last executing test programs: 1.74461681s ago: executing program 2 (id=3465): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x5c, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x9effffff}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}]}, 0x5c}}, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_io_uring_setup(0x5c23, &(0x7f0000000240)={0x0, 0x0, 0x13290}, &(0x7f0000000440)=0x0, &(0x7f0000000080)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000140)=@IORING_OP_RENAMEAT={0x23, 0x40, 0x0, 0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='./file0/../file0\x00'}) syz_emit_ethernet(0x1e, &(0x7f0000000040)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x33}, @random="e30d14f72424", @void, {@can={0xc, {{0x1, 0x1, 0x1}, 0x1, 0x2, 0x0, 0x0, "3c06072dfdaabf6e"}}}}, &(0x7f00000000c0)={0x1, 0x2, [0x441, 0x1f6, 0x6f9, 0x944]}) ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f0000000180)={0x48, 0x5, 0x0, 0x0, 0xffffffffffffffff}) ioctl$IOMMU_TEST_OP_ACCESS_PAGES(0xffffffffffffffff, 0x3ba0, &(0x7f0000000300)={0x48, 0x7, r4, 0x0, 0x35c43d9d3be2c3a4, 0x0, 0x724, 0x1}) io_uring_enter(r1, 0x1, 0x45d0, 0x1, 0x0, 0x1000000) socket$nl_netfilter(0x10, 0x3, 0xc) (async) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x5c, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x9effffff}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}]}, 0x5c}}, 0x0) (async) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async) syz_io_uring_setup(0x5c23, &(0x7f0000000240)={0x0, 0x0, 0x13290}, &(0x7f0000000440), &(0x7f0000000080)) (async) syz_io_uring_submit(r2, r3, &(0x7f0000000140)=@IORING_OP_RENAMEAT={0x23, 0x40, 0x0, 0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='./file0/../file0\x00'}) (async) syz_emit_ethernet(0x1e, &(0x7f0000000040)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x33}, @random="e30d14f72424", @void, {@can={0xc, {{0x1, 0x1, 0x1}, 0x1, 0x2, 0x0, 0x0, "3c06072dfdaabf6e"}}}}, &(0x7f00000000c0)={0x1, 0x2, [0x441, 0x1f6, 0x6f9, 0x944]}) (async) ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f0000000180)={0x48}) (async) ioctl$IOMMU_TEST_OP_ACCESS_PAGES(0xffffffffffffffff, 0x3ba0, &(0x7f0000000300)={0x48, 0x7, r4, 0x0, 0x35c43d9d3be2c3a4, 0x0, 0x724, 0x1}) (async) io_uring_enter(r1, 0x1, 0x45d0, 0x1, 0x0, 0x1000000) (async) 1.61494495s ago: executing program 2 (id=3466): syz_usb_connect(0x4, 0x2d, 0x0, 0x0) r0 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYRES32=r1, @ANYBLOB="00004000000000022800"], 0x48}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="2800000014002101000000000000000002200000", @ANYRES32=r1, @ANYBLOB="08000400ffffffff08000200e0"], 0x28}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400212100000000000000000200"], 0x28}}, 0x0) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@ipv4_newaddr={0x20, 0x14, 0x121, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r5}, [@IFA_LOCAL={0x8, 0x2, @dev}]}, 0x20}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv4_deladdr={0x18, 0x15, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r5}}, 0x18}}, 0x0) syz_open_dev$evdev(0x0, 0x4000000, 0x0) syz_io_uring_setup(0x1f14, 0x0, 0x0, 0x0) r6 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0) syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0) r7 = inotify_init1(0x800) r8 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r8, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCRTC(r8, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r9, 0x0}) ioctl$DRM_IOCTL_MODE_GETFB2(r8, 0xc06864ce, &(0x7f0000000200)={r10}) r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000500)='sys_exit\x00', r11}, 0x10) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x8102, 0x0) ioctl$INOTIFY_IOC_SETNEXTWD(r7, 0x40044900, 0x3c) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r6, 0x100000) 1.285146554s ago: executing program 1 (id=3476): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback, 0x20000000}, 0x1c) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000040)=0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0xc}, 0x1c) connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c) timer_delete(r1) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000140), 0x4) getsockopt$inet6_opts(r0, 0x11a, 0x36, 0x0, 0x0) r3 = syz_open_dev$vbi(&(0x7f00000001c0), 0x1, 0x2) ioperm(0x0, 0x1, 0x1) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TCSETS(r4, 0x40045431, &(0x7f0000001a40)={0x0, 0x0, 0x1, 0x0, 0x0, "a05c7b5d00008023e9c5bcf5ff7700"}) r5 = syz_open_pts(r4, 0x0) r6 = dup3(r5, r4, 0x0) io_setup(0x685, &(0x7f0000000280)=0x0) io_submit(r7, 0x1, &(0x7f0000000000)=[&(0x7f0000000380)={0x503, 0x0, 0x0, 0x0, 0x0, r6, 0x0}]) r8 = fcntl$dupfd(r3, 0x0, r3) write$binfmt_script(r8, &(0x7f0000001b00), 0xfffffd9d) ppoll(&(0x7f0000000540)=[{r3, 0x5086}], 0x1, 0x0, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) 1.185213375s ago: executing program 0 (id=3477): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000001e80), r0) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x28, r1, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}]}, 0x28}}, 0x0) (fail_nth: 6) 1.13770577s ago: executing program 2 (id=3478): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000780)={0x14, r1, 0x5, 0x70bd25, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x3, 0x4, &(0x7f0000000400)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x11}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94) r3 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$sock_buf(r3, 0x1, 0x48, 0x0, &(0x7f00000003c0)) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000640)="6a03e63a4905f8e8dc01cf21f8f7", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.13417076s ago: executing program 0 (id=3479): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'bond0\x00', 0x0}) bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @local}, 0x14) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x1, 0x803, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x700, 0x0, 0xff7f, 0xef}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x44}}, 0x0) 1.064796655s ago: executing program 1 (id=3480): r0 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYRES32=r1, @ANYBLOB="0000400000000002280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="2800000014002101000000000000000002200000", @ANYRES32=r1, @ANYBLOB="08000400ffffff"], 0x28}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400212100000000000000000200"], 0x28}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv4_deladdr={0x18, 0x15, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r4}}, 0x18}}, 0x0) ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x3, 0x0, [], [0x20000000], [0xdf6, 0x1], [0x0, 0x4, 0x72a]}) ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000200)) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x8102, 0x0) ioctl$INOTIFY_IOC_SETNEXTWD(0xffffffffffffffff, 0x40044900, 0x3c) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x100000) 1.064547498s ago: executing program 2 (id=3481): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1900000004000000040000000900000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000a0571d3600"/28], 0x48) r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f00000033c0)={0x53, 0x0, 0x6, 0x6b, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000000)="1c3513000000", 0x0, 0x0, 0x0, 0x0, 0x0}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote}) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xe, 0x4, 0x4, 0x9, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r4, &(0x7f0000000740), &(0x7f0000000000)=""/8, 0x2}, 0x20) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r5, 0x89a1, &(0x7f0000000900)={'bridge0\x00', @broadcast}) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x18, r1, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x10) 1.064372338s ago: executing program 1 (id=3482): getxattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)=@random={'security.', '(.\x00'}, 0x0, 0x0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x2, 0x3, 0x101, 0x0, 0x0, {}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0186405, &(0x7f0000000280)={0x8000, 0x5, {}, {0x0}, 0x8, 0x6}) mount$9p_virtio(&(0x7f0000000140), &(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000240), 0x200504, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=virtio,posixacl,access=', @ANYRESDEC=r2, @ANYBLOB="2c6d73697a02f4c72f307b59e7653d3078303030303030303030303030303030342c6d61736b3d5e4d41595f455845432c00"]) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x8, 0x0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0) close(r3) socket$netlink(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r3, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00'}) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_RENAME(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x14, 0x5, 0x6, 0x3, 0x0, 0x0, {0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x84}, 0x48000) sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x14, 0x2, 0x3, 0x201, 0x0, 0x0, {0x0, 0x0, 0x9}}, 0xf}, 0x1, 0x0, 0x0, 0x24000000}, 0x4008054) r5 = socket$netlink(0x10, 0x3, 0x0) writev(r5, &(0x7f0000000380)=[{&(0x7f0000000300)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190010000400000007fd17e5ffff080004000000282459801b", 0x39}], 0x1) 1.014672717s ago: executing program 1 (id=3484): r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x41, 0x0) write$nbd(r0, &(0x7f0000000240)=ANY=[], 0x40) 1.01432707s ago: executing program 0 (id=3486): syz_usb_connect(0x4, 0x2d, 0x0, 0x0) r0 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYRES32=r1, @ANYBLOB="0000400000000002280012000c0001"], 0x48}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="2800000014002101000000000000000002200000", @ANYRES32=r1, @ANYBLOB="08000400ffffffff08000200e0"], 0x28}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400212100000000000000000200"], 0x28}}, 0x0) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@ipv4_newaddr={0x20, 0x14, 0x121, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r5}, [@IFA_LOCAL={0x8, 0x2, @dev}]}, 0x20}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv4_deladdr={0x18, 0x15, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r5}}, 0x18}}, 0x0) syz_open_dev$evdev(0x0, 0x4000000, 0x0) syz_io_uring_setup(0x1f14, 0x0, 0x0, 0x0) r6 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0) syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0) r7 = inotify_init1(0x800) r8 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r8, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCRTC(r8, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r9, 0x0}) ioctl$DRM_IOCTL_MODE_GETFB2(r8, 0xc06864ce, &(0x7f0000000200)={r10}) r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000500)='sys_exit\x00', r11}, 0x10) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x8102, 0x0) ioctl$INOTIFY_IOC_SETNEXTWD(r7, 0x40044900, 0x3c) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r6, 0x100000) 1.014118986s ago: executing program 1 (id=3487): r0 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000040), 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1600000000000000040000000100000010010300", @ANYRES32=0x1, @ANYBLOB="0000000000000000001000000000000000000000cee328766997039c06f1a0d1b8d53aaf2d5cfdfb80919a212ad8422c01682f441f37bb1a0f1183ef1dad658ad65bea5d3061680d255fae913d63de5e339fb7142f6d916304eac59a94554fb599c92e29e753b213475a9115036cb8c13d835cf8bb6ff7ab4e0f366805fb3eaa7bb3cd45e8dd4320392bbbd722e11e6fad62556dcb53dd86c38d74", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/24, @ANYRES32=r0, @ANYBLOB], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58) r4 = accept4(r3, 0x0, 0x0, 0x0) sendmmsg(r4, &(0x7f00000004c0)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f00000001c0)="faf4ceb0350689621a591ca72fde78a236", 0x11}, {&(0x7f0000000200)="b896a15f48052eec7bc7fe285f228824877bd9d7deef9ae32aa7eaa025f93fb4067ab22fccd16dab6b0416f4b91b89414a67a83cbfcae17db95e9608f4babaa8e26db9ccd33b4d990b3335fc877386a42a048e85fe13735653f5dc6a50f69daff639872adff92fa2553c3a0a85a879576bc223c105571fc143ed0821500e1f522f14cda2967fa4c88b112d574ade8c01d2e7758804757feae278d1eb4ef41ecd6ce5089b6dba007c20825bf781caec663385fbef14106aa320ac804e6a1ee47b202731ea", 0xc4}, {&(0x7f0000000300)="9f6d6c08bb34cc9b518293dd75ee50dd93a53f0e51ffa4ebae3fb241caf823aba01aa0e010e47bb2199cc92dcf9decd9ea13f179e5f53871ab70aae77fc1459ce454586f7b18501336c32ae455fa8b04cd31b1396e57b983d7914e02a68e8e537595dcf502797e3a4d7a990e4b293eb77b73d75a7b1ef0413b6255e849b4", 0x7e}, {&(0x7f0000000380)="dc7e2b4b9bb2aab402bf2ea914dc3d9012974cbcbcc38802d296d236d57b0ceeee1b7d6309c448f1b66d929d", 0x2c}], 0x4}}], 0x1, 0x0) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) r5 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000900), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000940)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="0100000000000000000001000000280001800500020000000000060001000a000000140004"], 0x3c}}, 0x0) sendto$inet6(r5, 0x0, 0x0, 0x24008080, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_CAP_SPLIT_IRQCHIP(r9, 0x4068aea3, &(0x7f0000000280)) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r10, 0x4400ae8f, &(0x7f0000000880)={"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"}) ioctl$KVM_SET_REGS(r10, 0x4090ae82, &(0x7f00000000c0)={[0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], 0x0, 0x8340}) ioctl$KVM_RUN(r10, 0xae80, 0x0) syz_clone(0x12000000, 0x0, 0x16, 0x0, 0x0, 0x0) 935.404629ms ago: executing program 2 (id=3489): r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0) preadv(r0, &(0x7f0000000740)=[{&(0x7f0000000500)=""/97, 0x61}], 0x1, 0x0, 0x0) (fail_nth: 2) ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000080)={0x4000000}) 875.04723ms ago: executing program 3 (id=3490): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000780)={0x14, r1, 0x5, 0x70bd25, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x3, 0x4, &(0x7f0000000400)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x11}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94) r3 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$sock_buf(r3, 0x1, 0x48, 0x0, &(0x7f00000003c0)) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000640)="6a03e63a4905f8e8dc01cf21f8f7", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 874.756357ms ago: executing program 3 (id=3491): r0 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYRES32=r1, @ANYBLOB="0000400000000002280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="2800000014002101000000000000000002200000", @ANYRES32=r1, @ANYBLOB="08000400ffffffff0800"], 0x28}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400212100000000000000000200"], 0x28}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv4_deladdr={0x18, 0x15, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r4}}, 0x18}}, 0x0) ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x3, 0x0, [], [0x20000000], [0xdf6, 0x1], [0x0, 0x4, 0x72a]}) ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000200)) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x8102, 0x0) ioctl$INOTIFY_IOC_SETNEXTWD(0xffffffffffffffff, 0x40044900, 0x3c) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x100000) 795.022749ms ago: executing program 2 (id=3492): connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x800, @fixed, 0x8, 0x2}, 0xe) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'team_slave_1\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="9400000013004f0a000200"/20, @ANYRES32=r3, @ANYBLOB="00000000000000000800cfffecc507006c001a8054000a80140007"], 0x94}}, 0x0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r4) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000680), r6) sendmsg$NLBL_CALIPSO_C_LIST(r6, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000440)=ANY=[@ANYBLOB="3f8ab1adfbe2be637e1e1ed26659c3b982ac90648161b8fad497e861ffab28f4aa2265a5ad707f7af9b0be95044519c660d3f09d0c4e5214694ffe10a5bcf994a248c691c32e5fa25a72c4cb519eab5254f7dfe0576e7152c659ba5a232a909328090ffe6b15f5313449ce5333", @ANYRES16=r7, @ANYBLOB="210029bd7000ffdbdf2503000000"], 0x14}, 0x1, 0x0, 0x0, 0x840}, 0x200080c0) sendmsg$NLBL_CALIPSO_C_LIST(r5, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="090326bd7000ffdbdf250300000008000100010000000800010001000000080001000200000008000100020000009eb6c1df13c8d6b63818934fda7b2164d24fbab5332f8b33e033dcf5618d821e7d2e3d452fbe2c25bd9ad39996b2533a3ae817e672006073119fe38a78ed4433479f4a5c619b8893b45e942b00e4597c50544b7c6cdd00d94e32e85a34881150c66c89a001f07ba49af647b724ea26f8c417f75cebdc6a08c5e395bd8945bf3fb825314e88bc3eca5dceb06146c9f3736ca23b52ff03b8deb4262548a983a2909d24dd24ab7335985d6cd3c223b715d4dcb4bd2329fdea0b19ac747d8320d42f8cf8"], 0x34}, 0x1, 0x0, 0x0, 0x40000000}, 0x4001) write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_REMOVE(r4, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x58, 0x0, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x34, 0x8, 0x0, 0x1, [{0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x64da4ab5}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x66a2da0e}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x45cd13e5}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000084}, 0x4000) splice(r0, 0x0, r2, 0x0, 0x8f8, 0x0) 794.724339ms ago: executing program 3 (id=3493): getxattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)=@random={'security.', '(.\x00'}, 0x0, 0x0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x2, 0x3, 0x101, 0x0, 0x0, {}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0186405, &(0x7f0000000280)={0x8000, 0x5, {}, {0x0}, 0x8, 0x6}) mount$9p_virtio(&(0x7f0000000140), &(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000240), 0x200504, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=virtio,posixacl,access=', @ANYRESDEC=r2, @ANYBLOB="2c6d73697a02f4c72f307b59e7653d3078303030303030303030303030303030342c6d61736b3d5e4d41595f455845432c00"]) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x8, 0x0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0) close(r3) socket$netlink(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r3, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00'}) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_RENAME(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x14, 0x5, 0x6, 0x3, 0x0, 0x0, {0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x84}, 0x48000) sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x14, 0x2, 0x3, 0x201, 0x0, 0x0, {0x0, 0x0, 0x9}}, 0xf}, 0x1, 0x0, 0x0, 0x24000000}, 0x4008054) r5 = socket$netlink(0x10, 0x3, 0x0) writev(r5, &(0x7f0000000380)=[{&(0x7f0000000300)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190010000400000007fd17e5ffff080004000000282459801b", 0x39}], 0x1) 794.491235ms ago: executing program 3 (id=3494): r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000000380)=[{&(0x7f0000000300)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190010000400000007fd17", 0x2b}], 0x1) 794.386706ms ago: executing program 3 (id=3495): r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x41, 0x0) write$nbd(r0, &(0x7f0000000240)=ANY=[], 0x40) 733.413087ms ago: executing program 3 (id=3496): r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0) syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[], 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) sendmsg$DEVLINK_CMD_RATE_SET(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={0x0, 0x14}}, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) r1 = openat$ubi_ctrl(0xffffff9c, 0x0, 0x8000, 0x0) syz_open_dev$vim2m(0x0, 0x7, 0x2) ioctl$vim2m_VIDIOC_G_FMT(r1, 0xc0285628, 0x0) ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, &(0x7f00000000c0)) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000040)={'batadv0\x00', 0x0}) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000014000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r4, @ANYBLOB="14003500776c616e310000000000"], 0x3c}}, 0x0) accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) syz_usb_connect$cdc_ncm(0x2, 0x75, &(0x7f0000000140)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x63, 0x2, 0x1, 0xbe, 0xd0, 0xff, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x100}, {0xd, 0x24, 0xf, 0x1, 0x7, 0x9, 0x2, 0x7}, {0x6, 0x24, 0x1a, 0x5, 0x14}, [@network_terminal={0x7, 0x24, 0xa, 0xff, 0x36, 0x2, 0x3}]}, {{0x9, 0x5, 0x81, 0x3, 0x20, 0xcc, 0x40, 0xc}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x40, 0x0, 0xd, 0xb}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x1, 0xd, 0x2}}}}}}}]}}, &(0x7f00000004c0)={0xa, &(0x7f0000000200)={0xa, 0x6, 0x250, 0x7, 0x3, 0x0, 0x20, 0x7}, 0xf, &(0x7f0000000240)={0x5, 0xf, 0xf, 0x2, [@ptm_cap={0x3}, @ext_cap={0x7, 0x10, 0x2, 0x0, 0x2, 0x6, 0x3}]}, 0x4, [{0xdb, &(0x7f00000003c0)=@string={0xdb, 0x3, "e4f215cd76dcf7787a271e0f85f56cdf56652fb40c15477f86daf78928014e5bc7977f1a5114ff7b3e4dc1398f648347a48c0424b109bae240564b9f15763196130cf16f3de77a5faae4e13e0e67e4c94c8324d8d31e7fa5c8288ecaece79f74f41c8dfc1d317b54234885866f0cb87b0d2387d8ae4c967d99bda56575eff5d281d0fcbbe0cea24fa6af53eb557cfe0c3220752d11e147f78b3afa06b87256be798188b11aed303d81f616c28ebcfec1227bd968740cba193d16cfae8c4256540b97af6596d9912a52750e214de279f40dfd735ca1bc8721d6"}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x80a}}, {0x55, &(0x7f00000002c0)=@string={0x55, 0x3, "633e530b9008e0e5b503400658101ff713cc40612a23632092ccfc21095d774db7e69c4e9d44ec24b898fbc456fc1f165fbf497f70e742cb4e4df3ab006b2a777148fdfba4641031848286ff4792ffd30c9e10"}}, {0xe2, &(0x7f0000000600)=@string={0xe2, 0x3, "5f0d6d77b2dc082256c2678f98a6f82a4d41aa5a68b2ad55c68fb0b5897516792058c5051a867a0a6d16f63314e0f516fc8154845efec5afadbe383cf3ab7678530b0aca1a4577721d8060abcc91369ef3b2c21c30fe6c97d655acbb4b1e9b606bb6d23ddf41224beda9f637fbc61b99c8c9257bb711f52832e988ab08426576fb4e682f65e89f14aa751141a07c08302b1a6bd1f0e53c800bd5e5c6ccaaf5f1749f7b2cbb9a78c0f20ff11e2122a9eaf6e9497d8b47ec02043730f6ef0ae5c25a287f1e516f2f2ea46c3805ded35af9423a17db40a30ee2b9a4ccf9dbeea09c"}}]}) ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, &(0x7f0000000000)={'wlan1\x00'}) socket$kcm(0x2, 0x3, 0x2) syz_io_uring_setup(0x5d71, &(0x7f0000000340)={0x0, 0x0, 0x10700}, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54}) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000c40), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000c80)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_DEL_INTERFACE(r6, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x1c, r7, 0x201, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}}, 0x1c}, 0x1, 0x700}, 0x0) 445.27816ms ago: executing program 0 (id=3497): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1900000004000000040000000900000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000a0571d3600"/28], 0x48) r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f00000033c0)={0x53, 0x0, 0x6, 0x6b, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000000)="1c3513000000", 0x0, 0x0, 0x0, 0x0, 0x0}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote}) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xe, 0x4, 0x4, 0x9, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r4, &(0x7f0000000740), &(0x7f0000000000)=""/8, 0x2}, 0x20) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r5, 0x89a1, &(0x7f0000000900)={'bridge0\x00', @broadcast}) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x18, r1, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x10) 81.542628ms ago: executing program 1 (id=3498): r0 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYRES32=r1, @ANYBLOB="0000400000000002280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="2800000014002101000000000000000002200000", @ANYRES32=r1, @ANYBLOB="08000400ffffff"], 0x28}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400212100000000000000000200"], 0x28}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv4_deladdr={0x18, 0x15, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r4}}, 0x18}}, 0x0) ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x3, 0x0, [], [0x20000000], [0xdf6, 0x1], [0x0, 0x4, 0x72a]}) ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000200)) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x8102, 0x0) ioctl$INOTIFY_IOC_SETNEXTWD(0xffffffffffffffff, 0x40044900, 0x3c) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x100000) 76.266391ms ago: executing program 0 (id=3506): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1900000004000000040000000900000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000a0571d3600"/28], 0x48) r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f00000033c0)={0x53, 0x0, 0x6, 0x6b, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000000)="1c3513000000", &(0x7f0000002240)=""/4103, 0x0, 0x0, 0x0, 0x0}) socketpair$nbd(0x1, 0x1, 0x0, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote}) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xe, 0x4, 0x4, 0x9, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r3, &(0x7f0000000740), &(0x7f0000000000)=""/8, 0x2}, 0x20) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r4, 0x89a1, &(0x7f0000000900)={'bridge0\x00', @broadcast}) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x18, r1, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x10) 0s ago: executing program 0 (id=3499): r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) close(r1) bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x6f, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000002200007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000b98cad95850000000300000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000000000000c50000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000002c0)={'batadv_slave_0\x00', 0x0}) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r5, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f00000000c0)=r6, 0x4) sendmsg$unix(r4, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0) r7 = openat$ttynull(0xffffff9c, &(0x7f0000000140), 0x100, 0x0) ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000280)=0x14) preadv(r0, &(0x7f0000000740)=[{&(0x7f0000000500)=""/97, 0x61}], 0x1, 0x2, 0x0) ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000080)={0x4000000}) kernel console output (not intermixed with test programs): nd_held_lock+0x2d/0x110 [ 516.452812][T13876] ? _raw_spin_unlock+0x28/0x50 [ 516.454120][T13876] ? alloc_fd+0x2d7/0x6c0 [ 516.455258][T13876] do_sys_openat2+0x17a/0x1e0 [ 516.456504][T13876] ? __pfx_do_sys_openat2+0x10/0x10 [ 516.457871][T13876] ? __pfx___schedule+0x10/0x10 [ 516.459146][T13876] ? __fget_files+0x244/0x3f0 [ 516.460394][T13876] __ia32_compat_sys_openat+0x16e/0x210 [ 516.461844][T13876] ? __pfx___ia32_compat_sys_openat+0x10/0x10 [ 516.463429][T13876] ? ksys_write+0x1ad/0x260 [ 516.464636][T13876] __do_fast_syscall_32+0x73/0x120 [ 516.465981][T13876] do_fast_syscall_32+0x32/0x80 [ 516.467262][T13876] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 516.468919][T13876] RIP: 0023:0xf7f1f579 [ 516.469991][T13876] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 516.474966][T13876] RSP: 002b:00000000f566456c EFLAGS: 00000296 ORIG_RAX: 0000000000000127 [ 516.477133][T13876] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000080 [ 516.479188][T13876] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 516.481246][T13876] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 516.483297][T13876] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 516.485353][T13876] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 516.487420][T13876] [ 516.496079][T13878] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2698'. [ 516.590544][T13886] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2708'. [ 517.116271][T13893] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2710'. [ 517.152701][T13898] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2702'. [ 518.337212][ T35] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 518.507126][ T35] usb 8-1: Using ep0 maxpacket: 32 [ 518.509712][ T35] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 518.512535][ T35] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 518.515104][ T35] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 518.518799][ T35] usb 8-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00 [ 518.521179][ T35] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 518.524084][ T35] usb 8-1: config 0 descriptor?? [ 518.749139][T13915] netlink: 'syz.3.2712': attribute type 1 has an invalid length. [ 518.755026][ T35] usbhid 8-1:0.0: can't add hid device: -71 [ 518.756727][ T35] usbhid 8-1:0.0: probe with driver usbhid failed with error -71 [ 518.759807][ T35] usb 8-1: USB disconnect, device number 5 [ 519.297167][T13941] __nla_validate_parse: 5 callbacks suppressed [ 519.297373][T13941] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2726'. [ 520.156321][T13949] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2719'. [ 520.166821][T13954] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2722'. [ 520.682668][T13969] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2727'. [ 520.686163][T13969] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2727'. [ 520.731573][T13973] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2730'. [ 520.937225][ T5241] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 521.087189][ T5241] usb 5-1: Using ep0 maxpacket: 32 [ 521.090968][ T5241] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 521.093848][ T5241] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 521.096450][ T5241] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 521.100006][ T5241] usb 5-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00 [ 521.102383][ T5241] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 521.106301][ T5241] usb 5-1: config 0 descriptor?? [ 521.293532][T13980] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2732'. [ 521.325778][T13969] netlink: 'syz.0.2727': attribute type 1 has an invalid length. [ 521.332854][ T5241] usbhid 5-1:0.0: can't add hid device: -71 [ 521.334499][ T5241] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 521.337792][ T5241] usb 5-1: USB disconnect, device number 13 [ 522.463623][T13987] bridge0: entered allmulticast mode [ 522.468384][T13990] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2742'. [ 522.569743][T13990] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2742'. [ 522.652596][T13999] bridge0: entered allmulticast mode [ 522.655865][T14001] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2738'. [ 522.817215][ T5417] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 522.977197][ T5417] usb 6-1: Using ep0 maxpacket: 32 [ 522.979829][ T5417] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 522.982820][ T5417] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 522.985411][ T5417] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 522.988797][ T5417] usb 6-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00 [ 522.991151][ T5417] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 522.994468][ T5417] usb 6-1: config 0 descriptor?? [ 523.220443][T13990] netlink: 'syz.1.2742': attribute type 1 has an invalid length. [ 523.226206][ T5417] usbhid 6-1:0.0: can't add hid device: -71 [ 523.228582][ T5417] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 523.231712][ T5417] usb 6-1: USB disconnect, device number 11 [ 524.111313][T14023] FAULT_INJECTION: forcing a failure. [ 524.111313][T14023] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 524.114750][T14023] CPU: 3 UID: 0 PID: 14023 Comm: syz.3.2747 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 524.117541][T14023] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 524.120320][T14023] Call Trace: [ 524.121205][T14023] [ 524.121989][T14023] dump_stack_lvl+0x16c/0x1f0 [ 524.123232][T14023] should_fail_ex+0x497/0x5b0 [ 524.124480][T14023] _copy_to_user+0x30/0xc0 [ 524.125652][T14023] simple_read_from_buffer+0xd0/0x160 [ 524.127061][T14023] proc_fail_nth_read+0x198/0x270 [ 524.128605][T14023] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 524.130071][T14023] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 524.131543][T14023] vfs_read+0x1ce/0xbd0 [ 524.132654][T14023] ? __fget_files+0x23a/0x3f0 [ 524.133902][T14023] ? fdget_pos+0x24c/0x360 [ 524.135075][T14023] ? __pfx_lock_release+0x10/0x10 [ 524.136407][T14023] ? trace_lock_acquire+0x14a/0x1d0 [ 524.137778][T14023] ? __pfx_vfs_read+0x10/0x10 [ 524.139021][T14023] ? __pfx___mutex_lock+0x10/0x10 [ 524.140360][T14023] ? __fget_files+0x244/0x3f0 [ 524.141603][T14023] ksys_read+0x12f/0x260 [ 524.142718][T14023] ? __pfx_ksys_read+0x10/0x10 [ 524.143986][T14023] __do_fast_syscall_32+0x73/0x120 [ 524.145330][T14023] do_fast_syscall_32+0x32/0x80 [ 524.146622][T14023] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 524.148316][T14023] RIP: 0023:0xf7f1f579 [ 524.149393][T14023] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 524.154389][T14023] RSP: 002b:00000000f56a65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 524.156557][T14023] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f56a6620 [ 524.158607][T14023] RDX: 000000000000000f RSI: 00000000f73abff4 RDI: 0000000000000000 [ 524.160666][T14023] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 524.162721][T14023] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 524.164784][T14023] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 524.166843][T14023] [ 524.223697][T14034] bridge0: entered allmulticast mode [ 524.975263][T14047] __nla_validate_parse: 3 callbacks suppressed [ 524.975274][T14047] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2755'. [ 525.154833][T14049] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2756'. [ 525.159364][T14049] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2756'. [ 525.507199][ T8] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 525.657156][ T8] usb 6-1: Using ep0 maxpacket: 32 [ 525.659705][ T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 525.662526][ T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 525.665060][ T8] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 525.669581][ T8] usb 6-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00 [ 525.671949][ T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 525.675118][ T8] usb 6-1: config 0 descriptor?? [ 525.890218][T14049] netlink: 'syz.1.2756': attribute type 1 has an invalid length. [ 525.895197][ T8] usbhid 6-1:0.0: can't add hid device: -71 [ 525.896824][ T8] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 525.901362][ T8] usb 6-1: USB disconnect, device number 12 [ 526.564914][T14094] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2767'. [ 527.151639][T14102] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2780'. [ 527.341821][T14105] bridge0: entered allmulticast mode [ 527.791760][T14120] netlink: 'syz.2.2778': attribute type 1 has an invalid length. [ 527.793895][T14120] netlink: 5 bytes leftover after parsing attributes in process `syz.2.2778'. [ 527.942458][T14128] netlink: 'syz.3.2782': attribute type 1 has an invalid length. [ 527.944670][T14128] netlink: 5 bytes leftover after parsing attributes in process `syz.3.2782'. [ 527.947053][T14128] FAULT_INJECTION: forcing a failure. [ 527.947053][T14128] name failslab, interval 1, probability 0, space 0, times 0 [ 527.950559][T14128] CPU: 2 UID: 0 PID: 14128 Comm: syz.3.2782 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 527.953390][T14128] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 527.956633][T14128] Call Trace: [ 527.957528][T14128] [ 527.958321][T14128] dump_stack_lvl+0x16c/0x1f0 [ 527.959583][T14128] should_fail_ex+0x497/0x5b0 [ 527.960856][T14128] ? fs_reclaim_acquire+0xae/0x150 [ 527.962264][T14128] should_failslab+0xc2/0x120 [ 527.963521][T14128] __kmalloc_node_track_caller_noprof+0xcf/0x440 [ 527.965208][T14128] ? __request_module+0x2e4/0x6c0 [ 527.966556][T14128] kstrdup+0x3c/0x80 [ 527.967602][T14128] __request_module+0x2e4/0x6c0 [ 527.968918][T14128] ? ctrl_getfamily+0x1ea/0x540 [ 527.970232][T14128] ? __pfx___request_module+0x10/0x10 [ 527.971686][T14128] ? find_held_lock+0x2d/0x110 [ 527.972982][T14128] ? __up_read+0x1fb/0x760 [ 527.974179][T14128] ? __pfx___up_read+0x10/0x10 [ 527.975455][T14128] ctrl_getfamily+0x1ea/0x540 [ 527.976722][T14128] ? __pfx_ctrl_getfamily+0x10/0x10 [ 527.978111][T14128] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 527.980066][T14128] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 527.982024][T14128] genl_family_rcv_msg_doit+0x202/0x2f0 [ 527.983491][T14128] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 527.985122][T14128] ? __radix_tree_lookup+0x21f/0x2c0 [ 527.986528][T14128] genl_rcv_msg+0x565/0x800 [ 527.987756][T14128] ? __pfx_genl_rcv_msg+0x10/0x10 [ 527.989107][T14128] ? __pfx_ctrl_getfamily+0x10/0x10 [ 527.990498][T14128] netlink_rcv_skb+0x165/0x410 [ 527.991794][T14128] ? __pfx_genl_rcv_msg+0x10/0x10 [ 527.993135][T14128] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 527.994539][T14128] ? down_read+0xc9/0x330 [ 527.995705][T14128] ? __pfx_down_read+0x10/0x10 [ 527.996983][T14128] ? netlink_deliver_tap+0x1ae/0xcf0 [ 527.998384][T14128] genl_rcv+0x28/0x40 [ 527.999450][T14128] netlink_unicast+0x53c/0x7f0 [ 528.000740][T14128] ? __pfx_netlink_unicast+0x10/0x10 [ 528.002142][T14128] ? __phys_addr_symbol+0x30/0x80 [ 528.003482][T14128] ? __check_object_size+0x488/0x710 [ 528.004928][T14128] netlink_sendmsg+0x8b8/0xd70 [ 528.006206][T14128] ? __pfx_netlink_sendmsg+0x10/0x10 [ 528.007620][T14128] ____sys_sendmsg+0x9ae/0xb40 [ 528.008902][T14128] ? __pfx_____sys_sendmsg+0x10/0x10 [ 528.010300][T14128] ? get_compat_msghdr+0x11b/0x170 [ 528.011684][T14128] ? __pfx___lock_acquire+0x10/0x10 [ 528.013073][T14128] ___sys_sendmsg+0x135/0x1e0 [ 528.014335][T14128] ? __pfx____sys_sendmsg+0x10/0x10 [ 528.015735][T14128] ? lock_acquire+0x2f/0xb0 [ 528.016957][T14128] ? __fget_files+0x40/0x3f0 [ 528.018196][T14128] ? fdget+0x176/0x210 [ 528.019290][T14128] __sys_sendmsg+0x117/0x1f0 [ 528.020531][T14128] ? __pfx___sys_sendmsg+0x10/0x10 [ 528.021890][T14128] ? __fget_files+0x244/0x3f0 [ 528.023147][T14128] __do_fast_syscall_32+0x73/0x120 [ 528.024515][T14128] do_fast_syscall_32+0x32/0x80 [ 528.025814][T14128] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 528.027490][T14128] RIP: 0023:0xf7f1f579 [ 528.028580][T14128] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 528.033631][T14128] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 528.035827][T14128] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000180 [ 528.037889][T14128] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 528.039976][T14128] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 528.042096][T14128] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 528.044193][T14128] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 528.046273][T14128] [ 528.126574][T14138] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2786'. [ 528.430946][T14157] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2790'. [ 529.569722][T14178] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 529.574232][T14178] binder: 14175:14178 ioctl c0306201 0 returned -14 [ 529.780031][T14194] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2801'. [ 529.804545][T14190] 9pnet_fd: Insufficient options for proto=fd [ 530.329795][T14218] __nla_validate_parse: 1 callbacks suppressed [ 530.329806][T14218] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2804'. [ 531.365760][T14239] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2810'. [ 531.478903][T14244] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2814'. [ 531.493392][T14244] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2814'. [ 531.935105][T14248] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2815'. [ 531.959551][T14250] FAULT_INJECTION: forcing a failure. [ 531.959551][T14250] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 531.963015][T14250] CPU: 3 UID: 0 PID: 14250 Comm: syz.2.2816 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 531.965796][T14250] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 531.968583][T14250] Call Trace: [ 531.969466][T14250] [ 531.970251][T14250] dump_stack_lvl+0x16c/0x1f0 [ 531.971512][T14250] should_fail_ex+0x497/0x5b0 [ 531.972766][T14250] save_fsave_header+0x17c/0x2e0 [ 531.974079][T14250] ? __pfx_save_fsave_header+0x10/0x10 [ 531.975519][T14250] ? copy_fpstate_to_sigframe+0x2c2/0xae0 [ 531.977019][T14250] ? __local_bh_enable_ip+0xa4/0x120 [ 531.978413][T14250] copy_fpstate_to_sigframe+0x76f/0xae0 [ 531.979881][T14250] ? __pfx_copy_fpstate_to_sigframe+0x10/0x10 [ 531.981486][T14250] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 531.982973][T14250] ? rcu_is_watching+0x12/0xc0 [ 531.984252][T14250] ? do_raw_spin_lock+0x12d/0x2c0 [ 531.985579][T14250] get_sigframe+0x4aa/0x9c0 [ 531.986787][T14250] ? __pfx_get_sigframe+0x10/0x10 [ 531.988125][T14250] ? _raw_spin_unlock_irq+0x29/0x50 [ 531.989495][T14250] ? siginfo_layout+0x177/0x290 [ 531.990784][T14250] ia32_setup_rt_frame+0xe4/0xb20 [ 531.992131][T14250] ? __pfx_ia32_setup_rt_frame+0x10/0x10 [ 531.993601][T14250] ? lock_acquire.part.0+0x11b/0x380 [ 531.994993][T14250] ? find_held_lock+0x2d/0x110 [ 531.996277][T14250] arch_do_signal_or_restart+0x47b/0x7e0 [ 531.997764][T14250] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 531.999392][T14250] syscall_exit_to_user_mode+0x150/0x2a0 [ 532.000885][T14250] __do_fast_syscall_32+0x80/0x120 [ 532.002240][T14250] do_fast_syscall_32+0x32/0x80 [ 532.003531][T14250] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 532.005195][T14250] RIP: 0023:0xf73ae579 [ 532.006276][T14250] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 532.011822][T14250] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000176 [ 532.013997][T14250] RAX: 0000000000000004 RBX: 0000000000000001 RCX: 0000000000000000 [ 532.016064][T14250] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 532.018149][T14250] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 532.020230][T14250] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 532.022297][T14250] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 532.024381][T14250] [ 532.475019][T14267] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2826'. [ 533.136371][T14272] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2829'. [ 533.136990][T14273] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2827'. [ 533.150611][T14272] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2829'. [ 533.165923][T14275] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 533.170161][T14275] binder: 14274:14275 ioctl c0306201 0 returned -14 [ 534.493266][T14297] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2836'. [ 535.070575][T14306] netlink: 'syz.0.2840': attribute type 1 has an invalid length. [ 535.215390][T14329] block device autoloading is deprecated and will be removed. [ 535.274705][T14329] overlayfs: failed to resolve './file0/file0': -2 [ 535.289259][T14327] md0: using deprecated bitmap file support [ 535.291945][T14327] md0: error: failed to get bitmap file [ 536.187140][ T35] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 536.277230][ T5241] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 536.348514][ T35] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 536.351361][ T35] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 536.353886][ T35] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 536.356228][ T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 536.371824][T14348] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 536.378701][ T35] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 536.430955][T14356] ICMPv6: Received fragmented ndisc packet. Carefully consider disabling suppress_frag_ndisc. [ 536.439023][ T5241] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 536.441893][ T5241] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 536.444433][ T5241] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 536.447510][ T5241] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 536.456485][T14351] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 536.466369][ T5241] usb 8-1: Quirk or no altset; falling back to MIDI 1.0 [ 536.512621][T14362] __nla_validate_parse: 1 callbacks suppressed [ 536.512631][T14362] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2859'. [ 536.723751][ T5541] usb 7-1: USB disconnect, device number 5 [ 536.757293][ T35] usb 6-1: new high-speed USB device number 13 using dummy_hcd [ 536.919219][ T35] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 536.922079][ T35] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 536.924610][ T35] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 536.926928][ T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 536.934084][T14362] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22 [ 536.937781][ T35] usb 6-1: Quirk or no altset; falling back to MIDI 1.0 [ 537.082759][ T5394] usb 8-1: USB disconnect, device number 6 [ 537.230930][ T8] usb 6-1: USB disconnect, device number 13 [ 537.314993][ T39] audit: type=1326 audit(1729796020.072:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14369 comm="syz.2.2864" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x0 [ 537.577165][ T5394] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 537.728464][ T5394] usb 5-1: config 0 has no interfaces? [ 537.729939][ T5394] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 537.732289][ T5394] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 537.735223][ T5394] usb 5-1: config 0 descriptor?? [ 538.133848][ T5356] Bluetooth: hci1: sending frame failed (-49) [ 538.136455][ T65] Bluetooth: hci1: Opcode 0x1003 failed: -49 [ 538.172853][T14389] capability: warning: `syz.2.2870' uses 32-bit capabilities (legacy support in use) [ 538.341849][T14396] IPVS: wrr: TCP 172.20.20.170:0 - no destination available [ 538.457253][ T5241] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 538.608819][ T5241] usb 7-1: config 0 has no interfaces? [ 538.610326][ T5241] usb 7-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 538.612733][ T5241] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 538.618619][ T5241] usb 7-1: config 0 descriptor?? [ 539.022008][T14400] FAULT_INJECTION: forcing a failure. [ 539.022008][T14400] name failslab, interval 1, probability 0, space 0, times 0 [ 539.025247][T14400] CPU: 2 UID: 0 PID: 14400 Comm: syz.2.2872 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 539.027414][T13740] Bluetooth: hci1: Frame reassembly failed (-84) [ 539.028009][T14400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 539.028018][T14400] Call Trace: [ 539.033605][T14400] [ 539.034387][T14400] dump_stack_lvl+0x16c/0x1f0 [ 539.035643][T14400] should_fail_ex+0x497/0x5b0 [ 539.036889][T14400] ? fs_reclaim_acquire+0xae/0x150 [ 539.038236][T14400] should_failslab+0xc2/0x120 [ 539.039476][T14400] __kmalloc_noprof+0xcb/0x410 [ 539.040743][T14400] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 539.042233][T14400] tomoyo_realpath_from_path+0xbf/0x710 [ 539.043685][T14400] ? tomoyo_path_number_perm+0x232/0x5b0 [ 539.045151][T14400] tomoyo_path_number_perm+0x245/0x5b0 [ 539.046574][T14400] ? tomoyo_path_number_perm+0x232/0x5b0 [ 539.048046][T14400] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 539.049622][T14400] ? trace_lock_acquire+0x14a/0x1d0 [ 539.050983][T14400] ? lock_acquire+0x2f/0xb0 [ 539.052216][T14400] ? __fget_files+0x40/0x3f0 [ 539.053422][T14400] ? __fget_files+0x244/0x3f0 [ 539.054648][T14400] security_file_ioctl_compat+0x9b/0x240 [ 539.056112][T14400] __do_compat_sys_ioctl+0x52/0x2b0 [ 539.057477][T14400] __do_fast_syscall_32+0x73/0x120 [ 539.058817][T14400] do_fast_syscall_32+0x32/0x80 [ 539.060099][T14400] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 539.061764][T14400] RIP: 0023:0xf73ae579 [ 539.062836][T14400] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 539.067818][T14400] RSP: 002b:00000000f565456c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 539.069975][T14400] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000005437 [ 539.072092][T14400] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 539.074151][T14400] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 539.076214][T14400] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 539.078323][T14400] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 539.080382][T14400] [ 539.087197][T14400] ERROR: Out of memory at tomoyo_realpath_from_path. [ 539.125470][T14407] FAULT_INJECTION: forcing a failure. [ 539.125470][T14407] name failslab, interval 1, probability 0, space 0, times 0 [ 539.128834][T14407] CPU: 2 UID: 0 PID: 14407 Comm: syz.1.2877 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 539.131603][T14407] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 539.134372][T14407] Call Trace: [ 539.135251][T14407] [ 539.136040][T14407] dump_stack_lvl+0x16c/0x1f0 [ 539.137282][T14407] should_fail_ex+0x497/0x5b0 [ 539.138533][T14407] ? fs_reclaim_acquire+0xae/0x150 [ 539.139888][T14407] should_failslab+0xc2/0x120 [ 539.141126][T14407] __kmalloc_noprof+0xcb/0x410 [ 539.142389][T14407] ? __pfx_ethnl_default_start+0x10/0x10 [ 539.143858][T14407] ethnl_default_start+0x15a/0x420 [ 539.145196][T14407] ? kasan_save_track+0x14/0x30 [ 539.146476][T14407] ? __pfx_ethnl_default_start+0x10/0x10 [ 539.147946][T14407] genl_start+0x5f4/0x950 [ 539.149091][T14407] __netlink_dump_start+0x615/0x980 [ 539.150464][T14407] genl_family_rcv_msg_dumpit+0x1e1/0x2e0 [ 539.150939][T14402] input: syz0 as /devices/virtual/input/input19 [ 539.152049][T14407] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 539.155301][T14407] ? __pfx_genl_get_cmd+0x10/0x10 [ 539.156639][T14407] ? __pfx_genl_start+0x10/0x10 [ 539.157916][T14407] ? __pfx_genl_dumpit+0x10/0x10 [ 539.159213][T14407] ? __pfx_genl_done+0x10/0x10 [ 539.160481][T14407] ? __radix_tree_lookup+0x21f/0x2c0 [ 539.161871][T14407] genl_rcv_msg+0x470/0x800 [ 539.163066][T14407] ? __pfx_genl_rcv_msg+0x10/0x10 [ 539.164395][T14407] ? __pfx_ethnl_default_start+0x10/0x10 [ 539.165856][T14407] ? __pfx_ethnl_default_dumpit+0x10/0x10 [ 539.167340][T14407] ? __pfx_ethnl_default_done+0x10/0x10 [ 539.168797][T14407] netlink_rcv_skb+0x165/0x410 [ 539.170054][T14407] ? __pfx_genl_rcv_msg+0x10/0x10 [ 539.171389][T14407] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 539.172777][T14407] ? down_read+0xc9/0x330 [ 539.173915][T14407] ? __pfx_down_read+0x10/0x10 [ 539.175172][T14407] ? netlink_deliver_tap+0x1ae/0xcf0 [ 539.176558][T14407] genl_rcv+0x28/0x40 [ 539.177609][T14407] netlink_unicast+0x53c/0x7f0 [ 539.178868][T14407] ? __pfx_netlink_unicast+0x10/0x10 [ 539.180255][T14407] ? __phys_addr_symbol+0x30/0x80 [ 539.181582][T14407] ? __check_object_size+0x488/0x710 [ 539.182963][T14407] netlink_sendmsg+0x8b8/0xd70 [ 539.184230][T14407] ? __pfx_netlink_sendmsg+0x10/0x10 [ 539.185611][T14407] ? lock_acquire+0x2f/0xb0 [ 539.186814][T14407] ____sys_sendmsg+0x9ae/0xb40 [ 539.188082][T14407] ? __pfx_____sys_sendmsg+0x10/0x10 [ 539.189464][T14407] ? get_compat_msghdr+0x11b/0x170 [ 539.190814][T14407] ? __pfx___lock_acquire+0x10/0x10 [ 539.192197][T14407] ___sys_sendmsg+0x135/0x1e0 [ 539.193438][T14407] ? __pfx____sys_sendmsg+0x10/0x10 [ 539.194811][T14407] ? lock_acquire+0x2f/0xb0 [ 539.196010][T14407] ? __fget_files+0x40/0x3f0 [ 539.197230][T14407] ? fdget+0x176/0x210 [ 539.198308][T14407] __sys_sendmsg+0x117/0x1f0 [ 539.199533][T14407] ? __pfx___sys_sendmsg+0x10/0x10 [ 539.200864][T14407] ? __fget_files+0x244/0x3f0 [ 539.202104][T14407] __do_fast_syscall_32+0x73/0x120 [ 539.203462][T14407] do_fast_syscall_32+0x32/0x80 [ 539.204871][T14407] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 539.206553][T14407] RIP: 0023:0xf7fc7579 [ 539.207644][T14407] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 539.212682][T14407] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 539.214854][T14407] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200005c0 [ 539.216931][T14407] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 539.218996][T14407] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 539.221076][T14407] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 539.223143][T14407] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 539.225218][T14407] [ 540.447594][ T5394] usb 5-1: USB disconnect, device number 14 [ 540.491853][T14423] openvswitch: netlink: Actions may not be safe on all matching packets [ 540.589967][T14428] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2885'. [ 540.592401][T14428] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2885'. [ 541.057233][ T5356] Bluetooth: hci1: command 0x1003 tx timeout [ 541.057258][ T65] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 542.114151][ T35] usb 7-1: USB disconnect, device number 6 [ 542.341021][T14475] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2898'. [ 542.343556][T14475] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2898'. [ 542.597207][T14453] Process accounting resumed [ 542.642315][T14479] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2900'. [ 542.669684][T14481] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2901'. [ 542.871874][T14483] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2902'. [ 542.977221][T14488] fuse: Unknown parameter 'group_id00000000000000000000' [ 543.220794][T14503] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2909'. [ 543.230525][T14504] fuse: Unknown parameter 'group_id00000000000000000000' [ 543.371201][T14514] IPVS: set_ctl: invalid protocol: 51 224.0.0.1:0 [ 543.380932][T14514] EXT4-fs (sda1): shut down requested (2) [ 543.383477][T14514] Aborting journal on device sda1-8. [ 543.474253][T14521] bond0: (slave bond_slave_0): Releasing backup interface [ 543.478715][T14521] bond0: (slave bond_slave_1): Releasing backup interface [ 543.491011][T14521] team0: Port device team_slave_0 removed [ 543.498194][T14521] team0: Port device team_slave_1 removed [ 543.500036][T14521] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 543.502168][T14521] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 543.516673][T14521] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 543.519611][T14521] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 543.745920][T14525] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2913'. [ 543.749981][T14525] netlink: 'syz.3.2913': attribute type 13 has an invalid length. [ 543.752092][T14525] netlink: 'syz.3.2913': attribute type 14 has an invalid length. [ 543.762285][T14525] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 543.764705][T14525] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 543.766931][T14525] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 543.769340][T14525] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 543.772291][T14525] vxlan0: entered promiscuous mode [ 544.080260][T14534] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2916'. [ 544.171600][T14537] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2917'. [ 544.174142][T14537] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2917'. [ 544.552802][T14539] bond0: (slave bond_slave_0): Releasing backup interface [ 544.556725][T14539] bond0: (slave bond_slave_1): Releasing backup interface [ 544.573289][T14539] team0: Port device team_slave_0 removed [ 544.582075][T14539] team0: Port device team_slave_1 removed [ 544.584481][T14539] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 544.586472][T14539] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 544.589205][T14539] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 544.591317][T14539] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 545.083246][T14556] IPVS: set_ctl: invalid protocol: 51 224.0.0.1:0 [ 545.212973][T14572] FAULT_INJECTION: forcing a failure. [ 545.212973][T14572] name failslab, interval 1, probability 0, space 0, times 0 [ 545.216605][T14572] CPU: 3 UID: 0 PID: 14572 Comm: syz.3.2928 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 545.219341][T14572] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 545.222150][T14572] Call Trace: [ 545.223028][T14572] [ 545.223815][T14572] dump_stack_lvl+0x16c/0x1f0 [ 545.225054][T14572] should_fail_ex+0x497/0x5b0 [ 545.226298][T14572] ? fs_reclaim_acquire+0xae/0x150 [ 545.227646][T14572] should_failslab+0xc2/0x120 [ 545.228877][T14572] __kmalloc_cache_noprof+0x6b/0x310 [ 545.230569][T14572] ? vhost_iotlb_alloc+0x47/0x1d0 [ 545.232034][T14572] vhost_iotlb_alloc+0x47/0x1d0 [ 545.233286][T14572] vhost_init_device_iotlb+0x2a/0x290 [ 545.234693][T14572] vhost_net_ioctl+0xeac/0x16e0 [ 545.235977][T14572] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 545.237357][T14572] ? trace_lock_acquire+0x14a/0x1d0 [ 545.238723][T14572] ? __fget_files+0x244/0x3f0 [ 545.239971][T14572] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 545.241363][T14572] compat_ptr_ioctl+0x6b/0xa0 [ 545.242599][T14572] ? __pfx_compat_ptr_ioctl+0x10/0x10 [ 545.244018][T14572] __do_compat_sys_ioctl+0x259/0x2b0 [ 545.245403][T14572] __do_fast_syscall_32+0x73/0x120 [ 545.246743][T14572] do_fast_syscall_32+0x32/0x80 [ 545.248030][T14572] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 545.249680][T14572] RIP: 0023:0xf7f1f579 [ 545.250786][T14572] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 545.255739][T14572] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 545.257893][T14572] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000004008af00 [ 545.259947][T14572] RDX: 00000000200001c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 545.261986][T14572] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 545.264037][T14572] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 545.266074][T14572] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 545.268128][T14572] [ 545.855625][T14586] IPVS: set_ctl: invalid protocol: 51 224.0.0.1:0 [ 546.417184][ T35] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 546.577130][ T35] usb 8-1: Using ep0 maxpacket: 16 [ 546.580130][ T35] usb 8-1: config 0 has no interfaces? [ 546.581585][ T35] usb 8-1: New USB device found, idVendor=056a, idProduct=0022, bcdDevice= 0.00 [ 546.584024][ T35] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 546.587352][ T35] usb 8-1: config 0 descriptor?? [ 546.793704][T14590] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 546.800129][ T35] usb 8-1: USB disconnect, device number 7 [ 548.204915][T14634] FAULT_INJECTION: forcing a failure. [ 548.204915][T14634] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 548.208860][T14634] CPU: 2 UID: 0 PID: 14634 Comm: syz.2.2949 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 548.211672][T14634] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 548.214445][T14634] Call Trace: [ 548.215325][T14634] [ 548.216112][T14634] dump_stack_lvl+0x16c/0x1f0 [ 548.217357][T14634] should_fail_ex+0x497/0x5b0 [ 548.218602][T14634] _copy_from_iter+0x29b/0x13e0 [ 548.219882][T14634] ? _copy_from_iter+0x159/0x13e0 [ 548.221208][T14634] ? __pfx__copy_from_iter+0x10/0x10 [ 548.222590][T14634] ? __pfx__copy_from_iter+0x10/0x10 [ 548.223997][T14634] ? __virt_addr_valid+0x1a4/0x590 [ 548.225345][T14634] copy_page_from_iter+0xa5/0x120 [ 548.226663][T14634] skb_copy_datagram_from_iter+0x29b/0x710 [ 548.228207][T14634] tun_get_user+0x1964/0x3d70 [ 548.229460][T14634] ? __pfx_tun_get_user+0x10/0x10 [ 548.230788][T14634] ? find_held_lock+0x2d/0x110 [ 548.232068][T14634] ? __pfx_lock_release+0x10/0x10 [ 548.233404][T14634] tun_chr_write_iter+0xdc/0x210 [ 548.234712][T14634] vfs_write+0x6b5/0x1140 [ 548.235410][T14635] __nla_validate_parse: 6 callbacks suppressed [ 548.235441][T14635] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2947'. [ 548.235883][T14634] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 548.237616][T14635] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2947'. [ 548.239822][T14634] ? trace_lock_acquire+0x14a/0x1d0 [ 548.244954][T14634] ? __pfx_vfs_write+0x10/0x10 [ 548.246222][T14634] ? __fget_files+0x40/0x3f0 [ 548.247462][T14634] ksys_write+0x12f/0x260 [ 548.248607][T14634] ? __pfx_ksys_write+0x10/0x10 [ 548.249892][T14634] __do_fast_syscall_32+0x73/0x120 [ 548.251272][T14634] do_fast_syscall_32+0x32/0x80 [ 548.252562][T14634] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 548.254224][T14634] RIP: 0023:0xf73ae579 [ 548.255302][T14634] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 548.260306][T14634] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 548.262484][T14634] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000240 [ 548.264555][T14634] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000000 [ 548.266629][T14634] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 548.268697][T14634] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 548.270749][T14634] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 548.272829][T14634] [ 548.272872][T14636] IPVS: set_ctl: invalid protocol: 51 224.0.0.1:0 [ 548.379803][T14643] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2951'. [ 548.391155][T14645] FAULT_INJECTION: forcing a failure. [ 548.391155][T14645] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 548.394530][T14645] CPU: 1 UID: 0 PID: 14645 Comm: syz.2.2952 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 548.397295][T14645] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 548.400065][T14645] Call Trace: [ 548.400938][T14645] [ 548.401714][T14645] dump_stack_lvl+0x16c/0x1f0 [ 548.402945][T14645] should_fail_ex+0x497/0x5b0 [ 548.404184][T14645] _copy_to_user+0x30/0xc0 [ 548.405352][T14645] bpf_test_finish.isra.0+0x55f/0x680 [ 548.406758][T14645] ? __pfx_bpf_test_finish.isra.0+0x10/0x10 [ 548.408306][T14645] ? krealloc_noprof+0xff/0x130 [ 548.409586][T14645] bpf_prog_test_run_skb+0x11bb/0x2140 [ 548.411054][T14645] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 548.412581][T14645] ? fput+0x30/0x390 [ 548.413614][T14645] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 548.415122][T14645] __sys_bpf+0x1921/0x5780 [ 548.416295][T14645] ? ksys_write+0x21e/0x260 [ 548.417480][T14645] ? __pfx___sys_bpf+0x10/0x10 [ 548.418730][T14645] ? vfs_write+0x14d/0x1140 [ 548.419919][T14645] ? __mutex_unlock_slowpath+0x164/0x650 [ 548.421490][T14645] ? fput+0x30/0x390 [ 548.422526][T14645] ? ksys_write+0x1ad/0x260 [ 548.423725][T14645] ? __pfx_ksys_write+0x10/0x10 [ 548.424991][T14645] __ia32_sys_bpf+0x76/0xe0 [ 548.426177][T14645] __do_fast_syscall_32+0x73/0x120 [ 548.427519][T14645] do_fast_syscall_32+0x32/0x80 [ 548.428790][T14645] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 548.430477][T14645] RIP: 0023:0xf73ae579 [ 548.431565][T14645] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 548.436508][T14645] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 548.438655][T14645] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000200002c0 [ 548.440690][T14645] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000 [ 548.442729][T14645] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 548.444775][T14645] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 548.446816][T14645] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 548.449061][T14645] [ 548.544114][T14655] Can't find ip_set type hash:n [ 548.811214][T14665] FAULT_INJECTION: forcing a failure. [ 548.811214][T14665] name failslab, interval 1, probability 0, space 0, times 0 [ 548.814483][T14665] CPU: 3 UID: 0 PID: 14665 Comm: syz.0.2961 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 548.817268][T14665] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 548.820068][T14665] Call Trace: [ 548.820953][T14665] [ 548.821745][T14665] dump_stack_lvl+0x16c/0x1f0 [ 548.823002][T14665] should_fail_ex+0x497/0x5b0 [ 548.824259][T14665] ? __pfx_lock_release+0x10/0x10 [ 548.825590][T14665] should_failslab+0xc2/0x120 [ 548.826840][T14665] __kmalloc_cache_noprof+0x6b/0x310 [ 548.828345][T14665] ? __hw_addr_add_ex+0x310/0x700 [ 548.829692][T14665] __hw_addr_add_ex+0x310/0x700 [ 548.830983][T14665] dev_addr_init+0x13b/0x230 [ 548.832237][T14665] ? __pfx_dev_addr_init+0x10/0x10 [ 548.833599][T14665] alloc_netdev_mqs+0x32f/0x12a0 [ 548.834925][T14665] ? __pfx_ieee802154_if_setup+0x10/0x10 [ 548.836425][T14665] ieee802154_if_add+0xd9/0x1150 [ 548.837749][T14665] ? __pfx_ieee802154_if_add+0x10/0x10 [ 548.839198][T14665] ? __build_skb_around+0x278/0x3b0 [ 548.840594][T14665] ? __pfx___mutex_lock+0x10/0x10 [ 548.841943][T14665] ? skb_put+0x138/0x1b0 [ 548.843072][T14665] ? genlmsg_put+0x258/0x2d0 [ 548.844320][T14665] ieee802154_add_iface_deprecated+0x42/0x60 [ 548.845903][T14665] ieee802154_add_iface+0x472/0xa20 [ 548.847283][T14665] ? __pfx_ieee802154_add_iface+0x10/0x10 [ 548.848796][T14665] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 548.850737][T14665] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 548.852695][T14665] genl_family_rcv_msg_doit+0x202/0x2f0 [ 548.854160][T14665] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 548.855776][T14665] ? bpf_lsm_capable+0x9/0x10 [ 548.857023][T14665] ? security_capable+0x7e/0x260 [ 548.858349][T14665] genl_rcv_msg+0x565/0x800 [ 548.859567][T14665] ? __pfx_genl_rcv_msg+0x10/0x10 [ 548.860901][T14665] ? __pfx_ieee802154_add_iface+0x10/0x10 [ 548.862444][T14665] ? __pfx___lock_acquire+0x10/0x10 [ 548.863838][T14665] netlink_rcv_skb+0x165/0x410 [ 548.865111][T14665] ? __pfx_genl_rcv_msg+0x10/0x10 [ 548.866450][T14665] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 548.867904][T14665] ? down_read+0xc9/0x330 [ 548.869055][T14665] ? __pfx_down_read+0x10/0x10 [ 548.870319][T14665] ? netlink_deliver_tap+0x1ae/0xcf0 [ 548.871733][T14665] genl_rcv+0x28/0x40 [ 548.872805][T14665] netlink_unicast+0x53c/0x7f0 [ 548.874076][T14665] ? __pfx_netlink_unicast+0x10/0x10 [ 548.875479][T14665] ? __phys_addr_symbol+0x30/0x80 [ 548.876807][T14665] ? __check_object_size+0x488/0x710 [ 548.878209][T14665] netlink_sendmsg+0x8b8/0xd70 [ 548.879484][T14665] ? __pfx_netlink_sendmsg+0x10/0x10 [ 548.880879][T14665] ? lock_acquire+0x2f/0xb0 [ 548.882096][T14665] ____sys_sendmsg+0x9ae/0xb40 [ 548.883371][T14665] ? __pfx_____sys_sendmsg+0x10/0x10 [ 548.884771][T14665] ? get_compat_msghdr+0x11b/0x170 [ 548.886127][T14665] ? __pfx___lock_acquire+0x10/0x10 [ 548.887516][T14665] ___sys_sendmsg+0x135/0x1e0 [ 548.888770][T14665] ? __pfx____sys_sendmsg+0x10/0x10 [ 548.890150][T14665] ? lock_acquire+0x2f/0xb0 [ 548.891341][T14665] ? __fget_files+0x40/0x3f0 [ 548.892584][T14665] ? fdget+0x176/0x210 [ 548.893674][T14665] __sys_sendmsg+0x117/0x1f0 [ 548.894898][T14665] ? __pfx___sys_sendmsg+0x10/0x10 [ 548.896261][T14665] ? __fget_files+0x244/0x3f0 [ 548.897520][T14665] __do_fast_syscall_32+0x73/0x120 [ 548.898880][T14665] do_fast_syscall_32+0x32/0x80 [ 548.900183][T14665] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 548.901866][T14665] RIP: 0023:0xf7f0f579 [ 548.902950][T14665] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 548.907972][T14665] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 548.910158][T14665] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020001f40 [ 548.912245][T14665] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 548.914321][T14665] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 548.916387][T14665] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 548.918436][T14665] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 548.920525][T14665] [ 549.307036][T14690] FAULT_INJECTION: forcing a failure. [ 549.307036][T14690] name failslab, interval 1, probability 0, space 0, times 0 [ 549.310990][T14690] CPU: 3 UID: 0 PID: 14690 Comm: syz.2.2971 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 549.313793][T14690] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 549.316591][T14690] Call Trace: [ 549.317494][T14690] [ 549.318277][T14690] dump_stack_lvl+0x16c/0x1f0 [ 549.319527][T14690] should_fail_ex+0x497/0x5b0 [ 549.320799][T14690] should_failslab+0xc2/0x120 [ 549.322041][T14690] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 549.323463][T14690] ? skb_clone+0x190/0x3f0 [ 549.324643][T14690] skb_clone+0x190/0x3f0 [ 549.325760][T14690] netlink_deliver_tap+0xb26/0xcf0 [ 549.327105][T14690] netlink_dump+0xb2d/0xcc0 [ 549.328310][T14690] ? __pfx_netlink_dump+0x10/0x10 [ 549.329637][T14690] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 549.331361][T14690] ? nf_tables_dump_sets_start+0x3e/0xa0 [ 549.332834][T14690] ? kmemdup_noprof+0x49/0x60 [ 549.334072][T14690] __netlink_dump_start+0x6d9/0x980 [ 549.335447][T14690] ? nft_netlink_dump_start_rcu+0x63/0x1f0 [ 549.336972][T14690] nft_netlink_dump_start_rcu+0x81/0x1f0 [ 549.338443][T14690] nf_tables_getset+0x79f/0x960 [ 549.339737][T14690] ? __pfx_nf_tables_getset+0x10/0x10 [ 549.341140][T14690] ? __pfx_nf_tables_dump_sets_start+0x10/0x10 [ 549.342753][T14690] ? __pfx_nf_tables_dump_sets+0x10/0x10 [ 549.344228][T14690] ? __pfx_nf_tables_dump_sets_done+0x10/0x10 [ 549.345823][T14690] ? net_generic+0xea/0x2a0 [ 549.347019][T14690] ? __pfx_lock_release+0x10/0x10 [ 549.348351][T14690] ? trace_lock_acquire+0x14a/0x1d0 [ 549.349711][T14690] ? __nla_parse+0x40/0x60 [ 549.350883][T14690] ? __pfx_nf_tables_getset+0x10/0x10 [ 549.352298][T14690] nfnetlink_rcv_msg+0x560/0x11e0 [ 549.353620][T14690] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 549.355045][T14690] ? find_held_lock+0x2d/0x110 [ 549.356325][T14690] netlink_rcv_skb+0x165/0x410 [ 549.357621][T14690] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 549.359043][T14690] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 549.360432][T14690] ? __pfx_aa_get_newest_label+0x10/0x10 [ 549.361904][T14690] ? bpf_lsm_capable+0x9/0x10 [ 549.363138][T14690] ? security_capable+0x7e/0x260 [ 549.364447][T14690] ? ns_capable+0xd7/0x110 [ 549.365618][T14690] nfnetlink_rcv+0x1b4/0x430 [ 549.366826][T14690] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 549.368167][T14690] ? netlink_deliver_tap+0x1ae/0xcf0 [ 549.369544][T14690] netlink_unicast+0x53c/0x7f0 [ 549.370976][T14690] ? __pfx_netlink_unicast+0x10/0x10 [ 549.372384][T14690] ? __phys_addr_symbol+0x30/0x80 [ 549.373697][T14690] ? __check_object_size+0x488/0x710 [ 549.375076][T14690] netlink_sendmsg+0x8b8/0xd70 [ 549.376342][T14690] ? __pfx_netlink_sendmsg+0x10/0x10 [ 549.377718][T14690] ? lock_acquire+0x2f/0xb0 [ 549.378921][T14690] ____sys_sendmsg+0x9ae/0xb40 [ 549.380224][T14690] ? __pfx_____sys_sendmsg+0x10/0x10 [ 549.381600][T14690] ? get_compat_msghdr+0x11b/0x170 [ 549.382936][T14690] ? __pfx___lock_acquire+0x10/0x10 [ 549.384305][T14690] ___sys_sendmsg+0x135/0x1e0 [ 549.385536][T14690] ? __pfx____sys_sendmsg+0x10/0x10 [ 549.386894][T14690] ? lock_acquire+0x2f/0xb0 [ 549.388076][T14690] ? __fget_files+0x40/0x3f0 [ 549.389291][T14690] ? fdget+0x176/0x210 [ 549.390431][T14690] __sys_sendmsg+0x117/0x1f0 [ 549.391663][T14690] ? __pfx___sys_sendmsg+0x10/0x10 [ 549.392989][T14690] ? __fget_files+0x244/0x3f0 [ 549.394225][T14690] __do_fast_syscall_32+0x73/0x120 [ 549.395563][T14690] do_fast_syscall_32+0x32/0x80 [ 549.396839][T14690] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 549.398475][T14690] RIP: 0023:0xf73ae579 [ 549.399546][T14690] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 549.404475][T14690] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 549.406618][T14690] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000940 [ 549.408656][T14690] RDX: 0000000020000800 RSI: 0000000000000000 RDI: 0000000000000000 [ 549.410722][T14690] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 549.412774][T14690] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 549.414800][T14690] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 549.416841][T14690] [ 550.437308][T14719] Can't find ip_set type hash:n [ 550.756226][T14741] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2986'. [ 550.941019][T14748] FAULT_INJECTION: forcing a failure. [ 550.941019][T14748] name failslab, interval 1, probability 0, space 0, times 0 [ 550.944719][T14748] CPU: 2 UID: 0 PID: 14748 Comm: syz.1.2989 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 550.947526][T14748] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 550.950302][T14748] Call Trace: [ 550.951199][T14748] [ 550.951986][T14748] dump_stack_lvl+0x16c/0x1f0 [ 550.953241][T14748] should_fail_ex+0x497/0x5b0 [ 550.954490][T14748] should_failslab+0xc2/0x120 [ 550.955739][T14748] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 550.957145][T14748] ? skb_clone+0x190/0x3f0 [ 550.958320][T14748] skb_clone+0x190/0x3f0 [ 550.959442][T14748] netlink_deliver_tap+0xb26/0xcf0 [ 550.960786][T14748] netlink_unicast+0x6b4/0x7f0 [ 550.962048][T14748] ? __pfx_netlink_unicast+0x10/0x10 [ 550.963433][T14748] ? genl_rcv_msg+0x4bd/0x800 [ 550.964672][T14748] netlink_ack+0x6a5/0xb20 [ 550.965848][T14748] netlink_rcv_skb+0x327/0x410 [ 550.967104][T14748] ? __pfx_genl_rcv_msg+0x10/0x10 [ 550.968434][T14748] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 550.969817][T14748] ? down_read+0xc9/0x330 [ 550.970964][T14748] ? __pfx_down_read+0x10/0x10 [ 550.972250][T14748] ? netlink_deliver_tap+0x1ae/0xcf0 [ 550.973649][T14748] genl_rcv+0x28/0x40 [ 550.974707][T14748] netlink_unicast+0x53c/0x7f0 [ 550.975977][T14748] ? __pfx_netlink_unicast+0x10/0x10 [ 550.977366][T14748] ? __phys_addr_symbol+0x30/0x80 [ 550.978696][T14748] ? __check_object_size+0x488/0x710 [ 550.980096][T14748] netlink_sendmsg+0x8b8/0xd70 [ 550.981371][T14748] ? __pfx_netlink_sendmsg+0x10/0x10 [ 550.982756][T14748] ? lock_acquire+0x2f/0xb0 [ 550.983974][T14748] ____sys_sendmsg+0x9ae/0xb40 [ 550.985242][T14748] ? __pfx_____sys_sendmsg+0x10/0x10 [ 550.986631][T14748] ? get_compat_msghdr+0x11b/0x170 [ 550.987988][T14748] ? __pfx___lock_acquire+0x10/0x10 [ 550.989357][T14748] ___sys_sendmsg+0x135/0x1e0 [ 550.990604][T14748] ? __pfx____sys_sendmsg+0x10/0x10 [ 550.991997][T14748] ? lock_acquire+0x2f/0xb0 [ 550.993195][T14748] ? __fget_files+0x40/0x3f0 [ 550.994421][T14748] ? fdget+0x176/0x210 [ 550.995506][T14748] __sys_sendmsg+0x117/0x1f0 [ 550.996726][T14748] ? __pfx___sys_sendmsg+0x10/0x10 [ 550.998073][T14748] ? __fget_files+0x244/0x3f0 [ 550.999328][T14748] __do_fast_syscall_32+0x73/0x120 [ 551.000695][T14748] do_fast_syscall_32+0x32/0x80 [ 551.002037][T14748] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 551.003694][T14748] RIP: 0023:0xf7fc7579 [ 551.004760][T14748] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 551.009736][T14748] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 551.011903][T14748] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200001c0 [ 551.013934][T14748] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 551.015979][T14748] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 551.018019][T14748] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 551.020066][T14748] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 551.022102][T14748] [ 551.241355][T14755] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2992'. [ 551.992462][T14759] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2994'. [ 551.995236][T14765] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3001'. [ 551.995298][T14759] SET target dimension over the limit! [ 552.016088][T14767] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2996'. [ 552.924137][T14793] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3006'. [ 553.057949][T14808] tmpfs: Unknown parameter 'mpol)¸' [ 553.128945][T14813] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3013'. [ 553.297747][T14805] Can't find ip_set type hash:n [ 553.924305][T14827] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3016'. [ 553.926722][T14827] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3016'. [ 553.981798][T14829] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3017'. [ 554.047973][T14832] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3026'. [ 554.670470][T14847] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3022'. [ 554.742946][T14851] 9pnet_fd: Insufficient options for proto=fd [ 554.834562][T14854] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3033'. [ 554.838598][T14854] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3033'. [ 555.261460][T14861] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3036'. [ 555.312860][T14862] Can't find ip_set type hash:n [ 555.640784][T14866] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3028'. [ 556.310374][T14894] netlink: 60 bytes leftover after parsing attributes in process `syz.2.3038'. [ 557.197744][T14917] Can't find ip_set type hash:n [ 557.367175][ T5241] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 557.517153][ T5241] usb 7-1: Using ep0 maxpacket: 8 [ 557.520619][ T5241] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 557.522572][ T5241] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 557.525446][ T5241] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 557.528535][ T5241] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 557.531378][ T5241] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 557.534939][ T5241] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 557.536877][ T5241] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 557.539821][ T5241] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 557.542828][ T5241] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 557.545639][ T5241] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 557.549321][ T5241] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 557.551269][ T5241] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 557.554134][ T5241] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 557.557257][ T5241] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 557.560080][ T5241] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 557.564981][ T5241] usb 7-1: string descriptor 0 read error: -22 [ 557.566614][ T5241] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 557.568992][ T5241] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 557.576528][ T5241] adutux 7-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 559.511222][T14959] FAULT_INJECTION: forcing a failure. [ 559.511222][T14959] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 559.514674][T14959] CPU: 1 UID: 0 PID: 14959 Comm: syz.0.3058 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 559.517518][T14959] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 559.520301][T14959] Call Trace: [ 559.521199][T14959] [ 559.521983][T14959] dump_stack_lvl+0x16c/0x1f0 [ 559.523465][T14959] should_fail_ex+0x497/0x5b0 [ 559.524727][T14959] _copy_to_user+0x30/0xc0 [ 559.525925][T14959] simple_read_from_buffer+0xd0/0x160 [ 559.527362][T14959] proc_fail_nth_read+0x198/0x270 [ 559.528701][T14959] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 559.530137][T14959] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 559.531616][T14959] vfs_read+0x1ce/0xbd0 [ 559.532721][T14959] ? __fget_files+0x23a/0x3f0 [ 559.533960][T14959] ? fdget_pos+0x24c/0x360 [ 559.535139][T14959] ? __pfx_lock_release+0x10/0x10 [ 559.536473][T14959] ? trace_lock_acquire+0x14a/0x1d0 [ 559.537840][T14959] ? __pfx_vfs_read+0x10/0x10 [ 559.539075][T14959] ? __pfx___mutex_lock+0x10/0x10 [ 559.540432][T14959] ? __fget_files+0x244/0x3f0 [ 559.541670][T14959] ksys_read+0x12f/0x260 [ 559.542796][T14959] ? __pfx_ksys_read+0x10/0x10 [ 559.544066][T14959] __do_fast_syscall_32+0x73/0x120 [ 559.545424][T14959] do_fast_syscall_32+0x32/0x80 [ 559.546702][T14959] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 559.548532][T14959] RIP: 0023:0xf7f0f579 [ 559.549649][T14959] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 559.554661][T14959] RSP: 002b:00000000f56965a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 559.556846][T14959] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5696620 [ 559.558924][T14959] RDX: 000000000000000f RSI: 00000000f739bff4 RDI: 0000000000000000 [ 559.560993][T14959] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 559.563056][T14959] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 559.565142][T14959] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 559.567219][T14959] [ 559.615441][T14963] __nla_validate_parse: 6 callbacks suppressed [ 559.615452][T14963] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3060'. [ 559.832277][T14982] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3067'. [ 559.834721][T14982] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3067'. [ 560.625953][T14986] FAULT_INJECTION: forcing a failure. [ 560.625953][T14986] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 560.629567][T14986] CPU: 2 UID: 0 PID: 14986 Comm: syz.3.3070 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 560.632009][T14989] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3071'. [ 560.632348][T14986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 560.637456][T14986] Call Trace: [ 560.638337][T14986] [ 560.639125][T14986] dump_stack_lvl+0x16c/0x1f0 [ 560.640373][T14986] should_fail_ex+0x497/0x5b0 [ 560.641621][T14986] _copy_from_user+0x30/0xf0 [ 560.642837][T14986] get_compat_msghdr+0xa8/0x170 [ 560.644133][T14986] ? __pfx_get_compat_msghdr+0x10/0x10 [ 560.645558][T14986] ? __pfx___lock_acquire+0x10/0x10 [ 560.646931][T14986] ___sys_sendmsg+0x1b0/0x1e0 [ 560.648182][T14986] ? __pfx____sys_sendmsg+0x10/0x10 [ 560.649554][T14986] ? lock_acquire+0x2f/0xb0 [ 560.650760][T14986] ? __fget_files+0x40/0x3f0 [ 560.651996][T14986] ? fdget+0x176/0x210 [ 560.653071][T14986] __sys_sendmsg+0x117/0x1f0 [ 560.654289][T14986] ? __pfx___sys_sendmsg+0x10/0x10 [ 560.655635][T14986] ? __fget_files+0x244/0x3f0 [ 560.656880][T14986] __do_fast_syscall_32+0x73/0x120 [ 560.658460][T14986] do_fast_syscall_32+0x32/0x80 [ 560.659734][T14986] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 560.661401][T14986] RIP: 0023:0xf7f1f579 [ 560.662473][T14986] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 560.667465][T14986] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 560.669618][T14986] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000300 [ 560.671690][T14986] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 0000000000000000 [ 560.673740][T14986] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 560.675824][T14986] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 560.677879][T14986] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 560.679947][T14986] [ 560.962873][T15008] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3077'. [ 560.965308][T15008] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3077'. [ 562.040767][T15020] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3081'. [ 562.178848][ T1374] ieee802154 phy0 wpan0: encryption failed: -22 [ 562.180427][ T5241] usb 7-1: USB disconnect, device number 7 [ 562.180519][ T1374] ieee802154 phy1 wpan1: encryption failed: -22 [ 562.345583][T15025] FAULT_INJECTION: forcing a failure. [ 562.345583][T15025] name failslab, interval 1, probability 0, space 0, times 0 [ 562.348983][T15025] CPU: 3 UID: 0 PID: 15025 Comm: syz.2.3083 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 562.351815][T15025] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 562.354613][T15025] Call Trace: [ 562.355521][T15025] [ 562.356324][T15025] dump_stack_lvl+0x16c/0x1f0 [ 562.357580][T15025] should_fail_ex+0x497/0x5b0 [ 562.358832][T15025] ? fs_reclaim_acquire+0xae/0x150 [ 562.360206][T15025] should_failslab+0xc2/0x120 [ 562.361465][T15025] __kmalloc_noprof+0xcb/0x410 [ 562.362746][T15025] ? __pfx_ethnl_default_start+0x10/0x10 [ 562.364237][T15025] ethnl_default_start+0x15a/0x420 [ 562.365591][T15025] ? kasan_save_track+0x14/0x30 [ 562.366890][T15025] ? __pfx_ethnl_default_start+0x10/0x10 [ 562.368387][T15025] genl_start+0x5f4/0x950 [ 562.369841][T15025] __netlink_dump_start+0x615/0x980 [ 562.371242][T15025] genl_family_rcv_msg_dumpit+0x1e1/0x2e0 [ 562.372765][T15025] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 562.374444][T15025] ? __pfx_genl_start+0x10/0x10 [ 562.375748][T15025] ? __pfx_genl_dumpit+0x10/0x10 [ 562.377071][T15025] ? __pfx_genl_done+0x10/0x10 [ 562.378500][T15025] ? bpf_lsm_capable+0x9/0x10 [ 562.379778][T15025] ? security_capable+0x7e/0x260 [ 562.381110][T15025] ? ns_capable+0xd7/0x110 [ 562.382304][T15025] genl_rcv_msg+0x470/0x800 [ 562.383532][T15025] ? __pfx_genl_rcv_msg+0x10/0x10 [ 562.384872][T15025] ? __pfx_ethnl_default_start+0x10/0x10 [ 562.386353][T15025] ? __pfx_ethnl_default_dumpit+0x10/0x10 [ 562.387860][T15025] ? __pfx_ethnl_default_done+0x10/0x10 [ 562.389330][T15025] netlink_rcv_skb+0x165/0x410 [ 562.390608][T15025] ? __pfx_genl_rcv_msg+0x10/0x10 [ 562.391971][T15025] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 562.393390][T15025] ? down_read+0xc9/0x330 [ 562.394545][T15025] ? __pfx_down_read+0x10/0x10 [ 562.395830][T15025] ? netlink_deliver_tap+0x1ae/0xcf0 [ 562.397241][T15025] genl_rcv+0x28/0x40 [ 562.398314][T15025] netlink_unicast+0x53c/0x7f0 [ 562.399602][T15025] ? __pfx_netlink_unicast+0x10/0x10 [ 562.401005][T15025] ? __phys_addr_symbol+0x30/0x80 [ 562.402340][T15025] ? __check_object_size+0x488/0x710 [ 562.403756][T15025] netlink_sendmsg+0x8b8/0xd70 [ 562.405031][T15025] ? __pfx_netlink_sendmsg+0x10/0x10 [ 562.406559][T15025] ? lock_acquire+0x2f/0xb0 [ 562.407899][T15025] ____sys_sendmsg+0x9ae/0xb40 [ 562.409173][T15025] ? __pfx_____sys_sendmsg+0x10/0x10 [ 562.410578][T15025] ? get_compat_msghdr+0x11b/0x170 [ 562.411949][T15025] ? __pfx___lock_acquire+0x10/0x10 [ 562.413378][T15025] ___sys_sendmsg+0x135/0x1e0 [ 562.414690][T15025] ? __pfx____sys_sendmsg+0x10/0x10 [ 562.416094][T15025] ? lock_acquire+0x2f/0xb0 [ 562.417409][T15025] ? __fget_files+0x40/0x3f0 [ 562.418654][T15025] ? fdget+0x176/0x210 [ 562.419758][T15025] __sys_sendmsg+0x117/0x1f0 [ 562.420998][T15025] ? __pfx___sys_sendmsg+0x10/0x10 [ 562.422359][T15025] ? __fget_files+0x244/0x3f0 [ 562.423643][T15025] __do_fast_syscall_32+0x73/0x120 [ 562.425125][T15025] do_fast_syscall_32+0x32/0x80 [ 562.426443][T15025] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 562.428142][T15025] RIP: 0023:0xf73ae579 [ 562.429233][T15025] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 562.434486][T15025] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 562.436679][T15025] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000 [ 562.438755][T15025] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 562.440850][T15025] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 562.442918][T15025] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 562.445000][T15025] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 562.447084][T15025] [ 562.595062][T15038] netlink: 60 bytes leftover after parsing attributes in process `syz.2.3088'. [ 562.598151][T15038] netlink: 60 bytes leftover after parsing attributes in process `syz.2.3088'. [ 563.039801][T15048] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3091'. [ 563.253258][T15053] FAULT_INJECTION: forcing a failure. [ 563.253258][T15053] name failslab, interval 1, probability 0, space 0, times 0 [ 563.256586][T15053] CPU: 1 UID: 0 PID: 15053 Comm: syz.1.3092 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 563.259358][T15053] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 563.262383][T15053] Call Trace: [ 563.263546][T15053] [ 563.264573][T15053] dump_stack_lvl+0x16c/0x1f0 [ 563.266049][T15053] should_fail_ex+0x497/0x5b0 [ 563.267671][T15053] ? fs_reclaim_acquire+0xae/0x150 [ 563.269168][T15053] should_failslab+0xc2/0x120 [ 563.270733][T15053] kmem_cache_alloc_node_noprof+0x71/0x310 [ 563.272747][T15053] ? __alloc_skb+0x2b3/0x380 [ 563.273995][T15053] __alloc_skb+0x2b3/0x380 [ 563.275165][T15053] ? __pfx___alloc_skb+0x10/0x10 [ 563.276655][T15053] ? rtnetlink_rcv_msg+0x3e6/0xea0 [ 563.278393][T15053] netlink_ack+0x164/0xb20 [ 563.279941][T15053] netlink_rcv_skb+0x327/0x410 [ 563.281321][T15053] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 563.283184][T15053] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 563.284896][T15053] ? rcu_is_watching+0x12/0xc0 [ 563.286372][T15053] netlink_unicast+0x53c/0x7f0 [ 563.288035][T15053] ? __pfx_netlink_unicast+0x10/0x10 [ 563.289740][T15053] ? __phys_addr_symbol+0x30/0x80 [ 563.291081][T15053] ? __check_object_size+0x488/0x710 [ 563.292479][T15053] netlink_sendmsg+0x8b8/0xd70 [ 563.293964][T15053] ? __pfx_netlink_sendmsg+0x10/0x10 [ 563.295776][T15053] ? lock_acquire+0x2f/0xb0 [ 563.297232][T15053] ____sys_sendmsg+0x9ae/0xb40 [ 563.298502][T15053] ? __pfx_____sys_sendmsg+0x10/0x10 [ 563.300168][T15053] ? get_compat_msghdr+0x11b/0x170 [ 563.301930][T15053] ? finish_task_switch.isra.0+0x217/0xcc0 [ 563.303531][T15053] ? __pfx___lock_acquire+0x10/0x10 [ 563.305279][T15053] ___sys_sendmsg+0x135/0x1e0 [ 563.306899][T15053] ? __pfx____sys_sendmsg+0x10/0x10 [ 563.308472][T15053] ? lock_acquire+0x2f/0xb0 [ 563.310040][T15053] ? __fget_files+0x40/0x3f0 [ 563.311573][T15053] ? fdget+0x176/0x210 [ 563.312887][T15053] __sys_sendmsg+0x117/0x1f0 [ 563.314456][T15053] ? __pfx___sys_sendmsg+0x10/0x10 [ 563.316015][T15053] __do_fast_syscall_32+0x73/0x120 [ 563.317691][T15053] do_fast_syscall_32+0x32/0x80 [ 563.319267][T15053] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 563.320940][T15053] RIP: 0023:0xf7fc7579 [ 563.322014][T15053] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 563.326979][T15053] RSP: 002b:00000000f570456c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 563.329149][T15053] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000020000000 [ 563.331546][T15053] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 563.334213][T15053] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 563.337019][T15053] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 563.339690][T15053] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 563.342351][T15053] [ 564.551673][T15094] netlink: 'syz.0.3106': attribute type 10 has an invalid length. [ 564.555955][T15094] 8021q: adding VLAN 0 to HW filter on device team0 [ 564.560134][T15094] bond0: (slave team0): Enslaving as an active interface with an up link [ 564.562917][T15094] FAULT_INJECTION: forcing a failure. [ 564.562917][T15094] name failslab, interval 1, probability 0, space 0, times 0 [ 564.566421][T15094] CPU: 3 UID: 0 PID: 15094 Comm: syz.0.3106 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 564.569208][T15094] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 564.572004][T15094] Call Trace: [ 564.572890][T15094] [ 564.573680][T15094] dump_stack_lvl+0x16c/0x1f0 [ 564.574929][T15094] should_fail_ex+0x497/0x5b0 [ 564.576188][T15094] ? fs_reclaim_acquire+0xae/0x150 [ 564.577536][T15094] should_failslab+0xc2/0x120 [ 564.578780][T15094] __kmalloc_node_noprof+0xd1/0x440 [ 564.580161][T15094] ? crypto_alloc_tfmmem.isra.0+0x38/0x110 [ 564.581692][T15094] ? __pfx_crypto_alg_extsize+0x10/0x10 [ 564.583148][T15094] crypto_alloc_tfmmem.isra.0+0x38/0x110 [ 564.584626][T15094] crypto_create_tfm_node+0x83/0x320 [ 564.586015][T15094] crypto_alloc_tfm_node+0x102/0x260 [ 564.587416][T15094] rxe_icrc_init+0x1e/0xc0 [ 564.588732][T15094] rxe_register_device+0x2db/0x3d0 [ 564.590067][T15094] rxe_net_add+0xb4/0x110 [ 564.591223][T15094] rxe_newlink+0x6f/0x190 [ 564.592376][T15094] nldev_newlink+0x36f/0x5e0 [ 564.593603][T15094] ? __pfx___lock_acquire+0x10/0x10 [ 564.594976][T15094] ? __pfx_nldev_newlink+0x10/0x10 [ 564.596374][T15094] ? aa_get_newest_label+0x376/0x680 [ 564.597778][T15094] ? rwsem_read_trylock+0x12d/0x250 [ 564.599153][T15094] ? __pfx_aa_get_newest_label+0x10/0x10 [ 564.600641][T15094] ? __pfx_rwsem_read_trylock+0x10/0x10 [ 564.602100][T15094] ? rdma_nl_rcv_msg+0x16a/0x6e0 [ 564.603428][T15094] ? security_capable+0x7e/0x260 [ 564.604740][T15094] ? ns_capable+0xd7/0x110 [ 564.605916][T15094] ? __pfx_nldev_newlink+0x10/0x10 [ 564.607286][T15094] rdma_nl_rcv_msg+0x388/0x6e0 [ 564.608554][T15094] ? __pfx_rdma_nl_rcv_msg+0x10/0x10 [ 564.609947][T15094] ? __pfx___lock_acquire+0x10/0x10 [ 564.611327][T15094] rdma_nl_rcv_skb.constprop.0.isra.0+0x2e6/0x450 [ 564.613007][T15094] ? __pfx_rdma_nl_rcv_skb.constprop.0.isra.0+0x10/0x10 [ 564.614825][T15094] ? netlink_deliver_tap+0x1ae/0xcf0 [ 564.616230][T15094] netlink_unicast+0x53c/0x7f0 [ 564.617496][T15094] ? __pfx_netlink_unicast+0x10/0x10 [ 564.618887][T15094] ? __phys_addr_symbol+0x30/0x80 [ 564.620208][T15094] ? __check_object_size+0x488/0x710 [ 564.621597][T15094] netlink_sendmsg+0x8b8/0xd70 [ 564.622864][T15094] ? __pfx_netlink_sendmsg+0x10/0x10 [ 564.624263][T15094] ? lock_acquire+0x2f/0xb0 [ 564.625469][T15094] ____sys_sendmsg+0x9ae/0xb40 [ 564.626734][T15094] ? __pfx_____sys_sendmsg+0x10/0x10 [ 564.628130][T15094] ? get_compat_msghdr+0x11b/0x170 [ 564.629478][T15094] ? __pfx___lock_acquire+0x10/0x10 [ 564.630847][T15094] ___sys_sendmsg+0x135/0x1e0 [ 564.632123][T15094] ? __pfx____sys_sendmsg+0x10/0x10 [ 564.633499][T15094] ? lock_acquire+0x2f/0xb0 [ 564.634698][T15094] ? __fget_files+0x40/0x3f0 [ 564.635934][T15094] ? fdget+0x176/0x210 [ 564.637008][T15094] __sys_sendmsg+0x117/0x1f0 [ 564.638303][T15094] ? __pfx___sys_sendmsg+0x10/0x10 [ 564.639648][T15094] ? __fget_files+0x244/0x3f0 [ 564.640897][T15094] __do_fast_syscall_32+0x73/0x120 [ 564.642249][T15094] do_fast_syscall_32+0x32/0x80 [ 564.643542][T15094] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 564.645199][T15094] RIP: 0023:0xf7f0f579 [ 564.646276][T15094] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 564.651281][T15094] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 564.653452][T15094] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200002c0 [ 564.655519][T15094] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 564.657569][T15094] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 564.659631][T15094] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 564.661691][T15094] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 564.663761][T15094] [ 564.665788][T15094] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 564.692426][T15099] netlink: 'syz.0.3108': attribute type 49 has an invalid length. [ 564.698711][T15099] __nla_validate_parse: 2 callbacks suppressed [ 564.698720][T15099] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3108'. [ 564.819398][T15107] netlink: 2220 bytes leftover after parsing attributes in process `syz.1.3110'. [ 564.938574][T15114] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 564.940329][T15114] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 564.942431][T15114] vhci_hcd vhci_hcd.0: Device attached [ 564.949617][T15114] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 565.117312][ T5241] vhci_hcd: vhci_device speed not set [ 565.187211][ T5241] usb 13-1: new full-speed USB device number 2 using vhci_hcd [ 565.495718][T15115] vhci_hcd: connection reset by peer [ 565.498995][T13738] vhci_hcd: stop threads [ 565.500159][T13738] vhci_hcd: release socket [ 565.501453][T13738] vhci_hcd: disconnect device [ 565.967513][T15135] FAULT_INJECTION: forcing a failure. [ 565.967513][T15135] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 565.970899][T15135] CPU: 1 UID: 0 PID: 15135 Comm: syz.3.3120 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 565.973704][T15135] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 565.976502][T15135] Call Trace: [ 565.977389][T15135] [ 565.978172][T15135] dump_stack_lvl+0x16c/0x1f0 [ 565.979599][T15135] should_fail_ex+0x497/0x5b0 [ 565.980882][T15135] _copy_to_user+0x30/0xc0 [ 565.982081][T15135] simple_read_from_buffer+0xd0/0x160 [ 565.983530][T15135] proc_fail_nth_read+0x198/0x270 [ 565.984864][T15135] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 565.986323][T15135] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 565.987804][T15135] vfs_read+0x1ce/0xbd0 [ 565.988908][T15135] ? __fget_files+0x23a/0x3f0 [ 565.990154][T15135] ? fdget_pos+0x24c/0x360 [ 565.991363][T15135] ? __pfx_lock_release+0x10/0x10 [ 565.992694][T15135] ? trace_lock_acquire+0x14a/0x1d0 [ 565.994064][T15135] ? __pfx_vfs_read+0x10/0x10 [ 565.995326][T15135] ? __pfx___mutex_lock+0x10/0x10 [ 565.996665][T15135] ? __fget_files+0x244/0x3f0 [ 565.997948][T15135] ksys_read+0x12f/0x260 [ 565.999068][T15135] ? __pfx_ksys_read+0x10/0x10 [ 566.000353][T15135] __do_fast_syscall_32+0x73/0x120 [ 566.001710][T15135] do_fast_syscall_32+0x32/0x80 [ 566.003002][T15135] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 566.004676][T15135] RIP: 0023:0xf7f1f579 [ 566.005753][T15135] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 566.010792][T15135] RSP: 002b:00000000f56a65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 566.013010][T15135] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f56a6620 [ 566.015082][T15135] RDX: 000000000000000f RSI: 00000000f73abff4 RDI: 0000000000000000 [ 566.017170][T15135] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 566.019265][T15135] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 566.021339][T15135] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 566.023425][T15135] [ 566.068140][T15144] 9pnet: p9_errstr2errno: server reported unknown error 1844674 [ 566.610398][T15164] FAULT_INJECTION: forcing a failure. [ 566.610398][T15164] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 566.613949][T15164] CPU: 1 UID: 0 PID: 15164 Comm: syz.0.3132 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 566.616763][T15164] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 566.619565][T15164] Call Trace: [ 566.620454][T15164] [ 566.621243][T15164] dump_stack_lvl+0x16c/0x1f0 [ 566.622495][T15164] should_fail_ex+0x497/0x5b0 [ 566.623746][T15164] _copy_to_user+0x30/0xc0 [ 566.624929][T15164] simple_read_from_buffer+0xd0/0x160 [ 566.626343][T15164] proc_fail_nth_read+0x198/0x270 [ 566.627688][T15164] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 566.629141][T15164] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 566.630596][T15164] vfs_read+0x1ce/0xbd0 [ 566.631731][T15164] ? __fget_files+0x23a/0x3f0 [ 566.632977][T15164] ? fdget_pos+0x24c/0x360 [ 566.634169][T15164] ? __pfx_lock_release+0x10/0x10 [ 566.635511][T15164] ? trace_lock_acquire+0x14a/0x1d0 [ 566.636883][T15164] ? __pfx_vfs_read+0x10/0x10 [ 566.638121][T15164] ? __pfx___mutex_lock+0x10/0x10 [ 566.639468][T15164] ? __fget_files+0x244/0x3f0 [ 566.640711][T15164] ksys_read+0x12f/0x260 [ 566.641832][T15164] ? __pfx_ksys_read+0x10/0x10 [ 566.643097][T15164] __do_fast_syscall_32+0x73/0x120 [ 566.644458][T15164] do_fast_syscall_32+0x32/0x80 [ 566.645743][T15164] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 566.647423][T15164] RIP: 0023:0xf7f0f579 [ 566.648504][T15164] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 566.653542][T15164] RSP: 002b:00000000f56965a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 566.655729][T15164] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5696620 [ 566.657889][T15164] RDX: 000000000000000f RSI: 00000000f739bff4 RDI: 0000000000000000 [ 566.659969][T15164] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 566.662044][T15164] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 566.664123][T15164] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 566.666205][T15164] [ 566.898603][T15197] FAULT_INJECTION: forcing a failure. [ 566.898603][T15197] name failslab, interval 1, probability 0, space 0, times 0 [ 566.901891][T15197] CPU: 0 UID: 0 PID: 15197 Comm: syz.2.3145 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 566.904668][T15197] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 566.907458][T15197] Call Trace: [ 566.908337][T15197] [ 566.909117][T15197] dump_stack_lvl+0x16c/0x1f0 [ 566.910346][T15197] should_fail_ex+0x497/0x5b0 [ 566.911598][T15197] ? fs_reclaim_acquire+0xae/0x150 [ 566.912932][T15197] should_failslab+0xc2/0x120 [ 566.914164][T15197] kmem_cache_alloc_node_noprof+0x71/0x310 [ 566.915687][T15197] ? __alloc_skb+0x2b3/0x380 [ 566.916904][T15197] __alloc_skb+0x2b3/0x380 [ 566.918080][T15197] ? __pfx___alloc_skb+0x10/0x10 [ 566.919389][T15197] ? lock_acquire+0x2f/0xb0 [ 566.920579][T15197] netlink_alloc_large_skb+0x69/0x130 [ 566.921973][T15197] netlink_sendmsg+0x689/0xd70 [ 566.923226][T15197] ? __pfx_netlink_sendmsg+0x10/0x10 [ 566.924616][T15197] ? lock_acquire+0x2f/0xb0 [ 566.925805][T15197] ____sys_sendmsg+0x9ae/0xb40 [ 566.927058][T15197] ? __pfx_____sys_sendmsg+0x10/0x10 [ 566.928439][T15197] ? get_compat_msghdr+0x11b/0x170 [ 566.929778][T15197] ? __pfx___lock_acquire+0x10/0x10 [ 566.931148][T15197] ___sys_sendmsg+0x135/0x1e0 [ 566.932419][T15197] ? __pfx____sys_sendmsg+0x10/0x10 [ 566.933779][T15197] ? lock_acquire+0x2f/0xb0 [ 566.934968][T15197] ? __fget_files+0x40/0x3f0 [ 566.936191][T15197] ? fdget+0x176/0x210 [ 566.937257][T15197] __sys_sendmsg+0x117/0x1f0 [ 566.938459][T15197] ? __pfx___sys_sendmsg+0x10/0x10 [ 566.939788][T15197] ? __fget_files+0x244/0x3f0 [ 566.941029][T15197] __do_fast_syscall_32+0x73/0x120 [ 566.942371][T15197] do_fast_syscall_32+0x32/0x80 [ 566.943659][T15197] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 566.945311][T15197] RIP: 0023:0xf73ae579 [ 566.946377][T15197] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 566.951333][T15197] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 566.953475][T15197] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000 [ 566.955516][T15197] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 566.957547][T15197] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 566.959584][T15197] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 566.961615][T15197] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 566.963651][T15197] [ 567.148042][T15232] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3160'. [ 567.202688][T15236] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4) [ 567.204904][T15236] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 567.207231][T15236] vhci_hcd vhci_hcd.0: Device attached [ 567.209358][T15238] vhci_hcd: connection closed [ 567.210469][T13734] vhci_hcd: stop threads [ 567.212860][T13734] vhci_hcd: release socket [ 567.214041][T13734] vhci_hcd: disconnect device [ 567.879260][T15251] FAULT_INJECTION: forcing a failure. [ 567.879260][T15251] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 567.882740][T15251] CPU: 2 UID: 0 PID: 15251 Comm: syz.2.3165 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 567.885547][T15251] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 567.888339][T15251] Call Trace: [ 567.889218][T15251] [ 567.890000][T15251] dump_stack_lvl+0x16c/0x1f0 [ 567.891277][T15251] should_fail_ex+0x497/0x5b0 [ 567.892527][T15251] _copy_from_iter+0x29b/0x13e0 [ 567.893810][T15251] ? __pfx__copy_from_iter+0x10/0x10 [ 567.895191][T15251] ? __virt_addr_valid+0x1a4/0x590 [ 567.896559][T15251] ? __virt_addr_valid+0x5e/0x590 [ 567.897919][T15251] ? __phys_addr_symbol+0x30/0x80 [ 567.899256][T15251] ? __check_object_size+0x488/0x710 [ 567.900658][T15251] netlink_sendmsg+0x813/0xd70 [ 567.901929][T15251] ? __pfx_netlink_sendmsg+0x10/0x10 [ 567.903333][T15251] ? lock_acquire+0x2f/0xb0 [ 567.904545][T15251] ____sys_sendmsg+0x9ae/0xb40 [ 567.905812][T15251] ? __pfx_____sys_sendmsg+0x10/0x10 [ 567.907201][T15251] ? get_compat_msghdr+0x11b/0x170 [ 567.908779][T15251] ? __pfx___lock_acquire+0x10/0x10 [ 567.910159][T15251] ___sys_sendmsg+0x135/0x1e0 [ 567.911430][T15251] ? __pfx____sys_sendmsg+0x10/0x10 [ 567.912802][T15251] ? lock_acquire+0x2f/0xb0 [ 567.914000][T15251] ? __fget_files+0x40/0x3f0 [ 567.915227][T15251] ? fdget+0x176/0x210 [ 567.916320][T15251] __sys_sendmsg+0x117/0x1f0 [ 567.917533][T15251] ? __pfx___sys_sendmsg+0x10/0x10 [ 567.918868][T15251] ? __fget_files+0x244/0x3f0 [ 567.920120][T15251] __do_fast_syscall_32+0x73/0x120 [ 567.921468][T15251] do_fast_syscall_32+0x32/0x80 [ 567.922750][T15251] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 567.924411][T15251] RIP: 0023:0xf73ae579 [ 567.925482][T15251] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 567.930459][T15251] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 567.932648][T15251] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200002c0 [ 567.934704][T15251] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 567.936768][T15251] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 567.938821][T15251] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 567.940887][T15251] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 567.942958][T15251] [ 567.998015][T15253] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3166'. [ 568.141111][T15263] overlay: Unknown parameter '/' [ 568.177684][T15263] netlink: 'syz.1.3169': attribute type 10 has an invalid length. [ 568.223200][T15263] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 568.916341][T15284] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3177'. [ 568.967140][ T35] usb 8-1: new high-speed USB device number 8 using dummy_hcd [ 569.117189][ T35] usb 8-1: Using ep0 maxpacket: 32 [ 569.120585][ T35] usb 8-1: config index 0 descriptor too short (expected 29220, got 36) [ 569.122744][ T35] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 569.125010][ T35] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 569.127540][ T35] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 569.130053][ T35] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 569.132550][ T35] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 569.136059][ T35] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 569.138779][ T35] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 569.140720][T15299] overlay: Unknown parameter '/' [ 569.146932][ T35] usb 8-1: config 0 descriptor?? [ 569.194819][T15299] netlink: 'syz.0.3182': attribute type 10 has an invalid length. [ 569.203129][T15299] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 569.364546][ T35] usblp 8-1:0.0: usblp0: USB Bidirectional printer dev 8 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 569.370110][ T35] usb 8-1: USB disconnect, device number 8 [ 569.373061][ T35] usblp0: removed [ 569.629700][T15307] netlink: 'syz.0.3185': attribute type 16 has an invalid length. [ 569.672734][T15313] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3186'. [ 569.976980][T15332] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3191'. [ 569.979559][T15332] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3191'. [ 570.337272][ T5241] vhci_hcd: vhci_device speed not set [ 570.777686][T15340] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3195'. [ 570.842924][T15343] overlay: Unknown parameter '/' [ 570.843965][T15342] netlink: 'syz.1.3196': attribute type 16 has an invalid length. [ 570.853381][T15343] netlink: 'syz.3.3194': attribute type 10 has an invalid length. [ 570.865353][T15343] hsr0: entered promiscuous mode [ 570.871170][T15343] bond0: (slave hsr0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 570.875243][T15343] bond0: (slave hsr0): The slave device specified does not support setting the MAC address [ 570.879907][T15343] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 570.885456][T15343] bond0: (slave hsr0): Error -22 calling dev_set_mtu [ 570.888682][T15350] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3205'. [ 570.914016][T15343] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 570.933320][T15354] 9pnet_virtio: no channels available for device syz [ 571.690194][T15371] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3204'. [ 571.692570][T15371] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3204'. [ 571.770152][T15375] FAULT_INJECTION: forcing a failure. [ 571.770152][T15375] name failslab, interval 1, probability 0, space 0, times 0 [ 571.773415][T15375] CPU: 1 UID: 0 PID: 15375 Comm: syz.2.3207 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 571.776192][T15375] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 571.778969][T15375] Call Trace: [ 571.779859][T15375] [ 571.780644][T15375] dump_stack_lvl+0x16c/0x1f0 [ 571.781887][T15375] should_fail_ex+0x497/0x5b0 [ 571.783130][T15375] should_failslab+0xc2/0x120 [ 571.784382][T15375] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 571.785790][T15375] ? skb_clone+0x190/0x3f0 [ 571.786967][T15375] skb_clone+0x190/0x3f0 [ 571.788115][T15375] netlink_deliver_tap+0xb26/0xcf0 [ 571.789463][T15375] netlink_unicast+0x6b4/0x7f0 [ 571.790729][T15375] ? __pfx_netlink_unicast+0x10/0x10 [ 571.792135][T15375] ? genl_rcv_msg+0x4bd/0x800 [ 571.793383][T15375] netlink_ack+0x6a5/0xb20 [ 571.794562][T15375] netlink_rcv_skb+0x327/0x410 [ 571.795828][T15375] ? __pfx_genl_rcv_msg+0x10/0x10 [ 571.797153][T15375] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 571.798540][T15375] ? down_read+0xc9/0x330 [ 571.799691][T15375] ? __pfx_down_read+0x10/0x10 [ 571.800958][T15375] ? netlink_deliver_tap+0x1ae/0xcf0 [ 571.802355][T15375] genl_rcv+0x28/0x40 [ 571.803426][T15375] netlink_unicast+0x53c/0x7f0 [ 571.804688][T15375] ? __pfx_netlink_unicast+0x10/0x10 [ 571.806074][T15375] ? __phys_addr_symbol+0x30/0x80 [ 571.807405][T15375] ? __check_object_size+0x488/0x710 [ 571.808798][T15375] netlink_sendmsg+0x8b8/0xd70 [ 571.810068][T15375] ? __pfx_netlink_sendmsg+0x10/0x10 [ 571.811473][T15375] ? lock_acquire+0x2f/0xb0 [ 571.812680][T15375] ____sys_sendmsg+0x9ae/0xb40 [ 571.813949][T15375] ? __pfx_____sys_sendmsg+0x10/0x10 [ 571.815343][T15375] ? get_compat_msghdr+0x11b/0x170 [ 571.816689][T15375] ? __pfx___lock_acquire+0x10/0x10 [ 571.818065][T15375] ___sys_sendmsg+0x135/0x1e0 [ 571.819322][T15375] ? __pfx____sys_sendmsg+0x10/0x10 [ 571.820705][T15375] ? lock_acquire+0x2f/0xb0 [ 571.821904][T15375] ? __fget_files+0x40/0x3f0 [ 571.823131][T15375] ? fdget+0x176/0x210 [ 571.824221][T15375] __sys_sendmsg+0x117/0x1f0 [ 571.825439][T15375] ? __pfx___sys_sendmsg+0x10/0x10 [ 571.826779][T15375] ? __fget_files+0x244/0x3f0 [ 571.828040][T15375] __do_fast_syscall_32+0x73/0x120 [ 571.829395][T15375] do_fast_syscall_32+0x32/0x80 [ 571.830682][T15375] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 571.832364][T15375] RIP: 0023:0xf73ae579 [ 571.833445][T15375] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 571.838453][T15375] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 571.840644][T15375] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000240 [ 571.842710][T15375] RDX: 0000000000000850 RSI: 0000000000000000 RDI: 0000000000000000 [ 571.844790][T15375] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 571.846856][T15375] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 571.848924][T15375] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 571.851005][T15375] [ 571.893263][T15379] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3208'. [ 571.921168][T15381] netlink: 'syz.3.3209': attribute type 16 has an invalid length. [ 572.030822][T15393] overlay: Unknown parameter '/' [ 572.038205][T15393] netlink: 'syz.2.3210': attribute type 10 has an invalid length. [ 572.048174][T15393] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 572.120180][T15398] netlink: 'syz.1.3215': attribute type 10 has an invalid length. [ 572.125648][T15398] 8021q: adding VLAN 0 to HW filter on device team0 [ 572.129998][T15398] bond0: (slave team0): Enslaving as an active interface with an up link [ 572.138123][T15398] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:c8d4:f1ff:fe85:c6e5 error=-28 [ 572.179861][T15398] infiniband syz1: set active [ 572.182483][T15398] infiniband syz1: added team_slave_0 [ 572.213151][T15398] RDS/IB: syz1: added [ 572.215348][T15398] smc: adding ib device syz1 with port count 1 [ 572.217268][T15398] smc: ib device syz1 port 1 has pnetid [ 572.344355][T15405] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3218'. [ 572.427934][T15409] netlink: 'syz.1.3220': attribute type 16 has an invalid length. [ 572.517419][T15422] netlink: 'syz.0.3230': attribute type 16 has an invalid length. [ 573.008029][T15443] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3228'. [ 573.035162][T15445] netlink: 'syz.2.3229': attribute type 16 has an invalid length. [ 573.126380][T15450] netlink: 60 bytes leftover after parsing attributes in process `syz.2.3232'. [ 573.643805][T15458] netlink: 'syz.1.3236': attribute type 16 has an invalid length. [ 574.808575][T15510] overlay: ./file0 is not a directory [ 574.812826][T15514] validate_nla: 1 callbacks suppressed [ 574.812836][T15514] netlink: 'syz.0.3254': attribute type 16 has an invalid length. [ 575.067625][T15549] FAULT_INJECTION: forcing a failure. [ 575.067625][T15549] name failslab, interval 1, probability 0, space 0, times 0 [ 575.070850][T15549] CPU: 1 UID: 0 PID: 15549 Comm: syz.2.3269 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 575.073633][T15549] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 575.076417][T15549] Call Trace: [ 575.077294][T15549] [ 575.078083][T15549] dump_stack_lvl+0x16c/0x1f0 [ 575.079337][T15549] should_fail_ex+0x497/0x5b0 [ 575.080584][T15549] ? fs_reclaim_acquire+0xae/0x150 [ 575.081923][T15549] should_failslab+0xc2/0x120 [ 575.083173][T15549] __kmalloc_cache_noprof+0x6b/0x310 [ 575.084558][T15549] ? rcu_is_watching+0x12/0xc0 [ 575.085817][T15549] ? call_usermodehelper_setup+0x9a/0x340 [ 575.087312][T15549] ? __pfx_free_modprobe_argv+0x10/0x10 [ 575.088757][T15549] call_usermodehelper_setup+0x9a/0x340 [ 575.090201][T15549] __request_module+0x3d6/0x6c0 [ 575.091493][T15549] ? dev_load+0x1ff/0x240 [ 575.092629][T15549] ? __pfx___request_module+0x10/0x10 [ 575.094027][T15549] ? aa_get_newest_label+0x376/0x680 [ 575.095415][T15549] ? __pfx_aa_get_newest_label+0x10/0x10 [ 575.096878][T15549] ? apparmor_capable+0x114/0x1d0 [ 575.098201][T15549] ? dev_load+0x1de/0x240 [ 575.099342][T15549] dev_load+0x1ff/0x240 [ 575.100433][T15549] dev_ioctl+0x19c/0x10c0 [ 575.101576][T15549] sock_ioctl+0x5b9/0x6c0 [ 575.102714][T15549] ? __pfx_sock_ioctl+0x10/0x10 [ 575.104029][T15549] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 575.105363][T15549] compat_sock_ioctl+0x619/0x7e0 [ 575.106673][T15549] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 575.108124][T15549] ? __fget_files+0x244/0x3f0 [ 575.109378][T15549] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 575.110826][T15549] __do_compat_sys_ioctl+0x259/0x2b0 [ 575.112246][T15549] __do_fast_syscall_32+0x73/0x120 [ 575.113598][T15549] do_fast_syscall_32+0x32/0x80 [ 575.114887][T15549] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 575.116548][T15549] RIP: 0023:0xf73ae579 [ 575.117620][T15549] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 575.122599][T15549] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 575.124765][T15549] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000000089f3 [ 575.126823][T15549] RDX: 00000000200001c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 575.128890][T15549] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 575.130955][T15549] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 575.133019][T15549] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 575.135077][T15549] [ 575.274677][T15562] __nla_validate_parse: 6 callbacks suppressed [ 575.274687][T15562] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3272'. [ 575.358849][T15570] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3281'. [ 575.373719][T15570] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3281'. [ 575.483121][T15585] FAULT_INJECTION: forcing a failure. [ 575.483121][T15585] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 575.486517][T15585] CPU: 3 UID: 0 PID: 15585 Comm: syz.2.3279 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 575.489327][T15585] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 575.492132][T15585] Call Trace: [ 575.493017][T15585] [ 575.493800][T15585] dump_stack_lvl+0x16c/0x1f0 [ 575.495051][T15585] should_fail_ex+0x497/0x5b0 [ 575.496309][T15585] _copy_from_iter+0x29b/0x13e0 [ 575.497593][T15585] ? _copy_from_iter+0x159/0x13e0 [ 575.498917][T15585] ? __pfx__copy_from_iter+0x10/0x10 [ 575.500335][T15585] ? __pfx__copy_from_iter+0x10/0x10 [ 575.501709][T15585] ? __virt_addr_valid+0x1a4/0x590 [ 575.503056][T15585] copy_page_from_iter+0xa5/0x120 [ 575.504382][T15585] skb_copy_datagram_from_iter+0x29b/0x710 [ 575.505909][T15585] tun_get_user+0x1964/0x3d70 [ 575.507155][T15585] ? __pfx_tun_get_user+0x10/0x10 [ 575.508488][T15585] ? find_held_lock+0x2d/0x110 [ 575.509745][T15585] ? __pfx_lock_release+0x10/0x10 [ 575.511089][T15585] tun_chr_write_iter+0xdc/0x210 [ 575.512388][T15585] vfs_write+0x6b5/0x1140 [ 575.513523][T15585] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 575.514968][T15585] ? trace_lock_acquire+0x14a/0x1d0 [ 575.516335][T15585] ? __pfx_vfs_write+0x10/0x10 [ 575.517597][T15585] ? __fget_files+0x40/0x3f0 [ 575.518815][T15585] ksys_write+0x12f/0x260 [ 575.519916][T15585] ? __pfx_ksys_write+0x10/0x10 [ 575.521200][T15585] __do_fast_syscall_32+0x73/0x120 [ 575.522546][T15585] do_fast_syscall_32+0x32/0x80 [ 575.523850][T15585] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 575.525501][T15585] RIP: 0023:0xf73ae579 [ 575.526572][T15585] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 575.531691][T15585] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 575.533866][T15585] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 575.535946][T15585] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000000 [ 575.538003][T15585] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 575.540076][T15585] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 575.542136][T15585] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 575.544404][T15585] [ 575.673997][T15592] netlink: 'syz.2.3282': attribute type 16 has an invalid length. [ 575.761178][T15606] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3286'. [ 575.775196][T15606] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3286'. [ 575.891970][T15618] netlink: 'syz.0.3291': attribute type 16 has an invalid length. [ 576.308123][T15632] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3294'. [ 576.310563][T15632] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3294'. [ 576.745242][T15642] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3298'. [ 576.760626][T15642] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3298'. [ 576.850668][T15647] UBIFS error (pid: 15647): cannot open "./file0", error -22 [ 576.858815][T15647] netlink: 211388 bytes leftover after parsing attributes in process `syz.2.3300'. [ 577.099927][T15651] netlink: 'syz.1.3302': attribute type 16 has an invalid length. [ 577.984571][T15692] netlink: 'syz.3.3315': attribute type 16 has an invalid length. [ 578.326242][T15713] netlink: 'syz.1.3324': attribute type 16 has an invalid length. [ 578.636117][T15744] netlink: 'syz.1.3334': attribute type 16 has an invalid length. [ 578.742781][T15760] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5) [ 578.745202][T15760] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 578.748701][T15760] vhci_hcd vhci_hcd.0: Device attached [ 578.927233][ T5541] vhci_hcd: vhci_device speed not set [ 578.987209][ T5541] usb 19-1: new high-speed USB device number 2 using vhci_hcd [ 579.999441][T15761] vhci_hcd: connection reset by peer [ 580.001071][ T11] vhci_hcd: stop threads [ 580.002441][ T11] vhci_hcd: release socket [ 580.003907][ T11] vhci_hcd: disconnect device [ 580.129076][T15798] netlink: 'syz.1.3352': attribute type 16 has an invalid length. [ 580.281762][T15819] __nla_validate_parse: 22 callbacks suppressed [ 580.281781][T15819] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3360'. [ 580.288330][T15819] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3360'. [ 580.919251][T15833] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3368'. [ 580.932767][T15834] netlink: 'syz.3.3367': attribute type 16 has an invalid length. [ 580.934983][T15833] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3368'. [ 580.980357][T15840] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3371'. [ 581.012355][T15841] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3369'. [ 581.014782][T15841] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3369'. [ 581.203589][T15855] netlink: 'syz.1.3377': attribute type 16 has an invalid length. [ 581.233774][T15865] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3379'. [ 581.247909][T15865] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3379'. [ 581.284572][T15868] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3378'. [ 582.214574][T15886] netlink: 'syz.1.3387': attribute type 16 has an invalid length. [ 582.421894][T15910] netlink: 'syz.2.3398': attribute type 16 has an invalid length. [ 583.245245][T15934] netlink: 'syz.3.3407': attribute type 16 has an invalid length. [ 583.988538][T15963] netlink: 'syz.2.3417': attribute type 16 has an invalid length. [ 584.097206][ T5541] vhci_hcd: vhci_device speed not set [ 584.136138][T15974] netlink: 'syz.3.3421': attribute type 1 has an invalid length. [ 584.308942][T15991] netlink: 'syz.0.3428': attribute type 16 has an invalid length. [ 584.367853][T16005] FAULT_INJECTION: forcing a failure. [ 584.367853][T16005] name failslab, interval 1, probability 0, space 0, times 0 [ 584.371137][T16005] CPU: 3 UID: 0 PID: 16005 Comm: syz.3.3432 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 584.373904][T16005] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 584.376690][T16005] Call Trace: [ 584.377577][T16005] [ 584.378361][T16005] dump_stack_lvl+0x16c/0x1f0 [ 584.379617][T16005] should_fail_ex+0x497/0x5b0 [ 584.380864][T16005] ? fs_reclaim_acquire+0xae/0x150 [ 584.382226][T16005] should_failslab+0xc2/0x120 [ 584.383483][T16005] __kmalloc_node_noprof+0xd1/0x440 [ 584.384862][T16005] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 584.386297][T16005] __kvmalloc_node_noprof+0xad/0x1a0 [ 584.387692][T16005] alloc_netdev_mqs+0xc29/0x12a0 [ 584.388991][T16005] ieee802154_if_add+0xd9/0x1150 [ 584.390290][T16005] ? __pfx___mutex_lock+0x10/0x10 [ 584.391640][T16005] ? __pfx_ieee802154_if_add+0x10/0x10 [ 584.393073][T16005] ? __pfx___nla_validate_parse+0x10/0x10 [ 584.394577][T16005] ? __dev_get_by_index+0x102/0x140 [ 584.395948][T16005] ? nl802154_pre_doit+0xf4/0xd30 [ 584.397276][T16005] ieee802154_add_iface+0x44/0x90 [ 584.398602][T16005] nl802154_new_interface+0x2eb/0x560 [ 584.400018][T16005] genl_family_rcv_msg_doit+0x202/0x2f0 [ 584.401474][T16005] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 584.403096][T16005] ? bpf_lsm_capable+0x9/0x10 [ 584.404343][T16005] ? security_capable+0x7e/0x260 [ 584.405649][T16005] genl_rcv_msg+0x565/0x800 [ 584.406852][T16005] ? __pfx_genl_rcv_msg+0x10/0x10 [ 584.408188][T16005] ? __pfx_nl802154_pre_doit+0x10/0x10 [ 584.409617][T16005] ? __pfx_nl802154_new_interface+0x10/0x10 [ 584.411189][T16005] ? __pfx_nl802154_post_doit+0x10/0x10 [ 584.412642][T16005] ? __pfx___lock_acquire+0x10/0x10 [ 584.414021][T16005] netlink_rcv_skb+0x165/0x410 [ 584.415299][T16005] ? __pfx_genl_rcv_msg+0x10/0x10 [ 584.416629][T16005] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 584.418030][T16005] ? down_read+0xc9/0x330 [ 584.419186][T16005] ? __pfx_down_read+0x10/0x10 [ 584.420458][T16005] ? netlink_deliver_tap+0x1ae/0xcf0 [ 584.421851][T16005] genl_rcv+0x28/0x40 [ 584.422912][T16005] netlink_unicast+0x53c/0x7f0 [ 584.424187][T16005] ? __pfx_netlink_unicast+0x10/0x10 [ 584.425573][T16005] ? __phys_addr_symbol+0x30/0x80 [ 584.426901][T16005] ? __check_object_size+0x488/0x710 [ 584.428304][T16005] netlink_sendmsg+0x8b8/0xd70 [ 584.429567][T16005] ? __pfx_netlink_sendmsg+0x10/0x10 [ 584.430962][T16005] ? lock_acquire+0x2f/0xb0 [ 584.432182][T16005] ____sys_sendmsg+0x9ae/0xb40 [ 584.433447][T16005] ? __pfx_____sys_sendmsg+0x10/0x10 [ 584.434836][T16005] ? get_compat_msghdr+0x11b/0x170 [ 584.436204][T16005] ? __pfx___lock_acquire+0x10/0x10 [ 584.437579][T16005] ___sys_sendmsg+0x135/0x1e0 [ 584.438826][T16005] ? __pfx____sys_sendmsg+0x10/0x10 [ 584.440213][T16005] ? lock_acquire+0x2f/0xb0 [ 584.441415][T16005] ? __fget_files+0x40/0x3f0 [ 584.442642][T16005] ? fdget+0x176/0x210 [ 584.443727][T16005] __sys_sendmsg+0x117/0x1f0 [ 584.444952][T16005] ? __pfx___sys_sendmsg+0x10/0x10 [ 584.446303][T16005] ? __fget_files+0x244/0x3f0 [ 584.447563][T16005] __do_fast_syscall_32+0x73/0x120 [ 584.448912][T16005] do_fast_syscall_32+0x32/0x80 [ 584.450191][T16005] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 584.451868][T16005] RIP: 0023:0xf7f1f579 [ 584.452944][T16005] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 584.457936][T16005] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 584.460120][T16005] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000680 [ 584.462188][T16005] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000 [ 584.464247][T16005] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 584.466306][T16005] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 584.468371][T16005] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 584.470454][T16005] [ 584.737890][T16016] FAULT_INJECTION: forcing a failure. [ 584.737890][T16016] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 584.741629][T16016] CPU: 1 UID: 0 PID: 16016 Comm: syz.1.3435 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 584.744426][T16016] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 584.747213][T16016] Call Trace: [ 584.748095][T16016] [ 584.748884][T16016] dump_stack_lvl+0x16c/0x1f0 [ 584.750136][T16016] should_fail_ex+0x497/0x5b0 [ 584.751422][T16016] _copy_to_user+0x30/0xc0 [ 584.752602][T16016] simple_read_from_buffer+0xd0/0x160 [ 584.754019][T16016] proc_fail_nth_read+0x198/0x270 [ 584.755360][T16016] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 584.756813][T16016] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 584.758267][T16016] vfs_read+0x1ce/0xbd0 [ 584.759376][T16016] ? __fget_files+0x23a/0x3f0 [ 584.760620][T16016] ? fdget_pos+0x24c/0x360 [ 584.761804][T16016] ? __pfx_lock_release+0x10/0x10 [ 584.763145][T16016] ? trace_lock_acquire+0x14a/0x1d0 [ 584.764518][T16016] ? __pfx_vfs_read+0x10/0x10 [ 584.765765][T16016] ? __pfx___mutex_lock+0x10/0x10 [ 584.767104][T16016] ? __fget_files+0x244/0x3f0 [ 584.768354][T16016] ksys_read+0x12f/0x260 [ 584.769473][T16016] ? __pfx_ksys_read+0x10/0x10 [ 584.770740][T16016] __do_fast_syscall_32+0x73/0x120 [ 584.772116][T16016] do_fast_syscall_32+0x32/0x80 [ 584.773412][T16016] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 584.775085][T16016] RIP: 0023:0xf7fc7579 [ 584.776164][T16016] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 584.781177][T16016] RSP: 002b:00000000f57465a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 584.783361][T16016] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5746620 [ 584.785428][T16016] RDX: 000000000000000f RSI: 00000000f744bff4 RDI: 0000000000000000 [ 584.787495][T16016] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 584.789554][T16016] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 584.791638][T16016] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 584.793702][T16016] [ 584.855505][T16020] netlink: 'syz.1.3437': attribute type 16 has an invalid length. [ 585.041227][T16044] FAULT_INJECTION: forcing a failure. [ 585.041227][T16044] name failslab, interval 1, probability 0, space 0, times 0 [ 585.044655][T16044] CPU: 2 UID: 0 PID: 16044 Comm: syz.1.3445 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 585.047445][T16044] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 585.050233][T16044] Call Trace: [ 585.051143][T16044] [ 585.051927][T16044] dump_stack_lvl+0x16c/0x1f0 [ 585.053174][T16044] should_fail_ex+0x497/0x5b0 [ 585.054416][T16044] ? fs_reclaim_acquire+0xae/0x150 [ 585.055770][T16044] should_failslab+0xc2/0x120 [ 585.057018][T16044] __kmalloc_cache_noprof+0x6b/0x310 [ 585.058407][T16044] ? ieee802154_nl_fill_phy.constprop.0+0xa5/0x5e0 [ 585.060160][T16044] ieee802154_nl_fill_phy.constprop.0+0xa5/0x5e0 [ 585.061819][T16044] ? __pfx_ieee802154_nl_fill_phy.constprop.0+0x10/0x10 [ 585.063633][T16044] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 585.065169][T16044] ? lockdep_hardirqs_on+0x7c/0x110 [ 585.066537][T16044] ieee802154_dump_phy_iter+0x155/0x210 [ 585.067994][T16044] ? __pfx_wpan_phy_iter+0x10/0x10 [ 585.069345][T16044] class_for_each_device+0x25f/0x2f0 [ 585.070730][T16044] ? __pfx_bpf_trace_run2+0x10/0x10 [ 585.072131][T16044] ? __pfx_class_for_each_device+0x10/0x10 [ 585.073666][T16044] ? rcu_is_watching+0x12/0xc0 [ 585.074933][T16044] ? trace_contention_end+0xea/0x140 [ 585.076326][T16044] ? __pfx_ieee802154_dump_phy_iter+0x10/0x10 [ 585.077915][T16044] wpan_phy_for_each+0x86/0xb0 [ 585.079188][T16044] ? __pfx_wpan_phy_for_each+0x10/0x10 [ 585.080645][T16044] ? __pfx_ieee802154_dump_phy_iter+0x10/0x10 [ 585.082232][T16044] ? __pfx___mutex_lock+0x10/0x10 [ 585.083561][T16044] ieee802154_dump_phy+0xb9/0x190 [ 585.084883][T16044] ? __pfx_ieee802154_dump_phy+0x10/0x10 [ 585.086349][T16044] ? __alloc_skb+0x200/0x380 [ 585.087578][T16044] ? __pfx___alloc_skb+0x10/0x10 [ 585.088882][T16044] ? do_fast_syscall_32+0x32/0x80 [ 585.090267][T16044] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 585.091999][T16044] genl_dumpit+0x11c/0x220 [ 585.093189][T16044] netlink_dump+0x552/0xcc0 [ 585.094390][T16044] ? __pfx_netlink_dump+0x10/0x10 [ 585.095763][T16044] ? kasan_save_track+0x14/0x30 [ 585.097054][T16044] ? __kasan_kmalloc+0xaa/0xb0 [ 585.098440][T16044] ? genl_start+0x677/0x950 [ 585.099669][T16044] __netlink_dump_start+0x6d9/0x980 [ 585.101072][T16044] genl_family_rcv_msg_dumpit+0x1e1/0x2e0 [ 585.102562][T16044] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 585.104211][T16044] ? genl_op_from_small+0x25/0x440 [ 585.105551][T16044] ? __pfx_genl_get_cmd+0x10/0x10 [ 585.106872][T16044] ? __pfx_genl_start+0x10/0x10 [ 585.108164][T16044] ? __pfx_genl_dumpit+0x10/0x10 [ 585.109469][T16044] ? __pfx_genl_done+0x10/0x10 [ 585.110735][T16044] ? __radix_tree_lookup+0x21f/0x2c0 [ 585.112146][T16044] genl_rcv_msg+0x470/0x800 [ 585.113344][T16044] ? __pfx_genl_rcv_msg+0x10/0x10 [ 585.114669][T16044] ? __pfx_ieee802154_dump_phy+0x10/0x10 [ 585.116145][T16044] ? __pfx___lock_acquire+0x10/0x10 [ 585.117512][T16044] netlink_rcv_skb+0x165/0x410 [ 585.118769][T16044] ? __pfx_genl_rcv_msg+0x10/0x10 [ 585.120148][T16044] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 585.121540][T16044] ? down_read+0xc9/0x330 [ 585.122687][T16044] ? __pfx_down_read+0x10/0x10 [ 585.123958][T16044] ? netlink_deliver_tap+0x1ae/0xcf0 [ 585.125343][T16044] genl_rcv+0x28/0x40 [ 585.126403][T16044] netlink_unicast+0x53c/0x7f0 [ 585.127675][T16044] ? __pfx_netlink_unicast+0x10/0x10 [ 585.129064][T16044] ? __phys_addr_symbol+0x30/0x80 [ 585.130423][T16044] ? __check_object_size+0x488/0x710 [ 585.131822][T16044] netlink_sendmsg+0x8b8/0xd70 [ 585.133082][T16044] ? __pfx_netlink_sendmsg+0x10/0x10 [ 585.134463][T16044] ? lock_acquire+0x2f/0xb0 [ 585.135671][T16044] ____sys_sendmsg+0x9ae/0xb40 [ 585.136933][T16044] ? __pfx_____sys_sendmsg+0x10/0x10 [ 585.138318][T16044] ? get_compat_msghdr+0x11b/0x170 [ 585.139675][T16044] ? __pfx___lock_acquire+0x10/0x10 [ 585.141076][T16044] ___sys_sendmsg+0x135/0x1e0 [ 585.142329][T16044] ? __pfx____sys_sendmsg+0x10/0x10 [ 585.143711][T16044] ? lock_acquire+0x2f/0xb0 [ 585.144907][T16044] ? __fget_files+0x40/0x3f0 [ 585.146131][T16044] ? fdget+0x176/0x210 [ 585.147211][T16044] __sys_sendmsg+0x117/0x1f0 [ 585.148427][T16044] ? __pfx___sys_sendmsg+0x10/0x10 [ 585.149764][T16044] ? __fget_files+0x244/0x3f0 [ 585.151025][T16044] __do_fast_syscall_32+0x73/0x120 [ 585.152379][T16044] do_fast_syscall_32+0x32/0x80 [ 585.153660][T16044] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 585.155493][T16044] RIP: 0023:0xf7fc7579 [ 585.156571][T16044] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 585.161603][T16044] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 585.163769][T16044] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000640 [ 585.165821][T16044] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 585.167887][T16044] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 585.169934][T16044] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 585.172006][T16044] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 585.174062][T16044] [ 585.360265][T16067] __nla_validate_parse: 31 callbacks suppressed [ 585.360276][T16067] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3452'. [ 585.375355][T16067] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3452'. [ 585.473477][T16073] validate_nla: 1 callbacks suppressed [ 585.473488][T16073] netlink: 'syz.3.3454': attribute type 4 has an invalid length. [ 585.589483][T16078] netlink: 'syz.3.3456': attribute type 16 has an invalid length. [ 585.655649][T16089] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3461'. [ 585.671000][T16089] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3461'. [ 585.686991][T16090] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3459'. [ 585.689428][T16090] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3459'. [ 586.078799][T16112] netlink: 'syz.0.3468': attribute type 16 has an invalid length. [ 586.101305][T16120] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3470'. [ 586.116300][T16120] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3470'. [ 586.141256][T16124] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3472'. [ 586.166024][T16124] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3472'. [ 586.192713][T16129] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0) [ 586.285669][T16138] FAULT_INJECTION: forcing a failure. [ 586.285669][T16138] name failslab, interval 1, probability 0, space 0, times 0 [ 586.289544][T16138] CPU: 2 UID: 0 PID: 16138 Comm: syz.0.3477 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 586.292346][T16138] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 586.295130][T16138] Call Trace: [ 586.296012][T16138] [ 586.296795][T16138] dump_stack_lvl+0x16c/0x1f0 [ 586.298042][T16138] should_fail_ex+0x497/0x5b0 [ 586.299292][T16138] ? lock_acquire+0x2f/0xb0 [ 586.300535][T16138] ? klist_put+0x64/0x1b0 [ 586.301677][T16138] should_failslab+0xc2/0x120 [ 586.302920][T16138] kmem_cache_alloc_node_noprof+0x71/0x310 [ 586.304442][T16138] ? __alloc_skb+0x2b3/0x380 [ 586.305654][T16138] __alloc_skb+0x2b3/0x380 [ 586.306824][T16138] ? __pfx___alloc_skb+0x10/0x10 [ 586.308127][T16138] ? class_for_each_device+0x230/0x2f0 [ 586.309552][T16138] ieee802154_nl_new_reply+0x32/0x110 [ 586.310971][T16138] ieee802154_add_iface+0x26c/0xa20 [ 586.312342][T16138] ? __nla_parse+0x40/0x60 [ 586.313514][T16138] ? __pfx_ieee802154_add_iface+0x10/0x10 [ 586.314996][T16138] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 586.316916][T16138] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 586.318826][T16138] genl_family_rcv_msg_doit+0x202/0x2f0 [ 586.320314][T16138] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 586.321900][T16138] ? bpf_lsm_capable+0x9/0x10 [ 586.323166][T16138] ? security_capable+0x7e/0x260 [ 586.324473][T16138] genl_rcv_msg+0x565/0x800 [ 586.325679][T16138] ? __pfx_genl_rcv_msg+0x10/0x10 [ 586.327001][T16138] ? __pfx_ieee802154_add_iface+0x10/0x10 [ 586.328489][T16138] ? __pfx___lock_acquire+0x10/0x10 [ 586.329856][T16138] netlink_rcv_skb+0x165/0x410 [ 586.331133][T16138] ? __pfx_genl_rcv_msg+0x10/0x10 [ 586.332451][T16138] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 586.333837][T16138] ? down_read+0xc9/0x330 [ 586.334982][T16138] ? __pfx_down_read+0x10/0x10 [ 586.336252][T16138] ? netlink_deliver_tap+0x1ae/0xcf0 [ 586.337639][T16138] genl_rcv+0x28/0x40 [ 586.338699][T16138] netlink_unicast+0x53c/0x7f0 [ 586.339978][T16138] ? __pfx_netlink_unicast+0x10/0x10 [ 586.341400][T16138] ? __phys_addr_symbol+0x30/0x80 [ 586.342723][T16138] ? __check_object_size+0x488/0x710 [ 586.344112][T16138] netlink_sendmsg+0x8b8/0xd70 [ 586.345372][T16138] ? __pfx_netlink_sendmsg+0x10/0x10 [ 586.346757][T16138] ? lock_acquire+0x2f/0xb0 [ 586.348106][T16138] ____sys_sendmsg+0x9ae/0xb40 [ 586.349413][T16138] ? __pfx_____sys_sendmsg+0x10/0x10 [ 586.350796][T16138] ? get_compat_msghdr+0x11b/0x170 [ 586.352157][T16138] ? __pfx___lock_acquire+0x10/0x10 [ 586.353522][T16138] ___sys_sendmsg+0x135/0x1e0 [ 586.354763][T16138] ? __pfx____sys_sendmsg+0x10/0x10 [ 586.356140][T16138] ? lock_acquire+0x2f/0xb0 [ 586.357335][T16138] ? __fget_files+0x40/0x3f0 [ 586.358555][T16138] ? fdget+0x176/0x210 [ 586.359635][T16138] __sys_sendmsg+0x117/0x1f0 [ 586.360886][T16138] ? __pfx___sys_sendmsg+0x10/0x10 [ 586.362224][T16138] ? __fget_files+0x244/0x3f0 [ 586.363474][T16138] __do_fast_syscall_32+0x73/0x120 [ 586.364819][T16138] do_fast_syscall_32+0x32/0x80 [ 586.366103][T16138] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 586.367749][T16138] RIP: 0023:0xf7f0f579 [ 586.368816][T16138] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 586.373981][T16138] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 586.376262][T16138] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f40 [ 586.378312][T16138] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 586.380442][T16138] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 586.382504][T16138] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 586.384562][T16138] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 586.386617][T16138] [ 586.410992][T16141] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 586.463281][T16148] netlink: 'syz.1.3482': attribute type 16 has an invalid length. [ 586.490730][T16155] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0) [ 586.611958][T16167] FAULT_INJECTION: forcing a failure. [ 586.611958][T16167] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 586.615371][T16167] CPU: 2 UID: 0 PID: 16167 Comm: syz.2.3489 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0 [ 586.618173][T16167] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 586.621039][T16167] Call Trace: [ 586.621928][T16167] [ 586.622712][T16167] dump_stack_lvl+0x16c/0x1f0 [ 586.623981][T16167] should_fail_ex+0x497/0x5b0 [ 586.625234][T16167] _copy_to_user+0x30/0xc0 [ 586.626419][T16167] simple_read_from_buffer+0xd0/0x160 [ 586.627856][T16167] proc_fail_nth_read+0x198/0x270 [ 586.629196][T16167] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 586.630667][T16167] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 586.632181][T16167] vfs_read+0x1ce/0xbd0 [ 586.633287][T16167] ? __fget_files+0x23a/0x3f0 [ 586.634533][T16167] ? fdget_pos+0x24c/0x360 [ 586.635727][T16167] ? __pfx_lock_release+0x10/0x10 [ 586.637066][T16167] ? trace_lock_acquire+0x14a/0x1d0 [ 586.638445][T16167] ? __pfx_vfs_read+0x10/0x10 [ 586.639703][T16167] ? __pfx___mutex_lock+0x10/0x10 [ 586.641087][T16167] ? __fget_files+0x244/0x3f0 [ 586.642343][T16167] ksys_read+0x12f/0x260 [ 586.643474][T16167] ? __pfx_ksys_read+0x10/0x10 [ 586.644739][T16167] __do_fast_syscall_32+0x73/0x120 [ 586.646099][T16167] do_fast_syscall_32+0x32/0x80 [ 586.647396][T16167] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 586.649060][T16167] RIP: 0023:0xf73ae579 [ 586.650143][T16167] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 586.655150][T16167] RSP: 002b:00000000f56965a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 586.657334][T16167] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5696620 [ 586.659584][T16167] RDX: 000000000000000f RSI: 00000000f739bff4 RDI: 0000000000000000 [ 586.661693][T16167] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 586.663776][T16167] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 586.665848][T16167] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 586.667932][T16167] [ 586.668806][ C2] vkms_vblank_simulate: vblank timer overrun [ 586.685193][T16169] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 586.708285][T16179] netlink: 'syz.3.3493': attribute type 16 has an invalid length. [ 586.747370][T16183] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0) [ 587.007154][ T35] usb 8-1: new high-speed USB device number 9 using dummy_hcd [ 587.178287][ T35] usb 8-1: config index 0 descriptor too short (expected 23569, got 27) [ 587.180494][ T35] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 587.183721][ T35] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 587.186074][ T35] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 587.188487][ T35] usb 8-1: Manufacturer: syz [ 587.190546][ T35] usb 8-1: config 0 descriptor?? [ 587.194348][ T35] rc_core: Couldn't load IR keymap rc-hauppauge [ 587.196063][ T35] Registered IR keymap rc-empty [ 587.199626][ T35] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0 [ 587.202882][ T35] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input20 [ 587.395484][T16186] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 587.398062][T16186] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 587.487911][ C3] igorplugusb 8-1:0.0: Error: urb status = -32 [ 587.491412][T16186] batman_adv: batadv0: Adding interface: wlan1 [ 587.493149][T16186] batman_adv: batadv0: The MTU of interface wlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 587.501404][T16186] batman_adv: batadv0: Not using interface wlan1 (retrying later): interface not active [ 587.505599][T16186] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 587.509577][T16186] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 587.528411][T16186] batman_adv: batadv0: Removing interface: wlan1 SYZFAIL: posix_spawn failed (errno 5: Input/output error) [ 587.970616][ T8] usb 8-1: USB disconnect, device number 9 [ 587.987884][ T11] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 588.090898][ T11] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 588.172668][ T11] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 588.259024][ T11] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 588.620035][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 588.623651][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 588.627208][ T11] bond0 (unregistering): (slave team0): Releasing backup interface [ 588.631289][ T11] bond0 (unregistering): Released all slaves [ 588.635575][ T11] bond1 (unregistering): Released all slaves [ 588.733378][ T11] tipc: Left network mode [ 588.935455][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 588.937514][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 588.939791][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 588.941742][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 588.958975][ T11] veth1_macvtap: left promiscuous mode [ 588.960476][ T11] veth0_macvtap: left promiscuous mode [ 588.962755][ T11] veth0_vlan: left promiscuous mode [ 588.985666][ T11] infiniband syz1: set down [ 589.843746][ T11] team0 (unregistering): Port device team_slave_1 removed [ 589.919650][ T11] team0 (unregistering): Port device team_slave_0 removed [ 589.922251][T13734] smc: removing ib device syz1 [ 590.776650][ T11] IPVS: stop unused estimator thread 0... [ 590.870648][ T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 590.873461][ T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 590.959250][ T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 590.961956][ T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 591.020810][ T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 591.023515][ T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 591.098873][ T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 591.101611][ T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 591.211279][ T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 591.273019][ T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 591.349416][ T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 591.409108][ T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 591.777351][ T11] bond0 (unregistering): Released all slaves [ 591.855118][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 591.859953][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 591.863286][ T11] bond0 (unregistering): Released all slaves [ 591.944253][ T11] tipc: Left network mode [ 591.960960][ T11] tipc: Left network mode [ 592.288252][ T11] hsr_slave_0: left promiscuous mode [ 592.290050][ T11] hsr_slave_1: left promiscuous mode [ 592.321809][ T11] veth1_macvtap: left promiscuous mode [ 592.323318][ T11] veth0_macvtap: left promiscuous mode [ 592.324785][ T11] veth1_vlan: left promiscuous mode [ 592.326176][ T11] veth0_vlan: left promiscuous mode [ 592.330532][ T11] veth1_macvtap: left promiscuous mode [ 592.332035][ T11] veth0_macvtap: left promiscuous mode [ 592.333517][ T11] veth1_vlan: left promiscuous mode [ 592.334910][ T11] veth0_vlan: left promiscuous mode [ 594.585527][ T11] team0 (unregistering): Port device team_slave_1 removed [ 594.663782][ T11] team0 (unregistering): Port device team_slave_0 removed [ 595.616647][ T11] IPVS: stop unused estimator thread 0... [ 595.620612][ T11] IPVS: stop unused estimator thread 0... VM DIAGNOSIS: 18:54:30 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=1ffff92000dfef29 RCX=0000000000000001 RDX=1ffff1100491e15b RSI=ffffffff8b4ccc20 RDI=ffffffff8bb12d60 RBP=0000000000000003 RSP=ffffc90006ff7938 R8 =0000000000000000 R9 =fffffbfff2039cc1 R10=ffffffff901ce60f R11=0000000000000000 R12=ffffffff8df45fa0 R13=0000000000000dc0 R14=ffff8880248f0ad8 R15=ffff8880248f0000 RIP=ffffffff816a3558 RFL=00000802 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fc38e299280 ffffffff 00c00000 GS =0000 ffff88802b400000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055c109fac4a8 CR3=000000006482e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000004080 Opmask01=0000000002040110 Opmask02=000000007ffeffff Opmask03=0000000000000000 Opmask04=00000000ffffffdf Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffee8e04020 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000 00000000ff000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000ff00 0000ff0000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000ff0000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 795278de74bcc239 737326b726967447 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737142 737373435c021e73 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 54003d534b4e494c 564544003d4d4554 535953425553003d 4854415056454400 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 540018534b4e494c 56454400184d4554 5359534255530018 4854415056454400 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000302d78722f73 65756575712f6c6c 756e79747466632f 74656e2f6c617574 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055c109f54d80 000055c109f5af40 0000000000000051 000000000000302e ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffee8e03c18 6373797300313d65 99d11b1e428dc600 6d74657263657300 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a2433273f397b27 697a787c69303b7e 69305f474f5b647c 69303a2433273f39 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000231 0000000000000030 0a210b320764634a 00004e4f53410734 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000231 0000000000000030 00000b3207644810 00004e4f53410731 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=00000000934e2588 RBX=00000000f43038b2 RCX=00000000d92a8bf0 RDX=00000000683f5f88 RSI=00000000f43038b2 RDI=ffffffff96992b30 RBP=ffffffff96993b58 RSP=ffffc90003ecf330 R8 =0000000000000000 R9 =fffffbfff2d32188 R10=ffffffff96990c47 R11=0000000000000000 R12=dffffc0000000000 R13=ffff888068e48b58 R14=0000000000000002 R15=ffff888068e48000 RIP=ffffffff8169fdee RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b500000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f7265fc0 CR3=000000005e4ec000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000004080 Opmask01=0000000010000000 Opmask02=000000003fffffff Opmask03=8200002022100080 Opmask04=00000000ffffffdf Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffee8e04a60 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff000000ff000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 ffffff00000000ff ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 795278de74bcc239 737326b726967447 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737142 737373435c021e73 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 302d78742f736575 6575712f6c6c756e 79747466632f7465 6e2f6c6175747269 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6f6c6c756e7974 7466632f74656e2f 6c6175747269762f 736563697665642f ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a4a51055c445757 440540495057055c 5744574a55484051 000f1a005b1a0f00 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000031 0000000000000000 0000302d78742f73 65756575712f6c6c ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000302d00 33746e6576652f30 327475706e692f30 63722f63722f302e ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffaa3ef60b40bc 000000055c13af25 000055c109f54860 00002a07d809839b ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fffffa7fff3ffffd 332c75e57df7bf37 4b317fd3fff57f7a 7f002aa7febfefff ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a2433273f397b27 697a787c69303b7e 69305f474f5b647c 69303a2433273f39 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000231 0000000000000030 0a210b320764634a 00004e4f53410734 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000231 0000000000000030 00000b3207644810 00004e4f53410731 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=dffffc0000000000 RBX=ffff888044bff800 RCX=ffff88801f52a638 RDX=1ffff1100897ff03 RSI=ffffffff898dbaa7 RDI=ffff888044bff818 RBP=0000000000000000 RSP=ffffc90004f1f4b8 R8 =ffffc90004f1f590 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000 R12=ffff888044bff800 R13=ffff88801f52a5e0 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff898dbaca RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f296f1d5740 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000c3ef30d CR3=000000004b41c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fec0fe00 Opmask01=00000000011000f0 Opmask02=000000000fffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcff5370d0 0000003000000010 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcff5556f0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e2e2e2e2e2e2e2e 2e2e2e2e2e2e2e2e ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff00ffffff00 ffffff0000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff00ffffff00 ffffff0000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000031 0000000000000020 0000000000000000 000055fc00646461 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0030303100000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000d0d0c0d0d0d0d 0d0d0d0f00515148 5344000d004e5850 5c535b5413495853 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000181 0000000000006c6c 756e79747466632f 74656e2f6c617574 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055f9a88f0198 000055f9a88f5150 0000000000000041 00000000316e616c ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1000671908005473 490d06110c450a16 1e041c0044614e1a 12081d0044614517 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3b5f7f5b6f5f577b 5f7f5f7f5f7f5b5f 1f5f7d454f7f7f1f 5f5f7f275c677f1f ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0032343433636672 2000313633336366 722000676e697274 7320007865686e69 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692064656261650a 20656f7020203165 6269650064656269 650a003631745f69 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 202064656261640a 2064652020200a36 6265650064610a65 650a003631613665 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=0000000000000020 RCX=ffffffff848f7eaf RDX=ffff888022062440 RSI=0000000000000040 RDI=0000000000000005 RBP=ffffc9000331f538 RSP=ffffc9000331f398 R8 =0000000000000005 R9 =0000000000000040 R10=0000000000000020 R11=0000000000000000 R12=0000000000000020 R13=ffffc9000331f518 R14=ffff8880719ef979 R15=ffffc9000331f540 RIP=ffffffff818cb850 RFL=00000283 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f0091af3d00 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055c337e84000 CR3=0000000000e88000 CR4=00352ef0 DR0=fffffffffffffffc DR1=0000000000000000 DR2=0000000000000002 DR3=0000000000000800 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=3ce1c1a43ce1c1a4 3ce1c1a43ce1c1a4 3ce1c1a43ce1c1a4 3ce1c1a43ce1c1a4 3ce1c1a43ce1c1a4 3ce1c1a43ce1c1a4 3ce1c1a43ce1c1a4 3ce1c1a43ce1c1a4 ZMM22=7d101eb87d101eb8 7d101eb87d101eb8 7d101eb87d101eb8 7d101eb87d101eb8 7d101eb87d101eb8 7d101eb87d101eb8 7d101eb87d101eb8 7d101eb87d101eb8 ZMM23=09de221409de2214 09de221409de2214 09de221409de2214 09de221409de2214 09de221409de2214 09de221409de2214 09de221409de2214 09de221409de2214 ZMM24=7622a8337622a833 7622a8337622a833 7622a8337622a833 7622a8337622a833 7622a8337622a833 7622a8337622a833 7622a8337622a833 7622a8337622a833 ZMM25=0925863d0925863d 0925863d0925863d 0925863d0925863d 0925863d0925863d 0925863d0925863d 0925863d0925863d 0925863d0925863d 0925863d0925863d ZMM26=088e1ab5088e1ab5 088e1ab5088e1ab5 088e1ab5088e1ab5 088e1ab5088e1ab5 088e1ab5088e1ab5 088e1ab5088e1ab5 088e1ab5088e1ab5 088e1ab5088e1ab5 ZMM27=34e3066d34e3066d 34e3066d34e3066d 34e3066d34e3066d 34e3066d34e3066d 34e3066d34e3066d 34e3066d34e3066d 34e3066d34e3066d 34e3066d34e3066d ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=1214000012140000 1214000012140000 1214000012140000 1214000012140000 1214000012140000 1214000012140000 1214000012140000 1214000012140000