last executing test programs: 11.080345047s ago: executing program 3 (id=1012): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) geteuid() bind$netlink(0xffffffffffffffff, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) r0 = socket$inet6(0xa, 0x3, 0x7) r1 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYRES16=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000240)='jbd2_checkpoint_stats\x00', r2}, 0x10) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r3) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x4010, 0x0) r4 = inotify_init1(0x0) fcntl$setown(r4, 0x8, 0xffffffffffffffff) fcntl$getownex(r4, 0x10, &(0x7f0000000140)={0x0, 0x0}) r6 = syz_open_procfs(r5, &(0x7f0000000600)='fd/4\x00') ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r6, 0x4004662b, &(0x7f0000000180)={@desc={0x1, 0x2000000, @desc3}}) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000000c0)={0x54, r8, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_FRAME={0x38, 0x33, @disassoc={{{0x0, 0x0, 0xa, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {0xf}, @device_b, @device_a, @initial, {0x2, 0xef}}, 0x21, @val={0x8c, 0x18, {0x554, "3d66af213c61", @long="77b03f336d5f7cdaa234f03ba0555c59"}}}}]}, 0x54}}, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) 7.829209836s ago: executing program 3 (id=1020): ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400"], 0x70}}, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="5c00000010000100"/20, @ANYRES32=r3, @ANYBLOB="000000000000000034001680300001802c000c8014"], 0x5c}}, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, 0x0) r4 = openat$proc_capi20ncci(0xffffff9c, &(0x7f0000000000), 0x1a1841, 0x0) io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0), 0x0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000500)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000380)={0x3c, 0x0, 0x2, 0x70bd28, 0x25dfdbff, {}, [@BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x54}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}]}, 0x3c}}, 0x4000000) ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000704000/0x4000)=nil, 0x4000}}) openat$vimc1(0xffffff9c, 0x0, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000d80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) r5 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) write$dsp(r5, &(0x7f00000001c0)="5cba91a4", 0xffffffd9) ioctl$SNDCTL_DSP_SYNC(r5, 0x5001, 0x0) ioctl$SNDCTL_DSP_RESET(r5, 0x5000, 0x0) syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0) r6 = userfaultfd(0x1) ioctl$UFFDIO_WRITEPROTECT(r6, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000800000/0x800000)=nil, 0x802000}, 0x2}) ioctl$UFFDIO_CONTINUE(r6, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000ffb000/0x2000)=nil, 0x2000}}) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) gettid() r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) read(r7, &(0x7f0000000200)=""/209, 0xd1) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r7, 0x4040534e, &(0x7f0000000080)={0x335}) 6.180489606s ago: executing program 1 (id=1024): capset(0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x40}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=0x0) prctl$PR_SCHED_CORE(0x3e, 0x80000005, r0, 0x2, 0x0) r1 = getpid() process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = io_uring_setup(0x8664c, &(0x7f0000000480)={0x0, 0x0, 0x800, 0x8000002}) r3 = socket(0x40000000015, 0x5, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) munlock(&(0x7f00007f5000/0x1000)=nil, 0x1000) connect$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) syz_usb_connect(0x0, 0x24, 0x0, 0x0) r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r4, 0x4008af60, &(0x7f0000000040)={@my=0x1}) r5 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r5, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10) r6 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r6, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0) bind$inet(r3, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57) sendmsg$xdp(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000003c0)="fe", 0x1}], 0x1}, 0x0) sendmsg$NL80211_CMD_JOIN_MESH(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[], 0x1a000}}, 0x24000040) close_range(r2, 0xffffffffffffffff, 0x0) 3.747897916s ago: executing program 2 (id=1027): r0 = socket$kcm(0x10, 0x2, 0x4) r1 = open$dir(&(0x7f0000000300)='./file0\x00', 0x0, 0x80) renameat2(r1, &(0x7f0000000340)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0x1) recvmsg$kcm(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) socket$kcm(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) mkdir(&(0x7f0000000400)='./file1\x00', 0x0) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) creat(&(0x7f0000000340)='./file0/file0\x00', 0x0) chdir(&(0x7f0000000180)='./bus\x00') openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="bb8e4167f1f4dd09be3506989523ef13f42ad11f2db332992ef652abe364238533940eeb7637c04cce3c6a40a81369ae2af16f2692e4415a089ba9622732aa9ee14c75401f701b5d08a71d4f2424bb8fe8fe27d9abfb85157e5892834fb267a1d096424e72536c159f9244b5bf25033517923c896187ea4122775fea2bce6e677f80323d3f49e22f25f1d598352f47e4df1e300ff9bbb8cd1c2fa5bcb612a2eaace59ea7841d9afc9abf4becd49a728b47782f17798cca655992542c92b17b193bf178ea7b5372f5b633267a478f8ef9", @ANYBLOB], 0x0, 0x9}, 0x90) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000a50000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000d00)={r4, 0xf, 0x0, 0x0, 0x0, 0x0, 0xc00d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 3.533415098s ago: executing program 0 (id=1028): setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x1f8, 0x220, 0x43, 0xa0, 0x0, 0x98, 0x3e8, 0x178, 0x178, 0x3e8, 0x178, 0x49, 0x0, {[{{@ip={@empty=0x5107, @local, 0x0, 0x0, 'veth0_to_bond\x00', 'ip6erspan0\x00'}, 0x12a, 0x70, 0x90, 0xc, {0x0, 0x7a010000}}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x258) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) r2 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r2, &(0x7f0000000080)=@pppol2tpv3in6={0x18, 0x1, {0x0, r1, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x3a) syz_open_dev$MSR(&(0x7f0000000300), 0x5902, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_GET(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x14, r4, 0xd53e21c379c34371}, 0x14}}, 0x0) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r5, 0x0, 0x0) sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)={0x1c, 0x4, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0) ioctl$sock_ifreq(r5, 0x891f, &(0x7f0000000040)={'veth0_to_batadv\x00', @ifru_addrs=@rc}) sendmsg$nl_route(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="24000000760009eeffffffffffffff0400000000", @ANYRES32=0x0, @ANYBLOB="04000d80080001"], 0x24}, 0x1, 0x5502000000000000}, 0x0) 3.460671694s ago: executing program 0 (id=1029): syz_open_dev$tty1(0xc, 0x4, 0x1) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040e0604250c"], 0x9) 3.421898434s ago: executing program 0 (id=1030): syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYRES8=r0], &(0x7f0000000100)='GPL\x00', 0x4e8a293b, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/12, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057000000"], 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r4 = socket$packet(0x11, 0x2, 0x300) r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r5) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) r6 = inotify_init1(0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @broadcast}, 0x10) r7 = syz_io_uring_setup(0x353, &(0x7f00000000c0), &(0x7f0000ffb000), &(0x7f0000ffb000)) io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0x19, 0x20000000, 0x0) fcntl$setown(r6, 0x8, 0xffffffffffffffff) fcntl$getownex(r6, 0x10, &(0x7f0000000140)={0x0, 0x0}) r9 = syz_open_procfs(r8, &(0x7f0000000040)='fd/4\x00') ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r9, 0x40086610, &(0x7f0000000180)={@id={0x2, 0x300, @b}}) setsockopt$packet_int(r4, 0x107, 0xa, 0x0, 0x0) setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x20, &(0x7f0000000840)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x8}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}}, @map_fd={0x18, 0x9, 0x1, 0x0, r9}, @tail_call={{0x18, 0x2, 0x1, 0x0, r9}}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7c0d}}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x3}, @map_fd={0x18, 0x5}], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x90) syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={0xffffffffffffffff, 0x20e, 0xe40, 0xfd000004, &(0x7f00000004c0)="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", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28) socket$nl_generic(0x10, 0x3, 0x10) 3.26335959s ago: executing program 1 (id=1031): mkdir(&(0x7f00000004c0)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={[{@lowerdir={'lowerdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]}) r0 = syz_open_dev$media(&(0x7f0000001a80), 0x3, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0xffffffff}}, './file0/file0\x00'}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000100)='rpcgss_update_slack\x00', r1}, 0x10) ioctl$MEDIA_IOC_SETUP_LINK(r0, 0xc0347c03, 0x0) r2 = syz_io_uring_setup(0x10d, &(0x7f0000000680), &(0x7f00000005c0)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0}) io_uring_enter(r2, 0x47f9, 0x0, 0x0, 0x0, 0x0) clock_nanosleep(0x2, 0x0, &(0x7f00000000c0)={0x0, 0x989680}, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = openat$pfkey(0xffffff9c, &(0x7f0000000080), 0x80000, 0x0) ioctl$SNDCTL_TMR_CONTINUE(r6, 0x5404) r7 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_DELLINK(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="1800000005140100000000007f0000000800010000000000a8fdcbfc1d824fd3ac282c55acd448a5d523ae7eda6bc34f93f63905565fef4a0252c45b39cd5a974979550a69c29cce17355b464123c12f5d37f86a44fdffe2dae7c6f58c1120b00f113aeb9ee9d4fed8df6de029dcd9300b684cc4de5676b5e0b6e7c91b1c2b73ff80e5f010f927e335af368b27d1a02f7636174fbb879df31782ad258aa77524b5a15a20c19dd798a39a597192ffb8d7"], 0x18}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r6, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r5, {0x1}}, './file0\x00'}) syz_genetlink_get_family_id$smc(&(0x7f0000000000), r5) r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x16, 0xb, &(0x7f0000000600)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x20000000}, {0x85, 0x0, 0x0, 0x72}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r9, 0x0, 0x8, 0x0, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x4c) mknod(&(0x7f0000000280)='./file0\x00', 0x200, 0x1bc) sendmsg(r8, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000340)="d2a2db28f5136b5a64ebd1662687a16e1404305a5987d54df57b5e876bf67d2ed0c677585e245455b18a1d1cba2ab2205350b06767d2157b809a2b0e12c80579a2722c579e4309de562830e6c67177621140f0a5d3fdbe808626af45f9cd735309e315d4717694c8f4f1b3515f5122aa922144224f729b10e976d9addd3b2834f796322183b5dc7886e54a6d8c3674701caf353b50515883d746e770396c", 0x9e}, {&(0x7f0000000400)="965f26fa01f7c6f3a485cb8104c5b9c8cf531de33c54bca4ea204e38674407495b5989090bec3afbd70ffd8354cc5528f79c3e54659b038093c7", 0x3a}], 0x2, &(0x7f0000001ac0)=ANY=[@ANYBLOB="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"], 0x11dc}, 0x8800) setreuid(0x0, 0xee01) r10 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r10, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=ANY=[@ANYBLOB="140000000207050000000000000000000e000008dcc855cf729dcad74e406b7520e042f10ba61706f5e668c0fce3b9e6a32858527fe3f708b354c783a2dccc4900b908000000000000002ba6d97dbc095c2335971b0ae9664ca84f67419805df0ce4cb21a1eb4f2f37ca6b551d38a0fb641b2998838167cc1ca1876ef4a99d217bc7d7910760bee048b320ca59e881b856ddec780a96b770d271318c73150db1977782359a05e8dde389c5ab239dcb186e515dce"], 0x14}, 0x1, 0x0, 0x0, 0x4000880}, 0x200000c0) setfsuid(0x0) r11 = syz_open_dev$ndb(&(0x7f00000001c0), 0x0, 0x0) ioctl$IOC_PR_CLEAR(r11, 0x401070c9, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180), 0x40100, 0x0) 2.979607807s ago: executing program 3 (id=1032): socket$inet6(0xa, 0x1, 0x0) r0 = socket(0x11, 0x800000003, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="58000000020601010000000000000000000000000c00078008000640000000000900020073797a300000000005000700000011000300686173683a69702c706f727400000000050005000a0000000500040000000000"], 0x58}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@bloom_filter={0x1e, 0x0, 0x8000, 0x0, 0x1060, 0x1, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b74500000000000085000000030000009500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0xfffffffe, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000", @ANYRESDEC=0x0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000001c0)='mm_lru_activate\x00', r3}, 0x10) socket$inet6(0xa, 0x3, 0x3a) r7 = socket$packet(0x11, 0x3, 0x300) sendto(r7, &(0x7f0000000040)="60dcb8c0ccf9d1f13e280365babe32aa1a812817f784366dc8aa2b433c492102968db0ee93ddb6f5", 0x28, 0x0, &(0x7f0000000080)=@caif=@dgm={0x25, 0x7}, 0x80) 2.640715891s ago: executing program 1 (id=1033): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$inet6(0xa, 0x6, 0x0) init_module(0x0, 0x3f00, 0x0) bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @empty}, 0x1c) r1 = socket$inet_dccp(0x2, 0x6, 0x0) r2 = memfd_create(&(0x7f0000000000)='\x107', 0x0) sendmsg$NL80211_CMD_SET_COALESCE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x40, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @val={0xc}}}, [@NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_DELAY={0x8}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x80000000}}]}]}, 0x40}}, 0x0) write$binfmt_elf32(r2, &(0x7f0000000040)=ANY=[@ANYRESDEC=r0], 0x58) finit_module(r2, 0x0, 0x0) listen(r0, 0x5) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @dev}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r3 = getpid() process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x3, &(0x7f0000000080)=[{0x5, 0x0, 0x0, 0x45}, {0x5}, {0x6}]}) epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) write$cgroup_int(0xffffffffffffffff, 0x0, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000500)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x6, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r8, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/key-users\x00', 0x0, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0) 2.508467263s ago: executing program 2 (id=1034): r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000440)="1400000016000b63d25a80648c2566e506bce1e8", 0x14}], 0x1}, 0x0) 2.411878802s ago: executing program 2 (id=1035): socket$can_raw(0x1d, 0x3, 0x1) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) ioctl$F2FS_IOC_RESIZE_FS(r0, 0x4008f510, &(0x7f00000001c0)=0xfffffffffffffffe) connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e24, @local}, 0x10) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff) r1 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x102, 0x0) read$FUSE(r1, &(0x7f0000000040)={0x2020}, 0x2084) writev(r1, &(0x7f00000020c0), 0x0) openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x20000000, 0x4000000000003, 0x2, @thr={0x0, 0x0}}) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xf) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x10) r3 = getpid() process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xa, &(0x7f0000000080), 0x4) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0) r4 = fcntl$dupfd(r2, 0x0, r2) ioctl$TCFLSH(r4, 0x400455c8, 0x2) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x2, 0x9, 0x8}, 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000002140)={@rand_addr=0x64010102, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1, [@remote]}, 0x14) r7 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000001c0)={'bridge0\x00'}) 2.34932459s ago: executing program 0 (id=1036): r0 = socket$kcm(0x10, 0x2, 0x4) r1 = open$dir(&(0x7f0000000300)='./file0\x00', 0x0, 0x80) renameat2(r1, &(0x7f0000000340)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0x1) recvmsg$kcm(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) socket$kcm(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) mkdir(&(0x7f0000000400)='./file1\x00', 0x0) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) creat(&(0x7f0000000340)='./file0/file0\x00', 0x0) chdir(&(0x7f0000000180)='./bus\x00') openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="bb8e4167f1f4dd09be3506989523ef13f42ad11f2db332992ef652abe364238533940eeb7637c04cce3c6a40a81369ae2af16f2692e4415a089ba9622732aa9ee14c75401f701b5d08a71d4f2424bb8fe8fe27d9abfb85157e5892834fb267a1d096424e72536c159f9244b5bf25033517923c896187ea4122775fea2bce6e677f80323d3f49e22f25f1d598352f47e4df1e300ff9bbb8cd1c2fa5bcb612a2eaace59ea7841d9afc9abf4becd49a728b47782f17798cca655992542c92b17b193bf178ea7b5372f5b633267a478f8ef9", @ANYBLOB], 0x0, 0x9}, 0x90) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000a50000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000d00)={r4, 0xf, 0x0, 0x0, 0x0, 0x0, 0xc00d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.730157574s ago: executing program 3 (id=1037): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_CHANNELS_SET(r3, &(0x7f0000000180)={0x0, 0x1, &(0x7f0000000140)={&(0x7f0000000480)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000ac0000000600120007000000000004ac2b56d927ecb38224665f0d731e5b7240d9153a41fedefa4419a44d2485b6d5bfbcaab4085aec366ebc0c0c5016346c38b2ae6cac932825f758cbf9aa6485dbe7fd622869ea88788c083bee3e8681cfed65c2425271313bc79934b414c5306554a472ca3029a32b81ff260e550a00dd20b42769c7364842296880f05f1907476bc94234ecc972593a258308bba9bc9eca783f06d7bf3de2e79d26353c57eaf3c0aadc622160b400db5a1f3e1747dbe843"], 0x20}, 0x1, 0x0, 0x0, 0x24040050}, 0x0) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000001780)=ANY=[@ANYBLOB="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"], &(0x7f0000000780)=""/4096, 0xcd, 0x1000, 0x1, 0x9}, 0x20) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x2, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r5}, 0x48) r7 = socket$rds(0x15, 0x5, 0x0) setsockopt$RDS_GET_MR_FOR_DEST(r7, 0x114, 0x7, 0x0, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000001e0000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r8}, 0x10) r9 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="54010000110013070000000000000000ac1414bb000000000000000000000000ac1414aa00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="7f0000010000000000000000000008000000000032000000ac1414000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000022000000000000000000"], 0x154}}, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000950000000000000000000066b38ad70b03d577c1fb769249404dad1075391bd00fb025df"], &(0x7f00000003c0)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r10}, 0x10) r11 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) mkdirat$cgroup(r11, &(0x7f0000000080)='syz0\x00', 0x1ff) socket$nl_xfrm(0x10, 0x3, 0x6) 1.397161877s ago: executing program 1 (id=1038): syz_open_dev$tty1(0xc, 0x4, 0x1) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040e0604250c"], 0x9) 1.299781587s ago: executing program 2 (id=1039): unshare(0x62040200) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) sendmsg$key(0xffffffffffffffff, 0x0, 0x0) r0 = socket$l2tp(0x2, 0x2, 0x73) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, 0x0) getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, &(0x7f0000000180)={'mangle\x00', 0x7003, [0x0, 0x2, 0x3, 0x4, 0x4]}, &(0x7f0000000100)=0x54) 1.190716983s ago: executing program 1 (id=1040): r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r0) socket(0x15, 0x5, 0x0) r1 = socket(0x2, 0x80805, 0x0) getsockopt$bt_hci(r1, 0x84, 0x80, &(0x7f0000000000)=""/4102, &(0x7f0000001080)=0x1006) openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0) r2 = socket$tipc(0x1e, 0x5, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = openat$capi20(0xffffffffffffff9c, &(0x7f00000010c0), 0x101200, 0x0) ioctl$CAPI_NCCI_OPENCOUNT(r3, 0x80044326, &(0x7f0000000000)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r5 = getpid() process_vm_readv(r5, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r6 = syz_io_uring_setup(0x24fa, &(0x7f0000000240)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r9, &(0x7f00000001c0)=ANY=[@ANYBLOB="1f"], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r9, 0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) io_uring_enter(r6, 0x2d3e, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x800452d2, &(0x7f0000000100)) r10 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_GETMOUSEREPORTING(r10, 0x5412, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x42}, 0x10) 1.190101917s ago: executing program 0 (id=1041): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) r3 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r4 = add_key$keyring(&(0x7f0000001680), &(0x7f00000016c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}) r8 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, r4) r9 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, r4) add_key$user(&(0x7f0000000200), &(0x7f0000000240)={'syz', 0x2}, &(0x7f0000000480)="2c3fd2c278ab482c6efc5e631bd8d4f3fcde43e21e97f0bb5e508947df72e6213bc6db5e42da5daa3ba0b42537e41a9216ceabeb6a466012d6e9ada8d008ac6a1af7b24317e33fffa6c0ac4c136bad6c38f8c146b935a46b3ddcda033ce135bb095585874b1013b87a6b881d1638ae99ff5999f3abf000bcff177c204eefec31524966dd1f5ad690bb34f6dc6737ae1da237b14c05c4818f0940dc12996f92fd39f88f45be3a1616087f94fcd2be64e6da8d7307169d084366a595d9be", 0xbd, r9) r10 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@newsa={0x15c, 0x10, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@ipv4={'\x00', '\xff\xff', @multicast1}}, {@in6=@ipv4={'\x00', '\xff\xff', @empty}, 0x0, 0x33}, @in6=@loopback, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_auth_trunc={0x6d, 0x14, {{'cmac(aes)\x00'}, 0x108, 0x0, "30b1a4e275e6084d71e8d246ed0307b001ce9848fa9391d45f1478308212898669"}}]}, 0x15c}}, 0x0) keyctl$unlink(0x9, r8, r4) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r12, 0xae60) pipe(&(0x7f0000000300)) r13 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r13, 0x6, 0x2, &(0x7f00000001c0)=0x7ff, 0x4) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)={0x38, r1, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]]}, 0x38}}, 0x0) r14 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f0000000240)={'veth0_vlan\x00', 0x0}) r16 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r16, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b0001006d616373656300000c00028005000f000200000008000500", @ANYRES32=r15], 0x44}}, 0x0) 786.021903ms ago: executing program 2 (id=1042): unshare(0x62040200) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) sendmsg$key(0xffffffffffffffff, 0x0, 0x0) r0 = socket$l2tp(0x2, 0x2, 0x73) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, 0x0) getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, &(0x7f0000000180)={'mangle\x00', 0x7003, [0x0, 0x2, 0x3, 0x4, 0x4]}, &(0x7f0000000100)=0x54) (fail_nth: 2) 640.213722ms ago: executing program 3 (id=1043): socket$inet6_tcp(0xa, 0x1, 0x0) openat$ptp0(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) io_setup(0x40, &(0x7f0000000980)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) io_setup(0xb, &(0x7f0000000100)=0x0) io_submit(r1, 0x61, &(0x7f0000000380)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0xffffffeb, 0x800000000000, 0x0, 0x1}]) connect$unix(0xffffffffffffffff, &(0x7f0000000080)=@abs, 0x6e) socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan1\x00', 0x0}) r3 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_add_memb(r3, 0x107, 0x18, &(0x7f0000000800)={r2, 0x1, 0x6, @local}, 0x10) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000002c0)='contention_end\x00', r4}, 0x10) openat$pfkey(0xffffffffffffff9c, &(0x7f0000001580), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000480)={'syz_tun\x00', 0x0}) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096}, 0x90) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r6, r5, 0x25, 0x0, @void}, 0x10) socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000900)={'bridge0\x00', @broadcast}) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000440)="1400000016000b63d25a80648c2566e506bce1e8", 0x14}], 0x1}, 0x0) 532.793038ms ago: executing program 0 (id=1044): openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x2a, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108) r2 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r2, 0x29, 0x2a, &(0x7f0000000080)={0x20, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108) setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, 0x108) close(r1) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0) read$midi(r5, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x0) mkdir(&(0x7f0000000240)='./file0\x00', 0x4d) mount$overlay(0x0, 0x0, &(0x7f0000000380), 0x0, &(0x7f0000000440)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}, {@metacopy_off}, {@nfs_export_on}, {@uuid_on}, {@metacopy_on}]}) socket$can_bcm(0x1d, 0x2, 0x2) bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@bloom_filter={0x1e, 0x8, 0x4, 0xfffffffb, 0x20, 0x1, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x1, 0xa}, 0x48) prctl$PR_SCHED_CORE(0x3e, 0xffffffff, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000280)=0x7) r6 = getpid() sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) 99.691469ms ago: executing program 1 (id=1045): syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYRES8=r0], &(0x7f0000000100)='GPL\x00', 0x4e8a293b, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/12, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057000000"], 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r4 = socket$packet(0x11, 0x2, 0x300) r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r5) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) r6 = inotify_init1(0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @broadcast}, 0x10) r7 = syz_io_uring_setup(0x353, &(0x7f00000000c0), &(0x7f0000ffb000), &(0x7f0000ffb000)) io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0x19, 0x20000000, 0x0) fcntl$setown(r6, 0x8, 0xffffffffffffffff) fcntl$getownex(r6, 0x10, &(0x7f0000000140)={0x0, 0x0}) r9 = syz_open_procfs(r8, &(0x7f0000000040)='fd/4\x00') ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r9, 0x40086610, &(0x7f0000000180)={@id={0x2, 0x300, @b}}) setsockopt$packet_int(r4, 0x107, 0xa, 0x0, 0x0) setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c) r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000017c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r10, 0x20e, 0xe40, 0xfd000004, &(0x7f00000004c0)="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", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28) socket$nl_generic(0x10, 0x3, 0x10) 340.54Β΅s ago: executing program 3 (id=1046): sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x4004) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) readv(r0, &(0x7f00000001c0)=[{&(0x7f0000001400)=""/227, 0x10}], 0x4) (fail_nth: 2) r1 = socket$kcm(0x2, 0xa, 0x2) r2 = socket$igmp6(0xa, 0x3, 0x2) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00'}) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) 0s ago: executing program 2 (id=1047): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4) (async) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000300)=[@mss, @mss, @timestamp, @timestamp, @window, @timestamp, @window, @sack_perm], 0x8) io_uring_setup(0x1693, &(0x7f0000000080)={0x0, 0x0, 0x40, 0x3, 0x1dc}) (async) r1 = io_uring_setup(0x1693, &(0x7f0000000080)={0x0, 0x0, 0x40, 0x3, 0x1dc}) io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0) sendto$inet(r0, &(0x7f0000000200)="3ca13799", 0x4, 0x0, 0x0, 0x0) (async) sendto$inet(r0, &(0x7f0000000200)="3ca13799", 0x4, 0x0, 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4) sendto$inet(r0, &(0x7f00000004c0)="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", 0x151, 0x5, 0x0, 0x0) (async) sendto$inet(r0, &(0x7f00000004c0)="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", 0x151, 0x5, 0x0, 0x0) kernel console output (not intermixed with test programs): ][ T8139] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 204.071783][ T8139] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000180 [ 204.075040][ T8139] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000 [ 204.078412][ T8139] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 204.081681][ T8139] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 204.084851][ T8139] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 204.088234][ T8139] [ 204.286947][ T8143] Bluetooth: MGMT ver 1.23 [ 204.411074][ T8141] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 204.440696][ T8141] syz.0.752 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 205.200403][ T8170] xt_CT: You must specify a L4 protocol and not use inversions on it [ 205.207029][ T8170] __nla_validate_parse: 2 callbacks suppressed [ 205.207045][ T8170] netlink: 20 bytes leftover after parsing attributes in process `syz.0.758'. [ 205.225362][ T39] kauditd_printk_skb: 35 callbacks suppressed [ 205.225417][ T39] audit: type=1326 audit(1725510677.714:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8165 comm="syz.0.758" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 205.251354][ T39] audit: type=1326 audit(1725510677.714:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8165 comm="syz.0.758" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 205.260333][ T39] audit: type=1326 audit(1725510677.714:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8165 comm="syz.0.758" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 205.291361][ T39] audit: type=1326 audit(1725510677.714:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8165 comm="syz.0.758" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 205.299276][ T39] audit: type=1326 audit(1725510677.714:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8165 comm="syz.0.758" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 205.321348][ T39] audit: type=1326 audit(1725510677.714:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8165 comm="syz.0.758" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 205.329076][ T39] audit: type=1326 audit(1725510677.714:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8165 comm="syz.0.758" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 205.351361][ T39] audit: type=1326 audit(1725510677.714:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8165 comm="syz.0.758" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 205.360476][ T39] audit: type=1326 audit(1725510677.714:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8165 comm="syz.0.758" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 205.391362][ T39] audit: type=1326 audit(1725510677.714:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8165 comm="syz.0.758" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 205.652258][ T8180] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 205.751376][ T1295] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 205.931512][ T1295] usb 6-1: Using ep0 maxpacket: 8 [ 205.936940][ T1295] usb 6-1: config 0 has no interfaces? [ 205.945570][ T1295] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 205.974664][ T1295] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 205.981571][ T1295] usb 6-1: Product: syz [ 205.985743][ T1295] usb 6-1: Manufacturer: syz [ 205.991347][ T1295] usb 6-1: SerialNumber: syz [ 206.020414][ T1295] usb 6-1: config 0 descriptor?? [ 206.526763][ T8194] netlink: 8 bytes leftover after parsing attributes in process `syz.2.767'. [ 206.667323][ T8196] netlink: 8 bytes leftover after parsing attributes in process `syz.3.766'. [ 206.912242][ T8199] can0: slcan on ttyprintk. [ 206.984531][ T8205] FAULT_INJECTION: forcing a failure. [ 206.984531][ T8205] name failslab, interval 1, probability 0, space 0, times 0 [ 206.989395][ T8205] CPU: 1 UID: 0 PID: 8205 Comm: syz.3.770 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 206.994195][ T8205] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 207.004875][ T8207] netlink: 'syz.2.771': attribute type 4 has an invalid length. [ 207.013390][ T8205] Call Trace: [ 207.013402][ T8205] [ 207.013411][ T8205] dump_stack_lvl+0x16c/0x1f0 [ 207.013436][ T8205] should_fail_ex+0x497/0x5b0 [ 207.013455][ T8205] ? fs_reclaim_acquire+0xae/0x160 [ 207.013483][ T8205] should_failslab+0xc2/0x120 [ 207.013503][ T8205] __kmalloc_cache_node_noprof+0x6e/0x360 [ 207.013523][ T8205] ? __get_vm_area_node+0xe1/0x2d0 [ 207.013547][ T8205] __get_vm_area_node+0xe1/0x2d0 [ 207.013567][ T8205] ? mark_lock+0xb5/0xc60 [ 207.013593][ T8205] __vmalloc_node_range_noprof+0x270/0x14e0 [ 207.013617][ T8205] ? bpf_prog_alloc_no_stats+0x54/0x5e0 [ 207.013646][ T8205] ? bpf_prog_alloc_no_stats+0x54/0x5e0 [ 207.013669][ T8205] ? hlock_class+0x4e/0x130 [ 207.013687][ T8205] ? aa_get_newest_label+0x376/0x680 [ 207.013712][ T8205] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 207.013736][ T8205] ? __pfx_aa_get_newest_label+0x10/0x10 [ 207.054926][ T8205] ? mark_lock+0xb5/0xc60 [ 207.056852][ T8205] ? bpf_prog_alloc_no_stats+0x54/0x5e0 [ 207.059301][ T8205] __vmalloc_noprof+0x6d/0x90 [ 207.061393][ T8205] ? bpf_prog_alloc_no_stats+0x54/0x5e0 [ 207.063832][ T8205] bpf_prog_alloc_no_stats+0x54/0x5e0 [ 207.066366][ T8205] bpf_prog_alloc+0x3b/0x240 [ 207.068471][ T8205] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 207.071062][ T8205] bpf_prog_load+0x1b4e/0x2670 [ 207.073370][ T8205] ? hlock_class+0x4e/0x130 [ 207.075644][ T8205] ? __pfx_bpf_prog_load+0x10/0x10 [ 207.077925][ T8205] ? find_held_lock+0x2d/0x110 [ 207.080107][ T8205] ? security_bpf+0x8c/0xc0 [ 207.082424][ T8205] __sys_bpf+0x9e0/0x55e0 [ 207.084903][ T8205] ? __pfx___sys_bpf+0x10/0x10 [ 207.087632][ T8205] ? ksys_write+0x12f/0x260 [ 207.091499][ T8205] ? find_held_lock+0x2d/0x110 [ 207.093704][ T8205] ? ksys_write+0x21c/0x260 [ 207.095646][ T8205] ? __pfx_lock_release+0x10/0x10 [ 207.097601][ T8205] ? vfs_write+0x14d/0x1140 [ 207.099481][ T8205] ? __mutex_unlock_slowpath+0x164/0x650 [ 207.102493][ T8205] ? fput+0x32/0x390 [ 207.104338][ T8205] ? ksys_write+0x1ab/0x260 [ 207.106514][ T8205] ? __pfx_ksys_write+0x10/0x10 [ 207.108592][ T8205] __ia32_sys_bpf+0x76/0xe0 [ 207.110594][ T8205] __do_fast_syscall_32+0x73/0x120 [ 207.113362][ T8205] do_fast_syscall_32+0x32/0x80 [ 207.116055][ T8205] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 207.119044][ T8205] RIP: 0023:0xf7fd2579 [ 207.121314][ T8205] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 207.130124][ T8205] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 207.133824][ T8205] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200004c0 [ 207.137729][ T8205] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000 [ 207.141724][ T8205] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 207.145201][ T8205] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 207.148871][ T8205] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 207.152588][ T8205] [ 207.158864][ T8210] netlink: 'syz.2.771': attribute type 4 has an invalid length. [ 207.240713][ T5363] Bluetooth: hci3: unexpected event for opcode 0x0c25 [ 207.251993][ T8217] netlink: 24 bytes leftover after parsing attributes in process `syz.3.772'. [ 207.302492][ T8189] can0 (unregistered): slcan off ttyprintk. [ 207.905631][ T8240] random: crng reseeded on system resumption [ 208.369663][ T8250] netlink: 28 bytes leftover after parsing attributes in process `syz.2.781'. [ 208.420396][ T30] usb 6-1: USB disconnect, device number 6 [ 208.481401][ T5363] Bluetooth: hci0: unexpected event for opcode 0x0c25 [ 208.490054][ T8252] netlink: 24 bytes leftover after parsing attributes in process `syz.2.782'. [ 208.727839][ T8259] xt_CT: You must specify a L4 protocol and not use inversions on it [ 208.786546][ T8259] netlink: 20 bytes leftover after parsing attributes in process `syz.0.784'. [ 208.801134][ T8259] xt_CT: You must specify a L4 protocol and not use inversions on it [ 209.023552][ T8264] binder: 8263:8264 ioctl c0306201 0 returned -14 [ 209.224635][ T8267] can0: slcan on ttyprintk. [ 209.506578][ T8253] can0 (unregistered): slcan off ttyprintk. [ 210.722024][ T64] Bluetooth: (null): Invalid header checksum [ 210.724983][ T64] Bluetooth: (null): Invalid header checksum [ 210.835051][ T1134] Bluetooth: (null): Invalid header checksum [ 210.942320][ T64] Bluetooth: (null): Invalid header checksum [ 211.063099][ T1134] Bluetooth: (null): Invalid header checksum [ 211.161902][ T64] Bluetooth: (null): Invalid header checksum [ 211.283144][ T64] Bluetooth: (null): Invalid header checksum [ 211.721550][ T833] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 211.840593][ T8322] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.799'. [ 211.934222][ T833] usb 5-1: Using ep0 maxpacket: 8 [ 211.937640][ T833] usb 5-1: no configurations [ 211.949513][ T833] usb 5-1: can't read configurations, error -22 [ 211.963773][ T8326] can0: slcan on ttyprintk. [ 212.059501][ T39] kauditd_printk_skb: 18 callbacks suppressed [ 212.059518][ T39] audit: type=1326 audit(1725510684.544:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 212.078747][ T39] audit: type=1326 audit(1725510684.564:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 212.088582][ T39] audit: type=1326 audit(1725510684.574:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=49 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 212.097822][ T39] audit: type=1326 audit(1725510684.574:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 212.108085][ T39] audit: type=1326 audit(1725510684.574:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 212.117765][ T833] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 212.121585][ T39] audit: type=1326 audit(1725510684.574:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 212.141698][ T39] audit: type=1326 audit(1725510684.574:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 212.150929][ T39] audit: type=1326 audit(1725510684.574:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 212.177974][ T39] audit: type=1326 audit(1725510684.574:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 212.187527][ T39] audit: type=1326 audit(1725510684.574:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 212.351536][ T833] usb 5-1: Using ep0 maxpacket: 8 [ 212.361766][ T833] usb 5-1: no configurations [ 212.363824][ T833] usb 5-1: can't read configurations, error -22 [ 212.371354][ T833] usb usb5-port1: attempt power cycle [ 212.476365][ T8318] can0 (unregistered): slcan off ttyprintk. [ 212.791443][ T833] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 212.822201][ T833] usb 5-1: Using ep0 maxpacket: 8 [ 212.825334][ T833] usb 5-1: no configurations [ 212.827298][ T833] usb 5-1: can't read configurations, error -22 [ 213.001850][ T833] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 213.033578][ T833] usb 5-1: Using ep0 maxpacket: 8 [ 213.036593][ T833] usb 5-1: no configurations [ 213.038656][ T833] usb 5-1: can't read configurations, error -22 [ 213.052629][ T833] usb usb5-port1: unable to enumerate USB device [ 213.310376][ T8355] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 214.114079][ T8367] warn_alloc: 6 callbacks suppressed [ 214.114095][ T8367] syz.1.807: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1 [ 214.114151][ T8367] CPU: 3 UID: 0 PID: 8367 Comm: syz.1.807 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 214.114177][ T8367] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 214.114186][ T8367] Call Trace: [ 214.114193][ T8367] [ 214.114202][ T8367] dump_stack_lvl+0x16c/0x1f0 [ 214.114226][ T8367] warn_alloc+0x24d/0x3a0 [ 214.114251][ T8367] ? __pfx_warn_alloc+0x10/0x10 [ 214.114272][ T8367] ? stack_depot_save_flags+0x28/0x900 [ 214.114298][ T8367] ? kasan_save_stack+0x42/0x60 [ 214.114309][ T8367] ? kasan_save_stack+0x33/0x60 [ 214.114324][ T8367] ? kasan_save_track+0x14/0x30 [ 214.114340][ T8367] ? __kasan_kmalloc+0xaa/0xb0 [ 214.114355][ T8367] ? xskq_create+0x52/0x1d0 [ 214.114370][ T8367] ? xsk_setsockopt+0x8b0/0xac0 [ 214.114395][ T8367] ? __sys_setsockopt+0x1a4/0x270 [ 214.114419][ T8367] ? __ia32_sys_setsockopt+0xbc/0x160 [ 214.114436][ T8367] ? __do_fast_syscall_32+0x73/0x120 [ 214.114463][ T8367] __vmalloc_node_range_noprof+0x10a3/0x14e0 [ 214.114494][ T8367] ? xskq_create+0xfb/0x1d0 [ 214.114514][ T8367] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 214.114544][ T8367] ? xskq_create+0xfb/0x1d0 [ 214.114560][ T8367] vmalloc_user_noprof+0x6b/0x90 [ 214.114580][ T8367] ? xskq_create+0xfb/0x1d0 [ 214.114594][ T8367] xskq_create+0xfb/0x1d0 [ 214.114611][ T8367] xsk_setsockopt+0x8b0/0xac0 [ 214.114635][ T8367] ? __pfx_xsk_setsockopt+0x10/0x10 [ 214.114659][ T8367] ? __pfx_aa_sk_perm+0x10/0x10 [ 214.114692][ T8367] ? bpf_lsm_socket_setsockopt+0x9/0x10 [ 214.114711][ T8367] ? __pfx_xsk_setsockopt+0x10/0x10 [ 214.114733][ T8367] do_sock_setsockopt+0x222/0x480 [ 214.114750][ T8367] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 214.114776][ T8367] ? __fget_light+0x173/0x210 [ 214.114801][ T8367] __sys_setsockopt+0x1a4/0x270 [ 214.114825][ T8367] ? __pfx___sys_setsockopt+0x10/0x10 [ 214.114849][ T8367] ? xfd_validate_state+0x5d/0x180 [ 214.114910][ T8367] __ia32_sys_setsockopt+0xbc/0x160 [ 214.114937][ T8367] ? lockdep_hardirqs_on+0x7c/0x110 [ 214.114961][ T8367] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 214.114986][ T8367] __do_fast_syscall_32+0x73/0x120 [ 214.115014][ T8367] do_fast_syscall_32+0x32/0x80 [ 214.115033][ T8367] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 214.115053][ T8367] RIP: 0023:0xf73fe579 [ 214.115068][ T8367] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 214.115085][ T8367] RSP: 002b:00000000f56d556c EFLAGS: 00000296 ORIG_RAX: 000000000000016e [ 214.115115][ T8367] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 000000000000011b [ 214.115127][ T8367] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000020 [ 214.115138][ T8367] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 214.115149][ T8367] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 214.115156][ T8367] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 214.115184][ T8367] [ 214.115205][ T8367] Mem-Info: [ 214.115214][ T8367] active_anon:13283 inactive_anon:32 isolated_anon:0 [ 214.115214][ T8367] active_file:11188 inactive_file:34339 isolated_file:0 [ 214.115214][ T8367] unevictable:768 dirty:351 writeback:0 [ 214.115214][ T8367] slab_reclaimable:5794 slab_unreclaimable:52276 [ 214.115214][ T8367] mapped:17775 shmem:10509 pagetables:670 [ 214.115214][ T8367] sec_pagetables:317 bounce:0 [ 214.115214][ T8367] kernel_misc_reclaimable:0 [ 214.115214][ T8367] free:77149 free_pcp:5524 free_cma:0 [ 214.115260][ T8367] Node 0 active_anon:0kB inactive_anon:128kB active_file:88kB inactive_file:84kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:612kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9208kB pagetables:1012kB sec_pagetables:1196kB all_unreclaimable? no [ 214.115301][ T8367] Node 1 active_anon:53132kB inactive_anon:0kB active_file:44664kB inactive_file:137272kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:70488kB dirty:1396kB writeback:0kB shmem:40500kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:1976kB pagetables:1668kB sec_pagetables:72kB all_unreclaimable? no [ 214.115346][ T8367] Node 0 DMA free:948kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:72kB local_pcp:40kB free_cma:0kB [ 214.115386][ T8367] lowmem_reserve[]: 0 275 0 0 0 [ 214.115416][ T8367] Node 0 DMA32 free:21288kB boost:0kB min:14004kB low:17504kB high:21004kB reserved_highatomic:4096KB active_anon:0kB inactive_anon:128kB active_file:160kB inactive_file:12kB unevictable:1536kB writepending:8kB present:1032192kB managed:308888kB mlocked:0kB bounce:0kB free_pcp:1928kB local_pcp:1400kB free_cma:0kB [ 214.115459][ T8367] lowmem_reserve[]: 0 0 0 0 0 [ 214.115492][ T8367] Node 1 DMA32 free:286360kB boost:0kB min:47044kB low:58804kB high:70564kB reserved_highatomic:0KB active_anon:53132kB inactive_anon:0kB active_file:44664kB inactive_file:137272kB unevictable:1536kB writepending:1396kB present:1048436kB managed:946208kB mlocked:0kB bounce:0kB free_pcp:20096kB local_pcp:12796kB free_cma:0kB [ 214.115538][ T8367] lowmem_reserve[]: 0 0 0 0 0 [ 214.115575][ T8367] Node 0 DMA: 9*4kB (U) 4*8kB (U) 3*16kB (U) 26*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 948kB [ 214.115697][ T8367] Node 0 DMA32: 98*4kB (UMH) 54*8kB (UMH) 27*16kB (UMEH) 48*32kB (UMEH) 37*64kB (UMEH) 18*128kB (UMEH) 6*256kB (M) 10*512kB (UM) 5*1024kB (UM) 1*2048kB (M) 0*4096kB = 21288kB [ 214.115854][ T8367] Node 1 DMA32: 122*4kB (M) 285*8kB (UME) 379*16kB (UME) 178*32kB (UME) 111*64kB (UME) 90*128kB (UME) 71*256kB (UME) 47*512kB (UME) 24*1024kB (UME) 7*2048kB (UM) 42*4096kB (UM) = 286336kB [ 214.116021][ T8367] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 214.116037][ T8367] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 214.116052][ T8367] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 214.116068][ T8367] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 214.116083][ T8367] 56684 total pagecache pages [ 214.116090][ T8367] 662 pages in swap cache [ 214.116098][ T8367] Free swap = 114792kB [ 214.116105][ T8367] Total swap = 124996kB [ 214.116112][ T8367] 524155 pages RAM [ 214.116119][ T8367] 0 pages HighMem/MovableOnly [ 214.116126][ T8367] 206541 pages reserved [ 214.116133][ T8367] 0 pages cma reserved [ 214.229119][ T8371] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.809'. [ 214.685603][ T8376] xt_CT: You must specify a L4 protocol and not use inversions on it [ 214.690601][ T8376] netlink: 20 bytes leftover after parsing attributes in process `syz.2.810'. [ 214.698393][ T8376] xt_CT: You must specify a L4 protocol and not use inversions on it [ 214.817217][ T8377] xt_CT: You must specify a L4 protocol and not use inversions on it [ 214.832749][ T8377] netlink: 20 bytes leftover after parsing attributes in process `syz.0.811'. [ 215.446198][ T8382] netlink: 4 bytes leftover after parsing attributes in process `syz.1.812'. [ 215.452584][ T8382] netlink: 12 bytes leftover after parsing attributes in process `syz.1.812'. [ 216.501358][ T25] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 216.721424][ T25] usb 6-1: Using ep0 maxpacket: 8 [ 216.726515][ T25] usb 6-1: config 0 has no interfaces? [ 216.731972][ T8400] netlink: 'syz.0.819': attribute type 1 has an invalid length. [ 216.738775][ T8400] netlink: 'syz.0.819': attribute type 4 has an invalid length. [ 216.744873][ T8400] netlink: 15334 bytes leftover after parsing attributes in process `syz.0.819'. [ 216.756000][ T25] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 216.760871][ T25] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 216.764424][ T25] usb 6-1: Product: syz [ 216.766607][ T25] usb 6-1: Manufacturer: syz [ 216.768730][ T25] usb 6-1: SerialNumber: syz [ 216.783474][ T25] usb 6-1: config 0 descriptor?? [ 217.335858][ T8409] xt_CT: You must specify a L4 protocol and not use inversions on it [ 217.346526][ T8409] netlink: 20 bytes leftover after parsing attributes in process `syz.2.821'. [ 217.353309][ T8409] xt_CT: You must specify a L4 protocol and not use inversions on it [ 217.365790][ T39] kauditd_printk_skb: 68 callbacks suppressed [ 217.365802][ T39] audit: type=1326 audit(1725510689.854:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8407 comm="syz.2.821" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 217.389682][ T39] audit: type=1326 audit(1725510689.854:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8407 comm="syz.2.821" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 217.400563][ T39] audit: type=1326 audit(1725510689.854:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8407 comm="syz.2.821" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 217.410045][ T39] audit: type=1326 audit(1725510689.854:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8407 comm="syz.2.821" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 217.420280][ T39] audit: type=1326 audit(1725510689.854:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8407 comm="syz.2.821" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 217.431882][ T39] audit: type=1326 audit(1725510689.854:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8407 comm="syz.2.821" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 217.440744][ T39] audit: type=1326 audit(1725510689.854:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8407 comm="syz.2.821" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 217.450695][ T39] audit: type=1326 audit(1725510689.864:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8407 comm="syz.2.821" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 217.461129][ T39] audit: type=1326 audit(1725510689.864:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8407 comm="syz.2.821" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 217.471443][ T39] audit: type=1326 audit(1725510689.864:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8407 comm="syz.2.821" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 218.050880][ T8413] overlayfs: failed to resolve './file0': -2 [ 218.209232][ T8422] FAULT_INJECTION: forcing a failure. [ 218.209232][ T8422] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 218.215169][ T8422] CPU: 3 UID: 0 PID: 8422 Comm: syz.0.825 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 218.223654][ T8422] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 218.229683][ T8422] Call Trace: [ 218.231218][ T8422] [ 218.232627][ T8422] dump_stack_lvl+0x16c/0x1f0 [ 218.234858][ T8422] should_fail_ex+0x497/0x5b0 [ 218.237060][ T8422] _copy_to_user+0x30/0xc0 [ 218.239078][ T8422] sk_getsockopt+0x142d/0x3330 [ 218.241853][ T8422] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 218.244234][ T8422] ? __pfx_sk_getsockopt+0x10/0x10 [ 218.246432][ T8422] ? __pfx___lock_acquire+0x10/0x10 [ 218.248474][ T8422] ? hlock_class+0x4e/0x130 [ 218.250362][ T8422] ? __pfx___might_resched+0x10/0x10 [ 218.252372][ T8422] ? __pfx___lock_acquire+0x10/0x10 [ 218.254720][ T8422] ? __pfx_lock_release+0x10/0x10 [ 218.256952][ T8422] ? aa_sk_perm+0x2f5/0xb20 [ 218.258889][ T8422] ? __pfx_aa_sk_perm+0x10/0x10 [ 218.262215][ T8422] ? find_held_lock+0x2d/0x110 [ 218.264250][ T8422] do_sock_getsockopt+0x597/0x7c0 [ 218.266344][ T8422] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 218.268700][ T8422] ? __fget_files+0x256/0x400 [ 218.270621][ T8422] ? __fget_light+0x173/0x210 [ 218.272555][ T8422] __sys_getsockopt+0x1a1/0x270 [ 218.274584][ T8422] ? __pfx___sys_getsockopt+0x10/0x10 [ 218.276832][ T8422] ? fput+0x32/0x390 [ 218.278508][ T8422] ? ksys_write+0x1ab/0x260 [ 218.280353][ T8422] ? __pfx_ksys_write+0x10/0x10 [ 218.282344][ T8422] __ia32_sys_getsockopt+0xbc/0x160 [ 218.284479][ T8422] ? lockdep_hardirqs_on+0x7c/0x110 [ 218.286601][ T8422] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 218.289256][ T8422] __do_fast_syscall_32+0x73/0x120 [ 218.291485][ T8422] do_fast_syscall_32+0x32/0x80 [ 218.291985][ T30] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 218.293504][ T8422] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 218.299374][ T8422] RIP: 0023:0xf748e579 [ 218.301033][ T8422] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 218.308783][ T8422] RSP: 002b:00000000f578656c EFLAGS: 00000296 ORIG_RAX: 000000000000016d [ 218.312387][ T8422] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000001 [ 218.315829][ T8422] RDX: 0000000000000011 RSI: 0000000000000000 RDI: 0000000020000280 [ 218.319008][ T8422] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 218.322202][ T8422] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 218.325450][ T8422] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 218.328637][ T8422] [ 218.497361][ T30] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 218.502140][ T30] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 218.506100][ T30] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 218.514148][ T30] usb 7-1: config 0 descriptor?? [ 218.930142][ T30] keytouch 0003:0926:3333.0002: fixing up Keytouch IEC report descriptor [ 218.965705][ T30] input: HID 0926:3333 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0926:3333.0002/input/input6 [ 219.091745][ T30] keytouch 0003:0926:3333.0002: input,hidraw1: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.2-1/input0 [ 219.127012][ T8411] FAULT_INJECTION: forcing a failure. [ 219.127012][ T8411] name failslab, interval 1, probability 0, space 0, times 0 [ 219.135619][ T8411] CPU: 3 UID: 0 PID: 8411 Comm: syz.2.822 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 219.140200][ T8411] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 219.145231][ T8411] Call Trace: [ 219.146639][ T8411] [ 219.147908][ T8411] dump_stack_lvl+0x16c/0x1f0 [ 219.149949][ T8411] should_fail_ex+0x497/0x5b0 [ 219.152145][ T8411] ? fs_reclaim_acquire+0xae/0x160 [ 219.154579][ T8411] should_failslab+0xc2/0x120 [ 219.156458][ T8411] __kmalloc_noprof+0xcb/0x410 [ 219.158286][ T8411] ? __pfx_d_absolute_path+0x10/0x10 [ 219.160659][ T8411] tomoyo_encode2+0x100/0x3e0 [ 219.162582][ T8411] tomoyo_realpath_from_path+0x1a7/0x710 [ 219.164968][ T8411] tomoyo_path_number_perm+0x245/0x5b0 [ 219.168047][ T8411] ? tomoyo_path_number_perm+0x232/0x5b0 [ 219.170613][ T8411] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 219.173315][ T8411] ? __pfx_lock_release+0x10/0x10 [ 219.175697][ T8411] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 219.178315][ T8411] ? __fget_files+0x256/0x400 [ 219.180442][ T8411] security_file_ioctl_compat+0x75/0xc0 [ 219.182908][ T8411] __do_compat_sys_ioctl+0x5d/0x330 [ 219.185300][ T8411] __do_fast_syscall_32+0x73/0x120 [ 219.187611][ T8411] do_fast_syscall_32+0x32/0x80 [ 219.189780][ T8411] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 219.192925][ T8411] RIP: 0023:0xf7f85579 [ 219.194898][ T8411] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 219.203588][ T8411] RSP: 002b:00000000f5715514 EFLAGS: 00000292 ORIG_RAX: 0000000000000036 [ 219.207298][ T8411] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040085507 [ 219.210588][ T8411] RDX: 00000000f5715558 RSI: 00000000f740fff4 RDI: 00000000f57155a4 [ 219.214066][ T8411] RBP: 00000000f5716578 R08: 0000000000000000 R09: 0000000000000000 [ 219.217589][ T8411] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 219.221038][ T8411] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 219.225110][ T8411] [ 219.232980][ T8411] ERROR: Out of memory at tomoyo_realpath_from_path. [ 219.248397][ T25] usb 6-1: USB disconnect, device number 7 [ 219.249348][ T8431] can0: slcan on ttyprintk. [ 219.473821][ T1295] usb 7-1: USB disconnect, device number 7 [ 219.592825][ T8427] can0 (unregistered): slcan off ttyprintk. [ 219.701680][ T8447] xt_CT: You must specify a L4 protocol and not use inversions on it [ 219.709056][ T8447] netlink: 20 bytes leftover after parsing attributes in process `syz.0.830'. [ 219.728804][ T8447] xt_CT: You must specify a L4 protocol and not use inversions on it [ 219.813221][ T8452] overlayfs: failed to resolve './file0': -2 [ 220.058055][ T8459] overlayfs: failed to resolve './file0': -2 [ 220.064005][ T5363] Bluetooth: hci0: unexpected event for opcode 0x0c25 [ 221.671195][ T8493] FAULT_INJECTION: forcing a failure. [ 221.671195][ T8493] name failslab, interval 1, probability 0, space 0, times 0 [ 221.681506][ T8493] CPU: 1 UID: 0 PID: 8493 Comm: syz.1.841 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 221.685898][ T8493] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 221.690660][ T8493] Call Trace: [ 221.692156][ T8493] [ 221.693532][ T8493] dump_stack_lvl+0x16c/0x1f0 [ 221.695600][ T8493] should_fail_ex+0x497/0x5b0 [ 221.697635][ T8493] ? fs_reclaim_acquire+0xae/0x160 [ 221.699774][ T8493] should_failslab+0xc2/0x120 [ 221.701681][ T8493] kmem_cache_alloc_node_noprof+0x71/0x310 [ 221.704178][ T8493] ? __alloc_skb+0x2b3/0x380 [ 221.706228][ T8493] __alloc_skb+0x2b3/0x380 [ 221.708230][ T8493] ? __pfx___alloc_skb+0x10/0x10 [ 221.710473][ T8493] ? __pfx___might_resched+0x10/0x10 [ 221.712891][ T8493] netlink_alloc_large_skb+0x69/0x130 [ 221.715260][ T8493] netlink_sendmsg+0x689/0xd70 [ 221.717159][ T8493] ? __pfx_netlink_sendmsg+0x10/0x10 [ 221.719434][ T8493] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 221.721852][ T8493] ____sys_sendmsg+0x9b4/0xb50 [ 221.723936][ T8493] ? __pfx_____sys_sendmsg+0x10/0x10 [ 221.726245][ T8493] ? get_compat_msghdr+0x11b/0x170 [ 221.728536][ T8493] ? __pfx___lock_acquire+0x10/0x10 [ 221.730863][ T8493] ___sys_sendmsg+0x135/0x1e0 [ 221.732975][ T8493] ? __pfx____sys_sendmsg+0x10/0x10 [ 221.735346][ T8493] ? ksys_write+0x21c/0x260 [ 221.737331][ T8493] ? __fget_light+0x173/0x210 [ 221.739206][ T8493] __sys_sendmsg+0x117/0x1f0 [ 221.741034][ T8493] ? __pfx___sys_sendmsg+0x10/0x10 [ 221.743128][ T8493] __do_fast_syscall_32+0x73/0x120 [ 221.745453][ T8493] do_fast_syscall_32+0x32/0x80 [ 221.747549][ T8493] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 221.750025][ T8493] RIP: 0023:0xf73fe579 [ 221.751617][ T8493] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 221.759499][ T8493] RSP: 002b:00000000f56d556c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 221.763207][ T8493] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000b80 [ 221.766268][ T8493] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 221.769033][ T8493] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 221.772128][ T8493] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 221.775651][ T8493] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 221.779143][ T8493] [ 221.836468][ T8492] can0: slcan on ttyprintk. [ 221.864264][ T8496] FAULT_INJECTION: forcing a failure. [ 221.864264][ T8496] name failslab, interval 1, probability 0, space 0, times 0 [ 221.869735][ T8496] CPU: 2 UID: 0 PID: 8496 Comm: syz.1.842 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 221.874278][ T8496] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 221.878918][ T8496] Call Trace: [ 221.880297][ T8496] [ 221.881589][ T8496] dump_stack_lvl+0x16c/0x1f0 [ 221.883671][ T8496] should_fail_ex+0x497/0x5b0 [ 221.885689][ T8496] ? fs_reclaim_acquire+0xae/0x160 [ 221.887859][ T8496] should_failslab+0xc2/0x120 [ 221.889847][ T8496] kmem_cache_alloc_node_noprof+0x71/0x310 [ 221.892394][ T8496] ? __alloc_skb+0x2b3/0x380 [ 221.894393][ T8496] __alloc_skb+0x2b3/0x380 [ 221.896287][ T8496] ? __pfx___alloc_skb+0x10/0x10 [ 221.898298][ T8496] ? __pfx___might_resched+0x10/0x10 [ 221.900314][ T8496] netlink_alloc_large_skb+0x69/0x130 [ 221.902576][ T8496] netlink_sendmsg+0x689/0xd70 [ 221.904443][ T8496] ? __pfx_netlink_sendmsg+0x10/0x10 [ 221.906669][ T8496] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 221.908898][ T8496] ____sys_sendmsg+0x9b4/0xb50 [ 221.911139][ T8496] ? __pfx_____sys_sendmsg+0x10/0x10 [ 221.913424][ T8496] ? get_compat_msghdr+0x11b/0x170 [ 221.915599][ T8496] ? __pfx___lock_acquire+0x10/0x10 [ 221.917760][ T8496] ___sys_sendmsg+0x135/0x1e0 [ 221.919791][ T8496] ? __pfx____sys_sendmsg+0x10/0x10 [ 221.922024][ T8496] ? ksys_write+0x21c/0x260 [ 221.924039][ T8496] ? __fget_light+0x173/0x210 [ 221.926072][ T8496] __sys_sendmsg+0x117/0x1f0 [ 221.928083][ T8496] ? __pfx___sys_sendmsg+0x10/0x10 [ 221.930134][ T8496] __do_fast_syscall_32+0x73/0x120 [ 221.932126][ T8496] do_fast_syscall_32+0x32/0x80 [ 221.933997][ T8496] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 221.936338][ T8496] RIP: 0023:0xf73fe579 [ 221.937856][ T8496] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 221.945630][ T8496] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 221.949070][ T8496] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000300 [ 221.952378][ T8496] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000 [ 221.956127][ T8496] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 221.959481][ T8496] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 221.962764][ T8496] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 221.966078][ T8496] [ 222.097030][ T8502] overlayfs: failed to resolve './file0': -2 [ 222.121474][ T8482] can0 (unregistered): slcan off ttyprintk. [ 222.702560][ T8522] xt_CT: You must specify a L4 protocol and not use inversions on it [ 222.736586][ T8522] netlink: 20 bytes leftover after parsing attributes in process `syz.1.845'. [ 222.768226][ T8522] xt_CT: You must specify a L4 protocol and not use inversions on it [ 222.776282][ T39] kauditd_printk_skb: 68 callbacks suppressed [ 222.776298][ T39] audit: type=1326 audit(1725510695.264:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.845" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000 [ 222.789213][ T39] audit: type=1326 audit(1725510695.274:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.845" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf73fe579 code=0x7ffc0000 [ 222.811792][ T39] audit: type=1326 audit(1725510695.294:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.845" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000 [ 222.828954][ T39] audit: type=1326 audit(1725510695.314:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.845" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf73fe579 code=0x7ffc0000 [ 222.832881][ T8525] 9pnet_virtio: no channels available for device syz [ 222.858038][ T39] audit: type=1326 audit(1725510695.314:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.845" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000 [ 222.891810][ T39] audit: type=1326 audit(1725510695.314:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.845" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf73fe579 code=0x7ffc0000 [ 222.920033][ T39] audit: type=1326 audit(1725510695.314:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.845" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000 [ 222.950414][ T39] audit: type=1326 audit(1725510695.314:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.845" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf73fe579 code=0x7ffc0000 [ 222.991366][ T39] audit: type=1326 audit(1725510695.314:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.845" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000 [ 223.047284][ T39] audit: type=1326 audit(1725510695.314:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.845" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000 [ 223.925247][ T8550] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 224.330154][ T8556] xt_CT: You must specify a L4 protocol and not use inversions on it [ 224.391261][ T8556] netlink: 20 bytes leftover after parsing attributes in process `syz.3.856'. [ 224.408291][ T8556] xt_CT: You must specify a L4 protocol and not use inversions on it [ 224.474466][ T8557] can0: slcan on ttyprintk. [ 224.555180][ T8557] warn_alloc: 2 callbacks suppressed [ 224.555196][ T8557] syz.0.854: vmalloc error: size 1842069504, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1 [ 224.568028][ T8557] CPU: 3 UID: 0 PID: 8557 Comm: syz.0.854 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 224.575453][ T8557] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 224.581104][ T8557] Call Trace: [ 224.583458][ T8557] [ 224.585307][ T8557] dump_stack_lvl+0x16c/0x1f0 [ 224.588069][ T8557] warn_alloc+0x24d/0x3a0 [ 224.590510][ T8557] ? __pfx_warn_alloc+0x10/0x10 [ 224.592697][ T8557] ? stack_depot_save_flags+0x28/0x900 [ 224.595018][ T8557] ? __pfx_vb2_vmalloc_alloc+0x10/0x10 [ 224.599232][ T8557] ? kasan_save_stack+0x42/0x60 [ 224.602223][ T8557] ? kasan_save_stack+0x33/0x60 [ 224.605265][ T8557] ? kasan_save_track+0x14/0x30 [ 224.608311][ T8557] ? __kasan_kmalloc+0xaa/0xb0 [ 224.611213][ T8557] ? vb2_vmalloc_alloc+0xe2/0x3d0 [ 224.613831][ T8557] ? __vb2_queue_alloc+0x896/0x1220 [ 224.616440][ T8557] ? vb2_create_bufs+0x566/0x780 [ 224.618573][ T8557] ? vb2_ioctl_create_bufs+0x24a/0x3f0 [ 224.620929][ T8557] ? vidioc_create_bufs+0x7d/0xf0 [ 224.623167][ T8557] __vmalloc_node_range_noprof+0x10a3/0x14e0 [ 224.625739][ T8557] ? vb2_vmalloc_alloc+0x11e/0x3d0 [ 224.628477][ T8557] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 224.631539][ T8557] ? vb2_vmalloc_alloc+0x11e/0x3d0 [ 224.634032][ T8557] ? __pfx_vb2_vmalloc_alloc+0x10/0x10 [ 224.636852][ T8557] vmalloc_user_noprof+0x6b/0x90 [ 224.639473][ T8557] ? vb2_vmalloc_alloc+0x11e/0x3d0 [ 224.641745][ T8557] vb2_vmalloc_alloc+0x11e/0x3d0 [ 224.644149][ T8557] ? __pfx_vb2_vmalloc_alloc+0x10/0x10 [ 224.646864][ T8557] __vb2_queue_alloc+0x896/0x1220 [ 224.649391][ T8557] vb2_core_create_bufs+0x558/0xab0 [ 224.651991][ T8557] ? __pfx_vbi_out_queue_setup+0x10/0x10 [ 224.654648][ T8557] ? __pfx_vb2_core_create_bufs+0x10/0x10 [ 224.657676][ T8557] vb2_create_bufs+0x566/0x780 [ 224.660188][ T8557] ? __pfx_vb2_create_bufs+0x10/0x10 [ 224.662843][ T8557] ? __mutex_lock+0x1a6/0x9c0 [ 224.665556][ T8557] vb2_ioctl_create_bufs+0x24a/0x3f0 [ 224.668539][ T8557] ? __pfx___mutex_lock+0x10/0x10 [ 224.671436][ T8557] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 224.674709][ T8557] vidioc_create_bufs+0x7d/0xf0 [ 224.676843][ T8557] v4l_create_bufs+0x198/0x270 [ 224.679247][ T8557] __video_do_ioctl+0xaf9/0xf00 [ 224.681408][ T8557] ? __pfx___video_do_ioctl+0x10/0x10 [ 224.683999][ T8557] ? trace_kmalloc+0x2d/0xe0 [ 224.686426][ T8557] ? __kmalloc_noprof+0x207/0x410 [ 224.689103][ T8557] ? __sanitizer_cov_trace_switch+0x41/0x90 [ 224.692211][ T8557] video_usercopy+0x426/0x1500 [ 224.694659][ T8557] ? __pfx___video_do_ioctl+0x10/0x10 [ 224.697096][ T8557] ? __pfx_video_usercopy+0x10/0x10 [ 224.699425][ T8557] v4l2_ioctl+0x1c0/0x260 [ 224.701308][ T8557] v4l2_compat_ioctl32+0x21d/0x2c0 [ 224.703740][ T8557] ? __pfx_v4l2_compat_ioctl32+0x10/0x10 [ 224.706599][ T8557] __do_compat_sys_ioctl+0x2c3/0x330 [ 224.709195][ T8557] __do_fast_syscall_32+0x73/0x120 [ 224.711905][ T8557] do_fast_syscall_32+0x32/0x80 [ 224.714179][ T8557] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 224.717197][ T8557] RIP: 0023:0xf748e579 [ 224.718926][ T8557] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 224.726506][ T8557] RSP: 002b:00000000f552156c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 224.729977][ T8557] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000c0f8565c [ 224.733237][ T8557] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 224.736854][ T8557] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 224.740202][ T8557] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 224.743810][ T8557] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 224.747146][ T8557] [ 224.776753][ T8557] Mem-Info: [ 224.778642][ T8557] active_anon:22310 inactive_anon:63 isolated_anon:0 [ 224.778642][ T8557] active_file:11211 inactive_file:34365 isolated_file:0 [ 224.778642][ T8557] unevictable:768 dirty:298 writeback:0 [ 224.778642][ T8557] slab_reclaimable:5800 slab_unreclaimable:52564 [ 224.778642][ T8557] mapped:21990 shmem:13349 pagetables:730 [ 224.778642][ T8557] sec_pagetables:318 bounce:0 [ 224.778642][ T8557] kernel_misc_reclaimable:0 [ 224.778642][ T8557] free:62971 free_pcp:9981 free_cma:0 [ 224.792225][ T8564] FAULT_INJECTION: forcing a failure. [ 224.792225][ T8564] name failslab, interval 1, probability 0, space 0, times 0 [ 224.811355][ T8564] CPU: 1 UID: 0 PID: 8564 Comm: syz.2.857 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 224.816679][ T8564] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 224.820894][ T8564] Call Trace: [ 224.822358][ T8564] [ 224.823604][ T8564] dump_stack_lvl+0x16c/0x1f0 [ 224.825498][ T8564] should_fail_ex+0x497/0x5b0 [ 224.827507][ T8564] ? fs_reclaim_acquire+0xae/0x160 [ 224.829828][ T8564] should_failslab+0xc2/0x120 [ 224.831973][ T8564] __kmalloc_noprof+0xcb/0x410 [ 224.834029][ T8564] tomoyo_encode2+0x100/0x3e0 [ 224.836491][ T8564] tomoyo_realpath_from_path+0x1a7/0x710 [ 224.839424][ T8564] ? tomoyo_profile+0x47/0x60 [ 224.841421][ T8557] Node 0 active_anon:1044kB inactive_anon:176kB active_file:0kB inactive_file:180kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:1400kB dirty:172kB writeback:0kB shmem:2344kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9272kB pagetables:1200kB sec_pagetables:1196kB all_unreclaimable? no [ 224.841627][ T8564] tomoyo_path_number_perm+0x245/0x5b0 [ 224.858089][ T8564] ? tomoyo_path_number_perm+0x232/0x5b0 [ 224.860699][ T8564] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 224.863209][ T8564] ? __pfx_lock_release+0x10/0x10 [ 224.865436][ T8564] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 224.868187][ T8564] ? __fget_files+0x256/0x400 [ 224.870286][ T8564] security_file_ioctl_compat+0x75/0xc0 [ 224.872618][ T8564] __do_compat_sys_ioctl+0x5d/0x330 [ 224.874783][ T8564] __do_fast_syscall_32+0x73/0x120 [ 224.877146][ T8564] do_fast_syscall_32+0x32/0x80 [ 224.879244][ T8564] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 224.882434][ T8564] RIP: 0023:0xf7f85579 [ 224.884200][ T8564] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 224.892033][ T8564] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 224.895644][ T8564] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000541b [ 224.899203][ T8564] RDX: 0000000020005e80 RSI: 0000000000000000 RDI: 0000000000000000 [ 224.902734][ T8564] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 224.906050][ T8564] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 224.909117][ T8564] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 224.912208][ T8564] [ 224.919160][ T8564] ERROR: Out of memory at tomoyo_realpath_from_path. [ 224.968365][ T8557] Node 1 active_anon:82960kB inactive_anon:0kB active_file:44844kB inactive_file:137280kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:85760kB dirty:1020kB writeback:0kB shmem:51052kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2012kB pagetables:1636kB sec_pagetables:76kB all_unreclaimable? no [ 224.999302][ T8557] Node 0 DMA free:932kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:188kB local_pcp:8kB free_cma:0kB [ 225.031694][ T8557] lowmem_reserve[]: 0 275 0 0 0 [ 225.033730][ T8557] Node 0 DMA32 free:20616kB boost:0kB min:14004kB low:17504kB high:21004kB reserved_highatomic:4096KB active_anon:244kB inactive_anon:1052kB active_file:0kB inactive_file:180kB unevictable:1536kB writepending:172kB present:1032192kB managed:308888kB mlocked:0kB bounce:0kB free_pcp:1404kB local_pcp:648kB free_cma:0kB [ 225.053284][ T8557] lowmem_reserve[]: 0 0 0 0 0 [ 225.059915][ T8557] Node 1 DMA32 free:254620kB boost:0kB min:47044kB low:58804kB high:70564kB reserved_highatomic:0KB active_anon:78680kB inactive_anon:0kB active_file:44844kB inactive_file:137280kB unevictable:1536kB writepending:1020kB present:1048436kB managed:946208kB mlocked:0kB bounce:0kB free_pcp:24576kB local_pcp:1204kB free_cma:0kB [ 225.074847][ T5363] Bluetooth: hci0: unexpected event for opcode 0x0c25 [ 225.094429][ T8544] can0 (unregistered): slcan off ttyprintk. [ 225.101924][ T8557] lowmem_reserve[]: 0 0 0 0 0 [ 225.104490][ T8557] Node 0 DMA: 9*4kB (U) 4*8kB (U) 2*16kB (U) 26*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 932kB [ 225.181548][ T8557] Node 0 DMA32: 49*4kB (UMH) 51*8kB (UMH) 23*16kB (UMEH) 48*32kB (UEH) 35*64kB (UMEH) 18*128kB (UMEH) 6*256kB (M) 10*512kB (UM) 5*1024kB (UM) 1*2048kB (M) 0*4096kB = 20876kB [ 225.190519][ T8557] Node 1 DMA32: 67*4kB (UM) 33*8kB (UME) 68*16kB (UME) 284*32kB (UME) 78*64kB (UME) 116*128kB (UME) 55*256kB (UME) 40*512kB (UME) 15*1024kB (UME) 9*2048kB (UM) 39*4096kB (UM) = 258644kB [ 225.200256][ T8557] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 225.210438][ T8557] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 225.232099][ T8557] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 225.232121][ T8557] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 225.232138][ T8557] 59601 total pagecache pages [ 225.232146][ T8557] 691 pages in swap cache [ 225.232153][ T8557] Free swap = 115048kB [ 225.232160][ T8557] Total swap = 124996kB [ 225.232169][ T8557] 524155 pages RAM [ 225.232176][ T8557] 0 pages HighMem/MovableOnly [ 225.232183][ T8557] 206541 pages reserved [ 225.232190][ T8557] 0 pages cma reserved [ 225.697952][ T8590] xt_CT: You must specify a L4 protocol and not use inversions on it [ 225.738083][ T8590] netlink: 20 bytes leftover after parsing attributes in process `syz.3.861'. [ 225.753020][ T8590] xt_CT: You must specify a L4 protocol and not use inversions on it [ 226.039191][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.047378][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.050703][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.061383][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.066413][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.074407][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.078056][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.082201][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.086162][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.089410][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.093387][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.096760][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.100165][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.104237][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.109461][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.112928][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.116407][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.119810][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.123193][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.126083][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.129693][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.132744][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.135998][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.139277][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.143654][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.158229][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.161739][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.165218][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.168635][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.172780][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.176640][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.179944][ T30] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 226.206524][ T30] hid-generic 0000:0000:0000.0003: hidraw1: HID v0.00 Device [syz1] on syz0 [ 226.759601][ T8604] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 226.886008][ T5363] Bluetooth: hci1: unexpected event for opcode 0x0c25 [ 227.396517][ T8615] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 227.764902][ T8617] can0: slcan on ttyprintk. [ 227.785270][ T8619] FAULT_INJECTION: forcing a failure. [ 227.785270][ T8619] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 227.817294][ T8619] CPU: 0 UID: 0 PID: 8619 Comm: syz.3.872 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 227.821786][ T8619] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 227.826371][ T8619] Call Trace: [ 227.827827][ T8619] [ 227.829090][ T8619] dump_stack_lvl+0x16c/0x1f0 [ 227.830898][ T8619] should_fail_ex+0x497/0x5b0 [ 227.832980][ T8619] _copy_to_user+0x30/0xc0 [ 227.834929][ T8619] simple_read_from_buffer+0xd0/0x160 [ 227.837276][ T8619] proc_fail_nth_read+0x19e/0x280 [ 227.839473][ T8619] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 227.841816][ T8619] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 227.844257][ T8619] vfs_read+0x1d4/0xbd0 [ 227.846082][ T8619] ? __fdget_pos+0xeb/0x180 [ 227.848055][ T8619] ? __pfx_vfs_read+0x10/0x10 [ 227.850032][ T8619] ? __pfx___mutex_lock+0x10/0x10 [ 227.852113][ T8619] ? __fget_files+0x256/0x400 [ 227.854018][ T8619] ksys_read+0x12f/0x260 [ 227.855621][ T8619] ? __pfx_ksys_read+0x10/0x10 [ 227.858159][ T8619] __do_fast_syscall_32+0x73/0x120 [ 227.860216][ T8619] do_fast_syscall_32+0x32/0x80 [ 227.862367][ T8619] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 227.865165][ T8619] RIP: 0023:0xf7fd2579 [ 227.866992][ T8619] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 227.875290][ T8619] RSP: 002b:00000000f57665a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 227.878992][ T8619] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5766620 [ 227.882350][ T8619] RDX: 000000000000000f RSI: 00000000f745fff4 RDI: 0000000000000000 [ 227.885700][ T8619] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 227.889253][ T8619] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 227.892477][ T8619] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 227.895328][ T8619] [ 228.041354][ T8610] can0 (unregistered): slcan off ttyprintk. [ 228.615150][ T8646] FAULT_INJECTION: forcing a failure. [ 228.615150][ T8646] name failslab, interval 1, probability 0, space 0, times 0 [ 228.621826][ T8646] CPU: 1 UID: 0 PID: 8646 Comm: syz.0.878 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 228.626540][ T8646] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 228.631409][ T8646] Call Trace: [ 228.632990][ T8646] [ 228.634561][ T8646] dump_stack_lvl+0x16c/0x1f0 [ 228.636718][ T8646] should_fail_ex+0x497/0x5b0 [ 228.638900][ T8646] ? fs_reclaim_acquire+0xae/0x160 [ 228.641320][ T8646] should_failslab+0xc2/0x120 [ 228.643463][ T8646] __kmalloc_cache_noprof+0x6b/0x310 [ 228.646176][ T8646] ? tcp_sendmsg_fastopen+0x23a/0x700 [ 228.649101][ T8646] tcp_sendmsg_fastopen+0x23a/0x700 [ 228.651661][ T8646] tcp_sendmsg_locked+0x1fa9/0x3550 [ 228.653922][ T8646] ? __pfx_mark_lock+0x10/0x10 [ 228.655960][ T8646] ? lock_acquire+0x1b1/0x560 [ 228.657862][ T8646] ? find_held_lock+0x2d/0x110 [ 228.659751][ T8646] ? __pfx_tcp_sendmsg_locked+0x10/0x10 [ 228.662082][ T8646] ? tcp_sendmsg+0x20/0x50 [ 228.664215][ T8646] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 228.667153][ T8646] ? __local_bh_enable_ip+0xa4/0x120 [ 228.669360][ T8646] tcp_sendmsg+0x2e/0x50 [ 228.671163][ T8646] ? __pfx_tcp_sendmsg+0x10/0x10 [ 228.672924][ T8646] inet_sendmsg+0xb9/0x140 [ 228.675019][ T8646] __sys_sendto+0x42c/0x4e0 [ 228.676982][ T8646] ? __pfx___sys_sendto+0x10/0x10 [ 228.679324][ T8646] ? ksys_write+0x1ab/0x260 [ 228.681541][ T8646] ? __pfx_ksys_write+0x10/0x10 [ 228.683377][ T8646] __ia32_sys_sendto+0xdd/0x1b0 [ 228.685652][ T8646] ? lockdep_hardirqs_on+0x7c/0x110 [ 228.688019][ T8646] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 228.691710][ T8646] __do_fast_syscall_32+0x73/0x120 [ 228.694658][ T8646] do_fast_syscall_32+0x32/0x80 [ 228.696874][ T8646] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 228.700096][ T8646] RIP: 0023:0xf748e579 [ 228.702041][ T8646] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 228.710781][ T8646] RSP: 002b:00000000f576556c EFLAGS: 00000296 ORIG_RAX: 0000000000000171 [ 228.714572][ T8646] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000 [ 228.717925][ T8646] RDX: 0000000000000000 RSI: 00000000200007fd RDI: 0000000020000040 [ 228.721515][ T8646] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000 [ 228.725007][ T8646] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 228.728364][ T8646] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 228.731674][ T8646] [ 228.761806][ T5424] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 228.941384][ T5424] usb 6-1: Using ep0 maxpacket: 8 [ 228.952727][ T5424] usb 6-1: config 0 has no interfaces? [ 228.966385][ T5424] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 228.970545][ T5424] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 228.975073][ T5424] usb 6-1: Product: syz [ 228.977009][ T5424] usb 6-1: Manufacturer: syz [ 228.979292][ T5424] usb 6-1: SerialNumber: syz [ 228.984161][ T5424] usb 6-1: config 0 descriptor?? [ 230.057139][ T8656] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 230.211593][ T8655] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 230.748446][ T8662] xt_CT: You must specify a L4 protocol and not use inversions on it [ 230.777934][ T8662] netlink: 20 bytes leftover after parsing attributes in process `syz.3.882'. [ 230.804293][ T8662] xt_CT: You must specify a L4 protocol and not use inversions on it [ 230.828700][ T39] kauditd_printk_skb: 28 callbacks suppressed [ 230.828714][ T39] audit: type=1326 audit(1725510703.314:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.3.882" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 230.845297][ T39] audit: type=1326 audit(1725510703.334:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.3.882" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 230.860391][ T39] audit: type=1326 audit(1725510703.344:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.3.882" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 230.878082][ T39] audit: type=1326 audit(1725510703.344:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.3.882" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 230.896562][ T39] audit: type=1326 audit(1725510703.354:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.3.882" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 230.909150][ T39] audit: type=1326 audit(1725510703.354:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.3.882" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 230.932750][ T39] audit: type=1326 audit(1725510703.354:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.3.882" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 230.942515][ T39] audit: type=1326 audit(1725510703.364:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.3.882" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 230.967481][ T39] audit: type=1326 audit(1725510703.364:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.3.882" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 230.982509][ T39] audit: type=1326 audit(1725510703.364:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.3.882" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 231.504945][ T25] usb 6-1: USB disconnect, device number 8 [ 231.964788][ T8686] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 232.324691][ T8698] FAULT_INJECTION: forcing a failure. [ 232.324691][ T8698] name failslab, interval 1, probability 0, space 0, times 0 [ 232.333078][ T8698] CPU: 2 UID: 0 PID: 8698 Comm: syz.3.893 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 232.337904][ T8698] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 232.357388][ T8698] Call Trace: [ 232.358930][ T8698] [ 232.360505][ T8698] dump_stack_lvl+0x16c/0x1f0 [ 232.363012][ T8698] should_fail_ex+0x497/0x5b0 [ 232.365537][ T8698] ? fs_reclaim_acquire+0xae/0x160 [ 232.367739][ T8698] should_failslab+0xc2/0x120 [ 232.369700][ T8698] __kmalloc_noprof+0xcb/0x410 [ 232.371778][ T8698] ? __pfx_d_absolute_path+0x10/0x10 [ 232.374101][ T8698] tomoyo_encode2+0x100/0x3e0 [ 232.377948][ T8698] tomoyo_realpath_from_path+0x1a7/0x710 [ 232.380609][ T8698] tomoyo_path_number_perm+0x245/0x5b0 [ 232.384061][ T8698] ? tomoyo_path_number_perm+0x232/0x5b0 [ 232.386724][ T8698] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 232.389167][ T8698] ? __pfx_lock_release+0x10/0x10 [ 232.391474][ T8698] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 232.394230][ T8698] ? __fget_files+0x256/0x400 [ 232.396372][ T8698] security_file_ioctl_compat+0x75/0xc0 [ 232.399096][ T8698] __do_compat_sys_ioctl+0x5d/0x330 [ 232.401770][ T8698] __do_fast_syscall_32+0x73/0x120 [ 232.404311][ T8698] do_fast_syscall_32+0x32/0x80 [ 232.406724][ T8698] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 232.409942][ T8698] RIP: 0023:0xf7fd2579 [ 232.412038][ T8698] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 232.422014][ T8698] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 232.425689][ T8698] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000127f [ 232.428922][ T8698] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 232.435222][ T8698] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 232.438671][ T8698] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 232.442120][ T8698] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 232.445568][ T8698] [ 232.471214][ T8698] ERROR: Out of memory at tomoyo_realpath_from_path. [ 232.556686][ T8701] nftables ruleset with unbound set [ 232.874611][ T8705] can0: slcan on ttyprintk. [ 232.899284][ T8706] xt_CT: You must specify a L4 protocol and not use inversions on it [ 232.904087][ T8706] netlink: 20 bytes leftover after parsing attributes in process `syz.3.895'. [ 232.956658][ T8706] xt_CT: You must specify a L4 protocol and not use inversions on it [ 233.026702][ T8712] xt_CT: You must specify a L4 protocol and not use inversions on it [ 233.054510][ T8712] netlink: 20 bytes leftover after parsing attributes in process `syz.0.896'. [ 233.087372][ T8712] xt_CT: You must specify a L4 protocol and not use inversions on it [ 233.142565][ T8693] can0 (unregistered): slcan off ttyprintk. [ 234.301868][ T8733] overlayfs: failed to resolve './file0': -2 [ 234.946171][ T8744] xt_CT: You must specify a L4 protocol and not use inversions on it [ 234.995271][ T8744] netlink: 20 bytes leftover after parsing attributes in process `syz.2.902'. [ 235.003859][ T8744] xt_CT: You must specify a L4 protocol and not use inversions on it [ 235.802626][ T8753] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 236.670900][ T8766] warn_alloc: 3 callbacks suppressed [ 236.670916][ T8766] syz.2.905: vmalloc error: size 1842069504, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1 [ 236.686584][ T8766] CPU: 1 UID: 0 PID: 8766 Comm: syz.2.905 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 236.691756][ T8766] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 236.707692][ T8766] Call Trace: [ 236.709003][ T8766] [ 236.710198][ T8766] dump_stack_lvl+0x16c/0x1f0 [ 236.713609][ T8766] warn_alloc+0x24d/0x3a0 [ 236.715460][ T8766] ? __pfx_warn_alloc+0x10/0x10 [ 236.717704][ T8766] ? stack_depot_save_flags+0x28/0x900 [ 236.719740][ T8766] ? __pfx_vb2_vmalloc_alloc+0x10/0x10 [ 236.721715][ T8766] ? kasan_save_stack+0x42/0x60 [ 236.723779][ T8766] ? kasan_save_stack+0x33/0x60 [ 236.725929][ T8766] ? kasan_save_track+0x14/0x30 [ 236.728060][ T8766] ? __kasan_kmalloc+0xaa/0xb0 [ 236.730193][ T8766] ? vb2_vmalloc_alloc+0xe2/0x3d0 [ 236.732288][ T8766] ? __vb2_queue_alloc+0x896/0x1220 [ 236.734627][ T8766] ? vb2_create_bufs+0x566/0x780 [ 236.736856][ T8766] ? vb2_ioctl_create_bufs+0x24a/0x3f0 [ 236.739080][ T8766] ? vidioc_create_bufs+0x7d/0xf0 [ 236.742009][ T8766] __vmalloc_node_range_noprof+0x10a3/0x14e0 [ 236.744791][ T8766] ? vb2_vmalloc_alloc+0x11e/0x3d0 [ 236.747152][ T8766] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 236.749971][ T8766] ? vb2_vmalloc_alloc+0x11e/0x3d0 [ 236.753721][ T8766] ? __pfx_vb2_vmalloc_alloc+0x10/0x10 [ 236.756464][ T8766] vmalloc_user_noprof+0x6b/0x90 [ 236.758747][ T8766] ? vb2_vmalloc_alloc+0x11e/0x3d0 [ 236.761360][ T8766] vb2_vmalloc_alloc+0x11e/0x3d0 [ 236.763500][ T8766] ? __pfx_vb2_vmalloc_alloc+0x10/0x10 [ 236.766095][ T8766] __vb2_queue_alloc+0x896/0x1220 [ 236.768586][ T8766] vb2_core_create_bufs+0x558/0xab0 [ 236.770958][ T8766] ? __pfx_vbi_out_queue_setup+0x10/0x10 [ 236.773495][ T8766] ? __pfx_vb2_core_create_bufs+0x10/0x10 [ 236.776039][ T8767] xt_CT: You must specify a L4 protocol and not use inversions on it [ 236.776251][ T8766] vb2_create_bufs+0x566/0x780 [ 236.782585][ T8766] ? __pfx_vb2_create_bufs+0x10/0x10 [ 236.785191][ T8766] ? __mutex_lock+0x1a6/0x9c0 [ 236.787120][ T8766] vb2_ioctl_create_bufs+0x24a/0x3f0 [ 236.789247][ T8766] ? __pfx___mutex_lock+0x10/0x10 [ 236.791322][ T8766] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 236.791351][ T8766] vidioc_create_bufs+0x7d/0xf0 [ 236.791378][ T8766] v4l_create_bufs+0x198/0x270 [ 236.791403][ T8766] __video_do_ioctl+0xaf9/0xf00 [ 236.791432][ T8766] ? __pfx___video_do_ioctl+0x10/0x10 [ 236.807607][ T8767] netlink: 20 bytes leftover after parsing attributes in process `syz.3.907'. [ 236.807866][ T8766] ? trace_kmalloc+0x2d/0xe0 [ 236.807897][ T8766] ? __kmalloc_noprof+0x207/0x410 [ 236.807916][ T8766] ? __sanitizer_cov_trace_switch+0x41/0x90 [ 236.807943][ T8766] video_usercopy+0x426/0x1500 [ 236.822755][ T8766] ? __pfx___video_do_ioctl+0x10/0x10 [ 236.825153][ T8767] xt_CT: You must specify a L4 protocol and not use inversions on it [ 236.828603][ T8766] ? __pfx_video_usercopy+0x10/0x10 [ 236.828643][ T8766] ? sockfd_lookup_light+0x126/0x180 [ 236.828667][ T8766] v4l2_ioctl+0x1c0/0x260 [ 236.828692][ T8766] v4l2_compat_ioctl32+0x21d/0x2c0 [ 236.828714][ T8766] ? __pfx_v4l2_compat_ioctl32+0x10/0x10 [ 236.840255][ T8766] __do_compat_sys_ioctl+0x2c3/0x330 [ 236.842530][ T8766] __do_fast_syscall_32+0x73/0x120 [ 236.844733][ T8766] do_fast_syscall_32+0x32/0x80 [ 236.847069][ T8766] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 236.849503][ T8766] RIP: 0023:0xf7f85579 [ 236.851700][ T8766] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 236.862247][ T8766] RSP: 002b:00000000f54b156c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 236.865511][ T8766] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000c0f8565c [ 236.868917][ T8766] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 236.874035][ T8766] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 236.877307][ T8766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 236.880730][ T8766] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 236.884134][ T8766] [ 236.886026][ T39] kauditd_printk_skb: 102 callbacks suppressed [ 236.886038][ T39] audit: type=1326 audit(1725510709.344:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.3.907" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 236.898095][ T39] audit: type=1326 audit(1725510709.344:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.3.907" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 236.908242][ T39] audit: type=1326 audit(1725510709.354:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.3.907" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 236.921330][ T8766] Mem-Info: [ 236.922872][ T8766] active_anon:25997 inactive_anon:59 isolated_anon:0 [ 236.922872][ T8766] active_file:11374 inactive_file:34325 isolated_file:0 [ 236.922872][ T8766] unevictable:768 dirty:812 writeback:0 [ 236.922872][ T8766] slab_reclaimable:5791 slab_unreclaimable:52808 [ 236.922872][ T8766] mapped:21835 shmem:13359 pagetables:720 [ 236.922872][ T8766] sec_pagetables:318 bounce:0 [ 236.922872][ T8766] kernel_misc_reclaimable:0 [ 236.922872][ T8766] free:64187 free_pcp:4672 free_cma:0 [ 236.943785][ T39] audit: type=1326 audit(1725510709.354:1035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.3.907" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 236.953066][ T39] audit: type=1326 audit(1725510709.354:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.3.907" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 236.962298][ T39] audit: type=1326 audit(1725510709.354:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.3.907" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 236.972001][ T8766] Node 0 active_anon:424kB inactive_anon:44kB active_file:40kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:596kB dirty:168kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9208kB pagetables:988kB sec_pagetables:1196kB all_unreclaimable? no [ 236.985648][ T39] audit: type=1326 audit(1725510709.354:1038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.3.907" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 236.994267][ T39] audit: type=1326 audit(1725510709.354:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.3.907" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 237.004267][ T8766] Node 1 active_anon:107316kB inactive_anon:0kB active_file:45304kB inactive_file:137312kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:86744kB dirty:3080kB writeback:0kB shmem:51900kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2308kB pagetables:1908kB sec_pagetables:76kB all_unreclaimable? no [ 237.018470][ T39] audit: type=1326 audit(1725510709.364:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.3.907" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 237.026789][ T39] audit: type=1326 audit(1725510709.364:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.3.907" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 237.035936][ T8766] Node 0 DMA free:932kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:184kB local_pcp:128kB free_cma:0kB [ 237.046263][ T8766] lowmem_reserve[]: 0 275 0 0 0 [ 237.048232][ T8766] Node 0 DMA32 free:21560kB boost:0kB min:14004kB low:17504kB high:21004kB reserved_highatomic:4096KB active_anon:280kB inactive_anon:188kB active_file:0kB inactive_file:180kB unevictable:1536kB writepending:168kB present:1032192kB managed:308888kB mlocked:0kB bounce:0kB free_pcp:2840kB local_pcp:2144kB free_cma:0kB [ 237.063124][ T8766] lowmem_reserve[]: 0 0 0 0 0 [ 237.065431][ T8766] Node 1 DMA32 free:225972kB boost:0kB min:47044kB low:58804kB high:70564kB reserved_highatomic:0KB active_anon:109276kB inactive_anon:0kB active_file:45304kB inactive_file:137312kB unevictable:1536kB writepending:3080kB present:1048436kB managed:946208kB mlocked:0kB bounce:0kB free_pcp:18476kB local_pcp:2000kB free_cma:0kB [ 237.082848][ T8766] lowmem_reserve[]: 0 0 0 0 0 [ 237.085816][ T8766] Node 0 DMA: 5*4kB (U) 6*8kB (U) 2*16kB (U) 26*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 932kB [ 237.093080][ T8766] Node 0 DMA32: 55*4kB (UH) 58*8kB (UMH) 31*16kB (UMEH) 96*32kB (UMEH) 25*64kB (UMEH) 17*128kB (UMEH) 6*256kB (M) 10*512kB (UM) 5*1024kB (UM) 1*2048kB (M) 0*4096kB = 21852kB [ 237.102739][ T8766] Node 1 DMA32: 3*4kB (UME) 20*8kB (UME) 7*16kB (UME) 6*32kB (E) 8*64kB (UME) 10*128kB (UE) 40*256kB (UE) 33*512kB (UME) 14*1024kB (UE) 7*2048kB (UM) 40*4096kB (UM) = 221916kB [ 237.112239][ T8766] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 237.116501][ T8766] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 237.121684][ T8766] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 237.125940][ T8766] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 237.130206][ T8766] 59727 total pagecache pages [ 237.132714][ T8766] 691 pages in swap cache [ 237.134806][ T8766] Free swap = 115304kB [ 237.136680][ T8766] Total swap = 124996kB [ 237.138842][ T8766] 524155 pages RAM [ 237.140673][ T8766] 0 pages HighMem/MovableOnly [ 237.143195][ T8766] 206541 pages reserved [ 237.145102][ T8766] 0 pages cma reserved [ 237.381886][ T8771] overlayfs: failed to resolve './file0': -2 [ 237.442964][ T8772] FAULT_INJECTION: forcing a failure. [ 237.442964][ T8772] name failslab, interval 1, probability 0, space 0, times 0 [ 237.452900][ T8772] CPU: 2 UID: 0 PID: 8772 Comm: syz.2.908 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 237.457360][ T8772] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 237.461865][ T8772] Call Trace: [ 237.463673][ T8772] [ 237.465853][ T8772] dump_stack_lvl+0x16c/0x1f0 [ 237.468229][ T8772] should_fail_ex+0x497/0x5b0 [ 237.470270][ T8772] ? fs_reclaim_acquire+0xae/0x160 [ 237.472596][ T8772] should_failslab+0xc2/0x120 [ 237.474744][ T8772] kmem_cache_alloc_node_noprof+0x71/0x310 [ 237.477189][ T8772] ? __alloc_skb+0x2b3/0x380 [ 237.479307][ T8772] __alloc_skb+0x2b3/0x380 [ 237.481658][ T8772] ? __pfx___alloc_skb+0x10/0x10 [ 237.484252][ T8772] ? __pfx___might_resched+0x10/0x10 [ 237.486785][ T8772] netlink_alloc_large_skb+0x69/0x130 [ 237.489114][ T8772] netlink_sendmsg+0x689/0xd70 [ 237.491534][ T8772] ? __pfx_netlink_sendmsg+0x10/0x10 [ 237.493736][ T8772] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 237.495986][ T8772] ____sys_sendmsg+0x9b4/0xb50 [ 237.498116][ T8772] ? __pfx_____sys_sendmsg+0x10/0x10 [ 237.500342][ T8772] ? get_compat_msghdr+0x11b/0x170 [ 237.502646][ T8772] ? __pfx___lock_acquire+0x10/0x10 [ 237.504911][ T8772] ___sys_sendmsg+0x135/0x1e0 [ 237.507096][ T8772] ? __pfx____sys_sendmsg+0x10/0x10 [ 237.509421][ T8772] ? ksys_write+0x21c/0x260 [ 237.511465][ T8772] ? __fget_light+0x173/0x210 [ 237.513564][ T8772] __sys_sendmsg+0x117/0x1f0 [ 237.515578][ T8772] ? __pfx___sys_sendmsg+0x10/0x10 [ 237.517873][ T8772] __do_fast_syscall_32+0x73/0x120 [ 237.520210][ T8772] do_fast_syscall_32+0x32/0x80 [ 237.522649][ T8772] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 237.525520][ T8772] RIP: 0023:0xf7f85579 [ 237.527350][ T8772] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 237.535579][ T8772] RSP: 002b:00000000f56f556c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 237.539597][ T8772] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000640 [ 237.543615][ T8772] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 237.546943][ T8772] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 237.550428][ T8772] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 237.553960][ T8772] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 237.557540][ T8772] [ 237.698949][ T8779] netlink: 60 bytes leftover after parsing attributes in process `syz.3.911'. [ 237.713412][ T8779] Κό: entered promiscuous mode [ 238.274740][ T8790] xt_CT: You must specify a L4 protocol and not use inversions on it [ 238.280893][ T8790] netlink: 20 bytes leftover after parsing attributes in process `syz.2.914'. [ 238.311221][ T8790] xt_CT: You must specify a L4 protocol and not use inversions on it [ 238.656453][ T8793] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 239.186967][ T8800] overlayfs: failed to resolve './file0': -2 [ 239.521044][ T8809] netlink: 4096 bytes leftover after parsing attributes in process `syz.0.921'. [ 239.526140][ T8809] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 240.732571][ T8830] xt_CT: You must specify a L4 protocol and not use inversions on it [ 240.759990][ T8830] xt_CT: You must specify a L4 protocol and not use inversions on it [ 240.768782][ T8833] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 240.916245][ T8834] xt_CT: You must specify a L4 protocol and not use inversions on it [ 240.953347][ T8834] xt_CT: You must specify a L4 protocol and not use inversions on it [ 241.675657][ T8838] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.930'. [ 241.720534][ T8839] xt_CT: You must specify a L4 protocol and not use inversions on it [ 241.740492][ T8839] netlink: 20 bytes leftover after parsing attributes in process `syz.0.929'. [ 241.781156][ T8839] xt_CT: You must specify a L4 protocol and not use inversions on it [ 241.894435][ T39] kauditd_printk_skb: 75 callbacks suppressed [ 241.894450][ T39] audit: type=1326 audit(1725510714.384:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8842 comm="syz.2.932" exe="/syz-executor" sig=0 arch=40000003 syscall=332 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 241.909380][ T39] audit: type=1326 audit(1725510714.394:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8835 comm="syz.0.929" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 241.924636][ T39] audit: type=1326 audit(1725510714.394:1119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8835 comm="syz.0.929" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 241.940711][ T39] audit: type=1326 audit(1725510714.394:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8835 comm="syz.0.929" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 241.961995][ T39] audit: type=1326 audit(1725510714.394:1121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8842 comm="syz.2.932" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 241.987392][ T39] audit: type=1326 audit(1725510714.394:1122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8842 comm="syz.2.932" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 242.001544][ T39] audit: type=1326 audit(1725510714.404:1123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8842 comm="syz.2.932" exe="/syz-executor" sig=0 arch=40000003 syscall=55 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 242.011092][ T39] audit: type=1326 audit(1725510714.404:1124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8842 comm="syz.2.932" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 242.046569][ T39] audit: type=1326 audit(1725510714.404:1125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8842 comm="syz.2.932" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 242.059760][ T39] audit: type=1326 audit(1725510714.414:1126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8842 comm="syz.2.932" exe="/syz-executor" sig=0 arch=40000003 syscall=55 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 242.288896][ T8853] FAULT_INJECTION: forcing a failure. [ 242.288896][ T8853] name failslab, interval 1, probability 0, space 0, times 0 [ 242.294208][ T8853] CPU: 2 UID: 0 PID: 8853 Comm: syz.0.935 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 242.298614][ T8853] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 242.304524][ T8853] Call Trace: [ 242.306039][ T8853] [ 242.307320][ T8853] dump_stack_lvl+0x16c/0x1f0 [ 242.313809][ T8853] should_fail_ex+0x497/0x5b0 [ 242.315798][ T8853] ? fs_reclaim_acquire+0xae/0x160 [ 242.318331][ T8853] should_failslab+0xc2/0x120 [ 242.320627][ T8853] __kmalloc_noprof+0xcb/0x410 [ 242.329071][ T8853] ? __pfx_d_absolute_path+0x10/0x10 [ 242.331788][ T8853] tomoyo_encode2+0x100/0x3e0 [ 242.334221][ T8853] tomoyo_realpath_from_path+0x1a7/0x710 [ 242.336907][ T8853] tomoyo_path_number_perm+0x245/0x5b0 [ 242.339184][ T8853] ? tomoyo_path_number_perm+0x232/0x5b0 [ 242.341693][ T8853] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 242.344455][ T8853] ? __pfx_lock_release+0x10/0x10 [ 242.346645][ T8853] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 242.349124][ T8853] ? __fget_files+0x256/0x400 [ 242.351077][ T8853] security_file_ioctl_compat+0x75/0xc0 [ 242.353464][ T8853] __do_compat_sys_ioctl+0x5d/0x330 [ 242.355928][ T8853] __do_fast_syscall_32+0x73/0x120 [ 242.358216][ T8853] do_fast_syscall_32+0x32/0x80 [ 242.360700][ T8853] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 242.363638][ T8853] RIP: 0023:0xf748e579 [ 242.365510][ T8853] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 242.374492][ T8853] RSP: 002b:00000000f578656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 242.378145][ T8853] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000004008af24 [ 242.381628][ T8853] RDX: 00000000200001c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 242.385017][ T8853] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 242.388837][ T8853] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 242.392570][ T8853] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 242.396595][ T8853] [ 242.406622][ T8853] ERROR: Out of memory at tomoyo_realpath_from_path. [ 242.782190][ T8865] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.938'. [ 243.481127][ T8877] netlink: 300 bytes leftover after parsing attributes in process `syz.3.940'. [ 243.494324][ T8877] netlink: 300 bytes leftover after parsing attributes in process `syz.3.940'. [ 244.338896][ T8893] netlink: 'syz.2.947': attribute type 1 has an invalid length. [ 244.344941][ T8893] netlink: 'syz.2.947': attribute type 4 has an invalid length. [ 244.348418][ T8893] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.947'. [ 244.504622][ T8895] overlayfs: failed to resolve './file0': -2 [ 244.983798][ T1101] Bluetooth: (null): Invalid header checksum [ 244.987006][ T1101] Bluetooth: (null): Invalid header checksum [ 245.095065][ T13] Bluetooth: (null): Invalid header checksum [ 245.797858][ T8926] netlink: 300 bytes leftover after parsing attributes in process `syz.1.954'. [ 245.814406][ T8929] xt_CT: You must specify a L4 protocol and not use inversions on it [ 245.817534][ T8926] netlink: 300 bytes leftover after parsing attributes in process `syz.1.954'. [ 245.854118][ T8929] netlink: 20 bytes leftover after parsing attributes in process `syz.2.956'. [ 245.876280][ T8929] xt_CT: You must specify a L4 protocol and not use inversions on it [ 245.888713][ T8931] xt_CT: You must specify a L4 protocol and not use inversions on it [ 245.901696][ T8931] netlink: 20 bytes leftover after parsing attributes in process `syz.0.958'. [ 245.918217][ T8931] xt_CT: You must specify a L4 protocol and not use inversions on it [ 246.577124][ T8936] xt_CT: You must specify a L4 protocol and not use inversions on it [ 246.608514][ T8936] xt_CT: You must specify a L4 protocol and not use inversions on it [ 246.663018][ T8937] xt_CT: You must specify a L4 protocol and not use inversions on it [ 246.709215][ T8937] xt_CT: You must specify a L4 protocol and not use inversions on it [ 246.727196][ T8939] overlayfs: failed to resolve './file0': -2 [ 247.062683][ T8947] netlink: 12 bytes leftover after parsing attributes in process `syz.0.963'. [ 247.505490][ T8952] netlink: 'syz.2.965': attribute type 10 has an invalid length. [ 247.520755][ T8954] netlink: 8 bytes leftover after parsing attributes in process `syz.1.966'. [ 247.555071][ T8952] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 247.773764][ T8959] input: syz0 as /devices/virtual/input/input7 [ 247.888491][ T8961] FAULT_INJECTION: forcing a failure. [ 247.888491][ T8961] name failslab, interval 1, probability 0, space 0, times 0 [ 247.893993][ T8961] CPU: 1 UID: 0 PID: 8961 Comm: syz.1.967 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 247.898505][ T8961] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 247.908066][ T8961] Call Trace: [ 247.909548][ T8961] [ 247.910836][ T8961] dump_stack_lvl+0x16c/0x1f0 [ 247.913039][ T8961] should_fail_ex+0x497/0x5b0 [ 247.915171][ T8961] ? fs_reclaim_acquire+0xae/0x160 [ 247.917583][ T8961] should_failslab+0xc2/0x120 [ 247.919721][ T8961] kmem_cache_alloc_node_noprof+0x71/0x310 [ 247.922876][ T8961] ? __alloc_skb+0x2b3/0x380 [ 247.925018][ T8961] __alloc_skb+0x2b3/0x380 [ 247.926984][ T8961] ? __pfx___alloc_skb+0x10/0x10 [ 247.929134][ T8961] ? __lock_acquire+0x1620/0x3cb0 [ 247.931314][ T8961] alloc_skb_with_frags+0xe4/0x710 [ 247.933493][ T8961] sock_alloc_send_pskb+0x7f1/0x980 [ 247.935691][ T8961] ? lock_acquire+0x1b1/0x560 [ 247.937713][ T8961] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 247.940364][ T8961] ? __pfx_lock_release+0x10/0x10 [ 247.942559][ T8961] ? do_raw_spin_lock+0x12d/0x2c0 [ 247.944783][ T8961] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 247.947245][ T8961] unix_dgram_sendmsg+0x46c/0x1940 [ 247.949685][ T8961] ? aa_sk_perm+0x2f5/0xb20 [ 247.952063][ T8961] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 247.954917][ T8961] ? __pfx_aa_sk_perm+0x10/0x10 [ 247.957109][ T8961] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 247.959861][ T8961] ____sys_sendmsg+0x9b4/0xb50 [ 247.962445][ T8961] ? __pfx_____sys_sendmsg+0x10/0x10 [ 247.964868][ T8961] ? get_compat_msghdr+0x11b/0x170 [ 247.964898][ T8961] ? __pfx___lock_acquire+0x10/0x10 [ 247.964924][ T8961] ___sys_sendmsg+0x135/0x1e0 [ 247.964952][ T8961] ? __pfx____sys_sendmsg+0x10/0x10 [ 247.964985][ T8961] ? __pfx_lock_release+0x10/0x10 [ 247.965007][ T8961] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 247.965039][ T8961] ? __fget_light+0x173/0x210 [ 247.965063][ T8961] __sys_sendmmsg+0x2a5/0x450 [ 247.965090][ T8961] ? __pfx___sys_sendmmsg+0x10/0x10 [ 247.965112][ T8961] ? vfs_write+0x14d/0x1140 [ 247.965144][ T8961] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 247.965176][ T8961] ? fput+0x32/0x390 [ 247.965200][ T8961] ? ksys_write+0x1ab/0x260 [ 247.965220][ T8961] ? __pfx_ksys_write+0x10/0x10 [ 247.965244][ T8961] __ia32_compat_sys_sendmmsg+0x9d/0x100 [ 247.965269][ T8961] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 247.965292][ T8961] __do_fast_syscall_32+0x73/0x120 [ 247.965317][ T8961] do_fast_syscall_32+0x32/0x80 [ 247.965342][ T8961] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 247.965362][ T8961] RIP: 0023:0xf73fe579 [ 247.965376][ T8961] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 247.965392][ T8961] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 0000000000000159 [ 247.965410][ T8961] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000020000000 [ 247.965420][ T8961] RDX: 0000000000000651 RSI: 0000000000000000 RDI: 0000000000000000 [ 247.965430][ T8961] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 247.965440][ T8961] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 247.965450][ T8961] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 247.965473][ T8961] [ 248.526448][ T8971] xt_CT: You must specify a L4 protocol and not use inversions on it [ 248.533451][ T8971] netlink: 20 bytes leftover after parsing attributes in process `syz.0.969'. [ 248.548129][ T8971] xt_CT: You must specify a L4 protocol and not use inversions on it [ 248.564751][ T39] kauditd_printk_skb: 120 callbacks suppressed [ 248.564764][ T39] audit: type=1326 audit(1725510721.054:1247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8969 comm="syz.0.969" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 248.694846][ T39] audit: type=1326 audit(1725510721.184:1248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8969 comm="syz.0.969" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 248.710064][ T39] audit: type=1326 audit(1725510721.184:1249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8969 comm="syz.0.969" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 248.721573][ T39] audit: type=1326 audit(1725510721.184:1250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8969 comm="syz.0.969" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 248.731664][ T39] audit: type=1326 audit(1725510721.184:1251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8969 comm="syz.0.969" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 248.743778][ T39] audit: type=1326 audit(1725510721.184:1252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8969 comm="syz.0.969" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 248.753744][ T39] audit: type=1326 audit(1725510721.184:1253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8969 comm="syz.0.969" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 248.762071][ T39] audit: type=1326 audit(1725510721.184:1254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8969 comm="syz.0.969" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 248.773263][ T39] audit: type=1326 audit(1725510721.184:1255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8969 comm="syz.0.969" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 248.783894][ T39] audit: type=1326 audit(1725510721.184:1256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8969 comm="syz.0.969" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 249.058138][ T8976] overlayfs: failed to resolve './file0': -2 [ 250.843687][ T8999] warn_alloc: 2 callbacks suppressed [ 250.843701][ T8999] syz.3.978: vmalloc error: size 1842069504, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1 [ 250.852377][ T8999] CPU: 1 UID: 0 PID: 8999 Comm: syz.3.978 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 250.857279][ T8999] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 250.861866][ T8999] Call Trace: [ 250.863320][ T8999] [ 250.864629][ T8999] dump_stack_lvl+0x16c/0x1f0 [ 250.866596][ T8999] warn_alloc+0x24d/0x3a0 [ 250.868328][ T8999] ? __pfx_warn_alloc+0x10/0x10 [ 250.870343][ T8999] ? stack_depot_save_flags+0x28/0x900 [ 250.872781][ T8999] ? __pfx_vb2_vmalloc_alloc+0x10/0x10 [ 250.874896][ T8999] ? kasan_save_stack+0x42/0x60 [ 250.876435][ T8999] ? kasan_save_stack+0x33/0x60 [ 250.877901][ T8999] ? kasan_save_track+0x14/0x30 [ 250.880049][ T8999] ? __kasan_kmalloc+0xaa/0xb0 [ 250.882243][ T8999] ? vb2_vmalloc_alloc+0xe2/0x3d0 [ 250.884536][ T8999] ? __vb2_queue_alloc+0x896/0x1220 [ 250.886878][ T8999] ? vb2_create_bufs+0x566/0x780 [ 250.889153][ T8999] ? vb2_ioctl_create_bufs+0x24a/0x3f0 [ 250.891803][ T8999] ? vidioc_create_bufs+0x7d/0xf0 [ 250.894092][ T8999] __vmalloc_node_range_noprof+0x10a3/0x14e0 [ 250.896694][ T8999] ? vb2_vmalloc_alloc+0x11e/0x3d0 [ 250.898981][ T8999] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 250.901800][ T8999] ? vb2_vmalloc_alloc+0x11e/0x3d0 [ 250.904374][ T8999] ? __pfx_vb2_vmalloc_alloc+0x10/0x10 [ 250.906861][ T8999] vmalloc_user_noprof+0x6b/0x90 [ 250.908898][ T8999] ? vb2_vmalloc_alloc+0x11e/0x3d0 [ 250.911306][ T8999] vb2_vmalloc_alloc+0x11e/0x3d0 [ 250.913731][ T8999] ? __pfx_vb2_vmalloc_alloc+0x10/0x10 [ 250.916281][ T8999] __vb2_queue_alloc+0x896/0x1220 [ 250.918362][ T8999] vb2_core_create_bufs+0x558/0xab0 [ 250.920725][ T8999] ? __pfx_vbi_out_queue_setup+0x10/0x10 [ 250.923185][ T8999] ? __pfx_vb2_core_create_bufs+0x10/0x10 [ 250.925408][ T8999] vb2_create_bufs+0x566/0x780 [ 250.927199][ T8999] ? __pfx_vb2_create_bufs+0x10/0x10 [ 250.929539][ T8999] ? __mutex_lock+0x1a6/0x9c0 [ 250.931565][ T8999] vb2_ioctl_create_bufs+0x24a/0x3f0 [ 250.933769][ T8999] ? __pfx___mutex_lock+0x10/0x10 [ 250.935926][ T8999] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 250.938321][ T8999] vidioc_create_bufs+0x7d/0xf0 [ 250.940019][ T8999] v4l_create_bufs+0x198/0x270 [ 250.941843][ T8999] __video_do_ioctl+0xaf9/0xf00 [ 250.943868][ T8999] ? __pfx___video_do_ioctl+0x10/0x10 [ 250.945658][ T8999] ? trace_kmalloc+0x2d/0xe0 [ 250.947263][ T8999] ? __kmalloc_noprof+0x207/0x410 [ 250.949222][ T8999] ? __sanitizer_cov_trace_switch+0x41/0x90 [ 250.951838][ T8999] video_usercopy+0x426/0x1500 [ 250.953890][ T8999] ? __pfx___video_do_ioctl+0x10/0x10 [ 250.956208][ T8999] ? __pfx_video_usercopy+0x10/0x10 [ 250.958437][ T8999] v4l2_ioctl+0x1c0/0x260 [ 250.960369][ T8999] v4l2_compat_ioctl32+0x21d/0x2c0 [ 250.962565][ T8999] ? __pfx_v4l2_compat_ioctl32+0x10/0x10 [ 250.965002][ T8999] __do_compat_sys_ioctl+0x2c3/0x330 [ 250.967237][ T8999] __do_fast_syscall_32+0x73/0x120 [ 250.969399][ T8999] do_fast_syscall_32+0x32/0x80 [ 250.971520][ T8999] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 250.974246][ T8999] RIP: 0023:0xf7fd2579 [ 250.976024][ T8999] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 250.984227][ T8999] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 250.987763][ T8999] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0f8565c [ 250.991176][ T8999] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 250.994523][ T8999] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 250.998186][ T8999] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 251.001245][ T8999] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 251.005855][ T8999] [ 251.019090][ T8999] Mem-Info: [ 251.020456][ T8999] active_anon:16776 inactive_anon:6 isolated_anon:0 [ 251.020456][ T8999] active_file:11343 inactive_file:34334 isolated_file:0 [ 251.020456][ T8999] unevictable:768 dirty:232 writeback:0 [ 251.020456][ T8999] slab_reclaimable:5816 slab_unreclaimable:52517 [ 251.020456][ T8999] mapped:18369 shmem:10498 pagetables:694 [ 251.020456][ T8999] sec_pagetables:320 bounce:0 [ 251.020456][ T8999] kernel_misc_reclaimable:0 [ 251.020456][ T8999] free:73353 free_pcp:5545 free_cma:0 [ 251.042314][ T8999] Node 0 active_anon:0kB inactive_anon:24kB active_file:0kB inactive_file:12kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:436kB dirty:12kB writeback:0kB shmem:1540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9208kB pagetables:992kB sec_pagetables:1200kB all_unreclaimable? no [ 251.058906][ T8999] Node 1 active_anon:61256kB inactive_anon:0kB active_file:45372kB inactive_file:137324kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:71016kB dirty:920kB writeback:0kB shmem:40452kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:1888kB pagetables:1684kB sec_pagetables:80kB all_unreclaimable? no [ 251.084803][ T8999] Node 0 DMA free:940kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:204kB local_pcp:12kB free_cma:0kB [ 251.099869][ T8999] lowmem_reserve[]: 0 275 0 0 0 [ 251.102191][ T8999] Node 0 DMA32 free:22408kB boost:0kB min:14004kB low:17504kB high:21004kB reserved_highatomic:4096KB active_anon:0kB inactive_anon:20kB active_file:0kB inactive_file:12kB unevictable:1536kB writepending:12kB present:1032192kB managed:308888kB mlocked:0kB bounce:0kB free_pcp:3032kB local_pcp:132kB free_cma:0kB [ 251.113919][ T8999] lowmem_reserve[]: 0 0 0 0 0 [ 251.116306][ T8999] Node 1 DMA32 free:280376kB boost:0kB min:47044kB low:58804kB high:70564kB reserved_highatomic:0KB active_anon:53184kB inactive_anon:0kB active_file:45372kB inactive_file:137324kB unevictable:1536kB writepending:920kB present:1048436kB managed:946208kB mlocked:0kB bounce:0kB free_pcp:22936kB local_pcp:128kB free_cma:0kB [ 251.130374][ T8999] lowmem_reserve[]: 0 0 0 0 0 [ 251.133239][ T8999] Node 0 DMA: 5*4kB (U) 1*8kB (U) 4*16kB (U) 27*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 956kB [ 251.140516][ T8999] Node 0 DMA32: 11*4kB (H) 58*8kB (UMEH) 46*16kB (UMEH) 89*32kB (UMEH) 42*64kB (UMEH) 14*128kB (UMEH) 6*256kB (M) 10*512kB (UM) 5*1024kB (UM) 1*2048kB (M) 0*4096kB = 22396kB [ 251.149131][ T8999] Node 1 DMA32: 334*4kB (UM) 421*8kB (UME) 438*16kB (UME) 338*32kB (UME) 151*64kB (UME) 111*128kB (UME) 66*256kB (UME) 50*512kB (UME) 17*1024kB (UME) 7*2048kB (U) 39*4096kB (UM) = 280384kB [ 251.165281][ T8999] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 251.172377][ T9004] overlayfs: failed to resolve './file0': -2 [ 251.175696][ T8999] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 251.185791][ T8999] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 251.194993][ T8999] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 251.201619][ T8999] 56838 total pagecache pages [ 251.205024][ T8999] 687 pages in swap cache [ 251.207496][ T8999] Free swap = 115228kB [ 251.209466][ T8999] Total swap = 124996kB [ 251.212669][ T8999] 524155 pages RAM [ 251.214589][ T8999] 0 pages HighMem/MovableOnly [ 251.227309][ T8999] 206541 pages reserved [ 251.229003][ T8999] 0 pages cma reserved [ 251.288110][ T9009] netlink: 64 bytes leftover after parsing attributes in process `syz.1.981'. [ 251.301066][ T9009] netlink: 176 bytes leftover after parsing attributes in process `syz.1.981'. [ 251.318068][ T9009] netlink: 8 bytes leftover after parsing attributes in process `syz.1.981'. [ 251.324455][ T9009] netlink: 4 bytes leftover after parsing attributes in process `syz.1.981'. [ 251.571503][ T9018] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 251.626932][ T5424] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 251.803429][ T5424] usb 6-1: config index 0 descriptor too short (expected 28306, got 146) [ 251.807845][ T5424] usb 6-1: config 233 has too many interfaces: 98, using maximum allowed: 32 [ 251.811150][ T5424] usb 6-1: config 233 has an invalid descriptor of length 0, skipping remainder of the config [ 251.825844][ T5424] usb 6-1: config 233 has 0 interfaces, different from the descriptor's value: 98 [ 251.862625][ T5424] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 251.866741][ T5424] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 251.879043][ T5424] usb 6-1: SerialNumber: syz [ 252.044553][ T5363] Bluetooth: hci1: unexpected event for opcode 0x2031 [ 252.195082][ T5424] usb 6-1: USB disconnect, device number 9 [ 252.563487][ T9024] netlink: 8 bytes leftover after parsing attributes in process `syz.3.985'. [ 252.587163][ T9014] netlink: 3838 bytes leftover after parsing attributes in process `syz.0.982'. [ 252.590688][ T9014] netlink: 208572 bytes leftover after parsing attributes in process `syz.0.982'. [ 253.571658][ T39] kauditd_printk_skb: 105 callbacks suppressed [ 253.571673][ T39] audit: type=1326 audit(1725510726.054:1362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9044 comm="syz.3.990" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 253.587409][ T39] audit: type=1326 audit(1725510726.074:1363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9044 comm="syz.3.990" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 253.608224][ T39] audit: type=1326 audit(1725510726.084:1364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9044 comm="syz.3.990" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 253.631072][ T39] audit: type=1326 audit(1725510726.084:1365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9044 comm="syz.3.990" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 253.642700][ T39] audit: type=1326 audit(1725510726.084:1366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9044 comm="syz.3.990" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 253.657381][ T39] audit: type=1326 audit(1725510726.084:1367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9044 comm="syz.3.990" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 253.675098][ T39] audit: type=1326 audit(1725510726.094:1368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9044 comm="syz.3.990" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 253.689111][ T39] audit: type=1326 audit(1725510726.094:1369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9044 comm="syz.3.990" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 253.700869][ T39] audit: type=1326 audit(1725510726.094:1370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9044 comm="syz.3.990" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 253.713021][ T39] audit: type=1326 audit(1725510726.094:1371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9044 comm="syz.3.990" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 253.750302][ T5358] syz_tun (unregistering): left promiscuous mode [ 254.023062][ T9052] xt_ct_set_helper: 4 callbacks suppressed [ 254.023078][ T9052] xt_CT: You must specify a L4 protocol and not use inversions on it [ 254.034464][ T9052] netlink: 20 bytes leftover after parsing attributes in process `syz.0.993'. [ 254.047195][ T9052] xt_CT: You must specify a L4 protocol and not use inversions on it [ 254.177649][ T1134] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 254.330614][ T1134] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 254.371834][ T1101] Bluetooth: (null): Invalid header checksum [ 254.374743][ T1101] Bluetooth: (null): Invalid header checksum [ 254.437224][ T1134] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 254.484009][ T1101] Bluetooth: (null): Invalid header checksum [ 254.574667][ T1134] bond0: (slave netdevsim0): Releasing backup interface [ 254.593089][ T64] Bluetooth: (null): Invalid header checksum [ 254.593250][ T1134] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 254.712342][ T1106] Bluetooth: (null): Invalid header checksum [ 254.862243][ T9062] overlayfs: failed to resolve './file0': -2 [ 254.883789][ T66] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 254.888371][ T66] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 254.916726][ T66] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 254.928656][ T66] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 254.932783][ T66] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 254.936551][ T1134] bridge_slave_1: left allmulticast mode [ 254.937013][ T66] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 254.939371][ T1134] bridge_slave_1: left promiscuous mode [ 254.948780][ T1134] bridge0: port 2(bridge_slave_1) entered disabled state [ 255.029415][ T1134] bridge_slave_0: left allmulticast mode [ 255.041412][ T1134] bridge_slave_0: left promiscuous mode [ 255.043875][ T1134] bridge0: port 1(bridge_slave_0) entered disabled state [ 255.343712][ T9080] FAULT_INJECTION: forcing a failure. [ 255.343712][ T9080] name failslab, interval 1, probability 0, space 0, times 0 [ 255.351392][ T9080] CPU: 0 UID: 0 PID: 9080 Comm: syz.3.1001 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 255.355774][ T9080] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 255.360228][ T9080] Call Trace: [ 255.361691][ T9080] [ 255.362994][ T9080] dump_stack_lvl+0x16c/0x1f0 [ 255.364982][ T9080] should_fail_ex+0x497/0x5b0 [ 255.367028][ T9080] ? fs_reclaim_acquire+0xae/0x160 [ 255.369161][ T9080] should_failslab+0xc2/0x120 [ 255.371162][ T9080] kmem_cache_alloc_node_noprof+0x71/0x310 [ 255.373589][ T9080] ? __alloc_skb+0x2b3/0x380 [ 255.375577][ T9080] __alloc_skb+0x2b3/0x380 [ 255.377472][ T9080] ? __pfx___alloc_skb+0x10/0x10 [ 255.379481][ T9080] ? __pfx___might_resched+0x10/0x10 [ 255.381759][ T9080] netlink_alloc_large_skb+0x69/0x130 [ 255.384022][ T9080] netlink_sendmsg+0x689/0xd70 [ 255.386622][ T9080] ? __pfx_netlink_sendmsg+0x10/0x10 [ 255.388866][ T9080] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 255.391093][ T9080] ____sys_sendmsg+0x9b4/0xb50 [ 255.393132][ T9080] ? __pfx_____sys_sendmsg+0x10/0x10 [ 255.395386][ T9080] ? get_compat_msghdr+0x11b/0x170 [ 255.397500][ T9080] ? __pfx___lock_acquire+0x10/0x10 [ 255.399637][ T9080] ___sys_sendmsg+0x135/0x1e0 [ 255.401643][ T9080] ? __pfx____sys_sendmsg+0x10/0x10 [ 255.403845][ T9080] ? ksys_write+0x21c/0x260 [ 255.405720][ T9080] ? __fget_light+0x173/0x210 [ 255.407727][ T9080] __sys_sendmsg+0x117/0x1f0 [ 255.409664][ T9080] ? __pfx___sys_sendmsg+0x10/0x10 [ 255.411750][ T9080] __do_fast_syscall_32+0x73/0x120 [ 255.413663][ T9080] do_fast_syscall_32+0x32/0x80 [ 255.415532][ T9080] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 255.417864][ T9080] RIP: 0023:0xf7fd2579 [ 255.419402][ T9080] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 255.427153][ T9080] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 255.430753][ T9080] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000240 [ 255.434066][ T9080] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 255.437312][ T9080] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 255.440736][ T9080] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 255.444034][ T9080] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 255.447594][ T9080] [ 256.097394][ T5363] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 256.106836][ T5363] Bluetooth: hci1: Injecting HCI hardware error event [ 256.111981][ T66] Bluetooth: hci1: hardware error 0x00 [ 256.131443][ T1134] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 256.139175][ T1134] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 256.149408][ T1134] bond0 (unregistering): Released all slaves [ 256.191778][ T9091] batadv_slave_1: entered promiscuous mode [ 256.235051][ T9096] Bluetooth: MGMT ver 1.23 [ 256.278857][ T9091] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 256.305603][ T1134] Κό: left promiscuous mode [ 256.456936][ T9061] chnl_net:caif_netlink_parms(): no params data found [ 256.748810][ T9111] netlink: 300 bytes leftover after parsing attributes in process `syz.1.1005'. [ 256.753330][ T9111] netlink: 300 bytes leftover after parsing attributes in process `syz.1.1005'. [ 256.831089][ T9061] bridge0: port 1(bridge_slave_0) entered blocking state [ 256.834450][ T9061] bridge0: port 1(bridge_slave_0) entered disabled state [ 256.837598][ T9061] bridge_slave_0: entered allmulticast mode [ 256.851617][ T9061] bridge_slave_0: entered promiscuous mode [ 256.857402][ T9061] bridge0: port 2(bridge_slave_1) entered blocking state [ 256.860323][ T9061] bridge0: port 2(bridge_slave_1) entered disabled state [ 256.864066][ T9061] bridge_slave_1: entered allmulticast mode [ 256.869804][ T9061] bridge_slave_1: entered promiscuous mode [ 256.979224][ T5363] Bluetooth: hci0: command tx timeout [ 257.071397][ T9061] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 257.076953][ T9090] batadv_slave_1: left promiscuous mode [ 257.126037][ T9061] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 257.358798][ T1134] batadv_slave_1: left promiscuous mode [ 257.414707][ T1134] hsr_slave_0: left promiscuous mode [ 257.448315][ T1134] hsr_slave_1: left promiscuous mode [ 257.452993][ T9131] xt_CT: You must specify a L4 protocol and not use inversions on it [ 257.465827][ T1134] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 257.468334][ T9131] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1008'. [ 257.469233][ T1134] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 257.490817][ T1134] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 257.498777][ T9131] xt_CT: You must specify a L4 protocol and not use inversions on it [ 257.500022][ T1134] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 257.600691][ T1134] veth1_macvtap: left promiscuous mode [ 257.604744][ T1134] veth0_macvtap: left promiscuous mode [ 257.607607][ T1134] veth1_vlan: left promiscuous mode [ 257.610277][ T1134] veth0_vlan: left promiscuous mode [ 258.161778][ T66] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 258.695208][ T39] kauditd_printk_skb: 185 callbacks suppressed [ 258.695224][ T39] audit: type=1804 audit(1725510731.184:1557): pid=9146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1013" name="/newroot/248/bus/file0" dev="overlay" ino=1346 res=1 errno=0 [ 258.857792][ T9149] xt_CT: You must specify a L4 protocol and not use inversions on it [ 258.899600][ T9149] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1014'. [ 258.920788][ T9149] xt_CT: You must specify a L4 protocol and not use inversions on it [ 258.950105][ T39] audit: type=1326 audit(1725510731.424:1558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9147 comm="syz.0.1014" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 258.974647][ T39] audit: type=1326 audit(1725510731.424:1559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9147 comm="syz.0.1014" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 259.001877][ T39] audit: type=1326 audit(1725510731.424:1560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9147 comm="syz.0.1014" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 259.010140][ T39] audit: type=1326 audit(1725510731.424:1561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9147 comm="syz.0.1014" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 259.036638][ T39] audit: type=1326 audit(1725510731.424:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9147 comm="syz.0.1014" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 259.046652][ T39] audit: type=1326 audit(1725510731.424:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9147 comm="syz.0.1014" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 259.054165][ T66] Bluetooth: hci0: command tx timeout [ 259.063852][ T39] audit: type=1326 audit(1725510731.424:1564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9147 comm="syz.0.1014" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 259.079608][ T39] audit: type=1326 audit(1725510731.424:1565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9147 comm="syz.0.1014" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 259.095930][ T39] audit: type=1326 audit(1725510731.424:1566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9147 comm="syz.0.1014" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000 [ 259.606997][ T9157] xt_CT: You must specify a L4 protocol and not use inversions on it [ 259.626835][ T9157] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1015'. [ 259.659614][ T9157] xt_CT: You must specify a L4 protocol and not use inversions on it [ 259.858265][ T9159] netlink: 300 bytes leftover after parsing attributes in process `syz.0.1017'. [ 259.862786][ T9159] netlink: 300 bytes leftover after parsing attributes in process `syz.0.1017'. [ 260.080725][ T1134] team0 (unregistering): Port device team_slave_1 removed [ 260.241169][ T1134] team0 (unregistering): Port device team_slave_0 removed [ 261.127163][ T1382] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.131787][ T66] Bluetooth: hci0: command tx timeout [ 261.231716][ T9061] team0: Port device team_slave_0 added [ 261.244554][ T9061] team0: Port device team_slave_1 added [ 261.374872][ T9061] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 261.378598][ T9061] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 261.416132][ T9061] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 261.423675][ T9061] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 261.427570][ T9061] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 261.478544][ T9061] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 261.496976][ T9183] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1020'. [ 261.528739][ T9189] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 261.649078][ T9061] hsr_slave_0: entered promiscuous mode [ 261.699888][ T9061] hsr_slave_1: entered promiscuous mode [ 261.713273][ T9061] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 261.716632][ T9061] Cannot create hsr debugfs directory [ 263.016315][ T9061] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 263.025323][ T9061] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 263.046827][ T9061] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 263.067666][ T9061] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 263.200987][ T9061] 8021q: adding VLAN 0 to HW filter on device bond0 [ 263.214524][ T66] Bluetooth: hci0: command tx timeout [ 263.287947][ T9061] 8021q: adding VLAN 0 to HW filter on device team0 [ 263.329560][ T1134] bridge0: port 1(bridge_slave_0) entered blocking state [ 263.332491][ T1134] bridge0: port 1(bridge_slave_0) entered forwarding state [ 263.337082][ T1134] bridge0: port 2(bridge_slave_1) entered blocking state [ 263.340066][ T1134] bridge0: port 2(bridge_slave_1) entered forwarding state [ 263.646191][ T9061] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 263.719301][ T9061] veth0_vlan: entered promiscuous mode [ 263.730886][ T9061] veth1_vlan: entered promiscuous mode [ 263.772064][ T9061] veth0_macvtap: entered promiscuous mode [ 263.820337][ T9061] veth1_macvtap: entered promiscuous mode [ 263.859072][ T9061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 263.864565][ T9061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 263.868684][ T9061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 263.873977][ T9061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 263.878255][ T9061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 263.883146][ T9061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 263.896893][ T9061] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 263.921494][ T9061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 263.925759][ T9061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 263.929744][ T9061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 263.950615][ T9061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 263.956888][ T9061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 263.961819][ T9061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 263.967443][ T9061] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 263.977096][ T9061] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.982252][ T9061] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.985899][ T9061] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.989818][ T9061] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.086038][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 264.088957][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 264.130513][ T1106] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 264.138135][ T1106] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 265.337191][ T9264] netlink: 300 bytes leftover after parsing attributes in process `syz.0.1026'. [ 265.343791][ T9264] netlink: 300 bytes leftover after parsing attributes in process `syz.0.1026'. [ 265.802695][ T39] kauditd_printk_skb: 17 callbacks suppressed [ 265.802710][ T39] audit: type=1804 audit(1725510738.294:1584): pid=9274 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1027" name="/newroot/1/bus/file0" dev="overlay" ino=31 res=1 errno=0 [ 265.952572][ T9275] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 266.001214][ T9277] overlayfs: failed to resolve './file0': -2 [ 266.512501][ T9285] Invalid ELF header magic: != ELF [ 267.133148][ T74] Bluetooth: (null): Invalid header checksum [ 267.137133][ T74] Bluetooth: (null): Invalid header checksum [ 267.239197][ T74] Bluetooth: (null): Invalid header checksum [ 267.352633][ T74] Bluetooth: (null): Invalid header checksum [ 267.482789][ T74] Bluetooth: (null): Invalid header checksum [ 267.583715][ T572] Bluetooth: (null): Invalid header checksum [ 267.812244][ T66] Bluetooth: hci2: unexpected event for opcode 0x0c25 [ 267.992854][ T9309] netlink: 300 bytes leftover after parsing attributes in process `syz.3.1037'. [ 267.996666][ T9309] netlink: 300 bytes leftover after parsing attributes in process `syz.3.1037'. [ 268.669226][ T9325] bridge0: port 2(bridge_slave_1) entered disabled state [ 268.673016][ T9325] bridge0: port 1(bridge_slave_0) entered disabled state [ 268.690778][ T9325] bridge0: entered allmulticast mode [ 268.738142][ T9326] bridge0: port 2(bridge_slave_1) entered blocking state [ 268.742445][ T9326] bridge0: port 2(bridge_slave_1) entered forwarding state [ 268.746901][ T9326] bridge0: port 1(bridge_slave_0) entered blocking state [ 268.750708][ T9326] bridge0: port 1(bridge_slave_0) entered forwarding state [ 268.757492][ T9326] bridge0: entered promiscuous mode [ 268.798146][ T9321] FAULT_INJECTION: forcing a failure. [ 268.798146][ T9321] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 268.806745][ T9321] CPU: 2 UID: 0 PID: 9321 Comm: syz.2.1042 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 268.813283][ T9321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 268.819813][ T9321] Call Trace: [ 268.822051][ T9321] [ 268.824903][ T9321] dump_stack_lvl+0x16c/0x1f0 [ 268.827360][ T9321] should_fail_ex+0x497/0x5b0 [ 268.829539][ T9321] _copy_from_user+0x30/0xf0 [ 268.832482][ T9321] get_info+0x112/0x750 [ 268.835090][ T9321] ? sockopt_release_sock+0x52/0x60 [ 268.839636][ T9321] ? __pfx_get_info+0x10/0x10 [ 268.842218][ T9321] ? __local_bh_enable_ip+0xa4/0x120 [ 268.845055][ T9321] ? aa_get_newest_label+0x376/0x680 [ 268.847919][ T9321] ? __pfx_aa_get_newest_label+0x10/0x10 [ 268.850930][ T9321] ? find_held_lock+0x2d/0x110 [ 268.853468][ T9321] ? apparmor_capable+0x114/0x1d0 [ 268.856702][ T9321] ? bpf_lsm_capable+0x9/0x10 [ 268.859415][ T9321] ? security_capable+0x98/0xd0 [ 268.861874][ T9321] do_ipt_get_ctl+0x16a/0xaa0 [ 268.864371][ T9321] ? __mutex_unlock_slowpath+0x164/0x650 [ 268.867304][ T9321] ? __pfx_do_ipt_get_ctl+0x10/0x10 [ 268.870019][ T9321] ? find_held_lock+0x2d/0x110 [ 268.872093][ T9321] ? __pfx_lock_release+0x10/0x10 [ 268.874212][ T9321] ? nf_sockopt_find.constprop.0+0x221/0x290 [ 268.877900][ T9321] nf_getsockopt+0x79/0xe0 [ 268.880601][ T9321] ip_getsockopt+0x18e/0x1e0 [ 268.883323][ T9321] ? __pfx_ip_getsockopt+0x10/0x10 [ 268.886188][ T9321] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 268.888746][ T9321] do_sock_getsockopt+0x2e5/0x7c0 [ 268.891008][ T9321] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 268.893976][ T9321] ? __fget_files+0x256/0x400 [ 268.896416][ T9321] ? __fget_light+0x173/0x210 [ 268.898978][ T9321] __sys_getsockopt+0x1a1/0x270 [ 268.901313][ T9321] ? __pfx___sys_getsockopt+0x10/0x10 [ 268.903946][ T9321] ? fput+0x32/0x390 [ 268.905687][ T9321] ? ksys_write+0x1ab/0x260 [ 268.907774][ T9321] ? __pfx_ksys_write+0x10/0x10 [ 268.909943][ T9321] __ia32_sys_getsockopt+0xbc/0x160 [ 268.912504][ T9321] ? lockdep_hardirqs_on+0x7c/0x110 [ 268.915355][ T9321] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 268.918719][ T9321] __do_fast_syscall_32+0x73/0x120 [ 268.921333][ T9321] do_fast_syscall_32+0x32/0x80 [ 268.923618][ T9321] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 268.926395][ T9321] RIP: 0023:0xf73ae579 [ 268.928553][ T9321] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 268.937637][ T9321] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 000000000000016d [ 268.941337][ T9321] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000 [ 268.945076][ T9321] RDX: 0000000000000040 RSI: 0000000020000180 RDI: 0000000020000100 [ 268.948833][ T9321] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 268.952378][ T9321] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 268.955535][ T9321] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 268.958647][ T9321] [ 269.172239][ T9335] FAULT_INJECTION: forcing a failure. [ 269.172239][ T9335] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 269.172316][ T9335] [ 269.172321][ T9335] ====================================================== [ 269.172325][ T9335] WARNING: possible circular locking dependency detected [ 269.172330][ T9335] 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 Not tainted [ 269.172339][ T9335] ------------------------------------------------------ [ 269.172343][ T9335] syz.3.1046/9335 is trying to acquire lock: [ 269.172351][ T9335] ffffffff8dda75d8 ((console_sem).lock){-.-.}-{2:2}, at: down_trylock+0x12/0x70 [ 269.172393][ T9335] [ 269.172393][ T9335] but task is already holding lock: [ 269.172397][ T9335] ffff88802b63edd8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 269.172433][ T9335] [ 269.172433][ T9335] which lock already depends on the new lock. [ 269.172433][ T9335] [ 269.172437][ T9335] [ 269.172437][ T9335] the existing dependency chain (in reverse order) is: [ 269.172441][ T9335] [ 269.172441][ T9335] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 269.172459][ T9335] _raw_spin_lock_nested+0x31/0x40 [ 269.172476][ T9335] raw_spin_rq_lock_nested+0x29/0x130 [ 269.172496][ T9335] task_fork_fair+0x73/0x250 [ 269.172512][ T9335] sched_cgroup_fork+0x3cf/0x510 [ 269.172526][ T9335] copy_process+0x4710/0x6f50 [ 269.172541][ T9335] kernel_clone+0xfd/0x960 [ 269.172557][ T9335] user_mode_thread+0xb4/0xf0 [ 269.172572][ T9335] rest_init+0x23/0x2b0 [ 269.172584][ T9335] start_kernel+0x3df/0x4c0 [ 269.172604][ T9335] x86_64_start_reservations+0x18/0x30 [ 269.172629][ T9335] x86_64_start_kernel+0xb2/0xc0 [ 269.172646][ T9335] common_startup_64+0x13e/0x148 [ 269.172661][ T9335] [ 269.172661][ T9335] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 269.172678][ T9335] _raw_spin_lock_irqsave+0x3a/0x60 [ 269.172695][ T9335] try_to_wake_up+0x9a/0x13e0 [ 269.172714][ T9335] up+0x79/0xb0 [ 269.172732][ T9335] console_unlock+0x23e/0x290 [ 269.172752][ T9335] vga_remove_vgacon+0x90/0xd0 [ 269.172769][ T9335] aperture_remove_conflicting_pci_devices+0x16a/0x1e0 [ 269.172793][ T9335] bochs_pci_probe+0x101/0x1150 [ 269.172814][ T9335] local_pci_probe+0xde/0x1b0 [ 269.172833][ T9335] pci_device_probe+0x29d/0x7b0 [ 269.172853][ T9335] really_probe+0x23e/0xa90 [ 269.172866][ T9335] __driver_probe_device+0x1de/0x440 [ 269.172881][ T9335] driver_probe_device+0x4c/0x1b0 [ 269.172893][ T9335] __driver_attach+0x283/0x580 [ 269.172906][ T9335] bus_for_each_dev+0x13c/0x1d0 [ 269.172924][ T9335] bus_add_driver+0x2e9/0x690 [ 269.172942][ T9335] driver_register+0x15c/0x4b0 [ 269.172957][ T9335] bochs_pci_driver_init+0x67/0x80 [ 269.172975][ T9335] do_one_initcall+0x128/0x630 [ 269.172994][ T9335] kernel_init_freeable+0x660/0xc50 [ 269.173013][ T9335] kernel_init+0x1c/0x2b0 [ 269.173024][ T9335] ret_from_fork+0x45/0x80 [ 269.173043][ T9335] ret_from_fork_asm+0x1a/0x30 [ 269.173062][ T9335] [ 269.173062][ T9335] -> #0 ((console_sem).lock){-.-.}-{2:2}: [ 269.173079][ T9335] __lock_acquire+0x24ed/0x3cb0 [ 269.173097][ T9335] lock_acquire+0x1b1/0x560 [ 269.173114][ T9335] _raw_spin_lock_irqsave+0x3a/0x60 [ 269.173130][ T9335] down_trylock+0x12/0x70 [ 269.173148][ T9335] __down_trylock_console_sem+0x40/0x140 [ 269.173167][ T9335] vprintk_emit+0x3d3/0x600 [ 269.173178][ T9335] vprintk+0x7f/0xa0 [ 269.173190][ T9335] _printk+0xc8/0x100 [ 269.173207][ T9335] should_fail_ex+0x46c/0x5b0 [ 269.173221][ T9335] strncpy_from_user+0x38/0x320 [ 269.173234][ T9335] strncpy_from_user_nofault+0x7f/0x180 [ 269.173252][ T9335] bpf_probe_read_compat_str+0x131/0x170 [ 269.173268][ T9335] bpf_prog_0cb9d000f3cd1fab+0x40/0x42 [ 269.173278][ T9335] bpf_trace_run4+0x245/0x5a0 [ 269.173293][ T9335] __traceiter_sched_switch+0x6c/0xc0 [ 269.173312][ T9335] __schedule+0x17cf/0x5490 [ 269.173328][ T9335] schedule+0xe7/0x350 [ 269.173343][ T9335] tun_do_read+0x1477/0x1d30 [ 269.173356][ T9335] tun_chr_read_iter+0x10d/0x2a0 [ 269.173369][ T9335] do_iter_readv_writev+0x613/0x800 [ 269.173385][ T9335] vfs_readv+0x4d8/0x8a0 [ 269.173399][ T9335] do_readv+0x137/0x370 [ 269.173413][ T9335] __do_fast_syscall_32+0x73/0x120 [ 269.173432][ T9335] do_fast_syscall_32+0x32/0x80 [ 269.173449][ T9335] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 269.173464][ T9335] [ 269.173464][ T9335] other info that might help us debug this: [ 269.173464][ T9335] [ 269.173468][ T9335] Chain exists of: [ 269.173468][ T9335] (console_sem).lock --> &p->pi_lock --> &rq->__lock [ 269.173468][ T9335] [ 269.173487][ T9335] Possible unsafe locking scenario: [ 269.173487][ T9335] [ 269.173491][ T9335] CPU0 CPU1 [ 269.173494][ T9335] ---- ---- [ 269.173497][ T9335] lock(&rq->__lock); [ 269.173505][ T9335] lock(&p->pi_lock); [ 269.173512][ T9335] lock(&rq->__lock); [ 269.173521][ T9335] lock((console_sem).lock); [ 269.173528][ T9335] [ 269.173528][ T9335] *** DEADLOCK *** [ 269.173528][ T9335] [ 269.173530][ T9335] 2 locks held by syz.3.1046/9335: [ 269.173538][ T9335] #0: ffff88802b63edd8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 269.173572][ T9335] #1: ffffffff8ddb94a0 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run4+0x1d6/0x5a0 [ 269.173604][ T9335] [ 269.173604][ T9335] stack backtrace: [ 269.173609][ T9335] CPU: 1 UID: 0 PID: 9335 Comm: syz.3.1046 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 269.173630][ T9335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 269.173639][ T9335] Call Trace: [ 269.173644][ T9335] [ 269.173649][ T9335] dump_stack_lvl+0x116/0x1f0 [ 269.173667][ T9335] check_noncircular+0x31a/0x400 [ 269.173688][ T9335] ? __pfx_check_noncircular+0x10/0x10 [ 269.173709][ T9335] ? __pfx__prb_read_valid+0x10/0x10 [ 269.173725][ T9335] ? __pfx_format_decode+0x10/0x10 [ 269.173747][ T9335] ? lockdep_lock+0xc6/0x200 [ 269.173764][ T9335] ? __pfx_lockdep_lock+0x10/0x10 [ 269.173781][ T9335] __lock_acquire+0x24ed/0x3cb0 [ 269.173806][ T9335] ? __pfx___lock_acquire+0x10/0x10 [ 269.173826][ T9335] ? vprintk_store+0x222/0xbb0 [ 269.173849][ T9335] lock_acquire+0x1b1/0x560 [ 269.173869][ T9335] ? down_trylock+0x12/0x70 [ 269.173891][ T9335] ? __pfx_lock_acquire+0x10/0x10 [ 269.173910][ T9335] ? __pfx_mark_lock+0x10/0x10 [ 269.173929][ T9335] ? __pfx_mark_lock+0x10/0x10 [ 269.173951][ T9335] ? vprintk+0x7f/0xa0 [ 269.173966][ T9335] _raw_spin_lock_irqsave+0x3a/0x60 [ 269.173984][ T9335] ? down_trylock+0x12/0x70 [ 269.174005][ T9335] down_trylock+0x12/0x70 [ 269.174027][ T9335] __down_trylock_console_sem+0x40/0x140 [ 269.174049][ T9335] vprintk_emit+0x3d3/0x600 [ 269.174064][ T9335] vprintk+0x7f/0xa0 [ 269.174080][ T9335] _printk+0xc8/0x100 [ 269.174099][ T9335] ? __pfx__printk+0x10/0x10 [ 269.174119][ T9335] ? ___ratelimit+0x24c/0x580 [ 269.174141][ T9335] ? __pfx___lock_acquire+0x10/0x10 [ 269.174160][ T9335] ? __pfx____ratelimit+0x10/0x10 [ 269.174185][ T9335] should_fail_ex+0x46c/0x5b0 [ 269.174203][ T9335] strncpy_from_user+0x38/0x320 [ 269.174219][ T9335] strncpy_from_user_nofault+0x7f/0x180 [ 269.174240][ T9335] bpf_probe_read_compat_str+0x131/0x170 [ 269.174259][ T9335] bpf_prog_0cb9d000f3cd1fab+0x40/0x42 [ 269.174272][ T9335] bpf_trace_run4+0x245/0x5a0 [ 269.175481][ T9335] ? __pfx_bpf_trace_run4+0x10/0x10 [ 269.175503][ T9335] ? tracing_record_taskinfo_sched_switch+0x54/0x400 [ 269.175526][ T9335] __traceiter_sched_switch+0x6c/0xc0 [ 269.175549][ T9335] __schedule+0x17cf/0x5490 [ 269.175566][ T9335] ? __pfx___lock_acquire+0x10/0x10 [ 269.175585][ T9335] ? __pfx___lock_acquire+0x10/0x10 [ 269.175609][ T9335] ? __pfx___schedule+0x10/0x10 [ 269.175633][ T9335] ? schedule+0x298/0x350 [ 269.175651][ T9335] ? __pfx_lock_release+0x10/0x10 [ 269.175671][ T9335] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 269.175695][ T9335] schedule+0xe7/0x350 [ 269.175714][ T9335] tun_do_read+0x1477/0x1d30 [ 269.175733][ T9335] ? __pfx_tun_do_read+0x10/0x10 [ 269.175747][ T9335] ? tun_get+0x191/0x370 [ 269.175762][ T9335] ? __pfx_lock_release+0x10/0x10 [ 269.175781][ T9335] ? __pfx_default_wake_function+0x10/0x10 [ 269.175805][ T9335] tun_chr_read_iter+0x10d/0x2a0 [ 269.175823][ T9335] do_iter_readv_writev+0x613/0x800 [ 269.175842][ T9335] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 269.175861][ T9335] ? bpf_lsm_file_permission+0x9/0x10 [ 269.175877][ T9335] ? security_file_permission+0x98/0xc0 [ 269.175895][ T9335] vfs_readv+0x4d8/0x8a0 [ 269.175915][ T9335] ? __pfx_vfs_readv+0x10/0x10 [ 269.175931][ T9335] ? __fget_files+0x24c/0x400 [ 269.175950][ T9335] ? do_user_addr_fault+0xdc7/0x13f0 [ 269.175971][ T9335] ? do_user_addr_fault+0xdc7/0x13f0 [ 269.175998][ T9335] ? do_readv+0x137/0x370 [ 269.176014][ T9335] do_readv+0x137/0x370 [ 269.176031][ T9335] ? __pfx_do_readv+0x10/0x10 [ 269.176051][ T9335] __do_fast_syscall_32+0x73/0x120 [ 269.176074][ T9335] do_fast_syscall_32+0x32/0x80 [ 269.176094][ T9335] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 269.176113][ T9335] RIP: 0023:0xf7fd2579 [ 269.176125][ T9335] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 269.176139][ T9335] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000091 [ 269.176153][ T9335] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200001c0 [ 269.176163][ T9335] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000 [ 269.176171][ T9335] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 269.176180][ T9335] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 269.176189][ T9335] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 269.176202][ T9335] [ 269.620068][ T9335] CPU: 1 UID: 0 PID: 9335 Comm: syz.3.1046 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 269.624845][ T9335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 269.629337][ T9335] Call Trace: [ 269.630762][ T9335] [ 269.632027][ T9335] dump_stack_lvl+0x116/0x1f0 [ 269.633993][ T9335] should_fail_ex+0x497/0x5b0 [ 269.636004][ T9335] strncpy_from_user+0x38/0x320 [ 269.638054][ T9335] strncpy_from_user_nofault+0x7f/0x180 [ 269.640378][ T9335] bpf_probe_read_compat_str+0x131/0x170 [ 269.642759][ T9335] bpf_prog_0cb9d000f3cd1fab+0x40/0x42 [ 269.645271][ T9335] bpf_trace_run4+0x245/0x5a0 [ 269.647354][ T9335] ? __pfx_bpf_trace_run4+0x10/0x10 [ 269.649516][ T9335] ? tracing_record_taskinfo_sched_switch+0x54/0x400 [ 269.652226][ T9335] __traceiter_sched_switch+0x6c/0xc0 [ 269.654360][ T9335] __schedule+0x17cf/0x5490 [ 269.656356][ T9335] ? __pfx___lock_acquire+0x10/0x10 [ 269.658637][ T9335] ? __pfx___lock_acquire+0x10/0x10 [ 269.660874][ T9335] ? __pfx___schedule+0x10/0x10 [ 269.662829][ T9335] ? schedule+0x298/0x350 [ 269.664491][ T9335] ? __pfx_lock_release+0x10/0x10 [ 269.666410][ T9335] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 269.668557][ T9335] schedule+0xe7/0x350 [ 269.670608][ T9335] tun_do_read+0x1477/0x1d30 [ 269.672663][ T9335] ? __pfx_tun_do_read+0x10/0x10 [ 269.674793][ T9335] ? tun_get+0x191/0x370 [ 269.676604][ T9335] ? __pfx_lock_release+0x10/0x10 [ 269.678765][ T9335] ? __pfx_default_wake_function+0x10/0x10 [ 269.681244][ T9335] tun_chr_read_iter+0x10d/0x2a0 [ 269.683367][ T9335] do_iter_readv_writev+0x613/0x800 [ 269.685640][ T9335] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 269.688037][ T9335] ? bpf_lsm_file_permission+0x9/0x10 [ 269.690169][ T9335] ? security_file_permission+0x98/0xc0 [ 269.692374][ T9335] vfs_readv+0x4d8/0x8a0 [ 269.694064][ T9335] ? __pfx_vfs_readv+0x10/0x10 [ 269.696156][ T9335] ? __fget_files+0x24c/0x400 [ 269.698234][ T9335] ? do_user_addr_fault+0xdc7/0x13f0 [ 269.700359][ T9335] ? do_user_addr_fault+0xdc7/0x13f0 [ 269.702429][ T9335] ? do_readv+0x137/0x370 [ 269.704303][ T9335] do_readv+0x137/0x370 [ 269.706155][ T9335] ? __pfx_do_readv+0x10/0x10 [ 269.708219][ T9335] __do_fast_syscall_32+0x73/0x120 [ 269.710499][ T9335] do_fast_syscall_32+0x32/0x80 [ 269.712778][ T9335] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 269.715490][ T9335] RIP: 0023:0xf7fd2579 [ 269.717250][ T9335] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 269.725224][ T9335] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000091 [ 269.729212][ T9335] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200001c0 [ 269.732623][ T9335] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000 [ 269.736107][ T9335] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 269.739456][ T9335] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 269.742778][ T9335] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 269.746064][ T9335] SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 269.855118][ T9341] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 270.408253][ T74] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 270.573378][ T74] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 270.708010][ T74] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 270.830383][ T74] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 270.956303][ T74] bridge_slave_1: left allmulticast mode [ 270.958946][ T74] bridge_slave_1: left promiscuous mode [ 270.961601][ T74] bridge0: port 2(bridge_slave_1) entered disabled state [ 270.966129][ T74] bridge_slave_0: left allmulticast mode [ 270.968614][ T74] bridge_slave_0: left promiscuous mode [ 270.970838][ T74] bridge0: port 1(bridge_slave_0) entered disabled state [ 271.118082][ T74] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 271.124430][ T74] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 271.129104][ T74] bond0 (unregistering): Released all slaves [ 271.590006][ T74] hsr_slave_0: left promiscuous mode [ 271.595752][ T74] hsr_slave_1: left promiscuous mode [ 271.600711][ T74] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 271.605043][ T74] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 271.609562][ T74] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 271.612863][ T74] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 271.621023][ T74] veth1_macvtap: left promiscuous mode [ 271.623750][ T74] veth0_macvtap: left promiscuous mode [ 271.626368][ T74] veth1_vlan: left promiscuous mode [ 271.628827][ T74] veth0_vlan: left promiscuous mode [ 271.979220][ T74] team0 (unregistering): Port device team_slave_1 removed [ 271.998176][ T74] team0 (unregistering): Port device team_slave_0 removed [ 272.868852][ T74] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 272.983412][ T74] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 273.050920][ T74] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 273.133725][ T74] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 273.244032][ T74] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 273.302917][ T74] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 273.377293][ T74] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 273.508497][ T74] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 273.648617][ T74] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 273.776313][ T74] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 273.909569][ T74] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 273.979562][ T74] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 274.161534][ T74] bridge_slave_1: left allmulticast mode [ 274.170146][ T74] bridge_slave_1: left promiscuous mode [ 274.173215][ T74] bridge0: port 2(bridge_slave_1) entered disabled state [ 274.203957][ T74] bridge0: port 1(bridge_slave_0) entered disabled state [ 274.210490][ T74] bridge_slave_1: left allmulticast mode [ 274.212870][ T74] bridge_slave_1: left promiscuous mode [ 274.215398][ T74] bridge0: port 2(bridge_slave_1) entered disabled state [ 274.223110][ T74] bridge0: port 1(bridge_slave_0) entered disabled state [ 274.233674][ T74] bridge_slave_1: left allmulticast mode [ 274.236075][ T74] bridge_slave_1: left promiscuous mode [ 274.238518][ T74] bridge0: port 2(bridge_slave_1) entered disabled state [ 274.244328][ T74] bridge_slave_0: left allmulticast mode [ 274.247053][ T74] bridge_slave_0: left promiscuous mode [ 274.249663][ T74] bridge0: port 1(bridge_slave_0) entered disabled state [ 275.759191][ T74] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 275.765498][ T74] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 275.772008][ T74] bond0 (unregistering): Released all slaves [ 275.803133][ T74] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 275.810141][ T74] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 275.815850][ T74] bond0 (unregistering): Released all slaves [ 275.827978][ T74] bond1 (unregistering): (slave lo): Releasing backup interface [ 275.832391][ T74] bond1 (unregistering): (slave lo): last VLAN challenged slave left bond - VLAN blocking is removed [ 275.837811][ T74] bond1 (unregistering): Released all slaves [ 275.864414][ T74] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 275.876217][ T74] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 275.881094][ T74] bond0 (unregistering): Released all slaves [ 275.994004][ T74] : left promiscuous mode [ 276.062070][ T74] Κό: left promiscuous mode [ 277.187443][ T74] hsr_slave_0: left promiscuous mode [ 277.190897][ T74] hsr_slave_1: left promiscuous mode [ 277.194034][ T74] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 277.198017][ T74] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 277.203784][ T74] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 277.207019][ T74] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 277.216224][ T74] hsr_slave_0: left promiscuous mode [ 277.219411][ T74] hsr_slave_1: left promiscuous mode [ 277.227838][ T74] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 277.231143][ T74] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 277.252195][ T74] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 277.255769][ T74] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 277.283238][ T74] hsr_slave_0: left promiscuous mode [ 277.287458][ T74] hsr_slave_1: left promiscuous mode [ 277.291046][ T74] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 277.295864][ T74] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 277.307160][ T74] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 277.312640][ T74] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 277.323172][ T74] veth1_macvtap: left promiscuous mode [ 277.325580][ T74] veth0_macvtap: left promiscuous mode [ 277.328252][ T74] veth1_vlan: left promiscuous mode [ 277.331008][ T74] veth0_vlan: left promiscuous mode [ 277.340425][ T74] veth1_macvtap: left promiscuous mode [ 277.345062][ T74] veth0_macvtap: left promiscuous mode [ 277.348090][ T74] veth1_vlan: left promiscuous mode [ 277.350723][ T74] veth0_vlan: left promiscuous mode [ 277.357812][ T74] veth1_macvtap: left promiscuous mode [ 277.360427][ T74] veth0_macvtap: left promiscuous mode [ 277.363064][ T74] veth1_vlan: left promiscuous mode [ 277.365401][ T74] veth0_vlan: left promiscuous mode [ 278.112434][ T74] team0 (unregistering): Port device team_slave_1 removed [ 278.188910][ T74] team0 (unregistering): Port device team_slave_0 removed [ 278.830959][ T74] team0 (unregistering): Port device team_slave_1 removed [ 278.899786][ T74] team0 (unregistering): Port device team_slave_0 removed VM DIAGNOSIS: 04:32:22 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=0000000000000003 RCX=ffffffff813be4ae RDX=ffff888020882440 RSI=ffffffff813be4cb RDI=0000000000000000 RBP=ffff88802b63edc0 RSP=ffffc90001f578d8 R8 =0000000000000000 R9 =0000000000000003 R10=0000000000000003 R11=0000000000000000 R12=0000000000000003 R13=0000000000000003 R14=ffff88802b63fc80 R15=ffffed10056c7db8 RIP=ffffffff813be4cc RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020000000 CR3=000000005e6b6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000009800000000 0000000200000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000029000000000 0000000700000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000064 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84fc1565 RDI=ffffffff9a514600 RBP=ffffffff9a5145c0 RSP=ffffc9002bf5f1a0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e31312e36 R12=0000000000000000 R13=0000000000000064 R14=ffffffff84fc1500 R15=0000000000000000 RIP=ffffffff84fc158f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f7492054 CR3=0000000060b46000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000009800000000 0000000200000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000029000000000 0000000700000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=ffff88802b63edc0 RCX=ffffffff8b0af6b4 RDX=ffffed10056c7db9 RSI=0000000000000004 RDI=ffff88802b63edc0 RBP=0000000000000003 RSP=ffffc90000357a28 R8 =0000000000000000 R9 =ffffed10056c7db8 R10=ffff88802b63edc3 R11=ffffffff815efa60 R12=ffffed10056c7db8 R13=0000000000000000 R14=ffff88802b83fc80 R15=0000000000000002 RIP=ffffffff8b0af6f0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020000000 CR3=000000005bbd4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=00000000003d5264 RBX=0000000000000003 RCX=ffffffff8b083039 RDX=ffffed1005726fda RSI=ffffffff8bb07da0 RDI=ffffffff81634b0c RBP=ffffed1003768488 RSP=ffffc90000497e08 R8 =0000000000000000 R9 =ffffed1005726fd9 R10=ffff88802b937ecb R11=0000000000000001 R12=0000000000000003 R13=ffff88801bb42440 R14=ffffffff9011de18 R15=0000000000000000 RIP=ffffffff8b08442f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b900000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020000000 CR3=00000000632a6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 00c800a400000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000100000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000