last executing test programs:

1.3452589s ago: executing program 2 (id=2308):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x803, 0x0)
setitimer(0x2, &(0x7f0000000580)={{0x77359400}, {0x0, 0xea60}}, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x0, 0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
write$binfmt_script(r3, 0x0, 0x0)
sendmsg(r3, 0x0, 0x4)
prlimit64(0x0, 0x0, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r0, 0x0, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
ioprio_set$uid(0x0, 0x0, 0x0)
sched_setattr(0x0, 0x0, 0x0)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)

1.343241878s ago: executing program 0 (id=2309):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)

1.238913309s ago: executing program 1 (id=2310):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x8, 0x7fe2, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000800)={@broadcast, @link_local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "82d2f3", 0x8, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[@hopopts={0x2c}]}}}}}, 0x0)

1.179115722s ago: executing program 3 (id=2312):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000400)='neigh_create\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x37}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xfe, 0x60000004, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000, 0x0, 0xffffffffffffffdb, &(0x7f0000000040)="ded6e0966ec1cf6ba4b897a54e4e062b311453dcbb62932a01105d0a8066ca8e5e1f2f575d0d6e996b57fd408d420abb7337934e59815d75b4eb3e7206afce", &(0x7f0000000380)="af5fa441b438b5156d8a9fcc090f586e979858f64170cde36889dcc8539ffcca62621a4c3ea3f7acee366e6fb0b94314f90931dec60fed6c9fee64af416c29f65e47110b81f6b4da06db5e1aad1f627acb", 0x0, 0x3}, 0x2c)

1.102015316s ago: executing program 0 (id=2313):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
bind$nfc_llcp(r0, &(0x7f00000000c0)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "27280a694b4717e23b7bdd5542fdbc860628b719ee68ce1ff2cd27cd024ed0a8e38bfe14919ad36f143e8ac58e9adcc4848e194a74fc6f153a3a6ba206a077"}, 0x58)
bind$nfc_llcp(r0, &(0x7f00000006c0)={0x27, 0x0, 0x0, 0x5, 0x13, 0x9, "284afa077de2a7bae31e71523fe07198c8fd7d39a128adfd253d69c5f831a29f5b720e2f706bd9a246363a861c5d33173da42d95696cfb94d23a4165e2ba16", 0x3}, 0x60)

1.008039113s ago: executing program 0 (id=2314):
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, 0x0, 0x4000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
dup(0xffffffffffffffff)
pipe2$9p(&(0x7f00000001c0), 0x0)

1.007869309s ago: executing program 1 (id=2315):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000807b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10)
write(r2, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00000000000002000000000800040001000000", 0x24)
syz_genetlink_get_family_id$fou(&(0x7f0000000300), r2)

928.975702ms ago: executing program 0 (id=2316):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f00000001c0))
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getgid()

850.307736ms ago: executing program 1 (id=2317):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000240)={'batadv_slave_1\x00', <r3=>0x0})
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000080)=0xf3e, 0x62)
sendto$packet(r2, &(0x7f00000000c0)="3f033608eee812002c001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c152bfdf9435e3ffe46", 0xe90c, 0xa0c4, &(0x7f0000000540)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @multicast}, 0x14)

850.020017ms ago: executing program 0 (id=2318):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000400)='neigh_create\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r1}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000c80)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d64050000000000650404000100000004040000fb007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d83923dd29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e1a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2ca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080e71113610e10d858e8327edb1fb6c86adac12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18c65ae1bd4f4390af9a9ceafd07ed00b0000002cab154ad029a1090000002780870014f51c3c975d5aec84222fff0d7216fdb0d3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a2a71bc85018e5ff2c910496f18afc9ffc2cc788bee1b47683db01a469398685211bbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2acb72c7ead0509d380578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9624d37c10223fdae7ed04935c3c9068000000bc8619d73415cda2130f5011e4845500a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b40000000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b60c2499d16d7d9158ffffffff00000000ef069dc42749289f854797f2f900c2a12d8c38a967c1bbe09315c29877a331bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a9e90d7676074a0bde4471414c99d4894ee7f8139dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1038debd64cbe359454a3f2239cfe35f81b7aded448859968ff0e90500d0b07c0dd00490f167e6d5c1109681739dc33f75b2042b8ff8c21ad702cca54728acad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd20785f653b621491dc6aaee0d409731091f4fb94c06006e3c1be2f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e1590bab105b0cb578af7dc7d5e87d48d376444e2de02f47c61e8e84ff828de453f34c2b08660b080efc707e676e1fb4d5865c0ca177a4c7fbb4e829ab0894a1062b445c00f576b2b5cc7f819abd0f885cc4806f47ffb966fcf1e54f5a2d38708194cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d3676329bb8cda690d192a070886df42b2708398773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169cdfaa4252d4ea6b8f6216ff202b5b5a182cb5e8380100632d03a7ca6f6d0339f9953c30930804fdc3690d10ecb65dc5b47481edbf1eee2e8893e903054d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026def743f1213bf817becd9e5a225d67521d1128eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979030000007081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f324661351df747aa6a65872dfdcfa68f65bd06b4082d43e121861b5cc09b986bf56c747d9a1cc5b506892c3a16ff10feea20bdac89bfb758cf3500000000000000000000000000000098e6db5a96055e764a3bfd4ccb20d2e800994f4b602d25b2c076f21c7102687e054bb93b2d013be6227fd99902b074c0de00733128c81c48c5e140b17d71ac48f137d10798c4272826d2ba55bbda0059636528c132ed06759d880d1bc291beea56ed7ee8bcb392fdf886dbc74879ec4b831904d7c101ebbaef3c0ae6d0cf0000000000000000000000000000000011cb735f66a559ef0cdb5163a15c0bb986474bf5d9542e3e48805ce53127e4c076d69d868df543717aaaa07d7aca056f7f036c2bcba0795d1a64868a29ac5321b3cd6ef5b1a741afc7124e16b64a5d1d68b45fcfd7e531090ceae2f05536a4d5d6a4081e743827fb9c031d1fc9f195c2da189c49eaed6c30c71da0452e502ef393efeb02ebe82b1851cae5fa7c958ba23110b5e0e5b890803f28a356b2920e74564e0f8377b0ba515d4cc28d702287fed2882b4780a1bcb583f1cb1470003ef9b592b9461328cfc01ebfce0ecdcea714a517dc40000000000000000000000000006bd0561e1cc72880cc3ec1bdf35eb670a9040e3b53cd826b94ad8aeb014e74787fe89fb3247a87d8bfb6d400142369f88964708d1d4d"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x37}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xfe, 0x60000004, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000, 0x0, 0xffffffffffffffdb, &(0x7f0000000040)="ded6e0966ec1cf6ba4b897a54e4e062b311453dcbb62932a01105d0a8066ca8e5e1f2f575d0d6e996b57fd408d420abb7337934e59815d75b4eb3e7206afce", &(0x7f0000000380)="af5fa441b438b5156d8a9fcc090f586e979858f64170cde36889dcc8539ffcca62621a4c3ea3f7acee366e6fb0b94314f90931dec60fed6c9fee64af416c29f65e47110b81f6b4da06db5e1aad1f627acb", 0x0, 0x3}, 0x2c)

778.785518ms ago: executing program 2 (id=2319):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

778.471608ms ago: executing program 3 (id=2320):
syz_emit_ethernet(0x48, &(0x7f0000000800)={@broadcast, @link_local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "82d2f3", 0x12, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[@hopopts={0x2c, 0x0, '\x00', [@pad1]}], 'uI'}}}}}, 0x0)

672.61004ms ago: executing program 3 (id=2321):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000040), &(0x7f0000000280)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

489.692311ms ago: executing program 1 (id=2322):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
bind$nfc_llcp(r0, &(0x7f00000006c0)={0x27, 0x0, 0x0, 0x5, 0x13, 0x9, "284afa077de2a7bae31e71523fe07198c8fd7d39a128adfd253d69c5f831a29f5b720e2f706bd9a246363a861c5d33173da42d95696cfb94d23a4165e2ba16", 0x3}, 0x60)

489.513775ms ago: executing program 3 (id=2323):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x6}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r2, &(0x7f00000002c0)=ANY=[], 0xffdd)

489.389046ms ago: executing program 1 (id=2324):
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0)
write$vga_arbiter(r0, &(0x7f0000000280)=@target={'target ', {'PCI:', '4', ':', '5', ':', '17', '.', '15'}}, 0x15)

468.404365ms ago: executing program 1 (id=2325):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
rt_sigreturn()
creat(&(0x7f00000015c0)='./file0\x00', 0x98)
r1 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
prlimit64(0x0, 0x1, &(0x7f00000000c0), 0x0)
r2 = eventfd(0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
write$FUSE_ATTR(r3, &(0x7f0000000240)={0x78, 0xfffffffffffffffe, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff}}}, 0x78)
write$cgroup_devices(r3, &(0x7f0000000380)=ANY=[@ANYBLOB="01202a3a8a"], 0x8)
close(r3)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
rt_sigreturn()
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x80000000, 0x0)
umount2(&(0x7f00000020c0)='./file0/file0\x00', 0x8)

468.289925ms ago: executing program 2 (id=2326):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x6, 0xb21, 0x1, 0x0, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002a00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)

240.399901ms ago: executing program 0 (id=2327):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, 0x0, 0x0)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000100)=@req3, 0x1c)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
fchdir(0xffffffffffffffff)
syz_clone(0x0, &(0x7f0000000200), 0x0, 0x0, 0x0, 0x0)

240.197129ms ago: executing program 2 (id=2328):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000b8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETSF2(r1, 0x5453, 0x0)

100.777792ms ago: executing program 2 (id=2329):
munlockall()
r0 = syz_open_dev$loop(&(0x7f0000000740), 0x3800, 0x200)
ioctl$BLKSECDISCARD(r0, 0x127d, 0x0)

100.482817ms ago: executing program 2 (id=2330):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000100000000000000040000850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x5e}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0xae, &(0x7f00000005c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaaaa86dd60f4adf70038040000000000000000000000000000000000ff020000000000000000000000000001"], 0x0)

100.362813ms ago: executing program 3 (id=2331):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0xe)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_rxfh={0x46, 0x0, 0x0, 0x0, 0x0, "4487ae"}})

0s ago: executing program 3 (id=2332):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x0, 0x0, &(0x7f0000000200)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x2, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000340)=[0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff], &(0x7f00000003c0)=[{0x3, 0x4, 0x8, 0x4}, {0x0, 0x2, 0x2, 0x2}, {0x5, 0x1, 0x8, 0xb}, {0x5, 0x2, 0xa, 0x4}, {0x5, 0x873, 0x0, 0x4}, {0x1, 0x3, 0xe}], 0x10, 0x70}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x33, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='afs_volume\x00', r1}, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
futex_waitv(0x0, 0x0, 0x0, 0x0, 0x1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r2, &(0x7f0000000240)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7fffeff00"})
syz_open_pts(r2, 0x0)
openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000080), 0x3f00, 0x0)

kernel console output (not intermixed with test programs):

0xb4/0x270
[  412.459466][T10852]  ? bpf_lsm_file_ioctl+0x9/0x10
[  412.462380][T10852]  ? __pfx_blkdev_ioctl+0x10/0x10
[  412.464953][T10852]  __x64_sys_ioctl+0x193/0x220
[  412.467227][T10852]  do_syscall_64+0xcd/0x250
[  412.469151][T10852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  412.471395][T10852] RIP: 0033:0x7f01e9b79eb9
[  412.473395][T10852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  412.482668][T10852] RSP: 002b:00007f01ea966038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  412.486298][T10852] RAX: ffffffffffffffda RBX: 00007f01e9d15f80 RCX: 00007f01e9b79eb9
[  412.490275][T10852] RDX: 00000000200002c0 RSI: 0000000000004c0a RDI: 0000000000000003
[  412.495149][T10852] RBP: 00007f01ea966090 R08: 0000000000000000 R09: 0000000000000000
[  412.500014][T10852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  412.504472][T10852] R13: 0000000000000000 R14: 00007f01e9d15f80 R15: 00007ffeb9342868
[  412.508365][T10852]  </TASK>
[  412.895247][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  413.244111][T10873] sp0: Synchronizing with TNC
[  413.721899][T10882] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1574'.
[  413.731211][ T6349] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[  413.988298][ T6349] usb 6-1: Using ep0 maxpacket: 16
[  414.272178][T10901] FAULT_INJECTION: forcing a failure.
[  414.272178][T10901] name failslab, interval 1, probability 0, space 0, times 0
[  414.281359][T10901] CPU: 3 UID: 0 PID: 10901 Comm: syz.3.1578 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  414.287865][T10901] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  414.294028][T10901] Call Trace:
[  414.295762][T10901]  <TASK>
[  414.312625][T10901]  dump_stack_lvl+0x16c/0x1f0
[  414.315529][T10901]  should_fail_ex+0x497/0x5b0
[  414.318311][T10901]  ? fs_reclaim_acquire+0xae/0x160
[  414.320971][T10901]  should_failslab+0xc2/0x120
[  414.323409][T10901]  __kmalloc_node_noprof+0xd1/0x430
[  414.326514][T10901]  ? __kvmalloc_node_noprof+0x9d/0x1a0
[  414.329914][T10901]  __kvmalloc_node_noprof+0x9d/0x1a0
[  414.348105][T10901]  vmemdup_user+0x25/0x100
[  414.350975][T10901]  __sys_bpf+0x40b9/0x4a00
[  414.353754][T10901]  ? ksys_write+0x21c/0x260
[  414.356592][T10901]  ? __pfx___sys_bpf+0x10/0x10
[  414.359691][T10901]  ? vfs_write+0x14d/0x1140
[  414.362610][T10901]  ? __mutex_unlock_slowpath+0x164/0x650
[  414.366116][T10901]  ? fput+0x32/0x390
[  414.378405][T10901]  ? ksys_write+0x1ab/0x260
[  414.380400][T10901]  ? __pfx_ksys_write+0x10/0x10
[  414.382460][T10901]  __x64_sys_bpf+0x78/0xc0
[  414.384491][T10901]  ? lockdep_hardirqs_on+0x7c/0x110
[  414.387705][T10901]  do_syscall_64+0xcd/0x250
[  414.401493][T10901]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.416987][T10901] RIP: 0033:0x7f6df3379eb9
[  414.419349][T10901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.444135][T10901] RSP: 002b:00007f6df41f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  414.448532][T10901] RAX: ffffffffffffffda RBX: 00007f6df3516058 RCX: 00007f6df3379eb9
[  414.452496][T10901] RDX: 0000000000000020 RSI: 00000000200001c0 RDI: 0000000000000001
[  414.457537][T10901] RBP: 00007f6df41f0090 R08: 0000000000000000 R09: 0000000000000000
[  414.461042][T10901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  414.464243][T10901] R13: 0000000000000001 R14: 00007f6df3516058 R15: 00007ffc3095c6f8
[  414.467313][T10901]  </TASK>
[  414.678240][ T6349] usb 6-1: unable to get BOS descriptor or descriptor too short
[  414.697251][ T6349] usb 6-1: unable to read config index 0 descriptor/start: -71
[  414.702179][ T6349] usb 6-1: can't read configurations, error -71
[  415.500727][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  416.025944][T10907] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1581'.
[  416.952111][    C2] vkms_vblank_simulate: vblank timer overrun
[  417.016075][    C2] vkms_vblank_simulate: vblank timer overrun
[  417.048825][T10940] sp0: Synchronizing with TNC
[  417.372089][    C2] vkms_vblank_simulate: vblank timer overrun
[  418.367020][   T39] audit: type=1400 audit(1725108541.428:675): avc:  denied  { read } for  pid=10959 comm="syz.0.1593" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  419.332320][ T5354] Bluetooth: hci2: unexpected event for opcode 0x0c7b
[  420.043360][T10990] sp0: Synchronizing with TNC
[  420.717451][    C2] vkms_vblank_simulate: vblank timer overrun
[  420.784040][    C2] vkms_vblank_simulate: vblank timer overrun
[  420.796770][   T39] audit: type=1326 audit(1725108543.858:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11003 comm="syz.2.1608" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7ac3b79eb9 code=0x0
[  420.848025][    C2] vkms_vblank_simulate: vblank timer overrun
[  421.466243][T11019] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1611'.
[  421.645131][   T39] audit: type=1400 audit(1725108544.678:677): avc:  denied  { append } for  pid=11020 comm="syz.0.1612" name="video5" dev="devtmpfs" ino=883 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  421.820044][    C2] vkms_vblank_simulate: vblank timer overrun
[  421.899986][    C2] vkms_vblank_simulate: vblank timer overrun
[  422.000015][    C2] vkms_vblank_simulate: vblank timer overrun
[  422.049780][    C2] vkms_vblank_simulate: vblank timer overrun
[  422.113099][T11035] FAULT_INJECTION: forcing a failure.
[  422.113099][T11035] name failslab, interval 1, probability 0, space 0, times 0
[  422.118418][T11035] CPU: 1 UID: 0 PID: 11035 Comm: syz.3.1615 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  422.124507][T11035] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  422.129418][T11035] Call Trace:
[  422.130953][T11035]  <TASK>
[  422.132431][T11035]  dump_stack_lvl+0x16c/0x1f0
[  422.135051][T11035]  should_fail_ex+0x497/0x5b0
[  422.137871][T11035]  ? fs_reclaim_acquire+0xae/0x160
[  422.141034][T11035]  should_failslab+0xc2/0x120
[  422.143503][T11035]  kmem_cache_alloc_node_noprof+0x71/0x310
[  422.147273][T11035]  ? alloc_vmap_area+0x636/0x2a70
[  422.150222][T11035]  alloc_vmap_area+0x636/0x2a70
[  422.152657][T11035]  ? __pfx_alloc_vmap_area+0x10/0x10
[  422.155413][T11035]  __get_vm_area_node+0x17e/0x2d0
[  422.157994][T11035]  ? vmap_small_pages_range_noflush+0x7d2/0xd30
[  422.161205][T11035]  __vmalloc_node_range_noprof+0x270/0x14e0
[  422.163995][T11035]  ? bpf_prog_calc_tag+0x108/0x720
[  422.167154][T11035]  ? kasan_save_stack+0x33/0x60
[  422.170289][T11035]  ? __pfx_cmp_subprogs+0x10/0x10
[  422.173510][T11035]  ? bpf_prog_calc_tag+0x108/0x720
[  422.176721][T11035]  ? __pfx_cmp_subprogs+0x10/0x10
[  422.179725][T11035]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  422.183462][T11035]  ? add_subprog+0x276/0x380
[  422.186142][T11035]  ? __pfx_add_subprog+0x10/0x10
[  422.188937][T11035]  ? bpf_prog_calc_tag+0x108/0x720
[  422.192180][T11035]  vmalloc_noprof+0x6b/0x90
[  422.194992][T11035]  ? bpf_prog_calc_tag+0x108/0x720
[  422.197872][T11035]  bpf_prog_calc_tag+0x108/0x720
[  422.202693][T11035]  ? __pfx_bpf_prog_calc_tag+0x10/0x10
[  422.205383][T11035]  ? __pfx_add_subprog_and_kfunc+0x10/0x10
[  422.208315][T11035]  ? check_subprogs+0x57c/0x7d0
[  422.210539][T11035]  bpf_check+0x4b9a/0x9e50
[  422.212806][T11035]  ? __sys_bpf+0x8e9/0x4a00
[  422.214812][T11035]  ? __x64_sys_bpf+0x78/0xc0
[  422.216942][T11035]  ? do_syscall_64+0xcd/0x250
[  422.219548][T11035]  ? __pfx_bpf_check+0x10/0x10
[  422.222508][T11035]  ? selinux_bpf_prog_load+0x15f/0x1c0
[  422.225747][T11035]  bpf_prog_load+0xedb/0x2660
[  422.227787][T11035]  ? __pfx_bpf_prog_load+0x10/0x10
[  422.230033][T11035]  ? avc_has_perm+0x11b/0x1c0
[  422.231812][T11035]  ? selinux_bpf+0xde/0x130
[  422.233945][T11035]  ? security_bpf+0x8c/0xc0
[  422.236039][T11035]  __sys_bpf+0x8e9/0x4a00
[  422.238068][T11035]  ? ksys_write+0x21c/0x260
[  422.240722][T11035]  ? reacquire_held_locks+0x410/0x4c0
[  422.243834][T11035]  ? __pfx___sys_bpf+0x10/0x10
[  422.246244][T11035]  ? vfs_write+0x14d/0x1140
[  422.248410][T11035]  ? __mutex_unlock_slowpath+0x164/0x650
[  422.251673][T11035]  ? fput+0x32/0x390
[  422.254042][T11035]  ? ksys_write+0x1ab/0x260
[  422.256241][T11035]  ? __pfx_ksys_write+0x10/0x10
[  422.258611][T11035]  __x64_sys_bpf+0x78/0xc0
[  422.261008][T11035]  ? lockdep_hardirqs_on+0x7c/0x110
[  422.263513][T11035]  do_syscall_64+0xcd/0x250
[  422.265598][T11035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  422.268803][T11035] RIP: 0033:0x7f6df3379eb9
[  422.270856][T11035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  422.280242][T11035] RSP: 002b:00007f6df4211038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  422.284141][T11035] RAX: ffffffffffffffda RBX: 00007f6df3515f80 RCX: 00007f6df3379eb9
[  422.289002][T11035] RDX: 0000000000000070 RSI: 0000000020000080 RDI: 0000000000000005
[  422.293916][T11035] RBP: 00007f6df4211090 R08: 0000000000000000 R09: 0000000000000000
[  422.298780][T11035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  422.303172][T11035] R13: 0000000000000001 R14: 00007f6df3515f80 R15: 00007ffc3095c6f8
[  422.307531][T11035]  </TASK>
[  422.310335][T11035] syz.3.1615: vmalloc error: size 64, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[  422.316006][T11035] CPU: 0 UID: 0 PID: 11035 Comm: syz.3.1615 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  422.320192][T11035] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  422.325529][T11035] Call Trace:
[  422.326882][T11035]  <TASK>
[  422.328073][T11035]  dump_stack_lvl+0x16c/0x1f0
[  422.340693][T11035]  warn_alloc+0x24d/0x3a0
[  422.342398][T11035]  ? __pfx_warn_alloc+0x10/0x10
[  422.344162][T11035]  ? lockdep_hardirqs_on+0x7c/0x110
[  422.346197][T11035]  ? __get_vm_area_node+0x1bc/0x2d0
[  422.348222][T11035]  __vmalloc_node_range_noprof+0xc0d/0x14e0
[  422.361888][T11035]  ? kasan_save_stack+0x33/0x60
[  422.381983][T11035]  ? __pfx_cmp_subprogs+0x10/0x10
[  422.394609][T11035]  ? bpf_prog_calc_tag+0x108/0x720
[  422.397464][T11035]  ? __pfx_cmp_subprogs+0x10/0x10
[  422.400211][T11035]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  422.403637][T11035]  ? add_subprog+0x276/0x380
[  422.425123][T11035]  ? __pfx_add_subprog+0x10/0x10
[  422.427837][T11035]  ? bpf_prog_calc_tag+0x108/0x720
[  422.430619][T11035]  vmalloc_noprof+0x6b/0x90
[  422.433160][T11035]  ? bpf_prog_calc_tag+0x108/0x720
[  422.435959][T11035]  bpf_prog_calc_tag+0x108/0x720
[  422.438674][T11035]  ? __pfx_bpf_prog_calc_tag+0x10/0x10
[  422.441589][T11035]  ? __pfx_add_subprog_and_kfunc+0x10/0x10
[  422.447233][T11035]  ? check_subprogs+0x57c/0x7d0
[  422.449981][T11035]  bpf_check+0x4b9a/0x9e50
[  422.463723][T11035]  ? __sys_bpf+0x8e9/0x4a00
[  422.465881][T11035]  ? __x64_sys_bpf+0x78/0xc0
[  422.468084][T11035]  ? do_syscall_64+0xcd/0x250
[  422.471775][T11035]  ? __pfx_bpf_check+0x10/0x10
[  422.474396][T11035]  ? selinux_bpf_prog_load+0x15f/0x1c0
[  422.477308][T11035]  bpf_prog_load+0xedb/0x2660
[  422.480039][T11035]  ? __pfx_bpf_prog_load+0x10/0x10
[  422.482890][T11035]  ? avc_has_perm+0x11b/0x1c0
[  422.486828][T11035]  ? selinux_bpf+0xde/0x130
[  422.488820][T11035]  ? security_bpf+0x8c/0xc0
[  422.490458][T11035]  __sys_bpf+0x8e9/0x4a00
[  422.492406][T11035]  ? ksys_write+0x21c/0x260
[  422.493975][T11035]  ? reacquire_held_locks+0x410/0x4c0
[  422.495789][T11035]  ? __pfx___sys_bpf+0x10/0x10
[  422.497436][    C2] vkms_vblank_simulate: vblank timer overrun
[  422.497733][T11035]  ? vfs_write+0x14d/0x1140
[  422.517995][T11035]  ? __mutex_unlock_slowpath+0x164/0x650
[  422.520601][T11035]  ? fput+0x32/0x390
[  422.522526][T11035]  ? ksys_write+0x1ab/0x260
[  422.525308][T11035]  ? __pfx_ksys_write+0x10/0x10
[  422.527972][T11035]  __x64_sys_bpf+0x78/0xc0
[  422.529990][T11035]  ? lockdep_hardirqs_on+0x7c/0x110
[  422.533212][T11035]  do_syscall_64+0xcd/0x250
[  422.535707][T11035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  422.538891][T11035] RIP: 0033:0x7f6df3379eb9
[  422.541380][T11035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  422.550952][T11035] RSP: 002b:00007f6df4211038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  422.555381][T11035] RAX: ffffffffffffffda RBX: 00007f6df3515f80 RCX: 00007f6df3379eb9
[  422.573132][T11035] RDX: 0000000000000070 RSI: 0000000020000080 RDI: 0000000000000005
[  422.577344][T11035] RBP: 00007f6df4211090 R08: 0000000000000000 R09: 0000000000000000
[  422.580024][    C2] vkms_vblank_simulate: vblank timer overrun
[  422.581772][T11035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  422.589237][T11035] R13: 0000000000000001 R14: 00007f6df3515f80 R15: 00007ffc3095c6f8
[  422.593582][T11035]  </TASK>
[  422.605602][T11035] Mem-Info:
[  422.607465][T11035] active_anon:21819 inactive_anon:0 isolated_anon:0
[  422.607465][T11035]  active_file:15773 inactive_file:2364 isolated_file:0
[  422.607465][T11035]  unevictable:1768 dirty:31 writeback:0
[  422.607465][T11035]  slab_reclaimable:10542 slab_unreclaimable:73852
[  422.607465][T11035]  mapped:20431 shmem:19052 pagetables:693
[  422.607465][T11035]  sec_pagetables:326 bounce:0
[  422.607465][T11035]  kernel_misc_reclaimable:0
[  422.607465][T11035]  free:498619 free_pcp:6457 free_cma:0
[  422.620245][    C2] vkms_vblank_simulate: vblank timer overrun
[  422.632095][T11035] Node 0 active_anon:89012kB inactive_anon:0kB active_file:63092kB inactive_file:9452kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:83336kB dirty:124kB writeback:0kB shmem:74408kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11152kB pagetables:2772kB sec_pagetables:1304kB all_unreclaimable? no
[  422.646748][    C2] vkms_vblank_simulate: vblank timer overrun
[  422.695979][    C2] vkms_vblank_simulate: vblank timer overrun
[  422.697442][T11035] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  422.794883][T11035] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  422.812170][T11035] lowmem_reserve[]: 0 1218 0 0 0
[  422.825400][T11035] Node 0 DMA32 free:348256kB boost:0kB min:27696kB low:34620kB high:41544kB reserved_highatomic:0KB active_anon:93588kB inactive_anon:0kB active_file:63092kB inactive_file:9452kB unevictable:3536kB writepending:128kB present:2080628kB managed:1275300kB mlocked:0kB bounce:0kB free_pcp:14512kB local_pcp:1872kB free_cma:0kB
[  422.855826][T11035] lowmem_reserve[]: 0 0 0 0 0
[  422.858632][T11035] Node 1 Normal free:1632796kB boost:0kB min:39540kB low:49424kB high:59308kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:4576kB local_pcp:0kB free_cma:0kB
[  422.881437][T11035] lowmem_reserve[]: 0 0 0 0 0
[  422.884166][T11035] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  422.907637][T11035] Node 0 DMA32: 0*4kB 24*8kB (UM) 104*16kB (UME) 173*32kB (UM) 100*64kB (UME) 31*128kB (UME) 11*256kB (UME) 40*512kB (UM) 68*1024kB (UME) 32*2048kB (UME) 42*4096kB (UM) = 348256kB
[  422.914243][T11035] Node 1 Normal: 1*4kB (M) 3*8kB (UM) 4*16kB (UM) 2*32kB (UM) 4*64kB (UM) 13*128kB (UM) 10*256kB (U) 6*512kB (UM) 5*1024kB (U) 3*2048kB (UM) 394*4096kB (UM) = 1632796kB
[  422.927293][T11035] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  422.985884][T11042] sp0: Synchronizing with TNC
[  423.001817][T11035] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  423.026295][T11035] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  423.031467][T11035] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  423.048950][T11035] 38862 total pagecache pages
[  423.067535][T11035] 0 pages in swap cache
[  423.082907][T11035] Free swap  = 124052kB
[  423.085073][T11035] Total swap = 124996kB
[  423.087056][T11035] 1048443 pages RAM
[  423.096433][T11035] 0 pages HighMem/MovableOnly
[  423.098339][T11035] 280297 pages reserved
[  423.099889][T11035] 0 pages cma reserved
[  423.856971][   T39] audit: type=1400 audit(1725108546.928:678): avc:  denied  { getopt } for  pid=11050 comm="syz.3.1621" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  424.078270][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  424.192101][    C2] vkms_vblank_simulate: vblank timer overrun
[  424.448027][    C2] vkms_vblank_simulate: vblank timer overrun
[  424.795983][    C2] vkms_vblank_simulate: vblank timer overrun
[  424.824979][T11080] veth1_macvtap: left promiscuous mode
[  424.834705][   T39] audit: type=1400 audit(1725108547.898:679): avc:  denied  { watch watch_reads } for  pid=11083 comm="syz.0.1631" path=2F6465762F7074732F30202864656C6574656429 dev="devpts" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_devpts_t tclass=chr_file permissive=1
[  424.840107][T11085] veth1_macvtap: entered promiscuous mode
[  424.891140][T11085] macsec0: entered allmulticast mode
[  424.893478][T11085] veth1_macvtap: entered allmulticast mode
[  425.311293][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  425.601849][T11103] sp0: Synchronizing with TNC
[  429.541697][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  430.207694][T11153] sp0: Synchronizing with TNC
[  430.895502][   T39] audit: type=1400 audit(1725108553.968:680): avc:  denied  { setopt } for  pid=11158 comm="syz.0.1654" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  430.904474][ T4761] IPVS: starting estimator thread 0...
[  431.001844][T11160] IPVS: using max 22 ests per chain, 52800 per kthread
[  431.493711][   T39] audit: type=1400 audit(1725108554.568:681): avc:  denied  { getopt } for  pid=11170 comm="syz.3.1657" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  431.552854][T11171] overlayfs: failed to resolve './file1': -2
[  431.758938][   T39] audit: type=1400 audit(1725108554.828:682): avc:  denied  { mounton } for  pid=11175 comm="syz.0.1660" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  432.050355][   T56] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  432.270409][   T56] usb 5-1: Using ep0 maxpacket: 32
[  432.294809][   T56] usb 5-1: config index 0 descriptor too short (expected 35577, got 27)
[  432.303762][   T56] usb 5-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  432.328169][   T56] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 92
[  432.331796][   T56] usb 5-1: config 1 has no interface number 0
[  432.334346][   T56] usb 5-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  432.339490][   T56] usb 5-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  432.368161][   T56] usb 5-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  432.384054][   T56] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  432.439126][   T56] snd_usb_pod 5-1:1.1: Line 6 Pocket POD found
[  432.548239][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  432.664605][T11176] trusted_key: encrypted_key: keyword 'wpdate' not recognized
[  433.027111][   T56] snd_usb_pod 5-1:1.1: set_interface failed
[  433.031666][   T56] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now disconnected
[  433.035503][   T56] snd_usb_pod 5-1:1.1: probe with driver snd_usb_pod failed with error -71
[  433.037262][T11193] sp0: Synchronizing with TNC
[  433.043557][   T56] usb 5-1: USB disconnect, device number 30
[  433.418528][T11200] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1667'.
[  433.751220][T11205] netlink: 'syz.1.1669': attribute type 15 has an invalid length.
[  434.267744][T11212] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1671'.
[  434.429674][T11210] fuse: Bad value for 'fd'
[  434.959062][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  435.024139][T11228] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1676'.
[  435.882929][T11241] sp0: Synchronizing with TNC
[  436.082858][T11239] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=22724 sclass=netlink_route_socket pid=11239 comm=syz.0.1680
[  437.085056][T11251] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1685'.
[  438.184734][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  439.573267][T11293] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1697'.
[  441.015848][    C2] vkms_vblank_simulate: vblank timer overrun
[  441.477504][    C2] vkms_vblank_simulate: vblank timer overrun
[  441.569227][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  442.140414][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  442.159840][    C2] vkms_vblank_simulate: vblank timer overrun
[  442.389361][T11314] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1703'.
[  442.583820][    C2] vkms_vblank_simulate: vblank timer overrun
[  443.044248][T11326] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  443.373610][T11332] ieee802154 phy0 wpan0: encryption failed: -22
[  443.379283][T11332] FAULT_INJECTION: forcing a failure.
[  443.379283][T11332] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  443.387756][    C2] vkms_vblank_simulate: vblank timer overrun
[  443.468053][T11332] CPU: 1 UID: 0 PID: 11332 Comm: syz.0.1710 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  443.475100][T11332] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  443.482096][T11332] Call Trace:
[  443.484292][T11332]  <TASK>
[  443.486417][T11332]  dump_stack_lvl+0x16c/0x1f0
[  443.491165][T11332]  should_fail_ex+0x497/0x5b0
[  443.494736][T11332]  _copy_from_user+0x30/0xf0
[  443.497777][T11332]  copy_msghdr_from_user+0x99/0x160
[  443.502777][T11332]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  443.509150][T11332]  ? __lock_acquire+0x1620/0x3cb0
[  443.513284][T11332]  ___sys_sendmsg+0xff/0x1e0
[  443.515391][T11332]  ? __pfx____sys_sendmsg+0x10/0x10
[  443.517846][T11332]  ? __pfx___might_resched+0x10/0x10
[  443.520345][T11332]  ? __might_fault+0xe3/0x190
[  443.522714][T11332]  __sys_sendmmsg+0x1a1/0x450
[  443.524954][T11332]  ? __pfx___sys_sendmmsg+0x10/0x10
[  443.527674][T11332]  ? vfs_write+0x14d/0x1140
[  443.530341][T11332]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  443.533604][T11332]  ? fput+0x32/0x390
[  443.536150][T11332]  ? ksys_write+0x1ab/0x260
[  443.538528][T11332]  ? __pfx_ksys_write+0x10/0x10
[  443.541133][T11332]  __x64_sys_sendmmsg+0x9c/0x100
[  443.543985][T11332]  ? lockdep_hardirqs_on+0x7c/0x110
[  443.546804][T11332]  do_syscall_64+0xcd/0x250
[  443.548844][T11332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  443.551339][T11332] RIP: 0033:0x7f54fff79eb9
[  443.553182][T11332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  443.562473][T11332] RSP: 002b:00007f5500de4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  443.567026][T11332] RAX: ffffffffffffffda RBX: 00007f5500116058 RCX: 00007f54fff79eb9
[  443.571114][T11332] RDX: 00000000fffffdef RSI: 00000000200020c0 RDI: 0000000000000007
[  443.576012][T11332] RBP: 00007f5500de4090 R08: 0000000000000000 R09: 0000000000000000
[  443.580199][T11332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  443.584326][T11332] R13: 0000000000000000 R14: 00007f5500116058 R15: 00007ffcec415308
[  443.588008][T11332]  </TASK>
[  444.600836][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  445.022997][   T39] audit: type=1400 audit(1725108568.088:683): avc:  denied  { mount } for  pid=11348 comm="syz.2.1716" name="/" dev="configfs" ino=3078 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  445.115802][    C2] vkms_vblank_simulate: vblank timer overrun
[  445.871552][T10509] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  445.883759][T10509] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  445.891962][T10509] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  445.898358][T11364] ieee802154 phy0 wpan0: encryption failed: -22
[  445.951850][    C2] vkms_vblank_simulate: vblank timer overrun
[  445.970590][T10509] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  445.990468][T10509] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  446.001981][T10509] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  446.028928][ T1380] ieee802154 phy0 wpan0: encryption failed: -22
[  446.032526][ T1380] ieee802154 phy1 wpan1: encryption failed: -22
[  446.393402][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  446.959759][    C2] vkms_vblank_simulate: vblank timer overrun
[  447.195008][T11360] chnl_net:caif_netlink_parms(): no params data found
[  447.373053][T11384] netlink: 'syz.1.1724': attribute type 5 has an invalid length.
[  447.531764][    C2] vkms_vblank_simulate: vblank timer overrun
[  447.663285][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  447.895306][T11360] bridge0: port 1(bridge_slave_0) entered blocking state
[  447.936271][T11360] bridge0: port 1(bridge_slave_0) entered disabled state
[  447.942798][T11360] bridge_slave_0: entered allmulticast mode
[  447.948600][T11360] bridge_slave_0: entered promiscuous mode
[  447.967334][T11360] bridge0: port 2(bridge_slave_1) entered blocking state
[  447.972851][T11360] bridge0: port 2(bridge_slave_1) entered disabled state
[  448.010986][T11360] bridge_slave_1: entered allmulticast mode
[  448.015234][T11360] bridge_slave_1: entered promiscuous mode
[  448.104067][ T5354] Bluetooth: hci3: command tx timeout
[  448.210346][T11396] FAULT_INJECTION: forcing a failure.
[  448.210346][T11396] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  448.232280][T11396] CPU: 0 UID: 0 PID: 11396 Comm: syz.0.1729 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  448.237261][T11396] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  448.241661][T11396] Call Trace:
[  448.243060][T11396]  <TASK>
[  448.244405][T11396]  dump_stack_lvl+0x16c/0x1f0
[  448.246585][T11396]  should_fail_ex+0x497/0x5b0
[  448.248907][T11396]  _copy_to_user+0x30/0xc0
[  448.251061][T11396]  simple_read_from_buffer+0xd0/0x160
[  448.253685][T11396]  proc_fail_nth_read+0x19e/0x280
[  448.256015][T11396]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  448.258930][T11396]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  448.261582][T11396]  vfs_read+0x1d4/0xbd0
[  448.263630][T11396]  ? __fdget_pos+0xeb/0x180
[  448.271718][T11396]  ? __pfx_vfs_read+0x10/0x10
[  448.273724][T11396]  ? __pfx___mutex_lock+0x10/0x10
[  448.275892][T11396]  ? __fget_files+0x256/0x400
[  448.278042][T11396]  ksys_read+0x12f/0x260
[  448.279944][T11396]  ? __pfx_ksys_read+0x10/0x10
[  448.282532][T11396]  do_syscall_64+0xcd/0x250
[  448.284686][T11396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  448.287386][T11396] RIP: 0033:0x7f54fff788fc
[  448.290111][T11396] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  448.302429][T11396] RSP: 002b:00007f5500e05030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  448.307541][T11396] RAX: ffffffffffffffda RBX: 00007f5500115f80 RCX: 00007f54fff788fc
[  448.312484][T11396] RDX: 000000000000000f RSI: 00007f5500e050a0 RDI: 0000000000000003
[  448.319059][T11396] RBP: 00007f5500e05090 R08: 0000000000000000 R09: 0000000000000000
[  448.321477][T11398] netlink: 'syz.2.1730': attribute type 1 has an invalid length.
[  448.323528][T11396] R10: 0000000000000014 R11: 0000000000000246 R12: 0000000000000001
[  448.326783][T11398] netlink: 9348 bytes leftover after parsing attributes in process `syz.2.1730'.
[  448.331152][T11396] R13: 0000000000000001 R14: 00007f5500115f80 R15: 00007ffcec415308
[  448.331183][T11396]  </TASK>
[  448.346540][T11360] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  448.397394][T11360] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  448.412837][T11398] netlink: 'syz.2.1730': attribute type 1 has an invalid length.
[  448.416314][T11398] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1730'.
[  448.759121][T11360] team0: Port device team_slave_0 added
[  448.802515][T11360] team0: Port device team_slave_1 added
[  448.961498][T11415] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11415 comm=syz.2.1733
[  449.044916][    C2] vkms_vblank_simulate: vblank timer overrun
[  449.067598][T11360] batman_adv: batadv0: Adding interface: batadv_slave_0
[  449.074970][T11360] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  449.120847][T11360] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  449.167719][    C2] vkms_vblank_simulate: vblank timer overrun
[  449.227038][T11360] batman_adv: batadv0: Adding interface: batadv_slave_1
[  449.229819][T11360] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  449.243965][T11360] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  449.364237][T11360] hsr_slave_0: entered promiscuous mode
[  449.398112][T11360] hsr_slave_1: entered promiscuous mode
[  449.452386][T11360] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  449.459590][T11360] Cannot create hsr debugfs directory
[  450.170443][ T5354] Bluetooth: hci3: command tx timeout
[  450.363758][    C2] vkms_vblank_simulate: vblank timer overrun
[  450.451734][    C2] vkms_vblank_simulate: vblank timer overrun
[  450.607100][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  450.803263][T11360] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  450.974913][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  451.063075][    C2] vkms_vblank_simulate: vblank timer overrun
[  451.154481][T11360] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.246494][T11443] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1741'.
[  451.358881][    C2] vkms_vblank_simulate: vblank timer overrun
[  451.514066][    C2] vkms_vblank_simulate: vblank timer overrun
[  451.545599][T11360] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.624412][    C2] vkms_vblank_simulate: vblank timer overrun
[  451.802812][T11360] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.924948][T11455] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1744'.
[  451.964415][T11455] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1744'.
[  452.280389][ T5354] Bluetooth: hci3: command tx timeout
[  452.302193][T11360] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  452.347734][    C2] vkms_vblank_simulate: vblank timer overrun
[  452.397357][T11360] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  452.442996][T11360] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  452.498875][T11360] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  452.527708][    C2] vkms_vblank_simulate: vblank timer overrun
[  452.763991][    C2] vkms_vblank_simulate: vblank timer overrun
[  452.772647][T11360] 8021q: adding VLAN 0 to HW filter on device bond0
[  452.833391][T11360] 8021q: adding VLAN 0 to HW filter on device team0
[  452.858722][T11474] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1750'.
[  452.862944][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  452.871835][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  452.897665][ T1217] bridge0: port 2(bridge_slave_1) entered blocking state
[  452.902599][ T1217] bridge0: port 2(bridge_slave_1) entered forwarding state
[  453.413922][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  453.547487][T11360] 8021q: adding VLAN 0 to HW filter on device batadv0
[  453.608687][   T39] audit: type=1326 audit(1725108576.668:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11485 comm="syz.0.1753" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f54fff79eb9 code=0x0
[  453.745367][T11360] veth0_vlan: entered promiscuous mode
[  453.779779][T11360] veth1_vlan: entered promiscuous mode
[  453.915473][T11360] veth0_macvtap: entered promiscuous mode
[  453.958712][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  453.967242][T11360] veth1_macvtap: entered promiscuous mode
[  453.984399][T11360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.990461][T11360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.997799][T11360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  454.040926][T11360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.045583][T11360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  454.051718][T11360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.080294][T11360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  454.160554][T11360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.181972][T11360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  454.195887][T11360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.202883][T11360] batman_adv: batadv0: Interface activated: batadv_slave_0
[  454.244927][T11360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  454.249630][T11360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.265133][T11360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  454.269357][T11360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.278589][T11360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  454.293621][T11360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.298132][T11360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  454.307096][T11360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.329681][T11360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  454.334448][T11360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  454.352063][ T5354] Bluetooth: hci3: command tx timeout
[  454.356553][T11360] batman_adv: batadv0: Interface activated: batadv_slave_1
[  454.395473][T11360] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  454.400144][T11360] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  454.406011][T11360] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  454.430337][T11360] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  454.844038][   T97] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  454.847444][   T97] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  454.943220][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  454.948138][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  455.076271][T11499] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1758'.
[  456.493989][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  457.076388][T11518] FAULT_INJECTION: forcing a failure.
[  457.076388][T11518] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  457.091301][T11518] CPU: 1 UID: 0 PID: 11518 Comm: syz.1.1763 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  457.096701][T11518] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  457.107979][T11518] Call Trace:
[  457.110169][T11518]  <TASK>
[  457.115479][T11518]  dump_stack_lvl+0x16c/0x1f0
[  457.118655][T11518]  should_fail_ex+0x497/0x5b0
[  457.121971][T11518]  _copy_from_user+0x30/0xf0
[  457.124955][T11518]  copy_msghdr_from_user+0x99/0x160
[  457.130938][T11518]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  457.134779][T11518]  ? find_held_lock+0x2d/0x110
[  457.139060][T11518]  ? __pfx___lock_acquire+0x10/0x10
[  457.142526][T11518]  ___sys_sendmsg+0xff/0x1e0
[  457.145613][T11518]  ? __pfx____sys_sendmsg+0x10/0x10
[  457.149104][T11518]  ? ksys_write+0x21c/0x260
[  457.152140][T11518]  ? __fget_light+0x173/0x210
[  457.155246][T11518]  __sys_sendmsg+0x117/0x1f0
[  457.158371][T11518]  ? __pfx___sys_sendmsg+0x10/0x10
[  457.161313][T11518]  do_syscall_64+0xcd/0x250
[  457.163416][T11518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  457.167194][T11518] RIP: 0033:0x7f01e9b79eb9
[  457.170415][T11518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  457.182016][T11518] RSP: 002b:00007f01ea966038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  457.186340][T11518] RAX: ffffffffffffffda RBX: 00007f01e9d15f80 RCX: 00007f01e9b79eb9
[  457.190435][T11518] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000003
[  457.194190][T11518] RBP: 00007f01ea966090 R08: 0000000000000000 R09: 0000000000000000
[  457.199032][T11518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  457.204254][T11518] R13: 0000000000000000 R14: 00007f01e9d15f80 R15: 00007ffeb9342868
[  457.209433][T11518]  </TASK>
[  457.512096][T11523] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1766'.
[  457.741611][T11530] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1769'.
[  459.080722][   T39] audit: type=1800 audit(1725108582.148:685): pid=11546 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.1.1772" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  459.101158][T11546] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1772'.
[  459.375869][ T5354] Bluetooth: hci3: Opcode 0x206a failed: -110
[  459.379587][ T5354] Bluetooth: hci3: command 0x206a tx timeout
[  459.564039][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  459.966384][    C3] IPv4: Oversized IP packet from 172.20.20.24
[  461.215748][T11570] netlink: 'syz.1.1779': attribute type 5 has an invalid length.
[  461.409851][   T39] audit: type=1400 audit(1725108584.478:686): avc:  denied  { unmount } for  pid=11360 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  461.620312][ T8885] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[  461.837261][ T8885] usb 6-1: config 0 has an invalid interface number: 248 but max is 0
[  461.842274][ T8885] usb 6-1: config 0 has no interface number 0
[  461.846020][ T8885] usb 6-1: config 0 interface 248 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  461.866774][ T8885] usb 6-1: New USB device found, idVendor=1b3d, idProduct=9316, bcdDevice= 4.3d
[  461.876124][ T8885] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  461.889578][ T8885] usb 6-1: config 0 descriptor??
[  461.904330][ T8885] ftdi_sio 6-1:0.248: FTDI USB Serial Device converter detected
[  461.920578][ T8885] ftdi_sio ttyUSB0: unknown device type: 0x43d
[  462.239133][ T8885] usb 6-1: USB disconnect, device number 32
[  462.270407][ T8885] ftdi_sio 6-1:0.248: device disconnected
[  462.321841][T11585] FAULT_INJECTION: forcing a failure.
[  462.321841][T11585] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  462.333098][T10509] Bluetooth: hci5: command 0x206a tx timeout
[  462.338269][ T5354] Bluetooth: hci5: Opcode 0x206a failed: -110
[  462.377096][T11585] CPU: 0 UID: 0 PID: 11585 Comm: syz.3.1782 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  462.392490][T11585] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  462.399601][T11585] Call Trace:
[  462.402201][T11585]  <TASK>
[  462.403733][T11585]  dump_stack_lvl+0x16c/0x1f0
[  462.425145][T11585]  should_fail_ex+0x497/0x5b0
[  462.427251][T11585]  _copy_from_user+0x30/0xf0
[  462.429322][T11585]  copy_msghdr_from_user+0x99/0x160
[  462.431653][T11585]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  462.434180][T11585]  ? __pfx___lock_acquire+0x10/0x10
[  462.449354][T11585]  ___sys_sendmsg+0xff/0x1e0
[  462.451897][T11585]  ? __pfx____sys_sendmsg+0x10/0x10
[  462.454452][T11585]  ? __pfx_lock_release+0x10/0x10
[  462.456810][T11585]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  462.459547][T11585]  ? __fget_light+0x173/0x210
[  462.461951][T11585]  __sys_sendmmsg+0x1a1/0x450
[  462.464506][T11585]  ? __pfx___sys_sendmmsg+0x10/0x10
[  462.467039][T11585]  ? vfs_write+0x14d/0x1140
[  462.469416][T11585]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  462.471966][T11585]  ? fput+0x32/0x390
[  462.473545][T11585]  ? ksys_write+0x1ab/0x260
[  462.475395][T11585]  ? __pfx_ksys_write+0x10/0x10
[  462.477991][T11585]  __x64_sys_sendmmsg+0x9c/0x100
[  462.480508][T11585]  ? lockdep_hardirqs_on+0x7c/0x110
[  462.483287][T11585]  do_syscall_64+0xcd/0x250
[  462.485416][T11585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  462.488373][T11585] RIP: 0033:0x7f4b8d779eb9
[  462.490982][T11585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  462.499796][T11585] RSP: 002b:00007f4b8e5ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  462.504460][T11585] RAX: ffffffffffffffda RBX: 00007f4b8d915f80 RCX: 00007f4b8d779eb9
[  462.508717][T11585] RDX: 0000000000000001 RSI: 0000000020001200 RDI: 0000000000000004
[  462.512440][T11585] RBP: 00007f4b8e5ef090 R08: 0000000000000000 R09: 0000000000000000
[  462.515937][T11585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  462.519549][T11585] R13: 0000000000000000 R14: 00007f4b8d915f80 R15: 00007ffda32bdba8
[  462.523270][T11585]  </TASK>
[  462.613362][    C2] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  462.737567][T11590] pim6reg: entered allmulticast mode
[  462.743761][T11590] pim6reg: left allmulticast mode
[  463.093995][T11594] netlink: 332 bytes leftover after parsing attributes in process `syz.2.1785'.
[  463.102611][T11594] netlink: 652 bytes leftover after parsing attributes in process `syz.2.1785'.
[  463.327586][    C1] vkms_vblank_simulate: vblank timer overrun
[  463.402686][T11600] netlink: 'syz.2.1788': attribute type 5 has an invalid length.
[  463.421782][    C1] vkms_vblank_simulate: vblank timer overrun
[  463.553567][T11604] netlink: 'syz.2.1790': attribute type 12 has an invalid length.
[  463.557504][T11604] netlink: 'syz.2.1790': attribute type 29 has an invalid length.
[  463.580277][T11604] netlink: 'syz.2.1790': attribute type 2 has an invalid length.
[  463.594787][T11604] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1790'.
[  463.660069][   T39] audit: type=1400 audit(1725108586.728:687): avc:  denied  { read } for  pid=11605 comm="syz.1.1791" name="btrfs-control" dev="devtmpfs" ino=1152 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  463.728154][   T39] audit: type=1400 audit(1725108586.738:688): avc:  denied  { open } for  pid=11605 comm="syz.1.1791" path="/dev/btrfs-control" dev="devtmpfs" ino=1152 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  463.751694][   T58] hid-generic 0000:0000:0000.0015: item fetching failed at offset 0/1
[  463.820437][   T58] hid-generic 0000:0000:0000.0015: probe with driver hid-generic failed with error -22
[  464.455580][    C1] vkms_vblank_simulate: vblank timer overrun
[  464.555799][    C3] IPv4: Oversized IP packet from 172.20.20.24
[  465.020749][    C1] vkms_vblank_simulate: vblank timer overrun
[  465.371068][T11622] ieee802154 phy0 wpan0: encryption failed: -22
[  465.760442][    C1] vkms_vblank_simulate: vblank timer overrun
[  465.855128][    C1] vkms_vblank_simulate: vblank timer overrun
[  466.086592][   T66] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  466.095273][   T66] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  466.103031][   T66] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  466.106990][T11637] netlink: 'syz.3.1799': attribute type 5 has an invalid length.
[  466.109777][   T66] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  466.115332][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  466.184704][   T66] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  466.189181][   T66] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  466.198949][    C1] vkms_vblank_simulate: vblank timer overrun
[  467.133636][ T5354] Bluetooth: hci5: Opcode 0x206a failed: -110
[  467.159834][   T66] Bluetooth: hci5: command 0x206a tx timeout
[  467.164358][ T5354] Bluetooth: hci5: Opcode 0x206a failed: -110
[  467.301155][    C2] IPv4: Oversized IP packet from 172.20.20.24
[  467.371251][T11656] bridge0: entered promiscuous mode
[  467.374151][T11656] bridge0: entered allmulticast mode
[  467.862743][T10463] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  467.976434][T11670] netlink: 'syz.3.1808': attribute type 5 has an invalid length.
[  468.122559][T10463] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  468.254537][ T5354] Bluetooth: hci6: command tx timeout
[  468.382007][   T39] audit: type=1400 audit(1725108591.448:689): avc:  denied  { ioctl } for  pid=11676 comm="syz.2.1811" path="socket:[44110]" dev="sockfs" ino=44110 ioctlcmd=0x8904 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  468.468679][T11668] Process accounting resumed
[  468.499297][   T39] audit: type=1400 audit(1725108591.568:690): avc:  denied  { read } for  pid=11676 comm="syz.2.1811" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  468.632331][T10463] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  468.937349][T10463] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.066717][T11687] FAULT_INJECTION: forcing a failure.
[  469.066717][T11687] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  469.097766][T11687] CPU: 1 UID: 0 PID: 11687 Comm: syz.3.1813 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  469.108789][T11687] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  469.135809][T11687] Call Trace:
[  469.137301][T11687]  <TASK>
[  469.138582][T11687]  dump_stack_lvl+0x16c/0x1f0
[  469.140702][T11687]  should_fail_ex+0x497/0x5b0
[  469.142814][T11687]  _copy_to_user+0x30/0xc0
[  469.161552][T11687]  simple_read_from_buffer+0xd0/0x160
[  469.163982][T11687]  proc_fail_nth_read+0x19e/0x280
[  469.166214][T11687]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  469.168612][T11687]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  469.171032][T11687]  vfs_read+0x1d4/0xbd0
[  469.191454][T11687]  ? __fdget_pos+0xeb/0x180
[  469.193503][T11687]  ? __pfx_vfs_read+0x10/0x10
[  469.195502][T11687]  ? __pfx___mutex_lock+0x10/0x10
[  469.197699][T11687]  ? __fget_files+0x256/0x400
[  469.203936][T11687]  ksys_read+0x12f/0x260
[  469.207093][T11687]  ? __pfx_ksys_read+0x10/0x10
[  469.209134][T11687]  do_syscall_64+0xcd/0x250
[  469.214319][T11687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.216782][T11687] RIP: 0033:0x7f4b8d7788fc
[  469.218652][T11687] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  469.226751][T11687] RSP: 002b:00007f4b8e5ef030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  469.231225][T11687] RAX: ffffffffffffffda RBX: 00007f4b8d915f80 RCX: 00007f4b8d7788fc
[  469.239953][T11687] RDX: 000000000000000f RSI: 00007f4b8e5ef0a0 RDI: 0000000000000005
[  469.242846][ T5354] Bluetooth: hci5: command 0x206a tx timeout
[  469.243777][T11687] RBP: 00007f4b8e5ef090 R08: 0000000000000000 R09: 0000000000000000
[  469.249954][T11687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  469.253459][T11687] R13: 0000000000000000 R14: 00007f4b8d915f80 R15: 00007ffda32bdba8
[  469.257508][T11687]  </TASK>
[  469.275209][T11683] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  469.278934][T11683] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  469.379946][T11683] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  469.440057][T11635] chnl_net:caif_netlink_parms(): no params data found
[  469.495689][T11683] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  469.499320][T11683] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  469.634585][   T66] Bluetooth: hci3: Opcode 0x206a failed: -110
[  469.665242][ T5354] Bluetooth: hci3: command 0x206a tx timeout
[  469.667563][T11683] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  469.678255][   T66] Bluetooth: hci3: Opcode 0x206a failed: -110
[  469.828822][T11683] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  469.940529][T11683] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  470.164468][T11683] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  470.340712][ T5354] Bluetooth: hci6: command tx timeout
[  470.477809][T11683] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  470.501337][T11635] bridge0: port 1(bridge_slave_0) entered blocking state
[  470.503552][T11683] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  470.504741][T11635] bridge0: port 1(bridge_slave_0) entered disabled state
[  470.532485][T11635] bridge_slave_0: entered allmulticast mode
[  470.538657][T11635] bridge_slave_0: entered promiscuous mode
[  470.625731][T11635] bridge0: port 2(bridge_slave_1) entered blocking state
[  470.627825][T11683] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  470.628509][T11635] bridge0: port 2(bridge_slave_1) entered disabled state
[  470.634023][T11635] bridge_slave_1: entered allmulticast mode
[  470.652125][T11635] bridge_slave_1: entered promiscuous mode
[  470.811768][ T5354] Bluetooth: hci1: command 0x0c1a tx timeout
[  470.967993][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  471.422482][T11705] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1818'.
[  471.560358][ T5354] Bluetooth: hci5: command 0x206a tx timeout
[  471.863865][ T5354] Bluetooth: hci3: command 0x206a tx timeout
[  472.224482][T10463] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  472.276755][T10463] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  472.285579][T10463] bond0 (unregistering): Released all slaves
[  472.435120][ T5354] Bluetooth: hci6: command 0x0419 tx timeout
[  472.525665][T11702] netlink: 'syz.2.1816': attribute type 5 has an invalid length.
[  472.823252][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  472.849192][T11635] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  472.884071][T11728] ieee802154 phy0 wpan0: encryption failed: -22
[  472.891486][T10509] Bluetooth: hci1: command 0x0c1a tx timeout
[  472.927874][T11635] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  473.536997][T11734] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1825'.
[  473.552728][T11734] netlink: 'syz.2.1825': attribute type 7 has an invalid length.
[  473.568476][T11734] netlink: 'syz.2.1825': attribute type 8 has an invalid length.
[  473.599588][T11734] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1825'.
[  473.620292][T10509] Bluetooth: hci5: command 0x206a tx timeout
[  473.627925][   T66] Bluetooth: hci5: Opcode 0x206a failed: -110
[  473.661043][T11734] batadv_slave_1: entered promiscuous mode
[  473.695547][T11734] batadv_slave_1: left promiscuous mode
[  473.783452][T11635] team0: Port device team_slave_0 added
[  473.818873][T11635] team0: Port device team_slave_1 added
[  473.951711][   T66] Bluetooth: hci3: command 0x206a tx timeout
[  473.955980][ T5354] Bluetooth: hci3: Opcode 0x206a failed: -110
[  474.510553][ T5354] Bluetooth: hci6: command 0x0419 tx timeout
[  474.516260][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  474.667906][T11635] batman_adv: batadv0: Adding interface: batadv_slave_0
[  474.671278][T11635] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  474.720358][T11635] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  474.745810][T11635] batman_adv: batadv0: Adding interface: batadv_slave_1
[  474.794589][T11635] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  474.813805][T11635] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  474.867026][T11746] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1828'.
[  474.990046][ T5354] Bluetooth: hci1: command 0x0c1a tx timeout
[  475.212819][T10463] hsr_slave_0: left promiscuous mode
[  475.230926][T10463] hsr_slave_1: left promiscuous mode
[  475.236999][T10463] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  475.241438][T10463] batman_adv: batadv0: Removing interface: batadv_slave_0
[  475.316243][T10463] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  475.323395][T10463] batman_adv: batadv0: Removing interface: batadv_slave_1
[  475.429617][T10463] veth1_macvtap: left promiscuous mode
[  475.444632][T10463] veth0_macvtap: left promiscuous mode
[  475.446666][T10463] veth1_vlan: left promiscuous mode
[  475.448559][T10463] veth0_vlan: left promiscuous mode
[  475.628145][   T39] audit: type=1400 audit(1725108598.698:691): avc:  denied  { connect } for  pid=11759 comm="syz.2.1832" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  475.713374][   T66] Bluetooth: hci5: command 0x206a tx timeout
[  476.071462][   T66] Bluetooth: hci3: command 0x206a tx timeout
[  476.099688][T10463] pim6reg (unregistering): left allmulticast mode
[  476.574075][   T66] Bluetooth: hci6: command 0x0419 tx timeout
[  476.748193][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  477.389773][ T5354] Bluetooth: hci1: Opcode 0x206a failed: -110
[  477.391550][   T66] Bluetooth: hci1: command 0x0c1a tx timeout
[  477.796192][   T66] Bluetooth: hci5: command 0x206a tx timeout
[  478.110372][   T66] Bluetooth: hci3: command 0x206a tx timeout
[  478.656294][   T66] Bluetooth: hci6: command 0x0419 tx timeout
[  480.006321][T10463] team0 (unregistering): Port device team_slave_1 removed
[  480.429105][T10463] team0 (unregistering): Port device team_slave_0 removed
[  481.308990][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  481.484296][T11773] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1836'.
[  482.903224][T11635] hsr_slave_0: entered promiscuous mode
[  482.964580][T11635] hsr_slave_1: entered promiscuous mode
[  482.969120][T11635] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  482.979072][T11635] Cannot create hsr debugfs directory
[  483.047814][T11757] netlink: 'syz.1.1831': attribute type 5 has an invalid length.
[  483.277616][   T66] Bluetooth: hci5: unexpected event 0x30 length: 56 > 3
[  483.518749][T10463] IPVS: stop unused estimator thread 0...
[  484.066942][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  484.444621][T11635] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  484.456992][T11807] sp0: Synchronizing with TNC
[  484.457578][T11635] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  484.490415][T11807] sp0: Found TNC
[  484.535901][T11635] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  484.565385][T11635] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  484.846671][T11635] 8021q: adding VLAN 0 to HW filter on device bond0
[  484.863749][T11816] netlink: 'syz.2.1844': attribute type 5 has an invalid length.
[  484.886701][T11635] 8021q: adding VLAN 0 to HW filter on device team0
[  484.938057][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  484.946395][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  484.976785][T10463] bridge0: port 2(bridge_slave_1) entered blocking state
[  484.979814][T10463] bridge0: port 2(bridge_slave_1) entered forwarding state
[  485.290499][ T5354] Bluetooth: hci5: command 0x206a tx timeout
[  485.293499][   T66] Bluetooth: hci5: Opcode 0x206a failed: -110
[  485.644400][   T39] audit: type=1400 audit(1725108608.708:692): avc:  denied  { getopt } for  pid=11829 comm="syz.3.1846" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  486.082524][T11635] 8021q: adding VLAN 0 to HW filter on device batadv0
[  486.090682][    C2] IPv4: Oversized IP packet from 172.20.20.24
[  486.271181][T11635] veth0_vlan: entered promiscuous mode
[  486.315265][T11635] veth1_vlan: entered promiscuous mode
[  486.452864][T11635] veth0_macvtap: entered promiscuous mode
[  486.486683][T11635] veth1_macvtap: entered promiscuous mode
[  486.607190][T11635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  486.636574][T11635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.664884][T11635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  486.720342][T11635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.724140][T11635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  486.728134][T11635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.737382][T11635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  486.744091][T11635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.748802][T11635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  486.753719][T11635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.760952][T11635] batman_adv: batadv0: Interface activated: batadv_slave_0
[  486.768664][T11635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.811133][T11635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.815421][T11635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.819504][T11635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.833708][T11635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.841077][T11635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.866565][T11635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.871635][T11635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.876164][T11635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.896188][T11635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.903405][T11635] batman_adv: batadv0: Interface activated: batadv_slave_1
[  486.949790][T11635] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  486.953860][T11635] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  486.957767][T11635] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  486.973404][T11635] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  487.091938][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  487.279127][T10685] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  487.299467][T10685] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  487.355470][ T1104] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  487.359128][ T1104] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  487.380419][   T66] Bluetooth: hci5: command 0x206a tx timeout
[  487.619237][T11864] netlink: 'syz.1.1852': attribute type 5 has an invalid length.
[  487.905256][T11873] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  487.909380][T11873] IPv6: NLM_F_CREATE should be set when creating new route
[  488.087697][T11882] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1856'.
[  488.401125][ T5385] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  488.580516][   T66] Bluetooth: hci1: command 0x0c1a tx timeout
[  488.581911][ T5354] Bluetooth: hci1: Opcode 0x206a failed: -110
[  488.593718][ T5385] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  488.599846][ T5385] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  488.617243][ T5385] usb 5-1: Product: syz
[  488.619271][ T5385] usb 5-1: Manufacturer: syz
[  488.622364][ T5385] usb 5-1: SerialNumber: syz
[  488.644768][ T5385] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  488.734890][ T8885] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  488.760481][   T39] audit: type=1400 audit(1725108611.798:693): avc:  denied  { recv } for  pid=5260 comm="syz-executor" saddr=127.0.0.1 src=36074 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  488.855143][   T39] audit: type=1400 audit(1725108611.838:694): avc:  denied  { recv } for  pid=5260 comm="syz-executor" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=36074 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  488.884144][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  489.344251][T11898] netlink: 'syz.1.1862': attribute type 5 has an invalid length.
[  489.510040][T11902] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1863'.
[  489.780421][ T8885] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[  489.785242][ T8885] ath9k_htc: Failed to initialize the device
[  489.901573][ T8885] usb 5-1: ath9k_htc: USB layer deinitialized
[  490.000363][   T58] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[  490.385276][T11913] input: syz1 as /devices/virtual/input/input24
[  490.526042][   T58] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  490.532285][   T58] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  490.537274][   T58] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  490.543163][   T58] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  490.554048][   T58] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  490.558088][   T58] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  490.561703][   T58] usb 6-1: Manufacturer: syz
[  490.566426][   T58] usb 6-1: config 0 descriptor??
[  490.747393][   T39] audit: type=1400 audit(1725108613.808:695): avc:  denied  { egress } for  pid=11231 comm="syz.3.1678" saddr=fe80::1b daddr=ff02::2 netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1
[  490.770377][   T39] audit: type=1400 audit(1725108613.818:696): avc:  denied  { sendto } for  pid=11231 comm="syz.3.1678" saddr=fe80::1b daddr=ff02::2 netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1
[  490.990486][   T58] appleir 0003:05AC:8243.0016: unknown main item tag 0x0
[  490.994500][   T58] appleir 0003:05AC:8243.0016: No inputs registered, leaving
[  491.007970][   T58] appleir 0003:05AC:8243.0016: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  491.283420][ T5482] usb 5-1: USB disconnect, device number 31
[  491.497762][T11919] ieee802154 phy0 wpan0: encryption failed: -22
[  491.501190][T11919] FAULT_INJECTION: forcing a failure.
[  491.501190][T11919] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  491.507264][T11919] CPU: 3 UID: 0 PID: 11919 Comm: syz.0.1868 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  491.512511][T11919] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  491.517668][T11919] Call Trace:
[  491.519140][T11919]  <TASK>
[  491.520326][T11919]  dump_stack_lvl+0x16c/0x1f0
[  491.522218][T11919]  should_fail_ex+0x497/0x5b0
[  491.524093][T11919]  _copy_from_user+0x30/0xf0
[  491.525920][T11919]  copy_msghdr_from_user+0x99/0x160
[  491.528167][T11919]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  491.530771][T11919]  ? __lock_acquire+0x1620/0x3cb0
[  491.533041][T11919]  ___sys_sendmsg+0xff/0x1e0
[  491.535115][T11919]  ? __pfx____sys_sendmsg+0x10/0x10
[  491.537491][T11919]  ? __pfx___might_resched+0x10/0x10
[  491.539839][T11919]  ? __might_fault+0xe3/0x190
[  491.542100][T11919]  __sys_sendmmsg+0x1a1/0x450
[  491.544523][T11919]  ? __pfx___sys_sendmmsg+0x10/0x10
[  491.547245][T11919]  ? vfs_write+0x14d/0x1140
[  491.549521][T11919]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  491.552248][T11919]  ? fput+0x32/0x390
[  491.554006][T11919]  ? ksys_write+0x1ab/0x260
[  491.556293][T11919]  ? __pfx_ksys_write+0x10/0x10
[  491.558493][T11919]  __x64_sys_sendmmsg+0x9c/0x100
[  491.561024][T11919]  ? lockdep_hardirqs_on+0x7c/0x110
[  491.563576][T11919]  do_syscall_64+0xcd/0x250
[  491.565852][T11919]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  491.568668][T11919] RIP: 0033:0x7f2af8779eb9
[  491.570885][T11919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  491.578268][T11919] RSP: 002b:00007f2af9607038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  491.581894][T11919] RAX: ffffffffffffffda RBX: 00007f2af8916058 RCX: 00007f2af8779eb9
[  491.585688][T11919] RDX: 00000000fffffdef RSI: 00000000200020c0 RDI: 0000000000000007
[  491.589703][T11919] RBP: 00007f2af9607090 R08: 0000000000000000 R09: 0000000000000000
[  491.593509][T11919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  491.597237][T11919] R13: 0000000000000000 R14: 00007f2af8916058 R15: 00007ffe2cbf2908
[  491.601063][T11919]  </TASK>
[  491.617417][   T25] usb 6-1: USB disconnect, device number 33
[  493.066968][T11926] netlink: 'syz.2.1871': attribute type 5 has an invalid length.
[  493.337762][    C3] IPv4: Oversized IP packet from 172.20.20.24
[  494.057817][   T39] audit: type=1400 audit(1725108617.118:697): avc:  denied  { setattr } for  pid=11941 comm="syz.0.1876" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  494.108765][T11942] netlink: 288 bytes leftover after parsing attributes in process `syz.0.1876'.
[  494.402992][T11955] netlink: 'syz.3.1880': attribute type 5 has an invalid length.
[  495.273432][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  495.299974][T11982] FAULT_INJECTION: forcing a failure.
[  495.299974][T11982] name failslab, interval 1, probability 0, space 0, times 0
[  495.305819][T11982] CPU: 3 UID: 0 PID: 11982 Comm: syz.3.1896 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  495.310193][T11982] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  495.314720][T11982] Call Trace:
[  495.315940][T11982]  <TASK>
[  495.317289][T11982]  dump_stack_lvl+0x16c/0x1f0
[  495.319046][T11982]  should_fail_ex+0x497/0x5b0
[  495.320928][T11982]  ? fs_reclaim_acquire+0xae/0x160
[  495.323295][T11982]  should_failslab+0xc2/0x120
[  495.325459][T11982]  __kmalloc_noprof+0xcb/0x400
[  495.328028][T11982]  nla_strdup+0xc6/0x150
[  495.329918][T11982]  nf_tables_newtable+0xdfc/0x1b20
[  495.332544][T11982]  ? net_generic+0xea/0x2a0
[  495.334707][T11982]  ? __pfx_nf_tables_newtable+0x10/0x10
[  495.337694][T11982]  ? __nla_parse+0x40/0x60
[  495.340595][T11982]  nfnetlink_rcv_batch+0x1a3d/0x2500
[  495.343378][T11982]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  495.346504][T11982]  ? find_held_lock+0x2d/0x110
[  495.349072][T11982]  ? avc_has_perm_noaudit+0x119/0x3a0
[  495.352181][T11982]  ? avc_has_perm_noaudit+0x143/0x3a0
[  495.355587][T11982]  ? bpf_lsm_capable+0x9/0x10
[  495.358273][T11982]  ? __nla_parse+0x40/0x60
[  495.360882][T11982]  nfnetlink_rcv+0x3c3/0x430
[  495.363514][T11982]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  495.366262][T11982]  netlink_unicast+0x53c/0x7f0
[  495.368857][T11982]  ? __pfx_netlink_unicast+0x10/0x10
[  495.371871][T11982]  netlink_sendmsg+0x8b8/0xd70
[  495.375022][T11982]  ? __pfx_netlink_sendmsg+0x10/0x10
[  495.377609][T11982]  ? __import_iovec+0x1fd/0x6e0
[  495.380146][T11982]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  495.384311][T11982]  ____sys_sendmsg+0xab5/0xc90
[  495.387276][T11982]  ? copy_msghdr_from_user+0x10b/0x160
[  495.390640][T11982]  ? __pfx_____sys_sendmsg+0x10/0x10
[  495.393880][T11982]  ? find_held_lock+0x2d/0x110
[  495.397401][T11982]  ? __pfx___lock_acquire+0x10/0x10
[  495.400592][T11982]  ___sys_sendmsg+0x135/0x1e0
[  495.402918][T11982]  ? __pfx____sys_sendmsg+0x10/0x10
[  495.405252][T11982]  ? ksys_write+0x21c/0x260
[  495.407345][T11982]  ? __fget_light+0x173/0x210
[  495.409870][T11982]  __sys_sendmsg+0x117/0x1f0
[  495.412369][T11982]  ? __pfx___sys_sendmsg+0x10/0x10
[  495.415146][T11982]  do_syscall_64+0xcd/0x250
[  495.418032][T11982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.421339][T11982] RIP: 0033:0x7f4b8d779eb9
[  495.423871][T11982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  495.444936][T11982] RSP: 002b:00007f4b8e5ef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  495.448173][T11982] RAX: ffffffffffffffda RBX: 00007f4b8d915f80 RCX: 00007f4b8d779eb9
[  495.451540][T11982] RDX: 0000000000000000 RSI: 000000002000c2c0 RDI: 0000000000000005
[  495.454723][T11982] RBP: 00007f4b8e5ef090 R08: 0000000000000000 R09: 0000000000000000
[  495.461704][T11982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  495.466083][T11982] R13: 0000000000000000 R14: 00007f4b8d915f80 R15: 00007ffda32bdba8
[  495.469629][T11982]  </TASK>
[  495.573996][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  495.772171][T11987] FAULT_INJECTION: forcing a failure.
[  495.772171][T11987] name failslab, interval 1, probability 0, space 0, times 0
[  495.790300][T11987] CPU: 3 UID: 0 PID: 11987 Comm: syz.3.1890 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  495.808016][T11987] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  495.823473][T11987] Call Trace:
[  495.824957][T11987]  <TASK>
[  495.826278][T11987]  dump_stack_lvl+0x16c/0x1f0
[  495.828434][T11987]  should_fail_ex+0x497/0x5b0
[  495.830720][T11987]  ? __pfx_lock_acquire+0x10/0x10
[  495.833042][T11987]  should_failslab+0xc2/0x120
[  495.835203][T11987]  __kmalloc_node_track_caller_noprof+0xcf/0x430
[  495.838075][T11987]  ? sidtab_sid2str_get+0x17a/0x680
[  495.840446][T11987]  kmemdup_noprof+0x29/0x60
[  495.842671][T11987]  sidtab_sid2str_get+0x17a/0x680
[  495.845205][T11987]  sidtab_entry_to_string+0x33/0x110
[  495.847736][T11987]  security_sid_to_context_core+0x35c/0x640
[  495.850448][T11987]  avc_audit_post_callback+0x1ac/0x8c0
[  495.852966][T11987]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  495.855649][T11987]  ? audit_log_format+0xe9/0x130
[  495.857892][T11987]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  495.860576][T11987]  ? skb_put+0x138/0x1b0
[  495.862492][T11987]  ? audit_log_n_string+0x251/0x540
[  495.864824][T11987]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  495.867561][T11987]  common_lsm_audit+0x260/0x2220
[  495.869796][T11987]  ? avc_update_node.isra.0+0x49d/0x800
[  495.872316][T11987]  ? __pfx_common_lsm_audit+0x10/0x10
[  495.874712][T11987]  ? avc_denied+0x138/0x180
[  495.876791][T11987]  ? avc_denied+0x141/0x180
[  495.878792][T11987]  ? slow_avc_audit+0x17d/0x210
[  495.881492][T11987]  slow_avc_audit+0x17d/0x210
[  495.883950][T11987]  ? __pfx_slow_avc_audit+0x10/0x10
[  495.886261][T11987]  avc_has_perm+0x18d/0x1c0
[  495.888341][T11987]  ? __pfx_avc_has_perm+0x10/0x10
[  495.890605][T11987]  ? __pfx___might_resched+0x10/0x10
[  495.892712][T11987]  ? current_time+0x7e/0xc0
[  495.894530][T11987]  ? __pfx_lock_release+0x10/0x10
[  495.896763][T11987]  inode_has_perm+0x168/0x1d0
[  495.899001][T11987]  selinux_inode_setattr+0x23e/0x400
[  495.901183][T11987]  ? __pfx_selinux_inode_setattr+0x10/0x10
[  495.903502][T11987]  ? make_vfsgid+0xe0/0x130
[  495.905311][T11987]  security_inode_setattr+0xe5/0x140
[  495.907482][T11987]  notify_change+0x604/0x1230
[  495.909628][T11987]  vfs_utimes+0x41d/0x840
[  495.911669][T11987]  ? __pfx_vfs_utimes+0x10/0x10
[  495.913862][T11987]  ? lockdep_hardirqs_on+0x7c/0x110
[  495.916219][T11987]  ? putname+0x12e/0x170
[  495.918138][T11987]  do_utimes+0x124/0x2a0
[  495.920054][T11987]  ? __pfx_do_utimes+0x10/0x10
[  495.922190][T11987]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  495.924895][T11987]  do_futimesat+0x18f/0x200
[  495.926944][T11987]  ? __pfx_do_futimesat+0x10/0x10
[  495.929237][T11987]  ? ksys_write+0x1ab/0x260
[  495.930345][ T5354] Bluetooth: hci5: Opcode 0x206a failed: -110
[  495.931284][T11987]  do_syscall_64+0xcd/0x250
[  495.935683][T11987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.938339][T11987] RIP: 0033:0x7f4b8d779eb9
[  495.940258][ T5354] Bluetooth: hci5: command 0x206a tx timeout
[  495.940330][T11987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  495.951563][T11987] RSP: 002b:00007f4b8e5ef038 EFLAGS: 00000246 ORIG_RAX: 00000000000000eb
[  495.955261][T11987] RAX: ffffffffffffffda RBX: 00007f4b8d915f80 RCX: 00007f4b8d779eb9
[  495.958909][T11987] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000340
[  495.962698][T11987] RBP: 00007f4b8e5ef090 R08: 0000000000000000 R09: 0000000000000000
[  495.966228][T11987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  495.969795][T11987] R13: 0000000000000000 R14: 00007f4b8d915f80 R15: 00007ffda32bdba8
[  495.973280][T11987]  </TASK>
[  496.028526][   T39] audit: type=1400 audit(1725108618.848:698): avc:  denied  { write } for  pid=11986 comm="syz.3.1890" name="/" dev="configfs" ino=3078 scontext=root:sysadm_r:sysadm_t tsid=40 tclass=dir permissive=1
[  496.222421][T11990] Sensor A: =================  START STATUS  =================
[  496.227462][T11990] Sensor A: Test Pattern: 75% Colorbar
[  496.229830][T11990] Sensor A: Show Information: All
[  496.234089][T11990] Sensor A: Vertical Flip: false
[  496.239531][T11990] Sensor A: Horizontal Flip: false
[  496.258899][T11990] Sensor A: Brightness: 128
[  496.261202][T11990] Sensor A: Contrast: 128
[  496.262923][T11990] Sensor A: Hue: 0
[  496.264444][T11990] Sensor A: Saturation: 128
[  496.266191][T11990] Sensor A: ==================  END STATUS  ==================
[  496.293847][T11993] netlink: 'syz.3.1891': attribute type 5 has an invalid length.
[  496.514168][T11997] FAULT_INJECTION: forcing a failure.
[  496.514168][T11997] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  496.535498][T11997] CPU: 0 UID: 0 PID: 11997 Comm: syz.2.1893 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  496.536518][T11999] ptrace attach of ""[12000] was attempted by "/syz-executor exec"[11999]
[  496.540273][T11997] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  496.540289][T11997] Call Trace:
[  496.540298][T11997]  <TASK>
[  496.540307][T11997]  dump_stack_lvl+0x16c/0x1f0
[  496.540333][T11997]  should_fail_ex+0x497/0x5b0
[  496.540361][T11997]  _copy_to_user+0x30/0xc0
[  496.540383][T11997]  video_usercopy+0xf37/0x1600
[  496.540407][T11997]  ? __pfx___video_do_ioctl+0x10/0x10
[  496.540428][T11997]  ? __pfx_video_usercopy+0x10/0x10
[  496.540459][T11997]  ? selinux_file_ioctl+0x180/0x270
[  496.540485][T11997]  v4l2_ioctl+0x1c0/0x260
[  496.540503][T11997]  ? __pfx_v4l2_ioctl+0x10/0x10
[  496.540523][T11997]  __x64_sys_ioctl+0x193/0x220
[  496.540554][T11997]  do_syscall_64+0xcd/0x250
[  496.540584][T11997]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  496.540604][T11997] RIP: 0033:0x7f7ac3b79eb9
[  496.540621][T11997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  496.540639][T11997] RSP: 002b:00007f7ac498d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  496.540660][T11997] RAX: ffffffffffffffda RBX: 00007f7ac3d15f80 RCX: 00007f7ac3b79eb9
[  496.540673][T11997] RDX: 0000000020000040 RSI: 0000000080685600 RDI: 0000000000000003
[  496.540691][T11997] RBP: 00007f7ac498d090 R08: 0000000000000000 R09: 0000000000000000
[  496.540703][T11997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  496.540715][T11997] R13: 0000000000000000 R14: 00007f7ac3d15f80 R15: 00007ffdb47fd1a8
[  496.540738][T11997]  </TASK>
[  496.575267][   T66] Bluetooth: hci3: Opcode 0x206a failed: -110
[  496.627527][ T5354] Bluetooth: hci3: command 0x206a tx timeout
[  497.153287][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  498.490658][    C2] IPv4: Oversized IP packet from 172.20.20.24
[  498.572677][ T5482] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  498.812662][ T5482] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  498.819536][ T5482] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  498.850572][ T5482] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  498.854814][ T5482] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  498.877363][ T5482] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  498.900414][ T5482] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  498.904181][ T5482] usb 5-1: Manufacturer: syz
[  498.948684][ T5482] usb 5-1: config 0 descriptor??
[  499.032148][T12035] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.1908'.
[  499.434343][ T5482] appleir 0003:05AC:8243.0017: unknown main item tag 0x0
[  499.439749][ T5482] appleir 0003:05AC:8243.0017: No inputs registered, leaving
[  499.526831][ T5482] appleir 0003:05AC:8243.0017: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  499.930417][   T39] audit: type=1326 audit(1725108622.998:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12044 comm="syz.1.1911" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01e9b79eb9 code=0x7ffc0000
[  499.947057][   T39] audit: type=1326 audit(1725108623.008:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12044 comm="syz.1.1911" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01e9b79eb9 code=0x7ffc0000
[  499.965374][   T39] audit: type=1326 audit(1725108623.008:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12044 comm="syz.1.1911" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f01e9b79eb9 code=0x7ffc0000
[  499.998767][   T39] audit: type=1326 audit(1725108623.008:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12044 comm="syz.1.1911" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01e9b79eb9 code=0x7ffc0000
[  500.006160][  T832] usb 5-1: USB disconnect, device number 32
[  500.055334][   T39] audit: type=1326 audit(1725108623.008:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12044 comm="syz.1.1911" exe="/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f01e9b79eb9 code=0x7ffc0000
[  500.090576][ T5354] Bluetooth: hci3: Opcode 0x206a failed: -110
[  500.093244][   T39] audit: type=1326 audit(1725108623.008:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12044 comm="syz.1.1911" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01e9b79eb9 code=0x7ffc0000
[  500.093294][   T39] audit: type=1326 audit(1725108623.008:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12044 comm="syz.1.1911" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f01e9b78850 code=0x7ffc0000
[  500.104743][   T66] Bluetooth: hci3: command 0x206a tx timeout
[  500.120571][   T39] audit: type=1326 audit(1725108623.018:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12044 comm="syz.1.1911" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01e9b79eb9 code=0x7ffc0000
[  500.120864][T12048] could not allocate digest TFM handle sha1_mb
[  500.148285][   T39] audit: type=1326 audit(1725108623.018:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12044 comm="syz.1.1911" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01e9b79eb9 code=0x7ffc0000
[  500.754298][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  500.917067][    C1] vkms_vblank_simulate: vblank timer overrun
[  500.954997][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  501.231181][    C1] vkms_vblank_simulate: vblank timer overrun
[  502.170425][ T5354] Bluetooth: hci3: Opcode 0x206a failed: -110
[  502.173102][ T5354] Bluetooth: hci3: command 0x206a tx timeout
[  502.890300][T12095] FAULT_INJECTION: forcing a failure.
[  502.890300][T12095] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  502.940455][T12095] CPU: 3 UID: 0 PID: 12095 Comm: syz.3.1923 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  502.945989][T12095] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  502.952231][T12095] Call Trace:
[  502.954467][T12095]  <TASK>
[  502.956601][T12095]  dump_stack_lvl+0x16c/0x1f0
[  502.959407][T12095]  should_fail_ex+0x497/0x5b0
[  502.961733][T12095]  _copy_to_user+0x30/0xc0
[  502.963752][T12095]  drm_ioctl+0x604/0xc00
[  502.966534][T12095]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[  502.969830][T12095]  ? __pfx_drm_ioctl+0x10/0x10
[  502.972290][T12095]  ? selinux_file_ioctl+0xb4/0x270
[  502.974795][T12095]  ? bpf_lsm_file_ioctl+0x9/0x10
[  502.977259][T12095]  ? __pfx_drm_ioctl+0x10/0x10
[  502.979605][T12095]  __x64_sys_ioctl+0x193/0x220
[  502.981850][T12095]  do_syscall_64+0xcd/0x250
[  502.984045][T12095]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.986957][T12095] RIP: 0033:0x7f4b8d779eb9
[  502.989402][T12095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  503.001553][T12095] RSP: 002b:00007f4b8e5ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  503.005925][T12095] RAX: ffffffffffffffda RBX: 00007f4b8d915f80 RCX: 00007f4b8d779eb9
[  503.010425][T12095] RDX: 0000000020000280 RSI: 00000000c03064ca RDI: 0000000000000003
[  503.014530][T12095] RBP: 00007f4b8e5ef090 R08: 0000000000000000 R09: 0000000000000000
[  503.019240][T12095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  503.024615][T12095] R13: 0000000000000000 R14: 00007f4b8d915f80 R15: 00007ffda32bdba8
[  503.028935][T12095]  </TASK>
[  503.295766][    C3] IPv4: Oversized IP packet from 172.20.20.24
[  503.461232][    C1] vkms_vblank_simulate: vblank timer overrun
[  504.049545][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  504.427257][T12117] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.1928'.
[  504.573168][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  506.566675][   T39] kauditd_printk_skb: 1 callbacks suppressed
[  506.566692][   T39] audit: type=1326 audit(1725108629.588:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12133 comm="syz.2.1934" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  506.579530][   T39] audit: type=1326 audit(1725108629.588:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12133 comm="syz.2.1934" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  506.603549][   T39] audit: type=1326 audit(1725108629.588:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12133 comm="syz.2.1934" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  506.618992][   T39] audit: type=1326 audit(1725108629.588:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12133 comm="syz.2.1934" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  506.632268][   T39] audit: type=1326 audit(1725108629.588:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12133 comm="syz.2.1934" exe="/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  506.643556][   T39] audit: type=1326 audit(1725108629.598:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12133 comm="syz.2.1934" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  506.654205][   T39] audit: type=1326 audit(1725108629.598:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12133 comm="syz.2.1934" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  506.680385][   T39] audit: type=1326 audit(1725108629.598:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12133 comm="syz.2.1934" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7ac3b78850 code=0x7ffc0000
[  506.692209][   T39] audit: type=1326 audit(1725108629.598:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12133 comm="syz.2.1934" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  506.703784][   T39] audit: type=1326 audit(1725108629.598:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12133 comm="syz.2.1934" exe="/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  506.990144][T12131] could not allocate digest TFM handle sha1_mb
[  507.471492][ T1380] ieee802154 phy0 wpan0: encryption failed: -22
[  507.474833][ T1380] ieee802154 phy1 wpan1: encryption failed: -22
[  507.711940][T12149] netlink: 'syz.3.1936': attribute type 5 has an invalid length.
[  508.088945][T12153] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1940'.
[  508.095158][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  508.210087][T12157] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1941'.
[  508.216483][T12157] (unnamed net_device) (uninitialized): Invalid ad_actor_system MAC address.
[  508.231370][T12157] (unnamed net_device) (uninitialized): option ad_actor_system: invalid value (7)
[  509.606445][T12189] ieee802154 phy0 wpan0: encryption failed: -22
[  510.491581][T12194] could not allocate digest TFM handle sha1_mb
[  510.971559][    C2] vkms_vblank_simulate: vblank timer overrun
[  511.383376][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  511.486940][    C3] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  513.232267][T12244] netlink: 312 bytes leftover after parsing attributes in process `syz.0.1963'.
[  513.339361][   T39] kauditd_printk_skb: 22 callbacks suppressed
[  513.339377][   T39] audit: type=1400 audit(1725108636.408:741): avc:  denied  { shutdown } for  pid=12243 comm="syz.0.1963" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  513.354371][   T39] audit: type=1400 audit(1725108636.418:742): avc:  denied  { nlmsg_write } for  pid=12243 comm="syz.0.1963" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  514.219051][    C2] vkms_vblank_simulate: vblank timer overrun
[  514.865385][T12289] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1965'.
[  514.868656][T12289] (unnamed net_device) (uninitialized): Invalid ad_actor_system MAC address.
[  514.875342][T12289] (unnamed net_device) (uninitialized): option ad_actor_system: invalid value (7)
[  515.657083][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  515.773231][T12307] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1970'.
[  515.831036][   T39] audit: type=1400 audit(1725108638.868:743): avc:  denied  { execute } for  pid=12300 comm="syz.0.1968" path="/dev/audio1" dev="devtmpfs" ino=1133 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sound_device_t tclass=chr_file permissive=1
[  515.900511][   T39] audit: type=1400 audit(1725108638.968:744): avc:  denied  { write } for  pid=12300 comm="syz.0.1968" name="ppp" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  515.969560][T12312] netlink: 'syz.1.1972': attribute type 5 has an invalid length.
[  517.939781][   T39] audit: type=1400 audit(1725108641.008:745): avc:  denied  { map } for  pid=12332 comm="syz.2.1976" path="pipe:[46468]" dev="pipefs" ino=46468 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  519.064691][T12342] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1977'.
[  519.090590][T12342] (unnamed net_device) (uninitialized): Invalid ad_actor_system MAC address.
[  519.100842][T12342] (unnamed net_device) (uninitialized): option ad_actor_system: invalid value (7)
[  520.070617][T12357] netlink: 'syz.2.1982': attribute type 5 has an invalid length.
[  521.058488][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  521.653557][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  521.991361][T12388] libceph: resolve '40.' (ret=-3): failed
[  522.155348][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  522.698807][T12400] netlink: 'syz.3.1995': attribute type 5 has an invalid length.
[  522.761327][T12403] netlink: 312 bytes leftover after parsing attributes in process `syz.2.2003'.
[  523.264398][T12410] syzkaller0: entered promiscuous mode
[  523.267478][T12410] syzkaller0: entered allmulticast mode
[  523.910337][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  524.918800][T12434] binder: BINDER_SET_CONTEXT_MGR already set
[  524.927681][T12434] binder: 12433:12434 ioctl 4018620d 200002c0 returned -16
[  525.075862][T12434] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2001'.
[  526.321532][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  527.197602][T12456] FAULT_INJECTION: forcing a failure.
[  527.197602][T12456] name failslab, interval 1, probability 0, space 0, times 0
[  527.205520][T12456] CPU: 0 UID: 0 PID: 12456 Comm: syz.0.2008 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  527.210262][T12456] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  527.215016][T12456] Call Trace:
[  527.216573][T12456]  <TASK>
[  527.218203][T12456]  dump_stack_lvl+0x16c/0x1f0
[  527.221045][T12456]  should_fail_ex+0x497/0x5b0
[  527.223344][T12456]  ? fs_reclaim_acquire+0xae/0x160
[  527.226121][T12456]  should_failslab+0xc2/0x120
[  527.228278][T12456]  __kmalloc_cache_noprof+0x6b/0x300
[  527.231065][T12456]  ? ip_setup_cork+0x667/0x9c0
[  527.233564][T12456]  ip_setup_cork+0x667/0x9c0
[  527.235924][T12456]  ip_append_data+0x163/0x1a0
[  527.237822][T12456]  ? __pfx_ping_getfrag+0x10/0x10
[  527.240417][T12456]  ping_v4_sendmsg+0xc92/0x1af0
[  527.243215][T12456]  ? __pfx_ping_v4_sendmsg+0x10/0x10
[  527.245635][T12456]  ? find_held_lock+0x2d/0x110
[  527.247802][T12456]  ? __pfx_lock_release+0x10/0x10
[  527.250180][T12456]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  527.253039][T12456]  ? __local_bh_enable_ip+0xa4/0x120
[  527.255505][T12456]  ? lockdep_hardirqs_on+0x7c/0x110
[  527.258160][T12456]  ? inet_autobind+0x145/0x1a0
[  527.260569][T12456]  ? __local_bh_enable_ip+0xa4/0x120
[  527.263242][T12456]  ? __pfx_ping_v4_sendmsg+0x10/0x10
[  527.265970][T12456]  ? inet_sendmsg+0x119/0x140
[  527.268214][T12456]  inet_sendmsg+0x119/0x140
[  527.270683][T12456]  ____sys_sendmsg+0x992/0xc90
[  527.272889][T12456]  ? __pfx_____sys_sendmsg+0x10/0x10
[  527.275734][T12456]  ? find_held_lock+0x2d/0x110
[  527.280050][T12456]  ? __pfx___lock_acquire+0x10/0x10
[  527.282389][T12456]  ___sys_sendmsg+0x135/0x1e0
[  527.284435][T12456]  ? __pfx____sys_sendmsg+0x10/0x10
[  527.286569][T12456]  ? ksys_write+0x21c/0x260
[  527.288545][T12456]  ? __fget_light+0x173/0x210
[  527.290618][T12456]  __sys_sendmsg+0x117/0x1f0
[  527.292695][T12456]  ? __pfx___sys_sendmsg+0x10/0x10
[  527.295096][T12456]  do_syscall_64+0xcd/0x250
[  527.297153][T12456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  527.299751][T12456] RIP: 0033:0x7f2af8779eb9
[  527.301620][T12456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  527.309995][T12456] RSP: 002b:00007f2af9628038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  527.314732][T12456] RAX: ffffffffffffffda RBX: 00007f2af8915f80 RCX: 00007f2af8779eb9
[  527.319175][T12456] RDX: 0000000000000000 RSI: 0000000020000600 RDI: 0000000000000003
[  527.323488][T12456] RBP: 00007f2af9628090 R08: 0000000000000000 R09: 0000000000000000
[  527.327684][T12456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  527.331743][T12456] R13: 0000000000000000 R14: 00007f2af8915f80 R15: 00007ffe2cbf2908
[  527.335049][T12456]  </TASK>
[  528.575765][    C2] IPv4: Oversized IP packet from 172.20.20.24
[  530.284307][T12477] sg_write: data in/out 39734/70 bytes for SCSI command 0x5-- guessing data in;
[  530.284307][T12477]    program syz.2.2016 not setting count and/or reply_len properly
[  530.297742][T12478] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2015'.
[  530.634271][T12487] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2019'.
[  530.638971][T12487] netlink: 'syz.0.2019': attribute type 6 has an invalid length.
[  530.646769][ T5354] Bluetooth: hci6: ACL packet for unknown connection handle 201
[  531.452533][    C2] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  531.573274][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  531.689096][ T5354] Bluetooth: hci6: unexpected event 0x2f length: 1017 > 260
[  532.115120][T12509] netlink: 1624 bytes leftover after parsing attributes in process `syz.0.2026'.
[  532.250041][T12513] FAULT_INJECTION: forcing a failure.
[  532.250041][T12513] name failslab, interval 1, probability 0, space 0, times 0
[  532.257941][T12513] CPU: 0 UID: 0 PID: 12513 Comm: syz.1.2028 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  532.263103][T12513] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  532.267563][T12513] Call Trace:
[  532.268931][T12513]  <TASK>
[  532.270301][T12513]  dump_stack_lvl+0x16c/0x1f0
[  532.278352][T12513]  should_fail_ex+0x497/0x5b0
[  532.280644][T12513]  ? fs_reclaim_acquire+0xae/0x160
[  532.283055][T12513]  should_failslab+0xc2/0x120
[  532.285452][T12513]  __kmalloc_noprof+0xcb/0x400
[  532.287416][T12513]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  532.290135][T12513]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  532.293784][T12513]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  532.296865][T12513]  ? security_capable+0x98/0xd0
[  532.299521][T12513]  genl_rcv_msg+0x565/0x800
[  532.302314][T12513]  ? __pfx_genl_rcv_msg+0x10/0x10
[  532.305796][T12513]  ? __pfx___lock_acquire+0x10/0x10
[  532.308344][T12513]  ? __pfx_smc_nl_flush_ueid+0x10/0x10
[  532.310645][T12513]  netlink_rcv_skb+0x16b/0x440
[  532.313398][T12513]  ? __pfx_genl_rcv_msg+0x10/0x10
[  532.315618][T12513]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  532.317961][T12513]  ? down_read+0xc9/0x330
[  532.320089][T12513]  ? __pfx_down_read+0x10/0x10
[  532.322403][T12513]  ? netlink_deliver_tap+0x1ae/0xd90
[  532.324812][T12513]  genl_rcv+0x28/0x40
[  532.326671][T12513]  netlink_unicast+0x53c/0x7f0
[  532.328875][T12513]  ? __pfx_netlink_unicast+0x10/0x10
[  532.331199][T12513]  netlink_sendmsg+0x8b8/0xd70
[  532.333267][T12513]  ? __pfx_netlink_sendmsg+0x10/0x10
[  532.335603][T12513]  ? __import_iovec+0x1fd/0x6e0
[  532.337737][T12513]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  532.339968][T12513]  ____sys_sendmsg+0xab5/0xc90
[  532.342662][T12513]  ? copy_msghdr_from_user+0x10b/0x160
[  532.344981][T12513]  ? __pfx_____sys_sendmsg+0x10/0x10
[  532.347343][T12513]  ? find_held_lock+0x2d/0x110
[  532.349628][T12513]  ? __pfx___lock_acquire+0x10/0x10
[  532.352287][T12513]  ___sys_sendmsg+0x135/0x1e0
[  532.354397][T12513]  ? __pfx____sys_sendmsg+0x10/0x10
[  532.357627][T12513]  ? ksys_write+0x21c/0x260
[  532.359766][T12513]  ? __fget_light+0x173/0x210
[  532.362339][T12513]  __sys_sendmsg+0x117/0x1f0
[  532.364308][T12513]  ? __pfx___sys_sendmsg+0x10/0x10
[  532.366508][T12513]  do_syscall_64+0xcd/0x250
[  532.368481][T12513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  532.370973][T12513] RIP: 0033:0x7f01e9b79eb9
[  532.372755][T12513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  532.379958][T12513] RSP: 002b:00007f01ea966038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  532.382818][T12513] RAX: ffffffffffffffda RBX: 00007f01e9d15f80 RCX: 00007f01e9b79eb9
[  532.386093][T12513] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  532.389752][T12513] RBP: 00007f01ea966090 R08: 0000000000000000 R09: 0000000000000000
[  532.393541][T12513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  532.396521][T12513] R13: 0000000000000000 R14: 00007f01e9d15f80 R15: 00007ffeb9342868
[  532.399782][T12513]  </TASK>
[  533.134580][   T66] Bluetooth: hci5: Opcode 0x206a failed: -110
[  533.137738][   T66] Bluetooth: hci5: command 0x206a tx timeout
[  533.366659][T12527] 9pnet_fd: Insufficient options for proto=fd
[  533.851505][   T39] audit: type=1400 audit(1725108656.928:746): avc:  denied  { create } for  pid=12531 comm="syz.2.2033" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  533.887116][   T39] audit: type=1400 audit(1725108656.958:747): avc:  denied  { sys_admin } for  pid=12531 comm="syz.2.2033" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  533.921858][T12539] netlink: 1624 bytes leftover after parsing attributes in process `syz.3.2036'.
[  534.128591][T12546] rdma_rxe: rxe_newlink: failed to add ipvlan1
[  534.266313][T12548] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2038'.
[  534.298460][T12548] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2038'.
[  534.579830][T10509] Bluetooth: hci1: command 0x0c1a tx timeout
[  534.587046][ T5354] Bluetooth: hci1: Opcode 0x206a failed: -110
[  534.685019][    C2] IPv4: Oversized IP packet from 172.20.20.24
[  535.211149][T12559] syz.3.2042 (12559) used obsolete PPPIOCDETACH ioctl
[  536.639426][T12569] netlink: 1624 bytes leftover after parsing attributes in process `syz.2.2045'.
[  536.653646][T10509] Bluetooth: hci3: command 0x206a tx timeout
[  536.656218][ T5354] Bluetooth: hci3: Opcode 0x206a failed: -110
[  536.768684][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  537.512433][T12581] syz.0.2050 (12581) used greatest stack depth: 20528 bytes left
[  537.865334][T12597] netlink: 'syz.2.2053': attribute type 3 has an invalid length.
[  538.833185][   T39] audit: type=1400 audit(1725108661.908:748): avc:  denied  { nlmsg_read } for  pid=12605 comm="syz.1.2056" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  539.050411][ T5354] Bluetooth: hci1: Opcode 0x206a failed: -110
[  539.053498][ T5354] Bluetooth: hci1: command 0x0c1a tx timeout
[  539.502225][    C2] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  539.972422][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  540.975365][   T66] Bluetooth: hci6: command 0x0419 tx timeout
[  540.980067][T10509] Bluetooth: hci6: Opcode 0x206a failed: -110
[  541.827412][    C3] IPv4: Oversized IP packet from 172.20.20.24
[  542.755886][ T5354] Bluetooth: hci5: Opcode 0x206a failed: -110
[  542.758745][ T5354] Bluetooth: hci5: command 0x206a tx timeout
[  542.820328][    C3] IPv4: Oversized IP packet from 172.20.20.24
[  543.680122][T12688] sp0: Synchronizing with TNC
[  545.060623][T10509] Bluetooth: hci5: command 0x206a tx timeout
[  545.069559][ T5354] Bluetooth: hci5: Opcode 0x206a failed: -110
[  546.619146][T12752] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2098'.
[  546.654426][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  547.763041][T12780] netlink: 'syz.2.2106': attribute type 12 has an invalid length.
[  547.766267][T12780] netlink: 'syz.2.2106': attribute type 29 has an invalid length.
[  547.769405][T12780] netlink: 'syz.2.2106': attribute type 2 has an invalid length.
[  547.774735][T12780] netlink: 128 bytes leftover after parsing attributes in process `syz.2.2106'.
[  548.479905][T12796] FAULT_INJECTION: forcing a failure.
[  548.479905][T12796] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  548.487214][T12796] CPU: 1 UID: 0 PID: 12796 Comm: syz.3.2114 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  548.492417][T12796] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  548.498280][T12796] Call Trace:
[  548.499860][T12796]  <TASK>
[  548.501604][T12796]  dump_stack_lvl+0x16c/0x1f0
[  548.504241][T12796]  should_fail_ex+0x497/0x5b0
[  548.517728][T12796]  _copy_to_user+0x30/0xc0
[  548.519693][T12796]  simple_read_from_buffer+0xd0/0x160
[  548.522134][T12796]  proc_fail_nth_read+0x19e/0x280
[  548.524382][T12796]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  548.526869][T12796]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  548.529175][T12796]  vfs_read+0x1d4/0xbd0
[  548.530913][T12796]  ? __fdget_pos+0xeb/0x180
[  548.532759][T12796]  ? __pfx_vfs_read+0x10/0x10
[  548.534782][T12796]  ? __pfx___mutex_lock+0x10/0x10
[  548.537044][T12796]  ? __fget_files+0x256/0x400
[  548.552997][T12796]  ksys_read+0x12f/0x260
[  548.554624][T12796]  ? __pfx_ksys_read+0x10/0x10
[  548.556663][T12796]  do_syscall_64+0xcd/0x250
[  548.558397][T12796]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  548.560931][T12796] RIP: 0033:0x7f4b8d7788fc
[  548.562882][T12796] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  548.572688][T12796] RSP: 002b:00007f4b8e5ef030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  548.577064][T12796] RAX: ffffffffffffffda RBX: 00007f4b8d915f80 RCX: 00007f4b8d7788fc
[  548.580680][T10509] Bluetooth: hci6: command 0x0419 tx timeout
[  548.581605][T12796] RDX: 000000000000000f RSI: 00007f4b8e5ef0a0 RDI: 0000000000000004
[  548.583944][ T5354] Bluetooth: hci6: Opcode 0x206a failed: -110
[  548.586929][T12796] RBP: 00007f4b8e5ef090 R08: 0000000000000000 R09: 0000000000000000
[  548.592570][T12796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  548.596022][T12796] R13: 0000000000000000 R14: 00007f4b8d915f80 R15: 00007ffda32bdba8
[  548.599314][T12796]  </TASK>
[  549.800374][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  549.956070][T12823] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2122'.
[  550.381261][T12838] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2126'.
[  550.410578][ T5354] Bluetooth: hci1: command 0x0c1a tx timeout
[  550.410954][   T66] Bluetooth: hci1: Opcode 0x206a failed: -110
[  551.032381][   T66] Bluetooth: hci1: Opcode 0x206a failed: -112
[  552.432378][T12888] binder: 12881:12888 ioctl 40046205 0 returned -22
[  553.050477][   T66] Bluetooth: hci1: Opcode 0x206a failed: -110
[  553.053665][   T66] Bluetooth: hci1: command 0x0c1a tx timeout
[  553.063820][T12861] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  553.112649][ T5354] Bluetooth: hci5: Opcode 0x206a failed: -112
[  553.121277][T12861] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  553.127191][T12861] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  553.137059][T12861] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  553.450521][   T39] audit: type=1326 audit(1725108676.518:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12905 comm="syz.0.2150" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2af8779eb9 code=0x0
[  553.730323][   T35] usb 7-1: new high-speed USB device number 43 using dummy_hcd
[  553.910294][   T35] usb 7-1: Using ep0 maxpacket: 8
[  553.918272][   T35] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  553.922554][   T35] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  553.927503][   T35] usb 7-1: Product: syz
[  553.929595][   T35] usb 7-1: Manufacturer: syz
[  553.934072][   T35] usb 7-1: SerialNumber: syz
[  554.184441][   T35] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 43 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  554.393884][   T39] audit: type=1400 audit(1725108677.468:750): avc:  denied  { read write } for  pid=12901 comm="syz.2.2147" name="lp0" dev="devtmpfs" ino=2757 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  554.409885][   T39] audit: type=1400 audit(1725108677.468:751): avc:  denied  { open } for  pid=12901 comm="syz.2.2147" path="/dev/usb/lp0" dev="devtmpfs" ino=2757 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  554.490751][   T35] usb 7-1: USB disconnect, device number 43
[  554.496567][   T35] usblp0: removed
[  554.651229][T12924] block nbd0: NBD_DISCONNECT
[  554.657907][T12924] block nbd0: Disconnected due to user request.
[  554.664042][T12924] block nbd0: shutting down sockets
[  554.828828][T12931] 9pnet_fd: Insufficient options for proto=fd
[  554.871156][   T39] audit: type=1400 audit(1725108677.948:752): avc:  denied  { execmem } for  pid=12933 comm="syz.0.2157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  555.130988][ T5354] Bluetooth: hci3: command 0x0c1a tx timeout
[  555.133577][ T5354] Bluetooth: hci1: command 0x0c1a tx timeout
[  555.135703][T10509] Bluetooth: hci3: Opcode 0x206a failed: -110
[  555.150346][   T66] Bluetooth: hci5: command 0x206a tx timeout
[  555.160889][T12931] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12931 comm=syz.3.2154
[  555.221711][   T66] Bluetooth: hci6: command 0x0419 tx timeout
[  557.220345][   T66] Bluetooth: hci3: command 0x0c1a tx timeout
[  557.857104][   T39] audit: type=1400 audit(1725108680.918:753): avc:  denied  { create } for  pid=12992 comm="syz.3.2169" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  557.885460][T12990] block nbd1: NBD_DISCONNECT
[  557.887741][T12990] block nbd1: Disconnected due to user request.
[  557.890890][T12990] block nbd1: shutting down sockets
[  557.987424][T12997] overlayfs: failed to resolve './bus': -2
[  558.360480][  T832] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[  558.602839][  T832] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  558.649729][  T832] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  558.651820][    C2] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  558.655427][   T39] audit: type=1400 audit(1725108681.728:754): avc:  denied  { sendto } for  pid=34 comm="ksoftirqd/3" saddr=fe80::1b daddr=ff02::2 netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1
[  558.673523][  T832] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  558.677630][  T832] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  558.690259][  T832] usb 6-1: Manufacturer: syz
[  558.698192][  T832] usb 6-1: config 0 descriptor??
[  558.740772][    C3] IPv4: Oversized IP packet from 172.20.20.24
[  558.793583][T13013] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.2172'.
[  558.841360][T13013] openvswitch: netlink: Tunnel attr 0 has unexpected len 12 expected 8
[  558.880525][  T832] rc_core: IR keymap rc-hauppauge not found
[  558.911575][T13008] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2172'.
[  558.920869][  T832] Registered IR keymap rc-empty
[  558.965546][  T832] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[  558.987765][  T832] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input28
[  559.007729][  T832] usb 6-1: USB disconnect, device number 34
[  559.709951][    C2] IPv4: Oversized IP packet from 172.20.20.24
[  560.084971][   T39] audit: type=1400 audit(1725108683.158:755): avc:  denied  { name_bind } for  pid=13027 comm="syz.0.2177" src=32 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=udp_socket permissive=1
[  560.657326][    C3] IPv4: Oversized IP packet from 172.20.20.24
[  560.711532][T13044] block nbd3: NBD_DISCONNECT
[  560.713818][T13044] block nbd3: Disconnected due to user request.
[  560.720416][T13044] block nbd3: shutting down sockets
[  561.051246][T13055] Illegal XDP return value 4294967274 on prog  (id 432) dev syz_tun, expect packet loss!
[  561.794747][    C3] IPv4: Oversized IP packet from 172.20.20.24
[  562.606756][T13073] netlink: 65047 bytes leftover after parsing attributes in process `syz.1.2188'.
[  562.916825][T13086] overlayfs: failed to resolve './file0': -2
[  563.536944][T13102] binder: 13101:13102 ioctl 40046205 0 returned -22
[  564.476467][T13120] input: syz1 as /devices/virtual/input/input29
[  565.700412][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  566.264739][T13154] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  566.357562][   T39] audit: type=1400 audit(1725108689.428:756): avc:  denied  { read } for  pid=13156 comm="syz.0.2208" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  566.497001][   T39] audit: type=1400 audit(1725108689.568:757): avc:  denied  { read write } for  pid=10347 comm="syz-executor" name="loop2" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  566.540587][   T39] audit: type=1400 audit(1725108689.588:758): avc:  denied  { open } for  pid=10347 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  566.550823][   T39] audit: type=1400 audit(1725108689.588:759): avc:  denied  { ioctl } for  pid=10347 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=662 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  566.980078][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  567.780079][    C2] IPv4: Oversized IP packet from 172.20.20.24
[  567.924444][T13186] fuse: Unknown parameter 'fe�<'O'
[  567.940539][   T39] audit: type=1400 audit(1725108690.988:760): avc:  denied  { create } for  pid=13185 comm="syz.2.2215" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[  567.980604][   T39] audit: type=1400 audit(1725108690.988:761): avc:  denied  { setopt } for  pid=13185 comm="syz.2.2215" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[  568.002830][   T39] audit: type=1400 audit(1725108690.988:762): avc:  denied  { write } for  pid=13185 comm="syz.2.2215" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[  568.614391][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  568.904403][ T1380] ieee802154 phy0 wpan0: encryption failed: -22
[  568.907407][ T1380] ieee802154 phy1 wpan1: encryption failed: -22
[  570.290450][    C2] vkms_vblank_simulate: vblank timer overrun
[  570.392944][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  570.456878][    C2] IPv4: Oversized IP packet from 172.20.20.24
[  570.828030][   T39] audit: type=1400 audit(1725108693.898:763): avc:  denied  { create } for  pid=13238 comm="syz.1.2233" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  570.843943][   T39] audit: type=1400 audit(1725108693.908:764): avc:  denied  { getopt } for  pid=13238 comm="syz.1.2233" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  571.410330][ T4761] usb 7-1: new high-speed USB device number 44 using dummy_hcd
[  571.603323][ T4761] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  571.607088][ T4761] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  571.611968][ T4761] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  571.616104][ T4761] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  571.617706][ T4761] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  571.626122][ T4761] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  571.630066][ T4761] usb 7-1: Product: syz
[  571.638171][ T4761] usb 7-1: Manufacturer: syz
[  571.669024][ T4761] cdc_wdm 7-1:1.0: skipping garbage
[  571.690691][ T4761] cdc_wdm 7-1:1.0: skipping garbage
[  571.694531][ T4761] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  571.697123][ T4761] cdc_wdm 7-1:1.0: Unknown control protocol
[  572.727532][ T4761] usb 7-1: USB disconnect, device number 44
[  573.458604][T10509] Bluetooth: hci6: command 0x0419 tx timeout
[  573.542709][T13305] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2252'.
[  574.976453][T13323] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2260'.
[  575.210650][   T35] usb 7-1: new high-speed USB device number 45 using dummy_hcd
[  575.400271][   T35] usb 7-1: Using ep0 maxpacket: 32
[  575.405122][   T35] usb 7-1: config 0 interface 0 altsetting 30 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  575.410665][   T35] usb 7-1: config 0 interface 0 altsetting 30 endpoint 0x81 has invalid wMaxPacketSize 0
[  575.414931][   T35] usb 7-1: config 0 interface 0 has no altsetting 0
[  575.417570][   T35] usb 7-1: New USB device found, idVendor=2006, idProduct=0118, bcdDevice= 0.00
[  575.433623][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  575.448970][   T35] usb 7-1: config 0 descriptor??
[  575.764770][   T39] audit: type=1326 audit(1725108698.838:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13335 comm="syz.0.2266" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2af8779eb9 code=0x7ffc0000
[  575.781451][   T39] audit: type=1326 audit(1725108698.838:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13335 comm="syz.0.2266" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2af8779eb9 code=0x7ffc0000
[  575.791444][   T39] audit: type=1326 audit(1725108698.848:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13335 comm="syz.0.2266" exe="/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7f2af8779eb9 code=0x7ffc0000
[  575.801547][   T39] audit: type=1326 audit(1725108698.848:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13335 comm="syz.0.2266" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2af8779eb9 code=0x7ffc0000
[  575.812086][   T39] audit: type=1326 audit(1725108698.848:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13335 comm="syz.0.2266" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2af8779eb9 code=0x7ffc0000
[  575.904902][   T35] hkems 0003:2006:0118.0018: unbalanced delimiter at end of report description
[  575.913586][   T35] hkems 0003:2006:0118.0018: parse failed
[  575.916860][   T35] hkems 0003:2006:0118.0018: probe with driver hkems failed with error -22
[  576.116933][ T5482] usb 7-1: USB disconnect, device number 45
[  576.126579][T13345] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2265'.
[  578.021502][ T5406] IPVS: starting estimator thread 0...
[  578.024066][T13368] tipc: Started in network mode
[  578.025881][T13368] tipc: Node identity ac1414aa, cluster identity 4711
[  578.032155][T13368] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  578.035358][T13368] tipc: Enabled bearer <udp:s>, priority 10
[  578.061202][   T39] audit: type=1326 audit(1725108701.108:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13370 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b8d779eb9 code=0x7ffc0000
[  578.109165][   T39] audit: type=1326 audit(1725108701.108:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13370 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b8d779eb9 code=0x7ffc0000
[  578.120340][T13369] IPVS: using max 21 ests per chain, 50400 per kthread
[  578.141615][   T39] audit: type=1326 audit(1725108701.118:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13370 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4b8d779eb9 code=0x7ffc0000
[  578.173884][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  578.177198][T13373] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2279'.
[  578.224870][   T39] audit: type=1326 audit(1725108701.118:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13370 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b8d779eb9 code=0x7ffc0000
[  578.234298][   T39] audit: type=1326 audit(1725108701.118:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13370 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b8d779eb9 code=0x7ffc0000
[  578.320698][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  578.470617][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  578.620424][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  578.766821][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  578.911951][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  579.045776][ T5406] tipc: Node number set to 2886997162
[  579.180497][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  579.350529][ T8883] usb 5-1: new full-speed USB device number 33 using dummy_hcd
[  579.450571][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  579.572767][ T8883] usb 5-1: not running at top speed; connect to a high speed hub
[  579.577737][ T8883] usb 5-1: config 1 interface 0 altsetting 2 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  579.590304][ T8883] usb 5-1: config 1 interface 0 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  579.597618][ T8883] usb 5-1: config 1 interface 0 has no altsetting 0
[  579.614752][ T8883] usb 5-1: New USB device found, idVendor=0c70, idProduct=f011, bcdDevice= 0.40
[  579.619314][ T8883] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  579.622926][ T8883] usb 5-1: Product: syz
[  579.624722][ T8883] usb 5-1: Manufacturer: syz
[  579.626702][ T8883] usb 5-1: SerialNumber: syz
[  579.642955][T13385] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  579.646457][T13385] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  579.980487][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  580.825014][   T39] kauditd_printk_skb: 100 callbacks suppressed
[  580.825029][   T39] audit: type=1326 audit(1725108703.898:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13407 comm="syz.2.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  580.838175][   T39] audit: type=1326 audit(1725108703.918:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13407 comm="syz.2.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  580.849960][   T39] audit: type=1326 audit(1725108703.928:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13407 comm="syz.2.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  580.872973][   T39] audit: type=1326 audit(1725108703.928:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13407 comm="syz.2.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  580.894753][   T39] audit: type=1326 audit(1725108703.928:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13407 comm="syz.2.2293" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  580.998653][   T39] audit: type=1326 audit(1725108704.068:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13413 comm="syz.2.2295" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  581.009337][   T39] audit: type=1326 audit(1725108704.068:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13413 comm="syz.2.2295" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  581.023536][   T39] audit: type=1326 audit(1725108704.068:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13413 comm="syz.2.2295" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  581.058328][   T39] audit: type=1326 audit(1725108704.068:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13413 comm="syz.2.2295" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  581.085172][   T39] audit: type=1326 audit(1725108704.068:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13413 comm="syz.2.2295" exe="/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f7ac3b79eb9 code=0x7ffc0000
[  581.846908][ T8883] usbhid 5-1:1.0: can't add hid device: -71
[  581.851990][ T8883] usbhid 5-1:1.0: probe with driver usbhid failed with error -71
[  581.864794][ T8883] usb 5-1: USB disconnect, device number 33
[  583.140463][    C1] net_ratelimit: 2 callbacks suppressed
[  583.140481][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  583.345085][T13497] ------------[ cut here ]------------
[  583.348899][T13497] WARNING: CPU: 1 PID: 13497 at include/linux/rwsem.h:195 follow_pte+0x414/0x4c0
[  583.358697][T13497] Modules linked in:
[  583.363049][T13497] CPU: 1 UID: 0 PID: 13497 Comm: syz.3.2332 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  583.368066][T13497] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  583.373561][T13497] RIP: 0010:follow_pte+0x414/0x4c0
[  583.378715][T13497] Code: bf 98 01 00 00 be ff ff ff ff e8 27 c8 44 09 31 ff 41 89 c4 89 c6 e8 9b cd b9 ff 45 85 e4 0f 85 80 fc ff ff e8 4d cb b9 ff 90 <0f> 0b 90 e9 72 fc ff ff e8 3f cb b9 ff 90 0f 0b 48 c7 c7 98 73 14
[  583.388660][T13497] RSP: 0018:ffffc9000db2f4d0 EFLAGS: 00010283
[  583.391562][T13497] RAX: 000000000000f9d0 RBX: 00007f1a18133000 RCX: ffffc90007876000
[  583.395107][T13497] RDX: 0000000000040000 RSI: ffffffff81d1f4a3 RDI: 0000000000000005
[  583.398253][T13497] RBP: ffff88802e3f7aa8 R08: 0000000000000005 R09: 0000000000000000
[  583.401501][T13497] R10: 0000000000000000 R11: 000000000000027a R12: 0000000000000000
[  583.405325][T13497] R13: ffffc9000db2f530 R14: ffffc9000db2f550 R15: ffff88802ffbdf00
[  583.408465][T13497] FS:  00007f4b8e5ce6c0(0000) GS:ffff88806a700000(0000) knlGS:0000000000000000
[  583.412295][T13497] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  583.415083][T13497] CR2: 00007f4b8e5cdf98 CR3: 000000004dca4000 CR4: 0000000000350ef0
[  583.418486][T13497] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  583.421997][T13497] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  583.425412][T13497] Call Trace:
[  583.426867][T13497]  <TASK>
[  583.428419][T13497]  ? show_regs+0x8c/0xa0
[  583.430143][T13497]  ? __warn+0xe5/0x3c0
[  583.431959][T13497]  ? follow_pte+0x414/0x4c0
[  583.433590][T13497]  ? report_bug+0x3c0/0x580
[  583.435622][T13497]  ? handle_bug+0x3d/0x70
[  583.437538][T13497]  ? exc_invalid_op+0x17/0x50
[  583.439465][T13497]  ? asm_exc_invalid_op+0x1a/0x20
[  583.441714][T13497]  ? follow_pte+0x413/0x4c0
[  583.443718][T13497]  ? follow_pte+0x414/0x4c0
[  583.445500][T13497]  get_pat_info+0xf2/0x510
[  583.447345][T13497]  ? __pfx_get_pat_info+0x10/0x10
[  583.449328][T13497]  untrack_pfn+0xf7/0x4d0
[  583.451648][T13497]  ? __pfx_untrack_pfn+0x10/0x10
[  583.453868][T13497]  ? zap_page_range_single+0x307/0x560
[  583.456307][T13497]  ? __pfx_lock_release+0x10/0x10
[  583.458571][T13497]  ? uprobe_munmap+0x20/0x5d0
[  583.460843][T13497]  unmap_single_vma+0x1bd/0x2b0
[  583.463080][T13497]  zap_page_range_single+0x326/0x560
[  583.465831][T13497]  ? __pfx_zap_page_range_single+0x10/0x10
[  583.468447][T13497]  ? __pfx___might_resched+0x10/0x10
[  583.470971][T13497]  ? vma_interval_tree_subtree_search+0x14d/0x1b0
[  583.474038][T13497]  unmap_mapping_range+0x1ee/0x280
[  583.476817][T13497]  ? __pfx_unmap_mapping_range+0x10/0x10
[  583.479553][T13497]  ? inode_newsize_ok+0x13b/0x200
[  583.482242][T13497]  truncate_pagecache+0x53/0x90
[  583.484557][T13497]  simple_setattr+0xf2/0x120
[  583.486656][T13497]  notify_change+0xf41/0x1230
[  583.489155][T13497]  do_truncate+0x15c/0x220
[  583.491276][T13497]  ? __pfx_do_truncate+0x10/0x10
[  583.494300][T13497]  path_openat+0x27a8/0x2d20
[  583.496778][T13497]  ? __pfx_path_openat+0x10/0x10
[  583.499605][T13497]  ? __pfx___lock_acquire+0x10/0x10
[  583.502927][T13497]  ? find_held_lock+0x2d/0x110
[  583.505063][T13497]  do_filp_open+0x1dc/0x430
[  583.507378][T13497]  ? __pfx_do_filp_open+0x10/0x10
[  583.510560][T13497]  ? find_held_lock+0x2d/0x110
[  583.513597][T13497]  ? _raw_spin_unlock+0x28/0x50
[  583.516694][T13497]  ? alloc_fd+0x2d7/0x6c0
[  583.519206][T13497]  do_sys_openat2+0x17a/0x1e0
[  583.522278][T13497]  ? __pfx_do_sys_openat2+0x10/0x10
[  583.525119][T13497]  __x64_sys_openat+0x175/0x210
[  583.527795][T13497]  ? __pfx___x64_sys_openat+0x10/0x10
[  583.531059][T13497]  do_syscall_64+0xcd/0x250
[  583.533891][T13497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.537598][T13497] RIP: 0033:0x7f4b8d779eb9
[  583.540781][T13497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  583.550961][T13497] RSP: 002b:00007f4b8e5ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  583.554841][T13497] RAX: ffffffffffffffda RBX: 00007f4b8d916058 RCX: 00007f4b8d779eb9
[  583.558768][T13497] RDX: 0000000000003f00 RSI: 0000000020000080 RDI: ffffffffffffff9c
[  583.562945][T13497] RBP: 00007f4b8d7e793e R08: 0000000000000000 R09: 0000000000000000
[  583.566503][T13497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  583.569994][T13497] R13: 0000000000000000 R14: 00007f4b8d916058 R15: 00007ffda32bdba8
[  583.574065][T13497]  </TASK>
[  583.575719][T13497] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  583.578975][T13497] CPU: 1 UID: 0 PID: 13497 Comm: syz.3.2332 Not tainted 6.11.0-rc5-syzkaller-00207-gfb24560f31f9 #0
[  583.584978][T13497] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  583.590217][T13497] Call Trace:
[  583.591871][T13497]  <TASK>
[  583.593240][T13497]  dump_stack_lvl+0x3d/0x1f0
[  583.595375][T13497]  panic+0x6dc/0x7c0
[  583.597195][T13497]  ? __pfx_panic+0x10/0x10
[  583.599257][T13497]  ? show_trace_log_lvl+0x363/0x500
[  583.601434][T13497]  ? follow_pte+0x414/0x4c0
[  583.603453][T13497]  check_panic_on_warn+0xab/0xb0
[  583.605729][T13497]  __warn+0xf1/0x3c0
[  583.607593][T13497]  ? follow_pte+0x414/0x4c0
[  583.609631][T13497]  report_bug+0x3c0/0x580
[  583.611681][T13497]  handle_bug+0x3d/0x70
[  583.613495][T13497]  exc_invalid_op+0x17/0x50
[  583.615573][T13497]  asm_exc_invalid_op+0x1a/0x20
[  583.617766][T13497] RIP: 0010:follow_pte+0x414/0x4c0
[  583.620094][T13497] Code: bf 98 01 00 00 be ff ff ff ff e8 27 c8 44 09 31 ff 41 89 c4 89 c6 e8 9b cd b9 ff 45 85 e4 0f 85 80 fc ff ff e8 4d cb b9 ff 90 <0f> 0b 90 e9 72 fc ff ff e8 3f cb b9 ff 90 0f 0b 48 c7 c7 98 73 14
[  583.631132][T13497] RSP: 0018:ffffc9000db2f4d0 EFLAGS: 00010283
[  583.634756][T13497] RAX: 000000000000f9d0 RBX: 00007f1a18133000 RCX: ffffc90007876000
[  583.638699][T13497] RDX: 0000000000040000 RSI: ffffffff81d1f4a3 RDI: 0000000000000005
[  583.642393][T13497] RBP: ffff88802e3f7aa8 R08: 0000000000000005 R09: 0000000000000000
[  583.646042][T13497] R10: 0000000000000000 R11: 000000000000027a R12: 0000000000000000
[  583.649586][T13497] R13: ffffc9000db2f530 R14: ffffc9000db2f550 R15: ffff88802ffbdf00
[  583.653226][T13497]  ? follow_pte+0x413/0x4c0
[  583.655362][T13497]  get_pat_info+0xf2/0x510
[  583.657403][T13497]  ? __pfx_get_pat_info+0x10/0x10
[  583.660244][T13497]  untrack_pfn+0xf7/0x4d0
[  583.663074][T13497]  ? __pfx_untrack_pfn+0x10/0x10
[  583.665314][T13497]  ? zap_page_range_single+0x307/0x560
[  583.667799][T13497]  ? __pfx_lock_release+0x10/0x10
[  583.669943][T13497]  ? uprobe_munmap+0x20/0x5d0
[  583.672001][T13497]  unmap_single_vma+0x1bd/0x2b0
[  583.674348][T13497]  zap_page_range_single+0x326/0x560
[  583.678271][T13497]  ? __pfx_zap_page_range_single+0x10/0x10
[  583.681425][T13497]  ? __pfx___might_resched+0x10/0x10
[  583.684298][T13497]  ? vma_interval_tree_subtree_search+0x14d/0x1b0
[  583.687481][T13497]  unmap_mapping_range+0x1ee/0x280
[  583.690254][T13497]  ? __pfx_unmap_mapping_range+0x10/0x10
[  583.693026][T13497]  ? inode_newsize_ok+0x13b/0x200
[  583.696251][T13497]  truncate_pagecache+0x53/0x90
[  583.698512][T13497]  simple_setattr+0xf2/0x120
[  583.700528][T13497]  notify_change+0xf41/0x1230
[  583.702577][T13497]  do_truncate+0x15c/0x220
[  583.704485][T13497]  ? __pfx_do_truncate+0x10/0x10
[  583.706710][T13497]  path_openat+0x27a8/0x2d20
[  583.709472][T13497]  ? __pfx_path_openat+0x10/0x10
[  583.712532][T13497]  ? __pfx___lock_acquire+0x10/0x10
[  583.715404][T13497]  ? find_held_lock+0x2d/0x110
[  583.717747][T13497]  do_filp_open+0x1dc/0x430
[  583.720415][T13497]  ? __pfx_do_filp_open+0x10/0x10
[  583.723528][T13497]  ? find_held_lock+0x2d/0x110
[  583.725679][T13497]  ? _raw_spin_unlock+0x28/0x50
[  583.728301][T13497]  ? alloc_fd+0x2d7/0x6c0
[  583.730779][T13497]  do_sys_openat2+0x17a/0x1e0
[  583.733709][T13497]  ? __pfx_do_sys_openat2+0x10/0x10
[  583.736973][T13497]  __x64_sys_openat+0x175/0x210
[  583.739365][T13497]  ? __pfx___x64_sys_openat+0x10/0x10
[  583.742309][T13497]  do_syscall_64+0xcd/0x250
[  583.744571][T13497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.747434][T13497] RIP: 0033:0x7f4b8d779eb9
[  583.749735][T13497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  583.760084][T13497] RSP: 002b:00007f4b8e5ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  583.764991][T13497] RAX: ffffffffffffffda RBX: 00007f4b8d916058 RCX: 00007f4b8d779eb9
[  583.769493][T13497] RDX: 0000000000003f00 RSI: 0000000020000080 RDI: ffffffffffffff9c
[  583.773659][T13497] RBP: 00007f4b8d7e793e R08: 0000000000000000 R09: 0000000000000000
[  583.777757][T13497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  583.782642][T13497] R13: 0000000000000000 R14: 00007f4b8d916058 R15: 00007ffda32bdba8
[  583.786694][T13497]  </TASK>
[  583.789063][T13497] Kernel Offset: disabled
[  583.791658][T13497] Rebooting in 86400 seconds..

VM DIAGNOSIS:
12:51:46  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=fffff520001a2ee6 RCX=ffffffff816825f3 RDX=0000000000000004
RSI=ffffc90000d17750 RDI=ffffc90000d17760 RBP=ffff888024f6f100 RSP=ffffc90000d17728
R8 =0000000000000001 R9 =fffff520001a2eec R10=0000000000000003 R11=0000000000000000
R12=ffffc90007ad5318 R13=ffffc90007ad5318 R14=dffffc0000000000 R15=0000000000000000
RIP=ffffffff8b16db30 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055555757b808 CR3=000000000db7c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000020000200 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffda32bdf40 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e8762
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e876f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e8769
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e877d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e8803
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e88e1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8502daa5 RDI=ffffffff9a5b2f20 RBP=ffffffff9a5b2ee0 RSP=ffffc9000db2eea0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000030 R14=ffffffff8502da40 R15=0000000000000000
RIP=ffffffff8502dacf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f4b8e5ce6c0 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f4b8e5cdf98 CR3=000000004dca4000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000002201 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8e5cdf80 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e8762
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e876f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e8769
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e877d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e8803
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e88e1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 45455250203a524f 5455434558452d5a 5953000a29642520 6f6e727265282000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 45455250051f524f 545543455845085a 5953000a0c410005 4a4b5757400d0500
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000000 RCX=1ffff110054175f2 RDX=1ffff110054175f6
RSI=0000000000000021 RDI=ffff88802a0bafa0 RBP=0000000000000000 RSP=ffffc900059b7568
R8 =0000000000000000 R9 =0000000000000000 R10=000000000000000f R11=0000000000000002
R12=ffffffff8ddb9fe0 R13=ffff88802a0baf98 R14=0000000000000021 R15=ffff88802a0ba440
RIP=ffffffff81697154 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f2af95e6d58 CR3=000000002162c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555579985be0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557990c4a8
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557990ccd7 000055557990cc30
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555579911194 0000555579911190
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000037313335 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fffffffffff7080a 8e03207465677261 7401ffffffffffff fffff1080a800302
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fffffffffd080a98 033401ffffffffff fffffffd080a9603 3a49435001ffffff
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fffffffffffffd08 0a9c033501ffffff fffffffffffd080a 9a033a01ffffffff
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fffffffffffffffd 080aa203373101ff fffffffffffffffb 080a9e033a01ffff
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 012a10000a800401 080006014be20002 000aa803353101ff fffffffffffffffb
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 080aa4032e01ffff fffffffffffffd08 0aa203373101ffff fffffffffffffb08
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a9e033a01ffffff fffffffffffd080a 9c033501ffffffff fffffffffd080a9a
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 033a01ffffffffff fffffffd080a9803 3401ffffffffffff fffffd080a96033a
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00827dba62002608 37a20300020037a0 0300080037980300 0800379003000800
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000001 RBX=ffff88806a93edc0 RCX=ffffffff816286b2 RDX=ffffed10023b2e2d
RSI=0000000000000008 RDI=ffff888011d97160 RBP=ffff88806a93f720 RSP=ffffc90006def580
R8 =0000000000000001 R9 =ffffed10023b2e2c R10=ffff888011d97167 R11=0000000000000000
R12=0000000000000003 R13=ffff888011d97160 R14=000000815918530c R15=ffff88806a93edc0
RIP=ffffffff816286b8 RFL=00000047 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f2af96076c0 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f4b8d917a8c CR3=0000000029334000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000020000200 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffda32bdf40 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e8762
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e876f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e8769
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e877d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e8803
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4b8d7e88e1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000