last executing test programs: 2.710531912s ago: executing program 2 (id=1172): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f00000006c0)={0xc, {{0x2, 0x4e23, @private=0xa010102}}, {{0x2, 0x0, @local}}}, 0x108) mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='projid_map\x00') preadv(r1, &(0x7f00000002c0), 0x0, 0x80, 0x0) inotify_add_watch(r1, &(0x7f0000000140)='./file2\x00', 0x4000004) mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000580)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@redirect_dir_off}]}) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r2, 0x400455c8, 0x4) r3 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) r4 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x0, 0x2) ioctl$vim2m_VIDIOC_CREATE_BUFS(r4, 0xc100565c, &(0x7f00000000c0)={0x6a, 0x3, 0x4, {0x1, @vbi={0x10000, 0xfffff7f3, 0x9, 0x20385655, [0x0, 0x4], [0x1, 0x6], 0x1}}, 0x88}) ioctl$AUTOFS_IOC_PROTOSUBVER(r3, 0x40049366, &(0x7f0000000180)) ioctl$TCGETS2(r3, 0x802c542a, &(0x7f0000000380)) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000100)=0xc) r5 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) write$binfmt_script(r5, &(0x7f0000000400)={'#! ', './file0'}, 0xb) 2.039786009s ago: executing program 0 (id=1191): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r3, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, 0x0, 0x0) sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @loopback}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0) sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x58, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NODE={0x44, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "e3de3d7b4cd07ec3ee777de774fc7987cca41989"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x4000004) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000e40), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000000)={0x6c, r5, 0x1, 0x0, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @loopback}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x6c}}, 0x0) 1.160355317s ago: executing program 0 (id=1201): r0 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff) r1 = socket(0x10, 0x803, 0x0) r2 = syz_open_procfs$pagemap(0x0, &(0x7f0000000600)) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x16) ioctl$PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f0000000000)={0x60, 0x0, &(0x7f000007c000/0x4000)=nil, &(0x7f0000839000/0x1000)=nil, 0x0, 0x0, 0x0, 0xc, 0x4b, 0x0, 0x0, 0x2e}) syz_genetlink_get_family_id$smc(&(0x7f0000000280), r1) getsockname$packet(r1, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$FOU_CMD_ADD(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000500)={0x38, r0, 0x209, 0x0, 0x0, {}, [@FOU_ATTR_IFINDEX={0x8, 0xb, r3}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @ipv4={'\x00', '\xff\xff', @empty}}, @FOU_ATTR_AF={0x5, 0x2, 0xa}]}, 0x38}, 0x1, 0x0, 0x0, 0x24008881}, 0x0) syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000080)) exit(0x1ff) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff) (async) socket(0x10, 0x803, 0x0) (async) syz_open_procfs$pagemap(0x0, &(0x7f0000000600)) (async) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x16) (async) ioctl$PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f0000000000)={0x60, 0x0, &(0x7f000007c000/0x4000)=nil, &(0x7f0000839000/0x1000)=nil, 0x0, 0x0, 0x0, 0xc, 0x4b, 0x0, 0x0, 0x2e}) (async) syz_genetlink_get_family_id$smc(&(0x7f0000000280), r1) (async) getsockname$packet(r1, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) sendmsg$FOU_CMD_ADD(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000500)={0x38, r0, 0x209, 0x0, 0x0, {}, [@FOU_ATTR_IFINDEX={0x8, 0xb, r3}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @ipv4={'\x00', '\xff\xff', @empty}}, @FOU_ATTR_AF={0x5, 0x2, 0xa}]}, 0x38}, 0x1, 0x0, 0x0, 0x24008881}, 0x0) (async) syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000080)) (async) exit(0x1ff) (async) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') (async) 1.084773464s ago: executing program 0 (id=1205): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000002c80)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="300000001c000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="40003a000a000200ffffffffffff000008000f"], 0x30}}, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCGPGRP(r3, 0x540f, 0x0) mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x2) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) r4 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00') read$FUSE(r4, &(0x7f0000000080)={0x2020}, 0x2020) 979.822043ms ago: executing program 0 (id=1208): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x40201, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000380)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}) write$tun(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="001c86dd2000100000004000000060ec97000fc83c00fe8000000000000000000000000000aaff02000000000000000000", @ANYRES64=r0], 0xffe) 861.225461ms ago: executing program 1 (id=1209): syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd69000000001406fffe800080000000000000000000000039fe8000000000000000000000000000aa4e204e24", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="51c2"], 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007880)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000040)="af0ac9", 0x3}], 0x1}}], 0x1, 0x4000000) r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x2001) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_misc(r1, &(0x7f0000000040), 0xe09) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0xffffffff9673e35d]}}) 860.897418ms ago: executing program 0 (id=1210): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r3, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, 0x0, 0x0) sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @loopback}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0) sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x58, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NODE={0x44, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "e3de3d7b4cd07ec3ee777de774fc7987cca41989"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x4000004) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000e40), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000000)={0x6c, r5, 0x1, 0x0, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @loopback}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x6c}}, 0x0) 801.286393ms ago: executing program 1 (id=1211): ioctl$VHOST_VDPA_GET_VRING_GROUP(0xffffffffffffffff, 0xc008af7b, &(0x7f0000000000)={0x3, 0x1}) r0 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.bfq.sectors\x00', 0x0, 0x0) ioctl$FICLONE(r0, 0x40049409, r1) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000300)={'tunl0\x00', &(0x7f0000000240)={'syztnl2\x00', 0x0, 0x7, 0x40, 0x1000, 0x1, {{0x21, 0x4, 0x0, 0x0, 0x84, 0x68, 0x0, 0x0, 0x29, 0x0, @empty, @local, {[@timestamp_prespec={0x44, 0x44, 0x54, 0x3, 0xc, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0xc4}, {@empty, 0xb1aa}, {@multicast1, 0x2}, {@multicast2, 0x40}, {@broadcast, 0x3}, {@multicast1, 0x2}, {@loopback, 0x3}, {@multicast2, 0xe3c}]}, @lsrr={0x83, 0x2b, 0x3a, [@broadcast, @local, @loopback, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @rand_addr=0x64010100, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1, @empty]}]}}}}}) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x10, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xffff4592, 0x0, 0x0, 0x0, 0x800}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@alu={0x7, 0x0, 0x9, 0x0, 0x1, 0x40, 0xfffffffffffffff0}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000140)='syzkaller\x00', 0x1, 0x84, &(0x7f0000000180)=""/132, 0x41000, 0x0, '\x00', r2, @fallback=0x22, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x5, 0xb, 0x1ff, 0x9}, 0x10, 0xffffffffffffffff, r1, 0x5, 0x0, &(0x7f0000000380)=[{0x4, 0x3, 0x3, 0x6}, {0x3, 0x7fffffff, 0xb, 0x1}, {0x1, 0x3, 0x2, 0xa}, {0x5, 0x3, 0x1, 0x1}, {0x3, 0x4, 0x1, 0x5}], 0x10, 0x9}, 0x94) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f00000004c0)={0x0, @in={{0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x8, 0x7fffffff, 0x5, 0x1, 0x800}, &(0x7f0000000580)=0x98) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r3, 0x84, 0x1a, &(0x7f00000005c0)={r4, 0x9f, "4881a1943aa97c65741e1b5458f9a3229b6567491a883ecedd360de0bf8f59d01829811c0094d3cf4dd781c57828982c224ed3905518047f29b2ef8f0fb781da6dadecd38efa146a2f4a7ef16471558dd66eb39642e9496849654845f634964ad49392c47d5ddf679562b427ea55fc27526847e255ce845d71e1a619b0398980f2a1fba62b3890694081164e8161cbcb8b81e75eabec4ee20c8269cc1b0d25"}, &(0x7f0000000680)=0xa7) ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000900)={0x4, 0x0, [{0x4, 0x8f, &(0x7f00000006c0)=""/143}, {0xeeef0000, 0xd1, &(0x7f0000000780)=""/209}, {0xeeee8000, 0x3e, &(0x7f0000000880)=""/62}, {0x100000, 0x16, &(0x7f00000008c0)=""/22}]}) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r1, 0x8010671f, &(0x7f0000000a80)={&(0x7f00000009c0)=""/187, 0xbb}) r6 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r6, 0x84, 0x23, &(0x7f0000000ac0)={r4, 0xb1c}, 0x8) r7 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000b00), 0x2, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r7, 0xc0945662, &(0x7f0000000b40)={0x2, 0x0, '\x00', {0x0, @reserved}}) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000c00)={0x288e, 0x2, 0x1, 0x3, 0xffffffff, 0x2}) ioctl$SIOCAX25CTLCON(r1, 0x89e8, &(0x7f0000000c40)={@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bcast, 0x2, 0x81, 0x5, [@bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast]}) ioctl$BTRFS_IOC_SEND(r3, 0x40489426, &(0x7f0000000d00)={{r0}, 0x5, &(0x7f0000000cc0)=[0x4, 0x5, 0x2, 0x80000000, 0x7fffffff], 0x1000, 0x2, 0x1}) ioctl$F2FS_IOC_SET_PIN_FILE(r6, 0x4004f50d, &(0x7f0000000d80)) ioctl$VIDIOC_DBG_S_REGISTER(r7, 0x4038564f, &(0x7f0000000dc0)={{0x0, @name="74d611dd4505dc9519d2d7121f211ca717d0ff2a1ef38cf328e378c2f82a3c57"}, 0x8, 0x7fff, 0x3ff}) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000e00)={r5, 0x7}, 0x8) ioctl$VHOST_VDPA_GET_CONFIG_SIZE(0xffffffffffffffff, 0x8004af79, &(0x7f0000000e40)) close_range(r0, r3, 0x2) sendmsg$nl_crypto(r1, &(0x7f0000001000)={&(0x7f0000000e80)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000fc0)={&(0x7f0000000ec0)=@upd={0x100, 0x12, 0x400, 0x70bd29, 0x25dfdbfd, {{'salsa20-generic\x00'}, '\x00', '\x00', 0x0, 0x3000}, [{0x8}, {0x8, 0x1, 0x6}, {0x8, 0x1, 0x7}, {0x8, 0x1, 0x6}]}, 0x100}, 0x1, 0x0, 0x0, 0x8048}, 0x20008880) getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f0000001040), &(0x7f0000001080)=0x4) getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f00000010c0)=@assoc_value={0x0}, &(0x7f0000001100)=0x8) setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f0000001140)={0x28, @empty, 0x4e22, 0x1, 'wrr\x00', 0x22, 0x0, 0x41}, 0x2c) setsockopt$MRT_FLUSH(r1, 0x0, 0xd4, &(0x7f0000001180), 0x4) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r1, 0x84, 0x23, &(0x7f00000011c0)={r8, 0x7}, 0x8) setsockopt$CAIFSO_REQ_PARAM(r1, 0x116, 0x80, &(0x7f0000001200)="60941aa58b59ed7d42f06dd9fb952d3d68cb1c3308fd554564e6aed1b3175eb46d96d91190c5b40aafbe9703e596047c55f6f6a10d99e51d7f0cfcad90e3df613eab5632efbd13c806053ebcbadc566c1625c7367e5aad10a22e923438dbeb2ef6a8ea4801bcc656c5eb577e525334c67a6d43dd4e7b1ae4ab42cb6e7f", 0x7d) ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000001280)={0x1, 0x0, [{0xd, 0x7, 0x0, 0xe3ae, 0x5, 0x3, 0x1ff}]}) 751.127709ms ago: executing program 1 (id=1212): r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0) r1 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) r4 = syz_open_dev$dri(&(0x7f00000008c0), 0xfffffffffffffe30, 0x8800) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCRTC(r4, 0xc06864a1, &(0x7f0000000740)={0x0, 0x57, r5, 0x0}) r7 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r7, 0x4010640d, &(0x7f0000000040)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r7, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1}) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r3, 0x4010640d, &(0x7f0000000180)={0x6}) ioctl$DRM_IOCTL_MODE_SETPLANE(r3, 0xc03064b7, &(0x7f00000001c0)={r8, 0x0, r6, 0x4, 0xffffffff, 0x1000008, 0xb49, 0x2c83, 0x4, 0x1, 0x4000009, 0x94}) ioctl$DRM_IOCTL_MODE_ADDFB(r0, 0xc01c64ae, &(0x7f0000000080)={r6, 0x4, 0x9, 0x2, 0x0, 0x2, 0x1}) ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f0000000d40)={0x0, 0x0, r2, 0x0}) ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000340)={r9, 0x0, 0x0, 0x0, 0x1, [], [0x0, 0x7], [0x0, 0x80000002, 0x2], [0x0, 0x0, 0x1, 0x1]}) r10 = syz_open_dev$dri(&(0x7f0000000580), 0xd21, 0x200) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r10, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCRTC(r10, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r11, 0x0}) mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x11, 0xffffffffffffffff, 0x9) ioctl$DRM_IOCTL_MODE_GETFB2(r10, 0xc06864ce, &(0x7f0000000200)={r12, 0x5, 0x7, 0x39c0, 0x2, [], [0x410, 0x700000, 0x9, 0x9], [0xffffff53, 0x4, 0x0, 0x80], [0x2, 0x7, 0x0, 0x2]}) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, 0x0, 0x0], 0x3}) 691.24365ms ago: executing program 1 (id=1213): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='cdg', 0x3) sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0) 691.000026ms ago: executing program 1 (id=1214): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x34, r1, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_COALESCE_RULE_CONDITION={0x8, 0x2, 0x1}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8, 0x2, 0x1}, @NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x62}]}, 0x34}, 0x1, 0x6c00}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r1, 0x1, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x0, 0x66}}}}, [@NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x2}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x88b}]}, 0x30}, 0x1, 0x0, 0x0, 0x8880}, 0x24000044) syz_emit_ethernet(0x32, &(0x7f0000000000)={@multicast, @empty, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @multicast1}, {{0x0, 0x6558, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "d8621b", 0x0, "2c17a9"}}}}}}, 0x0) syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB="0180c2000000a538ae46463208004500001c563206030cc74f97674c36100000000000029078ac1e0001e0000001117c9078e0000001"], 0x0) r3 = syz_io_uring_setup(0x1b68, &(0x7f0000000380)={0x0, 0x1040, 0x10, 0x1003, 0x101}, &(0x7f0000000240)=0x0, &(0x7f0000000340)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000004c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x51, 0x0, 0x80, 0x2, 0x0, 0x127}) io_uring_enter(r3, 0x6efc, 0x3900, 0xb, 0x0, 0x0) io_uring_register$IORING_REGISTER_SYNC_CANCEL(r3, 0x18, &(0x7f00000000c0)={0x8000, r3, 0x12, {0x6, 0x1}, 0x5}, 0x1) add_key$user(&(0x7f0000000040), &(0x7f0000000000)={'syz', 0x3}, &(0x7f00000000c0)="088ff90b817a7b8ac419416710d014ff192f1bc6fc77edb45a1de5af63cd991c8460", 0x22, 0x0) ioctl$SIOCX25SDTEFACILITIES(r0, 0x89eb, &(0x7f0000000280)={0x9, 0x3ff, 0x7, 0x6, 0x81, 0x13, 0x24, "284775e0283efc8a52f123825ca09bbb39bb84c6", "89d89ea60fc310e65622b3307b82f4384e1baa84"}) 581.215713ms ago: executing program 2 (id=1215): setsockopt$MRT_INIT(0xffffffffffffffff, 0x0, 0xc8, 0x0, 0x0) r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c) listen(r0, 0xfffffffc) r1 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x14, r3, 0x7}, 0x14}}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x1802, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r5, 0x1, 0x70bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}, 0x1, 0xff07}, 0x2000000) 518.499192ms ago: executing program 2 (id=1218): r0 = socket(0x10, 0x803, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x5}}}]}, 0x38}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000340)="1400000023003517d25a806f8b6394f90324fc60", 0x14}], 0x1, 0x0, 0x0, 0x2000000}, 0x2004800) sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001300)=@newtfilter={0xac, 0x2c, 0xd2b, 0x70bd2b, 0x35dfdbfb, {0x0, 0x0, 0x0, r2, {0xf, 0xd}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0x80, 0x2, [@TCA_U32_CLASSID={0x8, 0x1, {0xc, 0x8}}, @TCA_U32_SEL={0x74, 0x5, {0x10, 0x9, 0x6, 0x5, 0xa760, 0x0, 0x10, 0x100, [{0x1000, 0xe, 0xfffff000, 0x9f4}, {0xdeb2, 0x3, 0x6, 0x3}, {0x1, 0xfffffffb, 0x100, 0x3fd}, {0x200, 0x3ff, 0x3, 0x4}, {0x1, 0x7, 0x40, 0x80}, {0x3ff, 0x3a7, 0x3, 0xa6d}]}}]}}]}, 0xac}}, 0x24040084) setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x10e, 0xa, &(0x7f0000000000)=0xd, 0x4) 461.375345ms ago: executing program 2 (id=1219): syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd69000000001406fffe800080000000000000000000000039fe8000000000000000000000000000aa4e204e24", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="51c2"], 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007880)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000040)="af0ac9", 0x3}], 0x1}}], 0x1, 0x4000000) r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x2001) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_misc(r1, &(0x7f0000000040), 0xe09) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0xffffffff9673e35d]}}) 398.889591ms ago: executing program 2 (id=1221): socket$netlink(0x10, 0x3, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'bridge0\x00'}) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCGPGRP(r1, 0x540f, 0x0) mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x2) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00') read$FUSE(r2, &(0x7f0000000080)={0x2020}, 0x2020) 300.578157ms ago: executing program 2 (id=1224): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) setsockopt$SO_TIMESTAMP(r1, 0x1, 0x3f, &(0x7f0000000280)=0x7, 0x4) sendmsg$inet(r1, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000002c0)="be38", 0x2}], 0x1, &(0x7f0000001100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001c0000000000000000000000070000004404730001000000e736f53aa500a029b4fff380b1208d2517faab10d57912ea57285a512c15273dd90873706db2ce3f1fd2709c8fca22cf77f29736f1e80045368c6d61cfefe19acae96300000000000000022fa79f00000000d114c4e16cb59c3b813222b23474ebab0566f62853"], 0x40}, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000180)={"d21dd4f7032eacd08cf61d81bbc28235", 0x0, 0x0, {0xffff, 0x2}, {0x8e1d, 0x9}, 0x100000001, [0x7, 0x5, 0xbb, 0x9a, 0x200, 0x0, 0x8, 0x2, 0x3, 0x6, 0x2, 0x3, 0x8000, 0x9, 0x1000, 0x8]}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r1, 0x50009418, &(0x7f0000001640)={{r2}, r3, 0x16, @unused=[0x2, 0x1000, 0x9, 0x3], @devid}) read$char_usb(r1, &(0x7f0000000040)=""/142, 0x8e) 300.296925ms ago: executing program 3 (id=1225): r0 = gettid() timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000400)={[0xfffffffffffffff5]}, 0x8, 0x80000) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="5001000010001304000000000c000000fe80000000000000000000000000009d20010000000000000000000000000000000000004e2400000a00002000000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="ac1e00010000000000000000000000000000001032000000640101020000000000000000000000000100000000000000000000000000000000000000000000000000000000000000ffffffffffffffff00000000000000000800000000020000fbff09ffffffffff00000000000000000800000000000000cc000000000000000500000000000000f6000000000000000000000000000000000000000200010100000000000000005f001200726663343330392863636d28616573292900000000000000000000000000000000000000000000000000000000000000000000000000000000000000009800000040"], 0x150}, 0x1, 0x0, 0x0, 0x400}, 0x4000) ppoll(&(0x7f00000000c0)=[{r1, 0x200}], 0x1, 0x0, 0x0, 0x0) (async) ppoll(&(0x7f00000000c0)=[{r1, 0x200}], 0x1, 0x0, 0x0, 0x0) r3 = socket$inet6(0x10, 0x3, 0x0) sendto$inet6(r3, &(0x7f0000000140)="1ba0000016001d0d89fdc5cbdd045798707bed4dca141a780f0f8e", 0xff3b, 0x0, 0x0, 0x0) (async) sendto$inet6(r3, &(0x7f0000000140)="1ba0000016001d0d89fdc5cbdd045798707bed4dca141a780f0f8e", 0xff3b, 0x0, 0x0, 0x0) recvfrom$inet6(r3, &(0x7f0000000000)=""/31, 0x39, 0x2002, 0x0, 0x0) (async) recvfrom$inet6(r3, &(0x7f0000000000)=""/31, 0x39, 0x2002, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000000)="48050000150019", 0x7}], 0x1) socket$inet6(0x10, 0x3, 0x0) (async) r4 = socket$inet6(0x10, 0x3, 0x0) sendto$inet6(r4, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b) timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) r5 = socket$inet_sctp(0x2, 0x5, 0x84) sendmmsg$inet_sctp(r5, &(0x7f0000004900)=[{&(0x7f00000000c0)=@in={0x2, 0x4e22, @local}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000100)="f4", 0x1}], 0x1, &(0x7f0000000000)=[@init={0x18, 0x84, 0x0, {0xff, 0xe, 0x1ff, 0x20}}], 0x18}], 0x1, 0x40) (async) sendmmsg$inet_sctp(r5, &(0x7f0000004900)=[{&(0x7f00000000c0)=@in={0x2, 0x4e22, @local}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000100)="f4", 0x1}], 0x1, &(0x7f0000000000)=[@init={0x18, 0x84, 0x0, {0xff, 0xe, 0x1ff, 0x20}}], 0x18}], 0x1, 0x40) r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0) sendfile(r6, r7, 0x0, 0x106d) (async) sendfile(r6, r7, 0x0, 0x106d) connect$rds(r6, &(0x7f0000000080)={0x2, 0x4e20, @local}, 0x10) 181.151154ms ago: executing program 3 (id=1226): setsockopt$MRT_INIT(0xffffffffffffffff, 0x0, 0xc8, 0x0, 0x0) r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c) listen(r0, 0xfffffffc) r1 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x14, r3, 0x7}, 0x14}}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x1802, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r5, 0x1, 0x70bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}, 0x1, 0xff07}, 0x2000000) 180.686841ms ago: executing program 3 (id=1227): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) socket$inet_udp(0x2, 0x2, 0x0) socket$inet_sctp(0x2, 0x5, 0x84) r2 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r4}, 0x10) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="190000000400000008000000"], 0x50) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r8 = socket$inet6_udplite(0xa, 0x2, 0x88) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000540)={r6, &(0x7f00000001c0), &(0x7f0000000340)=@udp6=r8}, 0x20) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r7, r3, 0x25, 0x2, @val=@tcx}, 0x1c) syz_emit_ethernet(0x37, &(0x7f00000007c0)=ANY=[], 0x0) 101.329759ms ago: executing program 3 (id=1228): r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94) close(r0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xf, 0x4, 0x4, 0x12}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r3}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20) recvmsg$unix(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x1001}], 0x1, 0x0, 0x0, 0x14}, 0x0) sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0) 101.149184ms ago: executing program 1 (id=1229): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x40201, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000380)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}) write$tun(r0, &(0x7f0000000040)=ANY=[], 0xffe) 616.394µs ago: executing program 3 (id=1230): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x103400, 0x0) ioctl$TIOCVHANGUP(r0, 0x5437, 0x300) 127.224µs ago: executing program 0 (id=1231): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r0 = socket$inet6(0xa, 0x3, 0x3c) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a00000709000100"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000000)='GPL\x00', 0x7, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r2}, 0x10) sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4000, 0x10, @mcast1, 0x5}, 0x1c) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0x5aa}], 0x1) 0s ago: executing program 3 (id=1232): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x18) capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x5, 0x0, 0x83, 0xffffffff}) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f00000025c0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:51631' (ED25519) to the list of known hosts. [ 54.248207][ T40] audit: type=1400 audit(1758799287.721:62): avc: denied { name_bind } for pid=5963 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 54.301328][ T40] audit: type=1400 audit(1758799287.771:63): avc: denied { execute } for pid=5964 comm="sh" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 54.311287][ T40] audit: type=1400 audit(1758799287.771:64): avc: denied { execute_no_trans } for pid=5964 comm="sh" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 56.723406][ T5964] cgroup: Unknown subsys name 'net' [ 56.724872][ T40] audit: type=1400 audit(1758799290.191:65): avc: denied { mounton } for pid=5964 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 56.734622][ T40] audit: type=1400 audit(1758799290.191:66): avc: denied { mount } for pid=5964 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 56.897446][ T5964] cgroup: Unknown subsys name 'cpuset' [ 56.901399][ T5964] cgroup: Unknown subsys name 'rlimit' [ 57.125961][ T5969] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 57.843960][ T5964] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 61.341855][ T40] kauditd_printk_skb: 13 callbacks suppressed [ 61.341866][ T40] audit: type=1400 audit(1758799294.811:80): avc: denied { execmem } for pid=5971 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 61.610153][ T40] audit: type=1400 audit(1758799295.081:81): avc: denied { create } for pid=5975 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 61.625750][ T40] audit: type=1400 audit(1758799295.081:82): avc: denied { read write } for pid=5975 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 61.635090][ T40] audit: type=1400 audit(1758799295.081:83): avc: denied { open } for pid=5975 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 61.642029][ T40] audit: type=1400 audit(1758799295.101:84): avc: denied { ioctl } for pid=5975 comm="syz-executor" path="socket:[6566]" dev="sockfs" ino=6566 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 61.657950][ T5332] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 61.662289][ T5989] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 61.664675][ T5989] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 61.667559][ T5989] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 61.670048][ T5989] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 61.672446][ T5989] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 61.675769][ T5989] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 61.678413][ T5989] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 61.685306][ T5990] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 61.694313][ T40] audit: type=1400 audit(1758799295.161:85): avc: denied { read } for pid=5975 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 61.695371][ T5986] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 61.697070][ T5992] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 61.697493][ T5992] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 61.701040][ T40] audit: type=1400 audit(1758799295.161:86): avc: denied { open } for pid=5975 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 61.701473][ T5978] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 61.701940][ T5978] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 61.705440][ T5978] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 61.706104][ T40] audit: type=1400 audit(1758799295.161:87): avc: denied { mounton } for pid=5975 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 61.708374][ T5986] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 61.708763][ T5978] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 61.710000][ T5978] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 61.710271][ T5978] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 61.745284][ T5986] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 61.871178][ T40] audit: type=1400 audit(1758799295.341:88): avc: denied { module_request } for pid=5975 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 61.913056][ T5975] chnl_net:caif_netlink_parms(): no params data found [ 62.059108][ T5979] chnl_net:caif_netlink_parms(): no params data found [ 62.144458][ T5975] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.147117][ T5975] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.149517][ T5975] bridge_slave_0: entered allmulticast mode [ 62.152143][ T5975] bridge_slave_0: entered promiscuous mode [ 62.171358][ T5980] chnl_net:caif_netlink_parms(): no params data found [ 62.186312][ T5975] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.188764][ T5975] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.191678][ T5975] bridge_slave_1: entered allmulticast mode [ 62.195722][ T5975] bridge_slave_1: entered promiscuous mode [ 62.280432][ T5975] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 62.335050][ T5975] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 62.362363][ T5987] chnl_net:caif_netlink_parms(): no params data found [ 62.369340][ T5979] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.372627][ T5979] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.376235][ T5979] bridge_slave_0: entered allmulticast mode [ 62.379701][ T5979] bridge_slave_0: entered promiscuous mode [ 62.419141][ T5979] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.421871][ T5979] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.424417][ T5979] bridge_slave_1: entered allmulticast mode [ 62.428122][ T5979] bridge_slave_1: entered promiscuous mode [ 62.446084][ T5975] team0: Port device team_slave_0 added [ 62.518233][ T5980] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.520662][ T5980] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.523296][ T5980] bridge_slave_0: entered allmulticast mode [ 62.526317][ T5980] bridge_slave_0: entered promiscuous mode [ 62.530056][ T5975] team0: Port device team_slave_1 added [ 62.537890][ T5979] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 62.541065][ T5980] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.543244][ T5980] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.546200][ T5980] bridge_slave_1: entered allmulticast mode [ 62.548919][ T5980] bridge_slave_1: entered promiscuous mode [ 62.581164][ T5979] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 62.612682][ T5975] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 62.615025][ T5975] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.622851][ T5975] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 62.670365][ T5980] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 62.673753][ T5975] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.676846][ T5975] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.687657][ T5975] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.692598][ T5987] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.695183][ T5987] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.697593][ T5987] bridge_slave_0: entered allmulticast mode [ 62.701202][ T5987] bridge_slave_0: entered promiscuous mode [ 62.705868][ T5987] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.708825][ T5987] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.711778][ T5987] bridge_slave_1: entered allmulticast mode [ 62.715483][ T5987] bridge_slave_1: entered promiscuous mode [ 62.735423][ T5980] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 62.807496][ T5979] team0: Port device team_slave_0 added [ 62.812174][ T5979] team0: Port device team_slave_1 added [ 62.816003][ T5980] team0: Port device team_slave_0 added [ 62.875838][ T5980] team0: Port device team_slave_1 added [ 62.893659][ T5987] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 62.971564][ T5987] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 62.991319][ T5979] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 62.993538][ T5979] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 63.002085][ T5979] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 63.034062][ T5975] hsr_slave_0: entered promiscuous mode [ 63.036465][ T5975] hsr_slave_1: entered promiscuous mode [ 63.054443][ T5987] team0: Port device team_slave_0 added [ 63.061453][ T5979] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 63.063971][ T5979] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 63.073567][ T5979] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 63.082836][ T5980] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 63.086001][ T5980] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 63.096550][ T5980] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 63.102928][ T5987] team0: Port device team_slave_1 added [ 63.107553][ T5980] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 63.110323][ T5980] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 63.121989][ T5980] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 63.237787][ T5979] hsr_slave_0: entered promiscuous mode [ 63.240873][ T5979] hsr_slave_1: entered promiscuous mode [ 63.243712][ T5979] debugfs: 'hsr0' already exists in 'hsr' [ 63.246215][ T5979] Cannot create hsr debugfs directory [ 63.278358][ T5987] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 63.281239][ T5987] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 63.289278][ T5987] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 63.317269][ T5987] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 63.319353][ T5987] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 63.329584][ T5987] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 63.393523][ T5980] hsr_slave_0: entered promiscuous mode [ 63.397057][ T5980] hsr_slave_1: entered promiscuous mode [ 63.399768][ T5980] debugfs: 'hsr0' already exists in 'hsr' [ 63.402057][ T5980] Cannot create hsr debugfs directory [ 63.543963][ T5987] hsr_slave_0: entered promiscuous mode [ 63.548021][ T5987] hsr_slave_1: entered promiscuous mode [ 63.550679][ T5987] debugfs: 'hsr0' already exists in 'hsr' [ 63.553061][ T5987] Cannot create hsr debugfs directory [ 63.776258][ T5978] Bluetooth: hci1: command tx timeout [ 63.778204][ T5332] Bluetooth: hci3: command tx timeout [ 63.778505][ T5984] Bluetooth: hci0: command tx timeout [ 63.781056][ T5986] Bluetooth: hci2: command tx timeout [ 63.805004][ T5975] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 63.811024][ T5975] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 63.818663][ T5975] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 63.829535][ T5975] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 63.870266][ T5979] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 63.876338][ T5979] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 63.880900][ T5979] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 63.887232][ T5979] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 63.938750][ T5980] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 63.944497][ T5980] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 63.952640][ T5980] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 63.959542][ T5980] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 64.029597][ T5975] 8021q: adding VLAN 0 to HW filter on device bond0 [ 64.036503][ T5987] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 64.042525][ T5987] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 64.049412][ T5987] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 64.054310][ T5987] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 64.085701][ T5975] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.093629][ T5979] 8021q: adding VLAN 0 to HW filter on device bond0 [ 64.107887][ T1149] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.110310][ T1149] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.114342][ T1149] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.116699][ T1149] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.153414][ T5980] 8021q: adding VLAN 0 to HW filter on device bond0 [ 64.159185][ T5979] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.179921][ T1149] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.182683][ T1149] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.194669][ T5980] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.206722][ T95] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.209615][ T95] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.226560][ T1149] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.229387][ T1149] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.233179][ T1149] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.235496][ T1149] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.287094][ T5987] 8021q: adding VLAN 0 to HW filter on device bond0 [ 64.294043][ T40] audit: type=1400 audit(1758799297.761:89): avc: denied { sys_module } for pid=5975 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 64.310337][ T5987] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.318647][ T95] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.321505][ T95] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.329539][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.332369][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.423955][ T5980] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.427850][ T5975] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.450454][ T5979] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.490180][ T5980] veth0_vlan: entered promiscuous mode [ 64.508348][ T5975] veth0_vlan: entered promiscuous mode [ 64.512396][ T5980] veth1_vlan: entered promiscuous mode [ 64.542608][ T5975] veth1_vlan: entered promiscuous mode [ 64.553968][ T5979] veth0_vlan: entered promiscuous mode [ 64.561377][ T5987] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.572138][ T5980] veth0_macvtap: entered promiscuous mode [ 64.583683][ T5980] veth1_macvtap: entered promiscuous mode [ 64.589012][ T5979] veth1_vlan: entered promiscuous mode [ 64.619682][ T5975] veth0_macvtap: entered promiscuous mode [ 64.624569][ T5980] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.635608][ T5975] veth1_macvtap: entered promiscuous mode [ 64.641395][ T5980] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.652000][ T5987] veth0_vlan: entered promiscuous mode [ 64.666095][ T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.669044][ T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.678048][ T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.686778][ T5987] veth1_vlan: entered promiscuous mode [ 64.690240][ T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.695102][ T5975] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.701061][ T5979] veth0_macvtap: entered promiscuous mode [ 64.718463][ T5975] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.725494][ T5979] veth1_macvtap: entered promiscuous mode [ 64.738775][ T61] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.742219][ T61] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.756432][ T61] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.759267][ T61] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.773280][ T1152] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.777650][ T1152] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.780909][ T5979] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.797382][ T5979] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.813126][ T1149] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.823871][ T5987] veth0_macvtap: entered promiscuous mode [ 64.828719][ T5987] veth1_macvtap: entered promiscuous mode [ 64.832856][ T95] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.836809][ T95] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.840819][ T1149] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.844245][ T1149] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.858638][ T1149] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.870979][ T5987] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.875086][ T1152] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.878414][ T1152] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.892330][ T5987] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.905064][ T95] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.906892][ T5980] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 64.908731][ T95] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.925220][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.925248][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.928138][ T95] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.935551][ T95] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.956349][ T6065] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 64.958978][ T6065] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 64.961857][ T6065] vhci_hcd vhci_hcd.0: Device attached [ 64.971910][ T6065] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(5) [ 64.974051][ T6065] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 64.976960][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.977826][ T6065] vhci_hcd vhci_hcd.0: Device attached [ 64.980256][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.991139][ T6065] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(7) [ 64.993432][ T6065] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 64.997001][ T6065] vhci_hcd vhci_hcd.0: Device attached [ 65.003142][ T6065] vhci_hcd vhci_hcd.0: pdev(2) rhport(3) sockfd(9) [ 65.005214][ T6065] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 65.008412][ T6065] vhci_hcd vhci_hcd.0: Device attached [ 65.011268][ T6065] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 65.021796][ T6065] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 65.025076][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.028492][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.030463][ T6065] vhci_hcd vhci_hcd.0: pdev(2) rhport(6) sockfd(15) [ 65.033528][ T6065] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 65.037870][ T6065] vhci_hcd vhci_hcd.0: Device attached [ 65.042141][ T6070] vhci_hcd: connection closed [ 65.042153][ T6068] vhci_hcd: connection closed [ 65.043830][ T13] vhci_hcd: stop threads [ 65.044307][ T6066] vhci_hcd: connection closed [ 65.046825][ T13] vhci_hcd: release socket [ 65.047207][ T6073] vhci_hcd: connection closed [ 65.047610][ T1152] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.049399][ T13] vhci_hcd: disconnect device [ 65.051344][ T1152] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.053755][ T13] vhci_hcd: stop threads [ 65.063706][ T13] vhci_hcd: release socket [ 65.066728][ T13] vhci_hcd: disconnect device [ 65.071440][ T13] vhci_hcd: stop threads [ 65.072965][ T13] vhci_hcd: release socket [ 65.077446][ T6076] vhci_hcd: connection closed [ 65.080110][ T13] vhci_hcd: disconnect device [ 65.083608][ T13] vhci_hcd: stop threads [ 65.086983][ T13] vhci_hcd: release socket [ 65.089107][ T13] vhci_hcd: disconnect device [ 65.090974][ T13] vhci_hcd: stop threads [ 65.092312][ T13] vhci_hcd: release socket [ 65.093764][ T95] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.098108][ T13] vhci_hcd: disconnect device [ 65.099688][ T95] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.104441][ T6081] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6'. [ 65.155037][ T6063] vhci_hcd: vhci_device speed not set [ 65.162338][ T6087] syzkaller0: entered promiscuous mode [ 65.165635][ T6087] syzkaller0: entered allmulticast mode [ 65.401070][ T6102] netlink: 60 bytes leftover after parsing attributes in process `syz.0.14'. [ 65.405528][ T6102] unsupported nlmsg_type 40 [ 65.732798][ T6143] syz.3.34 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 65.808923][ T6153] netlink: 12 bytes leftover after parsing attributes in process `syz.3.37'. [ 65.812267][ T6153] netlink: 24 bytes leftover after parsing attributes in process `syz.3.37'. [ 65.845060][ T5986] Bluetooth: hci0: command tx timeout [ 65.845151][ T5978] Bluetooth: hci2: command tx timeout [ 65.847338][ T5986] Bluetooth: hci3: command tx timeout [ 65.849147][ T5984] Bluetooth: hci1: command tx timeout [ 65.859574][ T6155] 9pnet: Could not find request transport: fd0x0000000000000004 [ 66.253598][ T6186] 9pnet: Could not find request transport: fd0x0000000000000004 [ 66.433539][ T40] kauditd_printk_skb: 301 callbacks suppressed [ 66.433554][ T40] audit: type=1400 audit(1758799299.901:391): avc: denied { read write } for pid=6196 comm="syz.1.57" name="virtual_nci" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 66.447599][ T40] audit: type=1400 audit(1758799299.901:392): avc: denied { open } for pid=6196 comm="syz.1.57" path="/dev/virtual_nci" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 66.456949][ T40] audit: type=1400 audit(1758799299.921:393): avc: denied { setopt } for pid=6196 comm="syz.1.57" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 66.501369][ T6203] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 66.548819][ T6207] netlink: 12 bytes leftover after parsing attributes in process `syz.2.60'. [ 66.551582][ T6207] netlink: 24 bytes leftover after parsing attributes in process `syz.2.60'. [ 66.601652][ T6211] netlink: 28 bytes leftover after parsing attributes in process `syz.2.62'. [ 66.628431][ T40] audit: type=1326 audit(1758799300.101:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6212 comm="syz.2.63" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe85918eec9 code=0x7ffc0000 [ 66.635783][ T40] audit: type=1326 audit(1758799300.101:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6212 comm="syz.2.63" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe85918eec9 code=0x7ffc0000 [ 66.642939][ T40] audit: type=1326 audit(1758799300.101:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6212 comm="syz.2.63" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe85918eec9 code=0x7ffc0000 [ 66.650712][ T40] audit: type=1326 audit(1758799300.101:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6212 comm="syz.2.63" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe85918eec9 code=0x7ffc0000 [ 66.658640][ T40] audit: type=1326 audit(1758799300.101:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6212 comm="syz.2.63" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe85918eec9 code=0x7ffc0000 [ 66.666026][ T40] audit: type=1326 audit(1758799300.101:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6212 comm="syz.2.63" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe85918eec9 code=0x7ffc0000 [ 66.673096][ T40] audit: type=1326 audit(1758799300.101:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6212 comm="syz.2.63" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe85918eec9 code=0x7ffc0000 [ 66.798065][ T6221] 9pnet_fd: Insufficient options for proto=fd [ 66.981009][ T6235] netlink: 12 bytes leftover after parsing attributes in process `syz.0.74'. [ 67.925108][ T5332] Bluetooth: hci2: command tx timeout [ 67.925924][ T5984] Bluetooth: hci1: command tx timeout [ 67.926539][ T5986] Bluetooth: hci0: command tx timeout [ 67.934918][ T5984] Bluetooth: hci3: command tx timeout [ 67.954547][ T6181] syz.3.51: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 67.961503][ T6181] CPU: 2 UID: 0 PID: 6181 Comm: syz.3.51 Not tainted syzkaller #0 PREEMPT(full) [ 67.961525][ T6181] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 67.961535][ T6181] Call Trace: [ 67.961541][ T6181] [ 67.961549][ T6181] dump_stack_lvl+0x16c/0x1f0 [ 67.961575][ T6181] warn_alloc+0x248/0x3a0 [ 67.961600][ T6181] ? __pfx_warn_alloc+0x10/0x10 [ 67.961628][ T6181] ? hash_netiface_create+0x3ec/0x1250 [ 67.961646][ T6181] ? __vmalloc_node_noprof+0xad/0xf0 [ 67.961674][ T6181] __vmalloc_node_range_noprof+0x101b/0x14b0 [ 67.961706][ T6181] ? hash_netiface_create+0x3ec/0x1250 [ 67.961730][ T6181] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 67.961763][ T6181] ? hash_netiface_create+0x3ec/0x1250 [ 67.961781][ T6181] __vmalloc_node_noprof+0xad/0xf0 [ 67.961805][ T6181] ? hash_netiface_create+0x3ec/0x1250 [ 67.961827][ T6181] __vmalloc_node_range_noprof+0xb73/0x14b0 [ 67.961859][ T6181] ? hash_netiface_create+0x3ec/0x1250 [ 67.961883][ T6181] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 67.961911][ T6181] ? ___kmalloc_large_node+0xed/0x160 [ 67.961938][ T6181] __kvmalloc_node_noprof+0x30a/0x620 [ 67.961954][ T6181] ? hash_netiface_create+0x3ec/0x1250 [ 67.961973][ T6181] ? hash_netiface_create+0x3ec/0x1250 [ 67.961996][ T6181] ? hash_netiface_create+0x3ec/0x1250 [ 67.962012][ T6181] hash_netiface_create+0x3ec/0x1250 [ 67.962031][ T6181] ? __nla_validate+0x4b/0x50 [ 67.962057][ T6181] ? __pfx_hash_netiface_create+0x10/0x10 [ 67.962076][ T6181] ip_set_create+0x7e4/0x14d0 [ 67.962099][ T6181] ? __pfx_ip_set_create+0x10/0x10 [ 67.962133][ T6181] ? find_held_lock+0x2b/0x80 [ 67.962161][ T6181] nfnetlink_rcv_msg+0x9f9/0x1200 [ 67.962186][ T6181] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 67.962205][ T6181] ? __lock_acquire+0x62e/0x1ce0 [ 67.962253][ T6181] ? avc_has_perm_noaudit+0x149/0x3b0 [ 67.962277][ T6181] netlink_rcv_skb+0x155/0x420 [ 67.962299][ T6181] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 67.962318][ T6181] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 67.962350][ T6181] ? ns_capable+0xd7/0x110 [ 67.962373][ T6181] nfnetlink_rcv+0x1b3/0x430 [ 67.962389][ T6181] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 67.962404][ T6181] ? netlink_deliver_tap+0x1ae/0xd30 [ 67.962429][ T6181] netlink_unicast+0x5aa/0x870 [ 67.962454][ T6181] ? __pfx_netlink_unicast+0x10/0x10 [ 67.962475][ T6181] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 67.962505][ T6181] netlink_sendmsg+0x8d1/0xdd0 [ 67.962530][ T6181] ? __pfx_netlink_sendmsg+0x10/0x10 [ 67.962561][ T6181] ____sys_sendmsg+0xa98/0xc70 [ 67.962588][ T6181] ? copy_msghdr_from_user+0x10a/0x160 [ 67.962613][ T6181] ? __pfx_____sys_sendmsg+0x10/0x10 [ 67.962643][ T6181] ? __pfx_futex_wake_mark+0x10/0x10 [ 67.962665][ T6181] ___sys_sendmsg+0x134/0x1d0 [ 67.962688][ T6181] ? __pfx____sys_sendmsg+0x10/0x10 [ 67.962739][ T6181] __sys_sendmsg+0x16d/0x220 [ 67.962759][ T6181] ? __pfx___sys_sendmsg+0x10/0x10 [ 67.962779][ T6181] ? __x64_sys_futex+0x1e0/0x4c0 [ 67.962808][ T6181] do_syscall_64+0xcd/0x4e0 [ 67.962832][ T6181] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 67.962849][ T6181] RIP: 0033:0x7fa8c058eec9 [ 67.962864][ T6181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 67.962879][ T6181] RSP: 002b:00007fa8be7f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 67.962895][ T6181] RAX: ffffffffffffffda RBX: 00007fa8c07e5fa0 RCX: 00007fa8c058eec9 [ 67.962905][ T6181] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003 [ 67.962915][ T6181] RBP: 00007fa8c0611f91 R08: 0000000000000000 R09: 0000000000000000 [ 67.962925][ T6181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 67.962934][ T6181] R13: 00007fa8c07e6038 R14: 00007fa8c07e5fa0 R15: 00007ffe33f36a78 [ 67.962957][ T6181] [ 67.962963][ T6181] Mem-Info: [ 68.111080][ T6181] active_anon:8243 inactive_anon:7 isolated_anon:0 [ 68.111080][ T6181] active_file:1578 inactive_file:43499 isolated_file:0 [ 68.111080][ T6181] unevictable:1768 dirty:47 writeback:0 [ 68.111080][ T6181] slab_reclaimable:11661 slab_unreclaimable:67761 [ 68.111080][ T6181] mapped:26341 shmem:2392 pagetables:1202 [ 68.111080][ T6181] sec_pagetables:310 bounce:0 [ 68.111080][ T6181] kernel_misc_reclaimable:0 [ 68.111080][ T6181] free:439585 free_pcp:12768 free_cma:0 [ 68.124874][ T6181] Node 0 active_anon:32972kB inactive_anon:28kB active_file:6312kB inactive_file:173800kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:105364kB dirty:188kB writeback:0kB shmem:6032kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12496kB pagetables:4640kB sec_pagetables:1240kB all_unreclaimable? no Balloon:0kB [ 68.137128][ T6181] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:196kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:112kB pagetables:168kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 68.149329][ T6181] Node 0 DMA free:14416kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:204kB local_pcp:56kB free_cma:0kB [ 68.160307][ T6181] lowmem_reserve[]: 0 1233 1233 1233 1233 [ 68.162490][ T6181] Node 0 DMA32 free:156664kB boost:0kB min:27516kB low:34392kB high:41268kB reserved_highatomic:0KB free_highatomic:0KB active_anon:32920kB inactive_anon:28kB active_file:6312kB inactive_file:173800kB unevictable:3536kB writepending:188kB present:2080628kB managed:1263416kB mlocked:0kB bounce:0kB free_pcp:21224kB local_pcp:2736kB free_cma:0kB [ 68.173817][ T6181] lowmem_reserve[]: 0 0 0 0 0 [ 68.175415][ T6181] Node 1 Normal free:1587164kB boost:0kB min:39720kB low:49648kB high:59576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:196kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781892kB mlocked:0kB bounce:0kB free_pcp:29372kB local_pcp:16644kB free_cma:0kB [ 68.184808][ T6181] lowmem_reserve[]: 0 0 0 0 0 [ 68.186244][ T6181] Node 0 DMA: 12*4kB (UM) 8*8kB (UM) 12*16kB (UM) 7*32kB (UM) 3*64kB (UM) 3*128kB (UM) 2*256kB (U) 3*512kB (UM) 3*1024kB (UM) 2*2048kB (U) 1*4096kB (U) = 14416kB [ 68.191241][ T6181] Node 0 DMA32: 4*4kB (UME) 25*8kB (ME) 33*16kB (E) 28*32kB (UME) 20*64kB (UME) 6*128kB (UME) 3*256kB (UM) 6*512kB (UME) 72*1024kB (UME) 17*2048kB (UM) 10*4096kB (U) = 157032kB [ 68.196822][ T6181] Node 1 Normal: 57*4kB (UME) 44*8kB (UME) 13*16kB (UME) 16*32kB (UME) 14*64kB (UME) 21*128kB (UME) 7*256kB (UE) 7*512kB (UME) 6*1024kB (UE) 7*2048kB (UM) 380*4096kB (UM) = 1587220kB [ 68.202322][ T6181] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 68.205863][ T6181] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 68.208788][ T6181] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 68.211691][ T6181] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 68.214681][ T6181] 44627 total pagecache pages [ 68.216294][ T6181] 32 pages in swap cache [ 68.217616][ T6181] Free swap = 124816kB [ 68.218923][ T6181] Total swap = 124996kB [ 68.220296][ T6181] 1048443 pages RAM [ 68.221499][ T6181] 0 pages HighMem/MovableOnly [ 68.223103][ T6181] 283276 pages reserved [ 68.224458][ T6181] 0 pages cma reserved [ 68.361776][ T6181] syz.3.51 (6181) used greatest stack depth: 18808 bytes left [ 68.381969][ T6269] netlink: 4 bytes leftover after parsing attributes in process `syz.2.84'. [ 68.400428][ T6269] netlink: 156 bytes leftover after parsing attributes in process `syz.2.84'. [ 68.450219][ T6271] 9pnet_fd: Insufficient options for proto=fd [ 68.463855][ T6273] Zero length message leads to an empty skb [ 68.707567][ T6293] geneve2: entered promiscuous mode [ 68.707720][ T6295] 9pnet_fd: Insufficient options for proto=fd [ 68.709791][ T6293] geneve2: entered allmulticast mode [ 68.727970][ T95] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 68.734341][ T13] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 68.740431][ T13] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 68.744949][ T13] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 68.868423][ T6308] mmap: syz.2.93 (6308) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 69.081087][ T6321] 9pnet_fd: Insufficient options for proto=fd [ 69.139255][ T6327] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1536) ! [ 69.341362][ T6345] capability: warning: `syz.1.117' uses 32-bit capabilities (legacy support in use) [ 70.005977][ T5984] Bluetooth: hci3: command tx timeout [ 70.006095][ T5332] Bluetooth: hci1: command tx timeout [ 70.007327][ T5986] Bluetooth: hci0: command tx timeout [ 70.007361][ T5986] Bluetooth: hci2: command tx timeout [ 70.100173][ T6368] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 70.232286][ T6374] __nla_validate_parse: 5 callbacks suppressed [ 70.232304][ T6374] netlink: 4 bytes leftover after parsing attributes in process `syz.1.131'. [ 70.613149][ T6392] syzkaller0: entered promiscuous mode [ 70.615306][ T6392] syzkaller0: entered allmulticast mode [ 70.728205][ T6402] netlink: 4 bytes leftover after parsing attributes in process `syz.1.145'. [ 70.888048][ T6417] netlink: 136 bytes leftover after parsing attributes in process `syz.1.151'. [ 70.895639][ T6417] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 70.942296][ T6421] syzkaller0: entered promiscuous mode [ 70.944099][ T6421] syzkaller0: entered allmulticast mode [ 71.408076][ T73] cfg80211: failed to load regulatory.db [ 71.467262][ T40] kauditd_printk_skb: 296 callbacks suppressed [ 71.467277][ T40] audit: type=1400 audit(1758799304.941:697): avc: denied { bind } for pid=6452 comm="syz.1.167" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 71.478443][ T40] audit: type=1400 audit(1758799304.941:698): avc: denied { connect } for pid=6452 comm="syz.1.167" lport=9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 71.571290][ T40] audit: type=1326 audit(1758799305.041:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6471 comm="syz.3.173" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8c058eec9 code=0x7ffc0000 [ 71.581381][ T40] audit: type=1326 audit(1758799305.041:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6471 comm="syz.3.173" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa8c058eec9 code=0x7ffc0000 [ 71.588864][ T40] audit: type=1326 audit(1758799305.041:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6471 comm="syz.3.173" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8c058eec9 code=0x7ffc0000 [ 71.597842][ T40] audit: type=1326 audit(1758799305.041:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6471 comm="syz.3.173" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8c058eec9 code=0x7ffc0000 [ 71.613497][ T40] audit: type=1326 audit(1758799305.041:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6471 comm="syz.3.173" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa8c058eec9 code=0x7ffc0000 [ 71.620662][ T40] audit: type=1326 audit(1758799305.041:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6471 comm="syz.3.173" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8c058eec9 code=0x7ffc0000 [ 71.628153][ T40] audit: type=1326 audit(1758799305.041:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6471 comm="syz.3.173" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8c058eec9 code=0x7ffc0000 [ 71.635565][ T40] audit: type=1326 audit(1758799305.041:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6471 comm="syz.3.173" exe="/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fa8c058eec9 code=0x7ffc0000 [ 72.474470][ T6535] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=61 sclass=netlink_route_socket pid=6535 comm=syz.1.201 [ 72.532687][ T6538] syzkaller0: entered promiscuous mode [ 72.535420][ T6538] syzkaller0: entered allmulticast mode [ 72.573069][ T6541] netlink: 4 bytes leftover after parsing attributes in process `syz.0.204'. [ 72.671257][ T6545] netlink: 'syz.2.206': attribute type 4 has an invalid length. [ 72.683105][ T6545] netlink: 'syz.2.206': attribute type 4 has an invalid length. [ 72.781746][ T6560] netlink: 4 bytes leftover after parsing attributes in process `syz.0.212'. [ 72.795943][ T6560] netlink: 4 bytes leftover after parsing attributes in process `syz.0.212'. [ 72.853766][ T6564] netlink: 4 bytes leftover after parsing attributes in process `syz.0.214'. [ 72.904907][ T6568] syzkaller0: entered promiscuous mode [ 72.907084][ T6568] syzkaller0: entered allmulticast mode [ 72.932770][ T6570] process 'syz.3.217' launched '/dev/fd/4' with NULL argv: empty string added [ 73.129474][ T6584] syz.0.223 (6584) used greatest stack depth: 17976 bytes left [ 73.161007][ T6587] IPVS: Error connecting to the multicast addr [ 73.161163][ T6589] netlink: 4 bytes leftover after parsing attributes in process `syz.0.225'. [ 73.369555][ T6606] sch_tbf: burst 1821 is lower than device lo mtu (65550) ! [ 73.493381][ T6619] capability: warning: `syz.0.240' uses deprecated v2 capabilities in a way that may be insecure [ 73.637315][ T6632] netlink: 12 bytes leftover after parsing attributes in process `syz.0.246'. [ 73.640917][ T6632] netlink: 28 bytes leftover after parsing attributes in process `syz.0.246'. [ 73.644573][ T6632] netlink: 'syz.0.246': attribute type 6 has an invalid length. [ 73.993028][ T6660] syzkaller0: entered promiscuous mode [ 73.995827][ T6660] syzkaller0: entered allmulticast mode [ 74.227879][ T6682] netlink: 'syz.3.268': attribute type 31 has an invalid length. [ 74.788163][ T6732] ipvlan2: entered promiscuous mode [ 74.792592][ T6732] bridge0: port 3(ipvlan2) entered blocking state [ 74.796785][ T6732] bridge0: port 3(ipvlan2) entered disabled state [ 74.799480][ T6732] ipvlan2: entered allmulticast mode [ 74.801660][ T6732] bridge0: entered allmulticast mode [ 74.807756][ T6732] ipvlan2: left allmulticast mode [ 74.809890][ T6732] bridge0: left allmulticast mode [ 74.836534][ T6738] IPv4: Oversized IP packet from 127.202.26.0 [ 75.226713][ T73] IPVS: starting estimator thread 0... [ 75.315629][ T6761] IPVS: using max 26 ests per chain, 62400 per kthread [ 75.354602][ T6770] __nla_validate_parse: 5 callbacks suppressed [ 75.354618][ T6770] netlink: 4 bytes leftover after parsing attributes in process `syz.3.304'. [ 75.561051][ T6784] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6784 comm=syz.0.311 [ 75.668782][ T6782] infiniband syz!: set active [ 75.671131][ T6782] infiniband syz!: added team_slave_0 [ 75.701855][ T6782] RDS/IB: syz!: added [ 75.703922][ T6782] smc: adding ib device syz! with port count 1 [ 75.706366][ T6782] smc: ib device syz! port 1 has pnetid [ 75.754062][ T6796] netlink: 48 bytes leftover after parsing attributes in process `syz.0.315'. [ 75.993734][ T6801] netlink: 14 bytes leftover after parsing attributes in process `syz.2.317'. [ 76.063077][ T6800] netlink: 'syz.2.317': attribute type 10 has an invalid length. [ 76.067115][ T6800] netlink: 40 bytes leftover after parsing attributes in process `syz.2.317'. [ 76.078330][ T6800] team0: Port device geneve0 added [ 76.239959][ T6805] syzkaller0: entered promiscuous mode [ 76.241776][ T6805] syzkaller0: entered allmulticast mode [ 76.418549][ T1423] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.420627][ T1423] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.666849][ T40] kauditd_printk_skb: 573 callbacks suppressed [ 76.666860][ T40] audit: type=1326 audit(1758799310.141:1280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6824 comm="syz.0.327" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 76.677293][ T40] audit: type=1326 audit(1758799310.141:1281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6824 comm="syz.0.327" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 76.685767][ T40] audit: type=1326 audit(1758799310.141:1282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6824 comm="syz.0.327" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 76.693686][ T40] audit: type=1326 audit(1758799310.141:1283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6824 comm="syz.0.327" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 76.701228][ T40] audit: type=1326 audit(1758799310.141:1284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6824 comm="syz.0.327" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 76.708672][ T40] audit: type=1326 audit(1758799310.141:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6824 comm="syz.0.327" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 76.716193][ T40] audit: type=1326 audit(1758799310.141:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6824 comm="syz.0.327" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 76.723220][ T40] audit: type=1326 audit(1758799310.141:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6824 comm="syz.0.327" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 76.731195][ T40] audit: type=1326 audit(1758799310.141:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6824 comm="syz.0.327" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 76.740108][ T40] audit: type=1326 audit(1758799310.141:1289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6824 comm="syz.0.327" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 77.125180][ T6842] netlink: 4 bytes leftover after parsing attributes in process `syz.2.335'. [ 77.628202][ T6864] netlink: 4 bytes leftover after parsing attributes in process `syz.0.346'. [ 78.102655][ T6883] netlink: 4 bytes leftover after parsing attributes in process `syz.2.355'. [ 78.349734][ T6910] syz_tun: entered allmulticast mode [ 78.353693][ T6908] syz_tun: left allmulticast mode [ 78.375101][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 78.451442][ T6914] netlink: 28 bytes leftover after parsing attributes in process `syz.0.368'. [ 78.456122][ T6914] netem: change failed [ 78.516076][ T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!! [ 78.654959][ T24] usb 7-1: new full-speed USB device number 2 using dummy_hcd [ 78.784936][ T24] usb 7-1: device descriptor read/64, error -71 [ 79.024832][ T24] usb 7-1: new full-speed USB device number 3 using dummy_hcd [ 79.154906][ T24] usb 7-1: device descriptor read/64, error -71 [ 79.265100][ T24] usb usb7-port1: attempt power cycle [ 79.562811][ T6959] netlink: 4 bytes leftover after parsing attributes in process `syz.0.388'. [ 79.615416][ T24] usb 7-1: new full-speed USB device number 4 using dummy_hcd [ 79.637286][ T24] usb 7-1: device descriptor read/8, error -71 [ 79.730881][ T6964] netlink: 4 bytes leftover after parsing attributes in process `syz.3.390'. [ 79.734894][ T6964] openvswitch: netlink: Flow key attr not present in new flow. [ 79.888966][ T24] usb 7-1: new full-speed USB device number 5 using dummy_hcd [ 79.911154][ C1] vcan0: j1939_tp_rxtimer: 0xffff888054ea6800: rx timeout, send abort [ 79.916826][ T24] usb 7-1: device descriptor read/8, error -71 [ 80.028587][ T24] usb usb7-port1: unable to enumerate USB device [ 80.346491][ T6994] tipc: Started in network mode [ 80.348700][ T6994] tipc: Node identity 7f000001, cluster identity 4711 [ 80.352536][ T6994] tipc: Enabled bearer , priority 10 [ 80.361150][ T6994] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 80.365469][ T6994] tipc: Enabled bearer , priority 10 [ 80.415501][ C1] vcan0: j1939_tp_rxtimer: 0xffff888054ea6800: abort rx timeout. Force session deactivation [ 80.550757][ T6031] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 80.554354][ T6031] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 80.558372][ T6031] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 80.561692][ T6031] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 80.565019][ T6031] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 80.568256][ T6031] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 80.571301][ T6031] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 80.573891][ T6031] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 80.577220][ T6031] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 80.580391][ T6031] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 80.583640][ T6031] hid-generic 0000:0000:0000.0002: item fetching failed at offset 21/83 [ 80.588130][ T6031] hid-generic 0000:0000:0000.0002: probe with driver hid-generic failed with error -22 [ 80.600851][ T7009] SELinux: ebitmap: truncated map [ 80.610858][ T7009] SELinux: failed to load policy [ 80.618340][ T7011] __nla_validate_parse: 2 callbacks suppressed [ 80.618350][ T7011] netlink: 4 bytes leftover after parsing attributes in process `syz.0.412'. [ 80.642106][ T7013] netlink: 8 bytes leftover after parsing attributes in process `syz.3.413'. [ 80.645352][ T7013] ip_vti0: Master is either lo or non-ether device [ 80.793950][ T7032] netlink: 'syz.0.422': attribute type 1 has an invalid length. [ 81.356292][ T9] tipc: Node number set to 2130706433 [ 81.384927][ T73] usb 7-1: new full-speed USB device number 6 using dummy_hcd [ 81.477946][ T7055] netlink: 4 bytes leftover after parsing attributes in process `syz.2.432'. [ 81.483216][ T7055] netlink: 4 bytes leftover after parsing attributes in process `syz.2.432'. [ 81.663189][ T7067] tipc: Started in network mode [ 81.665329][ T7067] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 81.668454][ T7067] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 81.673117][ T7067] tipc: Enabled bearer , priority 10 [ 81.722817][ T40] kauditd_printk_skb: 393 callbacks suppressed [ 81.722828][ T40] audit: type=1400 audit(1758799315.191:1683): avc: denied { mount } for pid=7070 comm="syz.0.440" name="/" dev="ramfs" ino=14664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 81.738246][ T40] audit: type=1326 audit(1758799315.211:1684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7074 comm="syz.3.442" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8c058eec9 code=0x7ffc0000 [ 81.752983][ T40] audit: type=1326 audit(1758799315.211:1685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7074 comm="syz.3.442" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8c058eec9 code=0x7ffc0000 [ 81.761618][ T40] audit: type=1326 audit(1758799315.211:1686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7074 comm="syz.3.442" exe="/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7fa8c058eec9 code=0x7ffc0000 [ 81.769615][ T40] audit: type=1326 audit(1758799315.211:1687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7074 comm="syz.3.442" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8c058eec9 code=0x7ffc0000 [ 81.771475][ T7077] syzkaller0: entered promiscuous mode [ 81.779301][ T40] audit: type=1326 audit(1758799315.221:1688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7074 comm="syz.3.442" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8c058eec9 code=0x7ffc0000 [ 81.783127][ T7077] syzkaller0: entered allmulticast mode [ 81.836728][ T7083] netlink: 16 bytes leftover after parsing attributes in process `syz.0.446'. [ 81.855763][ T7081] netlink: 32 bytes leftover after parsing attributes in process `syz.3.445'. [ 81.957486][ T7094] tipc: Started in network mode [ 81.959146][ T40] audit: type=1400 audit(1758799315.431:1689): avc: denied { read } for pid=7095 comm="syz.2.449" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 81.959335][ T7094] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 81.970657][ T7094] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 81.974565][ T7094] tipc: Enabled bearer , priority 10 [ 82.049696][ T40] audit: type=1400 audit(1758799315.521:1690): avc: denied { setcheckreqprot } for pid=7101 comm="syz.2.453" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 82.243959][ T40] audit: type=1400 audit(1758799315.711:1691): avc: denied { setopt } for pid=7115 comm="syz.2.459" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 82.271717][ T40] audit: type=1400 audit(1758799315.741:1692): avc: denied { block_suspend } for pid=7115 comm="syz.2.459" capability=36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 82.794865][ T53] tipc: Node number set to 1 [ 83.085902][ T6031] tipc: Node number set to 1 [ 83.258919][ T7153] tipc: Enabling of bearer rejected, already enabled [ 83.379375][ T7159] netlink: 4 bytes leftover after parsing attributes in process `syz.2.479'. [ 83.861298][ T7180] netlink: 12 bytes leftover after parsing attributes in process `syz.2.487'. [ 83.875125][ T7180] netlink: 4 bytes leftover after parsing attributes in process `syz.2.487'. [ 84.488015][ T7221] tipc: Started in network mode [ 84.490325][ T7221] tipc: Node identity 7f000001, cluster identity 4711 [ 84.493140][ T7221] tipc: Enabled bearer , priority 10 [ 84.611758][ T7229] netlink: 4 bytes leftover after parsing attributes in process `syz.3.505'. [ 84.781113][ T7244] tipc: Enabling of bearer rejected, already enabled [ 85.333877][ T7290] tipc: Enabled bearer , priority 10 [ 85.340568][ T7290] tipc: Enabling of bearer rejected, already enabled [ 85.607119][ T34] tipc: Node number set to 2130706433 [ 85.613806][ T7314] tipc: Enabling of bearer rejected, already enabled [ 85.622070][ T7314] tipc: Enabling of bearer rejected, already enabled [ 85.936742][ T7329] 9pnet_fd: Insufficient options for proto=fd [ 86.071661][ T7343] __nla_validate_parse: 4 callbacks suppressed [ 86.071672][ T7343] netlink: 2 bytes leftover after parsing attributes in process `syz.0.556'. [ 86.735786][ T7384] netlink: 20 bytes leftover after parsing attributes in process `syz.0.575'. [ 87.061950][ T7401] tipc: Enabling of bearer rejected, already enabled [ 87.066424][ T7401] tipc: Enabling of bearer rejected, already enabled [ 87.267308][ T7424] tipc: Enabled bearer , priority 10 [ 87.274556][ T7424] tipc: Enabling of bearer rejected, already enabled [ 87.387451][ T7438] netlink: 4 bytes leftover after parsing attributes in process `syz.0.599'. [ 87.617164][ T40] kauditd_printk_skb: 162 callbacks suppressed [ 87.617180][ T40] audit: type=1400 audit(1758799321.091:1855): avc: denied { read write } for pid=7454 comm="syz.0.607" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 87.630566][ T40] audit: type=1400 audit(1758799321.091:1856): avc: denied { open } for pid=7454 comm="syz.0.607" path="/dev/ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 87.641640][ T40] audit: type=1400 audit(1758799321.091:1857): avc: denied { ioctl } for pid=7454 comm="syz.0.607" path="/dev/ppp" dev="devtmpfs" ino=730 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 87.698534][ T7461] tipc: Enabling of bearer rejected, already enabled [ 87.741633][ T7465] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=29 sclass=netlink_tcpdiag_socket pid=7465 comm=syz.3.612 [ 87.800347][ T40] audit: type=1400 audit(1758799321.271:1858): avc: denied { connect } for pid=7464 comm="syz.3.612" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 87.803386][ T7469] netlink: 40 bytes leftover after parsing attributes in process `syz.0.614'. [ 87.808902][ T40] audit: type=1400 audit(1758799321.271:1859): avc: denied { getopt } for pid=7464 comm="syz.3.612" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 87.820028][ T40] audit: type=1400 audit(1758799321.271:1860): avc: denied { name_bind } for pid=7464 comm="syz.3.612" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1 [ 87.854649][ T7472] syz.3.615 uses obsolete (PF_INET,SOCK_PACKET) [ 88.009858][ T7480] netlink: 'syz.0.619': attribute type 6 has an invalid length. [ 88.051740][ T7484] tipc: Enabling of bearer rejected, already enabled [ 88.126842][ T7491] netlink: 40 bytes leftover after parsing attributes in process `syz.3.625'. [ 88.300807][ T40] audit: type=1400 audit(1758799321.771:1861): avc: denied { connect } for pid=7508 comm="syz.2.633" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 88.320088][ T7511] netlink: 4 bytes leftover after parsing attributes in process `syz.3.634'. [ 88.328077][ T7511] netlink: 4 bytes leftover after parsing attributes in process `syz.3.634'. [ 88.332065][ T7511] netlink: 4 bytes leftover after parsing attributes in process `syz.3.634'. [ 88.368703][ T7516] netlink: 40 bytes leftover after parsing attributes in process `syz.2.636'. [ 88.377287][ T7511] netlink: 4 bytes leftover after parsing attributes in process `syz.3.634'. [ 88.387361][ T40] audit: type=1326 audit(1758799321.861:1862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7517 comm="syz.0.637" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 88.403062][ T40] audit: type=1326 audit(1758799321.861:1863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7517 comm="syz.0.637" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 88.424832][ T40] audit: type=1326 audit(1758799321.861:1864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7517 comm="syz.0.637" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 88.861438][ T7549] syzkaller1: entered promiscuous mode [ 88.864118][ T7549] syzkaller1: entered allmulticast mode [ 88.923341][ T7551] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 89.308070][ T7591] SELinux: security_context_str_to_sid (E) failed with errno=-22 [ 89.315057][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 89.344960][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 90.411223][ T7633] 8021q: adding VLAN 0 to HW filter on device bond1 [ 90.638604][ T7653] 9pnet: p9_errstr2errno: server reported unknown error [ 90.764034][ T7658] 0XD: renamed from gretap0 (while UP) [ 90.767998][ T7658] 0XD: entered allmulticast mode [ 90.770248][ T7658] A link change request failed with some changes committed already. Interface 30XD may have been left with an inconsistent configuration, please check. [ 90.857432][ T7667] tipc: Enabling of bearer rejected, already enabled [ 90.862626][ T7667] tipc: Enabling of bearer rejected, already enabled [ 90.865816][ T7669] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7) [ 90.867932][ T7669] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 90.871128][ T7669] vhci_hcd vhci_hcd.0: Device attached [ 90.923741][ T7676] smc: net device bond0 applied user defined pnetid SYZ0 [ 90.927609][ T7676] smc: net device bond0 erased user defined pnetid SYZ0 [ 90.981700][ T7671] vhci_hcd: connection closed [ 90.982016][ T13] vhci_hcd: stop threads [ 90.987900][ T13] vhci_hcd: release socket [ 90.990040][ T13] vhci_hcd: disconnect device [ 91.056090][ T29] vhci_hcd: vhci_device speed not set [ 91.098341][ T7682] batadv_slave_1: entered promiscuous mode [ 91.102053][ T7681] batadv_slave_1: left promiscuous mode [ 91.528543][ T7711] __nla_validate_parse: 8 callbacks suppressed [ 91.528554][ T7711] netlink: 4 bytes leftover after parsing attributes in process `syz.3.711'. [ 91.533888][ T7711] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 91.580397][ T7711] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 91.596567][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805362a800: rx timeout, send abort [ 92.095011][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805362b000: rx timeout, send abort [ 92.100456][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805362a800: abort rx timeout. Force session deactivation [ 92.104620][ T7752] usb usb1: usbfs: process 7752 (syz.3.726) did not claim interface 4 before use [ 92.531038][ T7795] tipc: Enabling of bearer rejected, already enabled [ 92.536783][ T7795] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 92.541001][ T7795] tipc: Enabled bearer , priority 10 [ 92.598737][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805362b000: abort rx timeout. Force session deactivation [ 92.646031][ T7799] netlink: 4 bytes leftover after parsing attributes in process `syz.2.745'. [ 92.797839][ T7807] IPVS: Unknown mcast interface: pimreg1 [ 93.120217][ T40] kauditd_printk_skb: 35 callbacks suppressed [ 93.120228][ T40] audit: type=1326 audit(1758799326.591:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7829 comm="syz.0.758" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 93.129990][ T40] audit: type=1326 audit(1758799326.591:1901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7829 comm="syz.0.758" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 93.138815][ T40] audit: type=1326 audit(1758799326.591:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7829 comm="syz.0.758" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 93.147327][ T40] audit: type=1326 audit(1758799326.591:1903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7829 comm="syz.0.758" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 93.155370][ T40] audit: type=1326 audit(1758799326.591:1904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7829 comm="syz.0.758" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 93.162568][ T40] audit: type=1326 audit(1758799326.591:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7829 comm="syz.0.758" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 93.170352][ T40] audit: type=1326 audit(1758799326.591:1906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7829 comm="syz.0.758" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 93.178012][ T40] audit: type=1326 audit(1758799326.591:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7829 comm="syz.0.758" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 93.185510][ T40] audit: type=1326 audit(1758799326.611:1908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7829 comm="syz.0.758" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 93.192591][ T40] audit: type=1326 audit(1758799326.611:1909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7829 comm="syz.0.758" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 93.273092][ T7847] netlink: 4 bytes leftover after parsing attributes in process `syz.0.765'. [ 93.337447][ T7853] netlink: 4 bytes leftover after parsing attributes in process `syz.2.770'. [ 93.409521][ T7865] atomic_op ffff888054cc9198 conn xmit_atomic 0000000000000000 [ 93.413672][ T7869] netlink: 4 bytes leftover after parsing attributes in process `syz.3.778'. [ 93.828988][ T7926] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7926 comm=syz.2.801 [ 93.970303][ C1] vcan0: j1939_tp_rxtimer: 0xffff888053795800: rx timeout, send abort [ 94.103044][ T7953] tipc: Enabling of bearer rejected, already enabled [ 94.110540][ T7953] tipc: Enabling of bearer rejected, already enabled [ 94.470352][ C1] vcan0: j1939_tp_rxtimer: 0xffff888053795000: rx timeout, send abort [ 94.473132][ C1] vcan0: j1939_tp_rxtimer: 0xffff888053795800: abort rx timeout. Force session deactivation [ 94.503666][ T7971] netlink: 'syz.1.820': attribute type 21 has an invalid length. [ 94.506988][ T7971] netlink: 132 bytes leftover after parsing attributes in process `syz.1.820'. [ 94.510567][ T7971] netlink: 'syz.1.820': attribute type 1 has an invalid length. [ 94.581697][ T7977] netlink: 4 bytes leftover after parsing attributes in process `syz.1.823'. [ 94.729748][ T5382] udevd[5382]: worker [5981] terminated by signal 33 (Unknown signal 33) [ 94.732891][ T5382] udevd[5382]: worker [5981] failed while handling '/devices/virtual/block/loop1' [ 94.865490][ T8007] tipc: Enabling of bearer rejected, already enabled [ 94.973126][ C1] vcan0: j1939_tp_rxtimer: 0xffff888053795000: abort rx timeout. Force session deactivation [ 95.229691][ T8041] netlink: 8 bytes leftover after parsing attributes in process `syz.2.850'. [ 95.804912][ T8096] netlink: 4 bytes leftover after parsing attributes in process `syz.1.873'. [ 96.084010][ T8125] tipc: Enabling of bearer rejected, already enabled [ 96.166458][ T8131] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 97.179776][ T8182] netlink: 4 bytes leftover after parsing attributes in process `syz.0.908'. [ 97.404273][ T8207] netlink: 4 bytes leftover after parsing attributes in process `syz.3.919'. [ 97.626281][ T8236] tipc: Bearer : already 2 bearers with priority 10 [ 97.629321][ T8236] tipc: Bearer : trying with adjusted priority [ 97.632034][ T8236] tipc: New replicast peer: 255.255.255.83 [ 97.634187][ T8236] tipc: Enabled bearer , priority 9 [ 97.638559][ T8240] batadv_slave_1: entered promiscuous mode [ 97.641128][ T8240] batadv_slave_1: left promiscuous mode [ 97.677566][ T8249] netlink: 24 bytes leftover after parsing attributes in process `syz.3.936'. [ 97.733895][ T8257] SELinux: policydb version 0 does not match my version range 15-35 [ 97.737630][ T8257] SELinux: failed to load policy [ 97.773155][ T8264] program syz.2.942 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 97.809655][ T8268] netlink: 'syz.0.946': attribute type 7 has an invalid length. [ 97.813190][ T8268] netlink: 8 bytes leftover after parsing attributes in process `syz.0.946'. [ 97.820238][ T8273] netlink: 4 bytes leftover after parsing attributes in process `syz.2.948'. [ 97.909532][ T8283] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 97.920626][ T8283] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 98.041021][ T8298] netlink: 'syz.0.959': attribute type 3 has an invalid length. [ 98.106519][ T8310] tipc: Enabling of bearer rejected, already enabled [ 98.110444][ T8310] tipc: Enabling of bearer rejected, already enabled [ 98.147723][ T8314] syzkaller0: entered promiscuous mode [ 98.149732][ T8314] syzkaller0: entered allmulticast mode [ 98.291505][ T40] kauditd_printk_skb: 327 callbacks suppressed [ 98.291521][ T40] audit: type=1326 audit(1758799331.761:2237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8325 comm="syz.1.971" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49b578eec9 code=0x7ffc0000 [ 98.303822][ T40] audit: type=1326 audit(1758799331.761:2238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8325 comm="syz.1.971" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49b578eec9 code=0x7ffc0000 [ 98.314248][ T40] audit: type=1326 audit(1758799331.761:2239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8325 comm="syz.1.971" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f49b578eec9 code=0x7ffc0000 [ 98.324918][ T40] audit: type=1326 audit(1758799331.761:2240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8325 comm="syz.1.971" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49b578eec9 code=0x7ffc0000 [ 98.335182][ T40] audit: type=1326 audit(1758799331.761:2241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8325 comm="syz.1.971" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49b578eec9 code=0x7ffc0000 [ 98.345613][ T40] audit: type=1326 audit(1758799331.761:2242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8325 comm="syz.1.971" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f49b578eec9 code=0x7ffc0000 [ 98.358370][ T40] audit: type=1326 audit(1758799331.761:2243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8325 comm="syz.1.971" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49b578eec9 code=0x7ffc0000 [ 98.368666][ T40] audit: type=1326 audit(1758799331.761:2244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8325 comm="syz.1.971" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f49b578eec9 code=0x7ffc0000 [ 98.377758][ T40] audit: type=1326 audit(1758799331.781:2245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8325 comm="syz.1.971" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49b578eec9 code=0x7ffc0000 [ 98.385944][ T40] audit: type=1326 audit(1758799331.781:2246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8325 comm="syz.1.971" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49b578eec9 code=0x7ffc0000 [ 98.394006][ T8324] syz_tun: refused to change device tx_queue_len [ 98.407494][ T34] hid_parser_main: 1 callbacks suppressed [ 98.407513][ T34] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x4 [ 98.420272][ T34] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x2 [ 98.423726][ T34] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x3 [ 98.433408][ T34] hid-generic 0000:3000000:0000.0003: hidraw1: HID v0.00 Device [sy] on syz0 [ 98.452788][ T8332] netlink: 12 bytes leftover after parsing attributes in process `syz.1.974'. [ 98.511936][ T8333] fido_id[8333]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 98.587902][ T8342] netlink: 14 bytes leftover after parsing attributes in process `syz.0.977'. [ 98.627243][ T8343] tipc: Enabling of bearer rejected, already enabled [ 98.632609][ T8343] tipc: Enabling of bearer rejected, already enabled [ 98.669099][ T8344] netlink: 'syz.0.977': attribute type 10 has an invalid length. [ 98.673088][ T8344] netlink: 40 bytes leftover after parsing attributes in process `syz.0.977'. [ 98.696320][ T8344] team0: Port device geneve0 added [ 100.357285][ T8388] overlayfs: failed to clone upperpath [ 100.515134][ T8398] netlink: 8 bytes leftover after parsing attributes in process `syz.3.999'. [ 100.555896][ T8403] syzkaller0: entered promiscuous mode [ 100.558220][ T8403] syzkaller0: entered allmulticast mode [ 100.712835][ T8420] tipc: Enabling of bearer rejected, already enabled [ 100.720324][ T8420] tipc: Enabling of bearer rejected, already enabled [ 100.817724][ T8428] overlayfs: failed to clone upperpath [ 101.128538][ T8439] fuse: Bad value for 'fd' [ 101.296377][ T8445] syzkaller0: entered promiscuous mode [ 101.298485][ T8445] syzkaller0: entered allmulticast mode [ 101.431116][ T8447] tipc: Enabling of bearer rejected, already enabled [ 101.435740][ T8447] tipc: Enabling of bearer rejected, already enabled [ 102.226078][ T8487] loop2: detected capacity change from 0 to 7 [ 102.233486][ T8487] Dev loop2: unable to read RDB block 7 [ 102.236238][ T8487] loop2: AHDI p1 p2 p3 [ 102.238118][ T8487] loop2: partition table partially beyond EOD, truncated [ 102.242349][ T8487] loop2: p1 start 1601398130 is beyond EOD, truncated [ 102.245983][ T8487] loop2: p2 start 1702059890 is beyond EOD, truncated [ 102.610776][ T8495] syzkaller0: entered promiscuous mode [ 102.612553][ T8495] syzkaller0: entered allmulticast mode [ 102.713466][ T8500] FAULT_INJECTION: forcing a failure. [ 102.713466][ T8500] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 102.718171][ T8500] CPU: 2 UID: 0 PID: 8500 Comm: syz.0.1036 Not tainted syzkaller #0 PREEMPT(full) [ 102.718192][ T8500] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 102.718202][ T8500] Call Trace: [ 102.718207][ T8500] [ 102.718213][ T8500] dump_stack_lvl+0x16c/0x1f0 [ 102.718237][ T8500] should_fail_ex+0x512/0x640 [ 102.718260][ T8500] _copy_from_user+0x2e/0xd0 [ 102.718284][ T8500] io_submit_one+0xbb/0x1df0 [ 102.718306][ T8500] ? __lock_acquire+0xb97/0x1ce0 [ 102.718333][ T8500] ? __pfx_io_submit_one+0x10/0x10 [ 102.718359][ T8500] ? __might_fault+0xe3/0x190 [ 102.718374][ T8500] ? __might_fault+0x13b/0x190 [ 102.718394][ T8500] ? __x64_sys_io_submit+0x1a9/0x350 [ 102.718413][ T8500] __x64_sys_io_submit+0x1a9/0x350 [ 102.718435][ T8500] ? __pfx___x64_sys_io_submit+0x10/0x10 [ 102.718465][ T8500] do_syscall_64+0xcd/0x4e0 [ 102.718487][ T8500] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.718503][ T8500] RIP: 0033:0x7f339498eec9 [ 102.718516][ T8500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 102.718531][ T8500] RSP: 002b:00007f33957e1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 102.718547][ T8500] RAX: ffffffffffffffda RBX: 00007f3394be5fa0 RCX: 00007f339498eec9 [ 102.718557][ T8500] RDX: 0000200000000780 RSI: 0000000000000001 RDI: 00007f33957b8000 [ 102.718566][ T8500] RBP: 00007f33957e1090 R08: 0000000000000000 R09: 0000000000000000 [ 102.718575][ T8500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 102.718584][ T8500] R13: 00007f3394be6038 R14: 00007f3394be5fa0 R15: 00007ffd74153f98 [ 102.718609][ T8500] [ 102.762172][ T8503] tipc: Enabling of bearer rejected, already enabled [ 102.822191][ T8508] netlink: 'syz.1.1040': attribute type 10 has an invalid length. [ 102.837778][ T8508] veth0_macvtap: left promiscuous mode [ 102.884333][ T8513] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1043'. [ 102.930277][ T8519] syzkaller0: entered promiscuous mode [ 102.932655][ T8519] syzkaller0: entered allmulticast mode [ 103.110673][ T8546] QAT: Device 3 not found [ 103.166371][ T8554] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 103.353962][ T40] kauditd_printk_skb: 226 callbacks suppressed [ 103.353973][ T40] audit: type=1400 audit(1758799336.821:2473): avc: denied { read } for pid=8568 comm="syz.3.1065" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 103.363899][ T40] audit: type=1400 audit(1758799336.821:2474): avc: denied { open } for pid=8568 comm="syz.3.1065" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 103.373352][ T40] audit: type=1400 audit(1758799336.821:2475): avc: denied { ioctl } for pid=8568 comm="syz.3.1065" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 103.413023][ T40] audit: type=1400 audit(1758799336.881:2476): avc: denied { read } for pid=8575 comm="syz.2.1068" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 103.420772][ T40] audit: type=1400 audit(1758799336.881:2477): avc: denied { open } for pid=8575 comm="syz.2.1068" path="/dev/dri/card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 103.430401][ T40] audit: type=1400 audit(1758799336.911:2478): avc: denied { ioctl } for pid=8575 comm="syz.2.1068" path="socket:[17375]" dev="sockfs" ino=17375 ioctlcmd=0xff7f scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 103.482078][ T40] audit: type=1400 audit(1758799336.951:2479): avc: denied { ioctl } for pid=8575 comm="syz.2.1068" path="/dev/dri/card1" dev="devtmpfs" ino=636 ioctlcmd=0x640d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 103.491118][ T40] audit: type=1400 audit(1758799336.951:2480): avc: denied { create } for pid=8575 comm="syz.2.1068" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 103.643575][ T8586] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1071'. [ 103.700576][ T8589] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1071'. [ 103.707174][ T8586] team0 (unregistering): Port device team_slave_0 removed [ 103.714156][ T8586] team0 (unregistering): Port device team_slave_1 removed [ 103.724003][ T40] audit: type=1400 audit(1758799337.191:2481): avc: denied { read write } for pid=8587 comm="syz.0.1072" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 103.725120][ T8586] team0 (unregistering): Port device geneve0 removed [ 103.733303][ T40] audit: type=1400 audit(1758799337.191:2482): avc: denied { open } for pid=8587 comm="syz.0.1072" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 103.864950][ T8598] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1075'. [ 103.876982][ T12] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 103.877780][ T8598] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1075'. [ 103.880421][ T12] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 103.894792][ T12] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 103.898102][ T12] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 103.928689][ T8605] FAULT_INJECTION: forcing a failure. [ 103.928689][ T8605] name failslab, interval 1, probability 0, space 0, times 1 [ 103.933964][ T8605] CPU: 0 UID: 0 PID: 8605 Comm: syz.2.1077 Not tainted syzkaller #0 PREEMPT(full) [ 103.933987][ T8605] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 103.933996][ T8605] Call Trace: [ 103.934002][ T8605] [ 103.934009][ T8605] dump_stack_lvl+0x16c/0x1f0 [ 103.934058][ T8605] should_fail_ex+0x512/0x640 [ 103.934084][ T8605] ? __kmalloc_noprof+0xbf/0x510 [ 103.934103][ T8605] ? __alloc_workqueue+0x9f/0x1810 [ 103.934141][ T8605] should_failslab+0xc2/0x120 [ 103.934161][ T8605] __kmalloc_noprof+0xd2/0x510 [ 103.934176][ T8605] ? __pfx_ovl_other_xattr_get+0x10/0x10 [ 103.934195][ T8605] ? __vfs_getxattr+0x145/0x1a0 [ 103.934216][ T8605] __alloc_workqueue+0x9f/0x1810 [ 103.934243][ T8605] ? cap_inode_need_killpriv+0x4c/0x60 [ 103.934266][ T8605] alloc_workqueue_noprof+0xd2/0x200 [ 103.934289][ T8605] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 103.934322][ T8605] ? ovl_has_upperdata+0x56/0x1e0 [ 103.934347][ T8605] ? ovl_real_file_path+0x159/0x670 [ 103.934373][ T8605] sb_init_dio_done_wq+0x28/0x80 [ 103.934397][ T8605] backing_file_write_iter+0x600/0x8f0 [ 103.934424][ T8605] ovl_write_iter+0x35b/0x430 [ 103.934445][ T8605] ? __pfx_ovl_write_iter+0x10/0x10 [ 103.934466][ T8605] ? __pfx_ovl_file_end_write+0x10/0x10 [ 103.934484][ T8605] ? find_held_lock+0x2b/0x80 [ 103.934505][ T8605] ? aio_write+0x6f7/0x910 [ 103.934525][ T8605] aio_write+0x3b6/0x910 [ 103.934545][ T8605] ? __pfx_aio_write+0x10/0x10 [ 103.934563][ T8605] ? __lock_acquire+0xb97/0x1ce0 [ 103.934601][ T8605] ? __might_fault+0xe3/0x190 [ 103.934616][ T8605] ? __might_fault+0x13b/0x190 [ 103.934638][ T8605] ? io_submit_one+0x1243/0x1df0 [ 103.934656][ T8605] io_submit_one+0x1243/0x1df0 [ 103.934679][ T8605] ? __lock_acquire+0xb97/0x1ce0 [ 103.934722][ T8605] ? __pfx_io_submit_one+0x10/0x10 [ 103.934751][ T8605] ? __might_fault+0xe3/0x190 [ 103.934765][ T8605] ? __might_fault+0x13b/0x190 [ 103.934786][ T8605] ? __x64_sys_io_submit+0x1a9/0x350 [ 103.934805][ T8605] __x64_sys_io_submit+0x1a9/0x350 [ 103.934828][ T8605] ? __pfx___x64_sys_io_submit+0x10/0x10 [ 103.934860][ T8605] do_syscall_64+0xcd/0x4e0 [ 103.934908][ T8605] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 103.934925][ T8605] RIP: 0033:0x7fe85918eec9 [ 103.934938][ T8605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 103.934953][ T8605] RSP: 002b:00007fe859fbc038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 103.934969][ T8605] RAX: ffffffffffffffda RBX: 00007fe8593e5fa0 RCX: 00007fe85918eec9 [ 103.934979][ T8605] RDX: 0000200000000780 RSI: 0000000000000001 RDI: 00007fe859f93000 [ 103.934989][ T8605] RBP: 00007fe859fbc090 R08: 0000000000000000 R09: 0000000000000000 [ 103.934998][ T8605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 103.935008][ T8605] R13: 00007fe8593e6038 R14: 00007fe8593e5fa0 R15: 00007ffcb1ebd9f8 [ 103.935030][ T8605] [ 104.439412][ T8628] overlayfs: failed to clone upperpath [ 104.445662][ T8628] FAULT_INJECTION: forcing a failure. [ 104.445662][ T8628] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 104.451516][ T8628] CPU: 2 UID: 0 PID: 8628 Comm: syz.3.1089 Not tainted syzkaller #0 PREEMPT(full) [ 104.451539][ T8628] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 104.451549][ T8628] Call Trace: [ 104.451555][ T8628] [ 104.451562][ T8628] dump_stack_lvl+0x16c/0x1f0 [ 104.451590][ T8628] should_fail_ex+0x512/0x640 [ 104.451614][ T8628] _copy_from_user+0x2e/0xd0 [ 104.451641][ T8628] kstrtouint_from_user+0xd6/0x1d0 [ 104.451660][ T8628] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 104.451678][ T8628] ? __lock_acquire+0xb97/0x1ce0 [ 104.451718][ T8628] proc_fail_nth_write+0x83/0x220 [ 104.451740][ T8628] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 104.451767][ T8628] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 104.451786][ T8628] vfs_write+0x29d/0x11d0 [ 104.451808][ T8628] ? __pfx___mutex_lock+0x10/0x10 [ 104.451832][ T8628] ? __pfx_vfs_write+0x10/0x10 [ 104.451857][ T8628] ? __fget_files+0x20e/0x3c0 [ 104.451884][ T8628] ksys_write+0x12a/0x250 [ 104.451902][ T8628] ? __pfx_ksys_write+0x10/0x10 [ 104.451928][ T8628] do_syscall_64+0xcd/0x4e0 [ 104.451953][ T8628] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 104.451971][ T8628] RIP: 0033:0x7fa8c058d97f [ 104.451986][ T8628] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 104.452002][ T8628] RSP: 002b:00007fa8be7f6030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 104.452018][ T8628] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa8c058d97f [ 104.452029][ T8628] RDX: 0000000000000001 RSI: 00007fa8be7f60a0 RDI: 0000000000000004 [ 104.452039][ T8628] RBP: 00007fa8be7f6090 R08: 0000000000000000 R09: 0000000000000000 [ 104.452048][ T8628] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 104.452058][ T8628] R13: 00007fa8c07e6038 R14: 00007fa8c07e5fa0 R15: 00007ffe33f36a78 [ 104.452081][ T8628] [ 104.459181][ T8630] tipc: Enabling of bearer rejected, already enabled [ 104.542159][ T8630] tipc: Enabling of bearer rejected, already enabled [ 104.607668][ T8638] loop2: detected capacity change from 0 to 7 [ 104.611535][ T8638] Dev loop2: unable to read RDB block 7 [ 104.613916][ T8638] loop2: AHDI p1 p2 p3 [ 104.617912][ T8638] loop2: partition table partially beyond EOD, truncated [ 104.620787][ T8638] loop2: p1 start 1601398130 is beyond EOD, truncated [ 104.623602][ T8638] loop2: p2 start 1702059890 is beyond EOD, truncated [ 104.714673][ T8648] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 104.810483][ T8658] tipc: Enabling of bearer rejected, already enabled [ 104.817976][ T8658] tipc: Enabling of bearer rejected, already enabled [ 104.860823][ T8666] loop2: detected capacity change from 0 to 7 [ 104.863761][ T8666] Dev loop2: unable to read RDB block 7 [ 104.865991][ T8666] loop2: AHDI p1 p2 p3 [ 104.867641][ T8666] loop2: partition table partially beyond EOD, truncated [ 104.871112][ T8666] loop2: p1 start 1601398130 is beyond EOD, truncated [ 104.873452][ T8666] loop2: p2 start 1702059890 is beyond EOD, truncated [ 105.259371][ T8687] nftables ruleset with unbound chain [ 105.311934][ T8690] tipc: Enabling of bearer rejected, already enabled [ 105.319727][ T8690] tipc: Enabling of bearer rejected, already enabled [ 105.589300][ T8702] futex_wake_op: syz.3.1118 tries to shift op by 32; fix this program [ 105.590639][ T8703] syz.3.1118 uses old SIOCAX25GETINFO [ 105.671010][ T8712] loop2: detected capacity change from 0 to 7 [ 105.674279][ T8712] Dev loop2: unable to read RDB block 7 [ 105.676626][ T8712] loop2: AHDI p1 p2 p3 [ 105.678017][ T8712] loop2: partition table partially beyond EOD, truncated [ 105.680622][ T8712] loop2: p1 start 1601398130 is beyond EOD, truncated [ 105.682852][ T8712] loop2: p2 start 1702059890 is beyond EOD, truncated [ 105.689138][ T5382] Dev loop2: unable to read RDB block 7 [ 105.691102][ T5382] loop2: AHDI p1 p2 p3 [ 105.692618][ T5382] loop2: partition table partially beyond EOD, truncated [ 105.696191][ T5382] loop2: p1 start 1601398130 is beyond EOD, truncated [ 105.698894][ T5382] loop2: p2 start 1702059890 is beyond EOD, truncated [ 105.745464][ T8719] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1125'. [ 105.749065][ T8719] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1125'. [ 105.896396][ T8728] warning: `syz.3.1129' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 105.900947][ T8728] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1129'. [ 105.906908][ T8728] loop6: detected capacity change from 0 to 7 [ 105.920645][ T8728] Dev loop6: unable to read RDB block 7 [ 105.923094][ T8728] loop6: unable to read partition table [ 105.926261][ T8728] loop6: partition table beyond EOD, truncated [ 105.930938][ T8728] loop_reread_partitions: partition scan of loop6 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 105.975636][ T8744] loop2: detected capacity change from 0 to 7 [ 105.979509][ T8744] Dev loop2: unable to read RDB block 7 [ 105.981907][ T8744] loop2: AHDI p1 p2 p3 [ 105.983559][ T8744] loop2: partition table partially beyond EOD, truncated [ 105.987915][ T8744] loop2: p1 start 1601398130 is beyond EOD, truncated [ 105.990777][ T8744] loop2: p2 start 1702059890 is beyond EOD, truncated [ 106.433684][ T8791] tipc: Enabling of bearer rejected, already enabled [ 106.437817][ T8791] tipc: Enabling of bearer rejected, already enabled [ 106.524659][ T8802] MTD: Couldn't look up './bus': -15 [ 106.531367][ T8802] netlink: 'syz.1.1155': attribute type 30 has an invalid length. [ 106.988619][ T8848] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 107.011153][ T13] Bluetooth: hci4: Frame reassembly failed (-84) [ 107.014089][ T8848] Bluetooth: hci4: Frame reassembly failed (-84) [ 107.027864][ T8855] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=6 sclass=netlink_route_socket pid=8855 comm=syz.1.1174 [ 107.055454][ T5984] Bluetooth: hci3: link tx timeout [ 107.058556][ T5984] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa [ 107.065441][ T8857] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8857 comm=syz.3.1175 [ 107.071718][ T5978] Bluetooth: hci3: link tx timeout [ 107.073349][ T5978] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa [ 107.701982][ T8913] 9pnet_fd: Insufficient options for proto=fd [ 107.708609][ T8915] tipc: Enabling of bearer rejected, already enabled [ 107.714039][ T8915] tipc: Enabling of bearer rejected, already enabled [ 108.543754][ T8963] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1201'. [ 108.621679][ T8975] netlink: 14601 bytes leftover after parsing attributes in process `syz.1.1204'. [ 108.752169][ T8981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1207'. [ 108.758016][ T40] kauditd_printk_skb: 41 callbacks suppressed [ 108.758025][ T40] audit: type=1400 audit(1758799342.231:2524): avc: denied { map } for pid=8980 comm="syz.1.1207" path="/dev/hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 108.839155][ T8991] loop2: detected capacity change from 0 to 7 [ 108.842260][ T8991] Dev loop2: unable to read RDB block 7 [ 108.844103][ T8991] loop2: AHDI p1 p2 p3 [ 108.846067][ T8991] loop2: partition table partially beyond EOD, truncated [ 108.849179][ T8991] loop2: p1 start 1601398130 is beyond EOD, truncated [ 108.851952][ T8991] loop2: p2 start 1702059890 is beyond EOD, truncated [ 108.884198][ T8992] tipc: Enabling of bearer rejected, already enabled [ 108.894102][ T8992] tipc: Enabling of bearer rejected, already enabled [ 108.898922][ T40] audit: type=1400 audit(1758799342.371:2525): avc: denied { ioctl } for pid=8993 comm="syz.1.1211" path="socket:[20846]" dev="sockfs" ino=20846 ioctlcmd=0xf50d scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 108.937281][ T40] audit: type=1400 audit(1758799342.411:2526): avc: denied { write } for pid=8995 comm="syz.1.1212" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 109.044864][ T5332] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 109.045003][ T5978] Bluetooth: hci4: command 0x1003 tx timeout [ 109.083286][ T40] audit: type=1400 audit(1758799342.551:2527): avc: denied { unmount } for pid=5980 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 109.124895][ T5332] Bluetooth: hci3: command 0x0406 tx timeout [ 109.137981][ T9017] overlayfs: failed to clone upperpath [ 109.226796][ T9022] loop2: detected capacity change from 0 to 7 [ 109.230811][ T5976] Dev loop2: unable to read RDB block 7 [ 109.232612][ T5976] loop2: AHDI p1 p2 p3 [ 109.234287][ T5976] loop2: partition table partially beyond EOD, truncated [ 109.237157][ T5976] loop2: p1 start 1601398130 is beyond EOD, truncated [ 109.239853][ T5976] loop2: p2 start 1702059890 is beyond EOD, truncated [ 109.243778][ T9022] Dev loop2: unable to read RDB block 7 [ 109.246345][ T9022] loop2: AHDI p1 p2 p3 [ 109.248102][ T9022] loop2: partition table partially beyond EOD, truncated [ 109.251337][ T9022] loop2: p1 start 1601398130 is beyond EOD, truncated [ 109.254018][ T9022] loop2: p2 start 1702059890 is beyond EOD, truncated [ 109.716417][ T40] audit: type=1326 audit(1758799343.191:2528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9049 comm="syz.0.1231" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 109.737898][ T9054] ------------[ cut here ]------------ [ 109.739695][ T9054] verifier bug: scc exit: no visit info for call chain (1)(1) [ 109.742246][ T9054] WARNING: CPU: 0 PID: 9054 at kernel/bpf/verifier.c:1949 maybe_exit_scc+0x768/0x8d0 [ 109.747298][ T9054] Modules linked in: [ 109.749707][ T9051] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1231'. [ 109.750542][ T9054] CPU: 0 UID: 0 PID: 9054 Comm: syz.3.1232 Not tainted syzkaller #0 PREEMPT(full) [ 109.750560][ T9054] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 109.762121][ T9054] RIP: 0010:maybe_exit_scc+0x768/0x8d0 [ 109.763715][ T40] audit: type=1326 audit(1758799343.201:2529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9049 comm="syz.0.1231" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 109.764915][ T9054] Code: ff ff e8 ab 8e e7 ff c6 05 eb b7 bf 0e 01 90 48 89 ee 48 89 df e8 f8 41 fb ff 48 c7 c7 20 9c b5 8b 48 89 c6 e8 f9 32 a6 ff 90 <0f> 0b 90 90 e9 4e ff ff ff e8 aa f6 4d 00 e9 7f f9 ff ff 4c 8b 4c [ 109.775425][ T40] audit: type=1326 audit(1758799343.221:2530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9049 comm="syz.0.1231" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 109.781501][ T9054] RSP: 0018:ffffc90004c8f500 EFLAGS: 00010282 [ 109.781523][ T9054] RAX: 0000000000000000 RBX: ffff888038d10000 RCX: ffffc9000c001000 [ 109.781535][ T9054] RDX: 0000000000080000 RSI: ffffffff817a4395 RDI: 0000000000000001 [ 109.781546][ T9054] RBP: ffff888038d16328 R08: 0000000000000001 R09: 0000000000000000 [ 109.781558][ T9054] R10: 0000000000000001 R11: 0000000000000000 R12: 1ffff92000991ea7 [ 109.781569][ T9054] R13: 0000000000000000 R14: ffff888054a1ea00 R15: dffffc0000000000 [ 109.781581][ T9054] FS: 00007fa8be7f66c0(0000) GS:ffff8880d66b2000(0000) knlGS:0000000000000000 [ 109.781615][ T9054] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 109.781629][ T9054] CR2: 0000200000003000 CR3: 0000000065bac000 CR4: 0000000000352ef0 [ 109.781642][ T9054] Call Trace: [ 109.781649][ T9054] [ 109.781662][ T9054] ? __pfx_maybe_exit_scc+0x10/0x10 [ 109.791929][ T40] audit: type=1326 audit(1758799343.221:2531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9049 comm="syz.0.1231" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 109.791975][ T40] audit: type=1326 audit(1758799343.221:2532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9049 comm="syz.0.1231" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 109.792012][ T40] audit: type=1326 audit(1758799343.221:2533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9049 comm="syz.0.1231" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339498eec9 code=0x7ffc0000 [ 109.849056][ T9054] ? check_atomic_rmw+0xa26/0x1100 [ 109.851249][ T9054] ? check_atomic_rmw+0x81/0x1100 [ 109.853488][ T9054] do_check_common+0x20cc/0xb410 [ 109.855384][ T9054] ? __pfx_do_check_common+0x10/0x10 [ 109.857071][ T9054] ? lockdep_hardirqs_on+0x51/0x110 [ 109.859017][ T9054] ? kfree+0x2b4/0x4d0 [ 109.860725][ T9054] ? bpf_check+0x7c34/0xc670 [ 109.862637][ T9054] bpf_check+0x869f/0xc670 [ 109.864144][ T9054] ? __pfx_bpf_check+0x10/0x10 [ 109.865759][ T9054] ? selinux_bpf_prog_load+0x15f/0x1c0 [ 109.867912][ T9054] bpf_prog_load+0xe41/0x2490 [ 109.869811][ T9054] ? __pfx_bpf_prog_load+0x10/0x10 [ 109.871887][ T9054] ? avc_has_perm+0x144/0x1f0 [ 109.873879][ T9054] ? selinux_bpf+0xde/0x130 [ 109.875859][ T9054] ? bpf_lsm_bpf+0x9/0x10 [ 109.877347][ T9054] __sys_bpf+0x4a3f/0x4de0 [ 109.878925][ T9054] ? __lock_acquire+0x62e/0x1ce0 [ 109.880492][ T9054] ? __pfx___sys_bpf+0x10/0x10 [ 109.881999][ T9054] ? __pfx_avc_has_perm+0x10/0x10 [ 109.883599][ T9054] ? lock_acquire+0x179/0x350 [ 109.885198][ T9054] ? __might_fault+0xe3/0x190 [ 109.886713][ T9054] ? __might_fault+0x13b/0x190 [ 109.888258][ T9054] ? find_held_lock+0x2b/0x80 [ 109.890101][ T9054] ? syscall_trace_enter+0x1cb/0x240 [ 109.891793][ T9054] __x64_sys_bpf+0x78/0xc0 [ 109.893217][ T9054] do_syscall_64+0xcd/0x4e0 [ 109.894693][ T9054] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.896652][ T9054] RIP: 0033:0x7fa8c058eec9 [ 109.898086][ T9054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 109.904264][ T9054] RSP: 002b:00007fa8be7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 109.907008][ T9054] RAX: ffffffffffffffda RBX: 00007fa8c07e5fa0 RCX: 00007fa8c058eec9 [ 109.909506][ T9054] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005 [ 109.911998][ T9054] RBP: 00007fa8c0611f91 R08: 0000000000000000 R09: 0000000000000000 [ 109.914523][ T9054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 109.917115][ T9054] R13: 00007fa8c07e6038 R14: 00007fa8c07e5fa0 R15: 00007ffe33f36a78 [ 109.919637][ T9054] [ 109.920634][ T9054] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 109.923181][ T9054] CPU: 0 UID: 0 PID: 9054 Comm: syz.3.1232 Not tainted syzkaller #0 PREEMPT(full) [ 109.926317][ T9054] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 109.930390][ T9054] Call Trace: [ 109.931778][ T9054] [ 109.933002][ T9054] dump_stack_lvl+0x3d/0x1f0 [ 109.934913][ T9054] vpanic+0x6e8/0x7a0 [ 109.936496][ T9054] ? __pfx_vpanic+0x10/0x10 [ 109.938307][ T9054] ? maybe_exit_scc+0x768/0x8d0 [ 109.940264][ T9054] panic+0xca/0xd0 [ 109.941771][ T9054] ? __pfx_panic+0x10/0x10 [ 109.943592][ T9054] check_panic_on_warn+0xab/0xb0 [ 109.945678][ T9054] __warn+0xf6/0x3c0 [ 109.947279][ T9054] ? preempt_schedule_notrace+0x62/0xe0 [ 109.949451][ T9054] ? maybe_exit_scc+0x768/0x8d0 [ 109.951354][ T9054] report_bug+0x3c3/0x580 [ 109.952900][ T9054] ? maybe_exit_scc+0x768/0x8d0 [ 109.954598][ T9054] handle_bug+0x184/0x210 [ 109.955937][ T9054] exc_invalid_op+0x17/0x50 [ 109.957304][ T9054] asm_exc_invalid_op+0x1a/0x20 [ 109.958710][ T9054] RIP: 0010:maybe_exit_scc+0x768/0x8d0 [ 109.960453][ T9054] Code: ff ff e8 ab 8e e7 ff c6 05 eb b7 bf 0e 01 90 48 89 ee 48 89 df e8 f8 41 fb ff 48 c7 c7 20 9c b5 8b 48 89 c6 e8 f9 32 a6 ff 90 <0f> 0b 90 90 e9 4e ff ff ff e8 aa f6 4d 00 e9 7f f9 ff ff 4c 8b 4c [ 109.967391][ T9054] RSP: 0018:ffffc90004c8f500 EFLAGS: 00010282 [ 109.969695][ T9054] RAX: 0000000000000000 RBX: ffff888038d10000 RCX: ffffc9000c001000 [ 109.972900][ T9054] RDX: 0000000000080000 RSI: ffffffff817a4395 RDI: 0000000000000001 [ 109.976017][ T9054] RBP: ffff888038d16328 R08: 0000000000000001 R09: 0000000000000000 [ 109.978756][ T9054] R10: 0000000000000001 R11: 0000000000000000 R12: 1ffff92000991ea7 [ 109.981684][ T9054] R13: 0000000000000000 R14: ffff888054a1ea00 R15: dffffc0000000000 [ 109.984366][ T9054] ? __warn_printk+0x1a5/0x350 [ 109.985907][ T9054] ? __pfx_maybe_exit_scc+0x10/0x10 [ 109.987595][ T9054] ? check_atomic_rmw+0xa26/0x1100 [ 109.989563][ T9054] ? check_atomic_rmw+0x81/0x1100 [ 109.991680][ T9054] do_check_common+0x20cc/0xb410 [ 109.993563][ T9054] ? __pfx_do_check_common+0x10/0x10 [ 109.995609][ T9054] ? lockdep_hardirqs_on+0x51/0x110 [ 109.997272][ T9054] ? kfree+0x2b4/0x4d0 [ 109.998595][ T9054] ? bpf_check+0x7c34/0xc670 [ 110.000088][ T9054] bpf_check+0x869f/0xc670 [ 110.001543][ T9054] ? __pfx_bpf_check+0x10/0x10 [ 110.003095][ T9054] ? selinux_bpf_prog_load+0x15f/0x1c0 [ 110.005190][ T9054] bpf_prog_load+0xe41/0x2490 [ 110.007199][ T9054] ? __pfx_bpf_prog_load+0x10/0x10 [ 110.009197][ T9054] ? avc_has_perm+0x144/0x1f0 [ 110.010771][ T9054] ? selinux_bpf+0xde/0x130 [ 110.012266][ T9054] ? bpf_lsm_bpf+0x9/0x10 [ 110.013805][ T9054] __sys_bpf+0x4a3f/0x4de0 [ 110.015497][ T9054] ? __lock_acquire+0x62e/0x1ce0 [ 110.017026][ T9054] ? __pfx___sys_bpf+0x10/0x10 [ 110.018548][ T9054] ? __pfx_avc_has_perm+0x10/0x10 [ 110.020633][ T9054] ? lock_acquire+0x179/0x350 [ 110.022670][ T9054] ? __might_fault+0xe3/0x190 [ 110.024624][ T9054] ? __might_fault+0x13b/0x190 [ 110.026372][ T9054] ? find_held_lock+0x2b/0x80 [ 110.027948][ T9054] ? syscall_trace_enter+0x1cb/0x240 [ 110.029636][ T9054] __x64_sys_bpf+0x78/0xc0 [ 110.031111][ T9054] do_syscall_64+0xcd/0x4e0 [ 110.032854][ T9054] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 110.035291][ T9054] RIP: 0033:0x7fa8c058eec9 [ 110.036732][ T9054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 110.042908][ T9054] RSP: 002b:00007fa8be7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 110.045715][ T9054] RAX: ffffffffffffffda RBX: 00007fa8c07e5fa0 RCX: 00007fa8c058eec9 [ 110.048907][ T9054] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005 [ 110.051717][ T9054] RBP: 00007fa8c0611f91 R08: 0000000000000000 R09: 0000000000000000 [ 110.054753][ T9054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 110.057319][ T9054] R13: 00007fa8c07e6038 R14: 00007fa8c07e5fa0 R15: 00007ffe33f36a78 [ 110.059836][ T9054] [ 110.061405][ T9054] Kernel Offset: disabled [ 110.063224][ T9054] Rebooting in 86400 seconds.. VM DIAGNOSIS: 11:22:23 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000035 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8564c415 RDI=ffffffff9b118120 RBP=ffffffff9b1180e0 RSP=ffffc90004c8ee60 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000035 R14=ffffffff9b1180e0 R15=ffffffff8564c3b0 RIP=ffffffff8564c43f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fa8be7f66c0 ffffffff 00c00000 GS =0000 ffff8880d66b2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000200000003000 CR3=0000000065bac000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000080040001 Opmask01=0000000000000fff Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc9ef0b460 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc9ef0b5e6 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc9ef0b5e6 00007ffc9ef0b5ec ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b5812fbe ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b5812fcb ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b5812fc5 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b5812fd9 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b581305f ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b581313d ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=ffffc90006800000 RBX=0000000000000000 RCX=ffff888029509070 RDX=000000000000009d RSI=ffffffff86b46c98 RDI=ffff8880295092d0 RBP=0000000000000001 RSP=ffffc900006a0b60 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000 R12=0000000000000001 R13=00000000000036b0 R14=ffff888029509070 R15=0000000000000001 RIP=ffffffff86b46cd5 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f9707b18c80 ffffffff 00c00000 GS =0000 ffff8880d67b2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000200000000340 CR3=0000000033353000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=000000000534c002 Opmask01=0000000000000000 Opmask02=00000000f0000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056288b569600 000056288b569600 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffec94430b0 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c737973007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49565c56005600 0b56000041000b56 000040494a564b4a 460a5340410a000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 632e726569666972 65762f6670622f6c 656e72656b207461 2034353039203a44 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6920303d7461706d 6f63203230323d6c 6c61637379732065 333030303030633d ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6863726120303d67 69732022726f7475 636578652d7a7973 2f223d6578652022 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 313332312e302e7a 7973223d6d6d6f63 20393430393d6469 7020745f6d646173 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 79733a725f6d6461 7379733a746f6f72 3d6a627573203539 3237363934393234 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=000000000000366b RBX=000000000000004c RCX=ffffc90007041000 RDX=0000000000080000 RSI=ffffffff819adfc0 RDI=0000000000000001 RBP=0000000000000001 RSP=ffffc90003e6f218 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000 R12=1ffff920007cde45 R13=0000000000000200 R14=ffff888055524880 R15=ffffc90003e6f2e0 RIP=ffffffff819adfc9 RFL=00000083 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f33957e16c0 ffffffff 00c00000 GS =0000 ffff8880d68b2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c2bc64b CR3=0000000053c8a000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=00000000c0000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd741544a6 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd741544a6 00007ffd741544ac ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3394a12fbe ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3394a12fcb ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3394a12fc5 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3394a12fd9 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3394a1305f ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3394a1313d ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3394bb74a8 00007f3394bb74a0 00007f3394bb7498 00007f3394bb7470 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f339571d100 00007f3394bb7460 00007f3394bb7478 00007f3394bb74c0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3394bb74b8 00007f3394bb74b0 00007f3394bb74a8 00007f3394bb74a0 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000003 RBX=ffffffff8e5c15a0 RCX=0000000000000002 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff8e5c15a0 RBP=0000000000000002 RSP=ffffc900006cf780 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=00000000000121d2 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff8b94e3c0 RFL=00000283 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d69b2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f49b6646f98 CR3=000000002b6f9000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=0000000000000fff Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc9ef0b5e6 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc9ef0b5e6 00007ffc9ef0b5ec ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b5812fbe ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b5812fcb ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b5812fc5 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b5812fd9 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b581305f ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b581313d ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b59b74a8 00007f49b59b74a0 00007f49b59b7498 00007f49b59b7470 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b651d100 00007f49b59b7460 00007f49b59b7478 00007f49b59b74c0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f49b59b74b8 00007f49b59b74b0 00007f49b59b74a8 00007f49b59b74a0 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000