last executing test programs: 2m42.464590924s ago: executing program 3 (id=24929): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=0x0, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)) mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1) openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r3, @ANYRES64=r2], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) ioperm(0x9, 0x7ff, 0x100000000) 2m42.459765235s ago: executing program 3 (id=24933): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) 2m42.382217276s ago: executing program 3 (id=24936): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2}) ioctl$TUNDETACHFILTER(r3, 0x401054d6, 0x0) 2m42.381796529s ago: executing program 3 (id=24938): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, 0x0, 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r1 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r1, 0x0, 0x0, 0x805, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) add_key$keyring(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) 2m42.264712347s ago: executing program 3 (id=24945): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) 2m42.194431933s ago: executing program 3 (id=24951): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r3, 0x0, 0x0, 0x805, 0x0, 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r5, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r5, @ANYRES64=r4], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r5, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r5, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@version_L}, {@version_9p2000}]}}) sendto$inet(r3, 0x0, 0x0, 0x80, 0x0, 0x0) symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000200)='./file0\x00') chmod(&(0x7f0000000100)='./file0\x00', 0x24c) socket$inet6_tcp(0xa, 0x1, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r7, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYRESOCT=r2, @ANYRES16=r7, @ANYRES64=r7], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r7, 0x0) 2m26.148244455s ago: executing program 32 (id=24951): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r3, 0x0, 0x0, 0x805, 0x0, 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r5, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r5, @ANYRES64=r4], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r5, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r5, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@version_L}, {@version_9p2000}]}}) sendto$inet(r3, 0x0, 0x0, 0x80, 0x0, 0x0) symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000200)='./file0\x00') chmod(&(0x7f0000000100)='./file0\x00', 0x24c) socket$inet6_tcp(0xa, 0x1, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r7, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYRESOCT=r2, @ANYRES16=r7, @ANYRES64=r7], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r7, 0x0) 2.576561507s ago: executing program 0 (id=29746): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x10000000002]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000"], 0x7c}}, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r5, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=r4, @ANYRES8=r5, @ANYRES64=r4], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r5, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r6 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r6, 0x0, 0x0, 0x805, 0x0, 0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r8, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40004) sendmmsg$inet6(r7, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r9 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r9, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) 2.352386555s ago: executing program 1 (id=29749): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10) syz_open_dev$loop(&(0x7f0000000640), 0x9, 0x12d600) r3 = socket(0x28, 0x5, 0x0) connect$vsock_stream(r3, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, 0xffffffffffffffff, 0x0) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000001140), 0x4) write$binfmt_elf64(r3, &(0x7f0000000240)=ANY=[], 0x40000) r4 = accept4$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(r4, &(0x7f0000000c00)=[{{0x0, 0x0, 0x0}, 0x3}, {{0x0, 0x0, &(0x7f0000000b00)=[{0x0}], 0x1}, 0x1ff}], 0x2, 0x20022, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) 1.870850149s ago: executing program 0 (id=29753): r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000001080), 0x0, 0x0) io_setup(0x3, &(0x7f0000000180)=0x0) syz_io_uring_setup(0x88b, 0x0, 0x0, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4) io_submit(r1, 0x1, &(0x7f0000000800)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}]) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) r3 = dup(r2) write$UHID_INPUT(r3, &(0x7f0000001000)={0xf, {"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", 0x1000}}, 0x1006) 1.325684625s ago: executing program 1 (id=29758): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$sock_linger(r4, 0x1, 0xd, &(0x7f0000000000)={0xffffffff, 0x6}, 0x8) setsockopt$inet_tcp_int(r4, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e1f, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4) close(r4) ppoll(&(0x7f00000000c0)=[{}], 0x1, 0x0, 0x0, 0x0) 1.198945384s ago: executing program 4 (id=29761): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$can_raw(r5, &(0x7f0000000100)={0x1d, r6}, 0x10) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]}) setsockopt$CAN_RAW_FILTER(r5, 0x65, 0x1, 0x0, 0x0) 1.109807359s ago: executing program 0 (id=29762): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x24000]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r6, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r6], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r6, 0x0) ioctl$KVM_X86_SETUP_MCE(r6, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) 1.109652439s ago: executing program 4 (id=29763): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) fsetxattr$security_capability(r4, &(0x7f0000000040), 0x0, 0x0, 0x2) 1.109570679s ago: executing program 0 (id=29764): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x80, 0x0) 1.109491729s ago: executing program 4 (id=29765): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = fsopen(&(0x7f0000000180)='proc\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) 1.067866579s ago: executing program 4 (id=29766): syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r3) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000008c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r3, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x44, r4, 0xd55319eec59dfa33, 0xfffffffe, 0x25dfdbfc, {{}, {@void, @val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x7, 0x3b}}}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'pim6reg1\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0xc804}, 0xc2010) 1.00539894s ago: executing program 0 (id=29767): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32=r0, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000340)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 806.936286ms ago: executing program 2 (id=29768): madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32=0xffffffffffffffff, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) keyctl$clear(0x3, 0xfffffffffffffffc) request_key(0x0, 0x0, &(0x7f0000000100)='@\x00', 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) r4 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r6, &(0x7f0000000240)=ANY=[@ANYRESDEC=r2, @ANYRESDEC=r0, @ANYRES8=r6, @ANYRES8=r4], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r6, 0x0) ioctl$KVM_X86_SETUP_MCE(r6, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket$netlink(0x10, 0x3, 0x0) ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0) syz_clone(0x80020000, &(0x7f0000000080), 0x0, &(0x7f0000000100), 0x0, 0x0) fcntl$setownex(r3, 0xf, 0x0) 804.90642ms ago: executing program 2 (id=29769): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000010400b500000000040000000000", @ANYRES32=0x0, @ANYBLOB="00000000001400001c00128009000100626f6e64"], 0x3c}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x8000010}, 0x48000) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842c", @ANYRES32=0x0, @ANYBLOB="0300"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0) 695.54409ms ago: executing program 2 (id=29770): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_FEATURES_GET(r2, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000880)={0x14, 0x0, 0x4f79951a91b7df8f, 0x70bd2c, 0x3}, 0x14}, 0x1, 0x0, 0x0, 0x4005}, 0x40000) 695.433874ms ago: executing program 2 (id=29771): r0 = socket(0x2, 0x3, 0xff) sendmmsg$inet(r0, &(0x7f0000002600)=[{{&(0x7f0000000940)={0x2, 0x4e24, @multicast1}, 0x10, &(0x7f0000000b40)=[{&(0x7f0000000980)="fdaad2d570750a550222814fbf9c1c827e8070e089ef901800f5423c9e4f87e508a957c65314af8494b916c31e63e97feb03183a93", 0x35}], 0x1, &(0x7f0000000b80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @local}}}], 0x20}}, {{&(0x7f0000000d40)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}}], 0x2, 0x8000) 631.425816ms ago: executing program 2 (id=29772): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, 0x0, 0x118) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$inet6_tcp(0xa, 0x1, 0x0) 631.162941ms ago: executing program 2 (id=29773): creat(0x0, 0xecf86c37d53049cc) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x2}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, 0x0, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) mount$fuse(0x0, 0x0, 0x0, 0x2018081, 0x0) socket$nl_generic(0x10, 0x3, 0x10) bpf$MAP_CREATE(0x300000000000000, 0x0, 0x0) r3 = epoll_create1(0x0) r4 = fcntl$dupfd(r3, 0x2, 0xffffffffffffffff) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x16, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000040)='GPL\x00'}, 0x80) r6 = epoll_create1(0x0) r7 = fcntl$dupfd(r6, 0x2, 0xffffffffffffffff) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000140)={@cgroup=r7, r5, 0x11, 0x0, r7}, 0x14) bpf$BPF_PROG_ATTACH(0x9, &(0x7f0000000140)={@cgroup=r4, r5, 0x11, 0x0, r4}, 0x11) 373.738546ms ago: executing program 1 (id=29774): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000380)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0xf, 0x0, 0x0) 212.970615ms ago: executing program 1 (id=29775): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000000000)=@x86={0x5d, 0x0, 0x7f, 0x0, 0xe, 0x4, 0x39, 0x6, 0x6, 0x7, 0xf7, 0x9, 0x0, 0x6, 0x7, 0xfe, 0x2, 0x5, 0x8, '\x00', 0x3c, 0xfffffffffffffffd}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 64.883848ms ago: executing program 1 (id=29776): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000380)={'syztnl0\x00', &(0x7f0000000240)={'syztnl1\x00', 0x0, 0x4, 0x1, 0xd7, 0x7, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1, 0x20, 0x8000, 0x2}}) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000001000)={'batadv_slave_1\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="540000001400090525bd70000003000002180d00", @ANYRES32=r3, @ANYBLOB="08000b000000000008000200ac14143f080009"], 0x54}}, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000040)={'veth1_vlan\x00', {0x2, 0x4e25, @remote}}) 64.703546ms ago: executing program 4 (id=29777): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]}) r2 = getpid() r3 = syz_pidfd_open(r2, 0x0) setns(r3, 0x24020000) syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r4, 0x0) ioctl$KVM_X86_SETUP_MCE(r4, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) 64.56293ms ago: executing program 1 (id=29778): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f00000003c0)="0f326635004000000f300f00d636808a0d0001ba4300b80b00eb66b88c5000000f23d02a3ff866352000000e0f23f80f01c30f789deb32660f3a21cf220f2bb00058660f1bde", 0x46}], 0x1, 0x0, 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000080)=[{0x0}, {&(0x7f00000004c0)=""/89, 0x59}], 0x2, 0x1, 0x6) ioctl$KVM_RUN(r5, 0xae80, 0x0) 212.436ยตs ago: executing program 0 (id=29779): syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) bind$inet6(0xffffffffffffffff, 0x0, 0x0) r0 = socket$pppl2tp(0x18, 0x1, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="9feb0100180000000000000034000000340000000c00000004000000010000840203000000000000030000000000000302000000000000010500000020000000000000000000000b02000000006100302e"], 0x0, 0x58}, 0x28) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0) ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f00000000c0)) 0s ago: executing program 4 (id=29780): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x24000]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmsg(0xffffffffffffffff, 0x0, 0x0) r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r4) ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000540)) kernel console output (not intermixed with test programs): 0x10 [ 1362.309372][ T2240] ? find_held_lock+0x2b/0x80 [ 1362.309385][ T2240] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1362.309402][ T2240] do_madvise+0x176/0x240 [ 1362.309416][ T2240] ? __pfx_do_madvise+0x10/0x10 [ 1362.309428][ T2240] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 1362.309444][ T2240] ? __fget_files+0x20e/0x3c0 [ 1362.309461][ T2240] ? __pfx_ksys_write+0x10/0x10 [ 1362.309475][ T2240] __x64_sys_madvise+0xa9/0x110 [ 1362.309488][ T2240] ? lockdep_hardirqs_on+0x7c/0x110 [ 1362.309499][ T2240] do_syscall_64+0xcd/0xfa0 [ 1362.309511][ T2240] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1362.309523][ T2240] RIP: 0033:0x7f8ef1d8f6c9 [ 1362.309533][ T2240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1362.309544][ T2240] RSP: 002b:00007f8ef2c63038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 1362.309554][ T2240] RAX: ffffffffffffffda RBX: 00007f8ef1fe5fa0 RCX: 00007f8ef1d8f6c9 [ 1362.309561][ T2240] RDX: 000000000000000e RSI: 0000000000800000 RDI: 0000200000000000 [ 1362.309568][ T2240] RBP: 00007f8ef2c63090 R08: 0000000000000000 R09: 0000000000000000 [ 1362.309574][ T2240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1362.309581][ T2240] R13: 00007f8ef1fe6038 R14: 00007f8ef1fe5fa0 R15: 00007ffce01e4588 [ 1362.309595][ T2240] [ 1362.542635][ T2252] netlink: 8 bytes leftover after parsing attributes in process `syz.2.26835'. [ 1362.607975][ T40] audit: type=1400 audit(1763158805.030:696): avc: denied { setopt } for pid=2264 comm="syz.0.26839" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 1362.644416][ T2270] netlink: 72 bytes leftover after parsing attributes in process `syz.0.26840'. [ 1363.027751][ T2301] FAULT_INJECTION: forcing a failure. [ 1363.027751][ T2301] name failslab, interval 1, probability 0, space 0, times 0 [ 1363.032740][ T2301] CPU: 0 UID: 0 PID: 2301 Comm: syz.0.26852 Not tainted syzkaller #0 PREEMPT(full) [ 1363.032764][ T2301] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1363.032776][ T2301] Call Trace: [ 1363.032783][ T2301] [ 1363.032790][ T2301] dump_stack_lvl+0x16c/0x1f0 [ 1363.032823][ T2301] should_fail_ex+0x512/0x640 [ 1363.032843][ T2301] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1363.032872][ T2301] should_failslab+0xc2/0x120 [ 1363.032893][ T2301] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1363.032923][ T2301] ? getname_flags.part.0+0x4c/0x550 [ 1363.032954][ T2301] ? getname_flags.part.0+0x4c/0x550 [ 1363.032976][ T2301] getname_flags.part.0+0x4c/0x550 [ 1363.033003][ T2301] getname_flags+0x93/0xf0 [ 1363.033020][ T2301] do_sys_openat2+0xb8/0x1d0 [ 1363.033043][ T2301] ? __pfx_do_sys_openat2+0x10/0x10 [ 1363.033069][ T2301] ? __fget_files+0x20e/0x3c0 [ 1363.033093][ T2301] __x64_sys_openat+0x174/0x210 [ 1363.033116][ T2301] ? __pfx___x64_sys_openat+0x10/0x10 [ 1363.033138][ T2301] ? ksys_write+0x1ac/0x250 [ 1363.033165][ T2301] do_syscall_64+0xcd/0xfa0 [ 1363.033184][ T2301] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1363.033203][ T2301] RIP: 0033:0x7f0f4078f6c9 [ 1363.033217][ T2301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1363.033234][ T2301] RSP: 002b:00007f0f416a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1363.033252][ T2301] RAX: ffffffffffffffda RBX: 00007f0f409e5fa0 RCX: 00007f0f4078f6c9 [ 1363.033264][ T2301] RDX: 0000000000000000 RSI: 0000200000000680 RDI: ffffffffffffff9c [ 1363.033275][ T2301] RBP: 00007f0f416a0090 R08: 0000000000000000 R09: 0000000000000000 [ 1363.033286][ T2301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1363.033297][ T2301] R13: 00007f0f409e6038 R14: 00007f0f409e5fa0 R15: 00007ffd08b01c38 [ 1363.033323][ T2301] [ 1363.378725][ T2322] FAULT_INJECTION: forcing a failure. [ 1363.378725][ T2322] name failslab, interval 1, probability 0, space 0, times 0 [ 1363.384710][ T2322] CPU: 2 UID: 0 PID: 2322 Comm: syz.2.26862 Not tainted syzkaller #0 PREEMPT(full) [ 1363.384734][ T2322] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1363.384745][ T2322] Call Trace: [ 1363.384752][ T2322] [ 1363.384759][ T2322] dump_stack_lvl+0x16c/0x1f0 [ 1363.384791][ T2322] should_fail_ex+0x512/0x640 [ 1363.384811][ T2322] ? fs_reclaim_acquire+0xae/0x150 [ 1363.384833][ T2322] should_failslab+0xc2/0x120 [ 1363.384854][ T2322] __kmalloc_noprof+0xdd/0x880 [ 1363.384878][ T2322] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1363.384903][ T2322] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1363.384922][ T2322] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1363.384946][ T2322] ? tomoyo_profile+0x47/0x60 [ 1363.384971][ T2322] tomoyo_path_number_perm+0x245/0x580 [ 1363.384988][ T2322] ? tomoyo_path_number_perm+0x237/0x580 [ 1363.385007][ T2322] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1363.385027][ T2322] ? find_held_lock+0x2b/0x80 [ 1363.385074][ T2322] ? find_held_lock+0x2b/0x80 [ 1363.385094][ T2322] ? hook_file_ioctl_common+0x145/0x410 [ 1363.385124][ T2322] ? __fget_files+0x20e/0x3c0 [ 1363.385144][ T2322] security_file_ioctl+0x9b/0x240 [ 1363.385166][ T2322] __x64_sys_ioctl+0xb7/0x210 [ 1363.385194][ T2322] do_syscall_64+0xcd/0xfa0 [ 1363.385212][ T2322] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1363.385226][ T2322] RIP: 0033:0x7f8ef1d8f6c9 [ 1363.385237][ T2322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1363.385248][ T2322] RSP: 002b:00007f8ef2c63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1363.385259][ T2322] RAX: ffffffffffffffda RBX: 00007f8ef1fe5fa0 RCX: 00007f8ef1d8f6c9 [ 1363.385265][ T2322] RDX: 0000200000000180 RSI: 000000004020ae46 RDI: 0000000000000007 [ 1363.385272][ T2322] RBP: 00007f8ef2c63090 R08: 0000000000000000 R09: 0000000000000000 [ 1363.385278][ T2322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1363.385285][ T2322] R13: 00007f8ef1fe6038 R14: 00007f8ef1fe5fa0 R15: 00007ffce01e4588 [ 1363.385299][ T2322] [ 1363.385304][ T2322] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1363.638989][ T2347] FAULT_INJECTION: forcing a failure. [ 1363.638989][ T2347] name failslab, interval 1, probability 0, space 0, times 0 [ 1363.644515][ T2347] CPU: 0 UID: 0 PID: 2347 Comm: syz.4.26874 Not tainted syzkaller #0 PREEMPT(full) [ 1363.644540][ T2347] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1363.644551][ T2347] Call Trace: [ 1363.644557][ T2347] [ 1363.644564][ T2347] dump_stack_lvl+0x16c/0x1f0 [ 1363.644595][ T2347] should_fail_ex+0x512/0x640 [ 1363.644617][ T2347] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1363.644645][ T2347] should_failslab+0xc2/0x120 [ 1363.644664][ T2347] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1363.644694][ T2347] ? getname_flags.part.0+0x4c/0x550 [ 1363.644723][ T2347] ? getname_flags.part.0+0x4c/0x550 [ 1363.644744][ T2347] getname_flags.part.0+0x4c/0x550 [ 1363.644770][ T2347] __x64_sys_mkdir+0xd8/0x140 [ 1363.644790][ T2347] do_syscall_64+0xcd/0xfa0 [ 1363.644809][ T2347] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1363.644827][ T2347] RIP: 0033:0x7f1657f8f6c9 [ 1363.644842][ T2347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1363.644859][ T2347] RSP: 002b:00007f1658dfd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1363.644876][ T2347] RAX: ffffffffffffffda RBX: 00007f16581e5fa0 RCX: 00007f1657f8f6c9 [ 1363.644888][ T2347] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 1363.644899][ T2347] RBP: 00007f1658dfd090 R08: 0000000000000000 R09: 0000000000000000 [ 1363.644910][ T2347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1363.644921][ T2347] R13: 00007f16581e6038 R14: 00007f16581e5fa0 R15: 00007fff4d868308 [ 1363.644947][ T2347] [ 1365.128623][ T2479] netlink: 8 bytes leftover after parsing attributes in process `syz.1.26936'. [ 1366.525224][ T2647] picdev_read: 179 callbacks suppressed [ 1366.525236][ T2647] kvm: pic: non byte read [ 1366.531608][ T2647] kvm: pic: non byte read [ 1366.534985][ T2647] pic_ioport_write: 74 callbacks suppressed [ 1366.534996][ T2647] kvm: pic: single mode not supported [ 1366.537757][ T2647] pic_ioport_write: 32 callbacks suppressed [ 1366.537784][ T2647] kvm: pic: level sensitive irq not supported [ 1366.543499][ T2647] kvm: pic: non byte read [ 1366.550590][ T2647] kvm: pic: single mode not supported [ 1366.550934][ T2647] kvm: pic: non byte read [ 1366.556566][ T2647] kvm: pic: non byte read [ 1366.560211][ T2647] kvm: pic: non byte read [ 1366.562990][ T2652] kvm: pic: non byte read [ 1366.563204][ T2647] kvm: pic: single mode not supported [ 1366.565087][ T2647] kvm: pic: level sensitive irq not supported [ 1366.567176][ T2647] kvm: pic: non byte read [ 1366.567467][ T2652] kvm: pic: non byte read [ 1366.572130][ T2647] kvm: pic: single mode not supported [ 1366.574493][ T2647] kvm: pic: non byte read [ 1366.576054][ T2652] kvm: pic: single mode not supported [ 1366.578689][ T2652] kvm: pic: level sensitive irq not supported [ 1366.584059][ T2652] kvm: pic: single mode not supported [ 1366.588431][ T2649] kvm: pic: single mode not supported [ 1366.590722][ T2649] kvm: pic: level sensitive irq not supported [ 1366.594497][ T2652] kvm: pic: single mode not supported [ 1366.594747][ T2649] kvm: pic: single mode not supported [ 1366.596566][ T2652] kvm: pic: level sensitive irq not supported [ 1366.603515][ T2649] kvm: pic: single mode not supported [ 1366.605479][ T2649] kvm: pic: level sensitive irq not supported [ 1367.365663][ T5948] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 1367.373514][ T5948] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 1367.378045][ T5948] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 1367.378103][ T2687] kvm: pic: level sensitive irq not supported [ 1367.380889][ T5948] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 1367.385566][ T5948] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 1367.387582][ T2687] kvm: pic: level sensitive irq not supported [ 1367.422000][ T2688] wg1 speed is unknown, defaulting to 1000 [ 1367.533904][ T3120] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1367.548216][ T2688] chnl_net:caif_netlink_parms(): no params data found [ 1367.637831][ T3120] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1367.644210][ T2688] bridge0: port 1(bridge_slave_0) entered blocking state [ 1367.646519][ T2688] bridge0: port 1(bridge_slave_0) entered disabled state [ 1367.650670][ T2688] bridge_slave_0: entered allmulticast mode [ 1367.653556][ T2688] bridge_slave_0: entered promiscuous mode [ 1367.657270][ T2703] kvm: pic: level sensitive irq not supported [ 1367.658082][ T2688] bridge0: port 2(bridge_slave_1) entered blocking state [ 1367.664497][ T2688] bridge0: port 2(bridge_slave_1) entered disabled state [ 1367.667146][ T2688] bridge_slave_1: entered allmulticast mode [ 1367.671359][ T2703] kvm: pic: level sensitive irq not supported [ 1367.671365][ T2688] bridge_slave_1: entered promiscuous mode [ 1367.731839][ T3120] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1367.743096][ T2688] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1367.751524][ T2688] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1367.788857][ T2688] team0: Port device team_slave_0 added [ 1367.792541][ T2688] team0: Port device team_slave_1 added [ 1367.830885][ T2688] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1367.833755][ T2688] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1367.843389][ T2688] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1367.869628][ T3120] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1367.879396][ T2688] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1367.881581][ T2688] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1367.890707][ T2688] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1367.960441][ T2688] hsr_slave_0: entered promiscuous mode [ 1367.963568][ T2688] hsr_slave_1: entered promiscuous mode [ 1367.966667][ T2688] debugfs: 'hsr0' already exists in 'hsr' [ 1367.969163][ T2688] Cannot create hsr debugfs directory [ 1368.174544][ T3120] bridge_slave_1: left allmulticast mode [ 1368.177632][ T3120] bridge_slave_1: left promiscuous mode [ 1368.179658][ T3120] bridge0: port 2(bridge_slave_1) entered disabled state [ 1368.184637][ T3120] bridge_slave_0: left allmulticast mode [ 1368.186502][ T3120] bridge_slave_0: left promiscuous mode [ 1368.189041][ T3120] bridge0: port 1(bridge_slave_0) entered disabled state [ 1368.511846][ T3120] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1368.520081][ T3120] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1368.523919][ T3120] bond0 (unregistering): Released all slaves [ 1368.916414][ T2812] netlink: 8 bytes leftover after parsing attributes in process `syz.2.27057'. [ 1368.927766][ T3120] hsr_slave_0: left promiscuous mode [ 1368.930234][ T3120] hsr_slave_1: left promiscuous mode [ 1368.933014][ T3120] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1368.936143][ T3120] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1368.940001][ T3120] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1368.946341][ T3120] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1369.014663][ T3120] veth1_macvtap: left promiscuous mode [ 1369.017415][ T3120] veth0_macvtap: left promiscuous mode [ 1369.021396][ T3120] veth1_vlan: left promiscuous mode [ 1369.023701][ T3120] veth0_vlan: left promiscuous mode [ 1369.617385][ T5939] Bluetooth: hci3: command tx timeout [ 1369.857828][ T3120] team0 (unregistering): Port device team_slave_1 removed [ 1369.979417][ T3120] team0 (unregistering): Port device team_slave_0 removed [ 1370.694579][ T2688] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1370.705810][ T2688] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1370.720257][ T2688] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1370.732673][ T2688] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1370.803351][ T2688] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1370.818653][ T2688] 8021q: adding VLAN 0 to HW filter on device team0 [ 1370.836257][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 1370.838704][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1370.843352][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 1370.846341][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1371.072843][ T2688] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1371.111056][ T2688] veth0_vlan: entered promiscuous mode [ 1371.118658][ T2688] veth1_vlan: entered promiscuous mode [ 1371.145542][ T2688] veth0_macvtap: entered promiscuous mode [ 1371.150423][ T2688] veth1_macvtap: entered promiscuous mode [ 1371.164979][ T2688] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1371.177677][ T2688] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1371.186997][T21191] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1371.190071][T21191] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1371.199684][T21191] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1371.202659][T21191] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1371.275474][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1371.283678][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1371.297769][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1371.300909][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1371.849725][ T5939] Bluetooth: hci3: command tx timeout [ 1371.969102][ T2950] netlink: 8 bytes leftover after parsing attributes in process `syz.1.27101'. [ 1372.061144][ T2954] picdev_read: 116 callbacks suppressed [ 1372.061155][ T2954] kvm: pic: non byte read [ 1372.067672][ T2954] kvm: pic: non byte read [ 1372.070804][ T2954] pic_ioport_write: 46 callbacks suppressed [ 1372.070817][ T2954] kvm: pic: single mode not supported [ 1372.072846][ T2954] pic_ioport_write: 18 callbacks suppressed [ 1372.072860][ T2954] kvm: pic: level sensitive irq not supported [ 1372.079159][ T2954] kvm: pic: non byte read [ 1372.086737][ T2954] kvm: pic: single mode not supported [ 1372.087048][ T2954] kvm: pic: non byte read [ 1372.092048][ T2954] kvm: pic: non byte read [ 1372.100220][ T2954] kvm: pic: non byte read [ 1372.103197][ T2954] kvm: pic: single mode not supported [ 1372.103207][ T2954] kvm: pic: level sensitive irq not supported [ 1372.105365][ T2954] kvm: pic: non byte read [ 1372.110773][ T2954] kvm: pic: single mode not supported [ 1372.111085][ T2954] kvm: pic: non byte read [ 1372.116118][ T2954] kvm: pic: non byte read [ 1372.410057][ T2978] kvm: pic: non byte read [ 1372.418664][ T2978] kvm: pic: single mode not supported [ 1372.418682][ T2978] kvm: pic: level sensitive irq not supported [ 1372.423316][ T2978] kvm: pic: single mode not supported [ 1372.434204][ T2978] kvm: pic: single mode not supported [ 1372.436552][ T2978] kvm: pic: level sensitive irq not supported [ 1372.442965][ T2978] kvm: pic: single mode not supported [ 1372.917986][ T3023] kvm: pic: single mode not supported [ 1372.920004][ T3023] kvm: pic: level sensitive irq not supported [ 1372.924064][ T3023] kvm: pic: single mode not supported [ 1372.931443][ T3023] kvm: pic: level sensitive irq not supported [ 1373.279631][ T3040] kvm: pic: level sensitive irq not supported [ 1373.290674][ T3040] kvm: pic: level sensitive irq not supported [ 1373.633455][ T3061] kvm: pic: level sensitive irq not supported [ 1373.643466][ T3061] kvm: pic: level sensitive irq not supported [ 1374.073603][ T5939] Bluetooth: hci3: command tx timeout [ 1374.841762][ T3135] netlink: 8 bytes leftover after parsing attributes in process `syz.4.27174'. [ 1375.178858][ T3157] netlink: 8 bytes leftover after parsing attributes in process `syz.0.27185'. [ 1375.571296][ T3189] netlink: 8 bytes leftover after parsing attributes in process `syz.2.27200'. [ 1375.883292][ T3212] netlink: 8 bytes leftover after parsing attributes in process `syz.1.27211'. [ 1376.297074][ T5939] Bluetooth: hci3: command tx timeout [ 1377.501154][ T3303] picdev_read: 107 callbacks suppressed [ 1377.501166][ T3303] kvm: pic: non byte read [ 1377.506282][ T3303] kvm: pic: non byte read [ 1377.509275][ T3303] pic_ioport_write: 42 callbacks suppressed [ 1377.509284][ T3303] kvm: pic: single mode not supported [ 1377.511181][ T3303] pic_ioport_write: 16 callbacks suppressed [ 1377.511189][ T3303] kvm: pic: level sensitive irq not supported [ 1377.515575][ T3303] kvm: pic: non byte read [ 1377.520482][ T3303] kvm: pic: single mode not supported [ 1377.520791][ T3303] kvm: pic: non byte read [ 1377.525706][ T3303] kvm: pic: non byte read [ 1377.529255][ T3303] kvm: pic: non byte read [ 1377.532117][ T3303] kvm: pic: single mode not supported [ 1377.532125][ T3303] kvm: pic: level sensitive irq not supported [ 1377.534146][ T3303] kvm: pic: non byte read [ 1377.539284][ T3303] kvm: pic: single mode not supported [ 1377.539593][ T3303] kvm: pic: non byte read [ 1377.544567][ T3303] kvm: pic: non byte read [ 1377.663379][ T3320] kvm: pic: non byte read [ 1377.671166][ T3320] kvm: pic: single mode not supported [ 1377.671177][ T3320] kvm: pic: level sensitive irq not supported [ 1377.674638][ T3320] kvm: pic: single mode not supported [ 1377.683044][ T3320] kvm: pic: single mode not supported [ 1377.684798][ T3320] kvm: pic: level sensitive irq not supported [ 1377.688661][ T3320] kvm: pic: single mode not supported [ 1377.865876][ T3344] kvm: pic: single mode not supported [ 1377.867668][ T3344] kvm: pic: level sensitive irq not supported [ 1377.876723][ T3344] kvm: pic: single mode not supported [ 1377.891349][ T3344] kvm: pic: level sensitive irq not supported [ 1377.940469][ T3348] kvm: pic: level sensitive irq not supported [ 1377.950102][ T3348] kvm: pic: level sensitive irq not supported [ 1378.072778][ T3355] kvm: pic: level sensitive irq not supported [ 1378.083971][ T3355] kvm: pic: level sensitive irq not supported [ 1379.277038][ T3459] FAULT_INJECTION: forcing a failure. [ 1379.277038][ T3459] name failslab, interval 1, probability 0, space 0, times 0 [ 1379.284252][ T3459] CPU: 1 UID: 0 PID: 3459 Comm: syz.2.27321 Not tainted syzkaller #0 PREEMPT(full) [ 1379.284274][ T3459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1379.284284][ T3459] Call Trace: [ 1379.284299][ T3459] [ 1379.284306][ T3459] dump_stack_lvl+0x16c/0x1f0 [ 1379.284365][ T3459] should_fail_ex+0x512/0x640 [ 1379.284404][ T3459] ? fs_reclaim_acquire+0xae/0x150 [ 1379.284427][ T3459] should_failslab+0xc2/0x120 [ 1379.284447][ T3459] __kmalloc_noprof+0xdd/0x880 [ 1379.284477][ T3459] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1379.284502][ T3459] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1379.284521][ T3459] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1379.284543][ T3459] ? tomoyo_profile+0x47/0x60 [ 1379.284567][ T3459] tomoyo_path_number_perm+0x245/0x580 [ 1379.284582][ T3459] ? tomoyo_path_number_perm+0x237/0x580 [ 1379.284600][ T3459] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1379.284618][ T3459] ? find_held_lock+0x2b/0x80 [ 1379.284662][ T3459] ? find_held_lock+0x2b/0x80 [ 1379.284682][ T3459] ? hook_file_ioctl_common+0x145/0x410 [ 1379.284710][ T3459] ? __fget_files+0x20e/0x3c0 [ 1379.284731][ T3459] security_file_ioctl+0x9b/0x240 [ 1379.284752][ T3459] __x64_sys_ioctl+0xb7/0x210 [ 1379.284779][ T3459] do_syscall_64+0xcd/0xfa0 [ 1379.284797][ T3459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1379.284814][ T3459] RIP: 0033:0x7f8ef1d8f6c9 [ 1379.284827][ T3459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1379.284843][ T3459] RSP: 002b:00007f8ef2c63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1379.284859][ T3459] RAX: ffffffffffffffda RBX: 00007f8ef1fe5fa0 RCX: 00007f8ef1d8f6c9 [ 1379.284870][ T3459] RDX: 0000200000000100 RSI: 00000000c0306201 RDI: 0000000000000006 [ 1379.284880][ T3459] RBP: 00007f8ef2c63090 R08: 0000000000000000 R09: 0000000000000000 [ 1379.284890][ T3459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1379.284900][ T3459] R13: 00007f8ef1fe6038 R14: 00007f8ef1fe5fa0 R15: 00007ffce01e4588 [ 1379.284925][ T3459] [ 1379.285002][ T3459] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1379.509770][ T3498] netlink: 4 bytes leftover after parsing attributes in process `syz.1.27342'. [ 1379.512976][ T3498] bridge_slave_1: left allmulticast mode [ 1379.516045][ T3498] bridge_slave_1: left promiscuous mode [ 1379.518121][ T3498] bridge0: port 2(bridge_slave_1) entered disabled state [ 1379.524266][ T3498] bridge_slave_0: left allmulticast mode [ 1379.527892][ T3498] bridge_slave_0: left promiscuous mode [ 1379.530052][ T3498] bridge0: port 1(bridge_slave_0) entered disabled state [ 1379.677151][ T3523] FAULT_INJECTION: forcing a failure. [ 1379.677151][ T3523] name failslab, interval 1, probability 0, space 0, times 0 [ 1379.678581][ T3522] netlink: 8 bytes leftover after parsing attributes in process `syz.0.27353'. [ 1379.681042][ T3523] CPU: 0 UID: 0 PID: 3523 Comm: syz.2.27354 Not tainted syzkaller #0 PREEMPT(full) [ 1379.681057][ T3523] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1379.681064][ T3523] Call Trace: [ 1379.681085][ T3523] [ 1379.681089][ T3523] dump_stack_lvl+0x16c/0x1f0 [ 1379.681145][ T3523] should_fail_ex+0x512/0x640 [ 1379.681169][ T3523] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 1379.681190][ T3523] should_failslab+0xc2/0x120 [ 1379.681203][ T3523] kmem_cache_alloc_node_noprof+0x78/0x770 [ 1379.681223][ T3523] ? __alloc_skb+0x2b2/0x380 [ 1379.681240][ T3523] ? __alloc_skb+0x2b2/0x380 [ 1379.681252][ T3523] ? __pfx_netlink_insert+0x10/0x10 [ 1379.681267][ T3523] __alloc_skb+0x2b2/0x380 [ 1379.681281][ T3523] ? __pfx___alloc_skb+0x10/0x10 [ 1379.681297][ T3523] ? netlink_autobind.isra.0+0x158/0x370 [ 1379.681317][ T3523] netlink_alloc_large_skb+0x69/0x140 [ 1379.681337][ T3523] netlink_sendmsg+0x698/0xdd0 [ 1379.681355][ T3523] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1379.681377][ T3523] sock_write_iter+0x566/0x610 [ 1379.681389][ T3523] ? __pfx_sock_write_iter+0x10/0x10 [ 1379.681405][ T3523] ? bpf_lsm_file_permission+0x9/0x10 [ 1379.681417][ T3523] ? security_file_permission+0x71/0x210 [ 1379.681431][ T3523] ? rw_verify_area+0xcf/0x6c0 [ 1379.681449][ T3523] vfs_write+0x7d3/0x11d0 [ 1379.681460][ T3523] ? __pfx_sock_write_iter+0x10/0x10 [ 1379.681476][ T3523] ? __pfx_vfs_write+0x10/0x10 [ 1379.681485][ T3523] ? find_held_lock+0x2b/0x80 [ 1379.681509][ T3523] ksys_write+0x1f8/0x250 [ 1379.681519][ T3523] ? __pfx_ksys_write+0x10/0x10 [ 1379.681534][ T3523] do_syscall_64+0xcd/0xfa0 [ 1379.681546][ T3523] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1379.681557][ T3523] RIP: 0033:0x7f8ef1d8f6c9 [ 1379.681567][ T3523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1379.681578][ T3523] RSP: 002b:00007f8ef2c63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1379.681588][ T3523] RAX: ffffffffffffffda RBX: 00007f8ef1fe5fa0 RCX: 00007f8ef1d8f6c9 [ 1379.681596][ T3523] RDX: 0000000000000024 RSI: 0000200000000000 RDI: 0000000000000003 [ 1379.681602][ T3523] RBP: 00007f8ef2c63090 R08: 0000000000000000 R09: 0000000000000000 [ 1379.681609][ T3523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1379.681615][ T3523] R13: 00007f8ef1fe6038 R14: 00007f8ef1fe5fa0 R15: 00007ffce01e4588 [ 1379.681629][ T3523] [ 1379.952050][ T3564] netlink: 8 bytes leftover after parsing attributes in process `syz.2.27370'. [ 1380.562460][ T5948] Bluetooth: hci0: command 0x0406 tx timeout [ 1380.695284][ T3612] FAULT_INJECTION: forcing a failure. [ 1380.695284][ T3612] name failslab, interval 1, probability 0, space 0, times 0 [ 1380.700558][ T3612] CPU: 2 UID: 0 PID: 3612 Comm: syz.4.27391 Not tainted syzkaller #0 PREEMPT(full) [ 1380.700582][ T3612] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1380.700593][ T3612] Call Trace: [ 1380.700600][ T3612] [ 1380.700608][ T3612] dump_stack_lvl+0x16c/0x1f0 [ 1380.700642][ T3612] should_fail_ex+0x512/0x640 [ 1380.700677][ T3612] ? fs_reclaim_acquire+0xae/0x150 [ 1380.700703][ T3612] should_failslab+0xc2/0x120 [ 1380.700725][ T3612] __kmalloc_noprof+0xdd/0x880 [ 1380.700756][ T3612] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1380.700784][ T3612] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1380.700805][ T3612] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1380.700829][ T3612] ? tomoyo_profile+0x47/0x60 [ 1380.700855][ T3612] tomoyo_path_number_perm+0x245/0x580 [ 1380.700873][ T3612] ? tomoyo_path_number_perm+0x237/0x580 [ 1380.700893][ T3612] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1380.700913][ T3612] ? find_held_lock+0x2b/0x80 [ 1380.700961][ T3612] ? find_held_lock+0x2b/0x80 [ 1380.700983][ T3612] ? hook_file_ioctl_common+0x145/0x410 [ 1380.701013][ T3612] ? __fget_files+0x20e/0x3c0 [ 1380.701037][ T3612] security_file_ioctl+0x9b/0x240 [ 1380.701060][ T3612] __x64_sys_ioctl+0xb7/0x210 [ 1380.701088][ T3612] do_syscall_64+0xcd/0xfa0 [ 1380.701107][ T3612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1380.701126][ T3612] RIP: 0033:0x7f1657f8f6c9 [ 1380.701142][ T3612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1380.701160][ T3612] RSP: 002b:00007f1658dfd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1380.701178][ T3612] RAX: ffffffffffffffda RBX: 00007f16581e5fa0 RCX: 00007f1657f8f6c9 [ 1380.701190][ T3612] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008 [ 1380.701201][ T3612] RBP: 00007f1658dfd090 R08: 0000000000000000 R09: 0000000000000000 [ 1380.701213][ T3612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1380.701223][ T3612] R13: 00007f16581e6038 R14: 00007f16581e5fa0 R15: 00007fff4d868308 [ 1380.701250][ T3612] [ 1380.782541][ T3612] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1381.337714][ T3651] FAULT_INJECTION: forcing a failure. [ 1381.337714][ T3651] name failslab, interval 1, probability 0, space 0, times 0 [ 1381.345858][ T3651] CPU: 3 UID: 0 PID: 3651 Comm: syz.1.27407 Not tainted syzkaller #0 PREEMPT(full) [ 1381.345883][ T3651] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1381.345894][ T3651] Call Trace: [ 1381.345907][ T3651] [ 1381.345914][ T3651] dump_stack_lvl+0x16c/0x1f0 [ 1381.345958][ T3651] should_fail_ex+0x512/0x640 [ 1381.345985][ T3651] ? fs_reclaim_acquire+0xae/0x150 [ 1381.346007][ T3651] should_failslab+0xc2/0x120 [ 1381.346028][ T3651] __kmalloc_noprof+0xdd/0x880 [ 1381.346053][ T3651] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1381.346079][ T3651] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1381.346097][ T3651] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1381.346121][ T3651] ? tomoyo_profile+0x47/0x60 [ 1381.346145][ T3651] tomoyo_path_number_perm+0x245/0x580 [ 1381.346161][ T3651] ? tomoyo_path_number_perm+0x237/0x580 [ 1381.346180][ T3651] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1381.346199][ T3651] ? find_held_lock+0x2b/0x80 [ 1381.346241][ T3651] ? find_held_lock+0x2b/0x80 [ 1381.346262][ T3651] ? hook_file_ioctl_common+0x145/0x410 [ 1381.346290][ T3651] ? __fget_files+0x20e/0x3c0 [ 1381.346312][ T3651] security_file_ioctl+0x9b/0x240 [ 1381.346334][ T3651] __x64_sys_ioctl+0xb7/0x210 [ 1381.346360][ T3651] do_syscall_64+0xcd/0xfa0 [ 1381.346378][ T3651] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1381.346396][ T3651] RIP: 0033:0x7f6ac7d8f6c9 [ 1381.346412][ T3651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1381.346428][ T3651] RSP: 002b:00007f6ac8bb6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1381.346446][ T3651] RAX: ffffffffffffffda RBX: 00007f6ac7fe6180 RCX: 00007f6ac7d8f6c9 [ 1381.346457][ T3651] RDX: 0000200000002280 RSI: 0000000000008914 RDI: 0000000000000007 [ 1381.346468][ T3651] RBP: 00007f6ac8bb6090 R08: 0000000000000000 R09: 0000000000000000 [ 1381.346478][ T3651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1381.346489][ T3651] R13: 00007f6ac7fe6218 R14: 00007f6ac7fe6180 R15: 00007fff70afad48 [ 1381.346544][ T3651] [ 1381.346551][ T3651] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1382.707205][ T3669] netlink: 8 bytes leftover after parsing attributes in process `syz.4.27414'. [ 1382.850073][ T3675] picdev_read: 187 callbacks suppressed [ 1382.850087][ T3675] kvm: pic: non byte read [ 1383.205428][ T3701] FAULT_INJECTION: forcing a failure. [ 1383.205428][ T3701] name failslab, interval 1, probability 0, space 0, times 0 [ 1383.209762][ T3701] CPU: 0 UID: 0 PID: 3701 Comm: syz.0.27429 Not tainted syzkaller #0 PREEMPT(full) [ 1383.209786][ T3701] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1383.209797][ T3701] Call Trace: [ 1383.209803][ T3701] [ 1383.209811][ T3701] dump_stack_lvl+0x16c/0x1f0 [ 1383.209844][ T3701] should_fail_ex+0x512/0x640 [ 1383.209865][ T3701] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1383.209896][ T3701] should_failslab+0xc2/0x120 [ 1383.209917][ T3701] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1383.209944][ T3701] ? getname_flags.part.0+0x4c/0x550 [ 1383.209974][ T3701] ? getname_flags.part.0+0x4c/0x550 [ 1383.209996][ T3701] getname_flags.part.0+0x4c/0x550 [ 1383.210024][ T3701] getname_flags+0x93/0xf0 [ 1383.210042][ T3701] do_sys_openat2+0xb8/0x1d0 [ 1383.210065][ T3701] ? __pfx_do_sys_openat2+0x10/0x10 [ 1383.210092][ T3701] ? __fget_files+0x20e/0x3c0 [ 1383.210116][ T3701] __x64_sys_openat+0x174/0x210 [ 1383.210138][ T3701] ? __pfx___x64_sys_openat+0x10/0x10 [ 1383.210160][ T3701] ? ksys_write+0x1ac/0x250 [ 1383.210187][ T3701] do_syscall_64+0xcd/0xfa0 [ 1383.210201][ T3701] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1383.210213][ T3701] RIP: 0033:0x7f9cd438f6c9 [ 1383.210223][ T3701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1383.210234][ T3701] RSP: 002b:00007f9cd5171038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1383.210245][ T3701] RAX: ffffffffffffffda RBX: 00007f9cd45e5fa0 RCX: 00007f9cd438f6c9 [ 1383.210252][ T3701] RDX: 0000000000000000 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 1383.210258][ T3701] RBP: 00007f9cd5171090 R08: 0000000000000000 R09: 0000000000000000 [ 1383.210265][ T3701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1383.210271][ T3701] R13: 00007f9cd45e6038 R14: 00007f9cd45e5fa0 R15: 00007ffc1d215408 [ 1383.210286][ T3701] [ 1383.402429][ T3707] kvm: pic: non byte read [ 1383.406986][ T3707] kvm: pic: non byte read [ 1383.409856][ T3707] pic_ioport_write: 78 callbacks suppressed [ 1383.409865][ T3707] kvm: pic: single mode not supported [ 1383.411673][ T3707] pic_ioport_write: 34 callbacks suppressed [ 1383.411681][ T3707] kvm: pic: level sensitive irq not supported [ 1383.416143][ T3707] kvm: pic: non byte read [ 1383.420908][ T3707] kvm: pic: single mode not supported [ 1383.421208][ T3707] kvm: pic: non byte read [ 1383.426247][ T3707] kvm: pic: non byte read [ 1383.430107][ T3707] kvm: pic: non byte read [ 1383.433087][ T3707] kvm: pic: single mode not supported [ 1383.433097][ T3707] kvm: pic: level sensitive irq not supported [ 1383.435291][ T3707] kvm: pic: non byte read [ 1383.441555][ T3707] kvm: pic: single mode not supported [ 1383.441855][ T3707] kvm: pic: non byte read [ 1383.446570][ T3707] kvm: pic: non byte read [ 1383.610077][ T3710] kvm: pic: single mode not supported [ 1383.610096][ T3710] kvm: pic: level sensitive irq not supported [ 1383.614730][ T3710] kvm: pic: single mode not supported [ 1383.626287][ T3710] kvm: pic: single mode not supported [ 1383.628685][ T3710] kvm: pic: level sensitive irq not supported [ 1383.633889][ T3710] kvm: pic: single mode not supported [ 1383.728198][ T3713] kvm: pic: single mode not supported [ 1383.730577][ T3713] kvm: pic: level sensitive irq not supported [ 1383.734819][ T3713] kvm: pic: single mode not supported [ 1383.743124][ T3713] kvm: pic: level sensitive irq not supported [ 1383.939213][ T3729] 9pnet: Could not find request transport: 0xffffffffffffffff [ 1383.963810][ T3728] kvm: pic: level sensitive irq not supported [ 1383.971022][ T3728] kvm: pic: level sensitive irq not supported [ 1384.226624][ T3693] netlink: 8 bytes leftover after parsing attributes in process `syz.4.27425'. [ 1384.299596][ T3743] kvm: pic: level sensitive irq not supported [ 1384.307349][ T3743] kvm: pic: level sensitive irq not supported [ 1384.517622][ T40] audit: type=1400 audit(1763158825.526:697): avc: denied { ioctl } for pid=3753 comm="syz.0.27448" path="/dev/loop-control" dev="devtmpfs" ino=657 ioctlcmd=0x4c81 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 1384.673205][ T3763] FAULT_INJECTION: forcing a failure. [ 1384.673205][ T3763] name failslab, interval 1, probability 0, space 0, times 0 [ 1384.677172][ T3763] CPU: 1 UID: 0 PID: 3763 Comm: syz.4.27452 Not tainted syzkaller #0 PREEMPT(full) [ 1384.677186][ T3763] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1384.677193][ T3763] Call Trace: [ 1384.677198][ T3763] [ 1384.677202][ T3763] dump_stack_lvl+0x16c/0x1f0 [ 1384.677224][ T3763] should_fail_ex+0x512/0x640 [ 1384.677238][ T3763] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1384.677257][ T3763] should_failslab+0xc2/0x120 [ 1384.677270][ T3763] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1384.677287][ T3763] ? getname_flags.part.0+0x4c/0x550 [ 1384.677306][ T3763] ? getname_flags.part.0+0x4c/0x550 [ 1384.677320][ T3763] getname_flags.part.0+0x4c/0x550 [ 1384.677350][ T3763] getname_flags+0x93/0xf0 [ 1384.677361][ T3763] do_sys_openat2+0xb8/0x1d0 [ 1384.677376][ T3763] ? __pfx_do_sys_openat2+0x10/0x10 [ 1384.677390][ T3763] ? find_held_lock+0x2b/0x80 [ 1384.677405][ T3763] ? handle_mm_fault+0x2ab/0xd10 [ 1384.677424][ T3763] __x64_sys_openat+0x174/0x210 [ 1384.677439][ T3763] ? __pfx___x64_sys_openat+0x10/0x10 [ 1384.677455][ T3763] ? do_user_addr_fault+0x843/0x1370 [ 1384.677471][ T3763] do_syscall_64+0xcd/0xfa0 [ 1384.677483][ T3763] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1384.677494][ T3763] RIP: 0033:0x7f1657f8df10 [ 1384.677504][ T3763] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44 [ 1384.677515][ T3763] RSP: 002b:00007f1658dfcb70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1384.677526][ T3763] RAX: ffffffffffffffda RBX: 000000000000ad02 RCX: 00007f1657f8df10 [ 1384.677533][ T3763] RDX: 000000000000ad02 RSI: 00007f1658dfcc10 RDI: 00000000ffffff9c [ 1384.677539][ T3763] RBP: 00007f1658dfcc10 R08: 0000000000000000 R09: 002367732f766564 [ 1384.677546][ T3763] R10: 0000000000000000 R11: 0000000000000293 R12: cccccccccccccccd [ 1384.677552][ T3763] R13: 00007f16581e6038 R14: 00007f16581e5fa0 R15: 00007fff4d868308 [ 1384.677567][ T3763] [ 1384.714831][ T3767] netlink: 8 bytes leftover after parsing attributes in process `syz.0.27454'. [ 1385.426914][ T3826] FAULT_INJECTION: forcing a failure. [ 1385.426914][ T3826] name failslab, interval 1, probability 0, space 0, times 0 [ 1385.430855][ T3826] CPU: 1 UID: 0 PID: 3826 Comm: syz.2.27479 Not tainted syzkaller #0 PREEMPT(full) [ 1385.430871][ T3826] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1385.430877][ T3826] Call Trace: [ 1385.430882][ T3826] [ 1385.430886][ T3826] dump_stack_lvl+0x16c/0x1f0 [ 1385.430908][ T3826] should_fail_ex+0x512/0x640 [ 1385.430921][ T3826] ? fs_reclaim_acquire+0xae/0x150 [ 1385.430935][ T3826] should_failslab+0xc2/0x120 [ 1385.430949][ T3826] __kmalloc_noprof+0xdd/0x880 [ 1385.430965][ T3826] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1385.430982][ T3826] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1385.430994][ T3826] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1385.431009][ T3826] ? tomoyo_profile+0x47/0x60 [ 1385.431025][ T3826] tomoyo_path_number_perm+0x245/0x580 [ 1385.431035][ T3826] ? tomoyo_path_number_perm+0x237/0x580 [ 1385.431047][ T3826] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1385.431058][ T3826] ? find_held_lock+0x2b/0x80 [ 1385.431085][ T3826] ? find_held_lock+0x2b/0x80 [ 1385.431099][ T3826] ? hook_file_ioctl_common+0x145/0x410 [ 1385.431117][ T3826] ? __fget_files+0x20e/0x3c0 [ 1385.431131][ T3826] security_file_ioctl+0x9b/0x240 [ 1385.431145][ T3826] __x64_sys_ioctl+0xb7/0x210 [ 1385.431163][ T3826] do_syscall_64+0xcd/0xfa0 [ 1385.431175][ T3826] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1385.431186][ T3826] RIP: 0033:0x7f8ef1d8f6c9 [ 1385.431196][ T3826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1385.431206][ T3826] RSP: 002b:00007f8ef2c63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1385.431221][ T3826] RAX: ffffffffffffffda RBX: 00007f8ef1fe5fa0 RCX: 00007f8ef1d8f6c9 [ 1385.431228][ T3826] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1385.431234][ T3826] RBP: 00007f8ef2c63090 R08: 0000000000000000 R09: 0000000000000000 [ 1385.431241][ T3826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1385.431247][ T3826] R13: 00007f8ef1fe6038 R14: 00007f8ef1fe5fa0 R15: 00007ffce01e4588 [ 1385.431262][ T3826] [ 1385.431266][ T3826] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1385.678067][ T3846] program syz.0.27488 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1385.727599][ T3856] FAULT_INJECTION: forcing a failure. [ 1385.727599][ T3856] name failslab, interval 1, probability 0, space 0, times 0 [ 1385.731482][ T3856] CPU: 0 UID: 0 PID: 3856 Comm: syz.2.27493 Not tainted syzkaller #0 PREEMPT(full) [ 1385.731497][ T3856] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1385.731504][ T3856] Call Trace: [ 1385.731509][ T3856] [ 1385.731513][ T3856] dump_stack_lvl+0x16c/0x1f0 [ 1385.731536][ T3856] should_fail_ex+0x512/0x640 [ 1385.731549][ T3856] ? fs_reclaim_acquire+0xae/0x150 [ 1385.731569][ T3856] should_failslab+0xc2/0x120 [ 1385.731583][ T3856] __kmalloc_noprof+0xdd/0x880 [ 1385.731599][ T3856] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1385.731616][ T3856] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1385.731628][ T3856] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1385.731643][ T3856] ? tomoyo_profile+0x47/0x60 [ 1385.731659][ T3856] tomoyo_path_number_perm+0x245/0x580 [ 1385.731669][ T3856] ? tomoyo_path_number_perm+0x237/0x580 [ 1385.731681][ T3856] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1385.731693][ T3856] ? find_held_lock+0x2b/0x80 [ 1385.731720][ T3856] ? find_held_lock+0x2b/0x80 [ 1385.731737][ T3856] ? hook_file_ioctl_common+0x145/0x410 [ 1385.731756][ T3856] ? __fget_files+0x20e/0x3c0 [ 1385.731770][ T3856] security_file_ioctl+0x9b/0x240 [ 1385.731796][ T3856] __x64_sys_ioctl+0xb7/0x210 [ 1385.731816][ T3856] do_syscall_64+0xcd/0xfa0 [ 1385.731828][ T3856] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1385.731840][ T3856] RIP: 0033:0x7f8ef1d8f6c9 [ 1385.731849][ T3856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1385.731861][ T3856] RSP: 002b:00007f8ef2c63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1385.731872][ T3856] RAX: ffffffffffffffda RBX: 00007f8ef1fe5fa0 RCX: 00007f8ef1d8f6c9 [ 1385.731879][ T3856] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000006 [ 1385.731885][ T3856] RBP: 00007f8ef2c63090 R08: 0000000000000000 R09: 0000000000000000 [ 1385.731892][ T3856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1385.731898][ T3856] R13: 00007f8ef1fe6038 R14: 00007f8ef1fe5fa0 R15: 00007ffce01e4588 [ 1385.731913][ T3856] [ 1385.731939][ T3856] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1385.801567][ T3856] program syz.2.27493 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1385.907505][ T3869] FAULT_INJECTION: forcing a failure. [ 1385.907505][ T3869] name failslab, interval 1, probability 0, space 0, times 0 [ 1385.911543][ T3869] CPU: 0 UID: 0 PID: 3869 Comm: syz.0.27498 Not tainted syzkaller #0 PREEMPT(full) [ 1385.911558][ T3869] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1385.911565][ T3869] Call Trace: [ 1385.911569][ T3869] [ 1385.911574][ T3869] dump_stack_lvl+0x16c/0x1f0 [ 1385.911596][ T3869] should_fail_ex+0x512/0x640 [ 1385.911610][ T3869] ? fs_reclaim_acquire+0xae/0x150 [ 1385.911625][ T3869] should_failslab+0xc2/0x120 [ 1385.911638][ T3869] __kmalloc_noprof+0xdd/0x880 [ 1385.911654][ T3869] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1385.911671][ T3869] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1385.911684][ T3869] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1385.911698][ T3869] ? tomoyo_profile+0x47/0x60 [ 1385.911715][ T3869] tomoyo_path_number_perm+0x245/0x580 [ 1385.911731][ T3869] ? tomoyo_path_number_perm+0x237/0x580 [ 1385.911743][ T3869] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1385.911755][ T3869] ? find_held_lock+0x2b/0x80 [ 1385.911782][ T3869] ? find_held_lock+0x2b/0x80 [ 1385.911795][ T3869] ? hook_file_ioctl_common+0x145/0x410 [ 1385.911814][ T3869] ? __fget_files+0x20e/0x3c0 [ 1385.911828][ T3869] security_file_ioctl+0x9b/0x240 [ 1385.911842][ T3869] __x64_sys_ioctl+0xb7/0x210 [ 1385.911859][ T3869] do_syscall_64+0xcd/0xfa0 [ 1385.911871][ T3869] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1385.911882][ T3869] RIP: 0033:0x7f9cd438f6c9 [ 1385.911892][ T3869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1385.911903][ T3869] RSP: 002b:00007f9cd5171038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1385.911913][ T3869] RAX: ffffffffffffffda RBX: 00007f9cd45e5fa0 RCX: 00007f9cd438f6c9 [ 1385.911921][ T3869] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008 [ 1385.911927][ T3869] RBP: 00007f9cd5171090 R08: 0000000000000000 R09: 0000000000000000 [ 1385.911934][ T3869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1385.911940][ T3869] R13: 00007f9cd45e6038 R14: 00007f9cd45e5fa0 R15: 00007ffc1d215408 [ 1385.911955][ T3869] [ 1385.911959][ T3869] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1386.107270][ T3901] FAULT_INJECTION: forcing a failure. [ 1386.107270][ T3901] name failslab, interval 1, probability 0, space 0, times 0 [ 1386.111730][ T3901] CPU: 1 UID: 0 PID: 3901 Comm: syz.1.27510 Not tainted syzkaller #0 PREEMPT(full) [ 1386.111744][ T3901] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1386.111751][ T3901] Call Trace: [ 1386.111755][ T3901] [ 1386.111760][ T3901] dump_stack_lvl+0x16c/0x1f0 [ 1386.111782][ T3901] should_fail_ex+0x512/0x640 [ 1386.111796][ T3901] ? fs_reclaim_acquire+0xae/0x150 [ 1386.111810][ T3901] should_failslab+0xc2/0x120 [ 1386.111824][ T3901] __kmalloc_noprof+0xdd/0x880 [ 1386.111840][ T3901] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1386.111856][ T3901] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1386.111869][ T3901] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1386.111884][ T3901] ? tomoyo_profile+0x47/0x60 [ 1386.111900][ T3901] tomoyo_path_number_perm+0x245/0x580 [ 1386.111911][ T3901] ? tomoyo_path_number_perm+0x237/0x580 [ 1386.111923][ T3901] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1386.111934][ T3901] ? find_held_lock+0x2b/0x80 [ 1386.111961][ T3901] ? find_held_lock+0x2b/0x80 [ 1386.111975][ T3901] ? hook_file_ioctl_common+0x145/0x410 [ 1386.111993][ T3901] ? __fget_files+0x20e/0x3c0 [ 1386.112007][ T3901] security_file_ioctl+0x9b/0x240 [ 1386.112021][ T3901] __x64_sys_ioctl+0xb7/0x210 [ 1386.112038][ T3901] do_syscall_64+0xcd/0xfa0 [ 1386.112050][ T3901] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1386.112061][ T3901] RIP: 0033:0x7f6ac7d8f6c9 [ 1386.112071][ T3901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1386.112081][ T3901] RSP: 002b:00007f6ac8bf8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1386.112092][ T3901] RAX: ffffffffffffffda RBX: 00007f6ac7fe5fa0 RCX: 00007f6ac7d8f6c9 [ 1386.112099][ T3901] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008 [ 1386.112106][ T3901] RBP: 00007f6ac8bf8090 R08: 0000000000000000 R09: 0000000000000000 [ 1386.112113][ T3901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1386.112119][ T3901] R13: 00007f6ac7fe6038 R14: 00007f6ac7fe5fa0 R15: 00007fff70afad48 [ 1386.112134][ T3901] [ 1386.112138][ T3901] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1386.193916][ T3924] netlink: 8 bytes leftover after parsing attributes in process `syz.0.27517'. [ 1386.201940][ T3924] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1386.205823][ T3924] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1386.212722][ T3924] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1386.215322][ T3924] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1386.536147][ T3966] befs: (nullb0): No write support. Marking filesystem read-only [ 1386.541945][ T3966] befs: (nullb0): invalid magic header [ 1388.648043][ T4198] picdev_read: 225 callbacks suppressed [ 1388.648055][ T4198] kvm: pic: non byte read [ 1388.655864][ T4198] kvm: pic: non byte read [ 1388.658948][ T4198] kvm: pic: non byte read [ 1388.662010][ T4198] kvm: pic: non byte read [ 1388.666481][ T4198] kvm: pic: non byte read [ 1388.669586][ T4198] kvm: pic: non byte read [ 1388.672733][ T4198] kvm: pic: non byte read [ 1388.677114][ T4198] kvm: pic: non byte read [ 1388.680197][ T4198] kvm: pic: non byte read [ 1389.170509][ T4221] kvm: pic: non byte read [ 1389.190302][ T4221] pic_ioport_write: 98 callbacks suppressed [ 1389.190320][ T4221] kvm: pic: single mode not supported [ 1389.192350][ T4221] pic_ioport_write: 44 callbacks suppressed [ 1389.192362][ T4221] kvm: pic: level sensitive irq not supported [ 1389.197604][ T4221] kvm: pic: single mode not supported [ 1389.212653][ T4221] kvm: pic: single mode not supported [ 1389.214417][ T4221] kvm: pic: level sensitive irq not supported [ 1389.218011][ T4221] kvm: pic: single mode not supported [ 1390.509296][ T4294] kvm: pic: single mode not supported [ 1390.511577][ T4294] kvm: pic: level sensitive irq not supported [ 1390.519618][ T4294] kvm: pic: single mode not supported [ 1390.529983][ T4294] kvm: pic: single mode not supported [ 1390.532395][ T4294] kvm: pic: level sensitive irq not supported [ 1390.537428][ T4294] kvm: pic: single mode not supported [ 1391.269875][ T4335] kvm: pic: single mode not supported [ 1391.272143][ T4335] kvm: pic: level sensitive irq not supported [ 1391.277100][ T4335] kvm: pic: single mode not supported [ 1391.287885][ T4335] kvm: pic: level sensitive irq not supported [ 1391.398341][ T4344] kvm: pic: level sensitive irq not supported [ 1391.410629][ T4344] kvm: pic: level sensitive irq not supported [ 1391.590378][ T4357] kvm: pic: level sensitive irq not supported [ 1391.603573][ T4357] kvm: pic: level sensitive irq not supported [ 1391.631393][ T4370] netlink: 8 bytes leftover after parsing attributes in process `syz.4.27717'. [ 1392.943306][ T4478] netlink: 8 bytes leftover after parsing attributes in process `syz.2.27770'. [ 1394.406793][ T4609] netlink: 8 bytes leftover after parsing attributes in process `syz.0.27846'. [ 1394.678785][ T4623] picdev_read: 53 callbacks suppressed [ 1394.678796][ T4623] kvm: pic: non byte read [ 1394.685596][ T4623] kvm: pic: non byte read [ 1394.688625][ T4623] pic_ioport_write: 14 callbacks suppressed [ 1394.688634][ T4623] kvm: pic: single mode not supported [ 1394.690355][ T4623] pic_ioport_write: 2 callbacks suppressed [ 1394.690363][ T4623] kvm: pic: level sensitive irq not supported [ 1394.694832][ T4623] kvm: pic: non byte read [ 1394.699179][ T4623] kvm: pic: single mode not supported [ 1394.699481][ T4623] kvm: pic: non byte read [ 1394.703971][ T4623] kvm: pic: non byte read [ 1394.708453][ T4623] kvm: pic: non byte read [ 1394.711045][ T4623] kvm: pic: single mode not supported [ 1394.711053][ T4623] kvm: pic: level sensitive irq not supported [ 1394.713084][ T4623] kvm: pic: non byte read [ 1394.717815][ T4623] kvm: pic: single mode not supported [ 1394.718114][ T4623] kvm: pic: non byte read [ 1394.723033][ T4623] kvm: pic: non byte read [ 1395.179113][ T4659] kvm: pic: non byte read [ 1395.189207][ T4659] kvm: pic: single mode not supported [ 1395.189240][ T4659] kvm: pic: level sensitive irq not supported [ 1395.194473][ T4659] kvm: pic: single mode not supported [ 1395.205349][ T4659] kvm: pic: single mode not supported [ 1395.207769][ T4659] kvm: pic: level sensitive irq not supported [ 1395.212647][ T4659] kvm: pic: single mode not supported [ 1395.982153][ T4684] netlink: 8 bytes leftover after parsing attributes in process `syz.4.27879'. [ 1395.997576][ T4680] kvm: pic: single mode not supported [ 1395.997590][ T4680] kvm: pic: level sensitive irq not supported [ 1396.003983][ T4680] kvm: pic: single mode not supported [ 1396.011573][ T4680] kvm: pic: level sensitive irq not supported [ 1396.053424][ T4687] kvm: pic: level sensitive irq not supported [ 1396.063378][ T4687] kvm: pic: level sensitive irq not supported [ 1396.520230][ T4712] kvm: pic: level sensitive irq not supported [ 1396.530596][ T4712] kvm: pic: level sensitive irq not supported [ 1398.081475][ T4794] netlink: 8 bytes leftover after parsing attributes in process `syz.2.27934'. [ 1400.558791][ T5948] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1400.563412][ T5948] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1400.567081][ T5948] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1400.570272][ T5948] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1400.584231][ T5948] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1400.621439][ T4966] wg1 speed is unknown, defaulting to 1000 [ 1400.734750][ T3120] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1400.784144][ T4966] chnl_net:caif_netlink_parms(): no params data found [ 1400.861335][ T3120] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1400.927812][ T4966] bridge0: port 1(bridge_slave_0) entered blocking state [ 1400.929826][ T4966] bridge0: port 1(bridge_slave_0) entered disabled state [ 1400.932070][ T4966] bridge_slave_0: entered allmulticast mode [ 1400.934751][ T4966] bridge_slave_0: entered promiscuous mode [ 1400.938564][ T4966] bridge0: port 2(bridge_slave_1) entered blocking state [ 1400.940784][ T4966] bridge0: port 2(bridge_slave_1) entered disabled state [ 1400.943075][ T4966] bridge_slave_1: entered allmulticast mode [ 1400.945744][ T4966] bridge_slave_1: entered promiscuous mode [ 1401.005094][ T4966] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1401.010685][ T4966] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1401.073914][ T4966] team0: Port device team_slave_0 added [ 1401.098517][ T3120] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1401.106303][ T4966] team0: Port device team_slave_1 added [ 1401.160415][ T4966] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1401.164219][ T4966] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1401.172907][ T4966] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1401.177618][ T4966] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1401.179876][ T4966] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1401.188265][ T4966] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1401.191921][ T5010] netlink: 8 bytes leftover after parsing attributes in process `syz.2.28035'. [ 1401.216290][ T3120] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1401.287878][ T4966] hsr_slave_0: entered promiscuous mode [ 1401.291299][ T4966] hsr_slave_1: entered promiscuous mode [ 1401.294353][ T4966] debugfs: 'hsr0' already exists in 'hsr' [ 1401.296691][ T4966] Cannot create hsr debugfs directory [ 1401.451899][ T3120] bridge_slave_1: left allmulticast mode [ 1401.453747][ T3120] bridge_slave_1: left promiscuous mode [ 1401.455648][ T3120] bridge0: port 2(bridge_slave_1) entered disabled state [ 1401.459801][ T3120] bridge_slave_0: left allmulticast mode [ 1401.463698][ T3120] bridge_slave_0: left promiscuous mode [ 1401.466209][ T3120] bridge0: port 1(bridge_slave_0) entered disabled state [ 1401.861866][ T3120] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1401.867486][ T3120] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1401.872227][ T3120] bond0 (unregistering): Released all slaves [ 1402.304516][ T3120] hsr_slave_0: left promiscuous mode [ 1402.307989][ T3120] hsr_slave_1: left promiscuous mode [ 1402.311132][ T3120] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1402.314249][ T3120] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1402.325001][ T3120] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1402.335377][ T3120] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1402.395825][ T3120] veth1_macvtap: left promiscuous mode [ 1402.398192][ T3120] veth0_macvtap: left promiscuous mode [ 1402.400662][ T3120] veth1_vlan: left promiscuous mode [ 1402.403496][ T3120] veth0_vlan: left promiscuous mode [ 1402.797873][ T5948] Bluetooth: hci2: command tx timeout [ 1403.262112][ T3120] team0 (unregistering): Port device team_slave_1 removed [ 1403.372923][ T3120] team0 (unregistering): Port device team_slave_0 removed [ 1404.387752][ T4966] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 1404.398055][ T4966] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 1404.406563][ T4966] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 1404.417279][ T4966] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 1404.522590][ T4966] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1404.537956][ T4966] 8021q: adding VLAN 0 to HW filter on device team0 [ 1404.544673][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 1404.546954][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1404.553282][ T1146] bridge0: port 2(bridge_slave_1) entered blocking state [ 1404.555499][ T1146] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1404.724322][ T4966] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1404.924876][ T4966] veth0_vlan: entered promiscuous mode [ 1404.932352][ T4966] veth1_vlan: entered promiscuous mode [ 1404.966612][ T4966] veth0_macvtap: entered promiscuous mode [ 1404.973732][ T4966] veth1_macvtap: entered promiscuous mode [ 1404.994237][ T4966] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1405.007720][ T4966] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1405.015294][ T13] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1405.018057][ T13] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1405.026206][ T13] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1405.029084][ T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1405.033032][ T5948] Bluetooth: hci2: command tx timeout [ 1405.080834][T18514] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1405.083372][T18514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1405.105624][ T3120] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1405.108898][ T3120] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1407.244676][ T5948] Bluetooth: hci2: command tx timeout [ 1408.337381][ T5469] netlink: 8 bytes leftover after parsing attributes in process `syz.4.28234'. [ 1408.949456][ T5939] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1408.954114][ T5939] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1408.957639][ T5939] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1408.960636][ T5939] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1408.963959][ T5939] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1408.990708][ T5495] wg1 speed is unknown, defaulting to 1000 [ 1409.097560][ T1146] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1409.110484][ T5495] chnl_net:caif_netlink_parms(): no params data found [ 1409.197360][ T5495] bridge0: port 1(bridge_slave_0) entered blocking state [ 1409.200129][ T5495] bridge0: port 1(bridge_slave_0) entered disabled state [ 1409.202872][ T5495] bridge_slave_0: entered allmulticast mode [ 1409.205888][ T5495] bridge_slave_0: entered promiscuous mode [ 1409.232060][ T1146] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1409.240673][ T5495] bridge0: port 2(bridge_slave_1) entered blocking state [ 1409.243389][ T5495] bridge0: port 2(bridge_slave_1) entered disabled state [ 1409.246110][ T5495] bridge_slave_1: entered allmulticast mode [ 1409.248858][ T5495] bridge_slave_1: entered promiscuous mode [ 1409.310794][ T5495] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1409.330564][ T1146] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1409.337634][ T5495] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1409.403500][ T1146] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1409.426043][ T5495] team0: Port device team_slave_0 added [ 1409.431169][ T5495] team0: Port device team_slave_1 added [ 1409.467572][ T5939] Bluetooth: hci2: command tx timeout [ 1409.476442][ T5495] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1409.478672][ T5495] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1409.486335][ T5495] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1409.494320][ T5495] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1409.496648][ T5495] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1409.505410][ T5495] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1409.568309][ T5495] hsr_slave_0: entered promiscuous mode [ 1409.570709][ T5495] hsr_slave_1: entered promiscuous mode [ 1409.572875][ T5495] debugfs: 'hsr0' already exists in 'hsr' [ 1409.575147][ T5495] Cannot create hsr debugfs directory [ 1409.684322][ T1146] bridge_slave_1: left allmulticast mode [ 1409.686606][ T1146] bridge_slave_1: left promiscuous mode [ 1409.688692][ T1146] bridge0: port 2(bridge_slave_1) entered disabled state [ 1409.693760][ T1146] bridge_slave_0: left allmulticast mode [ 1409.695550][ T1146] bridge_slave_0: left promiscuous mode [ 1409.697337][ T1146] bridge0: port 1(bridge_slave_0) entered disabled state [ 1410.045652][ T1146] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1410.051417][ T1146] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1410.057656][ T1146] bond0 (unregistering): Released all slaves [ 1410.391634][ T5615] netlink: 8 bytes leftover after parsing attributes in process `syz.0.28298'. [ 1410.450698][ T1146] hsr_slave_0: left promiscuous mode [ 1410.461765][ T1146] hsr_slave_1: left promiscuous mode [ 1410.464442][ T1146] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1410.467421][ T1146] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1410.482139][ T1146] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1410.493684][ T1146] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1410.535069][ T1146] veth1_macvtap: left promiscuous mode [ 1410.537671][ T1146] veth0_macvtap: left promiscuous mode [ 1410.539647][ T1146] veth1_vlan: left promiscuous mode [ 1410.541338][ T1146] veth0_vlan: left promiscuous mode [ 1411.192964][ T5939] Bluetooth: hci4: command tx timeout [ 1411.465866][ T1146] team0 (unregistering): Port device team_slave_1 removed [ 1411.570175][ T1146] team0 (unregistering): Port device team_slave_0 removed [ 1412.316982][ T5654] netlink: 8 bytes leftover after parsing attributes in process `syz.4.28311'. [ 1412.511411][ T5495] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1412.533599][ T5495] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1412.550868][ T5495] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1412.579385][ T5495] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1412.688610][ T5495] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1412.701619][ T5495] 8021q: adding VLAN 0 to HW filter on device team0 [ 1412.712943][ T3120] bridge0: port 1(bridge_slave_0) entered blocking state [ 1412.715204][ T3120] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1412.724540][ T3120] bridge0: port 2(bridge_slave_1) entered blocking state [ 1412.726832][ T3120] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1412.902514][ T5495] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1412.949361][ T5495] veth0_vlan: entered promiscuous mode [ 1412.957564][ T5495] veth1_vlan: entered promiscuous mode [ 1412.982804][ T5495] veth0_macvtap: entered promiscuous mode [ 1412.992205][ T5495] veth1_macvtap: entered promiscuous mode [ 1413.009478][ T5495] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1413.020631][ T5495] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1413.034184][T21191] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1413.039080][T21191] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1413.043105][T21191] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1413.046705][T21191] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1413.112492][ T818] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1413.115850][ T818] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1413.138501][T18514] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1413.142461][T18514] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1413.412313][ T5939] Bluetooth: hci4: command tx timeout [ 1414.672301][ T5840] kvm: requested 72914 ns i8254 timer period limited to 200000 ns [ 1414.679214][ T5840] kvm: requested 44419 ns i8254 timer period limited to 200000 ns [ 1414.683108][ T5840] kvm: requested 7542 ns i8254 timer period limited to 200000 ns [ 1414.691745][ T5840] kvm: requested 191923 ns i8254 timer period limited to 200000 ns [ 1414.710288][ T5840] kvm: requested 129904 ns i8254 timer period limited to 200000 ns [ 1414.729236][ T40] audit: type=1400 audit(1763158853.786:698): avc: denied { setattr } for pid=5839 comm="syz.4.28381" name="binder1" dev="binder" ino=17 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 1415.004642][ T5853] FAULT_INJECTION: forcing a failure. [ 1415.004642][ T5853] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1415.009921][ T5853] CPU: 2 UID: 0 PID: 5853 Comm: syz.2.28390 Not tainted syzkaller #0 PREEMPT(full) [ 1415.009946][ T5853] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1415.009958][ T5853] Call Trace: [ 1415.009975][ T5853] [ 1415.009982][ T5853] dump_stack_lvl+0x16c/0x1f0 [ 1415.010043][ T5853] should_fail_ex+0x512/0x640 [ 1415.010078][ T5853] _copy_from_user+0x2e/0xd0 [ 1415.010102][ T5853] copy_msghdr_from_user+0x98/0x160 [ 1415.010126][ T5853] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1415.010176][ T5853] ___sys_sendmsg+0xfe/0x1d0 [ 1415.010228][ T5853] ? __pfx____sys_sendmsg+0x10/0x10 [ 1415.010249][ T5853] ? __lock_acquire+0x622/0x1c90 [ 1415.010300][ T5853] __sys_sendmsg+0x16d/0x220 [ 1415.010324][ T5853] ? __pfx___sys_sendmsg+0x10/0x10 [ 1415.010364][ T5853] do_syscall_64+0xcd/0xfa0 [ 1415.010385][ T5853] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1415.010403][ T5853] RIP: 0033:0x7fe72058f6c9 [ 1415.010418][ T5853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1415.010435][ T5853] RSP: 002b:00007fe71e7f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1415.010452][ T5853] RAX: ffffffffffffffda RBX: 00007fe7207e5fa0 RCX: 00007fe72058f6c9 [ 1415.010464][ T5853] RDX: 0000000000040080 RSI: 0000200000000740 RDI: 0000000000000006 [ 1415.010475][ T5853] RBP: 00007fe71e7f6090 R08: 0000000000000000 R09: 0000000000000000 [ 1415.010486][ T5853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1415.010497][ T5853] R13: 00007fe7207e6038 R14: 00007fe7207e5fa0 R15: 00007ffc1c72c278 [ 1415.010523][ T5853] [ 1415.624071][ T5865] FAULT_INJECTION: forcing a failure. [ 1415.624071][ T5865] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1415.629472][ T5939] Bluetooth: hci4: command tx timeout [ 1415.630702][ T5865] CPU: 2 UID: 0 PID: 5865 Comm: syz.1.28395 Not tainted syzkaller #0 PREEMPT(full) [ 1415.630727][ T5865] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1415.630740][ T5865] Call Trace: [ 1415.630747][ T5865] [ 1415.630754][ T5865] dump_stack_lvl+0x16c/0x1f0 [ 1415.630790][ T5865] should_fail_ex+0x512/0x640 [ 1415.630816][ T5865] _copy_from_user+0x2e/0xd0 [ 1415.630842][ T5865] copy_from_sockptr_offset.constprop.0+0x153/0x1a0 [ 1415.630866][ T5865] ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10 [ 1415.630897][ T5865] do_ipv6_setsockopt+0x86e/0x44b0 [ 1415.630924][ T5865] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 1415.630950][ T5865] ? find_held_lock+0x2b/0x80 [ 1415.630975][ T5865] ? avc_has_perm_noaudit+0x117/0x3b0 [ 1415.631006][ T5865] ? avc_has_perm_noaudit+0x149/0x3b0 [ 1415.631036][ T5865] ? avc_has_perm+0x144/0x1f0 [ 1415.631061][ T5865] ? __pfx_avc_has_perm+0x10/0x10 [ 1415.631088][ T5865] ? get_pid_task+0x106/0x250 [ 1415.631106][ T5865] ? proc_fail_nth_write+0x9f/0x220 [ 1415.631134][ T5865] ? sock_has_perm+0x259/0x2f0 [ 1415.631170][ T5865] ? __pfx_sock_has_perm+0x10/0x10 [ 1415.631203][ T5865] ? ipv6_setsockopt+0xcb/0x170 [ 1415.631223][ T5865] ipv6_setsockopt+0xcb/0x170 [ 1415.631247][ T5865] rawv6_setsockopt+0xc2/0x510 [ 1415.631267][ T5865] ? __pfx_rawv6_setsockopt+0x10/0x10 [ 1415.631287][ T5865] ? selinux_socket_setsockopt+0x6a/0x80 [ 1415.631304][ T5865] ? sock_common_setsockopt+0x2e/0xf0 [ 1415.631333][ T5865] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 1415.631363][ T5865] do_sock_setsockopt+0xf3/0x1d0 [ 1415.631395][ T5865] __sys_setsockopt+0x1a0/0x230 [ 1415.631423][ T5865] __x64_sys_setsockopt+0xbd/0x160 [ 1415.631446][ T5865] ? do_syscall_64+0x91/0xfa0 [ 1415.631463][ T5865] ? lockdep_hardirqs_on+0x7c/0x110 [ 1415.631481][ T5865] do_syscall_64+0xcd/0xfa0 [ 1415.631500][ T5865] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1415.631519][ T5865] RIP: 0033:0x7f6ac7d8f6c9 [ 1415.631536][ T5865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1415.631553][ T5865] RSP: 002b:00007f6ac8bf8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 1415.631572][ T5865] RAX: ffffffffffffffda RBX: 00007f6ac7fe5fa0 RCX: 00007f6ac7d8f6c9 [ 1415.631585][ T5865] RDX: 00000000000000ca RSI: 0000000000000029 RDI: 0000000000000007 [ 1415.631596][ T5865] RBP: 00007f6ac8bf8090 R08: 000000000000000c R09: 0000000000000000 [ 1415.631606][ T5865] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001 [ 1415.631617][ T5865] R13: 00007f6ac7fe6038 R14: 00007f6ac7fe5fa0 R15: 00007fff70afad48 [ 1415.631643][ T5865] [ 1416.288886][ T40] audit: type=1400 audit(1763158855.245:699): avc: denied { write } for pid=5887 comm="syz.2.28406" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 1416.288980][ T5890] random: crng reseeded on system resumption [ 1416.328928][ T40] audit: type=1400 audit(1763158855.273:700): avc: denied { ioctl } for pid=5887 comm="syz.2.28406" path="/dev/snapshot" dev="devtmpfs" ino=98 ioctlcmd=0x330d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 1416.331125][ T5890] netlink: 8 bytes leftover after parsing attributes in process `syz.2.28406'. [ 1416.340757][ T5890] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1416.344315][ T5890] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1416.348773][ T5890] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1416.352223][ T5890] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1416.665493][ T1419] ieee802154 phy0 wpan0: encryption failed: -22 [ 1416.668039][ T1419] ieee802154 phy1 wpan1: encryption failed: -22 [ 1416.964553][ T5934] FAULT_INJECTION: forcing a failure. [ 1416.964553][ T5934] name failslab, interval 1, probability 0, space 0, times 0 [ 1416.970022][ T5934] CPU: 2 UID: 0 PID: 5934 Comm: syz.2.28425 Not tainted syzkaller #0 PREEMPT(full) [ 1416.970046][ T5934] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1416.970058][ T5934] Call Trace: [ 1416.970065][ T5934] [ 1416.970073][ T5934] dump_stack_lvl+0x16c/0x1f0 [ 1416.970107][ T5934] should_fail_ex+0x512/0x640 [ 1416.970127][ T5934] ? fs_reclaim_acquire+0xae/0x150 [ 1416.970151][ T5934] should_failslab+0xc2/0x120 [ 1416.970193][ T5934] __kmalloc_noprof+0xdd/0x880 [ 1416.970216][ T5934] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1416.970241][ T5934] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1416.970259][ T5934] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1416.970284][ T5934] ? tomoyo_profile+0x47/0x60 [ 1416.970311][ T5934] tomoyo_path_number_perm+0x245/0x580 [ 1416.970329][ T5934] ? tomoyo_path_number_perm+0x237/0x580 [ 1416.970348][ T5934] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1416.970367][ T5934] ? find_held_lock+0x2b/0x80 [ 1416.970413][ T5934] ? find_held_lock+0x2b/0x80 [ 1416.970427][ T5934] ? hook_file_ioctl_common+0x145/0x410 [ 1416.970446][ T5934] ? __fget_files+0x20e/0x3c0 [ 1416.970460][ T5934] security_file_ioctl+0x9b/0x240 [ 1416.970474][ T5934] __x64_sys_ioctl+0xb7/0x210 [ 1416.970491][ T5934] do_syscall_64+0xcd/0xfa0 [ 1416.970503][ T5934] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1416.970515][ T5934] RIP: 0033:0x7fe72058f2cb [ 1416.970524][ T5934] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00 [ 1416.970535][ T5934] RSP: 002b:00007fe71e7f4490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1416.970546][ T5934] RAX: ffffffffffffffda RBX: 00007fe71e7f4be0 RCX: 00007fe72058f2cb [ 1416.970553][ T5934] RDX: 00007fe71e7f4aa0 RSI: 000000008138ae83 RDI: 0000000000000007 [ 1416.970560][ T5934] RBP: ffffffffffffffff R08: 0000000000000001 R09: 0000000000000043 [ 1416.970567][ T5934] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000018 [ 1416.970573][ T5934] R13: 0000200001000000 R14: 0000200000fe8000 R15: 00000000fec00000 [ 1416.970588][ T5934] [ 1416.970593][ T5934] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1417.944756][ T5939] Bluetooth: hci4: command tx timeout [ 1418.590221][ T6030] FAULT_INJECTION: forcing a failure. [ 1418.590221][ T6030] name failslab, interval 1, probability 0, space 0, times 0 [ 1418.595468][ T6030] CPU: 2 UID: 0 PID: 6030 Comm: syz.1.28464 Not tainted syzkaller #0 PREEMPT(full) [ 1418.595490][ T6030] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1418.595500][ T6030] Call Trace: [ 1418.595508][ T6030] [ 1418.595515][ T6030] dump_stack_lvl+0x16c/0x1f0 [ 1418.595548][ T6030] should_fail_ex+0x512/0x640 [ 1418.595570][ T6030] ? fs_reclaim_acquire+0xae/0x150 [ 1418.595594][ T6030] should_failslab+0xc2/0x120 [ 1418.595616][ T6030] __kmalloc_noprof+0xdd/0x880 [ 1418.595643][ T6030] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1418.595670][ T6030] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1418.595691][ T6030] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1418.595715][ T6030] ? tomoyo_profile+0x47/0x60 [ 1418.595742][ T6030] tomoyo_path_number_perm+0x245/0x580 [ 1418.595759][ T6030] ? tomoyo_path_number_perm+0x237/0x580 [ 1418.595780][ T6030] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1418.595800][ T6030] ? find_held_lock+0x2b/0x80 [ 1418.595848][ T6030] ? find_held_lock+0x2b/0x80 [ 1418.595869][ T6030] ? hook_file_ioctl_common+0x145/0x410 [ 1418.595900][ T6030] ? __fget_files+0x20e/0x3c0 [ 1418.595924][ T6030] security_file_ioctl+0x9b/0x240 [ 1418.595948][ T6030] __x64_sys_ioctl+0xb7/0x210 [ 1418.595976][ T6030] do_syscall_64+0xcd/0xfa0 [ 1418.595997][ T6030] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1418.596016][ T6030] RIP: 0033:0x7f6ac7d8f6c9 [ 1418.596031][ T6030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1418.596048][ T6030] RSP: 002b:00007f6ac8bf8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1418.596066][ T6030] RAX: ffffffffffffffda RBX: 00007f6ac7fe5fa0 RCX: 00007f6ac7d8f6c9 [ 1418.596078][ T6030] RDX: 0000200000000140 RSI: 000000004400ae8f RDI: 0000000000000007 [ 1418.596089][ T6030] RBP: 00007f6ac8bf8090 R08: 0000000000000000 R09: 0000000000000000 [ 1418.596100][ T6030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1418.596111][ T6030] R13: 00007f6ac7fe6038 R14: 00007f6ac7fe5fa0 R15: 00007fff70afad48 [ 1418.596137][ T6030] [ 1418.596146][ T6030] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1418.870073][ T6041] random: crng reseeded on system resumption [ 1419.283011][ T6070] random: crng reseeded on system resumption [ 1420.043726][ T6108] random: crng reseeded on system resumption [ 1421.766323][ T6176] random: crng reseeded on system resumption [ 1421.850439][ T6182] random: crng reseeded on system resumption [ 1422.051317][ T6216] random: crng reseeded on system resumption [ 1422.162029][ T6234] random: crng reseeded on system resumption [ 1422.229558][ T6248] random: crng reseeded on system resumption [ 1422.341173][ T6268] random: crng reseeded on system resumption [ 1422.390847][ T6276] random: crng reseeded on system resumption [ 1422.477285][ T6286] random: crng reseeded on system resumption [ 1422.813787][ T6319] random: crng reseeded on system resumption [ 1422.980813][ T5948] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 1422.997098][ T5948] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 1423.001486][ T5948] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 1423.006044][ T5948] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 1423.009734][ T5948] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 1423.050376][ T6328] wg1 speed is unknown, defaulting to 1000 [ 1423.103136][ T6338] random: crng reseeded on system resumption [ 1423.154904][T18514] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1423.220374][ T6328] chnl_net:caif_netlink_parms(): no params data found [ 1423.276840][T18514] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1423.369275][ T6328] bridge0: port 1(bridge_slave_0) entered blocking state [ 1423.375515][ T6328] bridge0: port 1(bridge_slave_0) entered disabled state [ 1423.378794][ T6328] bridge_slave_0: entered allmulticast mode [ 1423.382778][ T6328] bridge_slave_0: entered promiscuous mode [ 1423.409159][T18514] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1423.417775][ T6328] bridge0: port 2(bridge_slave_1) entered blocking state [ 1423.424636][ T6328] bridge0: port 2(bridge_slave_1) entered disabled state [ 1423.427754][ T6328] bridge_slave_1: entered allmulticast mode [ 1423.432401][ T6328] bridge_slave_1: entered promiscuous mode [ 1423.510193][T18514] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1423.519843][ T6328] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1423.525516][ T6328] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1423.594390][ T6328] team0: Port device team_slave_0 added [ 1423.604887][ T6328] team0: Port device team_slave_1 added [ 1423.663532][ T6328] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1423.668004][ T6328] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1423.678778][ T6328] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1423.684924][ T6328] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1423.688127][ T6328] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1423.700519][ T6328] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1423.812387][ T6328] hsr_slave_0: entered promiscuous mode [ 1423.818229][ T6328] hsr_slave_1: entered promiscuous mode [ 1423.821320][ T6328] debugfs: 'hsr0' already exists in 'hsr' [ 1423.823920][ T6328] Cannot create hsr debugfs directory [ 1424.192905][T18514] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1424.199821][T18514] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1424.205555][T18514] bond0 (unregistering): Released all slaves [ 1424.609504][T18514] hsr_slave_0: left promiscuous mode [ 1424.612568][T18514] hsr_slave_1: left promiscuous mode [ 1424.616359][T18514] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1424.619459][T18514] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1424.628383][T18514] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1424.631328][T18514] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1424.713676][T18514] veth1_macvtap: left promiscuous mode [ 1424.716113][T18514] veth0_macvtap: left promiscuous mode [ 1424.718541][T18514] veth1_vlan: left promiscuous mode [ 1424.720799][T18514] veth0_vlan: left promiscuous mode [ 1425.214226][ T5948] Bluetooth: hci1: command tx timeout [ 1425.619643][T18514] team0 (unregistering): Port device team_slave_1 removed [ 1425.712711][T18514] team0 (unregistering): Port device team_slave_0 removed [ 1426.639944][ T6441] random: crng reseeded on system resumption [ 1426.733766][ T6328] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1426.742639][ T6328] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1426.755876][ T6328] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1426.760647][ T6328] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1426.872471][ T6328] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1426.884158][ T6328] 8021q: adding VLAN 0 to HW filter on device team0 [ 1426.889237][ T76] bridge0: port 1(bridge_slave_0) entered blocking state [ 1426.891911][ T76] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1426.900013][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 1426.902635][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1427.057198][ T6328] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1427.093672][ T6328] veth0_vlan: entered promiscuous mode [ 1427.103648][ T6481] random: crng reseeded on system resumption [ 1427.104405][ T6328] veth1_vlan: entered promiscuous mode [ 1427.133849][ T6328] veth0_macvtap: entered promiscuous mode [ 1427.137585][ T6328] veth1_macvtap: entered promiscuous mode [ 1427.148889][ T6328] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1427.153162][ T6328] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1427.158062][ T818] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1427.175615][ T818] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1427.181530][ T76] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1427.189451][ T76] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1427.222731][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1427.226014][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1427.242641][ T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1427.245336][ T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1427.427693][ T5948] Bluetooth: hci1: command tx timeout [ 1427.957854][ T6524] random: crng reseeded on system resumption [ 1428.930919][ T6609] random: crng reseeded on system resumption [ 1429.140204][ T6640] FAULT_INJECTION: forcing a failure. [ 1429.140204][ T6640] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1429.145679][ T6640] CPU: 2 UID: 0 PID: 6640 Comm: syz.1.28736 Not tainted syzkaller #0 PREEMPT(full) [ 1429.145704][ T6640] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1429.145716][ T6640] Call Trace: [ 1429.145734][ T6640] [ 1429.145742][ T6640] dump_stack_lvl+0x16c/0x1f0 [ 1429.145791][ T6640] should_fail_ex+0x512/0x640 [ 1429.145824][ T6640] _copy_from_user+0x2e/0xd0 [ 1429.145848][ T6640] move_addr_to_kernel+0x65/0x170 [ 1429.145872][ T6640] __sys_connect+0xb1/0x160 [ 1429.145894][ T6640] ? __pfx___sys_connect+0x10/0x10 [ 1429.145924][ T6640] ? __pfx_ksys_write+0x10/0x10 [ 1429.145949][ T6640] __x64_sys_connect+0x72/0xb0 [ 1429.145971][ T6640] ? lockdep_hardirqs_on+0x7c/0x110 [ 1429.145989][ T6640] do_syscall_64+0xcd/0xfa0 [ 1429.146008][ T6640] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1429.146028][ T6640] RIP: 0033:0x7fdf9b58f6c9 [ 1429.146045][ T6640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1429.146085][ T6640] RSP: 002b:00007fdf9c510038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1429.146105][ T6640] RAX: ffffffffffffffda RBX: 00007fdf9b7e5fa0 RCX: 00007fdf9b58f6c9 [ 1429.146119][ T6640] RDX: 0000000000000010 RSI: 0000200000000280 RDI: 0000000000000006 [ 1429.146131][ T6640] RBP: 00007fdf9c510090 R08: 0000000000000000 R09: 0000000000000000 [ 1429.146141][ T6640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1429.146153][ T6640] R13: 00007fdf9b7e6038 R14: 00007fdf9b7e5fa0 R15: 00007ffc1fbc4a18 [ 1429.146180][ T6640] [ 1429.235702][ T6636] bridge0: port 2(bridge_slave_1) entered disabled state [ 1429.238230][ T6636] bridge0: port 1(bridge_slave_0) entered disabled state [ 1429.398358][ T61] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1429.404367][ T61] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1429.408042][ T61] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1429.411164][ T61] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1429.584058][ T6684] random: crng reseeded on system resumption [ 1429.650239][ T5948] Bluetooth: hci1: command tx timeout [ 1430.020498][ T6730] random: crng reseeded on system resumption [ 1430.094652][ T6734] random: crng reseeded on system resumption [ 1430.294015][ T6746] random: crng reseeded on system resumption [ 1430.353272][ T6752] FAULT_INJECTION: forcing a failure. [ 1430.353272][ T6752] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1430.358738][ T6752] CPU: 0 UID: 0 PID: 6752 Comm: syz.1.28789 Not tainted syzkaller #0 PREEMPT(full) [ 1430.358754][ T6752] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1430.358762][ T6752] Call Trace: [ 1430.358766][ T6752] [ 1430.358770][ T6752] dump_stack_lvl+0x16c/0x1f0 [ 1430.358792][ T6752] should_fail_ex+0x512/0x640 [ 1430.358808][ T6752] _copy_from_user+0x2e/0xd0 [ 1430.358823][ T6752] move_addr_to_kernel+0x65/0x170 [ 1430.358837][ T6752] __sys_connect+0xb1/0x160 [ 1430.358849][ T6752] ? __pfx___sys_connect+0x10/0x10 [ 1430.358867][ T6752] ? __pfx_ksys_write+0x10/0x10 [ 1430.358881][ T6752] __x64_sys_connect+0x72/0xb0 [ 1430.358893][ T6752] ? lockdep_hardirqs_on+0x7c/0x110 [ 1430.358904][ T6752] do_syscall_64+0xcd/0xfa0 [ 1430.358916][ T6752] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1430.358928][ T6752] RIP: 0033:0x7fdf9b58f6c9 [ 1430.358937][ T6752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1430.358948][ T6752] RSP: 002b:00007fdf9c510038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1430.358959][ T6752] RAX: ffffffffffffffda RBX: 00007fdf9b7e5fa0 RCX: 00007fdf9b58f6c9 [ 1430.358966][ T6752] RDX: 0000000000000010 RSI: 0000200000000280 RDI: 0000000000000007 [ 1430.358972][ T6752] RBP: 00007fdf9c510090 R08: 0000000000000000 R09: 0000000000000000 [ 1430.358979][ T6752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1430.358985][ T6752] R13: 00007fdf9b7e6038 R14: 00007fdf9b7e5fa0 R15: 00007ffc1fbc4a18 [ 1430.359000][ T6752] [ 1430.462379][ T6760] random: crng reseeded on system resumption [ 1430.564584][ T6769] random: crng reseeded on system resumption [ 1430.632342][ T6776] random: crng reseeded on system resumption [ 1430.755557][ T6790] random: crng reseeded on system resumption [ 1430.853395][ T6800] random: crng reseeded on system resumption [ 1430.895278][ T6804] FAULT_INJECTION: forcing a failure. [ 1430.895278][ T6804] name failslab, interval 1, probability 0, space 0, times 0 [ 1430.900468][ T6804] CPU: 3 UID: 0 PID: 6804 Comm: syz.2.28814 Not tainted syzkaller #0 PREEMPT(full) [ 1430.900492][ T6804] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1430.900503][ T6804] Call Trace: [ 1430.900509][ T6804] [ 1430.900518][ T6804] dump_stack_lvl+0x16c/0x1f0 [ 1430.900552][ T6804] should_fail_ex+0x512/0x640 [ 1430.900573][ T6804] ? fs_reclaim_acquire+0xae/0x150 [ 1430.900599][ T6804] should_failslab+0xc2/0x120 [ 1430.900621][ T6804] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1430.900650][ T6804] ? ima_inode_get+0x120/0x580 [ 1430.900676][ T6804] ? ima_inode_get+0x120/0x580 [ 1430.900696][ T6804] ima_inode_get+0x120/0x580 [ 1430.900721][ T6804] process_measurement+0x585/0x23e0 [ 1430.900747][ T6804] ? avc_has_perm_noaudit+0x149/0x3b0 [ 1430.900785][ T6804] ? __pfx_process_measurement+0x10/0x10 [ 1430.900807][ T6804] ? avc_has_perm+0x144/0x1f0 [ 1430.900832][ T6804] ? __pfx_avc_has_perm+0x10/0x10 [ 1430.900856][ T6804] ? find_held_lock+0x2b/0x80 [ 1430.900895][ T6804] ? avc_has_perm_noaudit+0x117/0x3b0 [ 1430.900945][ T6804] ? file_map_prot_check+0x1eb/0x360 [ 1430.900977][ T6804] ima_file_mmap+0x1a8/0x1d0 [ 1430.900997][ T6804] ? __pfx_ima_file_mmap+0x10/0x10 [ 1430.901015][ T6804] ? __lock_acquire+0x622/0x1c90 [ 1430.901044][ T6804] security_mmap_file+0x88c/0x990 [ 1430.901067][ T6804] vm_mmap_pgoff+0xec/0x470 [ 1430.901088][ T6804] ? find_held_lock+0x2b/0x80 [ 1430.901109][ T6804] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1430.901133][ T6804] ? __fget_files+0x20e/0x3c0 [ 1430.901155][ T6804] ksys_mmap_pgoff+0x32c/0x5c0 [ 1430.901174][ T6804] ? __pfx_ksys_write+0x10/0x10 [ 1430.901195][ T6804] __x64_sys_mmap+0x125/0x190 [ 1430.901215][ T6804] do_syscall_64+0xcd/0xfa0 [ 1430.901239][ T6804] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1430.901257][ T6804] RIP: 0033:0x7fe72058f6c9 [ 1430.901272][ T6804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1430.901288][ T6804] RSP: 002b:00007fe71e7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1430.901305][ T6804] RAX: ffffffffffffffda RBX: 00007fe7207e5fa0 RCX: 00007fe72058f6c9 [ 1430.901317][ T6804] RDX: 88fd537e5c114b6e RSI: 0000000000003000 RDI: 0000200000000000 [ 1430.901328][ T6804] RBP: 00007fe71e7f6090 R08: 0000000000000007 R09: 0000000000000000 [ 1430.901339][ T6804] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001 [ 1430.901349][ T6804] R13: 00007fe7207e6038 R14: 00007fe7207e5fa0 R15: 00007ffc1c72c278 [ 1430.901377][ T6804] [ 1431.822329][ T6837] SELinux: security_context_str_to_sid („) failed with errno=-22 [ 1431.873673][ T5948] Bluetooth: hci1: command tx timeout [ 1432.006144][ T6852] random: crng reseeded on system resumption [ 1432.060746][ T6863] random: crng reseeded on system resumption [ 1432.104331][ T6868] random: crng reseeded on system resumption [ 1432.174790][ T6881] random: crng reseeded on system resumption [ 1432.211859][ T6885] random: crng reseeded on system resumption [ 1432.288342][ T6894] random: crng reseeded on system resumption [ 1432.454444][ T6908] random: crng reseeded on system resumption [ 1432.519469][ T6918] random: crng reseeded on system resumption [ 1432.576935][ T6922] FAULT_INJECTION: forcing a failure. [ 1432.576935][ T6922] name failslab, interval 1, probability 0, space 0, times 0 [ 1432.582456][ T6922] CPU: 1 UID: 0 PID: 6922 Comm: syz.0.28872 Not tainted syzkaller #0 PREEMPT(full) [ 1432.582472][ T6922] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1432.582479][ T6922] Call Trace: [ 1432.582484][ T6922] [ 1432.582488][ T6922] dump_stack_lvl+0x16c/0x1f0 [ 1432.582511][ T6922] should_fail_ex+0x512/0x640 [ 1432.582524][ T6922] ? fs_reclaim_acquire+0xae/0x150 [ 1432.582539][ T6922] should_failslab+0xc2/0x120 [ 1432.582553][ T6922] __kmalloc_noprof+0xdd/0x880 [ 1432.582569][ T6922] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1432.582586][ T6922] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1432.582598][ T6922] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1432.582613][ T6922] ? tomoyo_profile+0x47/0x60 [ 1432.582629][ T6922] tomoyo_path_number_perm+0x245/0x580 [ 1432.582640][ T6922] ? tomoyo_path_number_perm+0x237/0x580 [ 1432.582652][ T6922] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1432.582664][ T6922] ? find_held_lock+0x2b/0x80 [ 1432.582691][ T6922] ? find_held_lock+0x2b/0x80 [ 1432.582704][ T6922] ? hook_file_ioctl_common+0x145/0x410 [ 1432.582723][ T6922] ? __fget_files+0x20e/0x3c0 [ 1432.582737][ T6922] security_file_ioctl+0x9b/0x240 [ 1432.582750][ T6922] __x64_sys_ioctl+0xb7/0x210 [ 1432.582767][ T6922] do_syscall_64+0xcd/0xfa0 [ 1432.582779][ T6922] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1432.582791][ T6922] RIP: 0033:0x7f9cd438f6c9 [ 1432.582817][ T6922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1432.582828][ T6922] RSP: 002b:00007f9cd5171038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1432.582839][ T6922] RAX: ffffffffffffffda RBX: 00007f9cd45e5fa0 RCX: 00007f9cd438f6c9 [ 1432.582846][ T6922] RDX: 0000200000000140 RSI: 000000004400ae8f RDI: 0000000000000007 [ 1432.582853][ T6922] RBP: 00007f9cd5171090 R08: 0000000000000000 R09: 0000000000000000 [ 1432.582859][ T6922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1432.582866][ T6922] R13: 00007f9cd45e6038 R14: 00007f9cd45e5fa0 R15: 00007ffc1d215408 [ 1432.582880][ T6922] [ 1432.582885][ T6922] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1433.034193][ T6963] program syz.0.28890 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1433.047289][ T6963] bridge1: entered promiscuous mode [ 1433.049679][ T6963] bridge1: entered allmulticast mode [ 1433.097741][ T6972] random: crng reseeded on system resumption [ 1433.201022][ T6991] FAULT_INJECTION: forcing a failure. [ 1433.201022][ T6991] name failslab, interval 1, probability 0, space 0, times 0 [ 1433.205118][ T6991] CPU: 2 UID: 0 PID: 6991 Comm: syz.1.28902 Not tainted syzkaller #0 PREEMPT(full) [ 1433.205133][ T6991] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1433.205140][ T6991] Call Trace: [ 1433.205144][ T6991] [ 1433.205149][ T6991] dump_stack_lvl+0x16c/0x1f0 [ 1433.205171][ T6991] should_fail_ex+0x512/0x640 [ 1433.205185][ T6991] ? fs_reclaim_acquire+0xae/0x150 [ 1433.205199][ T6991] should_failslab+0xc2/0x120 [ 1433.205213][ T6991] __kmalloc_noprof+0xdd/0x880 [ 1433.205229][ T6991] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1433.205246][ T6991] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1433.205262][ T6991] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1433.205277][ T6991] ? tomoyo_profile+0x47/0x60 [ 1433.205293][ T6991] tomoyo_path_number_perm+0x245/0x580 [ 1433.205304][ T6991] ? tomoyo_path_number_perm+0x237/0x580 [ 1433.205316][ T6991] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1433.205327][ T6991] ? find_held_lock+0x2b/0x80 [ 1433.205354][ T6991] ? find_held_lock+0x2b/0x80 [ 1433.205368][ T6991] ? hook_file_ioctl_common+0x145/0x410 [ 1433.205386][ T6991] ? __fget_files+0x20e/0x3c0 [ 1433.205400][ T6991] security_file_ioctl+0x9b/0x240 [ 1433.205414][ T6991] __x64_sys_ioctl+0xb7/0x210 [ 1433.205431][ T6991] do_syscall_64+0xcd/0xfa0 [ 1433.205443][ T6991] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1433.205455][ T6991] RIP: 0033:0x7fdf9b58f6c9 [ 1433.205464][ T6991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1433.205475][ T6991] RSP: 002b:00007fdf9c510038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1433.205486][ T6991] RAX: ffffffffffffffda RBX: 00007fdf9b7e5fa0 RCX: 00007fdf9b58f6c9 [ 1433.205493][ T6991] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1433.205499][ T6991] RBP: 00007fdf9c510090 R08: 0000000000000000 R09: 0000000000000000 [ 1433.205506][ T6991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1433.205512][ T6991] R13: 00007fdf9b7e6038 R14: 00007fdf9b7e5fa0 R15: 00007ffc1fbc4a18 [ 1433.205528][ T6991] [ 1433.205532][ T6991] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1433.241621][ T7002] random: crng reseeded on system resumption [ 1433.449735][ T7013] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7013 comm=syz.1.28913 [ 1433.486782][ T7017] random: crng reseeded on system resumption [ 1434.226762][ T7040] bridge0: entered allmulticast mode [ 1434.302109][ T7046] random: crng reseeded on system resumption [ 1434.426668][ T7062] syz.4.28926 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 1435.224607][ T7092] FAULT_INJECTION: forcing a failure. [ 1435.224607][ T7092] name failslab, interval 1, probability 0, space 0, times 0 [ 1435.229067][ T7092] CPU: 3 UID: 0 PID: 7092 Comm: syz.1.28947 Not tainted syzkaller #0 PREEMPT(full) [ 1435.229082][ T7092] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1435.229089][ T7092] Call Trace: [ 1435.229093][ T7092] [ 1435.229098][ T7092] dump_stack_lvl+0x16c/0x1f0 [ 1435.229121][ T7092] should_fail_ex+0x512/0x640 [ 1435.229134][ T7092] ? fs_reclaim_acquire+0xae/0x150 [ 1435.229149][ T7092] should_failslab+0xc2/0x120 [ 1435.229163][ T7092] __kmalloc_noprof+0xdd/0x880 [ 1435.229180][ T7092] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1435.229197][ T7092] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1435.229210][ T7092] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1435.229225][ T7092] ? tomoyo_profile+0x47/0x60 [ 1435.229241][ T7092] tomoyo_path_number_perm+0x245/0x580 [ 1435.229251][ T7092] ? tomoyo_path_number_perm+0x237/0x580 [ 1435.229263][ T7092] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1435.229275][ T7092] ? find_held_lock+0x2b/0x80 [ 1435.229302][ T7092] ? find_held_lock+0x2b/0x80 [ 1435.229316][ T7092] ? hook_file_ioctl_common+0x145/0x410 [ 1435.229335][ T7092] ? __fget_files+0x20e/0x3c0 [ 1435.229349][ T7092] security_file_ioctl+0x9b/0x240 [ 1435.229363][ T7092] __x64_sys_ioctl+0xb7/0x210 [ 1435.229380][ T7092] do_syscall_64+0xcd/0xfa0 [ 1435.229392][ T7092] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1435.229404][ T7092] RIP: 0033:0x7fdf9b58f6c9 [ 1435.229413][ T7092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1435.229424][ T7092] RSP: 002b:00007fdf9c510038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1435.229435][ T7092] RAX: ffffffffffffffda RBX: 00007fdf9b7e5fa0 RCX: 00007fdf9b58f6c9 [ 1435.229443][ T7092] RDX: 0000000000000000 RSI: 000000004090ae82 RDI: 0000000000000008 [ 1435.229449][ T7092] RBP: 00007fdf9c510090 R08: 0000000000000000 R09: 0000000000000000 [ 1435.229456][ T7092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1435.229463][ T7092] R13: 00007fdf9b7e6038 R14: 00007fdf9b7e5fa0 R15: 00007ffc1fbc4a18 [ 1435.229488][ T7092] [ 1435.229494][ T7092] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1435.729268][ T7108] random: crng reseeded on system resumption [ 1435.847432][ T7122] random: crng reseeded on system resumption [ 1435.975746][ T7130] random: crng reseeded on system resumption [ 1436.156652][ T7140] random: crng reseeded on system resumption [ 1436.254503][ T7148] random: crng reseeded on system resumption [ 1436.469380][ T7164] random: crng reseeded on system resumption [ 1436.473838][ T7167] FAULT_INJECTION: forcing a failure. [ 1436.473838][ T7167] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1436.477833][ T7167] CPU: 1 UID: 0 PID: 7167 Comm: syz.2.28978 Not tainted syzkaller #0 PREEMPT(full) [ 1436.477847][ T7167] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1436.477854][ T7167] Call Trace: [ 1436.477865][ T7167] [ 1436.477870][ T7167] dump_stack_lvl+0x16c/0x1f0 [ 1436.477902][ T7167] should_fail_ex+0x512/0x640 [ 1436.477923][ T7167] _copy_from_user+0x2e/0xd0 [ 1436.477937][ T7167] copy_clone_args_from_user+0x150/0x7e0 [ 1436.477953][ T7167] ? get_pid_task+0xfc/0x250 [ 1436.477968][ T7167] ? __pfx_copy_clone_args_from_user+0x10/0x10 [ 1436.478013][ T7167] __do_sys_clone3+0xbd/0x290 [ 1436.478030][ T7167] ? __pfx___do_sys_clone3+0x10/0x10 [ 1436.478052][ T7167] ? __fget_files+0x20e/0x3c0 [ 1436.478075][ T7167] do_syscall_64+0xcd/0xfa0 [ 1436.478087][ T7167] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1436.478099][ T7167] RIP: 0033:0x7fe72058f6c9 [ 1436.478108][ T7167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1436.478120][ T7167] RSP: 002b:00007fe71e7f5f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1436.478131][ T7167] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe72058f6c9 [ 1436.478138][ T7167] RDX: 00007fe71e7f5f20 RSI: 0000000000000058 RDI: 00007fe71e7f5f20 [ 1436.478145][ T7167] RBP: 00007fe71e7f6090 R08: 0000000000000000 R09: 0000000000000058 [ 1436.478152][ T7167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1436.478158][ T7167] R13: 00007fe7207e6038 R14: 00007fe7207e5fa0 R15: 00007ffc1c72c278 [ 1436.478177][ T7167] [ 1436.573415][ T7178] random: crng reseeded on system resumption [ 1436.691367][ T7195] random: crng reseeded on system resumption [ 1436.965723][ T7214] random: crng reseeded on system resumption [ 1437.298573][ T7237] random: crng reseeded on system resumption [ 1437.366656][ T7241] random: crng reseeded on system resumption [ 1437.459672][ T7254] random: crng reseeded on system resumption [ 1438.149121][ T7286] random: crng reseeded on system resumption [ 1438.181274][ T7290] random: crng reseeded on system resumption [ 1438.206515][ T7292] random: crng reseeded on system resumption [ 1438.272409][ T7298] FAULT_INJECTION: forcing a failure. [ 1438.272409][ T7298] name failslab, interval 1, probability 0, space 0, times 0 [ 1438.278023][ T46] Bluetooth: hci5: Frame reassembly failed (-84) [ 1438.282045][ T7298] CPU: 1 UID: 0 PID: 7298 Comm: syz.0.29047 Not tainted syzkaller #0 PREEMPT(full) [ 1438.282068][ T7298] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1438.282079][ T7298] Call Trace: [ 1438.282086][ T7298] [ 1438.282093][ T7298] dump_stack_lvl+0x16c/0x1f0 [ 1438.282122][ T7298] should_fail_ex+0x512/0x640 [ 1438.282136][ T7298] ? fs_reclaim_acquire+0xae/0x150 [ 1438.282151][ T7298] should_failslab+0xc2/0x120 [ 1438.282172][ T7298] __kmalloc_noprof+0xdd/0x880 [ 1438.282189][ T7298] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1438.282207][ T7298] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1438.282220][ T7298] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1438.282236][ T7298] ? tomoyo_profile+0x47/0x60 [ 1438.282253][ T7298] tomoyo_path_number_perm+0x245/0x580 [ 1438.282264][ T7298] ? tomoyo_path_number_perm+0x237/0x580 [ 1438.282276][ T7298] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1438.282289][ T7298] ? find_held_lock+0x2b/0x80 [ 1438.282317][ T7298] ? find_held_lock+0x2b/0x80 [ 1438.282332][ T7298] ? hook_file_ioctl_common+0x145/0x410 [ 1438.282351][ T7298] ? __fget_files+0x20e/0x3c0 [ 1438.282367][ T7298] security_file_ioctl+0x9b/0x240 [ 1438.282381][ T7298] __x64_sys_ioctl+0xb7/0x210 [ 1438.282400][ T7298] do_syscall_64+0xcd/0xfa0 [ 1438.282412][ T7298] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1438.282425][ T7298] RIP: 0033:0x7f9cd438f6c9 [ 1438.282446][ T7298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1438.282459][ T7298] RSP: 002b:00007f9cd5171038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1438.282471][ T7298] RAX: ffffffffffffffda RBX: 00007f9cd45e5fa0 RCX: 00007f9cd438f6c9 [ 1438.282478][ T7298] RDX: 0000000000000000 RSI: 0000000000005437 RDI: 0000000000000005 [ 1438.282485][ T7298] RBP: 00007f9cd5171090 R08: 0000000000000000 R09: 0000000000000000 [ 1438.282492][ T7298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1438.282499][ T7298] R13: 00007f9cd45e6038 R14: 00007f9cd45e5fa0 R15: 00007ffc1d215408 [ 1438.282515][ T7298] [ 1438.282542][ T7298] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1438.302990][ T7304] SELinux: Context system_u:object_r:semanage_exec_t:s0 is not valid (left unmapped). [ 1438.358549][ T40] audit: type=1400 audit(1763158875.891:701): avc: denied { relabelto } for pid=7303 comm="syz.1.29049" name="cgroup.procs" dev="cgroup" ino=62 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:semanage_exec_t:s0" [ 1438.367447][ T40] audit: type=1400 audit(1763158875.891:702): avc: denied { associate } for pid=7303 comm="syz.1.29049" name="cgroup.procs" dev="cgroup" ino=62 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:semanage_exec_t:s0" [ 1438.394009][ T7308] random: crng reseeded on system resumption [ 1438.931903][ T7316] random: crng reseeded on system resumption [ 1439.568217][ T7360] random: crng reseeded on system resumption [ 1440.002043][ T7378] random: crng reseeded on system resumption [ 1440.093115][ T7384] random: crng reseeded on system resumption [ 1440.377938][ T7404] random: crng reseeded on system resumption [ 1440.425721][ T5948] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 1440.599816][ T7425] random: crng reseeded on system resumption [ 1440.686904][ T7433] random: crng reseeded on system resumption [ 1440.813618][ T7449] random: crng reseeded on system resumption [ 1440.850136][ T7455] random: crng reseeded on system resumption [ 1441.071414][ T7477] random: crng reseeded on system resumption [ 1441.592250][ T7499] random: crng reseeded on system resumption [ 1441.684925][ T7506] FAULT_INJECTION: forcing a failure. [ 1441.684925][ T7506] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1441.689303][ T7506] CPU: 0 UID: 0 PID: 7506 Comm: syz.1.29149 Not tainted syzkaller #0 PREEMPT(full) [ 1441.689318][ T7506] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1441.689325][ T7506] Call Trace: [ 1441.689329][ T7506] [ 1441.689333][ T7506] dump_stack_lvl+0x16c/0x1f0 [ 1441.689354][ T7506] should_fail_ex+0x512/0x640 [ 1441.689370][ T7506] _copy_from_user+0x2e/0xd0 [ 1441.689384][ T7506] copy_msghdr_from_user+0x98/0x160 [ 1441.689401][ T7506] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1441.689419][ T7506] ? __pfx__kstrtoull+0x10/0x10 [ 1441.689439][ T7506] ___sys_sendmsg+0xfe/0x1d0 [ 1441.689454][ T7506] ? __pfx____sys_sendmsg+0x10/0x10 [ 1441.689475][ T7506] ? find_held_lock+0x2b/0x80 [ 1441.689499][ T7506] __sys_sendmmsg+0x200/0x420 [ 1441.689515][ T7506] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1441.689535][ T7506] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1441.689553][ T7506] ? fput+0x9b/0xd0 [ 1441.689567][ T7506] ? ksys_write+0x1ac/0x250 [ 1441.689577][ T7506] ? __pfx_ksys_write+0x10/0x10 [ 1441.689590][ T7506] __x64_sys_sendmmsg+0x9c/0x100 [ 1441.689605][ T7506] ? lockdep_hardirqs_on+0x7c/0x110 [ 1441.689615][ T7506] do_syscall_64+0xcd/0xfa0 [ 1441.689626][ T7506] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1441.689638][ T7506] RIP: 0033:0x7fdf9b58f6c9 [ 1441.689648][ T7506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1441.689658][ T7506] RSP: 002b:00007fdf9c510038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1441.689670][ T7506] RAX: ffffffffffffffda RBX: 00007fdf9b7e5fa0 RCX: 00007fdf9b58f6c9 [ 1441.689677][ T7506] RDX: 0000000000000001 RSI: 0000200000003500 RDI: 0000000000000003 [ 1441.689683][ T7506] RBP: 00007fdf9c510090 R08: 0000000000000000 R09: 0000000000000000 [ 1441.689690][ T7506] R10: 0000000000008090 R11: 0000000000000246 R12: 0000000000000001 [ 1441.689697][ T7506] R13: 00007fdf9b7e6038 R14: 00007fdf9b7e5fa0 R15: 00007ffc1fbc4a18 [ 1441.689711][ T7506] [ 1441.924830][ T7529] FAULT_INJECTION: forcing a failure. [ 1441.924830][ T7529] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1441.930089][ T7529] CPU: 2 UID: 0 PID: 7529 Comm: syz.2.29159 Not tainted syzkaller #0 PREEMPT(full) [ 1441.930115][ T7529] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1441.930126][ T7529] Call Trace: [ 1441.930133][ T7529] [ 1441.930141][ T7529] dump_stack_lvl+0x16c/0x1f0 [ 1441.930173][ T7529] should_fail_ex+0x512/0x640 [ 1441.930199][ T7529] _copy_from_user+0x2e/0xd0 [ 1441.930224][ T7529] move_addr_to_kernel+0x65/0x170 [ 1441.930245][ T7529] __sys_sendto+0x1be/0x520 [ 1441.930268][ T7529] ? __pfx___sys_sendto+0x10/0x10 [ 1441.930312][ T7529] ? ksys_write+0x1ac/0x250 [ 1441.930331][ T7529] ? __pfx_ksys_write+0x10/0x10 [ 1441.930351][ T7529] __x64_sys_sendto+0xe0/0x1c0 [ 1441.930373][ T7529] ? do_syscall_64+0x91/0xfa0 [ 1441.930390][ T7529] ? lockdep_hardirqs_on+0x7c/0x110 [ 1441.930406][ T7529] do_syscall_64+0xcd/0xfa0 [ 1441.930425][ T7529] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1441.930444][ T7529] RIP: 0033:0x7fe72058f6c9 [ 1441.930459][ T7529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1441.930476][ T7529] RSP: 002b:00007fe71e7f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1441.930494][ T7529] RAX: ffffffffffffffda RBX: 00007fe7207e5fa0 RCX: 00007fe72058f6c9 [ 1441.930506][ T7529] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 1441.930517][ T7529] RBP: 00007fe71e7f6090 R08: 0000200000e68000 R09: 0000000000000010 [ 1441.930528][ T7529] R10: 00000000200007fd R11: 0000000000000246 R12: 0000000000000001 [ 1441.930539][ T7529] R13: 00007fe7207e6038 R14: 00007fe7207e5fa0 R15: 00007ffc1c72c278 [ 1441.930564][ T7529] [ 1442.977310][ T7578] FAULT_INJECTION: forcing a failure. [ 1442.977310][ T7578] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1442.982456][ T7578] CPU: 2 UID: 0 PID: 7578 Comm: syz.4.29181 Not tainted syzkaller #0 PREEMPT(full) [ 1442.982472][ T7578] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1442.982479][ T7578] Call Trace: [ 1442.982483][ T7578] [ 1442.982488][ T7578] dump_stack_lvl+0x16c/0x1f0 [ 1442.982510][ T7578] should_fail_ex+0x512/0x640 [ 1442.982526][ T7578] _copy_from_user+0x2e/0xd0 [ 1442.982541][ T7578] move_addr_to_kernel+0x65/0x170 [ 1442.982554][ T7578] __sys_connect+0xb1/0x160 [ 1442.982566][ T7578] ? __pfx___sys_connect+0x10/0x10 [ 1442.982584][ T7578] ? __pfx_ksys_write+0x10/0x10 [ 1442.982598][ T7578] __x64_sys_connect+0x72/0xb0 [ 1442.982610][ T7578] ? lockdep_hardirqs_on+0x7c/0x110 [ 1442.982620][ T7578] do_syscall_64+0xcd/0xfa0 [ 1442.982632][ T7578] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1442.982643][ T7578] RIP: 0033:0x7f7b94d8f6c9 [ 1442.982653][ T7578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1442.982664][ T7578] RSP: 002b:00007f7b95ca6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1442.982675][ T7578] RAX: ffffffffffffffda RBX: 00007f7b94fe5fa0 RCX: 00007f7b94d8f6c9 [ 1442.982682][ T7578] RDX: 0000000000000010 RSI: 0000200000000280 RDI: 0000000000000006 [ 1442.982688][ T7578] RBP: 00007f7b95ca6090 R08: 0000000000000000 R09: 0000000000000000 [ 1442.982695][ T7578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1442.982701][ T7578] R13: 00007f7b94fe6038 R14: 00007f7b94fe5fa0 R15: 00007fff683c4c88 [ 1442.982727][ T7578] [ 1443.171681][ T7597] random: crng reseeded on system resumption [ 1443.259757][ T7608] random: crng reseeded on system resumption [ 1443.368355][ T7622] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7622 comm=syz.2.29202 [ 1443.469748][ T7629] random: crng reseeded on system resumption [ 1443.548446][ T7636] random: crng reseeded on system resumption [ 1443.595636][ T7641] random: crng reseeded on system resumption [ 1443.622759][ T7642] FAULT_INJECTION: forcing a failure. [ 1443.622759][ T7642] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1443.626943][ T7642] CPU: 3 UID: 0 PID: 7642 Comm: syz.2.29211 Not tainted syzkaller #0 PREEMPT(full) [ 1443.626959][ T7642] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1443.626966][ T7642] Call Trace: [ 1443.626971][ T7642] [ 1443.626975][ T7642] dump_stack_lvl+0x16c/0x1f0 [ 1443.626997][ T7642] should_fail_ex+0x512/0x640 [ 1443.627013][ T7642] _copy_from_user+0x2e/0xd0 [ 1443.627028][ T7642] copy_clone_args_from_user+0x150/0x7e0 [ 1443.627044][ T7642] ? get_pid_task+0xfc/0x250 [ 1443.627055][ T7642] ? __pfx_copy_clone_args_from_user+0x10/0x10 [ 1443.627077][ T7642] __do_sys_clone3+0xbd/0x290 [ 1443.627092][ T7642] ? __pfx___do_sys_clone3+0x10/0x10 [ 1443.627114][ T7642] ? __fget_files+0x20e/0x3c0 [ 1443.627137][ T7642] do_syscall_64+0xcd/0xfa0 [ 1443.627149][ T7642] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1443.627161][ T7642] RIP: 0033:0x7fe72058f6c9 [ 1443.627170][ T7642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1443.627181][ T7642] RSP: 002b:00007fe71e7f5f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1443.627191][ T7642] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe72058f6c9 [ 1443.627198][ T7642] RDX: 00007fe71e7f5f20 RSI: 0000000000000058 RDI: 00007fe71e7f5f20 [ 1443.627205][ T7642] RBP: 00007fe71e7f6090 R08: 0000000000000000 R09: 0000000000000058 [ 1443.627211][ T7642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1443.627218][ T7642] R13: 00007fe7207e6038 R14: 00007fe7207e5fa0 R15: 00007ffc1c72c278 [ 1443.627232][ T7642] [ 1443.676732][ T5939] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 1443.693695][ T5939] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 1443.696472][ T5939] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 1443.699423][ T5939] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 1443.711232][ T5939] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 1443.773781][ T7647] wg1 speed is unknown, defaulting to 1000 [ 1443.868833][ T7647] chnl_net:caif_netlink_parms(): no params data found [ 1443.959300][ T7661] random: crng reseeded on system resumption [ 1443.964759][ T7647] bridge0: port 1(bridge_slave_0) entered blocking state [ 1443.967348][ T7647] bridge0: port 1(bridge_slave_0) entered disabled state [ 1443.970152][ T7647] bridge_slave_0: entered allmulticast mode [ 1443.973721][ T7647] bridge_slave_0: entered promiscuous mode [ 1443.978341][ T7647] bridge0: port 2(bridge_slave_1) entered blocking state [ 1443.981199][ T7647] bridge0: port 2(bridge_slave_1) entered disabled state [ 1443.984157][ T7647] bridge_slave_1: entered allmulticast mode [ 1443.993207][ T7647] bridge_slave_1: entered promiscuous mode [ 1444.040109][ T7665] random: crng reseeded on system resumption [ 1444.055342][ T7647] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1444.061373][ T7647] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1444.104419][ T7647] team0: Port device team_slave_0 added [ 1444.107808][ T7647] team0: Port device team_slave_1 added [ 1444.164586][ T7647] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1444.166778][ T7647] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1444.175180][ T7647] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1444.196398][ T7647] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1444.198631][ T7647] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1444.207669][ T7647] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1444.248187][ T7647] hsr_slave_0: entered promiscuous mode [ 1444.250389][ T7647] hsr_slave_1: entered promiscuous mode [ 1444.252758][ T7647] debugfs: 'hsr0' already exists in 'hsr' [ 1444.254688][ T7647] Cannot create hsr debugfs directory [ 1444.294988][ T7684] random: crng reseeded on system resumption [ 1444.410409][T18514] bridge_slave_1: left allmulticast mode [ 1444.412241][T18514] bridge_slave_1: left promiscuous mode [ 1444.415349][T18514] bridge0: port 2(bridge_slave_1) entered disabled state [ 1444.422544][T18514] bridge_slave_0: left allmulticast mode [ 1444.424819][T18514] bridge_slave_0: left promiscuous mode [ 1444.426720][T18514] bridge0: port 1(bridge_slave_0) entered disabled state [ 1444.559424][T18514] bridge0 (unregistering): left allmulticast mode [ 1444.814711][T18514] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1444.818603][T18514] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1444.822100][T18514] bond0 (unregistering): Released all slaves [ 1444.868248][ T7702] random: crng reseeded on system resumption [ 1445.172041][ T7721] random: crng reseeded on system resumption [ 1445.225345][T18514] hsr_slave_0: left promiscuous mode [ 1445.240219][T18514] hsr_slave_1: left promiscuous mode [ 1445.491720][ T7742] random: crng reseeded on system resumption [ 1445.899001][ T5948] Bluetooth: hci5: command tx timeout [ 1445.985788][T18514] team0 (unregistering): Port device team_slave_1 removed [ 1446.072073][T18514] team0 (unregistering): Port device team_slave_0 removed [ 1446.735034][ T7647] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1446.740339][ T7647] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1446.746917][ T7647] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1446.756579][ T7647] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1446.776364][ T7757] random: crng reseeded on system resumption [ 1446.832531][ T7647] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1446.858539][ T7647] 8021q: adding VLAN 0 to HW filter on device team0 [ 1446.866282][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 1446.868605][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1446.876370][ T818] bridge0: port 2(bridge_slave_1) entered blocking state [ 1446.878598][ T818] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1446.935061][ T7772] random: crng reseeded on system resumption [ 1446.978093][ T7778] random: crng reseeded on system resumption [ 1447.027284][ T7647] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1447.057989][ T7647] veth0_vlan: entered promiscuous mode [ 1447.063052][ T7647] veth1_vlan: entered promiscuous mode [ 1447.080450][ T7647] veth0_macvtap: entered promiscuous mode [ 1447.084936][ T7647] veth1_macvtap: entered promiscuous mode [ 1447.095463][ T7647] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1447.102004][ T7647] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1447.109228][T18514] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1447.111978][T18514] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1447.119106][T18514] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1447.129348][T18514] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1447.169732][ T3120] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1447.184750][ T3120] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1447.215034][ T3120] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1447.217474][ T3120] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1447.224130][ T7799] random: crng reseeded on system resumption [ 1447.234883][ T7801] random: crng reseeded on system resumption [ 1447.432526][ T7825] random: crng reseeded on system resumption [ 1447.544788][ T7833] program syz.1.29278 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1447.552601][ T7833] bridge1: entered promiscuous mode [ 1447.554676][ T7833] bridge1: entered allmulticast mode [ 1447.987265][ T7858] bridge1: entered promiscuous mode [ 1447.989125][ T7858] bridge1: entered allmulticast mode [ 1448.019318][ T7860] random: crng reseeded on system resumption [ 1448.123251][ T5948] Bluetooth: hci5: command tx timeout [ 1448.376805][ T7882] SELinux: security_context_str_to_sid („) failed with errno=-22 [ 1449.473676][ T7946] program syz.4.29334 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1449.686666][ T7959] nfs: Unknown parameter ''' [ 1450.165774][ T7979] random: crng reseeded on system resumption [ 1450.346160][ T5948] Bluetooth: hci5: command tx timeout [ 1450.487102][ T8016] random: crng reseeded on system resumption [ 1450.617122][ T8039] SELinux: security_context_str_to_sid („) failed with errno=-22 [ 1450.798535][ T8063] SELinux: security_context_str_to_sid („) failed with errno=-22 [ 1450.933188][ T8078] bridge1: entered promiscuous mode [ 1450.935399][ T8078] bridge1: entered allmulticast mode [ 1450.996759][ T8086] SELinux: security_context_str_to_sid („) failed with errno=-22 [ 1451.213983][ T8109] SELinux: security_context_str_to_sid („) failed with errno=-22 [ 1451.390792][ T8137] SELinux: security_context_str_to_sid („) failed with errno=-22 [ 1451.541554][ T8159] SELinux: security_context_str_to_sid („) failed with errno=-22 [ 1451.705420][ T8181] SELinux: security_context_str_to_sid („) failed with errno=-22 [ 1451.851932][ T8199] bridge2: entered promiscuous mode [ 1451.857003][ T8199] bridge2: entered allmulticast mode [ 1451.891725][ T8203] SELinux: security_context_str_to_sid („) failed with errno=-22 [ 1452.099728][ T8217] nfs: Unknown parameter ''' [ 1452.291189][ T8245] bridge3: entered promiscuous mode [ 1452.294585][ T8245] bridge3: entered allmulticast mode [ 1452.580911][ T5948] Bluetooth: hci5: command tx timeout [ 1452.979767][ T8295] bridge2: entered promiscuous mode [ 1452.981505][ T8295] bridge2: entered allmulticast mode [ 1453.142169][ T8319] bridge4: entered promiscuous mode [ 1453.144405][ T8319] bridge4: entered allmulticast mode [ 1453.297061][ T8345] bridge5: entered promiscuous mode [ 1453.298736][ T8345] bridge5: entered allmulticast mode [ 1453.417495][ T8372] bridge6: entered promiscuous mode [ 1453.419191][ T8372] bridge6: entered allmulticast mode [ 1453.528017][ T8393] nfs: Unknown parameter ''' [ 1453.548106][ T8397] bridge3: entered promiscuous mode [ 1453.550293][ T8397] bridge3: entered allmulticast mode [ 1456.667918][ T8549] bridge2: entered promiscuous mode [ 1456.669705][ T8549] bridge2: entered allmulticast mode [ 1457.390969][ T8585] bridge4: entered promiscuous mode [ 1457.392666][ T8585] bridge4: entered allmulticast mode [ 1457.583952][ T8605] SELinux: security_context_str_to_sid („) failed with errno=-22 [ 1457.833571][ T8627] SELinux: security_context_str_to_sid („) failed with errno=-22 [ 1458.986677][ T8731] nfs: Unknown parameter ''' [ 1460.751050][ T40] audit: type=1400 audit(1763158896.835:703): avc: denied { execute } for pid=8783 comm="syz.4.29757" name="file0" dev="ramfs" ino=423268 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1 [ 1460.752972][ T40] audit: type=1400 audit(1763158896.835:704): avc: denied { execute_no_trans } for pid=8783 comm="syz.4.29757" path="/file0" dev="ramfs" ino=423268 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1 [ 1461.105982][ T40] audit: type=1400 audit(1763158897.163:705): avc: denied { setattr } for pid=8797 comm="syz.4.29763" name="UDPLITEv6" dev="sockfs" ino=422466 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 1461.445976][ T8814] netlink: 20 bytes leftover after parsing attributes in process `syz.2.29769'. [ 1461.449634][ T8814] netlink: 12 bytes leftover after parsing attributes in process `syz.2.29769'. [ 1461.468138][ T8814] netlink: 20 bytes leftover after parsing attributes in process `syz.2.29769'. [ 1461.471292][ T8814] netlink: 12 bytes leftover after parsing attributes in process `syz.2.29769'. [ 1462.002252][ T8828] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1462.125886][ T8831] netlink: 'syz.1.29776': attribute type 11 has an invalid length. [ 1462.128882][ T8831] netlink: 36 bytes leftover after parsing attributes in process `syz.1.29776'. [ 1462.230203][ T8834] ------------[ cut here ]------------ [ 1462.232817][ T8834] WARNING: CPU: 0 PID: 8834 at arch/x86/kvm/vmx/vmx.c:5264 handle_exception_nmi+0x14cf/0x1750 [ 1462.237136][ T8834] Modules linked in: [ 1462.238875][ T8834] CPU: 0 UID: 0 PID: 8834 Comm: syz.1.29778 Not tainted syzkaller #0 PREEMPT(full) [ 1462.244405][ T8834] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1462.248503][ T8834] RIP: 0010:handle_exception_nmi+0x14cf/0x1750 [ 1462.250779][ T8834] Code: 20 fe ff 31 ff 89 c5 89 c6 e8 9d 34 69 00 85 ed 0f 85 bd fd ff ff e8 50 39 69 00 90 0f 0b 90 e9 af fd ff ff e8 42 39 69 00 90 <0f> 0b 90 e9 d0 f2 ff ff e8 34 39 69 00 31 f6 48 89 df e8 9a 15 ed [ 1462.257606][ T8834] RSP: 0018:ffffc90007cf79e0 EFLAGS: 00010283 [ 1462.259671][ T8834] RAX: 0000000000010c19 RBX: ffff88802c0b8000 RCX: ffffc900316a0000 [ 1462.262312][ T8834] RDX: 0000000000080000 RSI: ffffffff8153af6e RDI: 0000000000000001 [ 1462.265040][ T8834] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 1462.267910][ T8834] R10: 0000000000000000 R11: 0000000000000001 R12: 000000000f6632eb [ 1462.270797][ T8834] R13: 0000000000000007 R14: 0000000080000300 R15: ffff88802c0b80d8 [ 1462.273885][ T8834] FS: 00007fdf9c5106c0(0000) GS:ffff8880d6a06000(0000) knlGS:0000000000000000 [ 1462.277367][ T8834] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1462.280005][ T8834] CR2: 000000000f6632eb CR3: 0000000044315000 CR4: 0000000000352ef0 [ 1462.283510][ T8834] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 00000000e0000011 [ 1462.286085][ T8844] overlay: Unknown parameter 'hash' [ 1462.286941][ T8834] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400 [ 1462.291386][ T8834] Call Trace: [ 1462.292692][ T8834] [ 1462.293765][ T8834] ? __pfx_handle_exception_nmi+0x10/0x10 [ 1462.295742][ T8834] vmx_handle_exit+0x14bf/0x1c00 [ 1462.297693][ T8834] vcpu_run+0x33e1/0x54d0 [ 1462.299277][ T8834] ? __pfx_vcpu_run+0x10/0x10 [ 1462.300989][ T8834] ? rcu_is_watching+0x12/0xc0 [ 1462.302682][ T8834] ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1920 [ 1462.304807][ T8834] kvm_arch_vcpu_ioctl_run+0xfd3/0x1920 [ 1462.306918][ T8834] kvm_vcpu_ioctl+0x5eb/0x1690 [ 1462.308907][ T8834] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 1462.310848][ T8834] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1462.313099][ T8834] ? do_vfs_ioctl+0x128/0x14f0 [ 1462.314956][ T8834] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1462.317208][ T8834] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 1462.320444][ T8834] ? hook_file_ioctl_common+0x145/0x410 [ 1462.323010][ T8834] ? selinux_file_ioctl+0x180/0x270 [ 1462.325364][ T8834] ? selinux_file_ioctl+0xb4/0x270 [ 1462.327698][ T8834] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 1462.330327][ T8834] __x64_sys_ioctl+0x18e/0x210 [ 1462.332521][ T8834] do_syscall_64+0xcd/0xfa0 [ 1462.334627][ T8834] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1462.337299][ T8834] RIP: 0033:0x7fdf9b58f6c9 [ 1462.339192][ T8834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1462.345882][ T8834] RSP: 002b:00007fdf9c510038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1462.349061][ T8834] RAX: ffffffffffffffda RBX: 00007fdf9b7e5fa0 RCX: 00007fdf9b58f6c9 [ 1462.351915][ T8834] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008 [ 1462.354678][ T8834] RBP: 00007fdf9b611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1462.357495][ T8834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 SYZFAIL: failed to recv rpc [ 1462.360418][ T8834] R13: 00007fdf9b7e6038 R14: 00007fdf9b7e5fa0 R15: 00007ffc1fbc4a18 fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1462.363485][ T8834] [ 1462.364698][ T8834] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1462.367204][ T8834] CPU: 0 UID: 0 PID: 8834 Comm: syz.1.29778 Not tainted syzkaller #0 PREEMPT(full) [ 1462.370382][ T8834] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1462.374085][ T8834] Call Trace: [ 1462.375257][ T8834] [ 1462.376296][ T8834] dump_stack_lvl+0x3d/0x1f0 [ 1462.377928][ T8834] vpanic+0x640/0x6f0 [ 1462.379335][ T8834] ? handle_exception_nmi+0x14cf/0x1750 [ 1462.381334][ T8834] panic+0xca/0xd0 [ 1462.382922][ T8834] ? __pfx_panic+0x10/0x10 [ 1462.384841][ T8834] check_panic_on_warn+0xab/0xb0 [ 1462.386754][ T8834] __warn+0xf6/0x3c0 [ 1462.388121][ T8834] ? handle_exception_nmi+0x14cf/0x1750 [ 1462.390136][ T8834] report_bug+0x3c3/0x580 [ 1462.391837][ T8834] ? handle_exception_nmi+0x14cf/0x1750 [ 1462.394187][ T8834] handle_bug+0x184/0x210 [ 1462.395883][ T8834] exc_invalid_op+0x17/0x50 [ 1462.397617][ T8834] asm_exc_invalid_op+0x1a/0x20 [ 1462.399319][ T8834] RIP: 0010:handle_exception_nmi+0x14cf/0x1750 [ 1462.401440][ T8834] Code: 20 fe ff 31 ff 89 c5 89 c6 e8 9d 34 69 00 85 ed 0f 85 bd fd ff ff e8 50 39 69 00 90 0f 0b 90 e9 af fd ff ff e8 42 39 69 00 90 <0f> 0b 90 e9 d0 f2 ff ff e8 34 39 69 00 31 f6 48 89 df e8 9a 15 ed [ 1462.408152][ T8834] RSP: 0018:ffffc90007cf79e0 EFLAGS: 00010283 [ 1462.410321][ T8834] RAX: 0000000000010c19 RBX: ffff88802c0b8000 RCX: ffffc900316a0000 [ 1462.413525][ T8834] RDX: 0000000000080000 RSI: ffffffff8153af6e RDI: 0000000000000001 [ 1462.416434][ T8834] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 1462.419162][ T8834] R10: 0000000000000000 R11: 0000000000000001 R12: 000000000f6632eb [ 1462.421878][ T8834] R13: 0000000000000007 R14: 0000000080000300 R15: ffff88802c0b80d8 [ 1462.424583][ T8834] ? handle_exception_nmi+0x14ce/0x1750 [ 1462.426497][ T8834] ? __pfx_handle_exception_nmi+0x10/0x10 [ 1462.428454][ T8834] vmx_handle_exit+0x14bf/0x1c00 [ 1462.430170][ T8834] vcpu_run+0x33e1/0x54d0 [ 1462.431703][ T8834] ? __pfx_vcpu_run+0x10/0x10 [ 1462.433323][ T8834] ? rcu_is_watching+0x12/0xc0 [ 1462.434995][ T8834] ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1920 [ 1462.436941][ T8834] kvm_arch_vcpu_ioctl_run+0xfd3/0x1920 [ 1462.438843][ T8834] kvm_vcpu_ioctl+0x5eb/0x1690 [ 1462.440490][ T8834] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 1462.442340][ T8834] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1462.444441][ T8834] ? do_vfs_ioctl+0x128/0x14f0 [ 1462.446110][ T8834] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1462.447845][ T8834] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 1462.450176][ T8834] ? hook_file_ioctl_common+0x145/0x410 [ 1462.452092][ T8834] ? selinux_file_ioctl+0x180/0x270 [ 1462.453885][ T8834] ? selinux_file_ioctl+0xb4/0x270 [ 1462.455640][ T8834] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 1462.457427][ T8834] __x64_sys_ioctl+0x18e/0x210 [ 1462.459122][ T8834] do_syscall_64+0xcd/0xfa0 [ 1462.460704][ T8834] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1462.462744][ T8834] RIP: 0033:0x7fdf9b58f6c9 [ 1462.464281][ T8834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1462.470897][ T8834] RSP: 002b:00007fdf9c510038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1462.473811][ T8834] RAX: ffffffffffffffda RBX: 00007fdf9b7e5fa0 RCX: 00007fdf9b58f6c9 [ 1462.476502][ T8834] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008 [ 1462.479209][ T8834] RBP: 00007fdf9b611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1462.481932][ T8834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1462.484624][ T8834] R13: 00007fdf9b7e6038 R14: 00007fdf9b7e5fa0 R15: 00007ffc1fbc4a18 [ 1462.487199][ T8834] [ 1462.488978][ T8834] Kernel Offset: disabled [ 1462.490480][ T8834] Rebooting in 86400 seconds.. VM DIAGNOSIS: 22:14:04 Registers: info registers vcpu 0 CPU#0 RAX=000000000000005b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85296395 RDI=ffffffff9adda780 RBP=ffffffff9adda740 RSP=ffffc90007cf7350 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001 R12=0000000000000000 R13=000000000000005b R14=ffffffff9adda740 R15=ffffffff85296330 RIP=ffffffff852963bf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] FS =0000 00007fdf9c5106c0 ffffffff 00c09300 DPL=0 DS [-WA] GS =0000 ffff8880d6a06000 ffffffff 00c09300 DPL=0 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000ffff IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000f6632eb CR3=0000000044315000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=00000000e0000011 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000007 RBX=0000000000000001 RCX=0000000000020000 RDX=0000000000000007 RSI=0000000000000000 RDI=0000000000000007 RBP=ffff88804dab8000 RSP=ffffc90007d873d0 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000028 R11=0000000000000001 R12=ffff88804dab8b30 R13=ffff88804dab8b58 R14=0000000000000000 R15=ffffffff8e3c4760 RIP=ffffffff8198a633 RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fcebafca6c0 ffffffff 00c00000 GS =0000 ffff8880d6b06000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055556915d490 CR3=000000004a4e7000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=0000000001000003 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fceba213050 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fceba21305d ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fceba213057 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fceba21306b ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fceba2130f1 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fceba2131cf ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fceba3b74a8 00007fceba3b74a0 00007fceba3b7498 00007fceba3b7470 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcebaf1d100 00007fceba3b7460 00007fceba3b7478 00007fceba3b74c0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fceba3b74b8 00007fceba3b74b0 00007fceba3b74a8 00007fceba3b74a0 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000000b 0000000000000000 0000000000000000 0000000000000258 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=ffffffff8231d42f RBX=00007f7b95b15720 RCX=0000000000059dff RDX=ffffffff8231d602 RSI=ffffffff8231d42f RDI=000000000000000d RBP=ffffffff8231d42f RSP=00007fff683c4cc0 R8 =00007f7b94fe6038 R9 =00007f7b94fd2000 R10=00007f7b947ff008 R11=000000000000000d R12=000000000000000d R13=0000000000000000 R14=ffffffff8231d42f R15=0000000000059dff RIP=00007f7b94c6eef4 RFL=00000282 [--S----] CPL=3 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA] SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 000055556915d500 ffffffff 00c00000 GS =0000 0000000000000000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f7b94fd7fa8 CR3=00000000522c5000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00656d69745f7469 61775f70756f7267 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b94e13050 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b94e1305d ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b94e13057 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b94e1306b ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b94e130f1 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b94e131cf ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b94fb74a8 00007f7b94fb74a0 00007f7b94fb7498 00007f7b94fb7470 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b95b1d100 00007f7b94fb7460 00007f7b94fb0004 0008000f0010000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b94fb74b8 00007f7b94fb74b0 00007f7b94fb74a8 00007f7b94fb74a0 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000001 RBX=ffffc90007f86478 RCX=ffffc90007f863cc RDX=0000000000000000 RSI=ffffffff8da0606e RDI=ffff888049684d84 RBP=ffffc90007f86508 RSP=ffffc90007f86478 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=000000000000ff42 R12=ffffffff81a7e300 R13=ffffc90007f86538 R14=0000000000000000 R15=ffff888049684900 RIP=ffffffff8162bc1e RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d6d06000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f7b95ca5f98 CR3=0000000032389000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff683c5010 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b94e13050 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b94e1305d ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b94e13057 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b94e1306b ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b94e130f1 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b94e131cf ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000