T18080] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3428'. [ 645.554957][T18088] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64 [ 645.556982][T18088] audit: out of memory in audit_log_start [ 645.692306][T18100] vcan0 speed is unknown, defaulting to 1000 [ 645.754349][T18105] FAULT_INJECTION: forcing a failure. [ 645.754349][T18105] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 645.757739][T18105] CPU: 3 UID: 0 PID: 18105 Comm: syz.2.3433 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 645.760515][T18105] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 645.763404][T18105] Call Trace: [ 645.764293][T18105] [ 645.765079][T18105] dump_stack_lvl+0x16c/0x1f0 [ 645.766325][T18105] should_fail_ex+0x497/0x5b0 [ 645.767562][T18105] _copy_from_user+0x30/0xf0 [ 645.768783][T18105] do_ipv6_setsockopt+0x97d/0x4790 [ 645.770121][T18105] ? lock_acquire+0x2f/0xb0 [ 645.771318][T18105] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 645.772763][T18105] ? avc_has_perm+0x11b/0x1c0 [ 645.773996][T18105] ? __pfx_avc_has_perm+0x10/0x10 [ 645.775309][T18105] ? __lock_acquire+0xbdd/0x3ce0 [ 645.776613][T18105] ? sock_has_perm+0x25d/0x2f0 [ 645.777867][T18105] ? __pfx_sock_has_perm+0x10/0x10 [ 645.779212][T18105] ? selinux_netlbl_socket_setsockopt+0x184/0x470 [ 645.780901][T18105] ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10 [ 645.782655][T18105] ? find_held_lock+0x2d/0x110 [ 645.783908][T18105] ? ipv6_setsockopt+0xcb/0x170 [ 645.785190][T18105] ? sock_common_setsockopt+0x2e/0xf0 [ 645.786581][T18105] ipv6_setsockopt+0xcb/0x170 [ 645.787807][T18105] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 645.789349][T18105] do_sock_setsockopt+0x222/0x480 [ 645.791036][T18105] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 645.792913][T18105] ? fdget+0x176/0x210 [ 645.794306][T18105] __sys_setsockopt+0x1a4/0x270 [ 645.795957][T18105] ? __pfx___sys_setsockopt+0x10/0x10 [ 645.797784][T18105] ? fput+0x30/0x390 [ 645.799117][T18105] ? ksys_write+0x1ad/0x260 [ 645.800678][T18105] ? __pfx_ksys_write+0x10/0x10 [ 645.802332][T18105] __x64_sys_setsockopt+0xbd/0x160 [ 645.804068][T18105] ? do_syscall_64+0x91/0x250 [ 645.805667][T18105] ? lockdep_hardirqs_on+0x7c/0x110 [ 645.807423][T18105] do_syscall_64+0xcd/0x250 [ 645.808977][T18105] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 645.810965][T18105] RIP: 0033:0x7f94a477dff9 [ 645.812497][T18105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 645.818870][T18105] RSP: 002b:00007f94a5642038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 645.821675][T18105] RAX: ffffffffffffffda RBX: 00007f94a4936058 RCX: 00007f94a477dff9 [ 645.824308][T18105] RDX: 0000000000000041 RSI: 0000000000000029 RDI: 0000000000000005 [ 645.826940][T18105] RBP: 00007f94a5642090 R08: 0000000000000068 R09: 0000000000000000 [ 645.829602][T18105] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001 [ 645.832244][T18105] R13: 0000000000000000 R14: 00007f94a4936058 R15: 00007ffcfefd05d8 [ 645.834888][T18105] [ 646.107588][T18112] vcan0 speed is unknown, defaulting to 1000 [ 646.241056][T18114] vcan0 speed is unknown, defaulting to 1000 [ 646.421953][ T39] audit: type=1400 audit(1728972563.568:1951): avc: denied { append } for pid=18125 comm="syz.2.3440" name="rtc0" dev="devtmpfs" ino=865 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 647.027121][ T5387] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 647.119162][ T39] audit: type=1400 audit(1728972564.303:1952): avc: denied { mount } for pid=18140 comm="syz.3.3446" name="/" dev="nfsd" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfsd_fs_t tclass=filesystem permissive=1 [ 647.200883][ T5387] usb 7-1: Using ep0 maxpacket: 32 [ 647.210407][ T5387] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 647.213221][ T5387] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 647.215740][ T5387] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 647.228000][ T5387] usb 7-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00 [ 647.234464][ T5387] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 647.250098][ T5387] usb 7-1: config 0 descriptor?? [ 647.335851][T18145] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22 [ 647.359445][ T39] audit: type=1400 audit(1728972564.555:1953): avc: denied { map } for pid=18144 comm="syz.3.3448" path="/dev/sg0" dev="devtmpfs" ino=705 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 647.398877][T18148] 9pnet_fd: Insufficient options for proto=fd [ 647.410277][ T39] audit: type=1400 audit(1728972564.608:1954): avc: denied { create } for pid=18146 comm="syz.3.3449" name="#39" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 647.416102][ T39] audit: type=1400 audit(1728972564.608:1955): avc: denied { link } for pid=18146 comm="syz.3.3449" name="#39" dev="tmpfs" ino=1337 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 647.422721][ T39] audit: type=1400 audit(1728972564.618:1956): avc: denied { rename } for pid=18146 comm="syz.3.3449" name="#3a" dev="tmpfs" ino=1337 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 647.652226][ T5387] hid (null): report_id 29661 is invalid [ 647.653792][ T5387] hid (null): unknown global tag 0xc [ 647.655205][ T5387] hid (null): global environment stack underflow [ 647.659147][ T5387] hid (null): unknown global tag 0xe [ 647.660632][ T5387] hid (null): unknown global tag 0x10 [ 647.685962][ T5387] input: HID 0458:5011 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0458:5011.000A/input/input20 [ 647.746662][ T5387] input: HID 0458:5011 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0458:5011.000A/input/input21 [ 647.758849][ T5387] kye 0003:0458:5011.000A: input,hiddev0,hidraw1: USB HID v0.00 Mouse [HID 0458:5011] on usb-dummy_hcd.2-1/input0 [ 648.856816][ T5387] usb 7-1: reset high-speed USB device number 16 using dummy_hcd [ 649.302750][ T39] audit: type=1800 audit(1728972566.592:1957): pid=18196 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.3.3461" name="/newroot/252/file0" dev="tmpfs" ino=1368 res=0 errno=0 [ 649.449403][ T39] audit: type=1400 audit(1728972566.749:1958): avc: denied { ioctl } for pid=18216 comm="syz.0.3467" path="socket:[68490]" dev="sockfs" ino=68490 ioctlcmd=0x943d scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 649.599285][ T9] usb 6-1: new high-speed USB device number 25 using dummy_hcd [ 649.654575][ T5400] usb 7-1: USB disconnect, device number 16 [ 649.723345][ T9] usb 6-1: device descriptor read/64, error -71 [ 649.951406][ T9] usb 6-1: new high-speed USB device number 26 using dummy_hcd [ 650.021025][T18240] sch_fq: defrate 0 ignored. [ 650.075055][ T9] usb 6-1: device descriptor read/64, error -71 [ 650.380306][ T9] usb usb6-port1: attempt power cycle [ 650.540497][T18254] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=18254 comm=syz.3.3479 [ 650.770583][ T9] usb 6-1: new high-speed USB device number 27 using dummy_hcd [ 650.791683][ T9] usb 6-1: device descriptor read/8, error -71 [ 651.018601][ T9] usb 6-1: new high-speed USB device number 28 using dummy_hcd [ 651.038093][ T9] usb 6-1: device descriptor read/8, error -71 [ 651.162967][ T9] usb usb6-port1: unable to enumerate USB device [ 651.600502][T18274] netlink: 92 bytes leftover after parsing attributes in process `syz.3.3483'. [ 653.010875][T18310] vcan0 speed is unknown, defaulting to 1000 [ 653.050210][ T39] audit: type=1400 audit(1728972570.529:1959): avc: denied { ioctl } for pid=18309 comm="syz.1.3497" path="socket:[70048]" dev="sockfs" ino=70048 ioctlcmd=0x9362 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 653.089729][T18315] random: crng reseeded on system resumption [ 653.471247][T18332] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3501'. [ 653.570749][T18333] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3501'. [ 656.363360][T18373] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 656.444986][T18373] binder: 18370:18373 ioctl c0306201 20000380 returned -14 [ 656.449448][T18377] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3506'. [ 656.453884][T18373] bridge_slave_1: left allmulticast mode [ 656.455386][T18373] bridge_slave_1: left promiscuous mode [ 656.457128][T18373] bridge0: port 2(bridge_slave_1) entered disabled state [ 656.485545][T18376] netlink: 'syz.3.3507': attribute type 11 has an invalid length. [ 656.503049][T18376] netlink: 'syz.3.3507': attribute type 11 has an invalid length. [ 656.513126][T18376] debugfs: Directory 'netdev:' with parent 'phy29' already present! [ 657.488445][T18402] random: crng reseeded on system resumption [ 658.334130][T18420] xt_TCPMSS: Only works on TCP SYN packets [ 658.390478][T18420] rdma_op ffff88803062e9f0 conn xmit_rdma 0000000000000000 [ 658.565305][T18426] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3527'. [ 659.353375][T18441] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3522'. [ 659.495312][T18442] /dev/sr0: Can't open blockdev [ 660.009504][T18453] random: crng reseeded on system resumption [ 660.050058][T18447] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 660.057398][T18447] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 660.067700][T18447] bond0 (unregistering): (slave batadv0): Releasing backup interface [ 660.071760][T18447] bond0 (unregistering): Released all slaves [ 660.078785][T18448] vcan0 speed is unknown, defaulting to 1000 [ 661.467189][T18486] FAULT_INJECTION: forcing a failure. [ 661.467189][T18486] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 661.470755][T18486] CPU: 0 UID: 0 PID: 18486 Comm: syz.1.3536 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 661.473510][T18486] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 661.476281][T18486] Call Trace: [ 661.477146][T18486] [ 661.477916][T18486] dump_stack_lvl+0x16c/0x1f0 [ 661.479151][T18486] should_fail_ex+0x497/0x5b0 [ 661.480395][T18486] _copy_from_user+0x30/0xf0 [ 661.481592][T18486] copy_msghdr_from_user+0x99/0x160 [ 661.482941][T18486] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 661.484459][T18486] ? __pfx___lock_acquire+0x10/0x10 [ 661.485779][T18486] ___sys_sendmsg+0xff/0x1e0 [ 661.486984][T18486] ? __pfx____sys_sendmsg+0x10/0x10 [ 661.488344][T18486] ? lock_acquire+0x2f/0xb0 [ 661.489522][T18486] ? __fget_files+0x40/0x3f0 [ 661.490735][T18486] ? fdget+0x176/0x210 [ 661.491801][T18486] __sys_sendmsg+0x117/0x1f0 [ 661.493012][T18486] ? __pfx___sys_sendmsg+0x10/0x10 [ 661.494371][T18486] ? __fget_files+0x244/0x3f0 [ 661.495606][T18486] do_syscall_64+0xcd/0x250 [ 661.496806][T18486] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 661.498337][T18486] RIP: 0033:0x7ff1e5f7dff9 [ 661.499496][T18486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 661.504452][T18486] RSP: 002b:00007ff1e6ca7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 661.506598][T18486] RAX: ffffffffffffffda RBX: 00007ff1e6135f80 RCX: 00007ff1e5f7dff9 [ 661.508645][T18486] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000008 [ 661.510687][T18486] RBP: 00007ff1e6ca7090 R08: 0000000000000000 R09: 0000000000000000 [ 661.512744][T18486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 661.514785][T18486] R13: 0000000000000000 R14: 00007ff1e6135f80 R15: 00007ffd9b905ce8 [ 661.516850][T18486] [ 661.716425][T18501] netlink: 9412 bytes leftover after parsing attributes in process `syz.0.3537'. [ 661.821419][T18507] FAULT_INJECTION: forcing a failure. [ 661.821419][T18507] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 661.824884][T18507] CPU: 1 UID: 0 PID: 18507 Comm: syz.1.3541 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 661.827633][T18507] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 661.830409][T18507] Call Trace: [ 661.831285][T18507] [ 661.832066][T18507] dump_stack_lvl+0x16c/0x1f0 [ 661.833291][T18507] should_fail_ex+0x497/0x5b0 [ 661.834517][T18507] _copy_from_user+0x30/0xf0 [ 661.835716][T18507] sk_setsockopt+0x73e/0x3d50 [ 661.836959][T18507] ? __pfx_sk_setsockopt+0x10/0x10 [ 661.838285][T18507] ? __pfx_sock_has_perm+0x10/0x10 [ 661.839617][T18507] ? selinux_netlbl_socket_setsockopt+0x184/0x470 [ 661.841294][T18507] ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10 [ 661.843037][T18507] ? find_held_lock+0x2d/0x110 [ 661.844297][T18507] ? selinux_socket_setsockopt+0x6a/0x80 [ 661.845752][T18507] do_sock_setsockopt+0x3f4/0x480 [ 661.847064][T18507] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 661.848605][T18507] ? fdget+0x176/0x210 [ 661.849709][T18507] __sys_setsockopt+0x1a4/0x270 [ 661.850980][T18507] ? __pfx___sys_setsockopt+0x10/0x10 [ 661.852818][T18507] ? fput+0x30/0x390 [ 661.854202][T18507] ? ksys_write+0x1ad/0x260 [ 661.855376][T18507] ? __pfx_ksys_write+0x10/0x10 [ 661.856646][T18507] __x64_sys_setsockopt+0xbd/0x160 [ 661.857969][T18507] ? do_syscall_64+0x91/0x250 [ 661.859186][T18507] ? lockdep_hardirqs_on+0x7c/0x110 [ 661.860548][T18507] do_syscall_64+0xcd/0x250 [ 661.861757][T18507] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 661.863897][T18507] RIP: 0033:0x7ff1e5f7dff9 [ 661.865532][T18507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 661.872386][T18507] RSP: 002b:00007ff1e6ca7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 661.875373][T18507] RAX: ffffffffffffffda RBX: 00007ff1e6135f80 RCX: 00007ff1e5f7dff9 [ 661.878216][T18507] RDX: 0000000000000028 RSI: 0000000000000001 RDI: 0000000000000003 [ 661.881069][T18507] RBP: 00007ff1e6ca7090 R08: 0000000000000004 R09: 0000000000000000 [ 661.883893][T18507] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001 [ 661.886732][T18507] R13: 0000000000000000 R14: 00007ff1e6135f80 R15: 00007ffd9b905ce8 [ 661.889579][T18507] [ 661.932694][T18492] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 661.940255][T18492] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 661.952347][T18492] bond0 (unregistering): Released all slaves [ 662.115124][T18516] sock: sock_timestamping_bind_phc: sock not bind to device [ 662.182706][T18517] netlink: 'syz.1.3544': attribute type 10 has an invalid length. [ 662.185019][T18517] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3544'. [ 662.189857][T18517] batman_adv: batadv0: Adding interface: vlan1 [ 662.192954][T18517] batman_adv: batadv0: The MTU of interface vlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 662.199573][T18517] batman_adv: batadv0: Interface activated: vlan1 [ 662.831687][T18523] netlink: 'syz.1.3546': attribute type 4 has an invalid length. [ 662.982180][T18527] syzkaller1: entered promiscuous mode [ 662.983636][T18527] syzkaller1: entered allmulticast mode [ 663.313885][T18530] netlink: 'syz.1.3546': attribute type 17 has an invalid length. [ 664.146106][ T1378] ieee802154 phy1 wpan1: encryption failed: -22 [ 664.365168][T18567] FAULT_INJECTION: forcing a failure. [ 664.365168][T18567] name failslab, interval 1, probability 0, space 0, times 0 [ 664.368534][T18567] CPU: 0 UID: 0 PID: 18567 Comm: syz.1.3560 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 664.371284][T18567] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 664.374056][T18567] Call Trace: [ 664.374936][T18567] [ 664.375708][T18567] dump_stack_lvl+0x16c/0x1f0 [ 664.376959][T18567] should_fail_ex+0x497/0x5b0 [ 664.378193][T18567] ? fs_reclaim_acquire+0xae/0x150 [ 664.379523][T18567] should_failslab+0xc2/0x120 [ 664.380778][T18567] __kmalloc_noprof+0xcb/0x400 [ 664.382031][T18567] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 664.383495][T18567] tomoyo_realpath_from_path+0xb9/0x720 [ 664.384945][T18567] ? tomoyo_path_number_perm+0x232/0x590 [ 664.386408][T18567] tomoyo_path_number_perm+0x245/0x590 [ 664.387816][T18567] ? tomoyo_path_number_perm+0x232/0x590 [ 664.389268][T18567] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 664.390844][T18567] ? trace_lock_acquire+0x14a/0x1d0 [ 664.392401][T18567] ? lock_acquire+0x2f/0xb0 [ 664.393583][T18567] ? __fget_files+0x40/0x3f0 [ 664.394793][T18567] ? __fget_files+0x244/0x3f0 [ 664.396035][T18567] security_file_ioctl+0x9b/0x240 [ 664.397346][T18567] __x64_sys_ioctl+0xbb/0x220 [ 664.398580][T18567] do_syscall_64+0xcd/0x250 [ 664.399781][T18567] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 664.401324][T18567] RIP: 0033:0x7ff1e5f7dff9 [ 664.402488][T18567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 664.407434][T18567] RSP: 002b:00007ff1e6ca7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 664.409601][T18567] RAX: ffffffffffffffda RBX: 00007ff1e6135f80 RCX: 00007ff1e5f7dff9 [ 664.411635][T18567] RDX: 0000000020000480 RSI: 00000000c01064bd RDI: 0000000000000003 [ 664.413694][T18567] RBP: 00007ff1e6ca7090 R08: 0000000000000000 R09: 0000000000000000 [ 664.415740][T18567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 664.417778][T18567] R13: 0000000000000000 R14: 00007ff1e6135f80 R15: 00007ffd9b905ce8 [ 664.419842][T18567] [ 664.420935][T18567] ERROR: Out of memory at tomoyo_realpath_from_path. [ 664.572287][T18569] netlink: 48 bytes leftover after parsing attributes in process `syz.1.3561'. [ 664.996973][T18604] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 665.006329][T18603] FAULT_INJECTION: forcing a failure. [ 665.006329][T18603] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 665.009606][T18604] CIFS mount error: No usable UNC path provided in device string! [ 665.009606][T18604] [ 665.009975][T18603] CPU: 2 UID: 0 PID: 18603 Comm: syz.1.3571 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 665.014108][T18604] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 665.015861][T18603] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 665.015869][T18603] Call Trace: [ 665.015874][T18603] [ 665.015879][T18603] dump_stack_lvl+0x16c/0x1f0 [ 665.015897][T18603] should_fail_ex+0x497/0x5b0 [ 665.025735][T18603] _copy_from_user+0x30/0xf0 [ 665.026947][T18603] copy_msghdr_from_user+0x99/0x160 [ 665.028320][T18603] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 665.030138][T18603] ? __pfx___lock_acquire+0x10/0x10 [ 665.031560][T18603] ___sys_sendmsg+0xff/0x1e0 [ 665.033129][T18603] ? __pfx____sys_sendmsg+0x10/0x10 [ 665.034893][T18603] ? lock_acquire+0x2f/0xb0 [ 665.036425][T18603] ? __fget_files+0x40/0x3f0 [ 665.037993][T18603] ? fdget+0x176/0x210 [ 665.039374][T18603] __sys_sendmsg+0x117/0x1f0 [ 665.040955][T18603] ? __pfx___sys_sendmsg+0x10/0x10 [ 665.042691][T18603] ? __fget_files+0x244/0x3f0 [ 665.044314][T18603] do_syscall_64+0xcd/0x250 [ 665.045854][T18603] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 665.047834][T18603] RIP: 0033:0x7ff1e5f7dff9 [ 665.049371][T18603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 665.055860][T18603] RSP: 002b:00007ff1e6ca7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 665.058673][T18603] RAX: ffffffffffffffda RBX: 00007ff1e6135f80 RCX: 00007ff1e5f7dff9 [ 665.061339][T18603] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 665.063999][T18603] RBP: 00007ff1e6ca7090 R08: 0000000000000000 R09: 0000000000000000 [ 665.066652][T18603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 665.069387][T18603] R13: 0000000000000000 R14: 00007ff1e6135f80 R15: 00007ffd9b905ce8 [ 665.072047][T18603] [ 665.754073][T18630] could not allocate digest TFM handle sha3-512-ce SYZFAIL: ShmemBuilder: too large output offset size=1702260579 consumed=1852121202 (errno 9: Bad file descriptor) [ 667.477691][T14179] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 667.602942][T14179] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 667.749040][T14179] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 667.834962][T14179] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 667.877312][T17290] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 668.029764][T14179] bridge_slave_1: left allmulticast mode [ 668.031255][T14179] bridge_slave_1: left promiscuous mode [ 668.032721][T14179] bridge0: port 2(bridge_slave_1) entered disabled state [ 668.036039][T14179] bridge_slave_0: left allmulticast mode [ 668.037465][T14179] bridge_slave_0: left promiscuous mode [ 668.038908][T14179] bridge0: port 1(bridge_slave_0) entered disabled state [ 668.802331][T14179] veth1_macvtap: left promiscuous mode [ 668.803832][T14179] veth0_macvtap: left promiscuous mode [ 668.805300][T14179] veth1_vlan: left promiscuous mode [ 668.806679][T14179] veth0_vlan: left promiscuous mode [ 669.622451][T14179] team0 (unregistering): Port device team_slave_1 removed [ 669.761825][T14179] team0 (unregistering): Port device team_slave_0 removed [ 670.919228][T14179] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 671.001284][T14179] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 671.076215][T14179] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 671.141120][T14179] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 671.290152][T14179] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 671.372099][T14179] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 671.452844][T14179] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 671.527256][T14179] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 671.681464][T14179] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 671.794536][T14179] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 671.860374][T14179] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 671.939769][T14179] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 672.019845][T14179] bridge_slave_1: left allmulticast mode [ 672.022065][T14179] bridge_slave_1: left promiscuous mode [ 672.023890][T14179] bridge0: port 2(bridge_slave_1) entered disabled state [ 672.043554][T14179] bridge_slave_1: left allmulticast mode [ 672.045056][T14179] bridge_slave_1: left promiscuous mode [ 672.046563][T14179] bridge0: port 2(bridge_slave_1) entered disabled state [ 672.050616][T14179] bridge_slave_0: left allmulticast mode [ 672.059330][T14179] bridge_slave_0: left promiscuous mode [ 672.061379][T14179] bridge0: port 1(bridge_slave_0) entered disabled state [ 672.089475][T14179] bridge_slave_0: left allmulticast mode [ 672.091503][T14179] bridge_slave_0: left promiscuous mode [ 672.093560][T14179] bridge0: port 1(bridge_slave_0) entered disabled state [ 672.521945][T14179] batman_adv: batadv0: Removing interface: gretap1 [ 673.214058][T14179] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 673.218322][T14179] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 673.233465][T14179] bond0 (unregistering): Released all slaves [ 673.328345][T14179] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 673.332415][T14179] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 673.336295][T14179] bond0 (unregistering): Released all slaves [ 674.403902][T14179] hsr_slave_0: left promiscuous mode [ 674.406809][T14179] hsr_slave_1: left promiscuous mode [ 674.409829][T14179] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 674.412004][T14179] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 674.414294][T14179] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 674.417758][T14179] batman_adv: batadv0: Interface deactivated: vlan1 [ 674.419588][T14179] batman_adv: batadv0: Removing interface: vlan1 [ 674.424927][T14179] hsr_slave_0: left promiscuous mode [ 674.427352][T14179] hsr_slave_1: left promiscuous mode [ 674.429731][T14179] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 674.434519][T14179] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 674.437447][T14179] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 674.439952][T14179] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 674.451903][T14179] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 674.453919][T14179] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 674.456448][T14179] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 674.459100][T14179] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 674.541674][T14179] veth1_macvtap: left promiscuous mode [ 674.543686][T14179] veth0_macvtap: left promiscuous mode [ 674.545599][T14179] veth1_vlan: left promiscuous mode [ 674.547028][T14179] veth0_vlan: left promiscuous mode [ 674.550830][T14179] veth1_macvtap: left promiscuous mode [ 674.552399][T14179] veth0_macvtap: left promiscuous mode [ 674.554006][T14179] veth1_vlan: left promiscuous mode [ 674.555703][T14179] veth0_vlan: left promiscuous mode [ 674.565721][T14179] veth1_macvtap: left promiscuous mode [ 674.569050][T14179] veth0_macvtap: left promiscuous mode [ 674.570547][T14179] veth1_vlan: left promiscuous mode [ 674.571949][T14179] veth0_vlan: left promiscuous mode [ 675.530736][T14179] team0 (unregistering): Port device team_slave_1 removed [ 675.661562][T14179] team0 (unregistering): Port device team_slave_0 removed VM DIAGNOSIS: 05:56:35 Registers: info registers vcpu 0 CPU#0 RAX=0000000002313a63 RBX=0000000000000000 RCX=ffffffff8b21f089 RDX=0000000000000000 RSI=ffffffff8b6cd040 RDI=ffffffff8bd1a1c0 RBP=fffffbfff1bd2af8 RSP=ffffffff8de07e20 R8 =0000000000000001 R9 =ffffed100d4c7025 R10=ffff88806a63812b R11=0000000000000000 R12=0000000000000000 R13=ffffffff8de957c0 R14=ffffffff905f3f08 R15=0000000000000000 RIP=ffffffff8b22046f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f547b667d60 CR3=000000002f7ce000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=25d104f025d104f0 25d104f025d104f0 25d104f025d104f0 25d104f025d104f0 25d104f025d104f0 25d104f025d104f0 25d104f025d104f0 25d104f025d104f0 ZMM22=98dbe97198dbe971 98dbe97198dbe971 98dbe97198dbe971 98dbe97198dbe971 98dbe97198dbe971 98dbe97198dbe971 98dbe97198dbe971 98dbe97198dbe971 ZMM23=8edf15358edf1535 8edf15358edf1535 8edf15358edf1535 8edf15358edf1535 8edf15358edf1535 8edf15358edf1535 8edf15358edf1535 8edf15358edf1535 ZMM24=c952206dc952206d c952206dc952206d c952206dc952206d c952206dc952206d c952206dc952206d c952206dc952206d c952206dc952206d c952206dc952206d ZMM25=be0c770ebe0c770e be0c770ebe0c770e be0c770ebe0c770e be0c770ebe0c770e be0c770ebe0c770e be0c770ebe0c770e be0c770ebe0c770e be0c770ebe0c770e ZMM26=4d9687ac4d9687ac 4d9687ac4d9687ac 4d9687ac4d9687ac 4d9687ac4d9687ac 4d9687ac4d9687ac 4d9687ac4d9687ac 4d9687ac4d9687ac 4d9687ac4d9687ac ZMM27=c5c9ed15c5c9ed15 c5c9ed15c5c9ed15 c5c9ed15c5c9ed15 c5c9ed15c5c9ed15 c5c9ed15c5c9ed15 c5c9ed15c5c9ed15 c5c9ed15c5c9ed15 c5c9ed15c5c9ed15 ZMM28=000000700000006f 0000006e0000006d 0000006c0000006b 0000006a00000069 0000006800000067 0000006600000065 0000006400000063 0000006200000061 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=d3230000d3230000 d3230000d3230000 d3230000d3230000 d3230000d3230000 d3230000d3230000 d3230000d3230000 d3230000d3230000 d3230000d3230000 info registers vcpu 1 CPU#1 RAX=00000000037faeeb RBX=0000000000000001 RCX=ffffffff8b21f089 RDX=0000000000000000 RSI=ffffffff8b6cd040 RDI=ffffffff8bd1a1c0 RBP=ffffed1003b5a910 RSP=ffffc90000187e08 R8 =0000000000000001 R9 =ffffed100d4e7025 R10=ffff88806a73812b R11=0000000000000000 R12=0000000000000001 R13=ffff88801dad4880 R14=ffffffff905f3f08 R15=0000000000000000 RIP=ffffffff8b22046f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020b17000 CR3=000000002f9e0000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000004090001 Opmask01=0000000000000000 Opmask02=0000000000000fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8132bfb8 ffffffff8132bfb8 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8132bfb8 ffffffff8132bfb8 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 ffffffff8132bfb8 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f42abff1133 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f42abff1140 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f42abff113a ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f42abff114e ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f42abff11d4 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f42abff12b2 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff82098e7f ffffffff82098e4c ffffffff82098e2f ffffffff82098cb1 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8209927a ffffffff82099267 ffffffff00040008 000c00130014000c ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff82098e7f ffffffff82098e4c ffffffff82098e2f ffffffff82098cb1 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3cb96f95fe66b5d7 c316e60c39657279 7dd1b281baa83cbe f43e6e96b54e7a4a ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ca4ac13b7750d598 b9b7ae4d19fc6bdc f4436a3cb96f95fe 66b5d7c316e60c39 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6572797dd1b281ba a83cbef43e6e96b5 4e7a4ab77ef215fb 665c683aa73c5109 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 106ddab1adee51b8 8c5e3968a080456d 02ddcc65164bae07 18f64c87f9ccdbf3 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 49dd1fc55270f913 bf879cea481eb67f 6b354ea648a305f4 775a407eab422b5e ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=00000000014746a5 RBX=0000000000000002 RCX=ffffffff8b21f089 RDX=0000000000000000 RSI=ffffffff8b6cd040 RDI=ffffffff8bd1a1c0 RBP=ffffed1003b5d000 RSP=ffffc90000197e08 R8 =0000000000000001 R9 =ffffed100d507025 R10=ffff88806a83812b R11=0000000000000000 R12=0000000000000002 R13=ffff88801dae8000 R14=ffffffff905f3f08 R15=0000000000000000 RIP=ffffffff8b22046f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f94a47db640 CR3=00000000241a8000 CR4=00352ef0 DR0=0000000000000005 DR1=0000000000000000 DR2=0000000000000002 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 998d0bfdc1e61ba8 4ece84d2102338ba ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3b05902e8e728c5a 324ee6c55acf294a ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8ab9bd31d2dfbfaf 778c29ed49d7ae49 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1836bbfc7cad1edc dfd04331e2cb553a ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001680 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 01946fc50000008b 0f980000abd20000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a70194bfca 0194c6da00000004 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 01946fe42e2f0000 0c6c0000587b0000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2379000076820000 0194c43553a20000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 75755d713eda0ce5 5fec8639bb0ec2cf ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 958c6c91c21aa7a1 25a3fcfbc40a99db ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=dddbcf21231f5100 RBX=1ffff9200089ef56 RCX=0000000000000002 RDX=dffffc0000000000 RSI=0000000000000000 RDI=ffffffff8e1b8340 RBP=00000000000001d1 RSP=ffffc900044f7aa8 R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff905f3f0f R11=0000000000000000 R12=0000000000000000 R13=ffffffff8e1b8340 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff816ab4db RFL=00000a06 [-O---P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a900000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f94a5642d58 CR3=00000000241a8000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000