last executing test programs: 5.59948338s ago: executing program 2 (id=527): r0 = socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x4, &(0x7f0000000680)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) r1 = io_uring_setup(0x7da3, &(0x7f00000000c0)={0x0, 0x5563, 0x200, 0x1, 0x1d}) io_uring_register$IORING_REGISTER_IOWQ_AFF(r1, 0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x700) pwritev(r4, &(0x7f00000001c0)=[{&(0x7f0000000280)="be", 0x7ffff000}, {0x0, 0x11c}], 0x2, 0x0, 0x0) syz_open_dev$dri(&(0x7f0000000000), 0xabd7, 0x0) r5 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42f82, 0x0) write$dsp(r5, 0x0, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000680)=ANY=[@ANYBLOB="8c0300003b0007010000000000000000017c00000400fc800c00018006000600800a000008000280040072805f038d801400e08010006c002b2e40243a235df9bf285e001434dd2624a5512c13aae24cfdb32371955be3c8178bf367db59659ece8490719befdb42b3d26764526ec62acadbc9f24a6c123219d13f298e7f88b23a3fee0f3c3607f00f16604b805b2cdbc53dc7bff5dfad737bd1daf6b1e9625d6efc33357dfea9367ddf91480cf53c5773d286bd4c4d99666d283d1c2eabdd24832314da0777577a58cc6615a9c53a862bbac3a987d8628cf253e2afc9c79485edfeeccd3d5ce8534ee4e65859320666fa0381340398b43dcaab3ebcbe5c25f163f1f68c5c092cf35ebb91f6d7181b4d871b8e8ed81d94d50cb22381ed250c298baaa3de08468418516c4ce25954197d0d453e3d039be1eec8d363916d24ae1c86d9efdd195924b7a39bf5b8e0486418a6382c50b2d3a32037f85c2eeb9c982302cb80925f7e5e673297bc12f3610e9e78a4969a538d2b91be04af2fa35ea6b3a5aa90732f7bcf1befefa896737df5f81914677b00b64acef32adfc34eba91c44dcb7be91688000bb4c0a8f18b4a33e555313ec36f5a79ef6a988c74ae05cd4b1650cc8cd87abf4956d718effca1bfb6c3e3eaea409cd70f57e424a0a4dfd751989f0dee41455d481f003fdb42088e6da1672855128446cb272e8c08e1fa5fe3b445ab9b9b658d21fd79545b9c604bbfdd2b4e85da68e144e14d03aedc78cdd27c3237c90794b8cf5830e10f7435b87204007b800400e18004000480a07588dd3b087366196591b900f277cb2be8c57b8a5f391a602d95ba1cf7f0651b519bf7b8494895c4ed719d516712aea0dd964d1ce71b5d38786241bee34fcd16cc3bc4aa09a3fb60642f2328df2ad6f2f64e41216d1eb26a4a6ea6fa9cfb8f025bc4f2ae85541c5c089f384dc35b7ccba545ed2f5bcb9f0206cbc78afb7f5ebb92c7ecb0d6160e6346171b6214d616da044d175aa92b8e50f7519e080017006401010047688821d1735778c0e9b136d780cbb216b81725f3d413c060939b1137faf611686a20b52cfcff5d8d81b6bb266e3ef7c8839c58765ab8d40ca46f65e79b147077226e5e6e01ccc6900e34d4d7e8c4807574d06e1a10d45f97f24b2e0461fbd0dd80183ce77ede0c1b0276cec7cec10e778b87ad10ee0f3674feaa598e9e939a371068277edfc2ff8499887d6e86f9014ef0b7ddd33d80dc7ae7f610a07fea705cfc00080049006401010200"], 0x38c}}, 0xc000) symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000000)='./file0\x00') bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r6 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8000}, &(0x7f0000000240)=0x0, &(0x7f0000000200)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4) r9 = socket$phonet_pipe(0x23, 0x5, 0x2) syz_io_uring_submit(r7, r8, &(0x7f00000004c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r9, 0x0, 0x0, 0x0, 0x10000, 0xfffffffffffffffe}) io_uring_enter(r6, 0x68be, 0x5002, 0x4, 0x0, 0x0) r10 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x28000, 0x0) ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x1}) 4.371523745s ago: executing program 2 (id=532): r0 = openat$ndctl0(0xffffff9c, &(0x7f0000000040), 0x0, 0x0) open_by_handle_at(r0, &(0x7f00000000c0)=@FILEID_UDF_WITH_PARENT={0x14, 0x52, {{0x4, 0x1, 0x0, 0x100}, 0x8, 0xfffffff9}}, 0x200800) ioctl$VIDIOC_S_FMT(r0, 0xc0cc5605, &(0x7f00000000c0)={0x2, @raw_data="a75daea7d33c25cf3c92925f962d8c8bd19079871313b5be888f349b90a565c9643065e607c0bcaebc418f4c9f76cc8c618fa33481781bb6727e5dfc7ee143383dcf8b22ff222bbd459debafbdd65a721d3de2c4d4cd64f8ee5df2e29b407b6904fb925b37a7448a7d098e13a4a7364568cb132a599b6821735d9e12dad075038d44c355510f653a14e90f7d9e9dc236cd1f4524f7c68102706bfda3e7705d26ebb606ed8a80c504665d4dd925f86a5b060e04c1293a6da3d8a9153180e53a18d64c3bd508dbb9fa"}) r1 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3e}, 0x5}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000000300)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="20000000290000003200000000000000000000000000ffff070000004b"], 0x20}}, {{&(0x7f0000000040)={0xa, 0x4e23, 0x3, @private0={0xfc, 0x0, '\x00', 0x1}, 0x4}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000340)="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", 0x11d}, {&(0x7f00000001c0)="09889e1748d417421d158dbc608871a7f62e119b75fafd4702f36db16d30fbe8c27cccbdc22e6fd557fb5a1eba78842952879c0bc5714208d071a981b6e11dec3d57e68eabdcab542db146c7289a57894411039e72fe1d7c79a9badb7b3f359ff142c9e9abf804a646ddfce0eb32d7dd493d3c350fe075557b07cbda13c523cac40b6ef6a2350079d64dc11514f5a629675099d45544bd5f6b55373a2736f2f07dc831e21fe4fc6540828737d496b2f440a2999def7f9235f87b452075466d19cc99b56eaf26a77f37c892b605d3c45d615d4caf23e486ac3b543d73a9e20920627fc4242dbafb7a0366b6fc50e6a95263", 0xf1}], 0x2}}], 0x2, 0x0) 4.371256346s ago: executing program 2 (id=533): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r0) sendmsg$TIPC_NL_MON_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)={0x14, r1, 0x1, 0x70bd2a, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40801}, 0x4) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00') read$FUSE(r2, &(0x7f0000000300)={0x2020}, 0x2020) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), r4) sendmsg$DEVLINK_CMD_RATE_SET(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)={0x34, r5, 0x1, 0x0, 0x0, {0x2a}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4001}, 0x0) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r4, &(0x7f0000002400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000023c0)={&(0x7f0000002340)={0x5c, r5, 0x10, 0x70bd29, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x2}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x1}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20008010}, 0x0) sendmsg$DEVLINK_CMD_PORT_SPLIT(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x840) ioctl$TIOCCBRK(0xffffffffffffffff, 0x5428) socket$vsock_stream(0x28, 0x1, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r7 = dup(r6) io_setup(0x3ff, 0x0) openat$tcp_congestion(0xffffff9c, &(0x7f00000000c0), 0x1, 0x0) write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c) r8 = add_key$user(&(0x7f00000001c0), &(0x7f0000000300)={'syz', 0x1}, &(0x7f0000000480)="fef0eda8c799a4a0c7cb5b0006000000009b7a000100e83ac55324dcd8cdde11b71f986ea0c28be9", 0x28, 0xfffffffffffffffe) sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x2, 0x3, 0x0, 0x2, 0x2}, 0x10}, 0x1, 0x7}, 0x0) r9 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000140)={r8, r9, r8}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0) syz_usb_connect(0x2, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x3a, 0xfe, 0x6, 0x20, 0x4e6, 0xb, 0x100, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x14, 0x0, 0x1, 0xa0, 0x24, 0x26, 0x0, [], [{{0x9, 0x5, 0x82, 0x2, 0x8}}]}}]}}]}}, 0x0) r10 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0) r11 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0) r12 = dup3(r11, r10, 0x80000) ioctl$MON_IOCX_MFETCH(r12, 0xc00c9207, &(0x7f0000000380)={&(0x7f0000000200)=[0x0], 0x1}) 4.034568262s ago: executing program 1 (id=535): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$packet(0x11, 0x3, 0x300) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = socket(0x40000000015, 0x5, 0x0) connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x7, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0xfffffffffffffead, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x10000000}}}]}, {0x3}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bind$inet(r2, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57) sendmsg$xdp(r2, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) recvmmsg(r2, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/11, 0xb}}], 0x5df, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="61157800000000006113700000000000bfa000000000000007000000ee0016055e03010000000000640500000000000069163e0000000000bf07000000000000260507000fff07206706000020000000040600000ee60060bf500000000000002f650000000000006507f9ff0100000007070000cddfffff1e75000000000000bf54000000000000070400000400f9ffad4301000000000095000000000000001500000000000000950000000000000032ed3c12dc8c27df8ecf264e0f84f9f17d3c30e32f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd3997f9c9c4f6f3be4b369289aa6812b8e007e733a9a4f1b0af3dda82ee45a010fb94fe9de57b9d8a814261bdb94a05002000c6c60bf70d742a81762bab8395fa64810b5b40d893ea8fe0185473d51b546cad3f1d5ace0600006e7c955ccefa1f6ab689b555202da2e0ec2871b4a7e65836429a527dc47ebe84a423b6c8d345dc0da3085b0ab71ca1b901627b562ed04ae76002d4519af619e3cca4d69e0dee5eb106774a8f3e6916dfec88158f0200000000c8fb730a5c1bf2b2bb71a629361997a75fd552bdc206438b8ef4901fd03c16dfda44e2a2235c8ac86d8a297dff0445a15f21dce431e56723888fb126a163f16f920ae2fb494059bba8e3b680324a188076eb685d00c4e9b2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20cecac4d03723f1c932fb3bba54b3a6aa57f1ad2e99e0e67ab9ff16d20000009f0f53acbb40b4f8e2738270001562ed834f2af97787f696649a462e7ee4bcf8b07a10d6735154beb4000000000000000000000000004000bc00f679629709e7e78f4ddc211bc3ebe6bd9d42ca0140a7afaab43176e65ec1118d50d1e827f3472f4445d253880800000000000000690884f800031e03a651bb96589a7e2e509bcc1d161347623cb5e7ac4629c8ab04871bc47287cd31cc43010000007b40407d000000210000000000000000005f37d83f84e98a523d80bd970d703f37ca364a601ae899a56715a0a62a34c6c94cce6994521629ab028acfc1d926a0f6a5489af8dc2f17923f3c40dfd1970a55c22fe3a5ac000000000000000000000000000000c1eb2d91fb79ea00000000815266b2c9e1bfadc7498e9dda5d000000bb0d00000000000000000000e4007be511fe32fbc90e2364a55e9bb66ac64423d2d00fea2594e190deae46e26c596f84eba9000000000000003cc3aa39ee4b1386bab561cda886fa642994cacd473b543ccb5f0d7b63924f17c67b13631822a11dc3c693962895496d4f6e9cc54db6c7205a6b26f92121ef53e553acdf42068fff496d2da7d6327f31d7c8cc5d325c5379b0363ce8bd1f61b007e1ff5f1be1969a1ba791ad46d800000000c7f26a0337302f3b41eae59809fd05d12f6186f117b062df67d3a63f3265dd1410eea68208a3f26b2989b832d8b34a34a4f08b34b3042065acaa10856e858d27adee7daf32903d3fc78700d429a2d4c8b6d803eb83eecfe4c7ff9e6ab5a52e83d089dad7a8710eec53f1b11cced7bc3c8da0c44d2fbf9f6f3ff3be4d1458077c2253b0c7c7a0a9fdd63bf910dc20e5cb2a88e59febc47f1212a21f631dbaa74f22bad050e9856b48ae3a03a497c37758537650fe6db80300c41fdc3d78e046f6160e1741299e8dc29906870e6431ed1eab5d067a183f064b060a8ec12725d42e3a74863d66bee966b1574f8e01b3f34a267ff0afa1e1c758a0079b747067312e9815a21cb3f1f8150d999d788535a4d3114dbc7e2bf2402a75fd7a55733360040855ed5d1c0d634fc5fb38f8709d87b27f8a5d9121fdc058447b728f134f72062fc4b1ca0780b1a7af137ff7b4ff139604faf0453b65586f65c7943d56b52f06c870edf0c5d744b5272b44c23480b2bdbff947c4dfa108cbb88202eeb81f428a5b3c299848649e1a6bff52f657a67463d7dbf85ae9321fc2cc17dc4a29b9cba8ded5de8206c812439ab129ae818837ee1562078fc524b3baf49a0be9bb7d958d5e87c6c09bf71a894bad62934782cc308e936d7637e07c4a2a3bc87b0da20000d9ef418cf19e7a8c4c328be0ce91798adc2dca871073f6bd61940aabc86b94f8cbde4d47060400e722a6a2af483ad0d3415ed0f9db009acaba9eaea93f811d434e00000000000000000000d154672fea96aedf346279ec00000000000000000000d535d41b0067f01e2e54b9154d876020b669640ead4ca44631fadf7c4ac39a1b331dbdcd52b36df021b731ef1f92330d347f88ced5c1aaadbcdd8d2257e3a9a7c7494fadf9be36f7a2334ee6e9446fa1fd486f85d672a77dc5bd21463994d49f12016305a1e394d292b66840fe32b40ad665d241a8b8a32b3100450c32832789aa8a096f41201b585cd76631c88cf958e9e9047f5af1730c5e83db12460a0768fd4b62be6c41eed307048bac8d1f7f164574241e06027654b248dcc38749eee0c1ee7c61b3f6411a559c3d45637b11e440ed5a99109b8e71d28c3d677af5f0499c6d3fc6a129775056958c9df824ebe5fa9fb306b24a8a8334910627d03efe69d4b61c4345f048c5da8aca16cea848fa77d2507c920a6bd654b00e07789382ed902c80deeff2fd5c78f42e4353e5360c3e55962efd1331e6736eaf4ee27736fa54803ee8ec1a15266ffcd8b30368740b584c2559e691e542cab3d49db327db62328f159d1e0900b3e23e84dedcd1377aa15dbeab7db181bd66980c3557c7d9f7377fcb6023accb5c368a121acf70e5f4c3f2a0ea07011c7149ea979cab2ee65cf7ffa29152b7a8fed89575e6e6"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000003180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x10001, 0xf84, 0x3}, 0x1c) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x4c, 0x3d, 0x107, 0x0, 0x0, {0x4, 0x7c}, [@nested={0x4, 0x8}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x28, 0x2, 0x0, 0x1, [@typed={0x24, 0x14, 0x0, 0x0, @str='B\xa7\xed\x1a\x064!\x89(c\f\x8d\xf6\xfd\x03\xd1\xd4\xbb\xb7\x1f\xd6P\xf6\v{\x83\xea\n\xd0\x11_6'}]}]}, 0x4c}}, 0xc000) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000001800), 0xffffffffffffffff) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x4, &(0x7f0000000100)=@framed={{}, [@ldst={0x3, 0x0, 0x6, 0x0, 0xa, 0x0, 0x51}]}, &(0x7f0000000000)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) sendmsg$TIPC_NL_NET_SET(r7, &(0x7f0000001880)={0x0, 0x0, &(0x7f0000001840)={&(0x7f00000019c0)={0x24, r8, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x4}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x7}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x85}, 0x0) fcntl$addseals(r7, 0x409, 0x8) 4.032206132s ago: executing program 3 (id=536): clock_adjtime(0x4, &(0x7f0000000780)={0x2, 0xda, 0x7, 0x9, 0x2, 0x2, 0x75feab47, 0x81, 0x9, 0x1, 0x8, 0x20000000, 0x9, 0x4, 0x4, 0xf525, 0x1, 0x9, 0x0, 0x200, 0x8, 0x7fff, 0x7, 0x2, 0xcd, 0x9}) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd27, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0xe, 0x7, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYRESOCT], 0x5c}, 0x1, 0x620b}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) set_mempolicy(0x2, &(0x7f0000000100)=0xffffffffffffff02, 0x5) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100626f6e640000000018000280140008800800030001"], 0x48}}, 0x0) sendmmsg$inet(r6, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000340)='sockfs\x00', 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 3.721681626s ago: executing program 3 (id=537): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="2ae698966a9476f58ddd5fdc414c1b5208d37baf3d418554e9f6316566bf8ffae88f49b26e7a44d98364ad30a35f0d3905e7dc1b80b175603aed33f780a3c0e3467bc7d28f0f82b35565634a47076a57675f1e3b6b1c5b5795103d1f574068a6275e05bfada43537cce36d471ee88491003dbd23416cb879688d2b6089084dd7db63cff8b0a1a2d565690cc82b39757355811f1fa8589b41732999d98dc9f350583de751cd55"], 0x7c}, 0x1, 0x0, 0x0, 0x4040890}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01050000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0) syz_emit_ethernet(0x32, &(0x7f0000000140)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x19}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x65, 0x0, 0x0, 0x3a, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty}, {0x8000, 0x4e21, 0x10, 0x0, @gue={{0x2, 0x0, 0x3, 0x0, 0x100}}}}}}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) r3 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, 0x0, 0xc0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) shmat(0x0, &(0x7f00003e8000/0x1000)=nil, 0x4000) r6 = syz_open_dev$vim2m(&(0x7f0000000000), 0x9, 0x2) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$nbd(&(0x7f0000000000), 0xffffffffffffffff) r9 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x200) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$NBD_SET_SOCK(r9, 0xab00, r10) r11 = dup3(r9, r6, 0x80000) ioctl$NBD_DO_IT(r11, 0xab03) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, r8, 0x1, 0x70bd2b, 0x8, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}}, 0x20000004) socket$tipc(0x1e, 0x5, 0x0) 3.351237778s ago: executing program 0 (id=538): r0 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0) bind$can_j1939(r0, &(0x7f0000000040)={0x1d, 0x0, 0x8000000000000003}, 0x18) sendmsg$nl_route_sched(r0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c804}, 0x4091) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = syz_io_uring_setup(0x117, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x1}, &(0x7f0000000280)=0x0, &(0x7f00000001c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4) socket$inet6_sctp(0xa, 0x5, 0x84) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8001}, 0x4820) syz_io_uring_submit(r5, r6, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc}) io_uring_enter(r4, 0x47f6, 0x0, 0x34000, 0x0, 0x0) 3.061415532s ago: executing program 1 (id=539): r0 = syz_io_uring_setup(0x437d, &(0x7f00000000c0)={0x0, 0x627f, 0x2000, 0x40000, 0x115}, &(0x7f0000000400)=0x0, &(0x7f0000000040)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0xc, 0x10, r0, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000200)=@IORING_OP_CONNECT={0x10, 0x19, 0x0, 0xffffffffffffffff, 0xffffffffffffffa1, 0x0}) io_uring_enter(r0, 0x5830, 0x0, 0x41, 0x0, 0x0) openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000140), 0x286, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) clock_adjtime(0x0, &(0x7f0000000000)={0x3ff, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x3, 0x9, 0x1, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x8, 0x2, 0x3, 0x0, 0x3, 0x0, 0x3}) r7 = socket$inet(0x2, 0x5, 0x0) setsockopt$sock_int(r7, 0x1, 0x2e, &(0x7f0000000180)=0x7b, 0x4) syz_io_uring_complete(r1) shutdown(r7, 0x0) recvmmsg(r7, &(0x7f00000066c0), 0xa0d, 0x0, 0x0) 2.661776613s ago: executing program 3 (id=540): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[], 0xc4}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140)) syz_genetlink_get_family_id$batadv(&(0x7f0000000200), 0xffffffffffffffff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000000)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mknod$loop(&(0x7f0000000140)='./file0\x00', 0x20, 0x0) r3 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0) ioctl$IOC_PR_PREEMPT(r3, 0x40046109, &(0x7f0000000200)={0xf0, 0x0, 0x2, 0x1}) sched_setscheduler(0x0, 0x5, &(0x7f000000d380)) ioprio_set$pid(0x3, 0x0, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000980)=@acquire={0x1a8, 0x17, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @in=@dev, {@in=@broadcast, @in=@multicast2}, {{@in=@broadcast, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x3c, 0x0, 0xffffffffffffffff}}, 0x7, 0xfff}, [@tmpl={0x84, 0x5, [{{@in6=@ipv4={'\x00', '\xff\xff', @private}, 0x0, 0x33}, 0x0, @in=@multicast2}, {{@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x0, 0x32}, 0x0, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x2}]}]}, 0x1a8}}, 0x0) write$FUSE_CREATE_OPEN(0xffffffffffffffff, 0x0, 0x0) mount(&(0x7f0000000100)=@nullb, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='iso9660\x00', 0x0, 0x0) 2.471545459s ago: executing program 0 (id=541): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c0000001500010000000000000000000100000008000100", @ANYRES16=r1], 0x1c}}, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0xfffffffffffffe21, &(0x7f0000000180)={&(0x7f0000000a40)=ANY=[@ANYRES16=0x0, @ANYRES32=r0, @ANYRES8, @ANYBLOB="02350c037521bc282ebbf45e91f37eff19a1e33be23f149818fff6aaa172811e328cf6491dfae6732983ab0f49c8c4cbc56de51065f17d46", @ANYBLOB="05a21c1bd2527d2285012c09b9df319b27c2ad9bffef7aa43076b5ad36b9c0719e10c7da043d24fffb355f6de61acabb6d8e89092133f70dae9d022b97f675e616d63aea77aa57632e70ac044ee7f9938237e4fc5cba118049e22de21c09c2ee1fc4cbcb27f5e637eaeb40b13985566c34456064ccfef336ba8143a68ff530f7035093d2c7bb81b28a40fc284349e6b31e8d81f03858f8e68d3e3d0070214efbc3d44d223e19db16f1fdd504a0", @ANYRES16, @ANYBLOB="ec0c953905b0fe611f0fb365b4b3dca708224193c6b835ac64d6fb9810e2cae5472a43213fdc060b0def928bf24cfc197b258e20f5a93d823b02aa7c4fecd45e75a6a718c13db9ea4fd3d50d202a812bd929001c", @ANYRES16, @ANYRES8=r0], 0x30}, 0x1, 0x0, 0x0, 0x40800}, 0x48800) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000080000000800000000000000", @ANYRES32, @ANYBLOB="0000000c0000000000e9ffffff00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) socket$nl_generic(0x10, 0x3, 0x10) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) prctl$PR_SET_IO_FLUSHER(0x43, 0x1) prctl$PR_SET_IO_FLUSHER(0x43, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000001bc0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000900007b8af8ff00000000bfa200000000000007020000faffffffb703000008000000b7040000000000008500000003000000850000005000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r3 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x84, @multicast2, 0x15, 0x3, 'wrr\x00', 0x1, 0x4, 0x55}, 0x2c) r4 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$IP_VS_SO_SET_ADDDEST(r4, 0x0, 0x487, &(0x7f0000000000)={{0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e21, 0x3, 'wrr\x00', 0x23, 0x81, 0x5}, {@rand_addr=0xac1414aa, 0x4e23, 0x10000, 0x1cb, 0x12d5e, 0x12d58}}, 0x44) r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000006c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9feb010018000000000000002c0000002c000000060000000f0000000000000100000000670070070200000000000011050000000300000005000000000001020100000000002e1e3000"], &(0x7f0000000680)=""/31, 0x4a, 0x1f, 0x1, 0xf07, 0x0, @void, @value}, 0x28) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1, 0xe, &(0x7f0000002500)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, r5, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0xb, 0x0, 0x71f}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r6 = socket$inet6_sctp(0xa, 0x5, 0x84) sendmmsg$inet6(r6, &(0x7f0000000900)=[{{&(0x7f0000000000)={0xa, 0x4a23, 0x0, @mcast2, 0x4}, 0x1c, &(0x7f00000001c0)=[{&(0x7f0000000040)='%', 0x1}], 0x1}}, {{&(0x7f0000000080)={0xa, 0x4e24, 0x9, @local, 0x7}, 0x1c, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}}], 0x2, 0x4004851) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r6, 0x84, 0x1c, &(0x7f0000000140), &(0x7f0000000180)=0x4) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)=@newtaction={0xf0, 0x30, 0x1, 0x0, 0x0, {}, [{0xdc, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_csum={0xac, 0x20, 0x0, 0x0, {{0x9}, {0x74, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x5, 0x8, 0x6, 0x7ff, 0x10001}, 0x20}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x20000, 0xab, 0x6, 0x7, 0x6}, 0x19}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x1, 0xfffffffc, 0x5, 0xc9e9, 0x3}, 0x7}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x2, 0xff, 0x20000000, 0x6, 0xae}, 0x16}}]}, {0x10, 0x6, "3a0ad5e4ac54e9940e82a49b"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x7}}}}]}]}, 0xf0}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r7 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r8, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r9, &(0x7f0000000000), 0x400000000000041, 0x0) 2.180793258s ago: executing program 1 (id=542): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x50) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000000)={0x0, @loopback, @initdev}, &(0x7f0000000080)=0xc) ioctl$FS_IOC_GETFSUUID(r1, 0x80111500, &(0x7f00000001c0)) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f0000000180)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', r3}, 0x14) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000040)='sys_exit\x00', r4}, 0x10) 2.180442213s ago: executing program 1 (id=543): ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000400)=ANY=[@ANYBLOB="0700000000000000b50b000000000000680d0000000000009b03000000000000010000000000fbffffffffffffff130200000000007ac4549a65c9e7f800650b0000000000000080000000000000551d0000000000000100000000000000f20a0000000000000500"/120]) socket$nl_route(0x10, 0x3, 0x0) sendmsg$NL802154_CMD_NEW_SEC_KEY(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYRES16, @ANYBLOB="3f9d00000000000000001700000008000300", @ANYRES32, @ANYBLOB="60003080050002000000000014000400403a050c5bae9c544ef2b6d713459a7a1c000180050002000000000008"], 0x7c}, 0x1, 0x0, 0x0, 0x48000}, 0x0) r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x2, &(0x7f0000000100)=""/222, &(0x7f0000000000)=0x61637876) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000001c40)={0x0, 0x0, &(0x7f0000001c00)={&(0x7f0000000000)=ANY=[@ANYBLOB="3cff0300", @ANYRES16=r2, @ANYBLOB="010000000000fddbdf2501000000040007800c00060002000000000000000c00020000000000000000000c0002000900000000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x123f41, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0xd) socket$nl_netfilter(0x10, 0x3, 0xc) socket$vsock_stream(0x28, 0x1, 0x0) r4 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r4, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10) r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10) r7 = syz_open_dev$evdev(&(0x7f0000000180), 0x0, 0x0) ioctl(r7, 0x80004507, 0x0) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0xa0c}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r8 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r8, &(0x7f0000019680)=""/102392, 0x18ff8) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) socket$kcm(0x2, 0x200000000000001, 0x106) ioctl$KVM_IRQ_LINE_STATUS(0xffffffffffffffff, 0xc008ae67, &(0x7f00000000c0)={0x4}) unshare(0x22020600) 1.428184204s ago: executing program 0 (id=544): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000ec8c0000000000000000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='nilfs2_segment_usage_allocated\x00', r0}, 0x18) (async) r1 = socket$kcm(0x10, 0x2, 0x0) (async) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000006c80)='net/ip6_tables_names\x00') connect$inet6(r2, &(0x7f0000006cc0)={0xa, 0x4e20, 0x400, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x6}, 0x1c) (async) r3 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r3, 0x6, 0x21, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) (async) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x1000000, &(0x7f0000000000)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) (async) r4 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) mknodat$loop(r4, &(0x7f0000001600)='./file1\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./bus\x00') (async) link(&(0x7f0000000380)='./file1\x00', &(0x7f0000000400)='./file0\x00') (async) linkat(r4, &(0x7f0000000100)='./file1\x00', r4, &(0x7f0000000240)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') r5 = socket$inet6(0xa, 0x3, 0x5) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800, 0x0, 0x3, 0x9}, 0x20) (async) setsockopt$inet6_int(r5, 0x29, 0x1000000000021, &(0x7f0000000180)=0xffffffc1, 0x4) (async) sendmmsg(r5, &(0x7f0000002b00)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @mcast1}, 0x80, 0x0}, 0x5b4}], 0x1, 0x0) (async) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x50) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r6, &(0x7f0000000340), &(0x7f0000000340)=""/155}, 0x20) (async) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) sendmmsg(r1, &(0x7f0000006c00)=[{{&(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r1, {0x2, 0x4e23, @local}, 0x4, 0x1, 0x1, 0x4}}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000200)="bd7a9842078a0a04de3724af4e64508ec396462e13fca7a90b7167edca7a5ef14e5adbbd29fb26b3df45ab9b32c65b5b2d432dc12e1b6de45ab0dd09912949e20d2bb657d6adc5709ae982c476bfdf7856a2663e863e5563f23504d039688a74d710f79f5866ad2d147bf3745c90095188190767767f97f25180d0497f4c829d6e5041b44f3c59bb99f6d2493ebb2b1033e17641710e25e62c616a6ffd5c68a5", 0xa0}, {&(0x7f0000000500)="b88fe3891672366c843e9e86725606188d345223fefe0a38aeffbe466c14c428b855a6fbbb5de06a9e06219274d4c805dbde9900bff39a7946ba7187b109b2467237ae349650be6f55031eeb45b34b184c64bb9ef98a71c0483cbbf03a292595fa4ab1273facf688ad32b8d46678215943d583d19a4e5afe19135f046ac0c9788e7c1b4ea4db901b2320d63a22aa8a6c835d5ff827bfc8ac7fcecacb2e03185ada95b0c507d4c0fb9859", 0xaa}, {&(0x7f00000014c0)="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", 0x1000}, {&(0x7f0000000400)="2c13eb6e4627007562ade4d6aaa78731a8bab43e6da7450e77f3795afa8b77bfe867cf0ef4ddc2cb4f8d31d204d6d7cba962", 0x32}, {&(0x7f0000000700)="0e88209e3e16d4212f98fa3d0090c25c196abb37ca5cdc7f34552c922a9d9cd889236a3fd0fa83767b84404ba118bfa088cbdcc969af3b04833043affb6dbd3071c4eca0f001b59ce7c914f9335a039541d4355f639ef6bd034ca896450ffd95b47e5209d0d79d1aef2a680fed8b3896cc921d6a4e2e6179c78624d609d3acf01aad", 0x82}, {&(0x7f00000007c0)="c386c43bc8e0c4711a5f66eb064d7e08c3b227b0326860402e610f1009dc0df0a160f41d552d2e6eb7de553d2b585c7be52bfbdbc33b7d92b64165e21306fcc6b566f89127cd54a639a025dd51784e36babfb70ae28bcccd08939f", 0x5b}, {&(0x7f00000047c0)="1d28da41", 0x4}], 0x7, &(0x7f00000024c0)=ANY=[@ANYBLOB="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"], 0x11b0}}, {{&(0x7f0000000880)=@x25, 0x80, &(0x7f0000000cc0)=[{&(0x7f0000000900)="aa6ccd489ca870cf45b004d8633096129409f1539a8249ef8ad646ef84a4de302d84b1a480050b97a2749a51bbc39431fb9a2f9551aa0a13", 0x38}, {&(0x7f0000000940)="a1afdf8d1d8a315c8d5459727b68cce3423755d377cbf3ee3fd87e861b3678bcd067463834cae06b", 0x28}, {&(0x7f0000000980)="b1eed72dc9dbbdc6fbe0c06ffb63a5e41e8eb0966c10ee859e610538aac46934762f149086060b92af45e9062da44dbdd26799ceb6cd6eeadb02d8ee4fe1952c3a9eb4828145", 0x46}, {&(0x7f0000000a00)="4e921942fdd84716bce06d8dd9aecf7263cfc0e8045d70316745be14f399d23256a3e4b72bb2787b261cfaab19602899662cc7c8801690b1ba0724f8db2a0a41f9ef2fd50335671b7f00dc3bb5215450170f935609420226885c50f17aa7d9a70906f09270d001e3dbd42e49e9f37b8779444df0b5329f0093089433780aa191328e28b90c503de050968e5ff24c41ab320ad7017c8a89ccd4c16f", 0x9b}, {&(0x7f0000000ac0)="83bdf1f8e4009d0b1a37161ebb3f2dde5251562be46914303532ed43fc65849e1c39637a1f667e0a119be28e6e32f1f96513f30d3643842984798c22d7ae9a3d33389a5141e4611c9168820a12bd1b5f7d7309fa91075471135c0850150d8a47b35db3a318d14e90e3935bb1ce21089adee12a1b4a0f8a4da098a4680f6db00fc67d28effa678a63d5731a816416fa72b6ccf02cc7180ce6281c200cb2624d7ed83729b1aba4558495bdf377e479fbebd8da05657e73548be349b33b18d9034dee686ef57d8a1efe8bed92fb7fdced94004a2686499169e0c47c8ceca1e6b683db9a207bbe116d36ab236cae3d4b25ff4739a28ecdb213db", 0xf8}, {&(0x7f0000000bc0)="a52a37f04e4be9d24306e6b252a9c8d2e25a80a655acbb685ec62c9c457be97cc7", 0x21}, {&(0x7f0000000c00)="5e7464e65f1d3803967925bcc489ecea287c4d67e82bc3e68416a93e5628c0eeb48d970e8e3ccc952f349818fe4b795d7acb50c3cbadce39bb8e0cd04eed55f57132f53efde9d0dfd3f82e92810ce575d17fe727930f31c69541d26b897aaadfcf96bfa29a17adb56e6c2f483ad41f5b36ad27836199bfd1bfda0487ab076a228d22fcb5f7596b66c9b990b6eec380d0385ada0f18008d3a82be347176f9299c3b8726", 0xa3}], 0x7, &(0x7f0000000d00)=[{0x94, 0x29, 0x6, "d2bf52382edd82e78f30f23251107276bfc756ee0a3d7544e25bea998697ba46df1c42c6e8433e27fee7652a90a718762f404128d264d0e87af6ba9efee0df58459e63f8669a0f28b579312422d4d42780fcb6c259f036fc9e2957beab100b871ee5eea93450d26ba2960d2d51f702f78bbaafdb90a138142464673fcdb61b0c305fc0a2e68fb8"}, {0xf0, 0x1, 0x3, "38bd49a8cc4ada53f2a52a8c8e1b3347c389212366fd011505e5728fe69183920be36246f98d5120e86f5c8e6f4779c445fadb62275c0e9a6823caa0002bf647feaedd7a26c1e0cbfc4ec783960d7d28ea4f1e1d151a14b99801c37b1cb141b72e31c8ec334507388e7a014e50e841339568e6bc024a7497670ae52c8bb883b623495b6dff7cf74ce9e4391e1646f3728c99c3bdbbdbdd0e09a23e58e1044e0a46a6a645b85cccc3aaf6b6d7e42d46ad0c5876f0b80db3a30b2da3fec1e928ca3c0ceb5a3f436afb39f20caf4dc156019ad3a616c11bb6445f92c78f62b8000000"}, {0xc8, 0x104, 0x6, "6b9d1c013ec45d3ea843b51450c1860c6904a66958193203a8cc420bffe6cdebb408d2fa1d9da01b0fd46990553c6f6c4d1f3179a7aca9e83e5c69937b3ac2a9fb7bd1b900df72cb8e0ae01152816f7b8999aa2131dcf01808a573cb0bd301f79d9946e928df331327937eb66a6ef8aafbef5d94fd953f29e017de82d5a8b842edb1721f476bbea18d59b1e460f080a35feb77d05a3abe4b5964e3a0351b7c7fdc58eab0ae75d449daf26727c0c189f57b028a97072941afdd228a"}, {0xa0, 0x1, 0x5, "f9265ef4ffc61b81f12d51d638a6dd8b7477644e219053fd6cedcbc0a85fb7ed98e63b35f8d8483ea6d55c3e167581307fb92d7981303d72abb43cdb1ad8a6aca57fedada66dbcf07bef936283134c4280ed2fa2792b2f0a0a5f84ed495deb08bb12989eb8f5f784310aefbf892f52f7d360fa0c45d107baadfb1b7d59a7505e9655de3911c70b2a886813a1fd725c74afbb02"}, {0xb0, 0x119, 0x6, "a6da81f27fd7a7c1fb91c6132d8923420b2821e528dbdf726dd1a8109985391623a55786b7628fdd19f387bb1a48297e35042a2acd059b1a95891584515a5fcc8fbcb3e306972af53b1d892e6d9c684bb57820f5ef988ed5cdc94f1dcf235e9fcc2a98332088ae8cff0439d6de816709943db4a1774e49431de4319bd76de9d7fc21fa3db62e9280ea7d874274265a3aa9ad08d5d919d19ddf954a881a6cc448fca10de9"}, {0xd0, 0x117, 0xb, "53f6bdf298f17a47692b77cb58fe9d05876256882693745ad5f8f3b501165cd176a4991514888856c6a99a905faeee80f3581d1a0f6ce5665b922270f15aad44e8090963ffbc23f719ddd02d44d3b0beffb121d1ed634522db6fc6fdc72a41d70efff3b3f527a3e9ccfb7894fee292f63d28c5c20038af4803c20e187de7a46a90ca51016ef5bef871942e496416c3fa3835e49df65b0f7b2ce80a84ffdaf409edc099a4fb0f3d9dc046f08b250a36ae35dd585309172b0d8b383848c7cb13bc33"}, {0xbc, 0x111, 0x2, "f219cb33d929dba9724204a8fa277dd4b23e365861a8565bb988109276211f9803c2507e44ea5723dc1eb40c38c5a056d37d966e4fe004cb4f98e091dbd6f29bf2585ecddfdfe7f0e3518df04062eb1da51d2f3643e313d7cded75b405add264e080c1bfbb89633d80504981619f045070ed9dc4630224d7d74889ee15a3cd3ed7adcc7585eb94af8851ad0291b30a59c0c1a756c40a41310e008fdc7151e57a2582b4739fc316ba064b93e099"}, {0x44, 0x10f, 0x1, "fc26bd0c7d8150bd6f0933fa404bbbee60a6dfa70785049c1d975d05143657ace59fa063222f80a3a2cbc1317f9ae36eb2187ba3d0"}], 0x56c}}, {{&(0x7f0000001280)=@pppol2tpv3={0x18, 0x1, {0x0, r2, {0x2, 0x4e23, @rand_addr=0x64010100}, 0x0, 0x1, 0x2}}, 0x80, &(0x7f0000001300)=[{&(0x7f0000003680)="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", 0x1000}], 0x1, &(0x7f0000004680)=[{0xdc, 0x107, 0x3ff, "c7bc6c9bffd47df20f13858588cf2b0500c28b6b942402dff73dc1bef81c63d1a7c084c731bae0407509befbfa56d3c408e4d58a47ceeb1332281cba001e7e82757877b756b5998ba5909e377d56bf6761fee1c6e2804dca7de784d015e0ad5540c59c58ba5d9dd92f6c7b5db52e3b4f768644792090be4ab20e0237e419061b4618a2cfd4c7dbc5a3dadb6fd3ddd3e69d03bfb9c7125ad7f6867e47c0deee265e0594b3aaf92253e70e4f42bea2a77f02fc9ecd2598fba0d8885cb41507c1ae65bfb7da030bc8b5b6532d97820e7eaf"}, {0x60, 0x1, 0x2, "a551c319b6db518279831effcfb1475f993b6122db059519f8bfb95cda6f00b745f2a29b1e0a57aa17d014129d64c141e3e5e2cca34d1b25fb698d032e448aa5d9a72bb202bc63a90d8d012a07cc3696f70f"}], 0x13c}}, {{&(0x7f0000001340)=@pppoe={0x18, 0x0, {0x0, @broadcast, 'team_slave_0\x00'}}, 0x80, &(0x7f0000006b40), 0x0, &(0x7f0000006bc0)=ANY=[@ANYBLOB="201300000401000004000000d704d6604c7e9e3cff9e76bcc3d4181b391e0000"], 0x20}}], 0x4, 0x10) (async) mknod$loop(&(0x7f0000000140)='./file0\x00', 0x200, 0x0) (async) mount(&(0x7f0000000100)=@nullb, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='iso9660\x00', 0x8009, 0x0) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r7}, 0x10) 1.427799816s ago: executing program 3 (id=545): clock_adjtime(0x4, &(0x7f0000000780)={0x2, 0xda, 0x7, 0x9, 0x2, 0x2, 0x75feab47, 0x81, 0x9, 0x1, 0x8, 0x20000000, 0x9, 0x4, 0x4, 0xf525, 0x1, 0x9, 0x0, 0x200, 0x8, 0x7fff, 0x7, 0x2, 0xcd, 0x9}) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd27, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0xe, 0x7, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYRESOCT=r3], 0x5c}, 0x1, 0x620b}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) set_mempolicy(0x2, &(0x7f0000000100)=0xffffffffffffff02, 0x5) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100626f6e640000000018000280140008800800030001"], 0x48}}, 0x0) sendmmsg$inet(r8, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000340)='sockfs\x00', 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) 1.427493367s ago: executing program 0 (id=546): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000140)={0x4}, 0x10) mkdirat(0xffffffffffffff9c, 0x0, 0x0) socket(0x2a, 0x2, 0x0) r1 = socket(0x10, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x101001, 0x0) r3 = syz_io_uring_setup(0x10f, &(0x7f0000000340)={0x0, 0xfad9}, &(0x7f0000000240)=0x0, &(0x7f00000000c0)=0x0) r6 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sendmsg$802154_raw(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000000c0)="ff4ae0", 0x3}}, 0x20040814) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x48, 0x4000, @fd_index=0x3, 0x5, &(0x7f0000001440), 0x0, 0x2}) io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$mixer(0xffffffffffffff9c, &(0x7f0000000700), 0x1c1140, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000002fc0)=@newqdisc={0x34, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0) write(r0, &(0x7f0000000000)="1c0000001a005f0214f9f407000904001f000000fd02000200020000", 0x1c) 1.240001574s ago: executing program 1 (id=547): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$packet(0x11, 0x3, 0x300) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = socket(0x40000000015, 0x5, 0x0) connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x7, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0xfffffffffffffead, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x10000000}}}]}, {0x3}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bind$inet(r2, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57) sendmsg$xdp(r2, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) recvmmsg(r2, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/11, 0xb}}], 0x5df, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000003180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x10001, 0xf84, 0x3}, 0x1c) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x4c, 0x3d, 0x107, 0x0, 0x0, {0x4, 0x7c}, [@nested={0x4, 0x8}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x28, 0x2, 0x0, 0x1, [@typed={0x24, 0x14, 0x0, 0x0, @str='B\xa7\xed\x1a\x064!\x89(c\f\x8d\xf6\xfd\x03\xd1\xd4\xbb\xb7\x1f\xd6P\xf6\v{\x83\xea\n\xd0\x11_6'}]}]}, 0x4c}}, 0xc000) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000001800), 0xffffffffffffffff) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x4, &(0x7f0000000100)=@framed={{}, [@ldst={0x3, 0x0, 0x6, 0x0, 0xa, 0x0, 0x51}]}, &(0x7f0000000000)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) sendmsg$TIPC_NL_NET_SET(r7, &(0x7f0000001880)={0x0, 0x0, &(0x7f0000001840)={&(0x7f00000019c0)={0x24, r8, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x4}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x7}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x85}, 0x0) fcntl$addseals(r7, 0x409, 0x8) 1.239473019s ago: executing program 3 (id=548): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="2ae698966a9476f58ddd5fdc414c1b5208d37baf3d418554e9f6316566bf8ffae88f49b26e7a44d98364ad30a35f0d3905e7dc1b80b175603aed33f780a3c0e3467bc7d28f0f82b35565634a47076a57675f1e3b6b1c5b5795103d1f574068a6275e05bfada43537cce36d471ee88491003dbd23416cb879688d2b6089084dd7db63cff8b0a1a2d565690cc82b39757355811f1fa8589b41732999d98dc9f350583de751cd55"], 0x7c}, 0x1, 0x0, 0x0, 0x4040890}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01050000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0) syz_emit_ethernet(0x32, &(0x7f0000000140)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x19}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x65, 0x0, 0x0, 0x3a, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty}, {0x8000, 0x4e21, 0x10, 0x0, @gue={{0x2, 0x0, 0x3, 0x0, 0x100}}}}}}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) r3 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, 0x0, 0xc0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) shmat(0x0, &(0x7f00003e8000/0x1000)=nil, 0x4000) r6 = syz_open_dev$vim2m(&(0x7f0000000000), 0x9, 0x2) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$nbd(&(0x7f0000000000), 0xffffffffffffffff) r9 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x200) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$NBD_SET_SOCK(r9, 0xab00, r10) r11 = dup3(r9, r6, 0x80000) ioctl$NBD_DO_IT(r11, 0xab03) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, r8, 0x1, 0x70bd2b, 0x8, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}}, 0x20000004) socket$tipc(0x1e, 0x5, 0x0) 1.239203704s ago: executing program 2 (id=549): socket$igmp6(0xa, 0x3, 0x2) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) pread64(0xffffffffffffffff, 0x0, 0x0, 0x1) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x7, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) mkdirat(r3, &(0x7f0000000040)='./file0\x00', 0x0) landlock_restrict_self(0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x16, 0x4a, &(0x7f0000000000), &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @flow_dissector, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket$inet_udp(0x2, 0x2, 0x0) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=ANY=[@ANYBLOB="400000001000010429bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="2b030000000000002000128008000100677470001400028008000100", @ANYRES32=r5, @ANYBLOB="08000200", @ANYRES32, @ANYBLOB="eae3e27f33d590e0712a5eede19c9b92ab86b7b60380177c28c3382e4c22ec45a7c261884383b59015163502446a1b6e7875a68c051fb98b4af9ddf5bc993873408d75b72bebea6ef573799f61dbad990827f0d52b42d9ae20a68ef6e568ae9ce4c75473b164507eefd6901d943ce1"], 0x40}}, 0x0) socket$packet(0x11, 0x2, 0x300) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000400)='./file1\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x2000000, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) creat(&(0x7f0000000440)='./file0\x00', 0xc8) 529.017954ms ago: executing program 0 (id=550): openat$mixer(0xffffff9c, 0x0, 0x40a400, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x20002) syz_emit_vhci(&(0x7f0000000280)=@HCI_EVENT_PKT={0x4, @hci_ev_auth_complete={{0x6, 0x3}, {0x3b, 0xc9}}}, 0x6) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x4) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x14, &(0x7f00000000c0)=0x100000001, 0x4) sendto$inet(0xffffffffffffffff, &(0x7f0000000200)="e1", 0xfea8, 0x0, 0x0, 0x0) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x7ffff041, 0x1200000000000000) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000008c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000080)="3a173357f297c605804ab3828443", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 361.53849ms ago: executing program 3 (id=551): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000012ab10000000000000000000000000a20000000000a05000000000000000000010000000900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a300000000050000000060a01040000000000000000010000000800"], 0xc4}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140)) syz_genetlink_get_family_id$batadv(&(0x7f0000000200), 0xffffffffffffffff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000000)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mknod$loop(&(0x7f0000000140)='./file0\x00', 0x20, 0x0) r3 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0) ioctl$IOC_PR_PREEMPT(r3, 0x40046109, &(0x7f0000000200)={0xf0, 0x0, 0x2, 0x1}) ioctl$CEC_S_MODE(r3, 0x40046109, &(0x7f0000000040)=0xd0) sched_setscheduler(0x0, 0x5, &(0x7f000000d380)) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000980)=@acquire={0x1a8, 0x17, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @in=@dev, {@in=@broadcast, @in=@multicast2}, {{@in=@broadcast, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x3c, 0x0, 0xffffffffffffffff}}, 0x7, 0xfff}, [@tmpl={0x84, 0x5, [{{@in6=@ipv4={'\x00', '\xff\xff', @private}, 0x0, 0x33}, 0x0, @in=@multicast2}, {{@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x0, 0x32}, 0x0, @in6=@dev}]}]}, 0x1a8}}, 0x0) write$FUSE_CREATE_OPEN(0xffffffffffffffff, 0x0, 0x0) mount(&(0x7f0000000100)=@nullb, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='iso9660\x00', 0x0, 0x0) (fail_nth: 10) 113.948263ms ago: executing program 1 (id=552): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000002c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xf, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000040)=0xfffffffe, 0x4) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000080)=0x6, 0x4) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0) syz_open_dev$vcsu(&(0x7f0000000280), 0xea47, 0x40881) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) mbind(&(0x7f00001fa000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0) ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2284, &(0x7f0000000080)) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) r3 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/59, 0x304000, 0x1000, 0x0, 0x3}, 0x1c) madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) ioctl$SNDCTL_DSP_SPEED(r4, 0xc0045002, &(0x7f0000000000)=0x7fffffff) 113.605764ms ago: executing program 0 (id=553): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000002c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xf, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000040)=0xfffffffe, 0x4) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000080)=0x6, 0x4) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0) syz_open_dev$vcsu(&(0x7f0000000280), 0xea47, 0x40881) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) mbind(&(0x7f00001fa000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0) ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2284, &(0x7f0000000080)) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) r3 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/59, 0x304000, 0x1000, 0x0, 0x3}, 0x1c) madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) ioctl$SNDCTL_DSP_SPEED(r4, 0xc0045002, &(0x7f0000000000)=0x7fffffff) 66.29586ms ago: executing program 2 (id=554): r0 = open(&(0x7f0000002240)='./file0\x00', 0x0, 0x0) (async) r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/ptype\x00') read$msr(r1, &(0x7f0000000040)=""/59, 0xffb5) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x5) (async) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_UNIMAP(r2, 0x4b66, &(0x7f00000000c0)={0x0, 0x0}) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000022c0), 0x2, 0x0) (async) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x38, &(0x7f0000000040)={&(0x7f0000000300)=@getqdisc={0x0, 0x26, 0x100, 0x70bd28, 0x25dfdbfa, {0x0, 0x0, 0x0, 0x0, {0xfff3, 0xa}, {0x10}, {0x3, 0xb}}, [{}, {}, {}, {}, {}, {}, {}, {}]}, 0xe0}, 0x1, 0x0, 0x0, 0x800d4}, 0x0) (async) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() (async) r5 = socket$inet6(0xa, 0x3, 0x2c) setsockopt$inet6_int(r5, 0x29, 0x11, 0x0, 0x0) (async) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async) sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, r3, 0xffffd000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async) r8 = openat$6lowpan_enable(0xffffff9c, &(0x7f00000000c0), 0x2, 0x0) write$6lowpan_enable(r8, 0x0, 0x0) (async) socket$tipc(0x1e, 0x5, 0x0) (async) r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000400), 0x400, 0x0) ioctl$sock_SIOCADDDLCI(r9, 0x5452, &(0x7f0000000100)={'veth1\x00'}) (async) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101}) syz_open_dev$tty20(0xc, 0x4, 0x0) (async) r10 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=ANY=[@ANYBLOB="0a00000004000000070000000900000000000000", @ANYRES32, @ANYBLOB="00800000000000000000eeffffff000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000900)=ANY=[@ANYBLOB="1803000000000000000000000000000018120000", @ANYRES32=r10, @ANYBLOB="0000000000060000850000001b0000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 0s ago: executing program 2 (id=555): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f00000001c0)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0) r1 = socket$phonet(0x23, 0x2, 0x1) sendto$phonet(r1, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x23, 0x26, 0xfd, 0x1}, 0x10) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) r5 = socket(0x10, 0x803, 0x0) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r7 = socket(0x400000000010, 0x3, 0x0) r8 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0) r10 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001300)=@newtfilter={0x40, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r11, {0xa, 0xa}, {}, {0x7, 0xb}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_FLAGS={0x8, 0x3, 0x1}]}}]}, 0x40}}, 0x400c084) r12 = socket$inet_dccp(0x2, 0x6, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r12, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)={0x28, r4, 0x1, 0x70bd2d, 0x25dfdbfa, {{}, {@val={0x8, 0x3, r13}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME={0x6, 0xd, 0x2}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x840}, 0x48000) ioctl$sock_SIOCETHTOOL(r2, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000100)=@ethtool_ringparam={0x8}}) kernel console output (not intermixed with test programs): rk [ 45.705870][ T5949] veth0_vlan: entered promiscuous mode [ 45.710254][ T5949] veth1_vlan: entered promiscuous mode [ 45.721581][ T5947] veth0_vlan: entered promiscuous mode [ 45.728420][ T5947] veth1_vlan: entered promiscuous mode [ 45.733869][ T5949] veth0_macvtap: entered promiscuous mode [ 45.737316][ T5949] veth1_macvtap: entered promiscuous mode [ 45.743189][ T5956] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.757810][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.765943][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.769393][ T5947] veth0_macvtap: entered promiscuous mode [ 45.772450][ T5947] veth1_macvtap: entered promiscuous mode [ 45.778195][ T5949] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.781392][ T5949] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.785646][ T5949] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.788852][ T5949] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.808974][ T5947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.812896][ T5947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.817964][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.830956][ T5947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.834819][ T5947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.838975][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.842320][ T5956] veth0_vlan: entered promiscuous mode [ 45.855365][ T5956] veth1_vlan: entered promiscuous mode [ 45.861225][ T5948] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.864232][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.864390][ T5947] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.866534][ T5947] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.869248][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.871523][ T5947] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.877224][ T5947] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.913693][ T5948] veth0_vlan: entered promiscuous mode [ 45.913817][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.918139][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.922723][ T5956] veth0_macvtap: entered promiscuous mode [ 45.928999][ T5948] veth1_vlan: entered promiscuous mode [ 45.933356][ T5956] veth1_macvtap: entered promiscuous mode [ 45.956468][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.957174][ T1182] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.960470][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.962627][ T1182] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.967717][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.972121][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.977447][ T5956] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.978945][ T5949] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 46.000598][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.003815][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.006841][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.010192][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.013511][ T5956] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 46.016837][ T5956] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.019420][ T5956] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.021888][ T5956] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.024586][ T5956] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.029863][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.032933][ T5948] veth0_macvtap: entered promiscuous mode [ 46.033140][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.035966][ T5948] veth1_macvtap: entered promiscuous mode [ 46.048675][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.051890][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.054818][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.057882][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.060937][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.063757][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.067074][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 46.074697][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.077628][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.080373][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.083240][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.086145][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.089003][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.092199][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 46.101012][ T5948] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.103632][ T5948] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.106335][ T5948] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.108754][ T5948] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.118959][ T237] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.121324][ T237] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.134258][ T6015] FAULT_INJECTION: forcing a failure. [ 46.134258][ T6015] name failslab, interval 1, probability 0, space 0, times 1 [ 46.135304][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.135315][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.137690][ T6015] CPU: 2 UID: 0 PID: 6015 Comm: syz.3.4 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 46.137704][ T6015] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 46.137710][ T6015] Call Trace: [ 46.137713][ T6015] [ 46.137717][ T6015] dump_stack_lvl+0x16c/0x1f0 [ 46.137732][ T6015] should_fail_ex+0x512/0x640 [ 46.137743][ T6015] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 46.137759][ T6015] should_failslab+0xc2/0x120 [ 46.137774][ T6015] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 46.137788][ T6015] ? __alloc_skb+0x2b2/0x380 [ 46.137802][ T6015] __alloc_skb+0x2b2/0x380 [ 46.137814][ T6015] ? __pfx___alloc_skb+0x10/0x10 [ 46.137828][ T6015] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 46.137842][ T6015] netlink_alloc_large_skb+0x69/0x130 [ 46.137855][ T6015] netlink_sendmsg+0x694/0xd70 [ 46.137868][ T6015] ? __pfx_netlink_sendmsg+0x10/0x10 [ 46.137881][ T6015] ? __import_iovec+0x1c8/0x660 [ 46.137895][ T6015] ____sys_sendmsg+0xa8d/0xc60 [ 46.137905][ T6015] ? __pfx_____sys_sendmsg+0x10/0x10 [ 46.137914][ T6015] ? get_compat_msghdr+0x11a/0x170 [ 46.137928][ T6015] ___sys_sendmsg+0x134/0x1d0 [ 46.137942][ T6015] ? __pfx____sys_sendmsg+0x10/0x10 [ 46.137965][ T6015] __sys_sendmsg+0x16d/0x220 [ 46.137978][ T6015] ? __pfx___sys_sendmsg+0x10/0x10 [ 46.137993][ T6015] ? rcu_is_watching+0x12/0xc0 [ 46.138005][ T6015] ? rcu_is_watching+0x12/0xc0 [ 46.138015][ T6015] __do_fast_syscall_32+0x73/0x120 [ 46.138028][ T6015] do_fast_syscall_32+0x32/0x80 [ 46.138041][ T6015] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 46.138054][ T6015] RIP: 0023:0xf73ae579 [ 46.138062][ T6015] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 46.138071][ T6015] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 46.138081][ T6015] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000340 [ 46.138098][ T6015] RDX: 0000000000040044 RSI: 0000000000000000 RDI: 0000000000000000 [ 46.138103][ T6015] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 46.138108][ T6015] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 46.138113][ T6015] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 46.138123][ T6015] [ 46.165457][ T5953] Bluetooth: hci3: command tx timeout [ 46.174680][ T67] Bluetooth: hci2: command tx timeout [ 46.178194][ T6017] virt_wifi0 speed is unknown, defaulting to 1000 [ 46.180477][ T237] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.217422][ T237] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.221080][ T6017] virt_wifi0 speed is unknown, defaulting to 1000 [ 46.224764][ T6017] virt_wifi0 speed is unknown, defaulting to 1000 [ 46.226795][ T237] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.228584][ T6017] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 46.229757][ T237] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.233059][ T6017] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 46.241141][ T6017] virt_wifi0 speed is unknown, defaulting to 1000 [ 46.243716][ T6017] virt_wifi0 speed is unknown, defaulting to 1000 [ 46.245922][ T5953] Bluetooth: hci1: command tx timeout [ 46.246200][ T6017] virt_wifi0 speed is unknown, defaulting to 1000 [ 46.247834][ T5953] Bluetooth: hci0: command tx timeout [ 46.249674][ T6017] virt_wifi0 speed is unknown, defaulting to 1000 [ 46.294047][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 46.299508][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 46.304086][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 46.511045][ T6034] FAULT_INJECTION: forcing a failure. [ 46.511045][ T6034] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 46.516010][ T6034] CPU: 1 UID: 0 PID: 6034 Comm: syz.2.7 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 46.516046][ T6034] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 46.516056][ T6034] Call Trace: [ 46.516061][ T6034] [ 46.516067][ T6034] dump_stack_lvl+0x16c/0x1f0 [ 46.516093][ T6034] should_fail_ex+0x512/0x640 [ 46.516114][ T6034] _copy_from_user+0x2e/0xd0 [ 46.516134][ T6034] snd_seq_oss_write+0x397/0x7d0 [ 46.516156][ T6034] ? __pfx_snd_seq_oss_write+0x10/0x10 [ 46.516176][ T6034] ? apparmor_file_permission+0x251/0x400 [ 46.516198][ T6034] ? bpf_lsm_file_permission+0x9/0x10 [ 46.516224][ T6034] odev_write+0x51/0xa0 [ 46.516249][ T6034] vfs_write+0x25c/0x1180 [ 46.516270][ T6034] ? __pfx_odev_write+0x10/0x10 [ 46.516297][ T6034] ? __pfx_vfs_write+0x10/0x10 [ 46.516316][ T6034] ? find_held_lock+0x2b/0x80 [ 46.516333][ T6034] ? __fget_files+0x204/0x3c0 [ 46.516358][ T6034] ? __fget_files+0x20e/0x3c0 [ 46.516385][ T6034] ksys_write+0x12a/0x240 [ 46.516405][ T6034] ? __pfx_ksys_write+0x10/0x10 [ 46.516428][ T6034] ? rcu_is_watching+0x12/0xc0 [ 46.516452][ T6034] __do_fast_syscall_32+0x73/0x120 [ 46.516475][ T6034] do_fast_syscall_32+0x32/0x80 [ 46.516496][ T6034] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 46.516516][ T6034] RIP: 0023:0xf7faf579 [ 46.516530][ T6034] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 46.516546][ T6034] RSP: 002b:00000000f509455c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 46.516562][ T6034] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000340 [ 46.516573][ T6034] RDX: 0000000000000230 RSI: 0000000000000000 RDI: 0000000000000000 [ 46.516582][ T6034] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 46.516591][ T6034] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 46.516600][ T6034] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 46.516617][ T6034] [ 46.734211][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 46.736488][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 46.934263][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 46.937798][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.034650][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.104185][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.110288][ T40] audit: type=1804 audit(1742962350.440:2): pid=6040 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm=6C2586CE36DB0CCF197CC94F7FCE8F name="/newroot/1/file0" dev="tmpfs" ino=23 res=1 errno=0 [ 47.264491][ T6044] IPVS: length: 210 != 24 [ 47.284424][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.517254][ T6055] FAULT_INJECTION: forcing a failure. [ 47.517254][ T6055] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 47.521182][ T6055] CPU: 0 UID: 0 PID: 6055 Comm: syz.0.14 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 47.521203][ T6055] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 47.521212][ T6055] Call Trace: [ 47.521217][ T6055] [ 47.521223][ T6055] dump_stack_lvl+0x16c/0x1f0 [ 47.521253][ T6055] should_fail_ex+0x512/0x640 [ 47.521271][ T6055] _copy_from_user+0x2e/0xd0 [ 47.521290][ T6055] kvm_dev_ioctl_get_cpuid+0x43f/0x700 [ 47.521311][ T6055] ? __might_fault+0xe3/0x190 [ 47.521325][ T6055] ? __pfx_kvm_dev_ioctl_get_cpuid+0x10/0x10 [ 47.521346][ T6055] kvm_arch_dev_ioctl+0x424/0x750 [ 47.521364][ T6055] ? __pfx_kvm_arch_dev_ioctl+0x10/0x10 [ 47.521382][ T6055] ? do_vfs_ioctl+0x512/0x1990 [ 47.521402][ T6055] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 47.521424][ T6055] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 47.521449][ T6055] kvm_dev_ioctl+0x787/0x1ad0 [ 47.521470][ T6055] ? find_held_lock+0x2b/0x80 [ 47.521487][ T6055] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 47.521506][ T6055] ? __fget_files+0x20e/0x3c0 [ 47.521530][ T6055] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 47.521548][ T6055] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 47.521567][ T6055] __do_fast_syscall_32+0x73/0x120 [ 47.521589][ T6055] do_fast_syscall_32+0x32/0x80 [ 47.521609][ T6055] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 47.521628][ T6055] RIP: 0023:0xf7f53579 [ 47.521640][ T6055] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 47.521655][ T6055] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 47.521670][ T6055] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000c008ae09 [ 47.521679][ T6055] RDX: 0000000080000280 RSI: 0000000000000000 RDI: 0000000000000000 [ 47.521687][ T6055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 47.521695][ T6055] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 47.521704][ T6055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 47.521719][ T6055] [ 47.779277][ T6066] Zero length message leads to an empty skb [ 48.247258][ T67] Bluetooth: hci3: command tx timeout [ 48.247528][ T5953] Bluetooth: hci2: command tx timeout [ 48.324056][ T5953] Bluetooth: hci0: command tx timeout [ 48.324838][ T67] Bluetooth: hci1: command tx timeout [ 48.823490][ T6105] FAULT_INJECTION: forcing a failure. [ 48.823490][ T6105] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 48.834230][ T6105] CPU: 0 UID: 0 PID: 6105 Comm: syz.2.31 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 48.834250][ T6105] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 48.834256][ T6105] Call Trace: [ 48.834259][ T6105] [ 48.834263][ T6105] dump_stack_lvl+0x16c/0x1f0 [ 48.834280][ T6105] should_fail_ex+0x512/0x640 [ 48.834292][ T6105] _copy_to_user+0x32/0xd0 [ 48.834304][ T6105] do_vfs_ioctl+0x13d1/0x1990 [ 48.834317][ T6105] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 48.834333][ T6105] ? find_held_lock+0x2b/0x80 [ 48.834346][ T6105] ? __fget_files+0x20e/0x3c0 [ 48.834362][ T6105] __do_compat_sys_ioctl+0x148/0x2c0 [ 48.834374][ T6105] __do_fast_syscall_32+0x73/0x120 [ 48.834388][ T6105] do_fast_syscall_32+0x32/0x80 [ 48.834421][ T6105] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 48.834433][ T6105] RIP: 0023:0xf7faf579 [ 48.834441][ T6105] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 48.834450][ T6105] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 48.834460][ T6105] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c0189436 [ 48.834466][ T6105] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000 [ 48.834471][ T6105] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 48.834476][ T6105] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 48.834481][ T6105] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 48.834491][ T6105] [ 48.920909][ T6109] netlink: 'syz.1.33': attribute type 7 has an invalid length. [ 48.927532][ T6111] netlink: 8 bytes leftover after parsing attributes in process `syz.2.34'. [ 48.974771][ T6107] virt_wifi0 speed is unknown, defaulting to 1000 [ 49.368569][ T40] audit: type=1800 audit(1742962352.700:3): pid=6123 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.37" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 49.648157][ T6126] netlink: 4 bytes leftover after parsing attributes in process `syz.1.37'. [ 49.652033][ T6126] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 49.655528][ T6126] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 49.671444][ T6126] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 49.675854][ T6126] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 49.813767][ T6129] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 50.194539][ T29] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 50.334022][ T5953] Bluetooth: hci2: command tx timeout [ 50.334883][ T67] Bluetooth: hci3: command tx timeout [ 50.414090][ T67] Bluetooth: hci1: command tx timeout [ 50.415716][ T67] Bluetooth: hci0: command tx timeout [ 50.472043][ T29] usb 5-1: Using ep0 maxpacket: 16 [ 50.479160][ T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 50.482100][ T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 50.484956][ T29] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 50.488412][ T29] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 50.490869][ T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 50.676805][ T29] usb 5-1: config 0 descriptor?? [ 50.679704][ T6141] netlink: 20 bytes leftover after parsing attributes in process `syz.2.41'. [ 50.684683][ T6141] netlink: 20 bytes leftover after parsing attributes in process `syz.2.41'. [ 51.205759][ T29] shield 0003:0955:7214.0002: unknown main item tag 0x0 [ 51.208180][ T29] shield 0003:0955:7214.0002: unknown main item tag 0x0 [ 51.210683][ T29] shield 0003:0955:7214.0002: unknown main item tag 0x0 [ 51.212639][ T29] shield 0003:0955:7214.0002: unknown main item tag 0x0 [ 51.215140][ T29] shield 0003:0955:7214.0002: unknown main item tag 0x0 [ 51.219236][ T29] input: HID 0955:7214 Haptics as /devices/virtual/input/input5 [ 51.230634][ T29] shield 0003:0955:7214.0002: Registered Thunderstrike controller [ 51.266144][ T29] shield 0003:0955:7214.0002: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.0-1/input0 [ 51.403228][ T6125] random: crng reseeded on system resumption [ 52.287350][ T1323] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -ESHUTDOWN [ 52.293032][ T1323] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 52.297379][ T1323] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 52.300920][ T1323] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 52.404041][ T5953] Bluetooth: hci2: command tx timeout [ 52.405662][ T5953] Bluetooth: hci3: command tx timeout [ 52.415735][ T29] usb 5-1: reset high-speed USB device number 2 using dummy_hcd [ 52.484040][ T67] Bluetooth: hci0: command tx timeout [ 52.484227][ T5953] Bluetooth: hci1: command tx timeout [ 52.696561][ T29] usb 5-1: device descriptor read/64, error -32 [ 52.978134][ T6188] FAULT_INJECTION: forcing a failure. [ 52.978134][ T6188] name failslab, interval 1, probability 0, space 0, times 0 [ 52.981692][ T6188] CPU: 1 UID: 0 PID: 6188 Comm: syz.3.53 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 52.981716][ T6188] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 52.981722][ T6188] Call Trace: [ 52.981726][ T6188] [ 52.981731][ T6188] dump_stack_lvl+0x16c/0x1f0 [ 52.981747][ T6188] should_fail_ex+0x512/0x640 [ 52.981758][ T6188] ? __kmalloc_noprof+0xbf/0x510 [ 52.981773][ T6188] ? lsm_blob_alloc+0x68/0x90 [ 52.981784][ T6188] should_failslab+0xc2/0x120 [ 52.981799][ T6188] __kmalloc_noprof+0xd2/0x510 [ 52.981814][ T6188] lsm_blob_alloc+0x68/0x90 [ 52.981824][ T6188] security_sk_alloc+0x30/0x270 [ 52.981836][ T6188] sk_prot_alloc+0x1c7/0x2a0 [ 52.981846][ T6188] sk_alloc+0x36/0xc20 [ 52.981859][ T6188] bpf_prog_test_run_skb+0x330/0x2280 [ 52.981872][ T6188] ? __fget_files+0x204/0x3c0 [ 52.981886][ T6188] ? __fget_files+0x20e/0x3c0 [ 52.981899][ T6188] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 52.981912][ T6188] ? fput+0x70/0xf0 [ 52.981922][ T6188] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 52.981934][ T6188] __sys_bpf+0x141f/0x4c80 [ 52.981948][ T6188] ? __switch_to+0x749/0x1170 [ 52.981961][ T6188] ? __pfx___sys_bpf+0x10/0x10 [ 52.981974][ T6188] ? __schedule+0x1131/0x5c00 [ 52.981985][ T6188] ? ksys_write+0x190/0x240 [ 52.982004][ T6188] ? fput+0x70/0xf0 [ 52.982012][ T6188] ? ksys_write+0x1b9/0x240 [ 52.982027][ T6188] __ia32_sys_bpf+0x76/0xe0 [ 52.982042][ T6188] __do_fast_syscall_32+0x73/0x120 [ 52.982055][ T6188] do_fast_syscall_32+0x32/0x80 [ 52.982068][ T6188] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 52.982081][ T6188] RIP: 0023:0xf73ae579 [ 52.982088][ T6188] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 52.982098][ T6188] RSP: 002b:00000000f4ff455c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 52.982107][ T6188] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000240 [ 52.982113][ T6188] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000 [ 52.982118][ T6188] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 52.982124][ T6188] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 52.982129][ T6188] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 52.982138][ T6188] [ 52.992690][ T6189] pim6reg: entered allmulticast mode [ 53.849929][ T1323] usb 5-1: USB disconnect, device number 2 [ 54.564618][ T5953] Bluetooth: hci1: command tx timeout [ 54.715892][ T6218] block nbd1: NBD_DISCONNECT [ 54.718118][ T6218] block nbd1: Disconnected due to user request. [ 54.720948][ T6218] block nbd1: shutting down sockets [ 54.799029][ T6217] openvswitch: netlink: Actions may not be safe on all matching packets [ 56.378189][ T40] audit: type=1326 audit(1742962871.711:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6235 comm="syz.1.68" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 56.383638][ T6251] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 56.385355][ T40] audit: type=1326 audit(1742962871.711:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6235 comm="syz.1.68" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 56.675501][ T40] audit: type=1326 audit(1742962871.711:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6235 comm="syz.1.68" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 56.683947][ T40] audit: type=1326 audit(1742962871.711:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6235 comm="syz.1.68" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 56.689660][ T40] audit: type=1326 audit(1742962871.711:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6235 comm="syz.1.68" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 56.701443][ T40] audit: type=1326 audit(1742962871.711:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6235 comm="syz.1.68" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 56.711550][ T40] audit: type=1326 audit(1742962871.721:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6235 comm="syz.1.68" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 56.721741][ T40] audit: type=1326 audit(1742962871.721:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6235 comm="syz.1.68" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 56.731848][ T40] audit: type=1326 audit(1742962871.721:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6235 comm="syz.1.68" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 56.739889][ T40] audit: type=1326 audit(1742962871.721:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6235 comm="syz.1.68" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 57.602140][ T6264] netlink: 16 bytes leftover after parsing attributes in process `syz.0.75'. [ 58.601724][ T6288] netlink: 12 bytes leftover after parsing attributes in process `syz.0.83'. [ 58.875188][ T6292] block nbd2: NBD_DISCONNECT [ 58.877396][ T6292] block nbd2: Disconnected due to user request. [ 58.879230][ T6292] block nbd2: shutting down sockets [ 58.944040][ T29] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 59.044016][ T67] Bluetooth: hci3: command 0x0405 tx timeout [ 59.151644][ T6296] openvswitch: netlink: Actions may not be safe on all matching packets [ 59.534496][ T29] usb 5-1: Using ep0 maxpacket: 32 [ 59.543949][ T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 59.546953][ T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 59.549601][ T29] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 59.552022][ T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 59.575745][ T29] usb 5-1: config 0 descriptor?? [ 60.009234][ T29] savu 0003:1E7D:2D5A.0003: hiddev0,hidraw1: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0 [ 60.076571][ T6312] block nbd1: NBD_DISCONNECT [ 60.078018][ T6312] block nbd1: Disconnected due to user request. [ 60.080265][ T6312] block nbd1: shutting down sockets [ 60.252098][ T6288] virt_wifi0 speed is unknown, defaulting to 1000 [ 60.278564][ T6288] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 60.286710][ T6008] usb 5-1: USB disconnect, device number 3 [ 61.583664][ T6347] openvswitch: netlink: Actions may not be safe on all matching packets [ 61.713361][ T6342] FAULT_INJECTION: forcing a failure. [ 61.713361][ T6342] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 61.722409][ T6342] CPU: 3 UID: 0 PID: 6342 Comm: syz.2.101 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 61.722431][ T6342] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 61.722441][ T6342] Call Trace: [ 61.722446][ T6342] [ 61.722452][ T6342] dump_stack_lvl+0x16c/0x1f0 [ 61.722478][ T6342] should_fail_ex+0x512/0x640 [ 61.722495][ T6342] _copy_to_user+0x32/0xd0 [ 61.722515][ T6342] simple_read_from_buffer+0xe0/0x170 [ 61.722535][ T6342] proc_fail_nth_read+0x197/0x270 [ 61.722556][ T6342] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 61.722575][ T6342] ? rw_verify_area+0xcf/0x680 [ 61.722592][ T6342] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 61.722610][ T6342] vfs_read+0x1de/0xc70 [ 61.722629][ T6342] ? fdget_pos+0x2a2/0x370 [ 61.722650][ T6342] ? __pfx___mutex_lock+0x10/0x10 [ 61.722669][ T6342] ? __pfx_vfs_read+0x10/0x10 [ 61.722692][ T6342] ? __fget_files+0x20e/0x3c0 [ 61.722715][ T6342] ksys_read+0x12a/0x240 [ 61.722733][ T6342] ? __pfx_ksys_read+0x10/0x10 [ 61.722752][ T6342] ? rcu_is_watching+0x12/0xc0 [ 61.722770][ T6342] __do_fast_syscall_32+0x73/0x120 [ 61.722791][ T6342] do_fast_syscall_32+0x32/0x80 [ 61.722809][ T6342] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 61.722827][ T6342] RIP: 0023:0xf7faf579 [ 61.722838][ T6342] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 61.722852][ T6342] RSP: 002b:00000000f50d6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 61.722866][ T6342] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f50d6620 [ 61.722875][ T6342] RDX: 000000000000000f RSI: 00000000f743cff4 RDI: 0000000000000000 [ 61.722884][ T6342] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 61.722893][ T6342] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 61.722901][ T6342] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 61.722916][ T6342] [ 62.788904][ T6363] netlink: 12 bytes leftover after parsing attributes in process `syz.0.106'. [ 62.990967][ T6369] warning: `syz.2.109' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 63.033969][ T1017] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 63.194054][ T1017] usb 5-1: Using ep0 maxpacket: 32 [ 63.198199][ T1017] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 63.201285][ T1017] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 63.208469][ T1017] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 63.210980][ T1017] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 63.216547][ T1017] usb 5-1: config 0 descriptor?? [ 63.454955][ T6376] process 'syz.3.110' launched './file1' with NULL argv: empty string added [ 63.627945][ T1017] savu 0003:1E7D:2D5A.0004: hiddev0,hidraw1: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0 [ 63.892461][ T6387] openvswitch: netlink: Actions may not be safe on all matching packets [ 63.896979][ T6363] virt_wifi0 speed is unknown, defaulting to 1000 [ 63.939177][ T6363] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 63.950961][ T1017] usb 5-1: USB disconnect, device number 4 [ 64.297038][ T6395] syz.1.115 uses obsolete (PF_INET,SOCK_PACKET) [ 64.564808][ T67] Bluetooth: hci0: command 0x0406 tx timeout [ 64.820637][ T6405] block nbd1: NBD_DISCONNECT [ 64.823061][ T6405] block nbd1: Disconnected due to user request. [ 64.825053][ T6405] block nbd1: shutting down sockets [ 65.616776][ T6424] netlink: 28 bytes leftover after parsing attributes in process `syz.1.123'. [ 65.699194][ T6428] netlink: 188 bytes leftover after parsing attributes in process `syz.0.125'. [ 65.701814][ T6428] netlink: 'syz.0.125': attribute type 1 has an invalid length. [ 65.838295][ T6434] netlink: 4 bytes leftover after parsing attributes in process `syz.3.127'. [ 65.838784][ T40] kauditd_printk_skb: 104 callbacks suppressed [ 65.838794][ T40] audit: type=1326 audit(1742963393.163:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6427 comm="syz.0.125" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x0 [ 65.971060][ T6444] block nbd1: NBD_DISCONNECT [ 65.972568][ T6444] block nbd1: Disconnected due to user request. [ 65.974897][ T6444] block nbd1: shutting down sockets [ 66.628163][ T6481] FAULT_INJECTION: forcing a failure. [ 66.628163][ T6481] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 66.632604][ T6481] CPU: 3 UID: 0 PID: 6481 Comm: ¡ Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 66.632618][ T6481] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 66.632624][ T6481] Call Trace: [ 66.632627][ T6481] [ 66.632632][ T6481] dump_stack_lvl+0x16c/0x1f0 [ 66.632649][ T6481] should_fail_ex+0x512/0x640 [ 66.632661][ T6481] _copy_to_user+0x32/0xd0 [ 66.632675][ T6481] simple_read_from_buffer+0xe0/0x170 [ 66.632696][ T6481] proc_fail_nth_read+0x197/0x270 [ 66.632716][ T6481] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 66.632736][ T6481] ? rw_verify_area+0xcf/0x680 [ 66.632754][ T6481] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 66.632774][ T6481] vfs_read+0x1de/0xc70 [ 66.632794][ T6481] ? fdget_pos+0x2a2/0x370 [ 66.632817][ T6481] ? __pfx___mutex_lock+0x10/0x10 [ 66.632837][ T6481] ? __pfx_vfs_read+0x10/0x10 [ 66.632860][ T6481] ? __fget_files+0x20e/0x3c0 [ 66.632884][ T6481] ksys_read+0x12a/0x240 [ 66.632903][ T6481] ? __pfx_ksys_read+0x10/0x10 [ 66.632920][ T6481] ? rcu_is_watching+0x12/0xc0 [ 66.632936][ T6481] ? rcu_is_watching+0x12/0xc0 [ 66.632951][ T6481] __do_fast_syscall_32+0x73/0x120 [ 66.632965][ T6481] do_fast_syscall_32+0x32/0x80 [ 66.632978][ T6481] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 66.632991][ T6481] RIP: 0023:0xf7f16579 [ 66.632998][ T6481] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 66.633008][ T6481] RSP: 002b:00000000f5036590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 66.633017][ T6481] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 00000000f5036620 [ 66.633023][ T6481] RDX: 000000000000000f RSI: 00000000f739cff4 RDI: 0000000000000000 [ 66.633028][ T6481] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 66.633033][ T6481] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 66.633039][ T6481] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 66.633048][ T6481] [ 66.702405][ C3] vkms_vblank_simulate: vblank timer overrun [ 66.841254][ T6491] netlink: 'syz.2.145': attribute type 1 has an invalid length. [ 66.868147][ T6491] 8021q: adding VLAN 0 to HW filter on device bond1 [ 66.888538][ T6491] 8021q: adding VLAN 0 to HW filter on device bond1 [ 66.891451][ T6491] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address [ 66.898526][ T6491] bond1: (slave vxcan3): Error -95 calling set_mac_address [ 66.921274][ T6500] sp0: Synchronizing with TNC [ 66.941280][ T6501] ip6erspan0: entered promiscuous mode [ 66.944013][ T6501] bond1: (slave ip6erspan0): making interface the new active one [ 66.946843][ T6501] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link [ 66.960493][ T6503] netlink: 8 bytes leftover after parsing attributes in process `syz.0.148'. [ 67.034918][ T6500] [U] è [ 67.297656][ T6514] block nbd0: NBD_DISCONNECT [ 67.299118][ T6514] block nbd0: Disconnected due to user request. [ 67.301404][ T6514] block nbd0: shutting down sockets [ 67.997001][ T6534] FAULT_INJECTION: forcing a failure. [ 67.997001][ T6534] name failslab, interval 1, probability 0, space 0, times 0 [ 68.001530][ T6534] CPU: 3 UID: 0 PID: 6534 Comm: syz.2.157 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 68.001543][ T6534] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 68.001549][ T6534] Call Trace: [ 68.001553][ T6534] [ 68.001556][ T6534] dump_stack_lvl+0x16c/0x1f0 [ 68.001573][ T6534] should_fail_ex+0x512/0x640 [ 68.001584][ T6534] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 68.001599][ T6534] should_failslab+0xc2/0x120 [ 68.001614][ T6534] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 68.001629][ T6534] ? __d_alloc+0x31/0xaa0 [ 68.001639][ T6534] __d_alloc+0x31/0xaa0 [ 68.001648][ T6534] d_alloc+0x4a/0x1e0 [ 68.001656][ T6534] lookup_one_qstr_excl+0x175/0x260 [ 68.001667][ T6534] ? mnt_want_write+0x161/0x450 [ 68.001679][ T6534] filename_create+0x1e7/0x4a0 [ 68.001692][ T6534] ? __pfx_filename_create+0x10/0x10 [ 68.001705][ T6534] ? find_held_lock+0x2b/0x80 [ 68.001715][ T6534] ? __virt_addr_valid+0x2b4/0x590 [ 68.001730][ T6534] do_linkat+0x184/0x5a0 [ 68.001746][ T6534] ? __pfx_do_linkat+0x10/0x10 [ 68.001761][ T6534] ? strncpy_from_user+0x20a/0x2d0 [ 68.001777][ T6534] ? getname_flags.part.0+0x1c2/0x540 [ 68.001789][ T6534] __ia32_sys_linkat+0xea/0x130 [ 68.001805][ T6534] __do_fast_syscall_32+0x73/0x120 [ 68.001818][ T6534] do_fast_syscall_32+0x32/0x80 [ 68.001831][ T6534] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 68.001844][ T6534] RIP: 0023:0xf7faf579 [ 68.001851][ T6534] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 68.001861][ T6534] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 000000000000012f [ 68.001870][ T6534] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000100 [ 68.001876][ T6534] RDX: 0000000000000005 RSI: 0000000080000240 RDI: 0000000000000000 [ 68.001881][ T6534] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 68.001886][ T6534] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 68.001892][ T6534] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 68.001901][ T6534] [ 68.078325][ C3] vkms_vblank_simulate: vblank timer overrun [ 68.133392][ T6538] netlink: 'syz.2.158': attribute type 3 has an invalid length. [ 68.203579][ T6541] openvswitch: netlink: Actions may not be safe on all matching packets [ 68.786615][ T6553] FAULT_INJECTION: forcing a failure. [ 68.786615][ T6553] name failslab, interval 1, probability 0, space 0, times 0 [ 68.793952][ T6553] CPU: 1 UID: 0 PID: 6553 Comm: syz.3.160 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 68.793968][ T6553] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 68.793974][ T6553] Call Trace: [ 68.793977][ T6553] [ 68.793981][ T6553] dump_stack_lvl+0x16c/0x1f0 [ 68.793998][ T6553] should_fail_ex+0x512/0x640 [ 68.794019][ T6553] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 68.794035][ T6553] should_failslab+0xc2/0x120 [ 68.794051][ T6553] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 68.794064][ T6553] ? d_instantiate+0x77/0x90 [ 68.794073][ T6553] ? alloc_empty_file+0x55/0x1e0 [ 68.794084][ T6553] alloc_empty_file+0x55/0x1e0 [ 68.794093][ T6553] alloc_file_pseudo+0x13a/0x230 [ 68.794103][ T6553] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 68.794115][ T6553] sock_alloc_file+0x50/0x210 [ 68.794132][ T6553] do_accept+0x240/0x530 [ 68.794143][ T6553] ? do_raw_spin_lock+0x12c/0x2b0 [ 68.794158][ T6553] ? __pfx_do_accept+0x10/0x10 [ 68.794174][ T6553] __sys_accept4+0x100/0x1b0 [ 68.794185][ T6553] ? __pfx___sys_accept4+0x10/0x10 [ 68.794196][ T6553] ? __pfx_ksys_write+0x10/0x10 [ 68.794225][ T6553] __ia32_sys_accept4+0x94/0x100 [ 68.794237][ T6553] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 68.794255][ T6553] __do_fast_syscall_32+0x73/0x120 [ 68.794268][ T6553] do_fast_syscall_32+0x32/0x80 [ 68.794281][ T6553] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 68.794294][ T6553] RIP: 0023:0xf73ae579 [ 68.794301][ T6553] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 68.794310][ T6553] RSP: 002b:00000000f4ff455c EFLAGS: 00000296 ORIG_RAX: 000000000000016c [ 68.794320][ T6553] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000300 [ 68.794326][ T6553] RDX: 0000000000000000 RSI: 0000000000000800 RDI: 0000000000000000 [ 68.794331][ T6553] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 68.794337][ T6553] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 68.794342][ T6553] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 68.794351][ T6553] [ 69.164073][ T1017] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 69.314040][ T1017] usb 5-1: Using ep0 maxpacket: 8 [ 69.317217][ T1017] usb 5-1: config index 0 descriptor too short (expected 301, got 45) [ 69.320233][ T1017] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 69.323731][ T1017] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 69.327276][ T1017] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 69.330834][ T1017] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 69.336141][ T1017] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 69.339389][ T1017] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 69.508552][ T6580] FAULT_INJECTION: forcing a failure. [ 69.508552][ T6580] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 69.512333][ T6580] CPU: 1 UID: 0 PID: 6580 Comm: syz.2.170 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 69.512349][ T6580] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 69.512356][ T6580] Call Trace: [ 69.512360][ T6580] [ 69.512365][ T6580] dump_stack_lvl+0x16c/0x1f0 [ 69.512384][ T6580] should_fail_ex+0x512/0x640 [ 69.512397][ T6580] _copy_from_user+0x2e/0xd0 [ 69.512410][ T6580] inet6_compat_ioctl+0xe3/0x360 [ 69.512422][ T6580] ? do_vfs_ioctl+0x512/0x1990 [ 69.512434][ T6580] ? __pfx_inet6_compat_ioctl+0x10/0x10 [ 69.512444][ T6580] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 69.512459][ T6580] ? __pfx_inet6_compat_ioctl+0x10/0x10 [ 69.512470][ T6580] compat_sock_ioctl+0x173/0x7c0 [ 69.512483][ T6580] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 69.512496][ T6580] ? __fget_files+0x20e/0x3c0 [ 69.512512][ T6580] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 69.512524][ T6580] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 69.512537][ T6580] __do_fast_syscall_32+0x73/0x120 [ 69.512552][ T6580] do_fast_syscall_32+0x32/0x80 [ 69.512566][ T6580] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 69.512580][ T6580] RIP: 0023:0xf7faf579 [ 69.512588][ T6580] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 69.512599][ T6580] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 69.512609][ T6580] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000890c [ 69.512615][ T6580] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000 [ 69.512621][ T6580] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 69.512627][ T6580] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 69.512633][ T6580] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 69.512643][ T6580] [ 69.524178][ T24] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 69.586630][ T1017] usb 5-1: GET_CAPABILITIES returned 0 [ 69.588654][ T1017] usbtmc 5-1:16.0: can't read capabilities [ 69.764028][ T24] usb 8-1: Using ep0 maxpacket: 8 [ 69.768083][ T24] usb 8-1: config index 0 descriptor too short (expected 301, got 45) [ 69.770412][ T24] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 69.773139][ T24] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 69.776428][ T24] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 69.781155][ T24] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 69.782373][ T6588] openvswitch: netlink: Actions may not be safe on all matching packets [ 69.788067][ T6145] usb 5-1: USB disconnect, device number 5 [ 69.789210][ T24] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 69.794016][ T24] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 70.009020][ T24] usb 8-1: GET_CAPABILITIES returned 0 [ 70.010628][ T24] usbtmc 8-1:16.0: can't read capabilities [ 70.042925][ T6558] FAULT_INJECTION: forcing a failure. [ 70.042925][ T6558] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 70.047645][ T6558] CPU: 3 UID: 0 PID: 6558 Comm: syz.0.163 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 70.047667][ T6558] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 70.047676][ T6558] Call Trace: [ 70.047681][ T6558] [ 70.047687][ T6558] dump_stack_lvl+0x16c/0x1f0 [ 70.047711][ T6558] should_fail_ex+0x512/0x640 [ 70.047730][ T6558] _copy_from_user+0x2e/0xd0 [ 70.047748][ T6558] memdup_user+0x7d/0xe0 [ 70.047766][ T6558] kvm_vcpu_ioctl+0x2f3/0x1680 [ 70.047789][ T6558] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 70.047811][ T6558] ? tomoyo_path_number_perm+0x18d/0x580 [ 70.047831][ T6558] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 70.047849][ T6558] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 70.047872][ T6558] ? do_vfs_ioctl+0x512/0x1990 [ 70.047889][ T6558] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 70.047917][ T6558] kvm_vcpu_compat_ioctl+0x20f/0x3d0 [ 70.047938][ T6558] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 70.047958][ T6558] ? __fget_files+0x20e/0x3c0 [ 70.047980][ T6558] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 70.048001][ T6558] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 70.048018][ T6558] __do_fast_syscall_32+0x73/0x120 [ 70.048037][ T6558] do_fast_syscall_32+0x32/0x80 [ 70.048055][ T6558] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 70.048072][ T6558] RIP: 0023:0xf7f53579 [ 70.048083][ T6558] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 70.048096][ T6558] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 70.048110][ T6558] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 000000004138ae84 [ 70.048119][ T6558] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 70.048127][ T6558] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 70.048135][ T6558] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 70.048143][ T6558] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 70.048158][ T6558] [ 70.212731][ T24] usb 8-1: USB disconnect, device number 2 [ 70.470213][ T6570] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 70.526748][ T6594] 9pnet_fd: p9_fd_create_tcp (6594): problem connecting socket to 127.0.0.1 [ 70.531484][ T6594] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 70.538951][ T40] audit: type=1326 audit(1742963397.863:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 70.544799][ T40] audit: type=1326 audit(1742963397.863:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 70.544816][ T40] audit: type=1326 audit(1742963397.863:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 70.544831][ T40] audit: type=1326 audit(1742963397.863:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 70.544846][ T40] audit: type=1326 audit(1742963397.863:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 70.544861][ T40] audit: type=1326 audit(1742963397.863:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 70.544876][ T40] audit: type=1326 audit(1742963397.863:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 70.544890][ T40] audit: type=1326 audit(1742963397.863:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 70.544905][ T40] audit: type=1326 audit(1742963397.863:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 70.704978][ T6594] bridge_slave_0: left allmulticast mode [ 70.706941][ T6594] bridge_slave_0: left promiscuous mode [ 70.709674][ T6594] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.723759][ T6594] bridge_slave_1: left allmulticast mode [ 70.725717][ T6601] FAULT_INJECTION: forcing a failure. [ 70.725717][ T6601] name failslab, interval 1, probability 0, space 0, times 0 [ 70.725743][ T6601] CPU: 3 UID: 0 PID: 6601 Comm: syz.0.175 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 70.725761][ T6601] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 70.725770][ T6601] Call Trace: [ 70.725773][ T6601] [ 70.725776][ T6601] dump_stack_lvl+0x16c/0x1f0 [ 70.725793][ T6601] should_fail_ex+0x512/0x640 [ 70.725804][ T6601] ? fs_reclaim_acquire+0xae/0x150 [ 70.725819][ T6601] ? tomoyo_encode2+0x100/0x3e0 [ 70.725839][ T6601] should_failslab+0xc2/0x120 [ 70.725862][ T6601] __kmalloc_noprof+0xd2/0x510 [ 70.725885][ T6601] tomoyo_encode2+0x100/0x3e0 [ 70.725902][ T6601] tomoyo_encode+0x29/0x50 [ 70.725919][ T6601] tomoyo_mount_acl+0x144/0x850 [ 70.725937][ T6601] ? kernel_text_address+0x8d/0x100 [ 70.725953][ T6601] ? __kernel_text_address+0xd/0x40 [ 70.725967][ T6601] ? unwind_get_return_address+0x59/0xa0 [ 70.725985][ T6601] ? arch_stack_walk+0xa6/0x100 [ 70.726003][ T6601] ? __pfx_tomoyo_mount_acl+0x10/0x10 [ 70.726042][ T6601] ? tomoyo_domain+0xbb/0x150 [ 70.726056][ T6601] ? tomoyo_profile+0x47/0x60 [ 70.726072][ T6601] tomoyo_mount_permission+0x16d/0x420 [ 70.726092][ T6601] ? tomoyo_mount_permission+0x14f/0x420 [ 70.726113][ T6601] ? __pfx_tomoyo_mount_permission+0x10/0x10 [ 70.726135][ T6601] ? get_current_fs_domain+0x184/0x1f0 [ 70.726156][ T6601] security_sb_mount+0x9b/0x260 [ 70.726175][ T6601] path_mount+0x128/0x1f30 [ 70.726214][ T6601] ? kmem_cache_free+0x2d4/0x4d0 [ 70.726234][ T6601] ? __pfx_path_mount+0x10/0x10 [ 70.726250][ T6601] ? putname+0x154/0x1a0 [ 70.726265][ T6601] __ia32_sys_mount+0x28b/0x310 [ 70.726279][ T6601] ? __pfx___ia32_sys_mount+0x10/0x10 [ 70.726294][ T6601] ? rcu_is_watching+0x12/0xc0 [ 70.726306][ T6601] __do_fast_syscall_32+0x73/0x120 [ 70.726327][ T6601] do_fast_syscall_32+0x32/0x80 [ 70.726345][ T6601] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 70.726363][ T6601] RIP: 0023:0xf7f53579 [ 70.726374][ T6601] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 70.726388][ T6601] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015 [ 70.726401][ T6601] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 00000000800000c0 [ 70.726407][ T6601] RDX: 0000000080000040 RSI: 0000000000008002 RDI: 0000000000000000 [ 70.726415][ T6601] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 70.726423][ T6601] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 70.726431][ T6601] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 70.726448][ T6601] [ 70.727231][ T1415] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.735860][ T6594] bridge_slave_1: left promiscuous mode [ 70.737795][ T1415] ieee802154 phy1 wpan1: encryption failed: -22 [ 70.738048][ T6594] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.841324][ T6594] bond0: (slave bond_slave_0): Releasing backup interface [ 70.847613][ T6594] bond0: (slave bond_slave_1): Releasing backup interface [ 70.866183][ T6594] team0: Port device team_slave_0 removed [ 70.869805][ T6594] team0: Port device team_slave_1 removed [ 70.875546][ T40] kauditd_printk_skb: 60 callbacks suppressed [ 70.875554][ T40] audit: type=1326 audit(1742963398.203:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f16598 code=0x7ffc0000 [ 70.883474][ T40] audit: type=1326 audit(1742963398.203:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f16598 code=0x7ffc0000 [ 70.889836][ T40] audit: type=1326 audit(1742963398.203:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 70.897821][ T40] audit: type=1326 audit(1742963398.203:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 70.906100][ T40] audit: type=1326 audit(1742963398.213:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f16598 code=0x7ffc0000 [ 70.912272][ T40] audit: type=1326 audit(1742963398.213:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 70.918655][ T40] audit: type=1326 audit(1742963398.223:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f16598 code=0x7ffc0000 [ 70.925005][ T40] audit: type=1326 audit(1742963398.233:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6593 comm="syz.1.173" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 71.065767][ T6616] netlink: 8 bytes leftover after parsing attributes in process `syz.3.181'. [ 71.484943][ T6619] block nbd3: NBD_DISCONNECT [ 71.487775][ T6619] block nbd3: Disconnected due to user request. [ 71.492852][ T6619] block nbd3: shutting down sockets [ 71.686413][ T67] Bluetooth: hci2: command 0x0406 tx timeout [ 71.777381][ T6626] netlink: 'syz.0.183': attribute type 10 has an invalid length. [ 71.790265][ T6626] veth0_vlan: left promiscuous mode [ 71.793155][ T6626] veth0_vlan: entered promiscuous mode [ 71.796748][ T6626] team0: Device veth0_vlan failed to register rx_handler [ 71.850637][ T6630] netlink: 'syz.0.184': attribute type 1 has an invalid length. [ 71.860401][ T6630] 8021q: adding VLAN 0 to HW filter on device bond1 [ 71.875586][ T6630] 8021q: adding VLAN 0 to HW filter on device bond1 [ 71.877605][ T6630] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address [ 71.880919][ T6630] bond1: (slave vxcan3): Error -95 calling set_mac_address [ 72.014293][ T5978] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 72.166476][ T5978] usb 7-1: unable to read config index 0 descriptor/start: -61 [ 72.168706][ T5978] usb 7-1: can't read configurations, error -61 [ 72.293986][ T5978] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 72.445674][ T5978] usb 7-1: unable to read config index 0 descriptor/start: -61 [ 72.448729][ T5978] usb 7-1: can't read configurations, error -61 [ 72.451482][ T5978] usb usb7-port1: attempt power cycle [ 72.794876][ T5978] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 72.816868][ T5978] usb 7-1: unable to read config index 0 descriptor/start: -61 [ 72.820141][ T5978] usb 7-1: can't read configurations, error -61 [ 72.944108][ T5978] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 72.967976][ T5978] usb 7-1: unable to read config index 0 descriptor/start: -61 [ 72.970921][ T5978] usb 7-1: can't read configurations, error -61 [ 72.973603][ T5978] usb usb7-port1: unable to enumerate USB device [ 73.966533][ T6687] block nbd1: NBD_DISCONNECT [ 73.969751][ T6687] block nbd1: Disconnected due to user request. [ 73.973029][ T6687] block nbd1: shutting down sockets [ 74.888759][ T6705] netlink: 16 bytes leftover after parsing attributes in process `syz.0.198'. [ 75.737335][ T6732] netlink: 24 bytes leftover after parsing attributes in process `syz.0.203'. [ 75.974013][ T6145] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 76.104017][ T6145] usb 6-1: device descriptor read/64, error -71 [ 76.293554][ T6739] openvswitch: netlink: Actions may not be safe on all matching packets [ 76.354051][ T6145] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 76.486861][ T6145] usb 6-1: device descriptor read/64, error -71 [ 76.594701][ T6145] usb usb6-port1: attempt power cycle [ 76.934046][ T6145] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 76.955431][ T6145] usb 6-1: device descriptor read/8, error -71 [ 77.204026][ T6145] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 77.236162][ T6145] usb 6-1: device descriptor read/8, error -71 [ 77.279211][ T6755] input: syz1 as /devices/virtual/input/input6 [ 77.354918][ T6145] usb usb6-port1: unable to enumerate USB device [ 77.418015][ T6765] sg_write: process 195 (syz.2.211) changed security contexts after opening file descriptor, this is not allowed. [ 79.433516][ T6784] netlink: 4 bytes leftover after parsing attributes in process `syz.0.219'. [ 79.498403][ T6786] capability: warning: `syz.0.220' uses 32-bit capabilities (legacy support in use) [ 80.284020][ T24] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 80.434202][ T24] usb 7-1: Using ep0 maxpacket: 32 [ 80.437601][ T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 80.441939][ T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 80.445829][ T24] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 80.449384][ T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 80.454939][ T24] usb 7-1: config 0 descriptor?? [ 80.927318][ T6839] netlink: 4 bytes leftover after parsing attributes in process `syz.3.234'. [ 80.934276][ T6839] syzkaller1: entered promiscuous mode [ 80.935839][ T6839] syzkaller1: entered allmulticast mode [ 80.965854][ T65] cfg80211: failed to load regulatory.db [ 80.984135][ T24] savu 0003:1E7D:2D5A.0005: hiddev0,hidraw1: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.2-1/input0 [ 80.994598][ T1450] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 81.091459][ T1017] IPVS: starting estimator thread 0... [ 81.161405][ T6844] virt_wifi0 speed is unknown, defaulting to 1000 [ 81.166341][ T1450] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 81.170312][ T1450] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 81.173800][ T1450] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 81.178725][ T1450] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 81.182405][ T1450] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 81.187129][ T1450] usb 6-1: config 0 descriptor?? [ 81.194913][ T6842] IPVS: using max 47 ests per chain, 112800 per kthread [ 81.299041][ T10] usb 7-1: USB disconnect, device number 6 [ 82.698311][ T6868] openvswitch: netlink: Actions may not be safe on all matching packets [ 82.990044][ T6874] cgroup: Need name or subsystem set [ 82.999208][ T6874] overlayfs: workdir and upperdir must be separate subtrees [ 83.124208][ T6877] kvm: pic: non byte read [ 83.126685][ T6877] kvm: pic: non byte read [ 83.128982][ T6877] kvm: pic: level sensitive irq not supported [ 83.129219][ T6877] kvm: pic: non byte read [ 83.133320][ T6877] kvm: pic: non byte read [ 83.135747][ T6877] kvm: pic: level sensitive irq not supported [ 83.135966][ T6877] kvm: pic: non byte read [ 83.140065][ T6877] kvm: pic: non byte read [ 83.142391][ T6877] kvm: pic: non byte read [ 83.145504][ T6877] kvm: pic: non byte read [ 83.147832][ T6877] kvm: pic: non byte read [ 83.479171][ T6885] virt_wifi0 speed is unknown, defaulting to 1000 [ 83.536790][ T1450] usbhid 6-1:0.0: can't add hid device: -71 [ 83.544872][ T1450] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 83.560652][ T1450] usb 6-1: USB disconnect, device number 7 [ 84.073638][ T6890] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.083195][ T6890] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.088822][ T6890] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.093691][ T6890] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.907979][ T6927] netlink: 'syz.3.257': attribute type 3 has an invalid length. [ 85.016138][ T6932] veth1_macvtap: left promiscuous mode [ 85.017751][ T6932] macsec0: entered promiscuous mode [ 85.021170][ T6933] macsec0: left promiscuous mode [ 85.046752][ T6938] ptrace attach of "/syz-executor exec"[5948] was attempted by " [ 85.294006][ T1017] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 85.445165][ T1017] usb 7-1: Using ep0 maxpacket: 8 [ 85.450806][ T1017] usb 7-1: config 16 has 1 interface, different from the descriptor's value: 3 [ 85.454528][ T1017] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 85.458782][ T1017] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 85.462623][ T1017] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 85.466390][ T1017] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 85.470565][ T1017] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 85.473994][ T1017] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 85.490409][ T40] audit: type=1800 audit(1742963412.813:196): pid=6952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.265" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 85.682240][ T1017] usb 7-1: GET_CAPABILITIES returned 0 [ 85.683814][ T1017] usbtmc 7-1:16.0: can't read capabilities [ 85.893158][ T10] usb 7-1: USB disconnect, device number 7 [ 86.133693][ T6965] ======================================================= [ 86.133693][ T6965] WARNING: The mand mount option has been deprecated and [ 86.133693][ T6965] and is ignored by this kernel. Remove the mand [ 86.133693][ T6965] option from the mount to silence this warning. [ 86.133693][ T6965] ======================================================= [ 86.200877][ T6965] ax25_connect(): syz.1.266 uses autobind, please contact jreuter@yaina.de [ 86.440648][ T40] audit: type=1326 audit(1742963413.763:197): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=6970 comm="syz.2.268" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7faf579 code=0x0 [ 87.047564][ T6987] capability: warning: `syz.2.268' uses deprecated v2 capabilities in a way that may be insecure [ 87.157377][ T6986] virt_wifi0 speed is unknown, defaulting to 1000 [ 87.280687][ T6990] evm: overlay not supported [ 87.615739][ T6994] openvswitch: netlink: Actions may not be safe on all matching packets [ 87.938893][ T7005] loop7: detected capacity change from 0 to 16384 [ 88.713752][ T7021] netlink: 'syz.3.279': attribute type 10 has an invalid length. [ 88.721226][ T7021] team0: Device hsr_slave_0 failed to register rx_handler [ 89.206451][ T7031] openvswitch: netlink: Actions may not be safe on all matching packets [ 89.841978][ T7044] netlink: 36 bytes leftover after parsing attributes in process `syz.1.287'. [ 89.852090][ T7042] openvswitch: netlink: Actions may not be safe on all matching packets [ 92.375114][ T7088] block nbd0: NBD_DISCONNECT [ 92.376520][ T7088] block nbd0: Disconnected due to user request. [ 92.378386][ T7088] block nbd0: shutting down sockets [ 92.533833][ T7094] netlink: 4 bytes leftover after parsing attributes in process `syz.1.301'. [ 92.595556][ T40] audit: type=1326 audit(1742963675.925:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 92.602375][ T40] audit: type=1326 audit(1742963675.925:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 92.609833][ T40] audit: type=1326 audit(1742963675.925:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.300" exe="/syz-executor" sig=0 arch=40000003 syscall=245 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 92.617251][ T40] audit: type=1326 audit(1742963675.925:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 92.625524][ T40] audit: type=1326 audit(1742963675.925:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 92.631958][ T40] audit: type=1326 audit(1742963675.935:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.300" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 92.638733][ T40] audit: type=1326 audit(1742963675.935:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 92.645426][ T40] audit: type=1326 audit(1742963675.935:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 92.653435][ T40] audit: type=1326 audit(1742963675.945:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.300" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 92.660543][ T40] audit: type=1326 audit(1742963675.945:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 92.682854][ T7092] netlink: 16 bytes leftover after parsing attributes in process `syz.2.300'. [ 93.565081][ T7110] openvswitch: netlink: Actions may not be safe on all matching packets [ 94.037037][ T7114] FAULT_INJECTION: forcing a failure. [ 94.037037][ T7114] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 94.041275][ T7114] CPU: 2 UID: 0 PID: 7114 Comm: syz.3.306 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 94.041300][ T7114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 94.041306][ T7114] Call Trace: [ 94.041310][ T7114] [ 94.041314][ T7114] dump_stack_lvl+0x16c/0x1f0 [ 94.041346][ T7114] should_fail_ex+0x512/0x640 [ 94.041363][ T7114] _copy_from_iter+0x2a4/0x15b0 [ 94.041376][ T7114] ? find_held_lock+0x2b/0x80 [ 94.041388][ T7114] ? __pfx__copy_from_iter+0x10/0x10 [ 94.041400][ T7114] ? __virt_addr_valid+0x5e/0x590 [ 94.041417][ T7114] ? __phys_addr_symbol+0x30/0x80 [ 94.041433][ T7114] ? __check_object_size+0x4c7/0x710 [ 94.041454][ T7114] sctp_user_addto_chunk+0x93/0x230 [ 94.041473][ T7114] sctp_datamsg_from_user+0x5b6/0x1320 [ 94.041489][ T7114] sctp_sendmsg_to_asoc+0xaff/0x1ad0 [ 94.041505][ T7114] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 94.041518][ T7114] ? do_raw_spin_lock+0x12c/0x2b0 [ 94.041533][ T7114] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 94.041550][ T7114] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 94.041564][ T7114] sctp_sendmsg+0xef5/0x1ee0 [ 94.041578][ T7114] ? __pfx_get_page_from_freelist+0x10/0x10 [ 94.041592][ T7114] ? should_fail_alloc_page+0xee/0x130 [ 94.041609][ T7114] ? __pfx_sctp_sendmsg+0x10/0x10 [ 94.041624][ T7114] ? __pfx___might_resched+0x10/0x10 [ 94.041639][ T7114] ? __pfx_aa_sk_perm+0x10/0x10 [ 94.041653][ T7114] ? __import_iovec+0x1c8/0x660 [ 94.041664][ T7114] ? __pfx_sctp_sendmsg+0x10/0x10 [ 94.041679][ T7114] inet_sendmsg+0x119/0x140 [ 94.041695][ T7114] ____sys_sendmsg+0x96b/0xc60 [ 94.041704][ T7114] ? perf_trace_f2fs_gc_end+0x264/0x7c0 [ 94.041719][ T7114] ? __pfx_____sys_sendmsg+0x10/0x10 [ 94.041728][ T7114] ? get_compat_msghdr+0x11a/0x170 [ 94.041740][ T7114] ? __pfx__kstrtoull+0x10/0x10 [ 94.041757][ T7114] ___sys_sendmsg+0x134/0x1d0 [ 94.041771][ T7114] ? __pfx____sys_sendmsg+0x10/0x10 [ 94.041788][ T7114] ? find_held_lock+0x2b/0x80 [ 94.041801][ T7114] ? __pfx___might_resched+0x10/0x10 [ 94.041818][ T7114] __sys_sendmmsg+0x2f9/0x420 [ 94.041836][ T7114] ? __pfx___sys_sendmmsg+0x10/0x10 [ 94.041853][ T7114] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 94.041870][ T7114] ? fput+0x70/0xf0 [ 94.041878][ T7114] ? ksys_write+0x1b9/0x240 [ 94.041891][ T7114] ? __pfx_ksys_write+0x10/0x10 [ 94.041908][ T7114] ? write_comp_data+0x42/0x90 [ 94.041930][ T7114] __ia32_compat_sys_sendmmsg+0x9d/0x100 [ 94.041946][ T7114] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 94.041966][ T7114] __do_fast_syscall_32+0x73/0x120 [ 94.042003][ T7114] do_fast_syscall_32+0x32/0x80 [ 94.042022][ T7114] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 94.042041][ T7114] RIP: 0023:0xf73ae579 [ 94.042053][ T7114] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 94.042064][ T7114] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159 [ 94.042074][ T7114] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080004900 [ 94.042088][ T7114] RDX: 0000000000000002 RSI: 0000000004048884 RDI: 0000000000000000 [ 94.042097][ T7114] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 94.042105][ T7114] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 94.042113][ T7114] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 94.042129][ T7114] [ 94.388933][ T7122] netlink: 4 bytes leftover after parsing attributes in process `syz.2.309'. [ 94.399499][ T7122] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.470931][ T7122] bridge_slave_1 (unregistering): left allmulticast mode [ 94.473238][ T7122] bridge_slave_1 (unregistering): left promiscuous mode [ 94.475433][ T7122] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.820215][ T7127] openvswitch: netlink: Actions may not be safe on all matching packets [ 96.078239][ T7145] openvswitch: netlink: Actions may not be safe on all matching packets [ 96.108858][ T6008] hid (null): report_id 1631920340 is invalid [ 96.114874][ T6008] hid-generic 0005:16C0:5505.0006: report_id 1631920340 is invalid [ 96.117944][ T6008] hid-generic 0005:16C0:5505.0006: item 0 4 1 8 parsing failed [ 96.120374][ T6008] hid-generic 0005:16C0:5505.0006: probe with driver hid-generic failed with error -22 [ 96.858348][ T7166] netlink: 'syz.0.321': attribute type 1 has an invalid length. [ 96.877825][ T7166] bond3: entered allmulticast mode [ 97.821455][ T7196] e1000e 0000:00:02.0 eth1: NIC Link is Down [ 97.824837][ T7211] netlink: 4 bytes leftover after parsing attributes in process `syz.2.332'. [ 97.839432][ T7211] netlink: 12 bytes leftover after parsing attributes in process `syz.2.332'. [ 97.952646][ T7224] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 97.984649][ T7211] 9pnet_fd: Insufficient options for proto=fd [ 98.339283][ T7245] block nbd3: NBD_DISCONNECT [ 98.340695][ T7245] block nbd3: Disconnected due to user request. [ 98.342477][ T7245] block nbd3: shutting down sockets [ 98.374066][ T5978] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 98.487525][ T7247] virt_wifi0 speed is unknown, defaulting to 1000 [ 100.554290][ T7263] openvswitch: netlink: Actions may not be safe on all matching packets [ 100.564723][ T7296] virt_wifi0 speed is unknown, defaulting to 1000 [ 100.779798][ T7303] netlink: 12 bytes leftover after parsing attributes in process `syz.3.351'. [ 100.782699][ T7303] netlink: 104 bytes leftover after parsing attributes in process `syz.3.351'. [ 100.988865][ T40] kauditd_printk_skb: 39 callbacks suppressed [ 100.988875][ T40] audit: type=1326 audit(1742964708.322:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7304 comm="syz.0.352" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f53579 code=0x0 [ 101.720979][ T7323] FAULT_INJECTION: forcing a failure. [ 101.720979][ T7323] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 101.724754][ T7323] CPU: 3 UID: 0 PID: 7323 Comm: syz.0.356 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 101.724769][ T7323] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 101.724775][ T7323] Call Trace: [ 101.724778][ T7323] [ 101.724782][ T7323] dump_stack_lvl+0x16c/0x1f0 [ 101.724814][ T7323] should_fail_ex+0x512/0x640 [ 101.724830][ T7323] _copy_from_user+0x2e/0xd0 [ 101.724843][ T7323] copy_from_sockptr_offset.constprop.0+0x148/0x170 [ 101.724856][ T7323] ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10 [ 101.724869][ T7323] ? _kstrtoull+0x145/0x200 [ 101.724884][ T7323] ? __pfx__kstrtoull+0x10/0x10 [ 101.724900][ T7323] sk_setsockopt+0x162/0x3810 [ 101.724916][ T7323] ? find_held_lock+0x2b/0x80 [ 101.724927][ T7323] ? __pfx_sk_setsockopt+0x10/0x10 [ 101.724942][ T7323] ? ethnl_cable_test_alloc+0x1e/0x4d0 [ 101.724963][ T7323] udp_lib_setsockopt+0x71f/0xfe0 [ 101.724976][ T7323] ? __pfx_udp_push_pending_frames+0x10/0x10 [ 101.724989][ T7323] ? __pfx_udp_lib_setsockopt+0x10/0x10 [ 101.725001][ T7323] ? aa_sk_perm+0x2f4/0xb10 [ 101.725015][ T7323] ? __pfx_aa_sk_perm+0x10/0x10 [ 101.725029][ T7323] udp_setsockopt+0xbc/0xd0 [ 101.725041][ T7323] ? __pfx_udp_push_pending_frames+0x10/0x10 [ 101.725055][ T7323] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 101.725072][ T7323] do_sock_setsockopt+0x221/0x470 [ 101.725088][ T7323] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 101.725109][ T7323] __sys_setsockopt+0x1a0/0x230 [ 101.725123][ T7323] __ia32_sys_setsockopt+0xbc/0x160 [ 101.725136][ T7323] ? lockdep_hardirqs_on+0x7c/0x110 [ 101.725149][ T7323] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 101.725162][ T7323] __do_fast_syscall_32+0x73/0x120 [ 101.725176][ T7323] do_fast_syscall_32+0x32/0x80 [ 101.725190][ T7323] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 101.725203][ T7323] RIP: 0023:0xf7f53579 [ 101.725211][ T7323] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 101.725221][ T7323] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e [ 101.725230][ T7323] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000001 [ 101.725236][ T7323] RDX: 0000000000000050 RSI: 0000000080000040 RDI: 0000000000000004 [ 101.725242][ T7323] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 101.725248][ T7323] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 101.725253][ T7323] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 101.725263][ T7323] [ 101.813260][ C3] vkms_vblank_simulate: vblank timer overrun [ 101.865518][ T7327] netlink: 4 bytes leftover after parsing attributes in process `syz.0.358'. [ 101.873055][ T7327] netlink: 173 bytes leftover after parsing attributes in process `syz.0.358'. [ 102.045704][ T7348] FAULT_INJECTION: forcing a failure. [ 102.045704][ T7348] name failslab, interval 1, probability 0, space 0, times 0 [ 102.049304][ T7348] CPU: 3 UID: 0 PID: 7348 Comm: syz.1.364 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 102.049319][ T7348] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 102.049325][ T7348] Call Trace: [ 102.049329][ T7348] [ 102.049333][ T7348] dump_stack_lvl+0x16c/0x1f0 [ 102.049349][ T7348] should_fail_ex+0x512/0x640 [ 102.049360][ T7348] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 102.049376][ T7348] should_failslab+0xc2/0x120 [ 102.049391][ T7348] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 102.049405][ T7348] ? find_inode+0x19a/0x5e0 [ 102.049414][ T7348] ? fuse_alloc_inode+0x2c/0x350 [ 102.049431][ T7348] ? __pfx_fuse_inode_set+0x10/0x10 [ 102.049445][ T7348] fuse_alloc_inode+0x2c/0x350 [ 102.049460][ T7348] ? __pfx_fuse_alloc_inode+0x10/0x10 [ 102.049475][ T7348] alloc_inode+0x61/0x240 [ 102.049485][ T7348] iget5_locked+0x338/0x3d0 [ 102.049495][ T7348] ? __pfx_fuse_inode_eq+0x10/0x10 [ 102.049509][ T7348] ? __pfx_fuse_inode_set+0x10/0x10 [ 102.049524][ T7348] ? __pfx_iget5_locked+0x10/0x10 [ 102.049535][ T7348] ? kasan_quarantine_put+0x10a/0x240 [ 102.049548][ T7348] ? lockdep_hardirqs_on+0x7c/0x110 [ 102.049561][ T7348] fuse_iget+0x165/0x8e0 [ 102.049572][ T7348] ? __pfx_fuse_iget+0x10/0x10 [ 102.049582][ T7348] ? __fuse_simple_request+0x462/0xcb0 [ 102.049596][ T7348] create_new_entry+0x4ff/0x7e0 [ 102.049612][ T7348] ? __pfx_create_new_entry+0x10/0x10 [ 102.049627][ T7348] ? tomoyo_path_number_perm+0x18d/0x580 [ 102.049644][ T7348] ? fuse_dentry_settime+0x12a/0x280 [ 102.049659][ T7348] create_new_nondir+0x71/0x90 [ 102.049675][ T7348] fuse_mknod+0x265/0x340 [ 102.049690][ T7348] ? __pfx_fuse_mknod+0x10/0x10 [ 102.049709][ T7348] ? fuse_permission+0x301/0x670 [ 102.049718][ T7348] ? bpf_lsm_inode_permission+0x9/0x10 [ 102.049731][ T7348] ? security_inode_permission+0xbf/0x260 [ 102.049745][ T7348] ? inode_permission+0xdd/0x5f0 [ 102.049757][ T7348] vfs_create+0x4dd/0x7a0 [ 102.049769][ T7348] do_mknodat+0x3d3/0x5d0 [ 102.049783][ T7348] ? __pfx_do_mknodat+0x10/0x10 [ 102.049796][ T7348] ? getname_flags.part.0+0x1c2/0x540 [ 102.049808][ T7348] __ia32_sys_mknodat+0xaa/0xe0 [ 102.049822][ T7348] __do_fast_syscall_32+0x73/0x120 [ 102.049835][ T7348] do_fast_syscall_32+0x32/0x80 [ 102.049848][ T7348] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 102.049861][ T7348] RIP: 0023:0xf7f16579 [ 102.049868][ T7348] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 102.049878][ T7348] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000129 [ 102.049887][ T7348] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000980 [ 102.049893][ T7348] RDX: 0000000000000008 RSI: 000000000000008c RDI: 0000000000000000 [ 102.049898][ T7348] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 102.049919][ T7348] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 102.049925][ T7348] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 102.049935][ T7348] [ 102.137129][ C3] vkms_vblank_simulate: vblank timer overrun [ 102.144045][ T24] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 102.284203][ T24] usb 8-1: device descriptor read/64, error -71 [ 102.524007][ T24] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 102.574338][ T7360] block nbd1: NBD_DISCONNECT [ 102.575767][ T7360] block nbd1: Disconnected due to user request. [ 102.577444][ T7360] block nbd1: shutting down sockets [ 102.654037][ T24] usb 8-1: device descriptor read/64, error -71 [ 102.764380][ T24] usb usb8-port1: attempt power cycle [ 102.969922][ T7366] batadv_slave_1: entered promiscuous mode [ 103.027194][ T7365] batadv_slave_1: left promiscuous mode [ 103.105394][ T24] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 103.126054][ T24] usb 8-1: device descriptor read/8, error -71 [ 103.333996][ T6145] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 103.384091][ T24] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 103.414642][ T24] usb 8-1: device descriptor read/8, error -71 [ 103.494397][ T6145] usb 7-1: Using ep0 maxpacket: 8 [ 103.497642][ T6145] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 103.500977][ T6145] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 103.506001][ T6145] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 103.511325][ T6145] usb 7-1: config 0 descriptor?? [ 103.534584][ T24] usb usb8-port1: unable to enumerate USB device [ 103.720270][ T6145] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 103.937115][ T6145] usb 7-1: USB disconnect, device number 9 [ 104.304600][ T7387] ISOFS: Unable to identify CD-ROM format. [ 104.461543][ T7398] FAULT_INJECTION: forcing a failure. [ 104.461543][ T7398] name failslab, interval 1, probability 0, space 0, times 0 [ 104.466736][ T7398] CPU: 2 UID: 0 PID: 7398 Comm: syz.2.379 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 104.466758][ T7398] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 104.466767][ T7398] Call Trace: [ 104.466778][ T7398] [ 104.466784][ T7398] dump_stack_lvl+0x16c/0x1f0 [ 104.466824][ T7398] should_fail_ex+0x512/0x640 [ 104.466849][ T7398] should_failslab+0xc2/0x120 [ 104.466872][ T7398] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 104.466893][ T7398] ? skb_clone+0x190/0x3f0 [ 104.466916][ T7398] skb_clone+0x190/0x3f0 [ 104.466936][ T7398] netlink_deliver_tap+0xabd/0xd30 [ 104.466958][ T7398] netlink_unicast+0x6b2/0x7f0 [ 104.466977][ T7398] ? __pfx_netlink_unicast+0x10/0x10 [ 104.467000][ T7398] netlink_ack+0x696/0xb80 [ 104.467023][ T7398] netlink_rcv_skb+0x347/0x440 [ 104.467042][ T7398] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 104.467064][ T7398] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 104.467091][ T7398] ? netlink_deliver_tap+0x1ae/0xd30 [ 104.467112][ T7398] netlink_unicast+0x53a/0x7f0 [ 104.467131][ T7398] ? __pfx_netlink_unicast+0x10/0x10 [ 104.467150][ T7398] ? __phys_addr_symbol+0x30/0x80 [ 104.467169][ T7398] ? __check_object_size+0x4c7/0x710 [ 104.467193][ T7398] netlink_sendmsg+0x8da/0xd70 [ 104.467214][ T7398] ? __pfx_netlink_sendmsg+0x10/0x10 [ 104.467234][ T7398] ? __import_iovec+0x1c8/0x660 [ 104.467255][ T7398] ____sys_sendmsg+0xa8d/0xc60 [ 104.467271][ T7398] ? __pfx_____sys_sendmsg+0x10/0x10 [ 104.467285][ T7398] ? get_compat_msghdr+0x11a/0x170 [ 104.467307][ T7398] ___sys_sendmsg+0x134/0x1d0 [ 104.467327][ T7398] ? __pfx____sys_sendmsg+0x10/0x10 [ 104.467364][ T7398] __sys_sendmsg+0x16d/0x220 [ 104.467384][ T7398] ? __pfx___sys_sendmsg+0x10/0x10 [ 104.467410][ T7398] ? rcu_is_watching+0x12/0xc0 [ 104.467427][ T7398] __do_fast_syscall_32+0x73/0x120 [ 104.467447][ T7398] do_fast_syscall_32+0x32/0x80 [ 104.467466][ T7398] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 104.467483][ T7398] RIP: 0023:0xf7faf579 [ 104.467494][ T7398] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 104.467507][ T7398] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 104.467521][ T7398] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000 [ 104.467531][ T7398] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 104.467539][ T7398] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 104.467547][ T7398] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 104.467555][ T7398] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 104.467571][ T7398] [ 104.887056][ T7403] block nbd2: NBD_DISCONNECT [ 104.888534][ T7403] block nbd2: Disconnected due to user request. [ 104.890357][ T7403] block nbd2: shutting down sockets [ 105.173034][ T7412] openvswitch: netlink: Actions may not be safe on all matching packets [ 105.620667][ T7416] ISOFS: Unable to identify CD-ROM format. [ 105.703997][ T6008] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 105.854405][ T6008] usb 7-1: Using ep0 maxpacket: 8 [ 105.858766][ T6008] usb 7-1: config index 0 descriptor too short (expected 5924, got 36) [ 105.862004][ T6008] usb 7-1: config 250 has an invalid interface number: 228 but max is -1 [ 105.865305][ T6008] usb 7-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 105.868770][ T6008] usb 7-1: config 250 has no interface number 0 [ 105.871111][ T6008] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 105.875346][ T6008] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 105.879272][ T6008] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 105.883525][ T6008] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 105.887470][ T6008] usb 7-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 105.892106][ T6008] usb 7-1: config 250 interface 228 has no altsetting 0 [ 105.896927][ T6008] usb 7-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 105.900378][ T6008] usb 7-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 105.903377][ T6008] usb 7-1: Product: syz [ 105.905057][ T6008] usb 7-1: SerialNumber: syz [ 105.914500][ T6008] hub 7-1:250.228: bad descriptor, ignoring hub [ 105.916951][ T6008] hub 7-1:250.228: probe with driver hub failed with error -5 [ 106.125545][ T6008] usblp 7-1:250.228: usblp0: USB Bidirectional printer dev 10 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 106.435227][ T6008] usb 7-1: USB disconnect, device number 10 [ 106.441753][ T6008] usblp0: removed [ 106.668778][ T7435] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null. [ 106.671822][ T7435] overlayfs: overlapping lowerdir path [ 106.774046][ T6008] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 106.933996][ T6008] usb 7-1: Using ep0 maxpacket: 8 [ 106.937197][ T6008] usb 7-1: config index 0 descriptor too short (expected 5924, got 36) [ 106.939675][ T6008] usb 7-1: config 250 has an invalid interface number: 228 but max is -1 [ 106.942136][ T6008] usb 7-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 106.944755][ T6008] usb 7-1: config 250 has no interface number 0 [ 106.946525][ T6008] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 106.949839][ T6008] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 106.952818][ T6008] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 106.956177][ T6008] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 106.959134][ T6008] usb 7-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 106.962892][ T6008] usb 7-1: config 250 interface 228 has no altsetting 0 [ 106.967006][ T6008] usb 7-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 106.969642][ T6008] usb 7-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 106.971925][ T6008] usb 7-1: Product: syz [ 106.973337][ T6008] usb 7-1: SerialNumber: syz [ 106.977733][ T6008] hub 7-1:250.228: bad descriptor, ignoring hub [ 106.979515][ T6008] hub 7-1:250.228: probe with driver hub failed with error -5 [ 107.762989][ T7453] block nbd0: NBD_DISCONNECT [ 107.764791][ T7453] block nbd0: Disconnected due to user request. [ 107.767604][ T7453] block nbd0: shutting down sockets [ 108.684397][ T6008] usblp 7-1:250.228: usblp0: USB Bidirectional printer dev 11 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 108.704131][ T6008] usb 7-1: USB disconnect, device number 11 [ 108.705884][ T5978] usb 6-1: new full-speed USB device number 8 using dummy_hcd [ 108.706769][ T6008] usblp0: removed [ 108.885054][ T5978] usb 6-1: config 0 has an invalid interface number: 20 but max is 0 [ 108.888010][ T5978] usb 6-1: config 0 has no interface number 0 [ 108.891637][ T5978] usb 6-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00 [ 108.894906][ T5978] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 108.898132][ T5978] usb 6-1: Product: syz [ 108.899617][ T5978] usb 6-1: Manufacturer: syz [ 108.901306][ T5978] usb 6-1: SerialNumber: syz [ 108.904375][ T5978] usb 6-1: config 0 descriptor?? [ 108.907061][ T5978] usb-storage 6-1:0.20: USB Mass Storage device detected [ 108.912184][ T5978] usb-storage 6-1:0.20: Quirks match for vid 04e6 pid 000b: 4 [ 109.054558][ T6008] usb 7-1: new full-speed USB device number 12 using dummy_hcd [ 109.113989][ T1017] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 109.195645][ T24] usb 6-1: USB disconnect, device number 8 [ 109.226898][ T6008] usb 7-1: config 0 has no interfaces? [ 109.228481][ T6008] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 109.230911][ T6008] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 109.233830][ T6008] usb 7-1: config 0 descriptor?? [ 109.275123][ T1017] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 109.278267][ T1017] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 109.280900][ T1017] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 109.284852][ T1017] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 109.287538][ T1017] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 109.290613][ T1017] usb 8-1: config 0 descriptor?? [ 109.444045][ T6002] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 109.594020][ T6002] usb 5-1: Using ep0 maxpacket: 32 [ 109.596791][ T6002] usb 5-1: config 1 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 109.600457][ T6002] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 109.605914][ T6002] usb 5-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 109.608440][ T6002] usb 5-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 109.610757][ T6002] usb 5-1: Product: syz [ 109.612086][ T6002] usb 5-1: Manufacturer: syz [ 109.613975][ T6002] usb 5-1: SerialNumber: syz [ 109.618143][ T6002] appletouch 5-1:1.0: Could not find int-in endpoint [ 109.620033][ T6002] appletouch 5-1:1.0: probe with driver appletouch failed with error -5 [ 109.622619][ T6002] usbhid 5-1:1.0: couldn't find an input interrupt endpoint [ 109.702231][ T5953] Bluetooth: hci0: unexpected event for opcode 0x0401 [ 109.703480][ T1017] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving [ 109.722857][ T1017] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 109.886541][ T1017] usb 5-1: USB disconnect, device number 6 [ 109.959188][ T5978] usb 8-1: USB disconnect, device number 7 [ 110.599338][ T40] audit: type=1326 audit(1742964973.919:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7500 comm="syz.3.403" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000 [ 110.635574][ T40] audit: type=1326 audit(1742964973.959:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7500 comm="syz.3.403" exe="/syz-executor" sig=0 arch=40000003 syscall=123 compat=1 ip=0xf73ae579 code=0x7ffc0000 [ 110.643068][ T40] audit: type=1326 audit(1742964973.969:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7500 comm="syz.3.403" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000 [ 110.650612][ T40] audit: type=1326 audit(1742964973.969:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7500 comm="syz.3.403" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000 [ 110.658394][ T40] audit: type=1326 audit(1742964973.989:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7500 comm="syz.3.403" exe="/syz-executor" sig=0 arch=40000003 syscall=123 compat=1 ip=0xf73ae579 code=0x7ffc0000 [ 110.665100][ T40] audit: type=1326 audit(1742964973.989:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7500 comm="syz.3.403" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000 [ 110.672457][ T40] audit: type=1326 audit(1742964973.999:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7500 comm="syz.3.403" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf73ae579 code=0x7ffc0000 [ 110.686468][ T40] audit: type=1326 audit(1742964974.009:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7500 comm="syz.3.403" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000 [ 110.693171][ T40] audit: type=1326 audit(1742964974.019:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7500 comm="syz.3.403" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000 [ 111.869906][ T10] usb 7-1: USB disconnect, device number 12 [ 112.131439][ T7537] FAULT_INJECTION: forcing a failure. [ 112.131439][ T7537] name failslab, interval 1, probability 0, space 0, times 0 [ 112.135123][ T7537] CPU: 1 UID: 0 PID: 7537 Comm: syz.1.410 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 112.135146][ T7537] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 112.135152][ T7537] Call Trace: [ 112.135155][ T7537] [ 112.135159][ T7537] dump_stack_lvl+0x16c/0x1f0 [ 112.135176][ T7537] should_fail_ex+0x512/0x640 [ 112.135187][ T7537] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 112.135201][ T7537] should_failslab+0xc2/0x120 [ 112.135217][ T7537] __kmalloc_cache_noprof+0x6a/0x3e0 [ 112.135229][ T7537] ? __asan_memset+0x23/0x50 [ 112.135240][ T7537] ? alloc_netdev_mqs+0xf25/0x15d0 [ 112.135254][ T7537] ? __xdp_rxq_info_reg+0x14e/0x2d0 [ 112.135269][ T7537] alloc_netdev_mqs+0xf25/0x15d0 [ 112.135285][ T7537] rtnl_create_link+0xc10/0xfa0 [ 112.135299][ T7537] rtnl_newlink+0x14c2/0x1d40 [ 112.135314][ T7537] ? __pfx_rtnl_newlink+0x10/0x10 [ 112.135327][ T7537] ? __pfx___schedule+0x10/0x10 [ 112.135338][ T7537] ? __lock_acquire+0xaa4/0x1ba0 [ 112.135356][ T7537] ? rcu_is_watching+0x12/0xc0 [ 112.135366][ T7537] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 112.135377][ T7537] ? lockdep_hardirqs_on+0x7c/0x110 [ 112.135389][ T7537] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 112.135400][ T7537] ? rcu_preempt_deferred_qs_irqrestore+0x4f5/0xbc0 [ 112.135417][ T7537] ? __pfx_rtnl_newlink+0x10/0x10 [ 112.135430][ T7537] rtnetlink_rcv_msg+0x95b/0xe90 [ 112.135444][ T7537] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 112.135461][ T7537] netlink_rcv_skb+0x16a/0x440 [ 112.135474][ T7537] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 112.135488][ T7537] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 112.135505][ T7537] ? netlink_deliver_tap+0x1ae/0xd30 [ 112.135516][ T7537] ? netlink_unicast+0x9d/0x7f0 [ 112.135530][ T7537] netlink_unicast+0x53a/0x7f0 [ 112.135543][ T7537] ? __pfx_netlink_unicast+0x10/0x10 [ 112.135556][ T7537] ? __phys_addr_symbol+0x30/0x80 [ 112.135569][ T7537] ? __check_object_size+0x4c7/0x710 [ 112.135586][ T7537] netlink_sendmsg+0x8da/0xd70 [ 112.135604][ T7537] ? __pfx_netlink_sendmsg+0x10/0x10 [ 112.135617][ T7537] ? __import_iovec+0x1c8/0x660 [ 112.135631][ T7537] ____sys_sendmsg+0xa8d/0xc60 [ 112.135642][ T7537] ? __pfx_____sys_sendmsg+0x10/0x10 [ 112.135651][ T7537] ? get_compat_msghdr+0x11a/0x170 [ 112.135665][ T7537] ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10 [ 112.135679][ T7537] ___sys_sendmsg+0x134/0x1d0 [ 112.135693][ T7537] ? __pfx____sys_sendmsg+0x10/0x10 [ 112.135717][ T7537] __sys_sendmsg+0x16d/0x220 [ 112.135731][ T7537] ? __pfx___sys_sendmsg+0x10/0x10 [ 112.135748][ T7537] ? rcu_is_watching+0x12/0xc0 [ 112.135759][ T7537] __do_fast_syscall_32+0x73/0x120 [ 112.135772][ T7537] do_fast_syscall_32+0x32/0x80 [ 112.135785][ T7537] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 112.135797][ T7537] RIP: 0023:0xf7f16579 [ 112.135805][ T7537] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 112.135815][ T7537] RSP: 002b:00000000f4ff455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 112.135825][ T7537] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080 [ 112.135831][ T7537] RDX: 0000000024008040 RSI: 0000000000000000 RDI: 0000000000000000 [ 112.135836][ T7537] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 112.135842][ T7537] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 112.135847][ T7537] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 112.135857][ T7537] [ 112.359476][ T7540] Invalid ELF header magic: != ELF [ 112.736476][ T7546] block nbd0: NBD_DISCONNECT [ 112.741854][ T7546] block nbd0: Disconnected due to user request. [ 112.744531][ T7546] block nbd0: shutting down sockets [ 112.877395][ T7551] netlink: 76 bytes leftover after parsing attributes in process `syz.2.418'. [ 112.900913][ T7553] netlink: 16 bytes leftover after parsing attributes in process `syz.1.419'. [ 113.414892][ T7567] Invalid ELF header magic: != ELF [ 113.434718][ T7566] openvswitch: netlink: Actions may not be safe on all matching packets [ 113.560608][ T7573] sp0: Synchronizing with TNC [ 114.562767][ T7587] fuse: Bad value for 'fd' [ 114.755048][ T7597] netlink: 4 bytes leftover after parsing attributes in process `syz.3.430'. [ 114.923980][ T24] usb 5-1: new full-speed USB device number 7 using dummy_hcd [ 115.015713][ T7596] block nbd2: NBD_DISCONNECT [ 115.017293][ T7596] block nbd2: Disconnected due to user request. [ 115.019317][ T7596] block nbd2: shutting down sockets [ 115.146381][ T24] usb 5-1: config 0 has an invalid interface number: 20 but max is 0 [ 115.148735][ T24] usb 5-1: config 0 has no interface number 0 [ 115.152169][ T24] usb 5-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00 [ 115.154732][ T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 115.156998][ T24] usb 5-1: Product: syz [ 115.158189][ T24] usb 5-1: Manufacturer: syz [ 115.159553][ T24] usb 5-1: SerialNumber: syz [ 115.162421][ T24] usb 5-1: config 0 descriptor?? [ 115.165348][ T24] usb-storage 5-1:0.20: USB Mass Storage device detected [ 115.169219][ T24] usb-storage 5-1:0.20: Quirks match for vid 04e6 pid 000b: 4 [ 115.465136][ T5953] Bluetooth: hci0: unexpected event for opcode 0x0411 [ 115.536216][ T7609] FAULT_INJECTION: forcing a failure. [ 115.536216][ T7609] name failslab, interval 1, probability 0, space 0, times 0 [ 115.539719][ T7609] CPU: 1 UID: 0 PID: 7609 Comm: syz.1.437 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 115.539734][ T7609] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 115.539740][ T7609] Call Trace: [ 115.539744][ T7609] [ 115.539748][ T7609] dump_stack_lvl+0x16c/0x1f0 [ 115.539765][ T7609] should_fail_ex+0x512/0x640 [ 115.539777][ T7609] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 115.539792][ T7609] should_failslab+0xc2/0x120 [ 115.539807][ T7609] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 115.539822][ T7609] ? security_file_alloc+0x34/0x2b0 [ 115.539839][ T7609] security_file_alloc+0x34/0x2b0 [ 115.539853][ T7609] init_file+0x93/0x4c0 [ 115.539863][ T7609] alloc_empty_file+0x73/0x1e0 [ 115.539873][ T7609] alloc_file_pseudo+0x13a/0x230 [ 115.539883][ T7609] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 115.539894][ T7609] ? alloc_fd+0x420/0x760 [ 115.539908][ T7609] __anon_inode_getfile+0xf7/0x370 [ 115.539925][ T7609] anon_inode_getfile_fmode+0x37/0xa0 [ 115.539939][ T7609] do_signalfd4+0x20f/0x420 [ 115.539954][ T7609] __ia32_compat_sys_signalfd+0x11b/0x1b0 [ 115.539969][ T7609] ? ksys_write+0x1b9/0x240 [ 115.539982][ T7609] ? __pfx___ia32_compat_sys_signalfd+0x10/0x10 [ 115.539998][ T7609] ? rcu_is_watching+0x12/0xc0 [ 115.540010][ T7609] __do_fast_syscall_32+0x73/0x120 [ 115.540025][ T7609] do_fast_syscall_32+0x32/0x80 [ 115.540037][ T7609] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 115.540051][ T7609] RIP: 0023:0xf7f16579 [ 115.540059][ T7609] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 115.540068][ T7609] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000141 [ 115.540078][ T7609] RAX: ffffffffffffffda RBX: 00000000ffffffff RCX: 00000000800002c0 [ 115.540084][ T7609] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000000 [ 115.540090][ T7609] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 115.540095][ T7609] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 115.540100][ T7609] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 115.540110][ T7609] [ 115.646696][ T7617] overlayfs: missing 'workdir' [ 115.676286][ T7619] fuse: Bad value for 'fd' [ 115.953310][ T7623] openvswitch: netlink: Actions may not be safe on all matching packets [ 116.014196][ T7625] gretap0: entered promiscuous mode [ 116.016312][ T7625] vlan2: entered promiscuous mode [ 116.343692][ T7632] block nbd3: NBD_DISCONNECT [ 116.345252][ T7632] block nbd3: Disconnected due to user request. [ 116.347562][ T7632] block nbd3: shutting down sockets [ 116.858886][ T5978] usb 5-1: USB disconnect, device number 7 [ 118.664526][ T7676] block nbd1: NBD_DISCONNECT [ 118.666002][ T7676] block nbd1: Disconnected due to user request. [ 118.667939][ T7676] block nbd1: shutting down sockets [ 119.213974][ T5978] usb 5-1: new full-speed USB device number 8 using dummy_hcd [ 119.376738][ T5978] usb 5-1: config 0 has an invalid interface number: 20 but max is 0 [ 119.379934][ T5978] usb 5-1: config 0 has no interface number 0 [ 119.385284][ T5978] usb 5-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00 [ 119.388807][ T5978] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 119.391325][ T5978] usb 5-1: Product: syz [ 119.392522][ T5978] usb 5-1: Manufacturer: syz [ 119.393846][ T5978] usb 5-1: SerialNumber: syz [ 119.396038][ T5978] usb 5-1: config 0 descriptor?? [ 119.406268][ T5978] usb-storage 5-1:0.20: USB Mass Storage device detected [ 119.408896][ T5978] usb-storage 5-1:0.20: Quirks match for vid 04e6 pid 000b: 4 [ 119.503505][ T7697] mmap: syz.3.463 (7697) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 119.566774][ T7699] virt_wifi0 speed is unknown, defaulting to 1000 [ 119.706830][ T1017] usb 5-1: USB disconnect, device number 8 [ 119.844146][ T6002] usb 6-1: new full-speed USB device number 9 using dummy_hcd [ 120.015302][ T6002] usb 6-1: config 0 has an invalid interface number: 55 but max is 0 [ 120.017657][ T6002] usb 6-1: config 0 has no interface number 0 [ 120.019523][ T6002] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 120.022553][ T6002] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 120.026356][ T6002] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10 [ 120.029513][ T6002] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 64 [ 120.032538][ T6002] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 120.036662][ T6002] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 120.039253][ T6002] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 120.042836][ T6002] usb 6-1: config 0 descriptor?? [ 120.045495][ T7699] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 120.049672][ T6002] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 120.374431][ T1017] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 120.734125][ T7723] block nbd0: NBD_DISCONNECT [ 120.736015][ T7723] block nbd0: Disconnected due to user request. [ 120.739438][ T7723] block nbd0: shutting down sockets [ 120.777757][ T10] usb 6-1: USB disconnect, device number 9 [ 120.780391][ T10] ldusb 6-1:0.55: LD USB Device #0 now disconnected [ 121.088201][ T7730] openvswitch: netlink: Actions may not be safe on all matching packets [ 121.373631][ T7737] netlink: 8 bytes leftover after parsing attributes in process `syz.2.475'. [ 121.380165][ T7737] netlink: 8 bytes leftover after parsing attributes in process `syz.2.475'. [ 121.432207][ T7743] netlink: 'syz.3.476': attribute type 21 has an invalid length. [ 121.434617][ T7743] netlink: 156 bytes leftover after parsing attributes in process `syz.3.476'. [ 122.062598][ T7758] wireguard0: entered promiscuous mode [ 122.064422][ T7758] wireguard0: entered allmulticast mode [ 122.262545][ T5978] Process accounting resumed [ 122.369876][ T7767] Process accounting resumed [ 122.448372][ T7775] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 122.453331][ T7775] mkiss: ax0: crc mode is auto. [ 122.716448][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.718771][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.720843][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.723672][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.727310][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.729410][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.731469][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.733673][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.736750][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.739028][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.741127][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.743242][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.746657][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.748724][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.750912][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.753060][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.754145][ T7779] block nbd1: NBD_DISCONNECT [ 122.755213][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.757042][ T7779] block nbd1: Disconnected due to user request. [ 122.759220][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.763671][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.763776][ T7779] block nbd1: shutting down sockets [ 122.770315][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.772502][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.774624][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.776706][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.778787][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.780839][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.782899][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.785783][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.787872][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.788462][ T1323] Process accounting resumed [ 122.789903][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.789919][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.789931][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.797506][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0 [ 122.807842][ T1450] hid-generic 0004:FFFFFFFF:0000.0008: hidraw1: HID v0.00 Device [syz0] on syz0 [ 122.850819][ T7788] trusted_key: syz.0.487 sent an empty control message without MSG_MORE. [ 122.927866][ T7799] netlink: 12 bytes leftover after parsing attributes in process `syz.2.491'. [ 123.081685][ T7800] : entered promiscuous mode [ 123.094012][ T24] usb 8-1: new high-speed USB device number 8 using dummy_hcd [ 123.164338][ T1017] usb 7-1: new high-speed USB device number 13 using dummy_hcd [ 123.255800][ T24] usb 8-1: config 0 has no interfaces? [ 123.257881][ T24] usb 8-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 123.260991][ T24] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 123.264942][ T24] usb 8-1: config 0 descriptor?? [ 123.313977][ T1017] usb 7-1: Using ep0 maxpacket: 32 [ 123.317363][ T1017] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 123.320973][ T1017] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 123.325544][ T1017] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 123.328738][ T1017] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 123.332585][ T1017] usb 7-1: config 0 descriptor?? [ 123.336111][ T1017] usbhid 7-1:0.0: couldn't find an input interrupt endpoint [ 123.472170][ T1017] usb 8-1: USB disconnect, device number 8 [ 124.046063][ T7811] openvswitch: netlink: Actions may not be safe on all matching packets [ 124.252858][ T7822] virt_wifi0 speed is unknown, defaulting to 1000 [ 124.282887][ T7822] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 124.296441][ T7824] dlm: no locking on control device [ 124.300608][ T7824] fuse: Bad value for 'group_id' [ 124.302031][ T7824] fuse: Bad value for 'group_id' [ 125.438901][ T7841] raw_sendmsg: syz.1.501 forgot to set AF_INET. Fix it! [ 125.931916][ T65] usb 7-1: USB disconnect, device number 13 [ 126.297559][ T7858] can0: slcan on ttyS3. [ 126.304150][ T1017] usb 5-1: new full-speed USB device number 9 using dummy_hcd [ 126.383982][ T1450] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 126.457447][ T1017] usb 5-1: config 0 has an invalid interface number: 20 but max is 0 [ 126.459780][ T1017] usb 5-1: config 0 has no interface number 0 [ 126.470707][ T1017] usb 5-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00 [ 126.473261][ T1017] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 126.475716][ T1017] usb 5-1: Product: syz [ 126.476932][ T1017] usb 5-1: Manufacturer: syz [ 126.478278][ T1017] usb 5-1: SerialNumber: syz [ 126.480284][ T1017] usb 5-1: config 0 descriptor?? [ 126.482646][ T1017] usb-storage 5-1:0.20: USB Mass Storage device detected [ 126.489611][ T7858] can0 (unregistered): slcan off ttyS3. [ 126.526808][ T1017] usb-storage 5-1:0.20: Quirks match for vid 04e6 pid 000b: 4 [ 126.603976][ T10] usb 8-1: new high-speed USB device number 9 using dummy_hcd [ 126.695713][ T65] usb 5-1: USB disconnect, device number 9 [ 126.734004][ T10] usb 8-1: device descriptor read/64, error -71 [ 126.794703][ T1450] usb 7-1: Using ep0 maxpacket: 16 [ 126.807678][ T1450] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 33437, setting to 1024 [ 126.811184][ T1450] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0xF has invalid maxpacket 1024 [ 126.814060][ T1450] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 126.816732][ T1450] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 126.824157][ T1450] usb 7-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87 [ 126.826877][ T1450] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 126.829095][ T1450] usb 7-1: Product: syz [ 126.830383][ T1450] usb 7-1: Manufacturer: syz [ 126.832039][ T1450] usb 7-1: SerialNumber: syz [ 126.838677][ T1450] usb 7-1: config 0 descriptor?? [ 126.841608][ T7855] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 126.848725][ C0] port100 7-1:0.0: NFC: Urb failure (status -71) [ 126.850873][ T1450] port100 7-1:0.0: NFC: Could not get supported command types [ 126.974277][ T10] usb 8-1: new high-speed USB device number 10 using dummy_hcd [ 127.125447][ T10] usb 8-1: device descriptor read/64, error -71 [ 127.234179][ T10] usb usb8-port1: attempt power cycle [ 127.259749][ T1017] usb 7-1: USB disconnect, device number 14 [ 127.505321][ T7874] openvswitch: netlink: Actions may not be safe on all matching packets [ 127.584039][ T10] usb 8-1: new high-speed USB device number 11 using dummy_hcd [ 127.615509][ T10] usb 8-1: device descriptor read/8, error -71 [ 127.854182][ T10] usb 8-1: new high-speed USB device number 12 using dummy_hcd [ 127.874749][ T10] usb 8-1: device descriptor read/8, error -71 [ 127.984870][ T10] usb usb8-port1: unable to enumerate USB device [ 128.874070][ T1017] usb 6-1: new full-speed USB device number 10 using dummy_hcd [ 129.025130][ T1017] usb 6-1: config 0 has an invalid interface number: 20 but max is 0 [ 129.027413][ T1017] usb 6-1: config 0 has no interface number 0 [ 129.030517][ T1017] usb 6-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00 [ 129.032858][ T1017] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 129.035097][ T1017] usb 6-1: Product: syz [ 129.036206][ T1017] usb 6-1: Manufacturer: syz [ 129.037433][ T1017] usb 6-1: SerialNumber: syz [ 129.039417][ T1017] usb 6-1: config 0 descriptor?? [ 129.042053][ T1017] usb-storage 6-1:0.20: USB Mass Storage device detected [ 129.046249][ T1017] usb-storage 6-1:0.20: Quirks match for vid 04e6 pid 000b: 4 [ 129.304258][ T6145] usb 6-1: USB disconnect, device number 10 [ 129.492909][ T7919] openvswitch: netlink: Actions may not be safe on all matching packets [ 129.995009][ T7927] block nbd0: NBD_DISCONNECT [ 129.996858][ T7927] block nbd0: Disconnected due to user request. [ 129.998687][ T7927] block nbd0: shutting down sockets [ 130.667053][ T7945] : entered promiscuous mode [ 131.994116][ T1450] usb 7-1: new full-speed USB device number 15 using dummy_hcd [ 132.143844][ T7970] openvswitch: netlink: Actions may not be safe on all matching packets [ 132.174549][ T1415] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.176423][ T1415] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.186846][ T1450] usb 7-1: config 0 has an invalid interface number: 20 but max is 0 [ 132.189394][ T1450] usb 7-1: config 0 has no interface number 0 [ 132.192422][ T1450] usb 7-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00 [ 132.195059][ T1450] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 132.197672][ T1450] usb 7-1: Product: syz [ 132.198915][ T1450] usb 7-1: Manufacturer: syz [ 132.200164][ T1450] usb 7-1: SerialNumber: syz [ 132.202269][ T1450] usb 7-1: config 0 descriptor?? [ 132.205070][ T1450] usb-storage 7-1:0.20: USB Mass Storage device detected [ 132.209920][ T1450] usb-storage 7-1:0.20: Quirks match for vid 04e6 pid 000b: 4 [ 132.554097][ T7979] block nbd3: NBD_DISCONNECT [ 132.555549][ T7979] block nbd3: Disconnected due to user request. [ 132.557968][ T7979] block nbd3: shutting down sockets [ 133.546213][ T1017] IPVS: starting estimator thread 0... [ 133.567316][ T7996] ISOFS: Unable to identify CD-ROM format. [ 133.633991][ T7995] IPVS: using max 48 ests per chain, 115200 per kthread [ 134.521115][ T8013] ieee802154 phy0 wpan0: encryption failed: -22 [ 134.656477][ T1017] usb 7-1: USB disconnect, device number 15 [ 134.923314][ T8024] openvswitch: netlink: Actions may not be safe on all matching packets [ 135.164289][ T8028] block nbd3: NBD_DISCONNECT [ 135.166178][ T8028] block nbd3: Disconnected due to user request. [ 135.168766][ T8028] block nbd3: shutting down sockets [ 135.233341][ T8029] gtp0: entered promiscuous mode [ 135.235018][ T8029] gtp0: entered allmulticast mode [ 135.756919][ T8040] FAULT_INJECTION: forcing a failure. [ 135.756919][ T8040] name failslab, interval 1, probability 0, space 0, times 0 [ 135.760314][ T8040] CPU: 1 UID: 0 PID: 8040 Comm: syz.3.551 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 135.760329][ T8040] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 135.760335][ T8040] Call Trace: [ 135.760340][ T8040] [ 135.760344][ T8040] dump_stack_lvl+0x16c/0x1f0 [ 135.760366][ T8040] should_fail_ex+0x512/0x640 [ 135.760377][ T8040] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 135.760392][ T8040] should_failslab+0xc2/0x120 [ 135.760408][ T8040] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 135.760422][ T8040] ? getname_kernel+0x52/0x370 [ 135.760431][ T8040] ? do_raw_read_unlock+0x44/0xe0 [ 135.760442][ T8040] getname_kernel+0x52/0x370 [ 135.760451][ T8040] kern_path+0x1d/0x50 [ 135.760464][ T8040] tomoyo_mount_acl+0x624/0x850 [ 135.760478][ T8040] ? kernel_text_address+0x8d/0x100 [ 135.760489][ T8040] ? __kernel_text_address+0xd/0x40 [ 135.760500][ T8040] ? __pfx_tomoyo_mount_acl+0x10/0x10 [ 135.760524][ T8040] ? tomoyo_domain+0xbb/0x150 [ 135.760533][ T8040] ? tomoyo_profile+0x47/0x60 [ 135.760543][ T8040] tomoyo_mount_permission+0x16d/0x420 [ 135.760557][ T8040] ? tomoyo_mount_permission+0x14f/0x420 [ 135.760571][ T8040] ? __pfx_tomoyo_mount_permission+0x10/0x10 [ 135.760589][ T8040] ? get_current_fs_domain+0x184/0x1f0 [ 135.760602][ T8040] security_sb_mount+0x9b/0x260 [ 135.760616][ T8040] path_mount+0x128/0x1f30 [ 135.760626][ T8040] ? kmem_cache_free+0x2d4/0x4d0 [ 135.760639][ T8040] ? __pfx_path_mount+0x10/0x10 [ 135.760648][ T8040] ? putname+0x154/0x1a0 [ 135.760658][ T8040] __ia32_sys_mount+0x28b/0x310 [ 135.760667][ T8040] ? __pfx___ia32_sys_mount+0x10/0x10 [ 135.760676][ T8040] ? rcu_is_watching+0x12/0xc0 [ 135.760689][ T8040] __do_fast_syscall_32+0x73/0x120 [ 135.760703][ T8040] do_fast_syscall_32+0x32/0x80 [ 135.760716][ T8040] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 135.760729][ T8040] RIP: 0023:0xf73ae579 [ 135.760736][ T8040] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 135.760746][ T8040] RSP: 002b:00000000f4ff455c EFLAGS: 00000296 ORIG_RAX: 0000000000000015 [ 135.760756][ T8040] RAX: ffffffffffffffda RBX: 0000000080000100 RCX: 00000000800002c0 [ 135.760762][ T8040] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000 [ 135.760767][ T8040] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 135.760772][ T8040] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 135.760778][ T8040] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 135.760788][ T8040] [ 135.990372][ T8039] page: refcount:2 mapcount:0 mapping:0000000000000000 index:0x800dd pfn:0x1373c [ 135.992891][ T8039] flags: 0xfff00000010001(locked|reclaim|node=0|zone=1|lastcpupid=0x7ff) [ 135.995369][ T8039] raw: 00fff00000010001 ffffc9000c9aec38 ffffc9000c9aec38 ffffffff8b7e1702 [ 135.997730][ T8039] raw: 00000000000800dd 0000000000000000 00000002ffffffff 0000000000000000 [ 136.000014][ T8039] page dumped because: VM_BUG_ON_PAGE(!((__builtin_constant_p(PAGE_CLAIMED) && __builtin_constant_p((uintptr_t)(&page->private) != (uintptr_t)((void *)0)) && (uintptr_t)(&page->private) != (uintptr_t)((void *)0) && __builtin_constant_p(*(const unsigned long *)(&page->private))) ? const_test_bit(PAGE_CLAIMED, &page->private) : _test_bit(PAGE_CLAIMED, &page->private))) [ 136.012387][ T8039] page_owner tracks the page as allocated [ 136.014180][ T8039] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12800(GFP_NOWAIT|__GFP_NORETRY), pid 8039, tgid 8038 (syz.0.553), ts 135950938075, free_ts 135934314113 [ 136.018718][ T8039] post_alloc_hook+0x181/0x1b0 [ 136.020070][ T8039] get_page_from_freelist+0x10c4/0x34c0 [ 136.021617][ T8039] __alloc_frozen_pages_noprof+0x223/0x24d0 [ 136.023249][ T8039] alloc_pages_mpol+0x1fb/0x540 [ 136.026648][ T8039] alloc_pages_noprof+0x131/0x390 [ 136.028116][ T8039] z3fold_zpool_malloc+0x861/0x1510 [ 136.029531][ T8039] zswap_store+0xf16/0x2660 [ 136.030799][ T8039] swap_writepage+0x3bd/0x1170 [ 136.032935][ T8039] pageout+0x3b0/0xa90 [ 136.037298][ T8039] shrink_folio_list+0x2f4f/0x40a0 [ 136.038971][ T8039] evict_folios+0x775/0x1a90 [ 136.040462][ T8039] try_to_shrink_lruvec+0x5a3/0x990 [ 136.042032][ T8039] shrink_one+0x3e3/0x7a0 [ 136.044039][ T8039] shrink_node+0x26f6/0x3de0 [ 136.045521][ T8039] do_try_to_free_pages+0x36d/0x1a70 [ 136.047216][ T8039] try_to_free_pages+0x2a1/0x690 [ 136.048906][ T8039] page last free pid 8039 tgid 8038 stack trace: [ 136.050892][ T8039] free_frozen_pages+0x6d8/0xf40 [ 136.052388][ T8039] tlb_remove_table_rcu+0x116/0x1a0 [ 136.054085][ T8039] rcu_core+0x799/0x14e0 [ 136.055424][ T8039] handle_softirqs+0x216/0x8e0 [ 136.056850][ T8039] __irq_exit_rcu+0x109/0x170 [ 136.058296][ T8039] irq_exit_rcu+0x9/0x30 [ 136.059640][ T8039] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 136.061358][ T8039] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 136.063237][ T8039] ------------[ cut here ]------------ [ 136.065021][ T8039] kernel BUG at mm/z3fold.c:1293! [ 136.066734][ T8039] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI [ 136.068959][ T8039] CPU: 0 UID: 0 PID: 8039 Comm: syz.0.553 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) [ 136.073184][ T8039] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 136.076037][ T8039] RIP: 0010:z3fold_page_migrate+0xc6b/0x13b0 [ 136.077671][ T8039] Code: a5 92 ff 48 c7 c6 c0 0e 7e 8b 48 89 ef e8 dd 70 d9 ff 90 0f 0b e8 35 a5 92 ff 48 c7 c6 20 0f 7e 8b 48 89 ef e8 c6 70 d9 ff 90 <0f> 0b e8 1e a5 92 ff 48 8d bb a0 00 00 00 48 b8 00 00 00 00 00 fc [ 136.082879][ T8039] RSP: 0018:ffffc9000c9aeab0 EFLAGS: 00010246 [ 136.084528][ T8039] RAX: 0000000000080000 RBX: 0000000000000000 RCX: ffffc9000cdd2000 [ 136.086741][ T8039] RDX: 0000000000080000 RSI: ffffffff8228506a RDI: ffff88802338ccc4 [ 136.088956][ T8039] RBP: ffffea00004dcf00 R08: 0000000000000001 R09: 0000000000000001 [ 136.091102][ T8039] R10: ffffffff90629217 R11: 1ffffffff1c391e9 R12: ffffea0000ad6cc0 [ 136.093254][ T8039] R13: ffffea00004dcf28 R14: 0000000000000001 R15: ffffea00004dcf18 [ 136.095412][ T8039] FS: 0000000000000000(0000) GS:ffff888097c5a000(0063) knlGS:00000000f5076b40 [ 136.097846][ T8039] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 136.099637][ T8039] CR2: 000000000c421faa CR3: 0000000023082000 CR4: 0000000000352ef0 [ 136.101800][ T8039] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 136.103935][ T8039] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 136.106048][ T8039] Call Trace: [ 136.107007][ T8039] [ 136.107847][ T8039] ? die+0x31/0x80 [ 136.108896][ T8039] ? do_trap+0x232/0x430 [ 136.110086][ T8039] ? z3fold_page_migrate+0xc6b/0x13b0 [ 136.111543][ T8039] ? do_error_trap+0xf8/0x240 [ 136.112819][ T8039] ? z3fold_page_migrate+0xc6b/0x13b0 [ 136.114289][ T8039] ? z3fold_page_migrate+0xc6b/0x13b0 [ 136.115720][ T8039] ? handle_invalid_op+0x34/0x40 [ 136.117034][ T8039] ? z3fold_page_migrate+0xc6b/0x13b0 [ 136.118563][ T8039] ? exc_invalid_op+0x2e/0x50 [ 136.119914][ T8039] ? asm_exc_invalid_op+0x1a/0x20 [ 136.121319][ T8039] ? z3fold_page_migrate+0xc6a/0x13b0 [ 136.122806][ T8039] ? z3fold_page_migrate+0xc6b/0x13b0 [ 136.124257][ T8039] ? page_ext_put+0x3e/0xd0 [ 136.125616][ T8039] move_to_new_folio+0x449/0x700 [ 136.126944][ T8039] migrate_pages_batch+0x201d/0x31a0 [ 136.128362][ T8039] ? __pfx_compaction_free+0x10/0x10 [ 136.129882][ T8039] ? __pfx_migrate_pages_batch+0x10/0x10 [ 136.131366][ T8039] migrate_pages_sync+0x4c5/0x8a0 [ 136.132725][ T8039] ? __pfx_compaction_alloc+0x10/0x10 [ 136.134200][ T8039] ? __pfx_compaction_free+0x10/0x10 [ 136.135683][ T8039] ? __pfx_migrate_pages_sync+0x10/0x10 [ 136.137224][ T8039] migrate_pages+0x1b28/0x2350 [ 136.138615][ T8039] ? __pfx_compaction_alloc+0x10/0x10 [ 136.140113][ T8039] ? __pfx_compaction_free+0x10/0x10 [ 136.141530][ T8039] ? __pfx_migrate_pages+0x10/0x10 [ 136.142937][ T8039] ? __pfx_isolate_migratepages_block+0x10/0x10 [ 136.144634][ T8039] ? rcu_is_watching+0x12/0xc0 [ 136.145955][ T8039] compact_zone+0x1f6d/0x4220 [ 136.147255][ T8039] ? __pfx_compact_zone+0x10/0x10 [ 136.148656][ T8039] compact_zone_order+0x17b/0x250 [ 136.150082][ T8039] ? __pfx_compact_zone_order+0x10/0x10 [ 136.151613][ T8039] ? psi_group_change+0x6dc/0xd20 [ 136.153000][ T8039] try_to_compact_pages+0x344/0xa60 [ 136.154450][ T8039] __alloc_pages_direct_compact+0x137/0x570 [ 136.156065][ T8039] ? __pfx___alloc_pages_direct_compact+0x10/0x10 [ 136.157823][ T8039] ? psi_memstall_leave+0x1e1/0x2d0 [ 136.159264][ T8039] ? psi_memstall_leave+0x1e6/0x2d0 [ 136.160735][ T8039] ? lockdep_hardirqs_on+0x7c/0x110 [ 136.162192][ T8039] __alloc_frozen_pages_noprof+0xbf7/0x24d0 [ 136.163819][ T8039] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 136.165529][ T8039] ? sched_clock+0x38/0x60 [ 136.166808][ T8039] ? sched_clock_cpu+0x6c/0x530 [ 136.168200][ T8039] ? find_held_lock+0x2b/0x80 [ 136.169537][ T8039] ? rcu_is_watching+0x12/0xc0 [ 136.170890][ T8039] ? native_smp_send_reschedule+0x28/0x70 [ 136.172453][ T8039] __folio_alloc_noprof+0x11/0x220 [ 136.173893][ T8039] alloc_charge_folio+0x2c7/0x990 [ 136.175266][ T8039] collapse_file+0x1c6/0x3030 [ 136.176528][ T8039] ? __pfx_collapse_file+0x10/0x10 [ 136.177955][ T8039] ? xas_start+0x153/0x790 [ 136.179187][ T8039] ? find_held_lock+0x2b/0x80 [ 136.180499][ T8039] ? hpage_collapse_scan_file+0x410/0xce0 [ 136.182106][ T8039] ? hpage_collapse_scan_abort+0x193/0x210 [ 136.183703][ T8039] hpage_collapse_scan_file+0x7ed/0xce0 [ 136.185220][ T8039] ? __pfx_hpage_collapse_scan_file+0x10/0x10 [ 136.186916][ T8039] ? madvise_collapse+0x3fb/0xb20 [ 136.188311][ T8039] madvise_collapse+0x418/0xb20 [ 136.189677][ T8039] ? mas_prev_slot+0x4ce/0x1ff0 [ 136.191011][ T8039] ? __pfx_madvise_collapse+0x10/0x10 [ 136.192451][ T8039] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 136.194045][ T8039] madvise_vma_behavior+0xbae/0x1de0 [ 136.195445][ T8039] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 136.196943][ T8039] ? find_vma_prev+0xda/0x160 [ 136.198260][ T8039] ? __pfx_find_vma_prev+0x10/0x10 [ 136.199612][ T8039] ? __pfx___might_resched+0x10/0x10 [ 136.200997][ T8039] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 136.202559][ T8039] madvise_walk_vmas+0x1ce/0x2c0 [ 136.203946][ T8039] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 136.205452][ T8039] ? do_sys_openat2+0x1b0/0x1d0 [ 136.206803][ T8039] do_madvise+0x364/0x7c0 [ 136.208032][ T8039] ? __pfx_do_madvise+0x10/0x10 [ 136.209409][ T8039] ? __ia32_sys_futex_time32+0x1d9/0x460 [ 136.210998][ T8039] ? rcu_is_watching+0x12/0xc0 [ 136.212350][ T8039] __ia32_sys_madvise+0xa7/0x110 [ 136.213748][ T8039] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 136.215509][ T8039] __do_fast_syscall_32+0x73/0x120 [ 136.216920][ T8039] do_fast_syscall_32+0x32/0x80 [ 136.218323][ T8039] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 136.220066][ T8039] RIP: 0023:0xf7f53579 [ 136.221216][ T8039] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 136.226438][ T8039] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 00000000000000db [ 136.228678][ T8039] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000600003 [ 136.230813][ T8039] RDX: 0000000000000019 RSI: 0000000000000000 RDI: 0000000000000000 [ 136.232889][ T8039] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 136.234960][ T8039] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 136.237037][ T8039] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 136.239134][ T8039] [ 136.239980][ T8039] Modules linked in: [ 136.241453][ T8039] ---[ end trace 0000000000000000 ]--- [ 136.243185][ T8039] RIP: 0010:z3fold_page_migrate+0xc6b/0x13b0 [ 136.245305][ T8039] Code: a5 92 ff 48 c7 c6 c0 0e 7e 8b 48 89 ef e8 dd 70 d9 ff 90 0f 0b e8 35 a5 92 ff 48 c7 c6 20 0f 7e 8b 48 89 ef e8 c6 70 d9 ff 90 <0f> 0b e8 1e a5 92 ff 48 8d bb a0 00 00 00 48 b8 00 00 00 00 00 fc [ 136.250737][ T8039] RSP: 0018:ffffc9000c9aeab0 EFLAGS: 00010246 [ 136.252547][ T8039] RAX: 0000000000080000 RBX: 0000000000000000 RCX: ffffc9000cdd2000 [ 136.254952][ T8039] RDX: 0000000000080000 RSI: ffffffff8228506a RDI: ffff88802338ccc4 [ 136.257297][ T8039] RBP: ffffea00004dcf00 R08: 0000000000000001 R09: 0000000000000001 [ 136.259601][ T8039] R10: ffffffff90629217 R11: 1ffffffff1c391e9 R12: ffffea0000ad6cc0 [ 136.261855][ T8039] R13: ffffea00004dcf28 R14: 0000000000000001 R15: ffffea00004dcf18 [ 136.264435][ T8039] FS: 0000000000000000(0000) GS:ffff888097c5a000(0063) knlGS:00000000f5076b40 [ 136.267092][ T8039] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 136.269114][ T8039] CR2: 000000000c421faa CR3: 0000000023082000 CR4: 0000000000352ef0 [ 136.271462][ T8039] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 136.273709][ T8039] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 136.276022][ T8039] Kernel panic - not syncing: Fatal exception [ 136.278276][ T8039] Kernel Offset: disabled [ 136.279459][ T8039] Rebooting in 86400 seconds.. VM DIAGNOSIS: 04:13:59 Registers: info registers vcpu 0 CPU#0 RAX=000000000000004f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85413635 RDI=ffffffff9ab72ba0 RBP=ffffffff9ab72b60 RSP=ffffc9000c9ae450 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6e69203a73706f4f R12=0000000000000000 R13=000000000000004f R14=ffffffff9ab72b60 R15=ffffffff854135d0 RIP=ffffffff8541365f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097c5a000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000c421faa CR3=0000000023082000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=000000000042fc04 RBX=0000000000000001 RCX=ffffffff8b5b82f9 RDX=ffffed10056a65be RSI=ffffffff8bd35720 RDI=ffffffff819161d1 RBP=ffffed1003ad1488 RSP=ffffc9000046fe00 R8 =0000000000000000 R9 =ffffed10056a65bd R10=ffff88802b532deb R11=0000000000000001 R12=0000000000000001 R13=ffff88801d68a440 R14=ffffffff90629210 R15=0000000000000000 RIP=ffffffff8b5b96ef RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097d5a000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000008001e000 CR3=0000000023082000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000008 DR2=0000000000000000 DR3=0000000000000005 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=ffffc9000e68fb60 RCX=0000000000000000 RDX=0000000000000000 RSI=ffffffff84f55974 RDI=ffffc9000e68fb60 RBP=ffffffff84f55960 RSP=ffffc90000538f68 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffffc90000538ff8 R12=0000000000000000 R13=dffffc0000000000 R14=0000000000000000 R15=ffffc9000e68fb28 RIP=ffffffff84f5599d RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097e5a000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000561c08cc9280 CR3=000000004c352000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008220202 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff299c4e20 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4154414600544549 55510029646c253d 646970282064253a 29287338342e253a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4154414600544549 5551000c41490018 414c550d0541001f 0c0d561d110b001f ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=7f3974007f397400 7f3974007f397400 7f3974007f397400 7f3974007f397400 7f3974007f397400 7f3974007f397400 7f3974007f397400 7f3974007f397400 ZMM22=7d476eed7d476eed 7d476eed7d476eed 7d476eed7d476eed 7d476eed7d476eed 7d476eed7d476eed 7d476eed7d476eed 7d476eed7d476eed 7d476eed7d476eed ZMM23=cc5e9957cc5e9957 cc5e9957cc5e9957 cc5e9957cc5e9957 cc5e9957cc5e9957 cc5e9957cc5e9957 cc5e9957cc5e9957 cc5e9957cc5e9957 cc5e9957cc5e9957 ZMM24=a38b21d3a38b21d3 a38b21d3a38b21d3 a38b21d3a38b21d3 a38b21d3a38b21d3 a38b21d3a38b21d3 a38b21d3a38b21d3 a38b21d3a38b21d3 a38b21d3a38b21d3 ZMM25=05fc3bae05fc3bae 05fc3bae05fc3bae 05fc3bae05fc3bae 05fc3bae05fc3bae 05fc3bae05fc3bae 05fc3bae05fc3bae 05fc3bae05fc3bae 05fc3bae05fc3bae ZMM26=4fc928134fc92813 4fc928134fc92813 4fc928134fc92813 4fc928134fc92813 4fc928134fc92813 4fc928134fc92813 4fc928134fc92813 4fc928134fc92813 ZMM27=85249d9485249d94 85249d9485249d94 85249d9485249d94 85249d9485249d94 85249d9485249d94 85249d9485249d94 85249d9485249d94 85249d9485249d94 ZMM28=000000300000002f 0000002e0000002d 0000002c0000002b 0000002a00000029 0000002800000027 0000002600000025 0000002400000023 0000002200000021 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=ff040000ff040000 ff040000ff040000 ff040000ff040000 ff040000ff040000 ff040000ff040000 ff040000ff040000 ff040000ff040000 ff040000ff040000 info registers vcpu 3 CPU#3 RAX=dffffc0000000000 RBX=ffff888028e0adf0 RCX=ffffffff8955e482 RDX=ffff88802502843e RSI=ffffffff8955e491 RDI=ffff888043d48460 RBP=00000000000000fe RSP=ffffc900031674a8 R8 =0000000000000003 R9 =000000000000ffff R10=00000000000000fe R11=0000000000000001 R12=ffff888043d48000 R13=ffff88802502843e R14=ffff88802502843e R15=ffff88801bf5fb28 RIP=ffffffff8955e4c5 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fdbef360d00 ffffffff 00c00000 GS =0000 ffff888097f5a000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000561c08cbfe95 CR3=000000004c352000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000003400003 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 697270203a732500 7325207461206465 7269707865207972 746e65203a732500 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4c5755051f560000 5600055144054140 574c555d40055c57 514b40051f560000 ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=7f3974007f397400 7f3974007f397400 7f3974007f397400 7f3974007f397400 7f3974007f397400 7f3974007f397400 7f3974007f397400 7f3974007f397400 ZMM22=7d476eed7d476eed 7d476eed7d476eed 7d476eed7d476eed 7d476eed7d476eed 7d476eed7d476eed 7d476eed7d476eed 7d476eed7d476eed 7d476eed7d476eed ZMM23=cc5e9957cc5e9957 cc5e9957cc5e9957 cc5e9957cc5e9957 cc5e9957cc5e9957 cc5e9957cc5e9957 cc5e9957cc5e9957 cc5e9957cc5e9957 cc5e9957cc5e9957 ZMM24=a38b21d3a38b21d3 a38b21d3a38b21d3 a38b21d3a38b21d3 a38b21d3a38b21d3 a38b21d3a38b21d3 a38b21d3a38b21d3 a38b21d3a38b21d3 a38b21d3a38b21d3 ZMM25=05fc3bae05fc3bae 05fc3bae05fc3bae 05fc3bae05fc3bae 05fc3bae05fc3bae 05fc3bae05fc3bae 05fc3bae05fc3bae 05fc3bae05fc3bae 05fc3bae05fc3bae ZMM26=4fc928134fc92813 4fc928134fc92813 4fc928134fc92813 4fc928134fc92813 4fc928134fc92813 4fc928134fc92813 4fc928134fc92813 4fc928134fc92813 ZMM27=85249d9485249d94 85249d9485249d94 85249d9485249d94 85249d9485249d94 85249d9485249d94 85249d9485249d94 85249d9485249d94 85249d9485249d94 ZMM28=000000300000002f 0000002e0000002d 0000002c0000002b 0000002a00000029 0000002800000027 0000002600000025 0000002400000023 0000002200000021 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=ff040000ff040000 ff040000ff040000 ff040000ff040000 ff040000ff040000 ff040000ff040000 ff040000ff040000 ff040000ff040000 ff040000ff040000