last executing test programs: 1.120250366s ago: executing program 3 (id=466): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000020000001c0012000c000100626f6e64"], 0x3c}}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5c0100001000130700000000fcdbdf252001000000000000000000000000000020010000000000000000000000000001000000004e210002000000006c000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="fc010000000000000000000400000000000000fe32000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000090000000000000001000000ffffffff0000000000000000010000800000000043050000000000000400000000000000ffffffffffffff7f000000000000000001000000000000000000000000000000000000002cbd7000003500000a000000500000000000000060001200726663343130362867636d2861657329290000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000060000000210466d38547aa140db9a200000000c538c7cb7a0c001c00", @ANYRES32=r2], 0x15c}, 0x1, 0x0, 0x0, 0x880}, 0x2000) 1.119383754s ago: executing program 3 (id=467): r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0x35}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x39) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000ac0)=r0, 0x4) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000040)='syzkaller\x00'}, 0x94) r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) write$nci(r3, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x1f4, 0xd28, 0x0, &(0x7f0000000940)="ff412f66b083dcc1010b3efc88ca", 0x0, 0x300, 0x300, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe, 0x6}, 0x50) 1.050104636s ago: executing program 3 (id=468): r0 = socket(0x28, 0x5, 0x0) getgroups(0x3, &(0x7f0000000c80)=[0xee01, 0xee00, 0xffffffffffffffff]) setresgid(r1, r1, r1) bind$vsock_stream(r0, &(0x7f0000000040), 0x10) listen(r0, 0x0) r2 = socket(0x28, 0x5, 0x0) connect$vsock_stream(r2, &(0x7f0000000080), 0x10) accept4(r0, &(0x7f0000000280)=@phonet, &(0x7f00000000c0)=0x80, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0xe) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x4, &(0x7f0000000580)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xc2}]}, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000080)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0xcc, 0x16, 0xa, 0x301, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_HOOK={0x74, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x7}, @NFTA_FLOWTABLE_HOOK_DEVS={0x68, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_to_bridge\x00'}, {0x14, 0x1, 'wg1\x00'}, {0x14, 0x1, 'ip6erspan0\x00'}, {0x14, 0x1, 'veth0_to_team\x00'}, {0x14, 0x1, 'gre0\x00'}]}]}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x3, 0x0, 0x0, {0x1, 0x0, 0x4}, @NFT_OBJECT_CONNLIMIT=@NFTA_OBJ_NAME={0x9, 0x2, 'syz2\x00'}}, @NFT_MSG_NEWTABLE={0x2c, 0x0, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}]}, @NFT_MSG_DELSET={0x48, 0xb, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0xfffffffffffffffe}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x40}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x4}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x188}}, 0x8008) sendmsg$NFT_BATCH(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a09000000000000000000020000000900020073f97a310000000008000440080000000900010073797a3000000000080003400000000114000000110001"], 0x64}, 0x1, 0x0, 0x0, 0x814}, 0x0) sendmsg$NFT_MSG_GETOBJ(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x40091}, 0x84) 1.049943907s ago: executing program 3 (id=469): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="600000000406050000000000000000000000000014000780080011400000001f05001500020000000500010006"], 0x60}}, 0x0) 1.049599852s ago: executing program 3 (id=470): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="600000000206050000000000000000000000000014000780080011400000000005001500020000000500010006000000050005000200001f05000400000000000900020073797a310000000013000300686173683a6e65742c6966616365"], 0x60}}, 0x0) 998.577295ms ago: executing program 3 (id=471): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYBLOB="1000000000000000280012800b0001006272696467650000180002"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) syz_usb_connect(0x3, 0x0, 0x0, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r1, 0x400455c8, 0x0) ioctl$TIOCVHANGUP(r1, 0x5437, 0x100000) r2 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000380)={0x0, @in={{0x2, 0x4e23, @empty}}, 0x7, 0xe, 0x5, 0xd171, 0x91, 0xb5, 0x8}, &(0x7f0000000140)=0x9c) 768.529396ms ago: executing program 2 (id=474): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) (async, rerun: 32) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x200000a, 0x10, 0xffffffffffffffff, 0x0) (rerun: 32) r2 = epoll_create1(0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x58, 0x0, r2, 0x0, r0}) (async) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) sendmmsg$inet_sctp(r3, &(0x7f0000000080), 0x0, 0x8800) (async) ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r3, 0x8982, &(0x7f00000000c0)) (async) ioctl$sock_ifreq(r3, 0x8990, &(0x7f0000000100)={'pim6reg0\x00', @ifru_mtu=0xd66}) (async) ioctl$UFFDIO_COPY(r4, 0xc028aa03, &(0x7f0000000140)={&(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, 0x3000, 0x2}) (async, rerun: 64) r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 64) shutdown(r5, 0x0) (async, rerun: 32) sendmsg$IPSET_CMD_LIST(r4, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x40, 0x7, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x4}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x40}, 0x1, 0x0, 0x0, 0xc000}, 0x10) (async, rerun: 32) r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280), 0x801, 0x0) ioctl$BLKRRPART(r6, 0x125f, 0x0) (async) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r4, 0x84, 0x1b, &(0x7f00000002c0)={0x0, 0x1, 'y'}, &(0x7f0000000300)=0x9) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r4, 0x84, 0x6, &(0x7f0000000340)={r7, @in={{0x2, 0x4e22, @rand_addr=0x64010101}}}, &(0x7f0000000400)=0x84) (async, rerun: 32) getsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000440)={r7, 0xb7, 0x3, 0x290e}, &(0x7f0000000480)=0x10) (rerun: 32) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r4, 0x84, 0xa, &(0x7f00000004c0)={0x6, 0x0, 0x4, 0x7, 0x7, 0x723, 0x80000001, 0x8, r9}, 0x20) (async) r10 = creat(&(0x7f0000000500)='./file0\x00', 0x142) ioctl$UFFDIO_WRITEPROTECT(r10, 0xc018aa06, &(0x7f0000000540)={{&(0x7f0000fff000/0x1000)=nil, 0x1000}, 0x2}) (async) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000580)={0x1, 0x3, 0x8210, 0xff, 0xa, 0x6, 0x3192, 0x6, r7}, &(0x7f00000005c0)=0x20) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r10, 0x84, 0x19, &(0x7f0000000600)={r11}, 0x8) (async) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r3, 0x84, 0x6d, &(0x7f0000000640)={r11, 0xab, "1530ef6af9f1dfe92549698b15e5358b15d58147155c5ef28d9cf2748a0b27bb80c649e61393bbbea915d48fc39bca66357a38a732aae08e3f98d55816a151f218061169d1e2577f8cbfdadc92fbe6d8a40b8d1d4037fab5b26bf2b51c4e3db74dd37075a924f19f4bd5996e9b096bab14fefc8f2faad9a2b5538dbf948473a059874f80b35d328705a583067c8deb28c256f65ae458dab19ade0b9e841184b65affe2f30192bc1e5881dd"}, &(0x7f0000000700)=0xb3) (async) ioctl$sock_inet_tcp_SIOCINQ(r4, 0x541b, &(0x7f0000000740)) (async, rerun: 64) ioctl$FS_IOC_GETFSSYSFSPATH(r10, 0x80811501, &(0x7f0000000780)={0x80}) (async, rerun: 64) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r10, 0x84, 0x76, &(0x7f0000000840)={r8, 0x3ff}, &(0x7f0000000880)=0x8) (async) ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, &(0x7f00000008c0)={'pimreg\x00', 0x2}) (async) fsetxattr$security_ima(r4, &(0x7f0000000900), &(0x7f0000000940)=@ng={0x4, 0x7, "25214e30acff19"}, 0x9, 0x3) (async) close(r4) (async) ioctl$sock_netrom_SIOCDELRT(r10, 0x890c, &(0x7f0000000980)={0x1, @bcast, @rose={'rose', 0x0}, 0x8000, 'syz1\x00', @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x7, 0x7, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null]}) 768.416961ms ago: executing program 2 (id=475): r0 = memfd_create(&(0x7f0000001cc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc0sr\x95\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\x00\x01\x00\x00\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0) write$binfmt_script(r0, &(0x7f0000000080)={'#! ', './file0', [{0x20, '[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc0sr\x95\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\x00\x01\x00\x00\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec'}]}, 0x95) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r1 = socket$igmp6(0xa, 0x3, 0x2) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000071000100000000000000000007000000", @ANYRES32=r3, @ANYBLOB="0c000180080001000300010020"], 0x44}}, 0x0) setsockopt$MRT6_DEL_MIF(r1, 0x29, 0xcb, &(0x7f0000000040)={0xffffffffffffffff, 0x1, 0xf, r3, 0x3}, 0xc) 767.542899ms ago: executing program 2 (id=476): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000020000001c0012000c000100626f6e64"], 0x3c}}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5c0100001000130700000000fcdbdf252001000000000000000000000000000020010000000000000000000000000001000000004e210002000000006c000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="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", @ANYRES32=r2], 0x15c}, 0x1, 0x0, 0x0, 0x880}, 0x2000) 709.995469ms ago: executing program 2 (id=478): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@ipv4_newrule={0x24, 0x20, 0x301, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@FRA_GENERIC_POLICY=@FRA_IP_PROTO={0x5, 0x16, 0x32}]}, 0x24}}, 0x44004) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB='<\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="01980000031300001c0012800900010069706970000000000c00028008000300e0000001"], 0x3c}}, 0x0) 709.355115ms ago: executing program 2 (id=479): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="60000000040605000000000000000000000000001400078008001140000000f505001500020000000500010006"], 0x60}}, 0x0) 660.223834ms ago: executing program 2 (id=480): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_MPP(r0, &(0x7f00000004c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYBLOB="03052cbd7000ffdbdf256b0000000a001a00ffffffffffff00000a001a0008021100000000000a00060008021102000100000a00060008021100000000000a00060008021100000100000a"], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x4000030) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x1c5ed000) mount$cgroup(0x0, 0x0, 0x0, 0x10084, &(0x7f0000000040)) bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000030402000000fdffff0000000300", @ANYRES32=0x0, @ANYBLOB="0000000040859045000000140012800900010076657468000000000400028008", @ANYRES32=0x0, @ANYBLOB], 0x3c}}, 0x0) listen(r1, 0x5) r3 = accept(r1, &(0x7f0000000080)=@can={0x1d, 0x0}, 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000380)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000000300), &(0x7f0000000340)='%-5lx \x00'}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000100)={r5, &(0x7f0000000000)="20e5330503", 0x0}, 0x20) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000180)={&(0x7f000097f000/0x1000)=nil, &(0x7f0000070000/0x2000)=nil, &(0x7f00004d0000/0x3000)=nil, &(0x7f00005d7000/0x4000)=nil, &(0x7f00004d9000/0x3000)=nil, &(0x7f00008d7000/0x3000)=nil, &(0x7f00009df000/0x4000)=nil, &(0x7f0000033000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000481000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000140)="2d46cbb989d17df57db977374ef16c6c906f30d690eb4d8e5d8219a0bfe19aaae4e7e49cb8c339f45a2702f3ac76c178d801a2a12ee1d0852a61f241", 0x3c}, 0x68) r6 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4e23, @local}}}, &(0x7f00000001c0)=0x9c) setsockopt$inet_sctp_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000000500)={0x0, 0x8001}, 0x8) r7 = socket$inet6_sctp(0xa, 0x5, 0x84) sendto$inet6(r7, &(0x7f0000847fff)='X', 0x2a000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r8 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000340)={0x8, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @multicast2}}}, 0x108) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r8, 0x89f3, &(0x7f0000000540)={'ip6tnl0\x00', &(0x7f0000000000)={'ip6tnl0\x00', r4, 0x4, 0x7, 0xff, 0x8000, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast1, 0x10, 0x7800, 0x70f362ea, 0x6}}) 589.894721ms ago: executing program 0 (id=481): r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) read$dsp(r0, &(0x7f00000002c0)=""/4096, 0x1000) ioctl$SNDCTL_DSP_RESET(r0, 0x5000, 0x0) read$dsp(r0, &(0x7f0000001380)=""/229, 0xe5) fsetxattr(r0, &(0x7f0000000180)=@random={'user.', '\x00'}, &(0x7f00000001c0)='\x00', 0x1, 0x3) (async) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) (async) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00') (async) mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) (async) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuseblk(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x2010002, &(0x7f0000000300)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x8000}}) (async) fchdir(r1) (async) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0) (async) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000240), 0xffffffffffffffff) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2) syz_kvm_setup_cpu$x86(r7, r8, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_NESTED_STATE(r8, 0x4080aebf, &(0x7f00000022c0)={{0x0, 0x0, 0x80, {0x0, 0x80af000}}, "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", "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"}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000200)="b9f20800000f3226660fc7330f07f30fc7b7000000000f01cfc4e27925b719d77a0a98b8080000000f23c80f21f8350c0070000f23f8660f2f8664f44e4f0f004d01", 0x42}], 0x1, 0x1e, 0x0, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) (async) r9 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r5) r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r10, 0x8933, &(0x7f0000000340)={'wpan0\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_DEV(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x50, r9, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0xffffffff}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0x2000000}}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r11}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xfe}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xffff}]}, 0x50}, 0x4, 0x700000000000000}, 0x0) (async) sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r3, &(0x7f0000001300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000012c0)={&(0x7f0000000280)={0x28, r4, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000001}]}, 0x28}, 0x1, 0x0, 0x0, 0x4008840}, 0x4050) (async) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='hugetlbfs\x00', 0x0, 0x0) 417.616165ms ago: executing program 0 (id=485): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8102, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_init_net_socket$ax25(0x3, 0x3, 0xcf) getsockopt$ax25_int(r2, 0x101, 0x2, &(0x7f0000000040), &(0x7f0000000200)=0x4) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f00000022c0)="0f20c035200000000f22c0b972050000b80b000000ba000000000f300f01c4c4c27918310f011dfcfffffff367260f090f3066baf80cb8a3047f82ef66bafc0cb000ee670f38c9dd260fc75a8d", 0x4d}], 0x1, 0x50, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 279.718141ms ago: executing program 0 (id=490): r0 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0) fsetxattr$security_ima(r0, &(0x7f0000000040), &(0x7f0000000080)=@ng={0x4, 0x16}, 0xfe49, 0x0) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x10000, 0x105) execveat(r1, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)={[&(0x7f0000000200)='!\r\'\x00']}, &(0x7f0000000440)={[&(0x7f0000000280)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', &(0x7f0000000340)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', &(0x7f0000000400)='\'[.(\x00']}, 0x1000) 276.725738ms ago: executing program 0 (id=492): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async, rerun: 64) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x102) (async, rerun: 64) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) chroot(&(0x7f0000000040)='./bus\x00') (async) r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'ni_at_a2150\x00', [0x4f2a, 0x4, 0x10000, 0x4, 0x3, 0x5, 0x8, 0x7, 0x5, 0x100, 0x2, 0x1, 0x1, 0x1, 0x6, 0x101, 0x3, 0x7f, 0x3, 0x40000003, 0x89, 0xcaa3, 0x0, 0x20001e58, 0xb, 0xe66, 0x3, 0x7f, 0x4885, 0xffffffff, 0xfffffff7]}) (async) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x1000000, &(0x7f00000002c0)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) (async) r1 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8) write$qrtrtun(r1, &(0x7f0000000340)="7f12454181586818", 0x8) ioctl$COMEDI_DEVINFO(r1, 0x80b06401, &(0x7f00000001c0)) chdir(&(0x7f0000000000)='./file0\x00') (async) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0xa, &(0x7f0000001100), 0x4) (async, rerun: 64) r3 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) (rerun: 64) ioctl$FICLONERANGE(r3, 0x4020940d, &(0x7f0000000280)={{r3}, 0xdda8, 0xb531, 0x3ff}) (async) execveat(r1, &(0x7f0000000100)='./file0\x00', &(0x7f0000000400)={[&(0x7f0000000140)='\xc6\x00', &(0x7f0000000380)='workdir', &(0x7f00000003c0)='!%-&]\x00']}, &(0x7f00000004c0)={[&(0x7f0000000440)='workdir', &(0x7f0000000480)='overlay\x00']}, 0x400) 230.158196ms ago: executing program 0 (id=494): madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) r0 = syz_open_procfs$pagemap(0x0, &(0x7f0000000600)) munmap(&(0x7f00000e8000/0x1000)=nil, 0x1000) ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000000)={0x60, 0x0, &(0x7f000007c000/0x4000)=nil, &(0x7f0000839000/0x1000)=nil, 0x0, 0x0, 0x0, 0xc, 0x8, 0x0, 0x0, 0x2e}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1df) r2 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff) write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="c3d39c32fe769754623dc413371db6afaac178539428c3ed69531f2826997873fe42c04f191f8af34bf80478142ea02e71ad9f8afa2853c0ff56957559bb1e69bb47b4f25742a5d1fbbcdd8451628f0bd766", @ANYBLOB="420c9a0daff3f3d1cf8d9124ae169f0eb8728480c7b1438c05f7a839a4afe9f3364b958136b09b560f29593a2b99ea1ab5752ee930ae0ba0e1bf8668c66090925ebc480c8365a832a513ce4cf70304344394c2f8f637fbd625d767ac81fac65ee9dee64371cb48992dd8d6e86b8dabfe3d3a3a4534c728c93b4765c3ea4bcecfea3abd1b8844461edf46c8d12abcc129ca3c6785a807f4501cf9fe388400c1294412f3f8cb35e1e9dea6aa5cbe5c83ce968557844cc900310e7f6247c48b7995205bbf7ba7f528f24f", @ANYRES32=r0, @ANYRESDEC=r2], 0x5b0) close(r1) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000280)={0xffffffffffffffff}, 0x106, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r1, &(0x7f0000000300)={0x13, 0x10, 0xfa00, {&(0x7f0000000080), r3, 0x1}}, 0x18) mlock2(&(0x7f00000f3000/0x4000)=nil, 0x4000, 0x1) 229.374558ms ago: executing program 1 (id=495): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x8) (async) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x88) (async) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@metacopy_on}]}) (async) r0 = open(&(0x7f0000000480)='./file0\x00', 0x0, 0x718bb647156ec3b7) mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x200, 0x0) (async) chdir(&(0x7f0000000140)='./bus\x00') (async) link(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0)='./file0\x00') (async) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(blowfish)\x00'}, 0x58) (async) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5", 0x4) r2 = accept4(r1, 0x0, 0x0, 0x80800) sendmsg$can_j1939(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)="0da3", 0x2}, 0x1, 0x0, 0x0, 0x44000}, 0x48800) (async) sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x18}, 0x1, 0x0, 0x0, 0x44010}, 0x4004011) 229.082755ms ago: executing program 0 (id=496): unshare(0x6a040000) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x11) ioctl$TIOCGPGRP(r0, 0x5437, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x0, 0x0, 0x0, 0x68, 0x0, 0x0, 0x41000, 0x1}, 0x94) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) r3 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000f80)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r3, 0x84, 0x66, &(0x7f0000000ac0)={r4, 0xd0}, &(0x7f0000000b00)=0x8) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) getsockopt$sock_int(r1, 0x1, 0xa4ea7a861d19b3bb, 0x0, &(0x7f00000000c0)) r5 = socket$inet_tcp(0x2, 0x1, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x50) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x66) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x67) process_vm_readv(r6, &(0x7f0000000280)=[{&(0x7f0000000140)=""/255, 0xff}], 0x1, &(0x7f0000000240)=[{&(0x7f0000001600)=""/4096, 0x1000}], 0x1, 0x0) bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0) r7 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r7, 0x0, 0x1, &(0x7f0000000040)=0x2, 0x4) ioctl$sock_inet_SIOCSIFADDR(r5, 0x8916, &(0x7f0000000000)={'lo\x00', {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xa}}}) ioctl$sock_inet_SIOCSIFADDR(r5, 0x8916, &(0x7f0000001040)={'lo\x00', {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}) 228.978996ms ago: executing program 1 (id=497): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000020000001c0012000c000100626f6e64"], 0x3c}}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5c0100001000130700000000fcdbdf252001000000000000000000000000000020010000000000000000000000000001000000004e210002000000006c000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="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", @ANYRES32=r2], 0x15c}, 0x1, 0x0, 0x0, 0x880}, 0x2000) 160.323594ms ago: executing program 1 (id=498): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) mbind(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x8001, &(0x7f0000000080)=0x9f0, 0x40, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001d00070f000000000000000007000000", @ANYRES32=r2, @ANYBLOB="40002700060010"], 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r3 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=@delqdisc={0x114, 0x25, 0x200, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, r4, {0x4, 0xc}, {0xfff1, 0xa}, {0xfff2, 0x1}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x58, 0x2, [@TCA_CAKE_MEMORY={0x8, 0xa, 0xb0a}, @TCA_CAKE_ACK_FILTER={0x8}, @TCA_CAKE_AUTORATE={0x8, 0x9, 0x8f8}, @TCA_CAKE_BASE_RATE64={0xc, 0x2, 0x9}, @TCA_CAKE_ATM={0x8, 0x4, 0x1}, @TCA_CAKE_NAT={0x8}, @TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x1}, @TCA_CAKE_WASH={0x8, 0xd, 0x1}, @TCA_CAKE_INGRESS={0x8, 0xf, 0x1}, @TCA_CAKE_RAW={0x8, 0xc, 0x1}]}}, @TCA_STAB={0x8c, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x7, 0x53, 0xe, 0x8001, 0x2, 0x7, 0x1, 0x9}}, {0x16, 0x2, [0xa, 0x5, 0x7, 0x5, 0x81, 0x3, 0x8000, 0xdd63, 0xcb]}}, {{0x1c, 0x1, {0x3, 0xff, 0x0, 0x1949, 0x2, 0x4, 0x7, 0x5}}, {0xe, 0x2, [0xa4, 0x1, 0x3, 0x6, 0x7]}}, {{0x1c, 0x1, {0xd1, 0x2, 0xe7, 0x7, 0x2, 0x4, 0x1, 0x3}}, {0xa, 0x2, [0x9, 0x394, 0x2]}}]}]}, 0x114}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@getqdisc={0x24, 0x26, 0x20, 0x70bd2a, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0xa, 0xfff2}, {0xffe0, 0xfff3}, {0x2, 0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804) socket$nl_generic(0x10, 0x3, 0x10) getsockname$packet(r3, &(0x7f00000001c0), &(0x7f00000002c0)=0x14) r5 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0) prlimit64(0x0, 0x1, &(0x7f0000000240)={0x4, 0x1efb}, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r5, 0xc01864c6, &(0x7f0000000040)={0x0}) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'}) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94) madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19) r6 = userfaultfd(0x80001) ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) r7 = userfaultfd(0x801) ioctl$UFFDIO_API(r7, 0xc018aa3f, &(0x7f0000000540)={0xaa, 0x310}) ioctl$UFFDIO_ZEROPAGE(r7, 0xc020aa04, &(0x7f0000000000)={{&(0x7f00000f8000/0x4000)=nil, 0x4000}}) r8 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f00000000c0)={'vcan0\x00', 0x0}) bind$can_j1939(r8, &(0x7f0000000340)={0x1d, r9, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18) 110.374772ms ago: executing program 1 (id=499): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='debugfs\x00', 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x970026, &(0x7f0000000380)=ANY=[@ANYBLOB='mode=00']) r2 = dup(r1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) ioctl$KVM_RUN(r3, 0xae80, 0x0) 272.964µs ago: executing program 1 (id=500): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="600000000406050000000000000000000000000014000780080011400000000005f51500020000000500010006"], 0x60}}, 0x0) 0s ago: executing program 1 (id=501): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="600000000206050000000000000000000000000014000780080011400000000005001500020000000500010006000000050005000200000020000400000000000900020073797a310000000013000300686173683a6e65742c6966616365"], 0x60}}, 0x0) 0s ago: executing program 1 (id=503): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0) (async) syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast}, @address_reply={0xd}}}}}, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf) (async) r1 = fcntl$dupfd(r0, 0x0, r0) (async) ioctl$TCFLSH(r0, 0x400455c8, 0x1) (async) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0x2) (async) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x3) (async, rerun: 32) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (rerun: 32) setsockopt$bt_hci_HCI_TIME_STAMP(r2, 0x0, 0x3, &(0x7f00000004c0)=0x5, 0x4) (async) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000140)=0x3) (async) r3 = gettid() sigaltstack(&(0x7f00000000c0)={&(0x7f0000002400)=""/4095, 0x0, 0xfff}, 0x0) (async) rt_sigqueueinfo(r3, 0x21, &(0x7f0000000000)) (async) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000400)=0x7) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000200)=0xa) (async) r4 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000000)=0x3) kernel console output (not intermixed with test programs): TNC [ 54.590294][ T6440] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 54.597089][ T6440] new mount options do not match the existing superblock, will be ignored [ 54.602258][ T6440] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 "" [ 54.606754][ T6440] 9pnet_fd: Insufficient options for proto=fd [ 54.685521][ T40] kauditd_printk_skb: 5672 callbacks suppressed [ 54.685532][ T40] audit: type=1326 audit(1755691861.884:5847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6425 comm="syz.1.123" exe="/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa98f3c14a5 code=0x50000 [ 54.695027][ T40] audit: type=1326 audit(1755691861.884:5848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6425 comm="syz.1.123" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa98f38ebe9 code=0x50000 [ 54.702560][ T40] audit: type=1326 audit(1755691861.894:5849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6425 comm="syz.1.123" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa98f38ebe9 code=0x50000 [ 54.710630][ T40] audit: type=1326 audit(1755691861.894:5850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6425 comm="syz.1.123" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa98f38ebe9 code=0x50000 [ 54.718197][ T40] audit: type=1326 audit(1755691861.894:5851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6425 comm="syz.1.123" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa98f38ebe9 code=0x50000 [ 54.725874][ T40] audit: type=1326 audit(1755691861.894:5852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6425 comm="syz.1.123" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa98f38ebe9 code=0x50000 [ 54.732454][ T40] audit: type=1326 audit(1755691861.894:5853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6425 comm="syz.1.123" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa98f38ebe9 code=0x50000 [ 54.738221][ T6451] netlink: 'syz.3.128': attribute type 3 has an invalid length. [ 54.739538][ T40] audit: type=1326 audit(1755691861.894:5854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6425 comm="syz.1.123" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa98f38ebe9 code=0x50000 [ 54.750678][ T40] audit: type=1326 audit(1755691861.894:5855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6425 comm="syz.1.123" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa98f38ebe9 code=0x50000 [ 54.757824][ T40] audit: type=1326 audit(1755691861.894:5856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6425 comm="syz.1.123" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa98f38ebe9 code=0x50000 [ 55.029532][ T6468] tmpfs: Bad value for 'mpol' [ 56.917275][ T6535] netlink: 'syz.3.150': attribute type 10 has an invalid length. [ 56.920757][ T6535] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 56.925438][ T6536] overlayfs: failed lookup in lower (newroot/45, name='bus', err=-40): overlapping layers [ 57.426520][ T6560] program syz.0.157 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 57.632935][ T6577] mkiss: ax0: crc mode is auto. [ 57.726731][ T6482] syz.2.138 (6482) used greatest stack depth: 19456 bytes left [ 57.820941][ T6583] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32 [ 57.918704][ T6590] __nla_validate_parse: 26 callbacks suppressed [ 57.918720][ T6590] netlink: 12 bytes leftover after parsing attributes in process `syz.1.170'. [ 58.110018][ T6606] netlink: 28 bytes leftover after parsing attributes in process `syz.0.174'. [ 58.289757][ T6616] netlink: 48 bytes leftover after parsing attributes in process `syz.3.179'. [ 58.328577][ T6622] netlink: 12 bytes leftover after parsing attributes in process `syz.1.180'. [ 58.333146][ T6624] openvswitch: netlink: IP tunnel TTL not specified. [ 58.371076][ T6630] netlink: 'syz.1.182': attribute type 5 has an invalid length. [ 58.374956][ T6630] netlink: 16 bytes leftover after parsing attributes in process `syz.1.182'. [ 58.378018][ T6631] netlink: 60 bytes leftover after parsing attributes in process `syz.3.183'. [ 58.431138][ T6473] syz.2.138 (6473) used greatest stack depth: 18776 bytes left [ 58.524518][ T6642] netlink: 'syz.3.185': attribute type 21 has an invalid length. [ 58.530606][ T6635] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 58.538443][ T6642] netlink: 'syz.3.185': attribute type 6 has an invalid length. [ 58.540796][ T6642] netlink: 132 bytes leftover after parsing attributes in process `syz.3.185'. [ 58.544887][ T6642] sg_write: data in/out 2257/14 bytes for SCSI command 0x0-- guessing data in; [ 58.544887][ T6642] program syz.3.185 not setting count and/or reply_len properly [ 58.708965][ T6648] could not allocate digest TFM handle cryptd(blake2b-160) [ 58.946248][ T6666] netlink: 48 bytes leftover after parsing attributes in process `syz.3.191'. [ 58.952390][ T6668] netlink: 12 bytes leftover after parsing attributes in process `syz.0.192'. [ 59.653988][ T6692] netlink: 48 bytes leftover after parsing attributes in process `syz.0.201'. [ 59.678671][ T6694] 8021q: adding VLAN 0 to HW filter on device bond4 [ 59.749114][ T6488] syz.2.138 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 59.752344][ T6488] CPU: 3 UID: 0 PID: 6488 Comm: syz.2.138 Not tainted syzkaller #0 PREEMPT(full) [ 59.752359][ T6488] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 59.752365][ T6488] Call Trace: [ 59.752369][ T6488] [ 59.752373][ T6488] dump_stack_lvl+0x16c/0x1f0 [ 59.752443][ T6488] dump_header+0x101/0x930 [ 59.752456][ T6488] oom_kill_process+0x272/0xa40 [ 59.752468][ T6488] out_of_memory+0x350/0x1700 [ 59.752480][ T6488] ? __pfx_out_of_memory+0x10/0x10 [ 59.752492][ T6488] mem_cgroup_out_of_memory+0x118/0x130 [ 59.752514][ T6488] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 59.752529][ T6488] ? do_raw_spin_unlock+0x172/0x230 [ 59.752543][ T6488] try_charge_memcg+0x72b/0xd50 [ 59.752554][ T6488] ? policy_nodemask+0xea/0x4e0 [ 59.752567][ T6488] ? __pfx_try_charge_memcg+0x10/0x10 [ 59.752578][ T6488] ? rcu_is_watching+0x12/0xc0 [ 59.752591][ T6488] ? rcu_is_watching+0x12/0xc0 [ 59.752604][ T6488] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 59.752617][ T6488] charge_memcg+0x8a/0x230 [ 59.752628][ T6488] __mem_cgroup_charge+0x2b/0x1e0 [ 59.752641][ T6488] filemap_add_folio+0x88/0x220 [ 59.752653][ T6488] ? __pfx_filemap_add_folio+0x10/0x10 [ 59.752666][ T6488] __filemap_get_folio+0x510/0xc30 [ 59.752679][ T6488] ? lock_release+0x201/0x2f0 [ 59.752696][ T6488] filemap_fault+0x661/0x2930 [ 59.752709][ T6488] ? __pfx_filemap_fault+0x10/0x10 [ 59.752722][ T6488] ? const_folio_flags+0x5b/0x100 [ 59.752734][ T6488] ? __pfx_filemap_map_pages+0x10/0x10 [ 59.752745][ T6488] __do_fault+0x10d/0x490 [ 59.752757][ T6488] ? __pfx_filemap_map_pages+0x10/0x10 [ 59.752767][ T6488] do_pte_missing+0xf50/0x3ba0 [ 59.752784][ T6488] ? __handle_mm_fault+0x14fd/0x2a50 [ 59.752801][ T6488] ? rcu_is_watching+0x12/0xc0 [ 59.752813][ T6488] ? lock_release+0x201/0x2f0 [ 59.752830][ T6488] __handle_mm_fault+0x152a/0x2a50 [ 59.752848][ T6488] ? __pfx___handle_mm_fault+0x10/0x10 [ 59.752865][ T6488] ? __pte_offset_map_lock+0x174/0x310 [ 59.752880][ T6488] ? follow_page_pte.constprop.0+0x5cf/0x1390 [ 59.752896][ T6488] handle_mm_fault+0x589/0xd10 [ 59.752913][ T6488] __get_user_pages+0x551/0x34a0 [ 59.752929][ T6488] ? rcu_is_watching+0x12/0xc0 [ 59.752942][ T6488] ? __pfx___get_user_pages+0x10/0x10 [ 59.752959][ T6488] ? __kernel_write_iter+0x5a5/0xb10 [ 59.752971][ T6488] get_dump_page+0x257/0x3d0 [ 59.752986][ T6488] ? __pfx_get_dump_page+0x10/0x10 [ 59.753001][ T6488] ? lock_release+0x201/0x2f0 [ 59.753016][ T6488] ? dump_user_range+0x570/0xb70 [ 59.753029][ T6488] dump_user_range+0x195/0xb70 [ 59.753041][ T6488] ? __pfx_dump_user_range+0x10/0x10 [ 59.753053][ T6488] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 59.753065][ T6488] ? __pfx_writenote+0x10/0x10 [ 59.753079][ T6488] elf_core_dump+0x2929/0x3b60 [ 59.753094][ T6488] ? __pfx_elf_core_dump+0x10/0x10 [ 59.753106][ T6488] ? kasan_save_stack+0x42/0x60 [ 59.753115][ T6488] ? kasan_save_stack+0x33/0x60 [ 59.753125][ T6488] ? kasan_save_track+0x14/0x30 [ 59.753135][ T6488] ? __kasan_kmalloc+0xaa/0xb0 [ 59.753144][ T6488] ? vfs_coredump+0x1dca/0x5670 [ 59.753154][ T6488] ? get_signal+0x22e3/0x26d0 [ 59.753168][ T6488] ? arch_do_signal_or_restart+0x8f/0x7d0 [ 59.753183][ T6488] ? 0xffffffffff600000 [ 59.753198][ T6488] ? rcu_is_watching+0x12/0xc0 [ 59.753211][ T6488] ? lock_acquire+0x2cd/0x350 [ 59.753227][ T6488] ? __pfx___might_resched+0x10/0x10 [ 59.753242][ T6488] ? vfs_coredump+0x2b97/0x5670 [ 59.753252][ T6488] vfs_coredump+0x2b97/0x5670 [ 59.753264][ T6488] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 59.753275][ T6488] ? __pfx_vfs_coredump+0x10/0x10 [ 59.753286][ T6488] ? rcu_is_watching+0x12/0xc0 [ 59.753299][ T6488] ? lock_release+0x201/0x2f0 [ 59.753314][ T6488] ? __pfx___cant_migrate+0x10/0x10 [ 59.753329][ T6488] ? rcu_is_watching+0x12/0xc0 [ 59.753342][ T6488] ? unwind_next_frame+0x3f4/0x20a0 [ 59.753354][ T6488] ? rcu_is_watching+0x12/0xc0 [ 59.753368][ T6488] ? rcu_is_watching+0x12/0xc0 [ 59.753381][ T6488] ? unwind_next_frame+0x3f4/0x20a0 [ 59.753392][ T6488] ? rcu_is_watching+0x12/0xc0 [ 59.753407][ T6488] ? lock_release+0x201/0x2f0 [ 59.753423][ T6488] ? bpf_ksym_find+0x127/0x1c0 [ 59.753438][ T6488] ? __kernel_text_address+0xd/0x40 [ 59.753450][ T6488] ? unwind_get_return_address+0x59/0xa0 [ 59.753462][ T6488] ? arch_stack_walk+0xa6/0x100 [ 59.753491][ T6488] ? stack_trace_save+0x8e/0xc0 [ 59.753509][ T6488] ? __pfx_stack_trace_save+0x10/0x10 [ 59.753524][ T6488] ? stack_depot_save_flags+0x29/0x9c0 [ 59.753537][ T6488] ? try_charge_memcg+0x2f8/0xd50 [ 59.753557][ T6488] ? proc_coredump_connector+0x2d1/0x4f0 [ 59.753573][ T6488] ? __pfx_proc_coredump_connector+0x10/0x10 [ 59.753590][ T6488] ? rcu_is_watching+0x12/0xc0 [ 59.753604][ T6488] get_signal+0x22e3/0x26d0 [ 59.753619][ T6488] ? __pfx_get_signal+0x10/0x10 [ 59.753632][ T6488] ? force_sig_fault+0xc4/0x100 [ 59.753645][ T6488] ? __pfx_force_sig_fault+0x10/0x10 [ 59.753658][ T6488] ? fpu__clear_user_states+0xf4/0x1d0 [ 59.753673][ T6488] arch_do_signal_or_restart+0x8f/0x7d0 [ 59.753687][ T6488] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 59.753705][ T6488] irqentry_exit_to_user_mode+0x12a/0x270 [ 59.753718][ T6488] asm_exc_page_fault+0x26/0x30 [ 59.753729][ T6488] RIP: 0033:0x7f4c8304f927 [ 59.753737][ T6488] Code: 88 15 d2 5d e9 00 88 05 cf 5d e9 00 c3 50 48 8d 35 01 25 1c 00 48 8d 3d 07 25 1c 00 31 c0 e8 20 f7 ff ff 53 89 fb 48 83 ec 10 <64> 8b 04 25 94 ff ff ff 85 c0 74 2a 89 fe 31 c0 bf 3c 00 00 00 e8 [ 59.753747][ T6488] RSP: 002b:00007f4c83f391a0 EFLAGS: 00010206 [ 59.753762][ T6488] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f4c8318ebe9 [ 59.753768][ T6488] RDX: 00007f4c83f391c0 RSI: 00007f4c83f392f0 RDI: 000000000000000b [ 59.753775][ T6488] RBP: 00007f4c83211e19 R08: 0000000000000000 R09: 0000000000000000 [ 59.753781][ T6488] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 59.753788][ T6488] R13: 00007f4c833b6038 R14: 00007f4c833b5fa0 R15: 00007ffe927d9d78 [ 59.753797][ T6488] [ 59.753817][ T6488] memory: usage 307196kB, limit 307200kB, failcnt 32915 [ 59.938024][ T6488] memory+swap: usage 432152kB, limit 9007199254740988kB, failcnt 0 [ 59.940381][ T6488] kmem: usage 6452kB, limit 9007199254740988kB, failcnt 0 [ 59.942504][ T6488] Memory cgroup stats for /syz2: [ 59.942570][ T6488] cache 307888128 [ 59.945379][ T6488] rss 53248 [ 59.969926][ T40] kauditd_printk_skb: 44548 callbacks suppressed [ 59.969936][ T40] audit: type=1400 audit(1755691867.174:50405): avc: denied { setopt } for pid=6708 comm="syz.3.207" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 59.980240][ T6488] rss_huge 0 [ 59.981325][ T6488] shmem 307785728 [ 59.982463][ T6488] mapped_file 0 [ 59.983555][ T6488] dirty 0 [ 59.984506][ T6488] writeback 0 [ 59.985234][ T40] audit: type=1400 audit(1755691867.184:50406): avc: denied { ioctl } for pid=6708 comm="syz.3.207" path="socket:[13865]" dev="sockfs" ino=13865 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 59.997949][ T6488] workingset_refault_anon 105 [ 60.001044][ T6488] workingset_refault_file 8194 [ 60.003335][ T6488] swap 127950848 [ 60.005231][ T6488] swapcached 45056 [ 60.008397][ T6488] pgpgin 159432 [ 60.009538][ T6488] pgpgout 84247 [ 60.010717][ T6488] pgfault 17507 [ 60.011806][ T6488] pgmajfault 390 [ 60.013099][ T40] audit: type=1400 audit(1755691867.214:50407): avc: denied { append } for pid=6712 comm="syz.3.209" name="v4l-subdev2" dev="devtmpfs" ino=967 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 60.017864][ T6488] inactive_anon 50278400 [ 60.021358][ T6488] active_anon 257585152 [ 60.022646][ T6488] inactive_file 0 [ 60.022652][ T40] audit: type=1400 audit(1755691867.224:50408): avc: denied { kexec_image_load } for pid=6710 comm="syz.1.208" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1 [ 60.023761][ T6488] active_file 32768 [ 60.033935][ T6488] unevictable 0 [ 60.035077][ T6488] hierarchical_memory_limit 314572800 [ 60.037018][ T6488] hierarchical_memsw_limit 9223372036854771712 [ 60.039014][ T6488] total_cache 307879936 [ 60.040344][ T6488] total_rss 53248 [ 60.044060][ T6488] total_rss_huge 0 [ 60.045257][ T6488] total_shmem 307785728 [ 60.052818][ T6488] total_mapped_file 0 [ 60.054414][ T6488] total_dirty 0 [ 60.057032][ T6488] total_writeback 0 [ 60.058234][ T6488] total_workingset_refault_anon 105 [ 60.058334][ T6711] IPv6: sit1: Disabled Multicast RS [ 60.059799][ T6488] total_workingset_refault_file 8194 [ 60.059806][ T6488] total_swap 127950848 [ 60.059810][ T6488] total_swapcached 45056 [ 60.059815][ T6488] total_pgpgin 159432 [ 60.059818][ T6488] total_pgpgout 84247 [ 60.059822][ T6488] total_pgfault 17507 [ 60.059826][ T6488] total_pgmajfault 390 [ 60.059830][ T6488] total_inactive_anon 49422336 [ 60.061861][ T6711] sit1: entered allmulticast mode [ 60.063131][ T6488] total_active_anon 258441216 [ 60.063139][ T6488] total_inactive_file 12288 [ 60.063143][ T6488] total_active_file 81920 [ 60.063147][ T6488] total_unevictable 0 [ 60.063151][ T6488] anon_cost 0 [ 60.063154][ T6488] file_cost 0 [ 60.063158][ T6488] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.138,pid=6478,uid=0 [ 60.086207][ T6488] Memory cgroup out of memory: Killed process 6478 (syz.2.138) total-vm:98252kB, anon-rss:1088kB, file-rss:23512kB, shmem-rss:0kB, UID:0 pgtables:148kB oom_score_adj:1000 [ 60.099645][ T6516] syz.2.138 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 60.103459][ T6516] CPU: 1 UID: 0 PID: 6516 Comm: syz.2.138 Not tainted syzkaller #0 PREEMPT(full) [ 60.103473][ T6516] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 60.103480][ T6516] Call Trace: [ 60.103483][ T6516] [ 60.103487][ T6516] dump_stack_lvl+0x16c/0x1f0 [ 60.103502][ T6516] dump_header+0x101/0x930 [ 60.103514][ T6516] oom_kill_process+0x272/0xa40 [ 60.103525][ T6516] out_of_memory+0x350/0x1700 [ 60.103538][ T6516] ? __pfx_out_of_memory+0x10/0x10 [ 60.103551][ T6516] mem_cgroup_out_of_memory+0x118/0x130 [ 60.103566][ T6516] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 60.103582][ T6516] ? do_raw_spin_unlock+0x172/0x230 [ 60.103595][ T6516] try_charge_memcg+0x72b/0xd50 [ 60.103607][ T6516] ? __pfx_try_charge_memcg+0x10/0x10 [ 60.103618][ T6516] ? rcu_is_watching+0x12/0xc0 [ 60.103632][ T6516] ? rcu_is_watching+0x12/0xc0 [ 60.103646][ T6516] charge_memcg+0x8a/0x230 [ 60.103657][ T6516] __mem_cgroup_charge+0x2b/0x1e0 [ 60.103670][ T6516] shmem_alloc_and_add_folio+0x514/0xc20 [ 60.103690][ T6516] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 60.103708][ T6516] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 60.103719][ T6516] shmem_get_folio_gfp+0x67f/0x1600 [ 60.103731][ T6516] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 60.103740][ T6516] ? inode_set_ctime_current+0xa3/0x8f0 [ 60.103755][ T6516] ? timestamp_truncate+0x21e/0x2d0 [ 60.103769][ T6516] shmem_write_begin+0x160/0x300 [ 60.103780][ T6516] ? __pfx_shmem_write_begin+0x10/0x10 [ 60.103790][ T6516] ? inode_set_ctime_current+0x2a1/0x8f0 [ 60.103804][ T6516] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 60.103821][ T6516] generic_perform_write+0x3c2/0x900 [ 60.103840][ T6516] ? __pfx_generic_perform_write+0x10/0x10 [ 60.103857][ T6516] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 60.103878][ T6516] ? generic_update_time+0xcf/0xf0 [ 60.103892][ T6516] ? mnt_put_write_access_file+0x45/0xf0 [ 60.103904][ T6516] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 60.103916][ T6516] shmem_file_write_iter+0x10e/0x140 [ 60.103929][ T6516] __kernel_write_iter+0x317/0xb10 [ 60.103941][ T6516] ? __pfx___kernel_write_iter+0x10/0x10 [ 60.103952][ T6516] ? __up_read+0x1f8/0x750 [ 60.103963][ T6516] ? lock_release+0x201/0x2f0 [ 60.103980][ T6516] dump_user_range+0x413/0xb70 [ 60.103993][ T6516] ? __pfx_dump_user_range+0x10/0x10 [ 60.104004][ T6516] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 60.104017][ T6516] ? __pfx_writenote+0x10/0x10 [ 60.104030][ T6516] elf_core_dump+0x2929/0x3b60 [ 60.104045][ T6516] ? __pfx_elf_core_dump+0x10/0x10 [ 60.104057][ T6516] ? kasan_save_stack+0x42/0x60 [ 60.104068][ T6516] ? kasan_save_stack+0x33/0x60 [ 60.104080][ T6516] ? kasan_save_track+0x14/0x30 [ 60.104089][ T6516] ? __kasan_kmalloc+0xaa/0xb0 [ 60.104099][ T6516] ? vfs_coredump+0x1dca/0x5670 [ 60.104109][ T6516] ? get_signal+0x22e3/0x26d0 [ 60.104122][ T6516] ? arch_do_signal_or_restart+0x8f/0x7d0 [ 60.104138][ T6516] ? 0xffffffffff600000 [ 60.104152][ T6516] ? rcu_is_watching+0x12/0xc0 [ 60.104165][ T6516] ? lock_acquire+0x2cd/0x350 [ 60.104181][ T6516] ? __pfx___might_resched+0x10/0x10 [ 60.104196][ T6516] ? vfs_coredump+0x2b97/0x5670 [ 60.104206][ T6516] vfs_coredump+0x2b97/0x5670 [ 60.104218][ T6516] ? __pfx_vfs_coredump+0x10/0x10 [ 60.104230][ T6516] ? rcu_is_watching+0x12/0xc0 [ 60.104243][ T6516] ? unwind_next_frame+0x3f4/0x20a0 [ 60.104255][ T6516] ? rcu_is_watching+0x12/0xc0 [ 60.104269][ T6516] ? rcu_is_watching+0x12/0xc0 [ 60.104282][ T6516] ? unwind_next_frame+0x3f4/0x20a0 [ 60.104294][ T6516] ? rcu_is_watching+0x12/0xc0 [ 60.104308][ T6516] ? lock_release+0x201/0x2f0 [ 60.104324][ T6516] ? bpf_ksym_find+0x127/0x1c0 [ 60.104339][ T6516] ? __kernel_text_address+0xd/0x40 [ 60.104351][ T6516] ? unwind_get_return_address+0x59/0xa0 [ 60.104363][ T6516] ? arch_stack_walk+0xa6/0x100 [ 60.104377][ T6516] ? stack_trace_save+0x8e/0xc0 [ 60.104392][ T6516] ? __pfx_stack_trace_save+0x10/0x10 [ 60.104406][ T6516] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 60.104417][ T6516] ? stack_depot_save_flags+0x29/0x9c0 [ 60.104458][ T6516] ? arch_do_signal_or_restart+0x4bc/0x7d0 [ 60.104471][ T6516] ? irqentry_exit_to_user_mode+0x12a/0x270 [ 60.104483][ T6516] ? asm_exc_page_fault+0x26/0x30 [ 60.104502][ T6516] ? proc_coredump_connector+0x2d1/0x4f0 [ 60.104519][ T6516] ? __pfx_proc_coredump_connector+0x10/0x10 [ 60.104536][ T6516] ? rcu_is_watching+0x12/0xc0 [ 60.104550][ T6516] get_signal+0x22e3/0x26d0 [ 60.104565][ T6516] ? __pfx_get_signal+0x10/0x10 [ 60.104578][ T6516] ? force_sig_fault+0xc4/0x100 [ 60.104604][ T6516] ? __pfx_force_sig_fault+0x10/0x10 [ 60.104617][ T6516] ? fpu__clear_user_states+0xf4/0x1d0 [ 60.104631][ T6516] arch_do_signal_or_restart+0x8f/0x7d0 [ 60.104646][ T6516] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 60.104663][ T6516] irqentry_exit_to_user_mode+0x12a/0x270 [ 60.104674][ T6516] asm_exc_page_fault+0x26/0x30 [ 60.104684][ T6516] RIP: 0033:0x7f4c8304f927 [ 60.104693][ T6516] Code: 88 15 d2 5d e9 00 88 05 cf 5d e9 00 c3 50 48 8d 35 01 25 1c 00 48 8d 3d 07 25 1c 00 31 c0 e8 20 f7 ff ff 53 89 fb 48 83 ec 10 <64> 8b 04 25 94 ff ff ff 85 c0 74 2a 89 fe 31 c0 bf 3c 00 00 00 e8 [ 60.104703][ T6516] RSP: 002b:00007f4c83f391a0 EFLAGS: 00010206 [ 60.104712][ T6516] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f4c8318ebe9 [ 60.104719][ T6516] RDX: 00007f4c83f391c0 RSI: 00007f4c83f392f0 RDI: 000000000000000b [ 60.104725][ T6516] RBP: 00007f4c83211e19 R08: 0000000000000000 R09: 0000000000000000 [ 60.104731][ T6516] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 60.104737][ T6516] R13: 00007f4c833b6038 R14: 00007f4c833b5fa0 R15: 00007ffe927d9d78 [ 60.104747][ T6516] [ 60.104764][ T6516] memory: usage 306568kB, limit 307200kB, failcnt 34630 [ 60.275477][ T6516] memory+swap: usage 428948kB, limit 9007199254740988kB, failcnt 0 [ 60.278097][ T6516] kmem: usage 6464kB, limit 9007199254740988kB, failcnt 0 [ 60.280238][ T6516] Memory cgroup stats for /syz2: [ 60.280320][ T6516] cache 307773440 [ 60.283111][ T6516] rss 61440 [ 60.284148][ T6516] rss_huge 0 [ 60.285178][ T6516] shmem 304951296 [ 60.287891][ T6516] mapped_file 2199552 [ 60.289188][ T6516] dirty 0 [ 60.290093][ T6516] writeback 0 [ 60.291129][ T6516] workingset_refault_anon 105 [ 60.292681][ T6516] workingset_refault_file 9672 [ 60.294220][ T6516] swap 124682240 [ 60.295344][ T6516] swapcached 65536 [ 60.296969][ T6516] pgpgin 164773 [ 60.298086][ T6516] pgpgout 89612 [ 60.299180][ T6516] pgfault 17652 [ 60.300326][ T6516] pgmajfault 420 [ 60.301456][ T6516] inactive_anon 302161920 [ 60.302763][ T6516] active_anon 2756608 [ 60.304093][ T6516] inactive_file 1593344 [ 60.307513][ T6516] active_file 1204224 [ 60.308835][ T6516] unevictable 0 [ 60.309926][ T6516] hierarchical_memory_limit 314572800 [ 60.311588][ T6516] hierarchical_memsw_limit 9223372036854771712 [ 60.313458][ T6516] total_cache 307773440 [ 60.314767][ T6516] total_rss 61440 [ 60.316127][ T6516] total_rss_huge 0 [ 60.317355][ T6516] total_shmem 304951296 [ 60.318669][ T6516] total_mapped_file 2199552 [ 60.320060][ T6516] total_dirty 0 [ 60.321176][ T6516] total_writeback 0 [ 60.322438][ T6516] total_workingset_refault_anon 105 [ 60.324015][ T6516] total_workingset_refault_file 9672 [ 60.325674][ T6516] total_swap 124682240 [ 60.326969][ T6516] total_swapcached 65536 [ 60.328250][ T6516] total_pgpgin 164773 [ 60.329655][ T6516] total_pgpgout 89612 [ 60.330975][ T6516] total_pgfault 17652 [ 60.332238][ T6516] total_pgmajfault 420 [ 60.333593][ T6516] total_inactive_anon 302161920 [ 60.335103][ T6516] total_active_anon 2756608 [ 60.336583][ T6516] total_inactive_file 1593344 [ 60.338056][ T6516] total_active_file 1204224 [ 60.339443][ T6516] total_unevictable 0 [ 60.340665][ T6516] anon_cost 0 [ 60.341692][ T6516] file_cost 0 [ 60.342718][ T6516] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.138,pid=6487,uid=0 [ 60.347297][ T6516] Memory cgroup out of memory: Killed process 6487 (syz.2.138) total-vm:98252kB, anon-rss:1088kB, file-rss:23444kB, shmem-rss:0kB, UID:0 pgtables:156kB oom_score_adj:1000 [ 60.425242][ T40] audit: type=1400 audit(1755691867.624:50409): avc: denied { create } for pid=6718 comm="syz.2.196" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 60.431827][ T40] audit: type=1400 audit(1755691867.634:50410): avc: denied { read } for pid=6718 comm="syz.2.196" name="file0" dev="tmpfs" ino=271 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 60.438482][ T40] audit: type=1400 audit(1755691867.634:50411): avc: denied { open } for pid=6718 comm="syz.2.196" path="/42/file0" dev="tmpfs" ino=271 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 60.438502][ T40] audit: type=1400 audit(1755691867.634:50412): avc: denied { ioctl } for pid=6718 comm="syz.2.196" path="/42/file0" dev="tmpfs" ino=271 ioctlcmd=0x1285 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 60.601770][ T40] audit: type=1400 audit(1755691867.804:50413): avc: denied { unlink } for pid=5972 comm="syz-executor" name="file0" dev="tmpfs" ino=271 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 60.616463][ T40] audit: type=1400 audit(1755691867.824:50414): avc: denied { write } for pid=6723 comm="syz.1.212" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 60.624051][ T6732] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512) [ 60.630449][ T6732] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512) [ 61.029496][ T6516] syz.2.138 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 61.063203][ T6516] CPU: 2 UID: 0 PID: 6516 Comm: syz.2.138 Not tainted syzkaller #0 PREEMPT(full) [ 61.063220][ T6516] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 61.063227][ T6516] Call Trace: [ 61.063230][ T6516] [ 61.063234][ T6516] dump_stack_lvl+0x16c/0x1f0 [ 61.063268][ T6516] dump_header+0x101/0x930 [ 61.063281][ T6516] oom_kill_process+0x272/0xa40 [ 61.063292][ T6516] out_of_memory+0x350/0x1700 [ 61.063305][ T6516] ? __pfx_out_of_memory+0x10/0x10 [ 61.063317][ T6516] mem_cgroup_out_of_memory+0x118/0x130 [ 61.063338][ T6516] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 61.063354][ T6516] ? do_raw_spin_unlock+0x172/0x230 [ 61.063367][ T6516] try_charge_memcg+0x72b/0xd50 [ 61.063379][ T6516] ? policy_nodemask+0xea/0x4e0 [ 61.063391][ T6516] ? __pfx_try_charge_memcg+0x10/0x10 [ 61.063402][ T6516] ? rcu_is_watching+0x12/0xc0 [ 61.063416][ T6516] ? rcu_is_watching+0x12/0xc0 [ 61.063429][ T6516] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 61.063442][ T6516] charge_memcg+0x8a/0x230 [ 61.063453][ T6516] __mem_cgroup_charge+0x2b/0x1e0 [ 61.063466][ T6516] filemap_add_folio+0x88/0x220 [ 61.063478][ T6516] ? __pfx_filemap_add_folio+0x10/0x10 [ 61.063492][ T6516] __filemap_get_folio+0x510/0xc30 [ 61.063504][ T6516] ? lock_release+0x201/0x2f0 [ 61.063521][ T6516] filemap_fault+0x661/0x2930 [ 61.063535][ T6516] ? __pfx_filemap_fault+0x10/0x10 [ 61.063548][ T6516] ? const_folio_flags+0x5b/0x100 [ 61.063560][ T6516] ? __pfx_filemap_map_pages+0x10/0x10 [ 61.063571][ T6516] __do_fault+0x10d/0x490 [ 61.063582][ T6516] ? __pfx_filemap_map_pages+0x10/0x10 [ 61.063593][ T6516] do_pte_missing+0xf50/0x3ba0 [ 61.063609][ T6516] ? __handle_mm_fault+0x14fd/0x2a50 [ 61.063625][ T6516] ? rcu_is_watching+0x12/0xc0 [ 61.063638][ T6516] ? lock_release+0x201/0x2f0 [ 61.063655][ T6516] __handle_mm_fault+0x152a/0x2a50 [ 61.063673][ T6516] ? __pfx___handle_mm_fault+0x10/0x10 [ 61.063693][ T6516] ? __pte_offset_map_lock+0x174/0x310 [ 61.063708][ T6516] ? follow_page_pte.constprop.0+0x5cf/0x1390 [ 61.063725][ T6516] handle_mm_fault+0x589/0xd10 [ 61.063742][ T6516] __get_user_pages+0x551/0x34a0 [ 61.063757][ T6516] ? rcu_is_watching+0x12/0xc0 [ 61.063770][ T6516] ? __pfx___get_user_pages+0x10/0x10 [ 61.063784][ T6516] ? __kernel_write_iter+0x5a5/0xb10 [ 61.063797][ T6516] get_dump_page+0x257/0x3d0 [ 61.063811][ T6516] ? __pfx_get_dump_page+0x10/0x10 [ 61.063826][ T6516] ? lock_release+0x201/0x2f0 [ 61.063843][ T6516] dump_user_range+0x195/0xb70 [ 61.063856][ T6516] ? __pfx_dump_user_range+0x10/0x10 [ 61.063868][ T6516] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 61.063880][ T6516] ? __pfx_writenote+0x10/0x10 [ 61.063893][ T6516] elf_core_dump+0x2929/0x3b60 [ 61.063908][ T6516] ? __pfx_elf_core_dump+0x10/0x10 [ 61.063920][ T6516] ? kasan_save_stack+0x42/0x60 [ 61.063931][ T6516] ? kasan_save_stack+0x33/0x60 [ 61.063940][ T6516] ? kasan_save_track+0x14/0x30 [ 61.063950][ T6516] ? __kasan_kmalloc+0xaa/0xb0 [ 61.063959][ T6516] ? vfs_coredump+0x1dca/0x5670 [ 61.063970][ T6516] ? get_signal+0x22e3/0x26d0 [ 61.063983][ T6516] ? arch_do_signal_or_restart+0x8f/0x7d0 [ 61.063999][ T6516] ? 0xffffffffff600000 [ 61.064013][ T6516] ? rcu_is_watching+0x12/0xc0 [ 61.064026][ T6516] ? lock_acquire+0x2cd/0x350 [ 61.064043][ T6516] ? __pfx___might_resched+0x10/0x10 [ 61.064057][ T6516] ? vfs_coredump+0x2b97/0x5670 [ 61.064068][ T6516] vfs_coredump+0x2b97/0x5670 [ 61.064082][ T6516] ? __pfx_vfs_coredump+0x10/0x10 [ 61.064094][ T6516] ? rcu_is_watching+0x12/0xc0 [ 61.064107][ T6516] ? unwind_next_frame+0x3f4/0x20a0 [ 61.064119][ T6516] ? rcu_is_watching+0x12/0xc0 [ 61.064133][ T6516] ? rcu_is_watching+0x12/0xc0 [ 61.064146][ T6516] ? unwind_next_frame+0x3f4/0x20a0 [ 61.064158][ T6516] ? rcu_is_watching+0x12/0xc0 [ 61.064172][ T6516] ? lock_release+0x201/0x2f0 [ 61.064188][ T6516] ? bpf_ksym_find+0x127/0x1c0 [ 61.064203][ T6516] ? __kernel_text_address+0xd/0x40 [ 61.064215][ T6516] ? unwind_get_return_address+0x59/0xa0 [ 61.064227][ T6516] ? arch_stack_walk+0xa6/0x100 [ 61.064254][ T6516] ? stack_trace_save+0x8e/0xc0 [ 61.064269][ T6516] ? __pfx_stack_trace_save+0x10/0x10 [ 61.064283][ T6516] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 61.064294][ T6516] ? stack_depot_save_flags+0x29/0x9c0 [ 61.064307][ T6516] ? arch_do_signal_or_restart+0x4bc/0x7d0 [ 61.064320][ T6516] ? irqentry_exit_to_user_mode+0x12a/0x270 [ 61.064332][ T6516] ? asm_exc_page_fault+0x26/0x30 [ 61.064352][ T6516] ? proc_coredump_connector+0x2d1/0x4f0 [ 61.064368][ T6516] ? __pfx_proc_coredump_connector+0x10/0x10 [ 61.064385][ T6516] ? rcu_is_watching+0x12/0xc0 [ 61.064399][ T6516] get_signal+0x22e3/0x26d0 [ 61.064430][ T6516] ? __pfx_get_signal+0x10/0x10 [ 61.064445][ T6516] ? force_sig_fault+0xc4/0x100 [ 61.064458][ T6516] ? __pfx_force_sig_fault+0x10/0x10 [ 61.064471][ T6516] ? fpu__clear_user_states+0xf4/0x1d0 [ 61.064486][ T6516] arch_do_signal_or_restart+0x8f/0x7d0 [ 61.064500][ T6516] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 61.064517][ T6516] irqentry_exit_to_user_mode+0x12a/0x270 [ 61.064529][ T6516] asm_exc_page_fault+0x26/0x30 [ 61.064539][ T6516] RIP: 0033:0x7f4c8304f927 [ 61.064547][ T6516] Code: 88 15 d2 5d e9 00 88 05 cf 5d e9 00 c3 50 48 8d 35 01 25 1c 00 48 8d 3d 07 25 1c 00 31 c0 e8 20 f7 ff ff 53 89 fb 48 83 ec 10 <64> 8b 04 25 94 ff ff ff 85 c0 74 2a 89 fe 31 c0 bf 3c 00 00 00 e8 [ 61.064557][ T6516] RSP: 002b:00007f4c83f391a0 EFLAGS: 00010206 [ 61.064571][ T6516] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f4c8318ebe9 [ 61.064578][ T6516] RDX: 00007f4c83f391c0 RSI: 00007f4c83f392f0 RDI: 000000000000000b [ 61.064584][ T6516] RBP: 00007f4c83211e19 R08: 0000000000000000 R09: 0000000000000000 [ 61.064590][ T6516] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 61.064596][ T6516] R13: 00007f4c833b6038 R14: 00007f4c833b5fa0 R15: 00007ffe927d9d78 [ 61.064606][ T6516] [ 61.144236][ T6516] memory: usage 307200kB, limit 307200kB, failcnt 42679 [ 61.145301][ C2] vkms_vblank_simulate: vblank timer overrun [ 61.147240][ T6516] memory+swap: usage 432152kB, limit 9007199254740988kB, failcnt 0 [ 61.269707][ T6516] kmem: usage 6300kB, limit 9007199254740988kB, failcnt 0 [ 61.272385][ T6516] Memory cgroup stats for /syz2: [ 61.272504][ T6516] cache 307900416 [ 61.276013][ T6516] rss 196608 [ 61.277413][ T6516] rss_huge 0 [ 61.278745][ T6516] shmem 307871744 [ 61.280192][ T6516] mapped_file 0 [ 61.281562][ T6516] dirty 0 [ 61.282713][ T6516] writeback 0 [ 61.284014][ T6516] workingset_refault_anon 111 [ 61.285912][ T6516] workingset_refault_file 16965 [ 61.287802][ T6516] swap 127950848 [ 61.289201][ T6516] swapcached 45056 [ 61.290642][ T6516] pgpgin 179507 [ 61.292012][ T6516] pgpgout 104282 [ 61.293410][ T6516] pgfault 18465 [ 61.294796][ T6516] pgmajfault 600 [ 61.296254][ T6516] inactive_anon 177377280 [ 61.297927][ T6516] active_anon 130715648 [ 61.299525][ T6516] inactive_file 0 [ 61.300979][ T6516] active_file 28672 [ 61.302454][ T6516] unevictable 0 [ 61.303794][ T6516] hierarchical_memory_limit 314572800 [ 61.305912][ T6516] hierarchical_memsw_limit 9223372036854771712 [ 61.308292][ T6516] total_cache 307900416 [ 61.309908][ T6516] total_rss 196608 [ 61.311331][ T6516] total_rss_huge 0 [ 61.312737][ T6516] total_shmem 307871744 [ 61.314356][ T6516] total_mapped_file 0 [ 61.316025][ T6516] total_dirty 0 [ 61.317380][ T6516] total_writeback 0 [ 61.318966][ T6516] total_workingset_refault_anon 111 [ 61.320951][ T6516] total_workingset_refault_file 16965 [ 61.323001][ T6516] total_swap 127950848 [ 61.324577][ T6516] total_swapcached 45056 [ 61.326278][ T6516] total_pgpgin 179507 [ 61.327832][ T6516] total_pgpgout 104282 [ 61.329415][ T6516] total_pgfault 18465 [ 61.330937][ T6516] total_pgmajfault 600 [ 61.332522][ T6516] total_inactive_anon 177377280 [ 61.333603][ T6765] netlink: 'syz.0.224': attribute type 58 has an invalid length. [ 61.334378][ T6516] total_active_anon 130715648 [ 61.338629][ T6516] total_inactive_file 0 [ 61.340204][ T6516] total_active_file 28672 [ 61.341855][ T6516] total_unevictable 0 [ 61.343364][ T6516] anon_cost 0 [ 61.344654][ T6516] file_cost 0 [ 61.346014][ T6516] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.138,pid=6488,uid=0 [ 61.351554][ T6516] Memory cgroup out of memory: Killed process 6488 (syz.2.138) total-vm:98252kB, anon-rss:1088kB, file-rss:23812kB, shmem-rss:0kB, UID:0 pgtables:196kB oom_score_adj:1000 [ 61.930654][ T6483] syz.2.138 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 61.934033][ T6483] CPU: 1 UID: 0 PID: 6483 Comm: syz.2.138 Not tainted syzkaller #0 PREEMPT(full) [ 61.934048][ T6483] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 61.934054][ T6483] Call Trace: [ 61.934058][ T6483] [ 61.934065][ T6483] dump_stack_lvl+0x16c/0x1f0 [ 61.934080][ T6483] dump_header+0x101/0x930 [ 61.934092][ T6483] oom_kill_process+0x272/0xa40 [ 61.934104][ T6483] out_of_memory+0x350/0x1700 [ 61.934117][ T6483] ? __pfx_out_of_memory+0x10/0x10 [ 61.934129][ T6483] mem_cgroup_out_of_memory+0x118/0x130 [ 61.934145][ T6483] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 61.934161][ T6483] ? do_raw_spin_unlock+0x172/0x230 [ 61.934174][ T6483] try_charge_memcg+0x72b/0xd50 [ 61.934186][ T6483] ? policy_nodemask+0xea/0x4e0 [ 61.934198][ T6483] ? __pfx_try_charge_memcg+0x10/0x10 [ 61.934209][ T6483] ? rcu_is_watching+0x12/0xc0 [ 61.934224][ T6483] ? rcu_is_watching+0x12/0xc0 [ 61.934237][ T6483] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 61.934250][ T6483] charge_memcg+0x8a/0x230 [ 61.934261][ T6483] __mem_cgroup_charge+0x2b/0x1e0 [ 61.934273][ T6483] filemap_add_folio+0x88/0x220 [ 61.934291][ T6483] ? __pfx_filemap_add_folio+0x10/0x10 [ 61.934305][ T6483] __filemap_get_folio+0x510/0xc30 [ 61.934317][ T6483] ? lock_release+0x201/0x2f0 [ 61.934334][ T6483] filemap_fault+0x661/0x2930 [ 61.934347][ T6483] ? __pfx_filemap_fault+0x10/0x10 [ 61.934361][ T6483] ? const_folio_flags+0x5b/0x100 [ 61.934372][ T6483] ? __pfx_filemap_map_pages+0x10/0x10 [ 61.934383][ T6483] __do_fault+0x10d/0x490 [ 61.934395][ T6483] ? __pfx_filemap_map_pages+0x10/0x10 [ 61.934405][ T6483] do_pte_missing+0xf50/0x3ba0 [ 61.934422][ T6483] ? __handle_mm_fault+0x14fd/0x2a50 [ 61.934438][ T6483] ? rcu_is_watching+0x12/0xc0 [ 61.934451][ T6483] ? lock_release+0x201/0x2f0 [ 61.934468][ T6483] __handle_mm_fault+0x152a/0x2a50 [ 61.934485][ T6483] ? __pfx___handle_mm_fault+0x10/0x10 [ 61.934503][ T6483] ? __pte_offset_map_lock+0x174/0x310 [ 61.934518][ T6483] ? follow_page_pte.constprop.0+0x5cf/0x1390 [ 61.934534][ T6483] handle_mm_fault+0x589/0xd10 [ 61.934552][ T6483] __get_user_pages+0x551/0x34a0 [ 61.934567][ T6483] ? rcu_is_watching+0x12/0xc0 [ 61.934580][ T6483] ? __pfx___get_user_pages+0x10/0x10 [ 61.934594][ T6483] ? __kernel_write_iter+0x5a5/0xb10 [ 61.934607][ T6483] get_dump_page+0x257/0x3d0 [ 61.934621][ T6483] ? __pfx_get_dump_page+0x10/0x10 [ 61.934637][ T6483] ? lock_release+0x201/0x2f0 [ 61.934654][ T6483] dump_user_range+0x195/0xb70 [ 61.934667][ T6483] ? __pfx_dump_user_range+0x10/0x10 [ 61.934678][ T6483] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 61.934691][ T6483] ? __pfx_writenote+0x10/0x10 [ 61.934704][ T6483] elf_core_dump+0x2929/0x3b60 [ 61.934719][ T6483] ? __pfx_elf_core_dump+0x10/0x10 [ 61.934731][ T6483] ? kasan_save_stack+0x42/0x60 [ 61.934742][ T6483] ? kasan_save_stack+0x33/0x60 [ 61.934751][ T6483] ? kasan_save_track+0x14/0x30 [ 61.934761][ T6483] ? __kasan_kmalloc+0xaa/0xb0 [ 61.934770][ T6483] ? vfs_coredump+0x1dca/0x5670 [ 61.934781][ T6483] ? get_signal+0x22e3/0x26d0 [ 61.934794][ T6483] ? arch_do_signal_or_restart+0x8f/0x7d0 [ 61.934809][ T6483] ? 0xffffffffff600000 [ 61.934824][ T6483] ? rcu_is_watching+0x12/0xc0 [ 61.934837][ T6483] ? lock_acquire+0x2cd/0x350 [ 61.934853][ T6483] ? __pfx___might_resched+0x10/0x10 [ 61.934868][ T6483] ? vfs_coredump+0x2b97/0x5670 [ 61.934878][ T6483] vfs_coredump+0x2b97/0x5670 [ 61.934890][ T6483] ? __pfx_vfs_coredump+0x10/0x10 [ 61.934901][ T6483] ? folios_put_refs+0x5ce/0x740 [ 61.934913][ T6483] ? rcu_is_watching+0x12/0xc0 [ 61.934926][ T6483] ? unwind_next_frame+0x3f4/0x20a0 [ 61.934938][ T6483] ? rcu_is_watching+0x12/0xc0 [ 61.934958][ T6483] ? rcu_is_watching+0x12/0xc0 [ 61.934971][ T6483] ? unwind_next_frame+0x3f4/0x20a0 [ 61.934982][ T6483] ? rcu_is_watching+0x12/0xc0 [ 61.934997][ T6483] ? lock_release+0x201/0x2f0 [ 61.935013][ T6483] ? bpf_ksym_find+0x127/0x1c0 [ 61.935028][ T6483] ? __kernel_text_address+0xd/0x40 [ 61.935041][ T6483] ? unwind_get_return_address+0x59/0xa0 [ 61.935053][ T6483] ? arch_stack_walk+0xa6/0x100 [ 61.935067][ T6483] ? stack_trace_save+0x8e/0xc0 [ 61.935082][ T6483] ? __pfx_stack_trace_save+0x10/0x10 [ 61.935096][ T6483] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 61.935108][ T6483] ? stack_depot_save_flags+0x29/0x9c0 [ 61.935120][ T6483] ? arch_do_signal_or_restart+0x4bc/0x7d0 [ 61.935134][ T6483] ? irqentry_exit_to_user_mode+0x12a/0x270 [ 61.935146][ T6483] ? asm_exc_page_fault+0x26/0x30 [ 61.935166][ T6483] ? proc_coredump_connector+0x2d1/0x4f0 [ 61.935182][ T6483] ? __pfx_proc_coredump_connector+0x10/0x10 [ 61.935199][ T6483] ? rcu_is_watching+0x12/0xc0 [ 61.935213][ T6483] get_signal+0x22e3/0x26d0 [ 61.935228][ T6483] ? __pfx_get_signal+0x10/0x10 [ 61.935241][ T6483] ? force_sig_fault+0xc4/0x100 [ 61.935254][ T6483] ? __pfx_force_sig_fault+0x10/0x10 [ 61.935267][ T6483] ? fpu__clear_user_states+0xf4/0x1d0 [ 61.935282][ T6483] arch_do_signal_or_restart+0x8f/0x7d0 [ 61.935296][ T6483] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 61.935314][ T6483] irqentry_exit_to_user_mode+0x12a/0x270 [ 61.935326][ T6483] asm_exc_page_fault+0x26/0x30 [ 61.935336][ T6483] RIP: 0033:0x7f4c8304f927 [ 61.935345][ T6483] Code: 88 15 d2 5d e9 00 88 05 cf 5d e9 00 c3 50 48 8d 35 01 25 1c 00 48 8d 3d 07 25 1c 00 31 c0 e8 20 f7 ff ff 53 89 fb 48 83 ec 10 <64> 8b 04 25 94 ff ff ff 85 c0 74 2a 89 fe 31 c0 bf 3c 00 00 00 e8 [ 61.935355][ T6483] RSP: 002b:00007f4c83f391a0 EFLAGS: 00010206 [ 61.935364][ T6483] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f4c8318ebe9 [ 61.935371][ T6483] RDX: 00007f4c83f391c0 RSI: 00007f4c83f392f0 RDI: 000000000000000b [ 61.935377][ T6483] RBP: 00007f4c83211e19 R08: 0000000000000000 R09: 0000000000000000 [ 61.935383][ T6483] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 61.935401][ T6483] R13: 00007f4c833b6038 R14: 00007f4c833b5fa0 R15: 00007ffe927d9d78 [ 61.935411][ T6483] [ 62.107734][ T6483] memory: usage 307196kB, limit 307200kB, failcnt 48318 [ 62.109788][ T6483] memory+swap: usage 432124kB, limit 9007199254740988kB, failcnt 0 [ 62.112013][ T6483] kmem: usage 6128kB, limit 9007199254740988kB, failcnt 0 [ 62.114122][ T6483] Memory cgroup stats for /syz2: [ 62.114191][ T6483] cache 308191232 [ 62.116908][ T6483] rss 81920 [ 62.117885][ T6483] rss_huge 0 [ 62.118909][ T6483] shmem 307417088 [ 62.120033][ T6483] mapped_file 4096 [ 62.121183][ T6483] dirty 0 [ 62.122073][ T6483] writeback 0 [ 62.123067][ T6483] workingset_refault_anon 115 [ 62.124464][ T6483] workingset_refault_file 25914 [ 62.126343][ T6483] swap 127922176 [ 62.127516][ T6483] swapcached 65536 [ 62.128688][ T6483] pgpgin 201239 [ 62.129818][ T6483] pgpgout 125971 [ 62.131069][ T6483] pgfault 19634 [ 62.132653][ T6483] pgmajfault 701 [ 62.134378][ T6483] inactive_anon 134676480 [ 62.142368][ T6483] active_anon 172847104 [ 62.143618][ T6483] inactive_file 618496 [ 62.144823][ T6483] active_file 0 [ 62.145958][ T6483] unevictable 0 [ 62.147064][ T6483] hierarchical_memory_limit 314572800 [ 62.148662][ T6483] hierarchical_memsw_limit 9223372036854771712 [ 62.150616][ T6483] total_cache 308191232 [ 62.151874][ T6483] total_rss 81920 [ 62.153054][ T6483] total_rss_huge 0 [ 62.154164][ T6483] total_shmem 307417088 [ 62.155452][ T6483] total_mapped_file 4096 [ 62.156764][ T6483] total_dirty 0 [ 62.157836][ T6483] total_writeback 0 [ 62.158970][ T6483] total_workingset_refault_anon 115 [ 62.160523][ T6483] total_workingset_refault_file 25914 [ 62.162128][ T6483] total_swap 127922176 [ 62.163345][ T6483] total_swapcached 65536 [ 62.164630][ T6483] total_pgpgin 201239 [ 62.166326][ T6483] total_pgpgout 125971 [ 62.169170][ T6483] total_pgfault 19634 [ 62.170419][ T6483] total_pgmajfault 701 [ 62.171661][ T6483] total_inactive_anon 134676480 [ 62.173133][ T6483] total_active_anon 172847104 [ 62.174553][ T6483] total_inactive_file 618496 [ 62.176313][ T6483] total_active_file 0 [ 62.177579][ T6483] total_unevictable 0 [ 62.180365][ T6483] anon_cost 0 [ 62.181460][ T6483] file_cost 0 [ 62.182485][ T6483] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.138,pid=6486,uid=0 [ 62.252641][ T6483] Memory cgroup out of memory: Killed process 6486 (syz.2.138) total-vm:98252kB, anon-rss:960kB, file-rss:23876kB, shmem-rss:0kB, UID:0 pgtables:196kB oom_score_adj:1000 [ 62.291955][ T6483] syz.2.138 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=0, oom_score_adj=1000 [ 62.295140][ T6483] CPU: 1 UID: 0 PID: 6483 Comm: syz.2.138 Not tainted syzkaller #0 PREEMPT(full) [ 62.295155][ T6483] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 62.295162][ T6483] Call Trace: [ 62.295166][ T6483] [ 62.295170][ T6483] dump_stack_lvl+0x16c/0x1f0 [ 62.295185][ T6483] dump_header+0x101/0x930 [ 62.295197][ T6483] oom_kill_process+0x272/0xa40 [ 62.295209][ T6483] out_of_memory+0x350/0x1700 [ 62.295221][ T6483] ? __pfx_out_of_memory+0x10/0x10 [ 62.295234][ T6483] mem_cgroup_out_of_memory+0x118/0x130 [ 62.295250][ T6483] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 62.295266][ T6483] ? do_raw_spin_unlock+0x172/0x230 [ 62.295280][ T6483] try_charge_memcg+0x72b/0xd50 [ 62.295291][ T6483] ? rcu_is_watching+0x12/0xc0 [ 62.295305][ T6483] ? __pfx_try_charge_memcg+0x10/0x10 [ 62.295315][ T6483] ? rcu_read_unlock+0x17/0x60 [ 62.295327][ T6483] ? rcu_is_watching+0x12/0xc0 [ 62.295339][ T6483] ? lock_release+0x201/0x2f0 [ 62.295356][ T6483] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 62.295373][ T6483] obj_cgroup_charge_pages+0x22/0x1f0 [ 62.295385][ T6483] obj_cgroup_charge_account+0x5c/0xa0 [ 62.295410][ T6483] __memcg_slab_post_alloc_hook+0x30c/0x960 [ 62.295424][ T6483] ? kasan_save_track+0x14/0x30 [ 62.295435][ T6483] kmem_cache_alloc_lru_noprof+0x30f/0x3b0 [ 62.295447][ T6483] ? xas_nomem+0x101/0x2c0 [ 62.295457][ T6483] ? shmem_add_to_page_cache+0x6c9/0xa70 [ 62.295475][ T6483] xas_nomem+0x101/0x2c0 [ 62.295486][ T6483] shmem_add_to_page_cache+0x6d5/0xa70 [ 62.295504][ T6483] ? __pfx_shmem_add_to_page_cache+0x10/0x10 [ 62.295524][ T6483] shmem_alloc_and_add_folio+0x668/0xc20 [ 62.295543][ T6483] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 62.295561][ T6483] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 62.295573][ T6483] shmem_get_folio_gfp+0x67f/0x1600 [ 62.295584][ T6483] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 62.295596][ T6483] shmem_write_begin+0x160/0x300 [ 62.295606][ T6483] ? __pfx_shmem_write_begin+0x10/0x10 [ 62.295616][ T6483] ? timestamp_truncate+0x21e/0x2d0 [ 62.295630][ T6483] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 62.295645][ T6483] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 62.295659][ T6483] generic_perform_write+0x3c2/0x900 [ 62.295682][ T6483] ? __pfx_generic_perform_write+0x10/0x10 [ 62.295699][ T6483] ? inode_needs_update_time.part.0+0x191/0x270 [ 62.295714][ T6483] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 62.295727][ T6483] shmem_file_write_iter+0x10e/0x140 [ 62.295740][ T6483] __kernel_write_iter+0x317/0xb10 [ 62.295752][ T6483] ? __pfx___kernel_write_iter+0x10/0x10 [ 62.295763][ T6483] ? __up_read+0x1f8/0x750 [ 62.295774][ T6483] ? lock_release+0x201/0x2f0 [ 62.295792][ T6483] dump_user_range+0x413/0xb70 [ 62.295804][ T6483] ? __pfx_dump_user_range+0x10/0x10 [ 62.295816][ T6483] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 62.295828][ T6483] ? __pfx_writenote+0x10/0x10 [ 62.295841][ T6483] elf_core_dump+0x2929/0x3b60 [ 62.295857][ T6483] ? __pfx_elf_core_dump+0x10/0x10 [ 62.295868][ T6483] ? kasan_save_stack+0x42/0x60 [ 62.295878][ T6483] ? kasan_save_stack+0x33/0x60 [ 62.295888][ T6483] ? kasan_save_track+0x14/0x30 [ 62.295897][ T6483] ? __kasan_kmalloc+0xaa/0xb0 [ 62.295907][ T6483] ? vfs_coredump+0x1dca/0x5670 [ 62.295917][ T6483] ? get_signal+0x22e3/0x26d0 [ 62.295931][ T6483] ? arch_do_signal_or_restart+0x8f/0x7d0 [ 62.295946][ T6483] ? 0xffffffffff600000 [ 62.295960][ T6483] ? rcu_is_watching+0x12/0xc0 [ 62.295973][ T6483] ? lock_acquire+0x2cd/0x350 [ 62.295989][ T6483] ? __pfx___might_resched+0x10/0x10 [ 62.296004][ T6483] ? vfs_coredump+0x2b97/0x5670 [ 62.296014][ T6483] vfs_coredump+0x2b97/0x5670 [ 62.296027][ T6483] ? __pfx_vfs_coredump+0x10/0x10 [ 62.296038][ T6483] ? folios_put_refs+0x5ce/0x740 [ 62.296050][ T6483] ? rcu_is_watching+0x12/0xc0 [ 62.296063][ T6483] ? unwind_next_frame+0x3f4/0x20a0 [ 62.296074][ T6483] ? rcu_is_watching+0x12/0xc0 [ 62.296089][ T6483] ? rcu_is_watching+0x12/0xc0 [ 62.296102][ T6483] ? unwind_next_frame+0x3f4/0x20a0 [ 62.296113][ T6483] ? rcu_is_watching+0x12/0xc0 [ 62.296128][ T6483] ? lock_release+0x201/0x2f0 [ 62.296143][ T6483] ? bpf_ksym_find+0x127/0x1c0 [ 62.296158][ T6483] ? __kernel_text_address+0xd/0x40 [ 62.296170][ T6483] ? unwind_get_return_address+0x59/0xa0 [ 62.296182][ T6483] ? arch_stack_walk+0xa6/0x100 [ 62.296196][ T6483] ? stack_trace_save+0x8e/0xc0 [ 62.296211][ T6483] ? __pfx_stack_trace_save+0x10/0x10 [ 62.296225][ T6483] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 62.296236][ T6483] ? stack_depot_save_flags+0x29/0x9c0 [ 62.296248][ T6483] ? arch_do_signal_or_restart+0x4bc/0x7d0 [ 62.296262][ T6483] ? irqentry_exit_to_user_mode+0x12a/0x270 [ 62.296274][ T6483] ? asm_exc_page_fault+0x26/0x30 [ 62.296293][ T6483] ? proc_coredump_connector+0x2d1/0x4f0 [ 62.296310][ T6483] ? __pfx_proc_coredump_connector+0x10/0x10 [ 62.296327][ T6483] ? rcu_is_watching+0x12/0xc0 [ 62.296340][ T6483] get_signal+0x22e3/0x26d0 [ 62.296355][ T6483] ? __pfx_get_signal+0x10/0x10 [ 62.296369][ T6483] ? force_sig_fault+0xc4/0x100 [ 62.296382][ T6483] ? __pfx_force_sig_fault+0x10/0x10 [ 62.296394][ T6483] ? fpu__clear_user_states+0xf4/0x1d0 [ 62.296426][ T6483] arch_do_signal_or_restart+0x8f/0x7d0 [ 62.296440][ T6483] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 62.296457][ T6483] irqentry_exit_to_user_mode+0x12a/0x270 [ 62.296469][ T6483] asm_exc_page_fault+0x26/0x30 [ 62.296479][ T6483] RIP: 0033:0x7f4c8304f927 [ 62.296488][ T6483] Code: 88 15 d2 5d e9 00 88 05 cf 5d e9 00 c3 50 48 8d 35 01 25 1c 00 48 8d 3d 07 25 1c 00 31 c0 e8 20 f7 ff ff 53 89 fb 48 83 ec 10 <64> 8b 04 25 94 ff ff ff 85 c0 74 2a 89 fe 31 c0 bf 3c 00 00 00 e8 [ 62.296498][ T6483] RSP: 002b:00007f4c83f391a0 EFLAGS: 00010206 [ 62.296507][ T6483] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f4c8318ebe9 [ 62.296514][ T6483] RDX: 00007f4c83f391c0 RSI: 00007f4c83f392f0 RDI: 000000000000000b [ 62.296521][ T6483] RBP: 00007f4c83211e19 R08: 0000000000000000 R09: 0000000000000000 [ 62.296527][ T6483] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 62.296533][ T6483] R13: 00007f4c833b6038 R14: 00007f4c833b5fa0 R15: 00007ffe927d9d78 [ 62.296542][ T6483] [ 62.479092][ T6483] memory: usage 293548kB, limit 307200kB, failcnt 49622 [ 62.481252][ T6483] memory+swap: usage 411404kB, limit 9007199254740988kB, failcnt 0 [ 62.483611][ T6483] kmem: usage 6144kB, limit 9007199254740988kB, failcnt 0 [ 62.490702][ T6483] Memory cgroup stats for /syz2: [ 62.490773][ T6483] cache 297041920 [ 62.493433][ T6483] rss 81920 [ 62.494426][ T6483] rss_huge 0 [ 62.495675][ T6483] shmem 292712448 [ 62.496810][ T6483] mapped_file 4325376 [ 62.498074][ T6483] dirty 0 [ 62.499024][ T6483] writeback 0 [ 62.500110][ T6483] workingset_refault_anon 116 [ 62.501603][ T6483] workingset_refault_file 26951 [ 62.503069][ T6483] swap 119951360 [ 62.504200][ T6483] swapcached 77824 [ 62.505354][ T6483] pgpgin 206300 [ 62.536324][ T6483] pgpgout 133750 [ 62.537510][ T6483] pgfault 19845 [ 62.538621][ T6483] pgmajfault 721 [ 62.539706][ T6483] inactive_anon 159166464 [ 62.541060][ T6483] active_anon 132960256 [ 62.542335][ T6483] inactive_file 0 [ 62.543448][ T6483] active_file 4321280 [ 62.544664][ T6483] unevictable 0 [ 62.563025][ T63] Bluetooth: hci0: ACL packet for unknown connection handle 1280 [ 62.573732][ T6813] (J: renamed from lo (while UP) [ 62.575695][ T6483] hierarchical_memory_limit 314572800 [ 62.578677][ T6483] hierarchical_memsw_limit 9223372036854771712 [ 62.580560][ T6483] total_cache 297041920 [ 62.581825][ T6483] total_rss 81920 [ 62.583013][ T6483] total_rss_huge 0 [ 62.584162][ T6483] total_shmem 292712448 [ 62.626338][ T6483] total_mapped_file 4325376 [ 62.627787][ T6483] total_dirty 0 [ 62.630571][ T6483] total_writeback 0 [ 62.633878][ T6483] total_workingset_refault_anon 116 [ 62.641542][ T6483] total_workingset_refault_file 26951 [ 62.644350][ T6483] total_swap 119951360 [ 62.646060][ T6483] total_swapcached 77824 [ 62.647969][ T6483] total_pgpgin 206300 [ 62.649404][ T6483] total_pgpgout 133750 [ 62.650675][ T6483] total_pgfault 19845 [ 62.651954][ T6483] total_pgmajfault 721 [ 62.653362][ T6483] total_inactive_anon 159166464 [ 62.654866][ T6483] total_active_anon 132960256 [ 62.656790][ T6483] total_inactive_file 0 [ 62.658138][ T6483] total_active_file 4321280 [ 62.659740][ T6483] total_unevictable 0 [ 62.661010][ T6483] anon_cost 0 [ 62.662067][ T6483] file_cost 0 [ 62.663111][ T6483] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.138,pid=6489,uid=0 [ 62.667767][ T6483] Memory cgroup out of memory: Killed process 6489 (syz.2.138) total-vm:98252kB, anon-rss:1088kB, file-rss:23820kB, shmem-rss:0kB, UID:0 pgtables:196kB oom_score_adj:1000 [ 62.777135][ T6823] netlink: 'syz.0.246': attribute type 5 has an invalid length. [ 62.779829][ T6494] syz.2.138 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 62.783315][ T6823] ip6erspan0: entered promiscuous mode [ 62.827112][ T6494] CPU: 0 UID: 0 PID: 6494 Comm: syz.2.138 Not tainted syzkaller #0 PREEMPT(full) [ 62.827128][ T6494] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 62.827135][ T6494] Call Trace: [ 62.827138][ T6494] [ 62.827142][ T6494] dump_stack_lvl+0x16c/0x1f0 [ 62.827158][ T6494] dump_header+0x101/0x930 [ 62.827170][ T6494] oom_kill_process+0x272/0xa40 [ 62.827182][ T6494] out_of_memory+0x350/0x1700 [ 62.827194][ T6494] ? __pfx_out_of_memory+0x10/0x10 [ 62.827207][ T6494] mem_cgroup_out_of_memory+0x118/0x130 [ 62.827222][ T6494] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 62.827238][ T6494] ? do_raw_spin_unlock+0x172/0x230 [ 62.827252][ T6494] try_charge_memcg+0x72b/0xd50 [ 62.827264][ T6494] ? __pfx_try_charge_memcg+0x10/0x10 [ 62.827275][ T6494] ? rcu_is_watching+0x12/0xc0 [ 62.827288][ T6494] ? rcu_is_watching+0x12/0xc0 [ 62.827301][ T6494] ? __folio_batch_add_and_move+0x602/0xc90 [ 62.827315][ T6494] charge_memcg+0x8a/0x230 [ 62.827326][ T6494] __mem_cgroup_charge+0x2b/0x1e0 [ 62.827339][ T6494] shmem_alloc_and_add_folio+0x514/0xc20 [ 62.827358][ T6494] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 62.827376][ T6494] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 62.827388][ T6494] shmem_get_folio_gfp+0x67f/0x1600 [ 62.827399][ T6494] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 62.827409][ T6494] ? inode_set_ctime_current+0xa3/0x8f0 [ 62.827424][ T6494] ? timestamp_truncate+0x21e/0x2d0 [ 62.827438][ T6494] shmem_write_begin+0x160/0x300 [ 62.827449][ T6494] ? __pfx_shmem_write_begin+0x10/0x10 [ 62.827459][ T6494] ? inode_set_ctime_current+0x2a1/0x8f0 [ 62.827473][ T6494] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 62.827490][ T6494] generic_perform_write+0x3c2/0x900 [ 62.827509][ T6494] ? __pfx_generic_perform_write+0x10/0x10 [ 62.827527][ T6494] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 62.827540][ T6494] ? generic_update_time+0xcf/0xf0 [ 62.827554][ T6494] ? mnt_put_write_access_file+0x45/0xf0 [ 62.827566][ T6494] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 62.827579][ T6494] shmem_file_write_iter+0x10e/0x140 [ 62.827592][ T6494] __kernel_write_iter+0x317/0xb10 [ 62.827603][ T6494] ? __pfx___kernel_write_iter+0x10/0x10 [ 62.827614][ T6494] ? __up_read+0x1f8/0x750 [ 62.827625][ T6494] ? lock_release+0x201/0x2f0 [ 62.827642][ T6494] ? copy_mc_enhanced_fast_string+0x6/0xf [ 62.827663][ T6494] dump_user_range+0x413/0xb70 [ 62.827680][ T6494] ? __pfx_dump_user_range+0x10/0x10 [ 62.827695][ T6494] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 62.827710][ T6494] ? __pfx_writenote+0x10/0x10 [ 62.827730][ T6494] elf_core_dump+0x2929/0x3b60 [ 62.827746][ T6494] ? __pfx_elf_core_dump+0x10/0x10 [ 62.827758][ T6494] ? kasan_save_stack+0x42/0x60 [ 62.827769][ T6494] ? kasan_save_stack+0x33/0x60 [ 62.827778][ T6494] ? kasan_save_track+0x14/0x30 [ 62.827788][ T6494] ? __kasan_kmalloc+0xaa/0xb0 [ 62.827797][ T6494] ? vfs_coredump+0x1dca/0x5670 [ 62.827808][ T6494] ? get_signal+0x22e3/0x26d0 [ 62.827821][ T6494] ? arch_do_signal_or_restart+0x8f/0x7d0 [ 62.827837][ T6494] ? 0xffffffffff600000 [ 62.827851][ T6494] ? rcu_is_watching+0x12/0xc0 [ 62.827864][ T6494] ? lock_acquire+0x2cd/0x350 [ 62.827880][ T6494] ? __pfx___might_resched+0x10/0x10 [ 62.827895][ T6494] ? vfs_coredump+0x2b97/0x5670 [ 62.827905][ T6494] vfs_coredump+0x2b97/0x5670 [ 62.827921][ T6494] ? __pfx_vfs_coredump+0x10/0x10 [ 62.827933][ T6494] ? rcu_is_watching+0x12/0xc0 [ 62.827947][ T6494] ? unwind_next_frame+0x3f4/0x20a0 [ 62.827958][ T6494] ? rcu_is_watching+0x12/0xc0 [ 62.827972][ T6494] ? rcu_is_watching+0x12/0xc0 [ 62.827985][ T6494] ? unwind_next_frame+0x3f4/0x20a0 [ 62.827997][ T6494] ? rcu_is_watching+0x12/0xc0 [ 62.828011][ T6494] ? lock_release+0x201/0x2f0 [ 62.828027][ T6494] ? bpf_ksym_find+0x127/0x1c0 [ 62.828042][ T6494] ? __kernel_text_address+0xd/0x40 [ 62.828054][ T6494] ? unwind_get_return_address+0x59/0xa0 [ 62.828066][ T6494] ? arch_stack_walk+0xa6/0x100 [ 62.828081][ T6494] ? stack_trace_save+0x8e/0xc0 [ 62.828095][ T6494] ? __pfx_stack_trace_save+0x10/0x10 [ 62.828109][ T6494] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 62.828121][ T6494] ? stack_depot_save_flags+0x29/0x9c0 [ 62.828134][ T6494] ? arch_do_signal_or_restart+0x4bc/0x7d0 [ 62.828147][ T6494] ? irqentry_exit_to_user_mode+0x12a/0x270 [ 62.828159][ T6494] ? asm_exc_page_fault+0x26/0x30 [ 62.828179][ T6494] ? proc_coredump_connector+0x2d1/0x4f0 [ 62.828195][ T6494] ? __pfx_proc_coredump_connector+0x10/0x10 [ 62.828212][ T6494] ? rcu_is_watching+0x12/0xc0 [ 62.828226][ T6494] get_signal+0x22e3/0x26d0 [ 62.828241][ T6494] ? __pfx_get_signal+0x10/0x10 [ 62.828254][ T6494] ? force_sig_fault+0xc4/0x100 [ 62.828267][ T6494] ? __pfx_force_sig_fault+0x10/0x10 [ 62.828280][ T6494] ? fpu__clear_user_states+0xf4/0x1d0 [ 62.828295][ T6494] arch_do_signal_or_restart+0x8f/0x7d0 [ 62.828309][ T6494] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 62.828326][ T6494] irqentry_exit_to_user_mode+0x12a/0x270 [ 62.828338][ T6494] asm_exc_page_fault+0x26/0x30 [ 62.828348][ T6494] RIP: 0033:0x7f4c8304f927 [ 62.828357][ T6494] Code: 88 15 d2 5d e9 00 88 05 cf 5d e9 00 c3 50 48 8d 35 01 25 1c 00 48 8d 3d 07 25 1c 00 31 c0 e8 20 f7 ff ff 53 89 fb 48 83 ec 10 <64> 8b 04 25 94 ff ff ff 85 c0 74 2a 89 fe 31 c0 bf 3c 00 00 00 e8 [ 62.828368][ T6494] RSP: 002b:00007f4c83f391a0 EFLAGS: 00010206 [ 62.828377][ T6494] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f4c8318ebe9 [ 62.828383][ T6494] RDX: 00007f4c83f391c0 RSI: 00007f4c83f392f0 RDI: 000000000000000b [ 62.828390][ T6494] RBP: 00007f4c83211e19 R08: 0000000000000000 R09: 0000000000000000 [ 62.828417][ T6494] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 62.828424][ T6494] R13: 00007f4c833b6038 R14: 00007f4c833b5fa0 R15: 00007ffe927d9d78 [ 62.828434][ T6494] [ 62.828438][ T6494] memory: usage 306048kB, limit 307200kB, failcnt 51193 [ 63.016739][ T6494] memory+swap: usage 432112kB, limit 9007199254740988kB, failcnt 0 [ 63.020035][ T6494] kmem: usage 5812kB, limit 9007199254740988kB, failcnt 0 [ 63.025637][ T6494] Memory cgroup stats for /syz2: [ 63.025744][ T6494] cache 308490240 [ 63.029337][ T6494] rss 77824 [ 63.030659][ T6494] rss_huge 0 [ 63.033374][ T6494] shmem 308219904 [ 63.034914][ T6494] mapped_file 262144 [ 63.045580][ T6494] dirty 0 [ 63.046867][ T6494] writeback 0 [ 63.048376][ T6494] workingset_refault_anon 117 [ 63.050284][ T6494] workingset_refault_file 27845 [ 63.051777][ T6494] swap 127909888 [ 63.052914][ T6494] swapcached 86016 [ 63.059249][ T6494] pgpgin 222355 [ 63.062834][ T6839] __nla_validate_parse: 12 callbacks suppressed [ 63.062844][ T6839] netlink: 48 bytes leftover after parsing attributes in process `syz.3.249'. [ 63.106989][ T6494] pgpgout 147008 [ 63.108135][ T6494] pgfault 20618 [ 63.109226][ T6494] pgmajfault 739 [ 63.110346][ T6494] inactive_anon 61702144 [ 63.111664][ T6494] active_anon 245264384 [ 63.112952][ T6494] inactive_file 4096 [ 63.168951][ T6494] active_file 0 [ 63.170073][ T6494] unevictable 0 [ 63.171173][ T6494] hierarchical_memory_limit 314572800 [ 63.172779][ T6494] hierarchical_memsw_limit 9223372036854771712 [ 63.174782][ T6494] total_cache 308490240 [ 63.177021][ T6494] total_rss 77824 [ 63.178160][ T6494] total_rss_huge 0 [ 63.179303][ T6494] total_shmem 308219904 [ 63.180602][ T6494] total_mapped_file 262144 [ 63.181936][ T6494] total_dirty 0 [ 63.182984][ T6494] total_writeback 0 [ 63.186920][ T6494] total_workingset_refault_anon 117 [ 63.188551][ T6494] total_workingset_refault_file 27845 [ 63.190664][ T6494] total_swap 127909888 [ 63.191959][ T6494] total_swapcached 86016 [ 63.193395][ T6494] total_pgpgin 222355 [ 63.194655][ T6494] total_pgpgout 147008 [ 63.196601][ T6494] total_pgfault 20618 [ 63.197962][ T6494] total_pgmajfault 739 [ 63.199229][ T6494] total_inactive_anon 61702144 [ 63.200884][ T6494] total_active_anon 245264384 [ 63.202396][ T6494] total_inactive_file 4096 [ 63.204263][ T6494] total_active_file 0 [ 63.206939][ T6494] total_unevictable 0 [ 63.208224][ T6494] anon_cost 0 [ 63.209354][ T6494] file_cost 0 [ 63.210408][ T6494] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.138,pid=6476,uid=0 [ 63.214835][ T6494] Memory cgroup out of memory: Killed process 6476 (syz.2.138) total-vm:98252kB, anon-rss:960kB, file-rss:29576kB, shmem-rss:0kB, UID:0 pgtables:196kB oom_score_adj:1000 [ 63.286312][ T6851] netlink: 12 bytes leftover after parsing attributes in process `syz.1.255'. [ 63.311169][ T6474] syz.2.138 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 63.316257][ T6474] CPU: 3 UID: 0 PID: 6474 Comm: syz.2.138 Not tainted syzkaller #0 PREEMPT(full) [ 63.316273][ T6474] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 63.316280][ T6474] Call Trace: [ 63.316284][ T6474] [ 63.316288][ T6474] dump_stack_lvl+0x16c/0x1f0 [ 63.316320][ T6474] dump_header+0x101/0x930 [ 63.316332][ T6474] oom_kill_process+0x272/0xa40 [ 63.316344][ T6474] out_of_memory+0x350/0x1700 [ 63.316356][ T6474] ? __pfx_out_of_memory+0x10/0x10 [ 63.316369][ T6474] mem_cgroup_out_of_memory+0x118/0x130 [ 63.316407][ T6474] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 63.316425][ T6474] ? do_raw_spin_unlock+0x172/0x230 [ 63.316439][ T6474] try_charge_memcg+0x72b/0xd50 [ 63.316451][ T6474] ? __pfx_try_charge_memcg+0x10/0x10 [ 63.316462][ T6474] ? rcu_is_watching+0x12/0xc0 [ 63.316476][ T6474] ? rcu_is_watching+0x12/0xc0 [ 63.316489][ T6474] ? __folio_batch_add_and_move+0x602/0xc90 [ 63.316504][ T6474] charge_memcg+0x8a/0x230 [ 63.316515][ T6474] __mem_cgroup_charge+0x2b/0x1e0 [ 63.316528][ T6474] shmem_alloc_and_add_folio+0x514/0xc20 [ 63.316547][ T6474] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 63.316565][ T6474] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 63.316577][ T6474] shmem_get_folio_gfp+0x67f/0x1600 [ 63.316589][ T6474] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 63.316601][ T6474] shmem_write_begin+0x160/0x300 [ 63.316612][ T6474] ? __pfx_shmem_write_begin+0x10/0x10 [ 63.316633][ T6474] ? timestamp_truncate+0x21e/0x2d0 [ 63.316648][ T6474] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 63.316664][ T6474] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 63.316679][ T6474] generic_perform_write+0x3c2/0x900 [ 63.316698][ T6474] ? __pfx_generic_perform_write+0x10/0x10 [ 63.316715][ T6474] ? inode_needs_update_time.part.0+0x191/0x270 [ 63.316731][ T6474] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 63.316744][ T6474] shmem_file_write_iter+0x10e/0x140 [ 63.316758][ T6474] __kernel_write_iter+0x317/0xb10 [ 63.316769][ T6474] ? __pfx___kernel_write_iter+0x10/0x10 [ 63.316780][ T6474] ? __up_read+0x1f8/0x750 [ 63.316792][ T6474] ? lock_release+0x201/0x2f0 [ 63.316808][ T6474] ? copy_mc_enhanced_fast_string+0x6/0xf [ 63.316825][ T6474] dump_user_range+0x413/0xb70 [ 63.316838][ T6474] ? __pfx_dump_user_range+0x10/0x10 [ 63.316854][ T6474] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 63.316866][ T6474] ? __pfx_writenote+0x10/0x10 [ 63.316880][ T6474] elf_core_dump+0x2929/0x3b60 [ 63.316895][ T6474] ? __pfx_elf_core_dump+0x10/0x10 [ 63.316907][ T6474] ? kasan_save_stack+0x42/0x60 [ 63.316918][ T6474] ? kasan_save_stack+0x33/0x60 [ 63.316927][ T6474] ? kasan_save_track+0x14/0x30 [ 63.316937][ T6474] ? __kasan_kmalloc+0xaa/0xb0 [ 63.316947][ T6474] ? vfs_coredump+0x1dca/0x5670 [ 63.316957][ T6474] ? get_signal+0x22e3/0x26d0 [ 63.316971][ T6474] ? arch_do_signal_or_restart+0x8f/0x7d0 [ 63.316986][ T6474] ? 0xffffffffff600000 [ 63.317000][ T6474] ? rcu_is_watching+0x12/0xc0 [ 63.317014][ T6474] ? lock_acquire+0x2cd/0x350 [ 63.317030][ T6474] ? __pfx___might_resched+0x10/0x10 [ 63.317045][ T6474] ? vfs_coredump+0x2b97/0x5670 [ 63.317055][ T6474] vfs_coredump+0x2b97/0x5670 [ 63.317068][ T6474] ? __pfx_vfs_coredump+0x10/0x10 [ 63.317080][ T6474] ? rcu_is_watching+0x12/0xc0 [ 63.317093][ T6474] ? unwind_next_frame+0x3f4/0x20a0 [ 63.317105][ T6474] ? rcu_is_watching+0x12/0xc0 [ 63.317119][ T6474] ? rcu_is_watching+0x12/0xc0 [ 63.317133][ T6474] ? unwind_next_frame+0x3f4/0x20a0 [ 63.317144][ T6474] ? rcu_is_watching+0x12/0xc0 [ 63.317159][ T6474] ? lock_release+0x201/0x2f0 [ 63.317175][ T6474] ? bpf_ksym_find+0x127/0x1c0 [ 63.317189][ T6474] ? __kernel_text_address+0xd/0x40 [ 63.317202][ T6474] ? unwind_get_return_address+0x59/0xa0 [ 63.317214][ T6474] ? arch_stack_walk+0xa6/0x100 [ 63.317228][ T6474] ? stack_trace_save+0x8e/0xc0 [ 63.317243][ T6474] ? __pfx_stack_trace_save+0x10/0x10 [ 63.317257][ T6474] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 63.317268][ T6474] ? stack_depot_save_flags+0x29/0x9c0 [ 63.317282][ T6474] ? arch_do_signal_or_restart+0x4bc/0x7d0 [ 63.317295][ T6474] ? irqentry_exit_to_user_mode+0x12a/0x270 [ 63.317307][ T6474] ? asm_exc_page_fault+0x26/0x30 [ 63.317327][ T6474] ? proc_coredump_connector+0x2d1/0x4f0 [ 63.317344][ T6474] ? __pfx_proc_coredump_connector+0x10/0x10 [ 63.317361][ T6474] ? rcu_is_watching+0x12/0xc0 [ 63.317375][ T6474] get_signal+0x22e3/0x26d0 [ 63.317390][ T6474] ? __pfx_get_signal+0x10/0x10 [ 63.317404][ T6474] ? force_sig_fault+0xc4/0x100 [ 63.317416][ T6474] ? __pfx_force_sig_fault+0x10/0x10 [ 63.317430][ T6474] ? fpu__clear_user_states+0xf4/0x1d0 [ 63.317445][ T6474] arch_do_signal_or_restart+0x8f/0x7d0 [ 63.317459][ T6474] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 63.317476][ T6474] irqentry_exit_to_user_mode+0x12a/0x270 [ 63.317488][ T6474] asm_exc_page_fault+0x26/0x30 [ 63.317498][ T6474] RIP: 0033:0x7f4c8304f927 [ 63.317508][ T6474] Code: 88 15 d2 5d e9 00 88 05 cf 5d e9 00 c3 50 48 8d 35 01 25 1c 00 48 8d 3d 07 25 1c 00 31 c0 e8 20 f7 ff ff 53 89 fb 48 83 ec 10 <64> 8b 04 25 94 ff ff ff 85 c0 74 2a 89 fe 31 c0 bf 3c 00 00 00 e8 [ 63.317518][ T6474] RSP: 002b:00007f4c83f391a0 EFLAGS: 00010206 [ 63.317533][ T6474] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f4c8318ebe9 [ 63.317540][ T6474] RDX: 00007f4c83f391c0 RSI: 00007f4c83f392f0 RDI: 000000000000000b [ 63.317546][ T6474] RBP: 00007f4c83211e19 R08: 0000000000000000 R09: 0000000000000000 [ 63.317553][ T6474] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 63.317559][ T6474] R13: 00007f4c833b6038 R14: 00007f4c833b5fa0 R15: 00007ffe927d9d78 [ 63.317569][ T6474] [ 63.317584][ T6474] memory: usage 307200kB, limit 307200kB, failcnt 52296 [ 63.474417][ T6866] netlink: 28 bytes leftover after parsing attributes in process `syz.0.259'. [ 63.482333][ T6474] memory+swap: usage 431964kB, limit 9007199254740988kB, failcnt 0 [ 63.529350][ T6474] kmem: usage 5752kB, limit 9007199254740988kB, failcnt 0 [ 63.532019][ T6474] Memory cgroup stats for /syz2: [ 63.532110][ T6474] cache 300367872 [ 63.545504][ T6474] rss 126976 [ 63.546786][ T6474] rss_huge 0 [ 63.547808][ T6474] shmem 298819584 [ 63.549109][ T6474] mapped_file 9101312 [ 63.586441][ T6474] dirty 0 [ 63.587498][ T6474] writeback 0 [ 63.588556][ T6474] workingset_refault_anon 118 [ 63.590067][ T6474] workingset_refault_file 28748 [ 63.591564][ T6474] swap 124923904 [ 63.592688][ T6474] swapcached 49152 [ 63.593891][ T6474] pgpgin 228897 [ 63.594984][ T6474] pgpgout 155525 [ 63.596716][ T6474] pgfault 22758 [ 63.605910][ T6474] pgmajfault 748 [ 63.607064][ T6474] inactive_anon 292589568 [ 63.608472][ T6474] active_anon 5935104 [ 63.609714][ T6474] inactive_file 0 [ 63.610886][ T6474] active_file 1548288 [ 63.612137][ T6474] unevictable 0 [ 63.616260][ T6474] hierarchical_memory_limit 314572800 [ 63.623876][ T6474] hierarchical_memsw_limit 9223372036854771712 [ 63.635570][ T6474] total_cache 300367872 [ 63.636945][ T6474] total_rss 126976 [ 63.638612][ T6474] total_rss_huge 0 [ 63.639938][ T6474] total_shmem 298819584 [ 63.641258][ T6474] total_mapped_file 9101312 [ 63.642667][ T6474] total_dirty 0 [ 63.643730][ T6474] total_writeback 0 [ 63.644898][ T6474] total_workingset_refault_anon 118 [ 63.663963][ T6474] total_workingset_refault_file 28748 [ 63.669613][ T6474] total_swap 124923904 [ 63.674333][ T6879] netlink: 48 bytes leftover after parsing attributes in process `syz.3.261'. [ 63.688440][ T6474] total_swapcached 49152 [ 63.694901][ T6474] total_pgpgin 228897 [ 63.710486][ T6474] total_pgpgout 155525 [ 63.732840][ T6474] total_pgfault 22758 [ 63.760033][ T6474] total_pgmajfault 748 [ 63.764289][ T6474] total_inactive_anon 292589568 [ 63.770227][ T6474] total_active_anon 5935104 [ 63.775048][ T6474] total_inactive_file 0 [ 63.784361][ T6474] total_active_file 1548288 [ 63.788123][ T6474] total_unevictable 0 [ 63.791443][ T6474] anon_cost 0 [ 63.792872][ T6474] file_cost 0 [ 63.794229][ T6474] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.138,pid=6493,uid=0 [ 63.798123][ T6884] vim2m vim2m.0: Fourcc format (0x47524247) invalid. [ 63.801727][ T6474] Memory cgroup out of memory: Killed process 6493 (syz.2.138) total-vm:98252kB, anon-rss:960kB, file-rss:44552kB, shmem-rss:0kB, UID:0 pgtables:196kB oom_score_adj:1000 [ 63.911005][ T6888] binder: 6886:6888 ioctl c0306201 200000000480 returned -14 [ 63.913605][ T6888] netlink: 4 bytes leftover after parsing attributes in process `syz.1.263'. [ 63.991469][ T6481] syz.2.138 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 64.006445][ T6481] CPU: 2 UID: 0 PID: 6481 Comm: syz.2.138 Not tainted syzkaller #0 PREEMPT(full) [ 64.006462][ T6481] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 64.006469][ T6481] Call Trace: [ 64.006472][ T6481] [ 64.006477][ T6481] dump_stack_lvl+0x16c/0x1f0 [ 64.006491][ T6481] dump_header+0x101/0x930 [ 64.006503][ T6481] oom_kill_process+0x272/0xa40 [ 64.006515][ T6481] out_of_memory+0x350/0x1700 [ 64.006528][ T6481] ? __pfx_out_of_memory+0x10/0x10 [ 64.006540][ T6481] mem_cgroup_out_of_memory+0x118/0x130 [ 64.006556][ T6481] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 64.006572][ T6481] ? do_raw_spin_unlock+0x172/0x230 [ 64.006585][ T6481] try_charge_memcg+0x72b/0xd50 [ 64.006598][ T6481] ? __pfx_try_charge_memcg+0x10/0x10 [ 64.006609][ T6481] ? rcu_is_watching+0x12/0xc0 [ 64.006623][ T6481] ? rcu_is_watching+0x12/0xc0 [ 64.006636][ T6481] ? __folio_batch_add_and_move+0x602/0xc90 [ 64.006650][ T6481] charge_memcg+0x8a/0x230 [ 64.006661][ T6481] __mem_cgroup_charge+0x2b/0x1e0 [ 64.006674][ T6481] shmem_alloc_and_add_folio+0x514/0xc20 [ 64.006693][ T6481] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 64.006711][ T6481] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 64.006723][ T6481] shmem_get_folio_gfp+0x67f/0x1600 [ 64.006735][ T6481] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 64.006745][ T6481] ? inode_set_ctime_current+0xa3/0x8f0 [ 64.006760][ T6481] ? timestamp_truncate+0x21e/0x2d0 [ 64.006774][ T6481] shmem_write_begin+0x160/0x300 [ 64.006785][ T6481] ? __pfx_shmem_write_begin+0x10/0x10 [ 64.006795][ T6481] ? inode_set_ctime_current+0x2a1/0x8f0 [ 64.006809][ T6481] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 64.006826][ T6481] generic_perform_write+0x3c2/0x900 [ 64.006844][ T6481] ? __pfx_generic_perform_write+0x10/0x10 [ 64.006862][ T6481] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 64.006875][ T6481] ? generic_update_time+0xcf/0xf0 [ 64.006889][ T6481] ? mnt_put_write_access_file+0x45/0xf0 [ 64.006901][ T6481] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 64.006918][ T6481] shmem_file_write_iter+0x10e/0x140 [ 64.006931][ T6481] __kernel_write_iter+0x317/0xb10 [ 64.006943][ T6481] ? __pfx___kernel_write_iter+0x10/0x10 [ 64.006953][ T6481] ? __up_read+0x1f8/0x750 [ 64.006965][ T6481] ? lock_release+0x201/0x2f0 [ 64.006982][ T6481] dump_user_range+0x413/0xb70 [ 64.006995][ T6481] ? __pfx_dump_user_range+0x10/0x10 [ 64.007006][ T6481] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 64.007018][ T6481] ? __pfx_writenote+0x10/0x10 [ 64.007032][ T6481] elf_core_dump+0x2929/0x3b60 [ 64.007047][ T6481] ? __pfx_elf_core_dump+0x10/0x10 [ 64.007062][ T6481] ? 0xffffffffff600000 [ 64.007071][ T6481] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 64.007089][ T6481] ? rcu_is_watching+0x12/0xc0 [ 64.007102][ T6481] ? lock_acquire+0x2cd/0x350 [ 64.007118][ T6481] ? __pfx___might_resched+0x10/0x10 [ 64.007134][ T6481] ? vfs_coredump+0x2b97/0x5670 [ 64.007144][ T6481] vfs_coredump+0x2b97/0x5670 [ 64.007157][ T6481] ? __pfx_vfs_coredump+0x10/0x10 [ 64.007169][ T6481] ? rcu_is_watching+0x12/0xc0 [ 64.007182][ T6481] ? unwind_next_frame+0x3f4/0x20a0 [ 64.007195][ T6481] ? rcu_is_watching+0x12/0xc0 [ 64.007209][ T6481] ? rcu_is_watching+0x12/0xc0 [ 64.007222][ T6481] ? unwind_next_frame+0x3f4/0x20a0 [ 64.007234][ T6481] ? rcu_is_watching+0x12/0xc0 [ 64.007249][ T6481] ? lock_release+0x201/0x2f0 [ 64.007264][ T6481] ? bpf_ksym_find+0x127/0x1c0 [ 64.007279][ T6481] ? __kernel_text_address+0xd/0x40 [ 64.007291][ T6481] ? unwind_get_return_address+0x59/0xa0 [ 64.007303][ T6481] ? arch_stack_walk+0xa6/0x100 [ 64.007318][ T6481] ? stack_trace_save+0x8e/0xc0 [ 64.007333][ T6481] ? __pfx_stack_trace_save+0x10/0x10 [ 64.007347][ T6481] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 64.007358][ T6481] ? stack_depot_save_flags+0x29/0x9c0 [ 64.007371][ T6481] ? arch_do_signal_or_restart+0x4bc/0x7d0 [ 64.007385][ T6481] ? irqentry_exit_to_user_mode+0x12a/0x270 [ 64.007398][ T6481] ? asm_exc_page_fault+0x26/0x30 [ 64.007418][ T6481] ? proc_coredump_connector+0x2d1/0x4f0 [ 64.007435][ T6481] ? __pfx_proc_coredump_connector+0x10/0x10 [ 64.007452][ T6481] ? rcu_is_watching+0x12/0xc0 [ 64.007466][ T6481] get_signal+0x22e3/0x26d0 [ 64.007494][ T6481] ? __pfx_get_signal+0x10/0x10 [ 64.007508][ T6481] ? force_sig_fault+0xc4/0x100 [ 64.007521][ T6481] ? __pfx_force_sig_fault+0x10/0x10 [ 64.007533][ T6481] ? fpu__clear_user_states+0xf4/0x1d0 [ 64.007549][ T6481] arch_do_signal_or_restart+0x8f/0x7d0 [ 64.007563][ T6481] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 64.007581][ T6481] irqentry_exit_to_user_mode+0x12a/0x270 [ 64.007592][ T6481] asm_exc_page_fault+0x26/0x30 [ 64.007602][ T6481] RIP: 0033:0x7f4c8304f927 [ 64.007611][ T6481] Code: 88 15 d2 5d e9 00 88 05 cf 5d e9 00 c3 50 48 8d 35 01 25 1c 00 48 8d 3d 07 25 1c 00 31 c0 e8 20 f7 ff ff 53 89 fb 48 83 ec 10 <64> 8b 04 25 94 ff ff ff 85 c0 74 2a 89 fe 31 c0 bf 3c 00 00 00 e8 [ 64.007622][ T6481] RSP: 002b:00007f4c83f391a0 EFLAGS: 00010206 [ 64.007632][ T6481] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f4c8318ebe9 [ 64.007639][ T6481] RDX: 00007f4c83f391c0 RSI: 00007f4c83f392f0 RDI: 000000000000000b [ 64.007646][ T6481] RBP: 00007f4c83211e19 R08: 0000000000000000 R09: 0000000000000000 [ 64.007652][ T6481] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 64.007659][ T6481] R13: 00007f4c833b6038 R14: 00007f4c833b5fa0 R15: 00007ffe927d9d78 [ 64.007668][ T6481] [ 64.011071][ T6481] memory: usage 304592kB, limit 307200kB, failcnt 54267 [ 64.031058][ T6890] netlink: 12 bytes leftover after parsing attributes in process `syz.2.264'. [ 64.113599][ T6481] memory+swap: usage 432148kB, limit 9007199254740988kB, failcnt 0 [ 64.183959][ T6481] kmem: usage 5656kB, limit 9007199254740988kB, failcnt 0 [ 64.186203][ T6481] Memory cgroup stats for /syz2: [ 64.186270][ T6481] cache 307933184 [ 64.188967][ T6481] rss 204800 [ 64.189978][ T6481] rss_huge 0 [ 64.191017][ T6481] shmem 307855360 [ 64.192139][ T6481] mapped_file 0 [ 64.193224][ T6481] dirty 0 [ 64.194161][ T6481] writeback 0 [ 64.195219][ T6481] workingset_refault_anon 128 [ 64.196747][ T6481] workingset_refault_file 29900 [ 64.198256][ T6481] swap 127954944 [ 64.199359][ T6481] swapcached 40960 [ 64.200520][ T6481] pgpgin 248267 [ 64.201580][ T6481] pgpgout 173032 [ 64.202684][ T6481] pgfault 24627 [ 64.203764][ T6481] pgmajfault 792 [ 64.204858][ T6481] inactive_anon 69054464 [ 64.206201][ T6481] active_anon 239030272 [ 64.207508][ T6481] inactive_file 45056 [ 64.208746][ T6481] active_file 0 [ 64.209873][ T6481] unevictable 0 [ 64.210949][ T6481] hierarchical_memory_limit 314572800 [ 64.212573][ T6481] hierarchical_memsw_limit 9223372036854771712 [ 64.214426][ T6481] total_cache 307933184 [ 64.215764][ T6481] total_rss 204800 [ 64.216955][ T6481] total_rss_huge 0 [ 64.218105][ T6481] total_shmem 307855360 [ 64.219376][ T6481] total_mapped_file 0 [ 64.220583][ T6481] total_dirty 0 [ 64.221669][ T6481] total_writeback 0 [ 64.222877][ T6481] total_workingset_refault_anon 128 [ 64.224444][ T6481] total_workingset_refault_file 29900 [ 64.226169][ T6481] total_swap 127954944 [ 64.227868][ T6481] total_swapcached 40960 [ 64.229144][ T6481] total_pgpgin 248267 [ 64.230344][ T6481] total_pgpgout 173032 [ 64.231608][ T6481] total_pgfault 24627 [ 64.232833][ T6481] total_pgmajfault 792 [ 64.234099][ T6481] total_inactive_anon 69054464 [ 64.235675][ T6481] total_active_anon 239030272 [ 64.237165][ T6481] total_inactive_file 45056 [ 64.238556][ T6481] total_active_file 0 [ 64.239838][ T6481] total_unevictable 0 [ 64.241128][ T6481] anon_cost 0 [ 64.242222][ T6481] file_cost 0 [ 64.243298][ T6481] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.138,pid=6494,uid=0 [ 64.247948][ T6481] Memory cgroup out of memory: Killed process 6494 (syz.2.138) total-vm:98252kB, anon-rss:960kB, file-rss:44924kB, shmem-rss:0kB, UID:0 pgtables:184kB oom_score_adj:1000 [ 64.379372][ T6492] syz.2.138 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 64.382361][ T6492] CPU: 3 UID: 0 PID: 6492 Comm: syz.2.138 Not tainted syzkaller #0 PREEMPT(full) [ 64.382377][ T6492] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 64.382384][ T6492] Call Trace: [ 64.382388][ T6492] [ 64.382392][ T6492] dump_stack_lvl+0x16c/0x1f0 [ 64.382407][ T6492] dump_header+0x101/0x930 [ 64.382420][ T6492] oom_kill_process+0x272/0xa40 [ 64.382431][ T6492] out_of_memory+0x350/0x1700 [ 64.382444][ T6492] ? __pfx_out_of_memory+0x10/0x10 [ 64.382457][ T6492] mem_cgroup_out_of_memory+0x118/0x130 [ 64.382473][ T6492] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 64.382489][ T6492] ? do_raw_spin_unlock+0x172/0x230 [ 64.382503][ T6492] try_charge_memcg+0x72b/0xd50 [ 64.382515][ T6492] ? __pfx_try_charge_memcg+0x10/0x10 [ 64.382526][ T6492] ? rcu_is_watching+0x12/0xc0 [ 64.382540][ T6492] ? rcu_is_watching+0x12/0xc0 [ 64.382553][ T6492] ? sched_clock+0x38/0x60 [ 64.382571][ T6492] charge_memcg+0x8a/0x230 [ 64.382582][ T6492] __mem_cgroup_charge+0x2b/0x1e0 [ 64.382595][ T6492] shmem_alloc_and_add_folio+0x514/0xc20 [ 64.382615][ T6492] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 64.382637][ T6492] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 64.382649][ T6492] shmem_get_folio_gfp+0x67f/0x1600 [ 64.382661][ T6492] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 64.382673][ T6492] shmem_write_begin+0x160/0x300 [ 64.382684][ T6492] ? __pfx_shmem_write_begin+0x10/0x10 [ 64.382694][ T6492] ? timestamp_truncate+0x21e/0x2d0 [ 64.382708][ T6492] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 64.382724][ T6492] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 64.382738][ T6492] generic_perform_write+0x3c2/0x900 [ 64.382758][ T6492] ? __pfx_generic_perform_write+0x10/0x10 [ 64.382775][ T6492] ? inode_needs_update_time.part.0+0x191/0x270 [ 64.382790][ T6492] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 64.382804][ T6492] shmem_file_write_iter+0x10e/0x140 [ 64.382817][ T6492] __kernel_write_iter+0x317/0xb10 [ 64.382830][ T6492] ? __pfx___kernel_write_iter+0x10/0x10 [ 64.382840][ T6492] ? __up_read+0x1f8/0x750 [ 64.382852][ T6492] ? lock_release+0x201/0x2f0 [ 64.382868][ T6492] ? copy_mc_enhanced_fast_string+0x6/0xf [ 64.382885][ T6492] dump_user_range+0x413/0xb70 [ 64.382898][ T6492] ? __pfx_dump_user_range+0x10/0x10 [ 64.382910][ T6492] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 64.382922][ T6492] ? __pfx_writenote+0x10/0x10 [ 64.382936][ T6492] elf_core_dump+0x2929/0x3b60 [ 64.382952][ T6492] ? __pfx_elf_core_dump+0x10/0x10 [ 64.382964][ T6492] ? kasan_save_stack+0x42/0x60 [ 64.382975][ T6492] ? kasan_save_stack+0x33/0x60 [ 64.382984][ T6492] ? kasan_save_track+0x14/0x30 [ 64.382994][ T6492] ? __kasan_kmalloc+0xaa/0xb0 [ 64.383004][ T6492] ? vfs_coredump+0x1dca/0x5670 [ 64.383014][ T6492] ? get_signal+0x22e3/0x26d0 [ 64.383028][ T6492] ? arch_do_signal_or_restart+0x8f/0x7d0 [ 64.383044][ T6492] ? 0xffffffffff600000 [ 64.383060][ T6492] ? rcu_is_watching+0x12/0xc0 [ 64.383073][ T6492] ? lock_acquire+0x2cd/0x350 [ 64.383090][ T6492] ? __pfx___might_resched+0x10/0x10 [ 64.383105][ T6492] ? vfs_coredump+0x2b97/0x5670 [ 64.383115][ T6492] vfs_coredump+0x2b97/0x5670 [ 64.383128][ T6492] ? __pfx_vfs_coredump+0x10/0x10 [ 64.383141][ T6492] ? rcu_is_watching+0x12/0xc0 [ 64.383155][ T6492] ? unwind_next_frame+0x3f4/0x20a0 [ 64.383167][ T6492] ? rcu_is_watching+0x12/0xc0 [ 64.383181][ T6492] ? rcu_is_watching+0x12/0xc0 [ 64.383195][ T6492] ? unwind_next_frame+0x3f4/0x20a0 [ 64.383206][ T6492] ? rcu_is_watching+0x12/0xc0 [ 64.383221][ T6492] ? lock_release+0x201/0x2f0 [ 64.383238][ T6492] ? bpf_ksym_find+0x127/0x1c0 [ 64.383253][ T6492] ? __kernel_text_address+0xd/0x40 [ 64.383266][ T6492] ? unwind_get_return_address+0x59/0xa0 [ 64.383278][ T6492] ? arch_stack_walk+0xa6/0x100 [ 64.383293][ T6492] ? stack_trace_save+0x8e/0xc0 [ 64.383308][ T6492] ? __pfx_stack_trace_save+0x10/0x10 [ 64.383322][ T6492] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 64.383333][ T6492] ? stack_depot_save_flags+0x29/0x9c0 [ 64.383346][ T6492] ? arch_do_signal_or_restart+0x4bc/0x7d0 [ 64.383360][ T6492] ? irqentry_exit_to_user_mode+0x12a/0x270 [ 64.383372][ T6492] ? asm_exc_page_fault+0x26/0x30 [ 64.383403][ T6492] ? proc_coredump_connector+0x2d1/0x4f0 [ 64.383422][ T6492] ? __pfx_proc_coredump_connector+0x10/0x10 [ 64.383440][ T6492] ? rcu_is_watching+0x12/0xc0 [ 64.383454][ T6492] get_signal+0x22e3/0x26d0 [ 64.383469][ T6492] ? __pfx_get_signal+0x10/0x10 [ 64.383483][ T6492] ? force_sig_fault+0xc4/0x100 [ 64.383496][ T6492] ? __pfx_force_sig_fault+0x10/0x10 [ 64.383509][ T6492] ? fpu__clear_user_states+0xf4/0x1d0 [ 64.383525][ T6492] arch_do_signal_or_restart+0x8f/0x7d0 [ 64.383539][ T6492] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 64.383557][ T6492] irqentry_exit_to_user_mode+0x12a/0x270 [ 64.383569][ T6492] asm_exc_page_fault+0x26/0x30 [ 64.383579][ T6492] RIP: 0033:0x7f4c8304f927 [ 64.383588][ T6492] Code: 88 15 d2 5d e9 00 88 05 cf 5d e9 00 c3 50 48 8d 35 01 25 1c 00 48 8d 3d 07 25 1c 00 31 c0 e8 20 f7 ff ff 53 89 fb 48 83 ec 10 <64> 8b 04 25 94 ff ff ff 85 c0 74 2a 89 fe 31 c0 bf 3c 00 00 00 e8 [ 64.383599][ T6492] RSP: 002b:00007f4c83f391a0 EFLAGS: 00010206 [ 64.383609][ T6492] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f4c8318ebe9 [ 64.383616][ T6492] RDX: 00007f4c83f391c0 RSI: 00007f4c83f392f0 RDI: 000000000000000b [ 64.383623][ T6492] RBP: 00007f4c83211e19 R08: 0000000000000000 R09: 0000000000000000 [ 64.383632][ T6492] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 64.383639][ T6492] R13: 00007f4c833b6038 R14: 00007f4c833b5fa0 R15: 00007ffe927d9d78 [ 64.383648][ T6492] [ 64.383697][ T6492] memory: usage 307200kB, limit 307200kB, failcnt 57940 [ 64.538168][ T6906] netlink: 'syz.2.267': attribute type 5 has an invalid length. [ 64.538182][ T6906] netlink: 16 bytes leftover after parsing attributes in process `syz.2.267'. [ 64.561177][ T6492] memory+swap: usage 419864kB, limit 9007199254740988kB, failcnt 0 [ 64.563548][ T6492] kmem: usage 5588kB, limit 9007199254740988kB, failcnt 0 [ 64.565760][ T6492] Memory cgroup stats for /syz2: [ 64.565838][ T6492] cache 294117376 [ 64.568481][ T6492] rss 212992 [ 64.569487][ T6492] rss_huge 0 [ 64.570505][ T6492] shmem 292122624 [ 64.571685][ T6492] mapped_file 1232896 [ 64.572897][ T6492] dirty 0 [ 64.573822][ T6492] writeback 0 [ 64.575041][ T6492] workingset_refault_anon 135 [ 64.576659][ T6492] workingset_refault_file 33312 [ 64.578121][ T6492] swap 127889408 [ 64.579283][ T6492] swapcached 69632 [ 64.580402][ T6492] pgpgin 261180 [ 64.581474][ T6492] pgpgout 189245 [ 64.582581][ T6492] pgfault 25239 [ 64.583720][ T6492] pgmajfault 839 [ 64.584744][ T6908] netlink: 48 bytes leftover after parsing attributes in process `syz.0.270'. [ 64.584817][ T6492] inactive_anon 56573952 [ 64.588893][ T6492] active_anon 234487808 [ 64.590151][ T6492] inactive_file 0 [ 64.591329][ T6492] active_file 1859584 [ 64.592515][ T6492] unevictable 0 [ 64.593678][ T6492] hierarchical_memory_limit 314572800 [ 64.595472][ T6492] hierarchical_memsw_limit 9223372036854771712 [ 64.597511][ T6492] total_cache 294117376 [ 64.598939][ T6492] total_rss 212992 [ 64.600076][ T6492] total_rss_huge 0 [ 64.601231][ T6492] total_shmem 292122624 [ 64.602478][ T6492] total_mapped_file 1232896 [ 64.603831][ T6492] total_dirty 0 [ 64.604900][ T6492] total_writeback 0 [ 64.606130][ T6492] total_workingset_refault_anon 135 [ 64.607715][ T6492] total_workingset_refault_file 33312 [ 64.609344][ T6492] total_swap 127889408 [ 64.610564][ T6492] total_swapcached 69632 [ 64.611854][ T6492] total_pgpgin 261180 [ 64.613083][ T6492] total_pgpgout 189245 [ 64.614330][ T6492] total_pgfault 25239 [ 64.615627][ T6492] total_pgmajfault 839 [ 64.617069][ T6492] total_inactive_anon 56573952 [ 64.618503][ T6492] total_active_anon 234487808 [ 64.619914][ T6492] total_inactive_file 0 [ 64.641008][ T6492] total_active_file 1859584 [ 64.644789][ T6492] total_unevictable 0 [ 64.647030][ T6492] anon_cost 0 [ 64.649247][ T6492] file_cost 0 [ 64.651470][ T6492] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.138,pid=6484,uid=0 [ 64.662072][ T6492] Memory cgroup out of memory: Killed process 6484 (syz.2.138) total-vm:98252kB, anon-rss:960kB, file-rss:33476kB, shmem-rss:0kB, UID:0 pgtables:188kB oom_score_adj:1000 [ 64.767322][ T6913] netlink: 28 bytes leftover after parsing attributes in process `syz.1.273'. [ 64.782133][ T6475] syz.2.138 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 64.831590][ T6475] CPU: 2 UID: 0 PID: 6475 Comm: syz.2.138 Not tainted syzkaller #0 PREEMPT(full) [ 64.831607][ T6475] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 64.831614][ T6475] Call Trace: [ 64.831618][ T6475] [ 64.831622][ T6475] dump_stack_lvl+0x16c/0x1f0 [ 64.831637][ T6475] dump_header+0x101/0x930 [ 64.831654][ T6475] oom_kill_process+0x272/0xa40 [ 64.831665][ T6475] out_of_memory+0x350/0x1700 [ 64.831678][ T6475] ? __pfx_out_of_memory+0x10/0x10 [ 64.831691][ T6475] mem_cgroup_out_of_memory+0x118/0x130 [ 64.831707][ T6475] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 64.831723][ T6475] ? do_raw_spin_unlock+0x172/0x230 [ 64.831737][ T6475] try_charge_memcg+0x72b/0xd50 [ 64.831749][ T6475] ? __pfx_try_charge_memcg+0x10/0x10 [ 64.831760][ T6475] ? rcu_is_watching+0x12/0xc0 [ 64.831774][ T6475] ? rcu_is_watching+0x12/0xc0 [ 64.831787][ T6475] ? __folio_batch_add_and_move+0x602/0xc90 [ 64.831801][ T6475] charge_memcg+0x8a/0x230 [ 64.831812][ T6475] __mem_cgroup_charge+0x2b/0x1e0 [ 64.831825][ T6475] shmem_alloc_and_add_folio+0x514/0xc20 [ 64.831845][ T6475] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 64.831864][ T6475] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 64.831876][ T6475] shmem_get_folio_gfp+0x67f/0x1600 [ 64.831887][ T6475] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 64.831899][ T6475] shmem_write_begin+0x160/0x300 [ 64.831910][ T6475] ? __pfx_shmem_write_begin+0x10/0x10 [ 64.831920][ T6475] ? timestamp_truncate+0x21e/0x2d0 [ 64.831934][ T6475] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 64.831950][ T6475] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 64.831964][ T6475] generic_perform_write+0x3c2/0x900 [ 64.831983][ T6475] ? __pfx_generic_perform_write+0x10/0x10 [ 64.832001][ T6475] ? inode_needs_update_time.part.0+0x191/0x270 [ 64.832017][ T6475] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 64.832030][ T6475] shmem_file_write_iter+0x10e/0x140 [ 64.832043][ T6475] __kernel_write_iter+0x317/0xb10 [ 64.832055][ T6475] ? __pfx___kernel_write_iter+0x10/0x10 [ 64.832066][ T6475] ? __up_read+0x1f8/0x750 [ 64.832078][ T6475] ? lock_release+0x201/0x2f0 [ 64.832095][ T6475] dump_user_range+0x413/0xb70 [ 64.832108][ T6475] ? __pfx_dump_user_range+0x10/0x10 [ 64.832119][ T6475] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 64.832132][ T6475] ? __pfx_writenote+0x10/0x10 [ 64.832145][ T6475] elf_core_dump+0x2929/0x3b60 [ 64.832161][ T6475] ? __pfx_elf_core_dump+0x10/0x10 [ 64.832173][ T6475] ? kasan_save_stack+0x42/0x60 [ 64.832183][ T6475] ? kasan_save_stack+0x33/0x60 [ 64.832193][ T6475] ? kasan_save_track+0x14/0x30 [ 64.832203][ T6475] ? __kasan_kmalloc+0xaa/0xb0 [ 64.832212][ T6475] ? vfs_coredump+0x1dca/0x5670 [ 64.832223][ T6475] ? get_signal+0x22e3/0x26d0 [ 64.832236][ T6475] ? arch_do_signal_or_restart+0x8f/0x7d0 [ 64.832251][ T6475] ? 0xffffffffff600000 [ 64.832266][ T6475] ? rcu_is_watching+0x12/0xc0 [ 64.832279][ T6475] ? lock_acquire+0x2cd/0x350 [ 64.832295][ T6475] ? __pfx___might_resched+0x10/0x10 [ 64.832310][ T6475] ? vfs_coredump+0x2b97/0x5670 [ 64.832320][ T6475] vfs_coredump+0x2b97/0x5670 [ 64.832333][ T6475] ? __pfx_vfs_coredump+0x10/0x10 [ 64.832345][ T6475] ? rcu_is_watching+0x12/0xc0 [ 64.832359][ T6475] ? unwind_next_frame+0x3f4/0x20a0 [ 64.832371][ T6475] ? rcu_is_watching+0x12/0xc0 [ 64.832403][ T6475] ? rcu_is_watching+0x12/0xc0 [ 64.832417][ T6475] ? unwind_next_frame+0x3f4/0x20a0 [ 64.832428][ T6475] ? rcu_is_watching+0x12/0xc0 [ 64.832443][ T6475] ? lock_release+0x201/0x2f0 [ 64.832459][ T6475] ? bpf_ksym_find+0x127/0x1c0 [ 64.832474][ T6475] ? __kernel_text_address+0xd/0x40 [ 64.832486][ T6475] ? unwind_get_return_address+0x59/0xa0 [ 64.832499][ T6475] ? arch_stack_walk+0xa6/0x100 [ 64.832513][ T6475] ? stack_trace_save+0x8e/0xc0 [ 64.832528][ T6475] ? __pfx_stack_trace_save+0x10/0x10 [ 64.832542][ T6475] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 64.832553][ T6475] ? stack_depot_save_flags+0x29/0x9c0 [ 64.832566][ T6475] ? arch_do_signal_or_restart+0x4bc/0x7d0 [ 64.832579][ T6475] ? irqentry_exit_to_user_mode+0x12a/0x270 [ 64.832591][ T6475] ? asm_exc_page_fault+0x26/0x30 [ 64.832612][ T6475] ? proc_coredump_connector+0x2d1/0x4f0 [ 64.832629][ T6475] ? __pfx_proc_coredump_connector+0x10/0x10 [ 64.832650][ T6475] ? rcu_is_watching+0x12/0xc0 [ 64.832664][ T6475] get_signal+0x22e3/0x26d0 [ 64.832679][ T6475] ? __pfx_get_signal+0x10/0x10 [ 64.832693][ T6475] ? force_sig_fault+0xc4/0x100 [ 64.832706][ T6475] ? __pfx_force_sig_fault+0x10/0x10 [ 64.832718][ T6475] ? fpu__clear_user_states+0xf4/0x1d0 [ 64.832734][ T6475] arch_do_signal_or_restart+0x8f/0x7d0 [ 64.832748][ T6475] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 64.832766][ T6475] irqentry_exit_to_user_mode+0x12a/0x270 [ 64.832778][ T6475] asm_exc_page_fault+0x26/0x30 [ 64.832787][ T6475] RIP: 0033:0x7f4c8304f927 [ 64.832797][ T6475] Code: 88 15 d2 5d e9 00 88 05 cf 5d e9 00 c3 50 48 8d 35 01 25 1c 00 48 8d 3d 07 25 1c 00 31 c0 e8 20 f7 ff ff 53 89 fb 48 83 ec 10 <64> 8b 04 25 94 ff ff ff 85 c0 74 2a 89 fe 31 c0 bf 3c 00 00 00 e8 [ 64.832808][ T6475] RSP: 002b:00007f4c83f391a0 EFLAGS: 00010206 [ 64.832817][ T6475] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f4c8318ebe9 [ 64.832824][ T6475] RDX: 00007f4c83f391c0 RSI: 00007f4c83f392f0 RDI: 000000000000000b [ 64.832831][ T6475] RBP: 00007f4c83211e19 R08: 0000000000000000 R09: 0000000000000000 [ 64.832837][ T6475] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 64.832844][ T6475] R13: 00007f4c833b6038 R14: 00007f4c833b5fa0 R15: 00007ffe927d9d78 [ 64.832853][ T6475] [ 64.832857][ T6475] memory: usage 302420kB, limit 307200kB, failcnt 62125 [ 64.957122][ T6924] netlink: 12 bytes leftover after parsing attributes in process `syz.3.277'. [ 64.959136][ T6475] memory+swap: usage 432032kB, limit 9007199254740988kB, failcnt 0 [ 65.009491][ T6475] kmem: usage 5048kB, limit 9007199254740988kB, failcnt 0 [ 65.011610][ T6475] Memory cgroup stats for /syz2: [ 65.011691][ T6475] cache 308817920 [ 65.014437][ T6475] rss 212992 [ 65.015529][ T6475] rss_huge 0 [ 65.016549][ T6475] shmem 308817920 [ 65.017709][ T6475] mapped_file 0 [ 65.018763][ T6475] dirty 0 [ 65.019684][ T6475] writeback 20480 [ 65.021078][ T6475] workingset_refault_anon 192 [ 65.022627][ T6475] workingset_refault_file 34349 [ 65.024144][ T6475] swap 127815680 [ 65.025383][ T6475] swapcached 180224 [ 65.026653][ T6475] pgpgin 275548 [ 65.027743][ T6475] pgpgout 200077 [ 65.028858][ T6475] pgfault 25818 [ 65.029928][ T6475] pgmajfault 899 [ 65.031032][ T6475] inactive_anon 233672704 [ 65.032569][ T6475] active_anon 75157504 [ 65.034133][ T6475] inactive_file 0 [ 65.035697][ T6475] active_file 0 [ 65.036754][ T6475] unevictable 0 [ 65.037821][ T6475] hierarchical_memory_limit 314572800 [ 65.039370][ T6475] hierarchical_memsw_limit 9223372036854771712 [ 65.041271][ T6475] total_cache 308817920 [ 65.042617][ T6475] total_rss 212992 [ 65.043748][ T6475] total_rss_huge 0 [ 65.044898][ T6475] total_shmem 308817920 [ 65.046597][ T6475] total_mapped_file 0 [ 65.047848][ T6475] total_dirty 0 [ 65.048949][ T6475] total_writeback 20480 [ 65.050224][ T6475] total_workingset_refault_anon 192 [ 65.051825][ T6475] total_workingset_refault_file 34349 [ 65.053629][ T6475] total_swap 127815680 [ 65.054873][ T6475] total_swapcached 180224 [ 65.056325][ T6475] total_pgpgin 275548 [ 65.057567][ T6475] total_pgpgout 200077 [ 65.058806][ T6475] total_pgfault 25818 [ 65.059996][ T6475] total_pgmajfault 899 [ 65.061249][ T6475] total_inactive_anon 233672704 [ 65.062727][ T6475] total_active_anon 75157504 [ 65.064228][ T6475] total_inactive_file 0 [ 65.065513][ T6475] total_active_file 0 [ 65.066721][ T6475] total_unevictable 0 [ 65.067936][ T6475] anon_cost 0 [ 65.068951][ T6475] file_cost 0 [ 65.069993][ T6475] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.138,pid=6492,uid=0 [ 65.074578][ T6475] Memory cgroup out of memory: Killed process 6492 (syz.2.138) total-vm:98252kB, anon-rss:1088kB, file-rss:39772kB, shmem-rss:0kB, UID:0 pgtables:164kB oom_score_adj:1000 [ 65.103017][ T40] kauditd_printk_skb: 47 callbacks suppressed [ 65.103029][ T40] audit: type=1326 audit(1755691872.304:50462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.0.279" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1057d8ebe9 code=0x7ffc0000 [ 65.122905][ T40] audit: type=1326 audit(1755691872.304:50463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.0.279" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1057d8ebe9 code=0x7ffc0000 [ 65.131369][ T40] audit: type=1326 audit(1755691872.304:50464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.0.279" exe="/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7f1057d8ebe9 code=0x7ffc0000 [ 65.139802][ T40] audit: type=1326 audit(1755691872.304:50465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.0.279" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1057d8ebe9 code=0x7ffc0000 [ 65.153109][ T40] audit: type=1326 audit(1755691872.304:50466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.0.279" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1057d8ebe9 code=0x7ffc0000 [ 65.162025][ T40] audit: type=1326 audit(1755691872.314:50467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.0.279" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1057d8ebe9 code=0x7ffc0000 [ 65.171634][ T40] audit: type=1400 audit(1755691872.314:50468): avc: denied { write } for pid=6930 comm="syz.0.279" name="mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1 [ 65.182590][ T40] audit: type=1400 audit(1755691872.314:50469): avc: denied { open } for pid=6930 comm="syz.0.279" path="/dev/input/mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1 [ 65.195786][ T40] audit: type=1326 audit(1755691872.374:50470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.0.279" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1057d8ebe9 code=0x7ffc0000 [ 65.207619][ T40] audit: type=1326 audit(1755691872.374:50471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.0.279" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1057d8ebe9 code=0x7ffc0000 [ 65.222701][ T6480] syz.2.138 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 65.236646][ T6480] CPU: 0 UID: 0 PID: 6480 Comm: syz.2.138 Not tainted syzkaller #0 PREEMPT(full) [ 65.236680][ T6480] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 65.236691][ T6480] Call Trace: [ 65.236696][ T6480] [ 65.236702][ T6480] dump_stack_lvl+0x16c/0x1f0 [ 65.236726][ T6480] dump_header+0x101/0x930 [ 65.236747][ T6480] oom_kill_process+0x272/0xa40 [ 65.236766][ T6480] out_of_memory+0x350/0x1700 [ 65.236786][ T6480] ? __pfx_out_of_memory+0x10/0x10 [ 65.236806][ T6480] mem_cgroup_out_of_memory+0x118/0x130 [ 65.236830][ T6480] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 65.236855][ T6480] ? do_raw_spin_unlock+0x172/0x230 [ 65.236876][ T6480] try_charge_memcg+0x72b/0xd50 [ 65.236894][ T6480] ? policy_nodemask+0xea/0x4e0 [ 65.236913][ T6480] ? __pfx_try_charge_memcg+0x10/0x10 [ 65.236930][ T6480] ? rcu_is_watching+0x12/0xc0 [ 65.236951][ T6480] ? rcu_is_watching+0x12/0xc0 [ 65.236971][ T6480] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 65.236993][ T6480] charge_memcg+0x8a/0x230 [ 65.237010][ T6480] __mem_cgroup_charge+0x2b/0x1e0 [ 65.237031][ T6480] filemap_add_folio+0x88/0x220 [ 65.237050][ T6480] ? __pfx_filemap_add_folio+0x10/0x10 [ 65.237072][ T6480] __filemap_get_folio+0x510/0xc30 [ 65.237092][ T6480] ? lock_release+0x201/0x2f0 [ 65.237117][ T6480] filemap_fault+0x661/0x2930 [ 65.237138][ T6480] ? __pfx_filemap_fault+0x10/0x10 [ 65.237159][ T6480] ? const_folio_flags+0x5b/0x100 [ 65.237176][ T6480] ? __pfx_filemap_map_pages+0x10/0x10 [ 65.237193][ T6480] __do_fault+0x10d/0x490 [ 65.237211][ T6480] ? __pfx_filemap_map_pages+0x10/0x10 [ 65.237227][ T6480] do_pte_missing+0xf50/0x3ba0 [ 65.237250][ T6480] ? __handle_mm_fault+0x14fd/0x2a50 [ 65.237274][ T6480] ? rcu_is_watching+0x12/0xc0 [ 65.237294][ T6480] ? lock_release+0x201/0x2f0 [ 65.237318][ T6480] __handle_mm_fault+0x152a/0x2a50 [ 65.237346][ T6480] ? __pfx___handle_mm_fault+0x10/0x10 [ 65.237369][ T6480] ? __pte_offset_map_lock+0x174/0x310 [ 65.237391][ T6480] ? follow_page_pte.constprop.0+0x5cf/0x1390 [ 65.237415][ T6480] handle_mm_fault+0x589/0xd10 [ 65.237442][ T6480] __get_user_pages+0x551/0x34a0 [ 65.237467][ T6480] ? rcu_is_watching+0x12/0xc0 [ 65.237487][ T6480] ? __pfx___get_user_pages+0x10/0x10 [ 65.237509][ T6480] ? __kernel_write_iter+0x5a5/0xb10 [ 65.237528][ T6480] get_dump_page+0x257/0x3d0 [ 65.237551][ T6480] ? __pfx_get_dump_page+0x10/0x10 [ 65.237572][ T6480] ? lock_release+0x201/0x2f0 [ 65.237596][ T6480] ? copy_mc_enhanced_fast_string+0x6/0xf [ 65.237621][ T6480] dump_user_range+0x195/0xb70 [ 65.237641][ T6480] ? __pfx_dump_user_range+0x10/0x10 [ 65.237683][ T6480] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 65.237704][ T6480] ? __pfx_writenote+0x10/0x10 [ 65.237725][ T6480] elf_core_dump+0x2929/0x3b60 [ 65.237749][ T6480] ? __pfx_elf_core_dump+0x10/0x10 [ 65.237768][ T6480] ? kasan_save_stack+0x42/0x60 [ 65.237785][ T6480] ? kasan_save_stack+0x33/0x60 [ 65.237801][ T6480] ? kasan_save_track+0x14/0x30 [ 65.237816][ T6480] ? __kasan_kmalloc+0xaa/0xb0 [ 65.237830][ T6480] ? vfs_coredump+0x1dca/0x5670 [ 65.237845][ T6480] ? get_signal+0x22e3/0x26d0 [ 65.237863][ T6480] ? arch_do_signal_or_restart+0x8f/0x7d0 [ 65.237885][ T6480] ? 0xffffffffff600000 [ 65.237909][ T6480] ? rcu_is_watching+0x12/0xc0 [ 65.237925][ T6480] ? lock_acquire+0x2cd/0x350 [ 65.237942][ T6480] ? __pfx___might_resched+0x10/0x10 [ 65.237957][ T6480] ? vfs_coredump+0x2b97/0x5670 [ 65.237967][ T6480] vfs_coredump+0x2b97/0x5670 [ 65.237980][ T6480] ? __pfx_vfs_coredump+0x10/0x10 [ 65.237992][ T6480] ? rcu_is_watching+0x12/0xc0 [ 65.238006][ T6480] ? unwind_next_frame+0x3f4/0x20a0 [ 65.238018][ T6480] ? rcu_is_watching+0x12/0xc0 [ 65.238032][ T6480] ? rcu_is_watching+0x12/0xc0 [ 65.238046][ T6480] ? unwind_next_frame+0x3f4/0x20a0 [ 65.238057][ T6480] ? rcu_is_watching+0x12/0xc0 [ 65.238072][ T6480] ? lock_release+0x201/0x2f0 [ 65.238088][ T6480] ? bpf_ksym_find+0x127/0x1c0 [ 65.238104][ T6480] ? __kernel_text_address+0xd/0x40 [ 65.238116][ T6480] ? unwind_get_return_address+0x59/0xa0 [ 65.238128][ T6480] ? arch_stack_walk+0xa6/0x100 [ 65.238143][ T6480] ? stack_trace_save+0x8e/0xc0 [ 65.238157][ T6480] ? __pfx_stack_trace_save+0x10/0x10 [ 65.238172][ T6480] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 65.238183][ T6480] ? stack_depot_save_flags+0x29/0x9c0 [ 65.238196][ T6480] ? arch_do_signal_or_restart+0x4bc/0x7d0 [ 65.238210][ T6480] ? irqentry_exit_to_user_mode+0x12a/0x270 [ 65.238222][ T6480] ? asm_exc_page_fault+0x26/0x30 [ 65.238242][ T6480] ? proc_coredump_connector+0x2d1/0x4f0 [ 65.238259][ T6480] ? __pfx_proc_coredump_connector+0x10/0x10 [ 65.238276][ T6480] ? rcu_is_watching+0x12/0xc0 [ 65.238290][ T6480] get_signal+0x22e3/0x26d0 [ 65.238306][ T6480] ? __pfx_get_signal+0x10/0x10 [ 65.238319][ T6480] ? force_sig_fault+0xc4/0x100 [ 65.238332][ T6480] ? __pfx_force_sig_fault+0x10/0x10 [ 65.238345][ T6480] ? fpu__clear_user_states+0xf4/0x1d0 [ 65.238361][ T6480] arch_do_signal_or_restart+0x8f/0x7d0 [ 65.238375][ T6480] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 65.238396][ T6480] irqentry_exit_to_user_mode+0x12a/0x270 [ 65.238412][ T6480] asm_exc_page_fault+0x26/0x30 [ 65.238429][ T6480] RIP: 0033:0x7f4c8304f927 [ 65.238442][ T6480] Code: 88 15 d2 5d e9 00 88 05 cf 5d e9 00 c3 50 48 8d 35 01 25 1c 00 48 8d 3d 07 25 1c 00 31 c0 e8 20 f7 ff ff 53 89 fb 48 83 ec 10 <64> 8b 04 25 94 ff ff ff 85 c0 74 2a 89 fe 31 c0 bf 3c 00 00 00 e8 [ 65.238459][ T6480] RSP: 002b:00007f4c83f391a0 EFLAGS: 00010206 [ 65.238474][ T6480] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f4c8318ebe9 [ 65.238486][ T6480] RDX: 00007f4c83f391c0 RSI: 00007f4c83f392f0 RDI: 000000000000000b [ 65.238497][ T6480] RBP: 00007f4c83211e19 R08: 0000000000000000 R09: 0000000000000000 [ 65.238507][ T6480] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 65.238517][ T6480] R13: 00007f4c833b6038 R14: 00007f4c833b5fa0 R15: 00007ffe927d9d78 [ 65.238533][ T6480] [ 65.238610][ T6480] memory: usage 307200kB, limit 307200kB, failcnt 64474 [ 65.248203][ T6939] netlink: 'syz.0.281': attribute type 5 has an invalid length. [ 65.249570][ T6480] memory+swap: usage 432040kB, limit 9007199254740988kB, failcnt 0 [ 65.276186][ T6941] binder: 6940:6941 ioctl 4018620d 0 returned -22 [ 65.277451][ T6480] kmem: usage 4844kB, limit 9007199254740988kB, failcnt 0 [ 65.429633][ T6480] Memory cgroup stats for /syz2: [ 65.429746][ T6480] cache 309268480 [ 65.433196][ T6480] rss 233472 [ 65.434501][ T6480] rss_huge 0 [ 65.436464][ T6480] shmem 309264384 [ 65.437976][ T6480] mapped_file 0 [ 65.439381][ T6480] dirty 0 [ 65.441149][ T6480] writeback 0 [ 65.442493][ T6480] workingset_refault_anon 199 [ 65.444337][ T6480] workingset_refault_file 36101 [ 65.446301][ T6480] swap 127836160 [ 65.447727][ T6480] swapcached 159744 [ 65.448919][ T6480] pgpgin 284162 [ 65.449997][ T6480] pgpgout 208585 [ 65.451363][ T6480] pgfault 26258 [ 65.452782][ T6480] pgmajfault 936 [ 65.454228][ T6480] inactive_anon 290869248 [ 65.455941][ T6480] active_anon 18690048 [ 65.457244][ T6480] inactive_file 4096 [ 65.458457][ T6480] active_file 0 [ 65.459546][ T6480] unevictable 0 [ 65.460802][ T6480] hierarchical_memory_limit 314572800 [ 65.462948][ T6480] hierarchical_memsw_limit 9223372036854771712 [ 65.465374][ T6480] total_cache 309268480 [ 65.467154][ T6480] total_rss 233472 [ 65.468653][ T6480] total_rss_huge 0 [ 65.470032][ T6480] total_shmem 309264384 [ 65.471365][ T6480] total_mapped_file 0 [ 65.472616][ T6480] total_dirty 0 [ 65.473716][ T6480] total_writeback 0 [ 65.474874][ T6480] total_workingset_refault_anon 199 [ 65.477157][ T6480] total_workingset_refault_file 36101 [ 65.478872][ T6480] total_swap 127836160 [ 65.480159][ T6480] total_swapcached 159744 [ 65.481896][ T6480] total_pgpgin 284162 [ 65.483531][ T6480] total_pgpgout 208585 [ 65.485219][ T6480] total_pgfault 26258 [ 65.486932][ T6480] total_pgmajfault 936 [ 65.488587][ T6480] total_inactive_anon 290869248 [ 65.490511][ T6480] total_active_anon 18690048 [ 65.492364][ T6480] total_inactive_file 4096 [ 65.494164][ T6480] total_active_file 0 [ 65.495899][ T6480] total_unevictable 0 [ 65.498610][ T6480] anon_cost 0 [ 65.499962][ T6480] file_cost 0 [ 65.501325][ T6480] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.138,pid=6516,uid=0 [ 65.506674][ T6480] Memory cgroup out of memory: Killed process 6516 (syz.2.138) total-vm:98252kB, anon-rss:960kB, file-rss:44516kB, shmem-rss:0kB, UID:0 pgtables:184kB oom_score_adj:1000 [ 65.507730][ T6944] Bluetooth: MGMT ver 1.23 [ 65.615489][ T6474] syz.2.138 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 65.621112][ T6474] CPU: 1 UID: 0 PID: 6474 Comm: syz.2.138 Not tainted syzkaller #0 PREEMPT(full) [ 65.621129][ T6474] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 65.621137][ T6474] Call Trace: [ 65.621140][ T6474] [ 65.621144][ T6474] dump_stack_lvl+0x16c/0x1f0 [ 65.621159][ T6474] dump_header+0x101/0x930 [ 65.621173][ T6474] oom_kill_process+0x272/0xa40 [ 65.621184][ T6474] out_of_memory+0x350/0x1700 [ 65.621197][ T6474] ? __pfx_out_of_memory+0x10/0x10 [ 65.621210][ T6474] mem_cgroup_out_of_memory+0x118/0x130 [ 65.621225][ T6474] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 65.621241][ T6474] ? do_raw_spin_unlock+0x172/0x230 [ 65.621256][ T6474] try_charge_memcg+0x72b/0xd50 [ 65.621268][ T6474] ? policy_nodemask+0xea/0x4e0 [ 65.621280][ T6474] ? __pfx_try_charge_memcg+0x10/0x10 [ 65.621291][ T6474] ? rcu_is_watching+0x12/0xc0 [ 65.621305][ T6474] ? rcu_is_watching+0x12/0xc0 [ 65.621318][ T6474] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 65.621332][ T6474] charge_memcg+0x8a/0x230 [ 65.621343][ T6474] __mem_cgroup_charge+0x2b/0x1e0 [ 65.621356][ T6474] filemap_add_folio+0x88/0x220 [ 65.621368][ T6474] ? __pfx_filemap_add_folio+0x10/0x10 [ 65.621382][ T6474] __filemap_get_folio+0x510/0xc30 [ 65.621394][ T6474] ? lock_release+0x201/0x2f0 [ 65.621411][ T6474] filemap_fault+0x661/0x2930 [ 65.621425][ T6474] ? __pfx_filemap_fault+0x10/0x10 [ 65.621438][ T6474] ? const_folio_flags+0x5b/0x100 [ 65.621450][ T6474] ? __pfx_filemap_map_pages+0x10/0x10 [ 65.621461][ T6474] __do_fault+0x10d/0x490 [ 65.621472][ T6474] ? __pfx_filemap_map_pages+0x10/0x10 [ 65.621483][ T6474] do_pte_missing+0xf50/0x3ba0 [ 65.621500][ T6474] ? __handle_mm_fault+0x14fd/0x2a50 [ 65.621516][ T6474] ? rcu_is_watching+0x12/0xc0 [ 65.621529][ T6474] ? lock_release+0x201/0x2f0 [ 65.621546][ T6474] __handle_mm_fault+0x152a/0x2a50 [ 65.621564][ T6474] ? __pfx___handle_mm_fault+0x10/0x10 [ 65.621581][ T6474] ? __pte_offset_map_lock+0x174/0x310 [ 65.621601][ T6474] ? follow_page_pte.constprop.0+0x5cf/0x1390 [ 65.621618][ T6474] handle_mm_fault+0x589/0xd10 [ 65.621635][ T6474] __get_user_pages+0x551/0x34a0 [ 65.621651][ T6474] ? rcu_is_watching+0x12/0xc0 [ 65.621664][ T6474] ? __pfx___get_user_pages+0x10/0x10 [ 65.621678][ T6474] ? __kernel_write_iter+0x5a5/0xb10 [ 65.621691][ T6474] get_dump_page+0x257/0x3d0 [ 65.621706][ T6474] ? __pfx_get_dump_page+0x10/0x10 [ 65.621721][ T6474] ? lock_release+0x201/0x2f0 [ 65.621737][ T6474] ? copy_mc_enhanced_fast_string+0x6/0xf [ 65.621754][ T6474] dump_user_range+0x195/0xb70 [ 65.621767][ T6474] ? __pfx_dump_user_range+0x10/0x10 [ 65.621778][ T6474] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 65.621792][ T6474] ? __pfx_writenote+0x10/0x10 [ 65.621806][ T6474] elf_core_dump+0x2929/0x3b60 [ 65.621821][ T6474] ? __pfx_elf_core_dump+0x10/0x10 [ 65.621833][ T6474] ? kasan_save_stack+0x42/0x60 [ 65.621844][ T6474] ? kasan_save_stack+0x33/0x60 [ 65.621853][ T6474] ? kasan_save_track+0x14/0x30 [ 65.621863][ T6474] ? __kasan_kmalloc+0xaa/0xb0 [ 65.621873][ T6474] ? vfs_coredump+0x1dca/0x5670 [ 65.621884][ T6474] ? get_signal+0x22e3/0x26d0 [ 65.621897][ T6474] ? arch_do_signal_or_restart+0x8f/0x7d0 [ 65.621913][ T6474] ? 0xffffffffff600000 [ 65.621928][ T6474] ? rcu_is_watching+0x12/0xc0 [ 65.621941][ T6474] ? lock_acquire+0x2cd/0x350 [ 65.621957][ T6474] ? __pfx___might_resched+0x10/0x10 [ 65.621973][ T6474] ? vfs_coredump+0x2b97/0x5670 [ 65.621983][ T6474] vfs_coredump+0x2b97/0x5670 [ 65.621996][ T6474] ? __pfx_vfs_coredump+0x10/0x10 [ 65.622008][ T6474] ? rcu_is_watching+0x12/0xc0 [ 65.622022][ T6474] ? unwind_next_frame+0x3f4/0x20a0 [ 65.622034][ T6474] ? rcu_is_watching+0x12/0xc0 [ 65.622048][ T6474] ? rcu_is_watching+0x12/0xc0 [ 65.622061][ T6474] ? unwind_next_frame+0x3f4/0x20a0 [ 65.622073][ T6474] ? rcu_is_watching+0x12/0xc0 [ 65.622088][ T6474] ? lock_release+0x201/0x2f0 [ 65.622104][ T6474] ? bpf_ksym_find+0x127/0x1c0 [ 65.622119][ T6474] ? __kernel_text_address+0xd/0x40 [ 65.622131][ T6474] ? unwind_get_return_address+0x59/0xa0 [ 65.622143][ T6474] ? arch_stack_walk+0xa6/0x100 [ 65.622157][ T6474] ? stack_trace_save+0x8e/0xc0 [ 65.622172][ T6474] ? __pfx_stack_trace_save+0x10/0x10 [ 65.622186][ T6474] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 65.622197][ T6474] ? stack_depot_save_flags+0x29/0x9c0 [ 65.622210][ T6474] ? arch_do_signal_or_restart+0x4bc/0x7d0 [ 65.622223][ T6474] ? irqentry_exit_to_user_mode+0x12a/0x270 [ 65.622235][ T6474] ? asm_exc_page_fault+0x26/0x30 [ 65.622255][ T6474] ? proc_coredump_connector+0x2d1/0x4f0 [ 65.622272][ T6474] ? __pfx_proc_coredump_connector+0x10/0x10 [ 65.622289][ T6474] ? rcu_is_watching+0x12/0xc0 [ 65.622303][ T6474] get_signal+0x22e3/0x26d0 [ 65.622318][ T6474] ? __pfx_get_signal+0x10/0x10 [ 65.622332][ T6474] ? force_sig_fault+0xc4/0x100 [ 65.622344][ T6474] ? __pfx_force_sig_fault+0x10/0x10 [ 65.622358][ T6474] ? fpu__clear_user_states+0xf4/0x1d0 [ 65.622373][ T6474] arch_do_signal_or_restart+0x8f/0x7d0 [ 65.622387][ T6474] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 65.622405][ T6474] irqentry_exit_to_user_mode+0x12a/0x270 [ 65.622417][ T6474] asm_exc_page_fault+0x26/0x30 [ 65.622427][ T6474] RIP: 0033:0x7f4c8304f927 [ 65.622436][ T6474] Code: 88 15 d2 5d e9 00 88 05 cf 5d e9 00 c3 50 48 8d 35 01 25 1c 00 48 8d 3d 07 25 1c 00 31 c0 e8 20 f7 ff ff 53 89 fb 48 83 ec 10 <64> 8b 04 25 94 ff ff ff 85 c0 74 2a 89 fe 31 c0 bf 3c 00 00 00 e8 [ 65.622448][ T6474] RSP: 002b:00007f4c83f391a0 EFLAGS: 00010206 [ 65.622457][ T6474] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f4c8318ebe9 [ 65.622464][ T6474] RDX: 00007f4c83f391c0 RSI: 00007f4c83f392f0 RDI: 000000000000000b [ 65.622471][ T6474] RBP: 00007f4c83211e19 R08: 0000000000000000 R09: 0000000000000000 [ 65.622477][ T6474] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 65.622484][ T6474] R13: 00007f4c833b6038 R14: 00007f4c833b5fa0 R15: 00007ffe927d9d78 [ 65.622494][ T6474] [ 65.622498][ T6474] memory: usage 307200kB, limit 307200kB, failcnt 65902 [ 65.790112][ T6474] memory+swap: usage 408592kB, limit 9007199254740988kB, failcnt 0 [ 65.792537][ T6474] kmem: usage 4800kB, limit 9007199254740988kB, failcnt 0 [ 65.794501][ T6474] Memory cgroup stats for /syz2: [ 65.794580][ T6474] cache 286793728 [ 65.797109][ T6474] rss 237568 [ 65.798004][ T6474] rss_huge 0 [ 65.798916][ T6474] shmem 286584832 [ 65.799977][ T6474] mapped_file 208896 [ 65.801191][ T6474] dirty 0 [ 65.802116][ T6474] writeback 0 [ 65.803812][ T6474] workingset_refault_anon 200 [ 65.805930][ T6474] workingset_refault_file 36160 [ 65.807346][ T6474] swap 126545920 [ 65.808383][ T6474] swapcached 180224 [ 65.809460][ T6474] pgpgin 286671 [ 65.810448][ T6474] pgpgout 216575 [ 65.811490][ T6474] pgfault 26415 [ 65.812629][ T6474] pgmajfault 943 [ 65.813669][ T6474] inactive_anon 90816512 [ 65.814859][ T6474] active_anon 195698688 [ 65.816433][ T6474] inactive_file 0 [ 65.817491][ T6474] active_file 208896 [ 65.818594][ T6474] unevictable 0 [ 65.819589][ T6474] hierarchical_memory_limit 314572800 [ 65.821113][ T6474] hierarchical_memsw_limit 9223372036854771712 [ 65.822913][ T6474] total_cache 286793728 [ 65.824095][ T6474] total_rss 237568 [ 65.825151][ T6474] total_rss_huge 0 [ 65.826561][ T6474] total_shmem 286584832 [ 65.828128][ T6474] total_mapped_file 208896 [ 65.829687][ T6474] total_dirty 0 [ 65.830768][ T6474] total_writeback 0 [ 65.831859][ T6474] total_workingset_refault_anon 200 [ 65.833532][ T6474] total_workingset_refault_file 36160 [ 65.835159][ T6474] total_swap 126545920 [ 65.836478][ T6474] total_swapcached 180224 [ 65.837773][ T6474] total_pgpgin 286671 [ 65.838929][ T6474] total_pgpgout 216575 [ 65.840089][ T6474] total_pgfault 26415 [ 65.841227][ T6474] total_pgmajfault 943 [ 65.842371][ T6474] total_inactive_anon 90816512 [ 65.843760][ T6474] total_active_anon 195698688 [ 65.845128][ T6474] total_inactive_file 0 [ 65.846776][ T6474] total_active_file 208896 [ 65.848037][ T6474] total_unevictable 0 [ 65.849225][ T6474] anon_cost 0 [ 65.850181][ T6474] file_cost 0 [ 65.851119][ T6474] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.138,pid=6490,uid=0 [ 65.855543][ T6474] Memory cgroup out of memory: Killed process 6490 (syz.2.138) total-vm:98252kB, anon-rss:960kB, file-rss:35276kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000 [ 66.347958][ T6975] syz.0.294 uses obsolete (PF_INET,SOCK_PACKET) [ 66.421502][ T6485] syz.2.138 (6485) used greatest stack depth: 18568 bytes left [ 66.548762][ T6986] openvswitch: netlink: nsh attribute has 65532 unknown bytes. [ 66.554558][ T6986] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 66.765703][ T7002] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0 [ 66.812308][ T7011] SELinux: policydb string length 14080 does not match expected length 8 [ 66.815147][ T7011] SELinux: failed to load policy [ 66.818344][ T7011] SELinux: policydb version 1158299258 does not match my version range 15-35 [ 66.821109][ T7011] SELinux: failed to load policy [ 67.025170][ T7050] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 67.027585][ T7050] IPv6: NLM_F_CREATE should be set when creating new route [ 67.029971][ T7050] IPv6: NLM_F_CREATE should be set when creating new route [ 67.032481][ T7050] IPv6: NLM_F_CREATE should be set when creating new route [ 67.035281][ T7050] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 67.114495][ T7064] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 67.218674][ T7087] sp0: Synchronizing with TNC [ 67.221371][ T7086] [U] ` [ 67.222485][ T7089] netlink: 'syz.0.338': attribute type 1 has an invalid length. [ 67.276577][ T7102] 9pnet_fd: p9_fd_create_tcp (7102): problem connecting socket to 127.0.0.1 [ 67.332256][ T7116] trusted_key: encrypted_key: master key parameter '4|Eg|B/'w@}g1[' is invalid [ 67.332608][ T7114] input: syz1 as /devices/virtual/input/input5 [ 67.395743][ T7129] SELinux: syz.0.352 (7129) set checkreqprot to 1. This is no longer supported. [ 67.411094][ T7132] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 67.518547][ T7148] netlink: 'syz.2.359': attribute type 3 has an invalid length. [ 67.523283][ T7148] FAT-fs (sr0): bogus number of reserved sectors [ 67.525295][ T7148] FAT-fs (sr0): Can't find a valid FAT filesystem [ 67.603973][ T7138] hugetlbfs: Unknown parameter 'uid@' [ 67.819060][ T7171] fuse: Unknown parameter 'D\r' [ 67.846827][ T7175] warning: `syz.0.368' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 67.985452][ T7188] mkiss: ax0: crc mode is auto. [ 67.991204][ T7188] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 67.993836][ T7188] overlayfs: missing 'lowerdir' [ 68.070119][ T7196] __nla_validate_parse: 26 callbacks suppressed [ 68.070133][ T7196] netlink: 8 bytes leftover after parsing attributes in process `syz.2.375'. [ 68.075164][ T7196] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7196 comm=syz.2.375 [ 68.152918][ T7199] netlink: 4 bytes leftover after parsing attributes in process `syz.3.376'. [ 68.177246][ T7199] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 68.275338][ T7206] netlink: 48 bytes leftover after parsing attributes in process `syz.3.378'. [ 68.356058][ T7210] netlink: 28 bytes leftover after parsing attributes in process `syz.3.380'. [ 68.402009][ T7214] netlink: 12 bytes leftover after parsing attributes in process `syz.1.382'. [ 68.627497][ T7225] loop6: detected capacity change from 0 to 63 [ 68.632405][ T6071] Buffer I/O error on dev loop6, logical block 0, async page read [ 68.635192][ T6071] Buffer I/O error on dev loop6, logical block 0, async page read [ 68.638056][ T6071] Buffer I/O error on dev loop6, logical block 0, async page read [ 68.640703][ T6071] Buffer I/O error on dev loop6, logical block 0, async page read [ 68.643419][ T6071] Buffer I/O error on dev loop6, logical block 0, async page read [ 68.654562][ T7227] exFAT-fs (nullb0): invalid boot record signature [ 68.657287][ T7227] exFAT-fs (nullb0): failed to read boot sector [ 68.659737][ T7227] exFAT-fs (nullb0): failed to recognize exfat type [ 68.683718][ T7229] netlink: 48 bytes leftover after parsing attributes in process `syz.1.388'. [ 68.790234][ T7235] netlink: 12 bytes leftover after parsing attributes in process `syz.0.391'. [ 68.798853][ T7235] 9pnet_fd: Insufficient options for proto=fd [ 68.817321][ T7238] netlink: 12 bytes leftover after parsing attributes in process `syz.1.392'. [ 68.870033][ T7241] netlink: 12 bytes leftover after parsing attributes in process `syz.1.393'. [ 68.899917][ T7195] delete_channel: no stack [ 68.958662][ T7260] netlink: 4 bytes leftover after parsing attributes in process `syz.2.397'. [ 69.122812][ T7282] trusted_key: syz.2.404 sent an empty control message without MSG_MORE. [ 69.143422][ T7284] netlink: 'syz.0.405': attribute type 10 has an invalid length. [ 69.144657][ T7288] tmpfs: Unknown parameter 'subj_type' [ 69.146631][ T7284] bridge0: port 3(team0) entered blocking state [ 69.150350][ T7284] bridge0: port 3(team0) entered disabled state [ 69.152413][ T7284] team0: entered allmulticast mode [ 69.154127][ T7284] team_slave_0: entered allmulticast mode [ 69.156601][ T7284] team_slave_1: entered allmulticast mode [ 69.164974][ T7284] team0: entered promiscuous mode [ 69.166707][ T7284] team_slave_0: entered promiscuous mode [ 69.169021][ T7284] team_slave_1: entered promiscuous mode [ 69.171114][ T7284] bridge0: port 3(team0) entered blocking state [ 69.173137][ T7284] bridge0: port 3(team0) entered forwarding state [ 69.193191][ T7292] netlink: 'syz.3.409': attribute type 6 has an invalid length. [ 69.198700][ T7296] netlink: 'syz.0.410': attribute type 4 has an invalid length. [ 69.383519][ T7315] netlink: 'syz.2.417': attribute type 10 has an invalid length. [ 69.674843][ T7343] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 69.892915][ T7361] vlan3: entered allmulticast mode [ 69.894614][ T7361] bridge0: entered allmulticast mode [ 69.896503][ T7361] bridge1: port 1(vlan3) entered blocking state [ 69.898582][ T7361] bridge1: port 1(vlan3) entered disabled state [ 69.901047][ T7361] vlan3: entered promiscuous mode [ 69.902646][ T7361] bridge0: entered promiscuous mode [ 70.020273][ T7366] tmpfs: Bad value for 'huge' [ 70.022896][ T7366] fuse: Bad value for 'fd' [ 70.056609][ T54] cfg80211: failed to load regulatory.db [ 70.114618][ T7377] capability: warning: `syz.0.438' uses 32-bit capabilities (legacy support in use) [ 70.118869][ T40] kauditd_printk_skb: 78 callbacks suppressed [ 70.118884][ T40] audit: type=1400 audit(1755691877.324:50550): avc: denied { bind } for pid=7374 comm="syz.0.438" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 70.132438][ T40] audit: type=1400 audit(1755691877.334:50551): avc: denied { read } for pid=7374 comm="syz.0.438" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 70.260154][ T40] audit: type=1400 audit(1755691877.464:50552): avc: denied { ioctl } for pid=7387 comm="syz.0.443" path="socket:[17028]" dev="sockfs" ino=17028 ioctlcmd=0x48df scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 70.269126][ T40] audit: type=1400 audit(1755691877.474:50553): avc: denied { getopt } for pid=7386 comm="syz.3.442" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 70.285116][ T7394] overlay: Unknown parameter 'smackfsroot' [ 70.285445][ T40] audit: type=1400 audit(1755691877.484:50554): avc: denied { mounton } for pid=7393 comm="syz.0.444" path="/bus" dev="ramfs" ino=18744 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1 [ 70.472760][ T40] audit: type=1400 audit(1755691877.674:50555): avc: denied { write } for pid=7421 comm="syz.0.454" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 70.472854][ T7422] random: crng reseeded on system resumption [ 70.481340][ T40] audit: type=1400 audit(1755691877.674:50556): avc: denied { open } for pid=7421 comm="syz.0.454" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 70.495773][ T40] audit: type=1326 audit(1755691877.694:50557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7421 comm="syz.0.454" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1057d8ebe9 code=0x0 [ 71.315173][ T7426] netlink: 'syz.1.455': attribute type 29 has an invalid length. [ 71.375696][ T7434] netlink: 'syz.0.458': attribute type 5 has an invalid length. [ 71.533328][ T7441] afs: Unknown parameter 'dynv/kvm' [ 71.555286][ T7441] SELinux: Context system_u:object_r:smartcard_device_t:s0 is not valid (left unmapped). [ 71.559199][ T40] audit: type=1400 audit(1755691878.764:50558): avc: denied { relabelto } for pid=7440 comm="syz.0.461" name="file0" dev="tmpfs" ino=669 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:smartcard_device_t:s0" [ 71.569842][ T40] audit: type=1400 audit(1755691878.764:50559): avc: denied { associate } for pid=7440 comm="syz.0.461" name="file0" dev="tmpfs" ino=669 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:smartcard_device_t:s0" [ 71.595539][ T53] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 71.681402][ T7446] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 71.683493][ T7446] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 71.686141][ T7446] vhci_hcd vhci_hcd.0: Device attached [ 71.689186][ T7447] vhci_hcd: connection closed [ 71.689518][ T61] vhci_hcd: stop threads [ 71.692476][ T61] vhci_hcd: release socket [ 71.693913][ T61] vhci_hcd: disconnect device [ 71.775589][ T53] usb 6-1: Using ep0 maxpacket: 8 [ 71.779193][ T53] usb 6-1: config 0 interface 0 has no altsetting 0 [ 71.782120][ T53] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 71.786364][ T53] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 71.791597][ T53] usb 6-1: config 0 descriptor?? [ 72.202468][ T53] mcp2221 0003:04D8:00DD.0003: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.1-1/input0 [ 72.263330][ T7455] overlay: Unknown parameter 'smackfstransmute' [ 72.437353][ T12] Bluetooth: hci4: Frame reassembly failed (-84) [ 72.467331][ T841] usb 6-1: USB disconnect, device number 2 [ 72.734240][ T7494] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7494 comm=syz.2.478 [ 73.023133][ T7511] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 73.071716][ T7519] binder: 7518:7519 ioctl 2285 200000001880 returned -22 [ 73.075852][ T7522] workqueue: Failed to create a rescuer kthread for wq "bond14": -EINTR [ 73.117631][ T7529] __nla_validate_parse: 32 callbacks suppressed [ 73.117644][ T7529] netlink: 12 bytes leftover after parsing attributes in process `syz.1.488'. [ 73.153431][ T7532] netlink: 48 bytes leftover after parsing attributes in process `syz.1.489'. [ 73.174106][ T7536] netlink: 'syz.1.491': attribute type 4 has an invalid length. [ 73.176641][ T7536] netlink: 8 bytes leftover after parsing attributes in process `syz.1.491'. [ 73.240950][ T7554] netlink: 12 bytes leftover after parsing attributes in process `syz.1.497'. [ 73.256086][ T7552] can0: slcan on ttyS3. [ 73.316827][ T7552] can0 (unregistered): slcan off ttyS3. [ 73.434552][ T7567] netlink: 48 bytes leftover after parsing attributes in process `syz.1.500'. [ 73.455943][ T7569] netlink: 'syz.1.501': attribute type 4 has an invalid length. [ 73.458565][ T7569] netlink: 8 bytes leftover after parsing attributes in process `syz.1.501'. [ 73.500257][ T7577] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000021: 0000 [#1] SMP KASAN NOPTI [ 73.504717][ T7577] KASAN: null-ptr-deref in range [0x0000000000000108-0x000000000000010f] [ 73.508341][ T7577] CPU: 0 UID: 0 PID: 7577 Comm: syz.1.503 Not tainted syzkaller #0 PREEMPT(full) [ 73.513228][ T7577] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 73.516618][ T7577] RIP: 0010:bcsp_recv+0x10a/0x17f0 [ 73.518269][ T7577] Code: 18 48 c1 e8 03 48 01 e8 48 89 04 24 48 8d 83 78 01 00 00 48 89 44 24 28 48 c1 e8 03 48 89 44 24 08 e8 ca 3f 41 f9 48 8b 04 24 <80> 38 00 0f 85 d1 12 00 00 4c 8b ab 08 01 00 00 31 ff 4c 89 ee e8 [ 73.524280][ T7577] RSP: 0018:ffffc9000493fbf0 EFLAGS: 00010293 [ 73.526230][ T7577] RAX: dffffc0000000021 RBX: 0000000000000000 RCX: ffffffff887a512a [ 73.528822][ T7577] RDX: ffff888031df8000 RSI: ffffffff887a5176 RDI: 0000000000000005 [ 73.531260][ T7577] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000 [ 73.533990][ T7577] R10: 0000000000000001 R11: 0000000000000001 R12: ffffc9000493fd88 [ 73.536551][ T7577] R13: ffffc9000493fd88 R14: 0000000000000001 R15: ffff888053514400 [ 73.539140][ T7577] FS: 00007fa99013c6c0(0000) GS:ffff8880d66bc000(0000) knlGS:0000000000000000 [ 73.542004][ T7577] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 73.544155][ T7577] CR2: 00007fa99013bf98 CR3: 0000000034a8b000 CR4: 0000000000352ef0 [ 73.546711][ T7577] Call Trace: [ 73.547881][ T7577] [ 73.548857][ T7577] ? __pfx_bcsp_recv+0x10/0x10 [ 73.550413][ T7577] ? rcu_is_watching+0x12/0xc0 [ 73.551972][ T7577] ? lock_acquire+0x2cd/0x350 [ 73.553573][ T7577] ? __pfx___might_resched+0x10/0x10 [ 73.555281][ T7577] hci_uart_tty_receive+0x251/0x7e0 [ 73.556991][ T7577] ? __pfx_hci_uart_tty_receive+0x10/0x10 [ 73.558821][ T7577] tty_ioctl+0x583/0x1680 [ 73.560232][ T7577] ? __pfx_tty_ioctl+0x10/0x10 [ 73.561801][ T7577] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 73.564004][ T7577] ? rcu_is_watching+0x12/0xc0 [ 73.565566][ T7577] ? __fget_files+0x204/0x3c0 [ 73.567104][ T7577] ? hook_file_ioctl_common+0x145/0x410 [ 73.568872][ T7577] ? selinux_file_ioctl+0x180/0x270 [ 73.570590][ T7577] ? selinux_file_ioctl+0xb4/0x270 [ 73.572252][ T7577] ? __pfx_tty_ioctl+0x10/0x10 [ 73.573848][ T7577] __x64_sys_ioctl+0x18b/0x210 [ 73.575410][ T7577] do_syscall_64+0xcd/0x4c0 [ 73.576935][ T7577] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 73.578884][ T7577] RIP: 0033:0x7fa98f38ebe9 [ 73.580383][ T7577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 73.587118][ T7577] RSP: 002b:00007fa99013c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 73.589935][ T7577] RAX: ffffffffffffffda RBX: 00007fa98f5b6090 RCX: 00007fa98f38ebe9 [ 73.592653][ T7577] RDX: 0000200000000180 RSI: 0000000000005412 RDI: 0000000000000003 [ 73.595388][ T7577] RBP: 00007fa98f411e19 R08: 0000000000000000 R09: 0000000000000000 [ 73.598062][ T7577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 73.600574][ T7577] R13: 00007fa98f5b6128 R14: 00007fa98f5b6090 R15: 00007fffa8fa0f98 [ 73.603067][ T7577] [ 73.604094][ T7577] Modules linked in: [ 73.605541][ T7577] ---[ end trace 0000000000000000 ]--- [ 73.607456][ T7577] RIP: 0010:bcsp_recv+0x10a/0x17f0 [ 73.609212][ T7577] Code: 18 48 c1 e8 03 48 01 e8 48 89 04 24 48 8d 83 78 01 00 00 48 89 44 24 28 48 c1 e8 03 48 89 44 24 08 e8 ca 3f 41 f9 48 8b 04 24 <80> 38 00 0f 85 d1 12 00 00 4c 8b ab 08 01 00 00 31 ff 4c 89 ee e8 [ 73.615304][ T7577] RSP: 0018:ffffc9000493fbf0 EFLAGS: 00010293 [ 73.617312][ T7577] RAX: dffffc0000000021 RBX: 0000000000000000 RCX: ffffffff887a512a [ 73.619871][ T7577] RDX: ffff888031df8000 RSI: ffffffff887a5176 RDI: 0000000000000005 [ 73.622429][ T7577] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000 [ 73.625047][ T7577] R10: 0000000000000001 R11: 0000000000000001 R12: ffffc9000493fd88 [ 73.627926][ T7577] R13: ffffc9000493fd88 R14: 0000000000000001 R15: ffff888053514400 [ 73.630411][ T7577] FS: 00007fa99013c6c0(0000) GS:ffff8880d66bc000(0000) knlGS:0000000000000000 [ 73.633365][ T7577] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 73.635531][ T7577] CR2: 00007fa99013bf98 CR3: 0000000034a8b000 CR4: 0000000000352ef0 [ 73.638042][ T7577] Kernel panic - not syncing: Fatal exception [ 73.640659][ T7577] Kernel Offset: disabled [ 73.642033][ T7577] Rebooting in 86400 seconds.. VM DIAGNOSIS: 12:11:20 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff856437c5 RDI=ffffffff9b10e020 RBP=ffffffff9b10dfe0 RSP=ffffc9000493f5f0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b R12=0000000000000000 R13=0000000000000066 R14=ffffffff9b10dfe0 R15=ffffffff85643760 RIP=ffffffff856437ef RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 00007fa99013c6c0 ffffffff 00c00000 GS =0000 ffff8880d66bc000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007fa99013bf98 CR3=0000000034a8b000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=0000000000000fff Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffa8fa14a6 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffa8fa14a6 00007fffa8fa14ac ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa98f412e46 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa98f412e53 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa98f412e4d ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa98f412e61 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa98f412ee7 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa98f412fc5 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa98f5874a8 00007fa98f5874a0 00007fa98f587498 00007fa98f587470 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9900ed100 00007fa98f587460 00007fa98f587478 00007fa98f5874c0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa98f5874b8 00007fa98f5874b0 00007fa98f5874a8 00007fa98f5874a0 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=ffffc90006a20000 RBX=ffff888029700000 RCX=ffffffff819bea27 RDX=1ffff110052e025a RSI=ffffffff86b37c7f RDI=0000000000000016 RBP=0000000000000080 RSP=ffffc900006a0eb0 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffffc900006a0ff8 R12=ffffffff90ab3da0 R13=dffffc0000000000 R14=ffff8880297012d0 R15=0000000000000000 RIP=ffffffff86b37ca7 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d67bc000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=0000000034b1a000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555587b7fbb0 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555587b59de2 0000555587b59c40 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555587b5b278 0000555587b5b000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 004aaa0002000700 786d74702f766564 2f01ffffffffffff ffffeb080b800322 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 040a480300048800 4c03000484004803 00020046031a0200 44031ffffffffe04 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 88003c0302208080 8082003a03000200 38033c0200360302 d802003403000484 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0030030202002e03 0002002c03000484 0028030004840024 0338048400200300 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 60908082001e0300 20808082001e0308 40a08082001c030a 40808082001c0320 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 aaaaaaaa01ffffff fffffffffff50800 0300040002800800 0b800401c7100008 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8004840018030000 0000000001ffffff fffffffffff3080c 0302d402000a03aa ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 60908082001e0300 20808082001e0308 40a08082001c030a 40808082001c0320 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 01000402d0c60800 0100000808060601 27f4060800000328 4080808090000410 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6239666666666666 66660a35322e7965 6b5f5f2062203036 3739303362396666 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3739303362396666 6666666666660a36 322e79656b5f5f20 6220306137393033 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6220303238393033 6239666666666666 66660a37322e7965 6b5f5f2062203065 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6220306365643033 6239666666666666 66660a302e79656b 5f5f206220303865 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 646e616820622030 3066643033623966 666666666666660a 302e79656b5f5f20 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2062203034666430 3362396666666666 6666660a64695f74 656e5f656b616873 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6530336239666666 66666666660a6c62 7468736168725f65 6b616873646e6168 info registers vcpu 2 CPU#2 RAX=000000000007f394 RBX=0000000000000002 RCX=ffffffff8b939c29 RDX=ffffed100d4c6656 RSI=ffffffff8c162800 RDI=ffffffff81913321 RBP=ffffed1003bd7910 RSP=ffffc90000187df8 R8 =0000000000000000 R9 =ffffed100d4c6655 R10=ffff88806a6332ab R11=0000000000000000 R12=0000000000000002 R13=ffff88801debc880 R14=ffffffff90ab4090 R15=0000000000000000 RIP=ffffffff8b93878f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d68bc000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007fa99011af98 CR3=000000002cfd5000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000818181f8 Opmask01=00000000003fffff Opmask02=0000000003bfffff Opmask03=0000000000400004 Opmask04=00000000ffffffff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055b2a865e140 000055b2a865e140 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055b2a8647910 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff06c7f1b20 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff06c7f1b20 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff0000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 737326c1db10b483 737326c48019be59 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9bf8c7039ccf2289 737373762859f534 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000003078 303d4e4f53414552 5f4b434f4c425f57 485f4c4c494b4652 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000d45 0d004e4f53414552 5f4b434f4c425f57 485f4c4c494b4652 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 366273752f312e64 63685f796d6d7564 2f6d726f6674616c 702f736563697665 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000002c1 0000000000000070 000000000000322d 6332692f7665642d ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 322e392d3533712d 63707276703a2939 3030322c39484349 2b35335128435064 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7261646e6174536e 703a554d45516e76 733a302e3072623a 343130322f31302f ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343064623a312b32 316f70627e322d33 2e36312e312d6e61 696265642d332e36 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000014100 000000000000303d 44440045525f5346 0054242044492065 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000068284 RBX=0000000000000003 RCX=ffffffff8b939c29 RDX=ffffed100d4e6656 RSI=ffffffff8c162800 RDI=ffffffff81913321 RBP=ffffed1003bda000 RSP=ffffc90000197df8 R8 =0000000000000000 R9 =ffffed100d4e6655 R10=ffff88806a7332ab R11=0000000000000000 R12=0000000000000003 R13=ffff88801ded0000 R14=ffffffff90ab4090 R15=0000000000000000 RIP=ffffffff8b93878f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d69bc000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055558bc26808 CR3=000000004e65d000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000080040001 Opmask01=0000000000000fff Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffa8fa1320 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffa8fa14a6 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffa8fa14a6 00007fffa8fa14ac ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa98f412e46 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa98f412e53 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa98f412e4d ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa98f412e61 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa98f412ee7 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa98f412fc5 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000