last executing test programs: 19.354426763s ago: executing program 2 (id=172): r0 = socket$alg(0x26, 0x5, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) bind$netlink(r2, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc) getsockopt$netlink(r2, 0x10e, 0x9, &(0x7f0000002440)=""/137, &(0x7f0000000040)=0x89) r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000400)=ANY=[@ANYRES64=r1, @ANYRES16=r3, @ANYBLOB="010000000000000000002c00000008005800000000000e0001006e657464657673696d0000000f0002006e657464657673696d300000080003003f000000"], 0x44}, 0x1, 0x0, 0x0, 0x44045}, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-aesni)\x00'}, 0x58) r4 = socket$igmp6(0xa, 0x3, 0x2) ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000000380)={0x3, 0x0, [{0x10000, 0x0, &(0x7f00000002c0)}, {0x1000, 0xc2, &(0x7f0000000740)=""/194}, {0x100000, 0xa9, &(0x7f0000000b40)=""/169}]}) recvmsg(r4, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x1) syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000680)={0x84, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_open_dev$char_usb(0xc, 0xb4, 0x0) fanotify_mark(0xffffffffffffffff, 0x1, 0x8001022, 0xffffffffffffff9c, 0x0) syz_emit_vhci(&(0x7f0000000200)=ANY=[@ANYRESOCT, @ANYRES64], 0xfe) r5 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r5, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @remote, 0x5}, 0xffffffffffffff8f) r6 = syz_open_dev$sndctrl(&(0x7f0000000240), 0x0, 0x3a140) umount2(&(0x7f0000000080)='./file0\x00', 0x1) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{0x1}, &(0x7f0000000100), &(0x7f0000000280)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1b, 0x2a, &(0x7f0000000e40)=ANY=[@ANYRES64=r1, @ANYRESHEX=r6, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000185a0000050000000000000000000000950000000000000018490000f8ffffff00000000000000001faa0000010000001811", @ANYRES8=0x0, @ANYRES8], &(0x7f0000000980)='GPL\x00', 0xfffffffe, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x90) socket$nl_xfrm(0x10, 0x3, 0x6) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @remote}, {0x0, @multicast}, 0x0, {0x2, 0x1400, @multicast2}}) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) write$binfmt_script(r8, &(0x7f0000000000), 0x208e24b) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x100000a, 0x5d032, 0xffffffffffffffff, 0x0) r9 = userfaultfd(0x801) ioctl$UFFDIO_API(r9, 0xc018aa3f, &(0x7f00000000c0)) 18.439800616s ago: executing program 2 (id=180): sendmsg$NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x34040045}, 0x0) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6000, 0x0) r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) mount$bind(0x0, &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x50009405, &(0x7f0000000180)) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r6, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @loopback}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}]}, 0x54}}, 0x0) sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) mkdirat$binderfs(0xffffffffffffff9c, &(0x7f00000019c0)='./binderfs2\x00', 0x1ff) mount$binderfs(0x0, &(0x7f0000001dc0)='./binderfs2\x00', &(0x7f0000001e00), 0x0, &(0x7f0000001e40)={[{@stats}]}) openat$binderfs(0xffffffffffffff9c, &(0x7f0000002500)='./binderfs2/binder0\x00', 0x10040, 0x0) close_range(r3, 0xffffffffffffffff, 0x0) 17.460008627s ago: executing program 2 (id=185): socket$nl_netfilter(0x10, 0x3, 0xc) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) mbind(&(0x7f00001fa000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x66, 0x2, 0x8, 0x42}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000140), &(0x7f0000000200)=""/137, 0x2}, 0x20) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpu.stat\x00', 0x26e1, 0x0) close(r3) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x13f}}, 0x2f) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r3, &(0x7f0000000040)={0x10, 0x30, 0xfa00, {0x0, 0x0, {0xa, 0x0, 0x0, @local}, r5}}, 0x38) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000ffb000/0x3000)=nil, 0x3000}, 0x4}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r6, 0x4048ae9b, &(0x7f0000000300)={0x4376ea830d5d549a}) ioctl$KVM_RUN(r6, 0xae80, 0x0) 16.869192271s ago: executing program 2 (id=187): r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000001280)=ANY=[@ANYBLOB="840100001900010000000000000000001d0109004d0010"], 0x184}}, 0x0) (fail_nth: 5) 16.789638662s ago: executing program 2 (id=188): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) write$uinput_user_dev(r0, &(0x7f0000000a80)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d0200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4], [0x0, 0x0, 0x0, 0x83edeeaf, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x40, 0x0, 0x0, 0xfffffffe]}, 0x45c) ioctl$UI_SET_RELBIT(r0, 0x40045566, 0x8) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x2) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x1) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_DEV_DESTROY(r0, 0x5502) 16.658558928s ago: executing program 2 (id=189): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newtaction={0x170, 0x30, 0xb, 0x0, 0x0, {}, [{0x15c, 0x1, [@m_ct={0x54, 0x1, 0x0, 0x0, {{0x7}, {0x2c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}, @TCA_CT_MARK={0x8, 0x5, 0x589}, @TCA_CT_MARK_MASK={0x8}]}, {0x4}, {0xc}, {0xc}}}, @m_skbedit={0x104, 0xd, 0x0, 0x0, {{0xc}, {0x4c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x7}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6}, @TCA_SKBEDIT_PRIORITY={0x8}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x1}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0x7, 0x2744bb6b6eba5f04}}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x8001}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0xfff3, 0xa}}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0xc, 0x7}}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0xff}]}, {0x8f, 0x6, "0e09d56ed9898d4bce85741b0bb3c8228318c125eccc84679b5b017161e7a699d2ea1094e00bfee787cbf4be1d78051684aba54ff5c436759b7a9c8535cba73b3451c04c057307c8b8019714d9da7bfea077eb38386cc70a4272935848e442a442ab378bd0b55feaba380dceb018ea31f869685923938ba34f809a8922e08112ec04f8aebdd7a9fd8e5061"}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x170}}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x80) socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_io_uring_setup(0x24f5, &(0x7f0000000080)={0x0, 0x426a, 0x10100, 0x3, 0x130, 0x0, r1}, &(0x7f0000000100), &(0x7f0000000000)) ioctl$SOUND_MIXER_READ_CAPS(r1, 0x80044dfc, &(0x7f0000000040)) r3 = socket$inet6(0xa, 0x40000080806, 0x0) r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$IOMMU_OPTION$IOMMU_OPTION_RLIMIT_MODE(r4, 0x3b87, &(0x7f00000003c0)={0x18, 0x0, 0x0, 0x0, 0x0, 0x1}) ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, 0x0}) ioctl$IOMMU_IOAS_MAP(r4, 0x3b85, &(0x7f0000000100)={0x28, 0x0, r5, 0x0, &(0x7f0000000180)="f1", 0x1}) listen(r3, 0x20000005) ioctl$BTRFS_IOC_LOGICAL_INO_V2(r3, 0xc038943b, 0x0) io_uring_enter(r2, 0x0, 0x400000, 0x1, 0x0, 0x0) io_uring_enter(r2, 0x52e, 0x0, 0x0, 0x0, 0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.stat\x00', 0x275a, 0x0) r7 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r6) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000600)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)=ANY=[@ANYBLOB='#', @ANYRES16=r8, @ANYBLOB="00042bbd7000ffdbdf25370000000c009900ad060000410000000800570006000000"], 0x28}}, 0x71e78be0c1a75b72) write$UHID_CREATE2(r6, &(0x7f00000001c0)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000005, 0x12, r6, 0x0) renameat2(r6, &(0x7f00000001c0)='./file0\x00', r1, &(0x7f0000000200)='./file0\x00', 0x2) 4.579632498s ago: executing program 3 (id=275): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) sendmmsg$inet(r0, &(0x7f0000001000)=[{{0x0, 0x0, 0x0}}], 0x1, 0x24000081) 4.485153126s ago: executing program 3 (id=276): socket$inet6_tcp(0xa, 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf7cf39e3100c8acaa47684f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d7559f3b14820ed58b15627c95aa0b784625704f07372c29184ff7f4a7c0000070015006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e000000000000041201baa80b0b8ed8fb1ec577c377f627daaf787a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bdeda7be586602d985430cea080000000000fb1a26abfb0767192361448279b05d96a703a660587a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aab926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb155481ef836eb0f8c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaed2b25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec0271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761036eafed1fb2b98b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe514283707c70600000000000000b7561301bb997316db01ee601f2c9659db9bc04f7089a660d8dcc3ae83169cf331efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a515d83129cd857c775f9e7d6101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbe3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562e00e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb2214209ed2d5d776e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b55ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f608ce27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e30400000000000000000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a95d32f46ed9bd1f00fb8191bbab2dc599dda61ee2010000294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bfe2777e808fcba821a00e8c5c39609ff854256cb490000000000c1fee30a3f7a85d1b2b458c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd210819203828b202779d386ed295f023c67d867014d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff00004043060000005dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df40600000000000000e9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b0600b805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1202000000b59fed817072a0da60160761fd3dffda0f7c742eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7000000000000000542954c167dd9b4acd946ffffffffffffffff1389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c9e281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b630500163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f700400fa0c61d5fe6d8ff353f631080405547d65375ae04f44f0c2543c772c5ccb137be7dc87746e1785a8214454d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b036e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e010000005a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb3985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1428c0805b4031a667e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a9cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab9100781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c1227c8bed10591958c906321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b863af34bac64c247672a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c39132a0f27080ece2a94c360b002c77f82662675a7713c7067081cac1599a998c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc215a18ca0265400abf38e90000000000000000008faf2cddffbfa66bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942ce18e57bb7f337df5435bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de286553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c03f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c872a4882d21db2046a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265441d513a1294b8439276394945d94a589708e32a1cb30a8b07b391201385e0b92ecbb7b13d7a87284164018ace6ce58a82c5de321452461089cdd69259f5390f5f508646a524490583c30630bedb47e158ad41c0a653e86a4f4f255cd2a6e95f33b586823aef5564d9de1f5bdd8c80e193f0597b8003860302cd243c00bc5a82c52afb115d16258d507937966bb89409d6d47b8b652d0761d7c72875ae1efb9bc7c6807c2d783e31fd9cd7e84d3d50d8fc44ab8ac9ccd2c0d42e3bd4c029241320446bbf47e23d1320de30fbdf7ed13f80c28fb5c13fccc2e3f73509bdcddad8a2fe48cdd61f2f43611704af64eed8b0cbbd08754f93b8f3d6347aad5cde1ccc5cbd5eaa87e52cea257c856a4af5243eeb5e89f0000000000000000f420df5e4c6d856b3d55e455c08110b2ef4255a38f81555e8e1f22d59c0bc3c9013e66a1f5bda1b695e1602c0afb5c35b2f68f3b151b1e869f40ff4d1bef5e926e1ff95f6321131e4cb797f53455a093a95e67605222d6acc29c46e5db1ef3b8b07e2169fb24ced4b3ae87ebeca06df93212e465bbd1a7e41df2e1a0d508f86cfc7a469ac682685c44692877d03c34c23a65d2677acc73b5d276fdebd685c9b7a079eae228d8426188cb19b083548f5f29e493ab079f33d1965dcbb165015c46998ad410d60cc65fcfa73bd65a43fc024455c4bf530d663976cf71490577251780ab6b1cf8d397444b5be575229f687a3d95ea6b2aa62fce8acb3d4a6a130b4fefa55d0c1d6f3fa448ee24e588e2965c9a442f0baf90923dda91a6850fb7b9c7f432b63001423fedcf053fa28024cc9a178a07042dabc07176fc524032c2edb340c9c18a83565c431aeb0c869683507255254430f90f61e4eca9c8fa98c000b35fec357ee1ebd08439bd95c1ab0753dfd2603d1608bd8c589a1e160000a6ee0ad13346e08738c2d7b00b5d121d918f1dc8bceded939fa8605b54b37cdfcea0bf2bc63e655dc04a2e50212ff89d6587d49896ce18916cf3adc12839c345ca91bb232b891fae2fdd68aaa38281c0feb2c107af3e080d6cdd1c6646ec6804d7e9960c02aa0db9eda24bbcb287fd2a890fa7f9d6ae0c0b1f8dd1603c9ea2f66b572276f96a28b5b6dd9f9bf6ad4bdaa2139b90faf1f40b0f141258578bd825daaaf718d21b7ac05fe5d1b699e5422ca341fe1c944f68fe3a6d783dcf30b0e09d7688f696883b61cb64464b04d351a0a69b0733c348049b0430ed40e200f4ff0000000000000000000000996bcc1b721b152c892fab887e7d20466d90c049c0fdf51dcc16d226a2619c6f47bc25b7f5df5c09fed638922ed127ab36aa7b0c58a2ce5894b1b0f5375d340d96b69b966b05daaf585121a9c7605ed8e9964eef1f14b74cbb2ccdadc6d0b77cf0492b75e1cd11bfdcfddde91b20366715ba0cbe1041be2a65c25d7ca15ef8b71bd2ab9a4294899a1964b0152518fc2ac15a728bcb9e2bc4b551dfdf9011a2a607bc39ad2c4d7c64dcf967724e9b63c397d5265ad3f1da4395a5a800d8845257dcbf210d4f00fe0bd3deed05e506736e6bb6d40ee6cb960bcdb33633ee87f82beb665a9a4c2d4d2b06479ade3a4cd6bba765c9f52b52a0bdd0849ab92baae3775570accb5a57ee9f0035fc6d3df4eebec2e7eb4ff863d3979a20f4428ddca471037b49d4fd130743a97faa02c293b721e52bf53d64c6585e138162331ef98792e1e9b21a6a084fb7b42c64062ef1323a8a65a8ed6038f274f28ff4f78136a1ef108efbe8c4f4e347d50dcdbc33bf3ade4c3a39d316061930d7dd39b8acdecc3f27830e3eda40e648328d95a9aee65a9dd09fd4e96d5b852025dc53ec3f30cc753e6a796084b4e34f521dbb230ae0f3b79142073d437e1fd22d3b7503ffa95b1d5c7740b0ecbfd35dc0f8af895583dfcc2689f6e02c2dd4b57f3dcac54f40da013eb221fa3d65de760576031052c25a96ed4b20230b36d46d3d3fd6bb1d77cc8a48a6b10fa0149e55ccde4a2b26cca2d1ca9191c74ab006a602543fc24d1283e353cfb917620000000024bf3eed258c02a591ec4cd295212d9a98d38745f6f6c4530900000000000000f184f239098bf32551c7cf454e2865974f6520112743f73c619c3cab5609e00178f7393e53462f31559220c026bbde09837bf1b3ffe748a3247c9569f0c5e99f4494f93e0fa1badca90c888616eca97bddabd8003fc12a084d4b11d841979e161b998ddda92f194c4ec7947b7b303be11e0962d429a2c542a28c4932e14c123dfe2b8ec47a11cce134fd6e42a9f4e00ab6de6b45"], &(0x7f0000000100)='GPL\x00'}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000480)='kmem_cache_free\x00', r0}, 0x10) syz_emit_ethernet(0x12, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaa00e5dbda09b0a5810000008a5f635d674c75a9d50f9a955424c6d135cb17a4c5675035a920"], 0x0) 4.37953497s ago: executing program 3 (id=278): r0 = socket$inet6(0xa, 0x80002, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00') ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, 0x0) syz_io_uring_setup(0x24fc, &(0x7f0000000400), 0x0, 0x0) syz_open_dev$video(&(0x7f00000000c0), 0x9, 0x0) syz_open_dev$vim2m(&(0x7f0000000000), 0x7fff, 0x2) syz_open_dev$video4linux(0x0, 0x71, 0x0) pselect6(0x40, &(0x7f0000000000)={0xfc}, 0x0, 0x0, 0x0, 0x0) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000580)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f0000000100)={r2}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000480)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000180)={r3, 0x3, r1, 0x6}) 3.967176439s ago: executing program 3 (id=280): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r1}, 0x10) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000cc0), 0x1c1341, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r3) socket$inet_udp(0x2, 0x2, 0x0) ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @random="c5f9772bb146", @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x2, 0x5}}}}}}}, 0x0) write$cgroup_subtree(r2, &(0x7f0000000180)=ANY=[], 0x4a) 1.4916152s ago: executing program 0 (id=288): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x9d, 0x10001, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001400)={{r0}, &(0x7f0000001380), &(0x7f00000013c0)='%-010d \x00'}, 0x20) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)={r0, &(0x7f0000000080), 0x0}, 0x20) 1.41675423s ago: executing program 1 (id=289): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000440)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040), 0x4) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, r1}, 0x90) r2 = socket$nl_route(0x10, 0x3, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000980)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, 0x0, {0x0, 0x2}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4c, 0x2, [@TCA_FQ_INITIAL_QUANTUM={0x8, 0x4, 0x5d3bf4aa}, @TCA_FQ_CE_THRESHOLD={0x8}, @TCA_FQ_FLOW_MAX_RATE={0x8, 0x7, 0xffffffff}, @TCA_FQ_FLOW_DEFAULT_RATE={0x8, 0x6, 0x71}, @TCA_FQ_FLOW_PLIMIT={0x8, 0x2, 0x2}, @TCA_FQ_TIMER_SLACK={0x8, 0xd, 0x3}, @TCA_FQ_LOW_RATE_THRESHOLD={0x8, 0xb, 0x7}, @TCA_FQ_FLOW_DEFAULT_RATE={0x8}, @TCA_FQ_QUANTUM={0x8, 0x3, 0x2}]}}]}, 0x78}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001240)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r5, {0x7}, {0xffff, 0x2}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0xf}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 1.395297104s ago: executing program 0 (id=290): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth1_to_hsr\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x74, r3}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0) 1.176250826s ago: executing program 3 (id=291): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x58, 0x2, 0x6, 0x5, 0x0, 0x2000000, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x0}]}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x58}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0x9, &(0x7f00000002c0)=@framed={{}, [@func, @tail_call]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r1, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) listen(r1, 0x20000005) r2 = socket$inet6(0xa, 0x6, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c) r6 = accept4(r1, 0x0, 0x0, 0x0) sendmmsg$inet6(r6, &(0x7f00000001c0)=[{{0x0, 0x9b4c, 0x0}}], 0x500, 0x0) ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8946, 0x0) io_uring_setup(0x0, 0x0) io_uring_register$IORING_UNREGISTER_RING_FDS(0xffffffffffffffff, 0x15, &(0x7f0000002dc0)=[{0x0, 0x0, 0x0, 0x0, 0x0}], 0x1) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000000280)=ANY=[@ANYRES64=r0], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x0, 0xd, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f08", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 985.383874ms ago: executing program 1 (id=292): r0 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kfree\x00', r2}, 0x10) syz_usb_control_io$printer(0xffffffffffffffff, 0x0, 0x0) write$selinux_access(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a6d71756575655f73706f6f6c5f743a7330202f7573722f7362696e2f637570732d62f32104532122726f77737f642030"], 0x50) 899.853748ms ago: executing program 0 (id=293): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006) 815.201559ms ago: executing program 0 (id=295): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10) pread64(r1, 0x0, 0x0, 0x10) 678.190584ms ago: executing program 0 (id=296): r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) fallocate(r0, 0x0, 0x0, 0x1000f4) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000008000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r2}, 0x10) lseek(r0, 0x8000, 0x4) 275.893243ms ago: executing program 0 (id=297): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) syz_open_dev$loop(&(0x7f0000000080), 0x3, 0x0) syz_open_dev$loop(&(0x7f0000000000), 0x3, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r2 = openat$cgroup_procs(r1, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r2, &(0x7f00000000c0), 0x12) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$cgroup_int(r3, &(0x7f0000000080)='cpuset.mems\x00', 0x2, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x7ffff000) socket(0x1, 0x3, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = socket$inet_udp(0x2, 0x2, 0x0) close(r7) r8 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r8, 0x84, 0x81, &(0x7f00000000c0)="1a00000082000000", 0x8) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r8, 0x84, 0x15, &(0x7f00000001c0), 0x1) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r8, 0x84, 0x64, &(0x7f0000000200)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendto$inet6(r8, &(0x7f0000000040)='l', 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) write$binfmt_script(r8, 0x0, 0x0) write$binfmt_script(r8, &(0x7f0000000400)={'#! ', './file0'}, 0xb) write$binfmt_misc(r6, &(0x7f0000000000)=ANY=[], 0xfffffecc) splice(r5, 0x0, r7, 0x0, 0x4ffe2, 0x0) 275.612485ms ago: executing program 1 (id=298): r0 = socket$inet6(0xa, 0x3, 0x9) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x6, &(0x7f0000000140)={0x14, {{0x29, 0x0, 0x43000000, @local, 0x20000}}}, 0x88) 219.650315ms ago: executing program 3 (id=299): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7}, 0x48) bpf$MAP_CREATE(0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x3ee) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) connect$unix(0xffffffffffffffff, 0x0, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r4 = openat$selinux_validatetrans(0xffffffffffffff9c, 0x0, 0x1, 0x0) writev(r4, 0x0, 0x0) openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000080), 0x3f00, 0x0) 219.348683ms ago: executing program 1 (id=300): sendmsg$inet6(0xffffffffffffffff, &(0x7f0000002280)={&(0x7f0000001e40)={0xa, 0x4e24, 0x0, @remote}, 0x1c, 0x0, 0x0, &(0x7f0000003700)=ANY=[@ANYBLOB="b005000000000000290000003600000000b2"], 0x5b0}, 0x20008001) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000200)="32fa088b0ee9b9394ae626a94c0918a47e5e102d570e7d636129f91f1e76c0f87e1d2e2917f932ab6a32dc2a9c", 0x2d}], 0x1}, 0x0) 183.621µs ago: executing program 1 (id=301): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4) sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0xffffffffffffff5a, 0x40000, 0x0, 0x27) recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x16fb}], 0x1, 0x0, 0x46, 0x407006}, 0x104) 0s ago: executing program 1 (id=302): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) rmdir(0x0) kernel console output (not intermixed with test programs): [ 45.596908][ T39] audit: type=1400 audit(1724968311.618:82): avc: denied { siginh } for pid=5264 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 82.202135][ T58] cfg80211: failed to load regulatory.db [ 89.547671][ T39] audit: type=1400 audit(1724968355.598:83): avc: denied { read } for pid=4806 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 89.556413][ T39] audit: type=1400 audit(1724968355.598:84): avc: denied { append } for pid=4806 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 89.564000][ T39] audit: type=1400 audit(1724968355.598:85): avc: denied { open } for pid=4806 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 89.573175][ T39] audit: type=1400 audit(1724968355.598:86): avc: denied { getattr } for pid=4806 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 Warning: Permanently added '[localhost]:1411' (ED25519) to the list of known hosts. [ 89.782935][ T39] audit: type=1400 audit(1724968355.838:87): avc: denied { name_bind } for pid=5320 comm="sshd" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 89.831859][ T39] audit: type=1400 audit(1724968355.888:88): avc: denied { execute } for pid=5322 comm="sh" name="syz-executor" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 89.841254][ T39] audit: type=1400 audit(1724968355.888:89): avc: denied { execute_no_trans } for pid=5322 comm="sh" path="/syz-executor" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 92.405522][ T39] audit: type=1400 audit(1724968358.458:90): avc: denied { mounton } for pid=5322 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1926 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 92.415997][ T39] audit: type=1400 audit(1724968358.468:91): avc: denied { mount } for pid=5322 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 92.416533][ T5322] cgroup: Unknown subsys name 'net' [ 92.430268][ T39] audit: type=1400 audit(1724968358.488:92): avc: denied { unmount } for pid=5322 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 92.582639][ T5322] cgroup: Unknown subsys name 'rlimit' [ 92.845193][ T5325] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 93.882422][ T5322] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 98.025426][ T39] kauditd_printk_skb: 12 callbacks suppressed [ 98.025436][ T39] audit: type=1400 audit(1724968364.078:105): avc: denied { execmem } for pid=5334 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 98.626141][ T39] audit: type=1400 audit(1724968364.678:106): avc: denied { mounton } for pid=5339 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 98.635255][ T39] audit: type=1400 audit(1724968364.678:107): avc: denied { mount } for pid=5339 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 98.642989][ T39] audit: type=1400 audit(1724968364.678:108): avc: denied { create } for pid=5339 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 98.649635][ T39] audit: type=1400 audit(1724968364.678:109): avc: denied { read write } for pid=5339 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1107 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 98.658244][ T39] audit: type=1400 audit(1724968364.678:110): avc: denied { open } for pid=5339 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1107 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 98.667827][ T39] audit: type=1400 audit(1724968364.688:111): avc: denied { ioctl } for pid=5339 comm="syz-executor" path="socket:[5483]" dev="sockfs" ino=5483 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 98.697427][ T5348] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 98.697502][ T5347] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 98.702372][ T5348] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 98.704865][ T5347] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 98.707538][ T5348] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 98.710532][ T5347] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 98.713054][ T5350] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 98.713763][ T5348] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 98.714460][ T5348] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 98.714779][ T5348] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 98.716506][ T5347] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 98.719095][ T5355] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 98.720509][ T5350] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 98.722372][ T5347] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 98.726214][ T5350] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 98.728383][ T5347] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 98.729544][ T39] audit: type=1400 audit(1724968364.778:112): avc: denied { read } for pid=5340 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 98.729593][ T39] audit: type=1400 audit(1724968364.778:113): avc: denied { open } for pid=5340 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 98.729635][ T39] audit: type=1400 audit(1724968364.778:114): avc: denied { mounton } for pid=5340 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 98.732876][ T5350] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 98.734914][ T66] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 98.737032][ T5350] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 98.739665][ T66] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 98.743823][ T5350] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 98.750157][ T66] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 98.787516][ T66] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 98.790849][ T66] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 99.095466][ T5340] chnl_net:caif_netlink_parms(): no params data found [ 99.159916][ T5339] chnl_net:caif_netlink_parms(): no params data found [ 99.217356][ T5343] chnl_net:caif_netlink_parms(): no params data found [ 99.261477][ T5351] chnl_net:caif_netlink_parms(): no params data found [ 99.376793][ T5340] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.380246][ T5340] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.383908][ T5340] bridge_slave_0: entered allmulticast mode [ 99.387836][ T5340] bridge_slave_0: entered promiscuous mode [ 99.465508][ T5340] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.468638][ T5340] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.471159][ T5340] bridge_slave_1: entered allmulticast mode [ 99.473833][ T5340] bridge_slave_1: entered promiscuous mode [ 99.522186][ T5339] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.525064][ T5339] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.527510][ T5339] bridge_slave_0: entered allmulticast mode [ 99.530425][ T5339] bridge_slave_0: entered promiscuous mode [ 99.533852][ T5339] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.536866][ T5339] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.539350][ T5339] bridge_slave_1: entered allmulticast mode [ 99.542194][ T5339] bridge_slave_1: entered promiscuous mode [ 99.582549][ T5340] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 99.669587][ T5340] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 99.704642][ T5343] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.707566][ T5343] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.710976][ T5343] bridge_slave_0: entered allmulticast mode [ 99.714780][ T5343] bridge_slave_0: entered promiscuous mode [ 99.720502][ T5339] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 99.740659][ T5340] team0: Port device team_slave_0 added [ 99.767632][ T5343] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.770840][ T5343] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.773754][ T5343] bridge_slave_1: entered allmulticast mode [ 99.778015][ T5343] bridge_slave_1: entered promiscuous mode [ 99.814825][ T5339] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 99.820647][ T5340] team0: Port device team_slave_1 added [ 99.858619][ T5351] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.861292][ T5351] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.863968][ T5351] bridge_slave_0: entered allmulticast mode [ 99.867086][ T5351] bridge_slave_0: entered promiscuous mode [ 99.895468][ T5343] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 99.961554][ T5351] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.964457][ T5351] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.967427][ T5351] bridge_slave_1: entered allmulticast mode [ 99.971429][ T5351] bridge_slave_1: entered promiscuous mode [ 99.999870][ T5343] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 100.006311][ T5339] team0: Port device team_slave_0 added [ 100.014507][ T5340] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 100.017526][ T5340] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.029229][ T5340] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 100.061592][ T5351] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 100.087063][ T5339] team0: Port device team_slave_1 added [ 100.090035][ T5340] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 100.092762][ T5340] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.102895][ T5340] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 100.123020][ T5351] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 100.230100][ T5343] team0: Port device team_slave_0 added [ 100.235973][ T5343] team0: Port device team_slave_1 added [ 100.239451][ T5339] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 100.244879][ T5339] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.254040][ T5339] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 100.336377][ T5339] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 100.339465][ T5339] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.350862][ T5339] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 100.360011][ T5351] team0: Port device team_slave_0 added [ 100.420257][ T5351] team0: Port device team_slave_1 added [ 100.451510][ T5340] hsr_slave_0: entered promiscuous mode [ 100.454626][ T5340] hsr_slave_1: entered promiscuous mode [ 100.458404][ T5343] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 100.460833][ T5343] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.472983][ T5343] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 100.479125][ T5343] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 100.481554][ T5343] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.491160][ T5343] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 100.517278][ T5351] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 100.519590][ T5351] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.528187][ T5351] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 100.533226][ T5351] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 100.535543][ T5351] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.544667][ T5351] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 100.607889][ T5339] hsr_slave_0: entered promiscuous mode [ 100.614381][ T5339] hsr_slave_1: entered promiscuous mode [ 100.617489][ T5339] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 100.621326][ T5339] Cannot create hsr debugfs directory [ 100.761158][ T5353] Bluetooth: hci0: command tx timeout [ 100.761178][ T66] Bluetooth: hci1: command tx timeout [ 100.762076][ T5351] hsr_slave_0: entered promiscuous mode [ 100.768042][ T5351] hsr_slave_1: entered promiscuous mode [ 100.771191][ T5351] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 100.773818][ T5351] Cannot create hsr debugfs directory [ 100.778282][ T5343] hsr_slave_0: entered promiscuous mode [ 100.781767][ T5343] hsr_slave_1: entered promiscuous mode [ 100.784875][ T5343] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 100.787954][ T5343] Cannot create hsr debugfs directory [ 100.839849][ T66] Bluetooth: hci3: command tx timeout [ 100.842206][ T66] Bluetooth: hci2: command tx timeout [ 101.150067][ T5340] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 101.156292][ T5340] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 101.162424][ T5340] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 101.166551][ T5340] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 101.218980][ T5343] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 101.227648][ T5343] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 101.233970][ T5343] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 101.243191][ T5343] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 101.283396][ T5351] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 101.290847][ T5351] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 101.299642][ T5351] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 101.304769][ T5351] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 101.387116][ T5339] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 101.393392][ T5339] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 101.409326][ T5339] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 101.415606][ T5339] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 101.436910][ T5340] 8021q: adding VLAN 0 to HW filter on device bond0 [ 101.479856][ T5340] 8021q: adding VLAN 0 to HW filter on device team0 [ 101.501256][ T1189] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.504625][ T1189] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.525713][ T1189] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.528733][ T1189] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.542706][ T5351] 8021q: adding VLAN 0 to HW filter on device bond0 [ 101.562140][ T5343] 8021q: adding VLAN 0 to HW filter on device bond0 [ 101.584940][ T5351] 8021q: adding VLAN 0 to HW filter on device team0 [ 101.609142][ T5343] 8021q: adding VLAN 0 to HW filter on device team0 [ 101.616002][ T1114] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.619079][ T1114] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.626440][ T1114] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.629656][ T1114] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.665806][ T76] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.668930][ T76] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.676892][ T76] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.680020][ T76] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.697161][ T5339] 8021q: adding VLAN 0 to HW filter on device bond0 [ 101.725357][ T5339] 8021q: adding VLAN 0 to HW filter on device team0 [ 101.743570][ T1102] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.746043][ T1102] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.757227][ T5343] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 101.763297][ T5343] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 101.774565][ T1114] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.777582][ T1114] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.808201][ T5340] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 101.877827][ T5340] veth0_vlan: entered promiscuous mode [ 101.901394][ T5351] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 101.907709][ T5340] veth1_vlan: entered promiscuous mode [ 101.930792][ T5343] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 101.966834][ T5340] veth0_macvtap: entered promiscuous mode [ 101.985120][ T5340] veth1_macvtap: entered promiscuous mode [ 101.989909][ T5351] veth0_vlan: entered promiscuous mode [ 102.012082][ T5343] veth0_vlan: entered promiscuous mode [ 102.023114][ T5351] veth1_vlan: entered promiscuous mode [ 102.037185][ T5340] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 102.043394][ T5343] veth1_vlan: entered promiscuous mode [ 102.056241][ T5339] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 102.062764][ T5340] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 102.070642][ T5340] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.074500][ T5340] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.078199][ T5340] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.082287][ T5340] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.148275][ T5351] veth0_macvtap: entered promiscuous mode [ 102.155463][ T5343] veth0_macvtap: entered promiscuous mode [ 102.158185][ T5339] veth0_vlan: entered promiscuous mode [ 102.165709][ T5351] veth1_macvtap: entered promiscuous mode [ 102.171911][ T5343] veth1_macvtap: entered promiscuous mode [ 102.196802][ T5339] veth1_vlan: entered promiscuous mode [ 102.210432][ T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.214001][ T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.217688][ T5351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 102.224703][ T5351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.229774][ T5351] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 102.241922][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 102.245817][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.249041][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 102.253001][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.258260][ T5343] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 102.281187][ T5351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 102.285140][ T5351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.291463][ T5351] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 102.295800][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 102.299597][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.303128][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 102.306551][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.310903][ T5343] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 102.316044][ T1104] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.318739][ T5343] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.319381][ T1104] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.322926][ T5343] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.328942][ T5343] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.332489][ T5343] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.348134][ T5351] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.351731][ T5351] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.355385][ T5351] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.359100][ T5351] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.374386][ T5339] veth0_macvtap: entered promiscuous mode [ 102.383222][ T5339] veth1_macvtap: entered promiscuous mode [ 102.439170][ T5339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 102.443888][ T5339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.447708][ T5339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 102.452438][ T5339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.456138][ T5339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 102.460287][ T5339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.465837][ T5339] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 102.475775][ T1189] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.478831][ T1189] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.490767][ T5339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 102.494031][ T5339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.496870][ T5339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 102.500034][ T5339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.502894][ T5339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 102.506231][ T5339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.511504][ T5339] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 102.537032][ T1189] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.537134][ T5339] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.540099][ T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.543217][ T5339] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.546073][ T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.549116][ T5339] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.551770][ T1189] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.554724][ T5339] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.579998][ T1102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.583445][ T1102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.664150][ T5404] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3'. [ 102.715589][ T1189] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.717849][ T1189] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.764093][ T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.768539][ T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.808370][ T5406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4'. [ 102.816955][ T5408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5'. [ 102.850158][ T66] Bluetooth: hci1: command tx timeout [ 102.850601][ T5353] Bluetooth: hci0: command tx timeout [ 102.899005][ T5413] netlink: 48 bytes leftover after parsing attributes in process `syz.2.6'. [ 102.924127][ T5353] Bluetooth: hci2: command tx timeout [ 102.925779][ T66] Bluetooth: hci3: command tx timeout [ 102.969006][ T5416] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8'. [ 103.069111][ T39] kauditd_printk_skb: 41 callbacks suppressed [ 103.069124][ T39] audit: type=1400 audit(1724968369.118:156): avc: denied { create } for pid=5420 comm="syz.0.10" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 103.069215][ T5421] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 103.088088][ T39] audit: type=1400 audit(1724968369.138:157): avc: denied { ioctl } for pid=5420 comm="syz.0.10" path="socket:[7538]" dev="sockfs" ino=7538 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 103.102718][ T39] audit: type=1400 audit(1724968369.158:158): avc: denied { relabelfrom } for pid=5420 comm="syz.0.10" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 103.109933][ T39] audit: type=1400 audit(1724968369.158:159): avc: denied { relabelto } for pid=5420 comm="syz.0.10" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 103.117085][ T39] audit: type=1326 audit(1724968369.168:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.0.10" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d3af79ef9 code=0x0 [ 103.126205][ T39] audit: type=1400 audit(1724968369.168:161): avc: denied { create } for pid=5417 comm="syz.2.9" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 103.165061][ T5418] capability: warning: `syz.2.9' uses deprecated v2 capabilities in a way that may be insecure [ 103.169324][ T39] audit: type=1326 audit(1724968369.218:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.0.10" exe="/syz-executor" sig=31 arch=c000003e syscall=436 compat=0 ip=0x7f1d3af79ef9 code=0x0 [ 103.249808][ T1296] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 103.254931][ T39] audit: type=1400 audit(1724968369.308:163): avc: denied { write } for pid=5417 comm="syz.2.9" lport=132 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 103.289880][ T5380] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 103.441759][ T1296] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 103.446337][ T1296] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 103.447050][ T39] audit: type=1400 audit(1724968369.498:164): avc: denied { read } for pid=5429 comm="syz.2.11" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 103.450944][ T1296] usb 6-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 103.459366][ T39] audit: type=1400 audit(1724968369.498:165): avc: denied { open } for pid=5429 comm="syz.2.11" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 103.466886][ T1296] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 103.487383][ T1296] usb 6-1: config 0 descriptor?? [ 103.491154][ T5380] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 103.501163][ T5380] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 103.505502][ T5380] usb 8-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 103.508608][ T5380] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 103.517503][ T5380] usb 8-1: config 0 descriptor?? [ 103.530190][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 103.604505][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 103.613918][ T5432] Bluetooth: MGMT ver 1.23 [ 103.706840][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 104.120026][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 104.292358][ T1296] usb 6-1: Direct firmware load for ar3k/ramps_0xd2b9879d_0.dfu failed with error -2 [ 104.296146][ T1296] usb 6-1: Falling back to sysfs fallback for: ar3k/ramps_0xd2b9879d_0.dfu [ 104.328012][ T5434] netlink: 48 bytes leftover after parsing attributes in process `syz.2.13'. [ 104.563644][ T5439] netlink: 48 bytes leftover after parsing attributes in process `syz.0.12'. [ 104.702658][ T5443] warning: `syz.0.15' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 104.748918][ T5445] FAULT_INJECTION: forcing a failure. [ 104.748918][ T5445] name failslab, interval 1, probability 0, space 0, times 1 [ 104.749040][ T5445] CPU: 2 UID: 0 PID: 5445 Comm: syz.0.16 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 104.749061][ T5445] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 104.749073][ T5445] Call Trace: [ 104.749080][ T5445] [ 104.749087][ T5445] dump_stack_lvl+0x16c/0x1f0 [ 104.749111][ T5445] should_fail_ex+0x497/0x5b0 [ 104.749130][ T5445] should_failslab+0xc2/0x120 [ 104.749153][ T5445] __kmalloc_noprof+0xcb/0x400 [ 104.749176][ T5445] ? mark_held_locks+0x9f/0xe0 [ 104.749197][ T5445] virtqueue_add_split+0xb92/0x1c00 [ 104.749218][ T5445] ? lock_acquire+0x1b1/0x560 [ 104.749239][ T5445] ? __pfx_virtqueue_add_split+0x10/0x10 [ 104.749259][ T5445] ? __pfx_lock_acquire+0x10/0x10 [ 104.749278][ T5445] ? virtio_gpu_primary_plane_update+0x8b8/0x15b0 [ 104.749302][ T5445] ? drm_atomic_helper_commit_planes+0x93a/0x1000 [ 104.749323][ T5445] ? drm_atomic_helper_commit_tail+0x69/0xf0 [ 104.749347][ T5445] virtqueue_add_sgs+0x166/0x190 [ 104.749369][ T5445] virtio_gpu_queue_fenced_ctrl_buffer+0x5d1/0xff0 [ 104.749391][ T5445] ? __pfx_virtio_gpu_queue_fenced_ctrl_buffer+0x10/0x10 [ 104.749414][ T5445] ? trace_kmem_cache_alloc+0x2d/0xe0 [ 104.749440][ T5445] ? kmem_cache_alloc_noprof+0x174/0x2f0 [ 104.749460][ T5445] ? virtio_gpu_get_vbuf+0x50/0x180 [ 104.749477][ T5445] ? __asan_memset+0x23/0x50 [ 104.749493][ T5445] ? virtio_gpu_cmd_set_scanout+0x7d/0x220 [ 104.749512][ T5445] virtio_gpu_primary_plane_update+0x8b8/0x15b0 [ 104.749538][ T5445] ? __pfx_virtio_gpu_primary_plane_update+0x10/0x10 [ 104.749562][ T5445] ? mark_held_locks+0x9f/0xe0 [ 104.749582][ T5445] drm_atomic_helper_commit_planes+0x93a/0x1000 [ 104.749608][ T5445] drm_atomic_helper_commit_tail+0x69/0xf0 [ 104.749632][ T5445] commit_tail+0x353/0x400 [ 104.749655][ T5445] drm_atomic_helper_commit+0x2fd/0x380 [ 104.749679][ T5445] ? __pfx_drm_atomic_helper_commit+0x10/0x10 [ 104.749718][ T5445] drm_atomic_commit+0x229/0x300 [ 104.749745][ T5445] ? __pfx_drm_atomic_commit+0x10/0x10 [ 104.749771][ T5445] ? __pfx___drm_atomic_helper_set_config+0x10/0x10 [ 104.749797][ T5445] ? __pfx___drm_printfn_info+0x10/0x10 [ 104.749817][ T5445] ? drm_client_rotation+0x4d9/0x6a0 [ 104.749842][ T5445] drm_client_modeset_commit_atomic+0x6b0/0x800 [ 104.749869][ T5445] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 104.749894][ T5445] ? __mutex_lock+0x1a6/0x9c0 [ 104.749923][ T5445] drm_client_modeset_dpms+0x17e/0x210 [ 104.749948][ T5445] drm_fb_helper_blank+0x19f/0x260 [ 104.749984][ T5445] ? __pfx_drm_fb_helper_blank+0x10/0x10 [ 104.750008][ T5445] fb_blank+0x105/0x190 [ 104.750036][ T5445] ? __pfx_fb_blank+0x10/0x10 [ 104.750061][ T5445] fbcon_blank+0x5cc/0xc00 [ 104.750085][ T5445] ? __pfx_fbcon_blank+0x10/0x10 [ 104.750110][ T5445] ? __pfx___might_resched+0x10/0x10 [ 104.750134][ T5445] ? __pfx_fbcon_blank+0x10/0x10 [ 104.750158][ T5445] do_unblank_screen+0x27b/0x4c0 [ 104.750185][ T5445] tioclinux+0x207/0x5f0 [ 104.750203][ T5445] vt_ioctl+0x2eb5/0x2f80 [ 104.750226][ T5445] ? __pfx_vt_ioctl+0x10/0x10 [ 104.750247][ T5445] ? kfree+0x12a/0x3b0 [ 104.750265][ T5445] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 104.750289][ T5445] ? do_vfs_ioctl+0x515/0x1ad0 [ 104.750311][ T5445] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 104.750332][ T5445] ? tty_jobctrl_ioctl+0x152/0xe00 [ 104.750352][ T5445] ? __pfx_vt_ioctl+0x10/0x10 [ 104.750373][ T5445] tty_ioctl+0x65d/0x15f0 [ 104.750390][ T5445] ? ioctl_has_perm.constprop.0.isra.0+0x2f0/0x470 [ 104.750410][ T5445] ? __pfx_tty_ioctl+0x10/0x10 [ 104.750422][ T5445] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 104.750438][ T5445] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 104.750458][ T5445] ? selinux_file_ioctl+0x180/0x270 [ 104.750471][ T5445] ? selinux_file_ioctl+0xb4/0x270 [ 104.750485][ T5445] ? __pfx_tty_ioctl+0x10/0x10 [ 104.750500][ T5445] __x64_sys_ioctl+0x193/0x220 [ 104.750524][ T5445] do_syscall_64+0xcd/0x250 [ 104.750548][ T5445] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 104.750577][ T5445] RIP: 0033:0x7f1d3af79ef9 [ 104.750591][ T5445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 104.750607][ T5445] RSP: 002b:00007f1d3bca0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 104.750625][ T5445] RAX: ffffffffffffffda RBX: 00007f1d3b115f80 RCX: 00007f1d3af79ef9 [ 104.750637][ T5445] RDX: 00000000200000c0 RSI: 000000000000541c RDI: 0000000000000003 [ 104.750648][ T5445] RBP: 00007f1d3bca0090 R08: 0000000000000000 R09: 0000000000000000 [ 104.750658][ T5445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 104.750669][ T5445] R13: 0000000000000000 R14: 00007f1d3b115f80 R15: 00007ffc3d0df388 [ 104.750683][ T5445] [ 104.921089][ T66] Bluetooth: hci0: command tx timeout [ 104.921415][ T5353] Bluetooth: hci1: command tx timeout [ 105.002506][ T5353] Bluetooth: hci3: command tx timeout [ 105.002905][ T66] Bluetooth: hci2: command tx timeout [ 105.087906][ T5454] netlink: 4 bytes leftover after parsing attributes in process `syz.0.19'. [ 105.113088][ T5450] netdevsim netdevsim3 netdevsim0: Unsupported IPsec algorithm [ 105.280089][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.460222][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.463818][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.800006][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.803350][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.900756][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 106.103370][ T5353] Bluetooth: hci2: SCO packet for unknown connection handle 1528 [ 106.118051][ T5475] capability: warning: `syz.1.23' uses 32-bit capabilities (legacy support in use) [ 106.463524][ T5491] netlink: 4 bytes leftover after parsing attributes in process `syz.0.28'. [ 106.578738][ T5497] netlink: 24 bytes leftover after parsing attributes in process `syz.0.31'. [ 106.715876][ T5502] ptrace attach of "/syz-executor exec"[5503] was attempted by "/syz-executor exec"[5502] [ 106.727110][ C2] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 106.827965][ T5510] FAULT_INJECTION: forcing a failure. [ 106.827965][ T5510] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 106.837946][ T5510] CPU: 2 UID: 0 PID: 5510 Comm: syz.0.36 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 106.842368][ T5510] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 106.846626][ T5510] Call Trace: [ 106.847915][ T5510] [ 106.849194][ T5510] dump_stack_lvl+0x16c/0x1f0 [ 106.851185][ T5510] should_fail_ex+0x497/0x5b0 [ 106.853161][ T5510] _copy_from_user+0x30/0xf0 [ 106.855147][ T5510] kstrtouint_from_user+0xd7/0x1c0 [ 106.857315][ T5510] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 106.859693][ T5510] ? __pfx_lock_acquire+0x10/0x10 [ 106.861808][ T5510] proc_fail_nth_write+0x84/0x260 [ 106.863903][ T5510] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 106.866275][ T5510] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 106.868480][ T5510] vfs_write+0x29a/0x1140 [ 106.869990][ T5510] ? __fdget_pos+0xeb/0x180 [ 106.871923][ T5510] ? __pfx_vfs_write+0x10/0x10 [ 106.873961][ T5510] ? __pfx___mutex_lock+0x10/0x10 [ 106.876085][ T5510] ? __fget_files+0x256/0x400 [ 106.878107][ T5510] ksys_write+0x12f/0x260 [ 106.879916][ T5510] ? __pfx_ksys_write+0x10/0x10 [ 106.881972][ T5510] do_syscall_64+0xcd/0x250 [ 106.883823][ T5510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.886001][ T5510] RIP: 0033:0x7f1d3af789df [ 106.887722][ T5510] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48 [ 106.895101][ T5510] RSP: 002b:00007f1d3bca0030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 106.898233][ T5510] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1d3af789df [ 106.901522][ T5510] RDX: 0000000000000001 RSI: 00007f1d3bca00a0 RDI: 0000000000000005 [ 106.904261][ T5510] RBP: 00007f1d3bca0090 R08: 0000000000000000 R09: 0000000000000000 [ 106.907470][ T5510] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 106.910377][ T5510] R13: 0000000000000000 R14: 00007f1d3b115f80 R15: 00007ffc3d0df388 [ 106.913714][ T5510] [ 107.000346][ T5353] Bluetooth: hci0: command tx timeout [ 107.000590][ T5350] Bluetooth: hci1: command tx timeout [ 107.070374][ T5518] netlink: 'syz.1.39': attribute type 4 has an invalid length. [ 107.080240][ T5350] Bluetooth: hci2: command tx timeout [ 107.082631][ T5350] Bluetooth: hci3: command tx timeout [ 107.263559][ T5524] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 107.269116][ T5524] Zero length message leads to an empty skb [ 107.293100][ T5524] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 107.298982][ T5524] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 107.940335][ T5546] netlink: 'syz.0.48': attribute type 7 has an invalid length. [ 107.942751][ T5546] netlink: 'syz.0.48': attribute type 8 has an invalid length. [ 107.970815][ T5548] __nla_validate_parse: 2 callbacks suppressed [ 107.970824][ T5548] netlink: 4 bytes leftover after parsing attributes in process `syz.1.49'. [ 108.093830][ T39] kauditd_printk_skb: 42 callbacks suppressed [ 108.093844][ T39] audit: type=1400 audit(1724968374.148:208): avc: denied { create } for pid=5535 comm="syz.2.45" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 108.097601][ T5539] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 108.262688][ T39] audit: type=1400 audit(1724968374.318:209): avc: denied { mount } for pid=5550 comm="syz.1.50" name="/" dev="autofs" ino=10455 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1 [ 108.666722][ T39] audit: type=1400 audit(1724968374.718:210): avc: denied { create } for pid=5554 comm="syz.2.51" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 108.675029][ T39] audit: type=1400 audit(1724968374.718:211): avc: denied { connect } for pid=5554 comm="syz.2.51" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 108.735730][ T39] audit: type=1400 audit(1724968374.788:212): avc: denied { accept } for pid=5554 comm="syz.2.51" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 108.772533][ T5555] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 108.841721][ T39] audit: type=1400 audit(1724968374.898:213): avc: denied { create } for pid=5560 comm="syz.2.52" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 108.849959][ T39] audit: type=1400 audit(1724968374.898:214): avc: denied { bind } for pid=5560 comm="syz.2.52" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 108.864283][ T39] audit: type=1400 audit(1724968374.918:215): avc: denied { read } for pid=5560 comm="syz.2.52" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 108.873869][ T39] audit: type=1400 audit(1724968374.918:216): avc: denied { open } for pid=5560 comm="syz.2.52" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 108.883776][ T39] audit: type=1400 audit(1724968374.938:217): avc: denied { mounton } for pid=5560 comm="syz.2.52" path="/proc/38/task" dev="proc" ino=8563 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 108.985902][ T5566] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 108.986098][ T5569] FAULT_INJECTION: forcing a failure. [ 108.986098][ T5569] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 108.994452][ T5569] CPU: 1 UID: 0 PID: 5569 Comm: syz.2.53 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 108.998352][ T5569] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 109.002498][ T5569] Call Trace: [ 109.003953][ T5569] [ 109.005273][ T5569] dump_stack_lvl+0x16c/0x1f0 [ 109.007291][ T5569] should_fail_ex+0x497/0x5b0 [ 109.009370][ T5569] ? fs_reclaim_acquire+0xae/0x160 [ 109.011465][ T5569] should_fail_alloc_page+0xe7/0x130 [ 109.013332][ T5569] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 109.015491][ T5569] __alloc_pages_noprof+0x194/0x2460 [ 109.017320][ T5569] ? __pfx_ip_finish_output2+0x10/0x10 [ 109.019176][ T5569] ? ip_skb_dst_mtu+0x3fc/0xc70 [ 109.021036][ T5569] ? __pfx_ip_skb_dst_mtu+0x10/0x10 [ 109.023038][ T5569] ? hlock_class+0x4e/0x130 [ 109.024970][ T5569] ? mark_lock+0xb5/0xc60 [ 109.026876][ T5569] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 109.028871][ T5569] ? __pfx_mark_lock+0x10/0x10 [ 109.030725][ T5569] ? ip_finish_output+0x38/0x310 [ 109.032480][ T5569] ? hlock_class+0x4e/0x130 [ 109.034453][ T5569] ? mark_lock+0xb5/0xc60 [ 109.036269][ T5569] ? hlock_class+0x4e/0x130 [ 109.038199][ T5569] ? mark_lock+0xb5/0xc60 [ 109.040021][ T5569] ? __pfx_mark_lock+0x10/0x10 [ 109.042068][ T5569] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 109.044535][ T5569] ? policy_nodemask+0xea/0x4e0 [ 109.046592][ T5569] alloc_pages_mpol_noprof+0x275/0x610 [ 109.048881][ T5569] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 109.051407][ T5569] ? hlock_class+0x4e/0x130 [ 109.053345][ T5569] ? find_held_lock+0x2d/0x110 [ 109.055353][ T5569] folio_alloc_mpol_noprof+0x36/0xd0 [ 109.057579][ T5569] vma_alloc_folio_noprof+0xee/0x1b0 [ 109.059794][ T5569] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 109.062266][ T5569] ? __pfx___lock_acquire+0x10/0x10 [ 109.064423][ T5569] ? __pfx_lock_acquire+0x10/0x10 [ 109.066523][ T5569] do_wp_page+0xfd7/0x3430 [ 109.068407][ T5569] ? __pfx_lock_acquire+0x10/0x10 [ 109.070531][ T5569] ? __pfx_do_wp_page+0x10/0x10 [ 109.072557][ T5569] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 109.074800][ T5569] __handle_mm_fault+0x23d0/0x55b0 [ 109.076933][ T5569] ? __pfx_mt_find+0x10/0x10 [ 109.078876][ T5569] ? __pfx_____sys_sendmsg+0x10/0x10 [ 109.081093][ T5569] ? __pfx___handle_mm_fault+0x10/0x10 [ 109.083354][ T5569] ? find_vma+0xc0/0x140 [ 109.085130][ T5569] ? __pfx_find_vma+0x10/0x10 [ 109.087081][ T5569] handle_mm_fault+0x44e/0x7b0 [ 109.089095][ T5569] ? __pkru_allows_pkey+0x52/0xb0 [ 109.091202][ T5569] do_user_addr_fault+0x7a3/0x13f0 [ 109.093351][ T5569] exc_page_fault+0x5c/0xc0 [ 109.095252][ T5569] asm_exc_page_fault+0x26/0x30 [ 109.097287][ T5569] RIP: 0010:__put_user_4+0x11/0x20 [ 109.099023][ T5569] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 [ 109.105377][ T5569] RSP: 0018:ffffc900035b7ce0 EFLAGS: 00050202 [ 109.107386][ T5569] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000020008038 [ 109.110044][ T5569] RDX: ffff888027f1c880 RSI: ffffffff88e0d0de RDI: ffffffff8bb09c00 [ 109.112683][ T5569] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff2025f5b [ 109.115303][ T5569] R10: ffffffff9012fadf R11: 0000000000000000 R12: 0000000000040000 [ 109.117940][ T5569] R13: 0000000020008000 R14: 00000000000003ff R15: 0000000000000400 [ 109.120586][ T5569] ? __sys_sendmmsg+0x1ce/0x450 [ 109.122528][ T5569] __sys_sendmmsg+0x1d9/0x450 [ 109.124455][ T5569] ? __pfx___sys_sendmmsg+0x10/0x10 [ 109.126422][ T5569] ? vfs_write+0x14d/0x1140 [ 109.128281][ T5569] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 109.130577][ T5569] ? fput+0x32/0x390 [ 109.132101][ T5569] ? ksys_write+0x1ab/0x260 [ 109.133946][ T5569] ? __pfx_ksys_write+0x10/0x10 [ 109.135821][ T5569] __x64_sys_sendmmsg+0x9c/0x100 [ 109.137683][ T5569] ? lockdep_hardirqs_on+0x7c/0x110 [ 109.139757][ T5569] do_syscall_64+0xcd/0x250 [ 109.141526][ T5569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.143288][ T5571] 9pnet: Could not find request transport: fNT®‘ÐΞ¿ Ìßœee”0x000000000000000d [ 109.143892][ T5569] RIP: 0033:0x7fa8df579ef9 [ 109.143907][ T5569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 109.143923][ T5569] RSP: 002b:00007fa8e0358038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 109.160210][ T5569] RAX: ffffffffffffffda RBX: 00007fa8df716058 RCX: 00007fa8df579ef9 [ 109.163507][ T5569] RDX: 000000000800001d RSI: 0000000020007fc0 RDI: 0000000000000004 [ 109.166761][ T5569] RBP: 00007fa8e0358090 R08: 0000000000000000 R09: 0000000000000000 [ 109.170130][ T5569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 109.173458][ T5569] R13: 0000000000000000 R14: 00007fa8df716058 R15: 00007ffc438c33e8 [ 109.176740][ T5569] [ 109.178237][ C1] vkms_vblank_simulate: vblank timer overrun [ 109.178294][ T5353] Bluetooth: hci3: command 0x0405 tx timeout [ 109.376488][ T5581] netlink: 4 bytes leftover after parsing attributes in process `syz.1.58'. [ 109.382830][ T5578] 9pnet_fd: Insufficient options for proto=fd [ 109.437857][ T5579] can: request_module (can-proto-4) failed. [ 109.438792][ T5584] ALSA: seq fatal error: cannot create timer (-22) [ 109.549179][ T5592] netlink: 20 bytes leftover after parsing attributes in process `syz.1.62'. [ 109.601466][ T5595] can: request_module (can-proto-4) failed. [ 109.611591][ T5592] trusted_key: syz.1.62 sent an empty control message without MSG_MORE. [ 109.652264][ T5592] ptrace attach of "/syz-executor exec"[5601] was attempted by ""[5592] [ 109.710398][ T5604] UHID_CREATE from different security context by process 39 (syz.1.64), this is not allowed. [ 109.820119][ T5610] netlink: 4 bytes leftover after parsing attributes in process `syz.1.67'. [ 109.966352][ T5618] @: renamed from vlan0 (while UP) [ 110.807579][ T5624] netlink: 32 bytes leftover after parsing attributes in process `syz.2.71'. [ 111.161120][ T5656] netlink: 4 bytes leftover after parsing attributes in process `syz.2.77'. [ 111.590624][ T5681] netfs: Couldn't get user pages (rc=-14) [ 113.133631][ T5737] netlink: 48 bytes leftover after parsing attributes in process `syz.0.105'. [ 113.773682][ T5754] FAULT_INJECTION: forcing a failure. [ 113.773682][ T5754] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 113.778456][ T5754] CPU: 0 UID: 0 PID: 5754 Comm: syz.3.111 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 113.782819][ T5754] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 113.786855][ T5754] Call Trace: [ 113.787965][ T5754] [ 113.788961][ T5754] dump_stack_lvl+0x16c/0x1f0 [ 113.790829][ T5754] should_fail_ex+0x497/0x5b0 [ 113.792732][ T5754] _copy_from_user+0x30/0xf0 [ 113.794652][ T5754] cec_ioctl+0xf0d/0x2930 [ 113.796403][ T5754] ? __pfx_cec_ioctl+0x10/0x10 [ 113.798500][ T5754] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 113.800996][ T5754] ? do_vfs_ioctl+0x515/0x1ad0 [ 113.802973][ T5754] ? ioctl_has_perm.constprop.0.isra.0+0x2f0/0x470 [ 113.805297][ T5754] ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x470 [ 113.808044][ T5754] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 113.810700][ T5754] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 113.812828][ T5754] ? selinux_file_ioctl+0x180/0x270 [ 113.814933][ T5754] ? selinux_file_ioctl+0xb4/0x270 [ 113.816776][ T5754] ? __pfx_cec_ioctl+0x10/0x10 [ 113.818401][ T5754] __x64_sys_ioctl+0x193/0x220 [ 113.820023][ T5754] do_syscall_64+0xcd/0x250 [ 113.822019][ T5754] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.824613][ T5754] RIP: 0033:0x7fb9d5579ef9 [ 113.826415][ T5754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 113.834294][ T5754] RSP: 002b:00007fb9d6281038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 113.837855][ T5754] RAX: ffffffffffffffda RBX: 00007fb9d5715f80 RCX: 00007fb9d5579ef9 [ 113.841234][ T5754] RDX: 0000000020000d40 RSI: 00000000c0386105 RDI: 0000000000000006 [ 113.844349][ T5754] RBP: 00007fb9d6281090 R08: 0000000000000000 R09: 0000000000000000 [ 113.847703][ T5754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 113.851110][ T5754] R13: 0000000000000000 R14: 00007fb9d5715f80 R15: 00007ffc00376218 [ 113.854540][ T5754] [ 113.908285][ T5764] netlink: 48 bytes leftover after parsing attributes in process `syz.3.114'. [ 114.211880][ T57] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 114.243773][ T39] kauditd_printk_skb: 58 callbacks suppressed [ 114.243783][ T39] audit: type=1400 audit(1724968380.298:276): avc: denied { getopt } for pid=5776 comm="syz.3.116" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 114.259561][ T39] audit: type=1400 audit(1724968380.298:277): avc: denied { ioctl } for pid=5776 comm="syz.3.116" path="socket:[8784]" dev="sockfs" ino=8784 ioctlcmd=0x9424 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 114.272879][ T39] audit: type=1400 audit(1724968380.308:278): avc: denied { read write } for pid=5786 comm="syz.2.120" name="nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 114.272909][ T39] audit: type=1400 audit(1724968380.308:279): avc: denied { open } for pid=5786 comm="syz.2.120" path="/dev/nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 114.272932][ T39] audit: type=1400 audit(1724968380.308:280): avc: denied { map } for pid=5786 comm="syz.2.120" path="/dev/nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 114.272955][ T39] audit: type=1400 audit(1724968380.308:281): avc: denied { execute } for pid=5786 comm="syz.2.120" path="/dev/nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 114.422048][ T57] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 114.426016][ T57] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 114.429372][ T57] usb 5-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 114.433188][ T57] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 114.439683][ T57] usb 5-1: config 0 descriptor?? [ 114.592318][ T831] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 114.747379][ T5792] binder: BC_ACQUIRE_RESULT not supported [ 114.750050][ T5792] binder: 5791:5792 ioctl c0306201 200003c0 returned -22 [ 114.783945][ T831] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 114.788128][ T831] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 114.792242][ T831] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 114.796255][ T831] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 114.797894][ T39] audit: type=1400 audit(1724968380.848:282): avc: denied { compute_member } for pid=5793 comm="syz.3.123" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 114.809379][ T5787] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22 [ 114.817384][ T831] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 114.857708][ T39] audit: type=1400 audit(1724968380.908:283): avc: denied { ioctl } for pid=5793 comm="syz.3.123" path="socket:[7969]" dev="sockfs" ino=7969 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 114.923994][ T5799] netlink: 48 bytes leftover after parsing attributes in process `syz.3.124'. [ 115.057108][ T5802] lo speed is unknown, defaulting to 1000 [ 115.059880][ T39] audit: type=1400 audit(1724968381.108:284): avc: denied { write } for pid=5801 comm="syz.3.125" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 115.062641][ T5802] lo speed is unknown, defaulting to 1000 [ 115.076339][ T5802] lo speed is unknown, defaulting to 1000 [ 115.167681][ T39] audit: type=1400 audit(1724968381.218:285): avc: denied { mount } for pid=5786 comm="syz.2.120" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 115.205192][ T831] usb 7-1: USB disconnect, device number 2 [ 115.215608][ T5802] infiniband syz0: set active [ 115.220090][ T10] lo speed is unknown, defaulting to 1000 [ 115.222649][ T5802] infiniband syz0: added lo [ 115.271261][ T5802] RDS/IB: syz0: added [ 115.273916][ T5802] smc: adding ib device syz0 with port count 1 [ 115.276469][ T5802] smc: ib device syz0 port 1 has pnetid [ 115.280122][ T5313] lo speed is unknown, defaulting to 1000 [ 115.282747][ T5802] lo speed is unknown, defaulting to 1000 [ 115.388460][ T5802] lo speed is unknown, defaulting to 1000 [ 115.493877][ T5802] lo speed is unknown, defaulting to 1000 [ 115.641438][ T5802] lo speed is unknown, defaulting to 1000 [ 115.827543][ T5811] FAULT_INJECTION: forcing a failure. [ 115.827543][ T5811] name failslab, interval 1, probability 0, space 0, times 0 [ 115.833418][ T5811] CPU: 0 UID: 0 PID: 5811 Comm: syz.2.126 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 115.837946][ T5811] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 115.841818][ T5813] FAULT_INJECTION: forcing a failure. [ 115.841818][ T5813] name failslab, interval 1, probability 0, space 0, times 0 [ 115.842467][ T5811] Call Trace: [ 115.842477][ T5811] [ 115.850082][ T5811] dump_stack_lvl+0x16c/0x1f0 [ 115.852104][ T5811] should_fail_ex+0x497/0x5b0 [ 115.854158][ T5811] ? fs_reclaim_acquire+0xae/0x160 [ 115.856390][ T5811] should_failslab+0xc2/0x120 [ 115.858458][ T5811] __kmalloc_cache_noprof+0x6b/0x300 [ 115.860762][ T5811] ? binder_get_thread+0x223/0x8b0 [ 115.863009][ T5811] binder_get_thread+0x223/0x8b0 [ 115.865203][ T5811] ? tomoyo_path_number_perm+0x292/0x590 [ 115.867638][ T5811] binder_ioctl+0x258/0x6b10 [ 115.869670][ T5811] ? kfree+0x12a/0x3b0 [ 115.871652][ T5811] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 115.874262][ T5811] ? do_vfs_ioctl+0x515/0x1ad0 [ 115.876335][ T5811] ? __pfx_binder_ioctl+0x10/0x10 [ 115.878549][ T5811] ? ioctl_has_perm.constprop.0.isra.0+0x2f0/0x470 [ 115.881364][ T5811] ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x470 [ 115.884119][ T5811] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 115.887065][ T5811] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 115.889698][ T5811] ? selinux_file_ioctl+0x180/0x270 [ 115.891854][ T5811] ? selinux_file_ioctl+0xb4/0x270 [ 115.894093][ T5811] ? __pfx_binder_ioctl+0x10/0x10 [ 115.896329][ T5811] __x64_sys_ioctl+0x193/0x220 [ 115.898424][ T5811] do_syscall_64+0xcd/0x250 [ 115.900418][ T5811] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.902986][ T5811] RIP: 0033:0x7fa8df579ef9 [ 115.904918][ T5811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.913175][ T5811] RSP: 002b:00007fa8e0379038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 115.916766][ T5811] RAX: ffffffffffffffda RBX: 00007fa8df715f80 RCX: 00007fa8df579ef9 [ 115.920107][ T5811] RDX: 00000000200003c0 RSI: 00000000c0306201 RDI: 0000000000000003 [ 115.923508][ T5811] RBP: 00007fa8e0379090 R08: 0000000000000000 R09: 0000000000000000 [ 115.926876][ T5811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 115.930291][ T5811] R13: 0000000000000000 R14: 00007fa8df715f80 R15: 00007ffc438c33e8 [ 115.933686][ T5811] [ 115.934899][ T5813] CPU: 3 UID: 0 PID: 5813 Comm: syz.0.129 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 115.937306][ T5811] binder: 5810:5811 ioctl c0306201 200003c0 returned -12 [ 115.939412][ T5813] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 115.947005][ T5813] Call Trace: [ 115.948485][ T5813] [ 115.949806][ T5813] dump_stack_lvl+0x16c/0x1f0 [ 115.951906][ T5813] should_fail_ex+0x497/0x5b0 [ 115.954015][ T5813] ? fs_reclaim_acquire+0xae/0x160 [ 115.956268][ T5813] should_failslab+0xc2/0x120 [ 115.958499][ T5813] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 115.960874][ T5813] ? getname_flags.part.0+0x4c/0x550 [ 115.963205][ T5813] getname_flags.part.0+0x4c/0x550 [ 115.965454][ T5813] __x64_sys_rmdir+0xb0/0x110 [ 115.967536][ T5813] do_syscall_64+0xcd/0x250 [ 115.969571][ T5813] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.972201][ T5813] RIP: 0033:0x7f1d3af79ef9 [ 115.974175][ T5813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.982552][ T5813] RSP: 002b:00007f1d3bca0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054 [ 115.986203][ T5813] RAX: ffffffffffffffda RBX: 00007f1d3b115f80 RCX: 00007f1d3af79ef9 [ 115.989679][ T5813] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 115.993170][ T5813] RBP: 00007f1d3bca0090 R08: 0000000000000000 R09: 0000000000000000 [ 115.996533][ T5813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 115.999957][ T5813] R13: 0000000000000000 R14: 00007f1d3b115f80 R15: 00007ffc3d0df388 [ 116.003420][ T5813] [ 116.037964][ T5819] binder: BINDER_SET_CONTEXT_MGR already set [ 116.042709][ T5819] binder: 5814:5819 ioctl 4018620d 200005c0 returned -16 [ 116.066621][ T5821] FAULT_INJECTION: forcing a failure. [ 116.066621][ T5821] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 116.072909][ T5821] CPU: 1 UID: 0 PID: 5821 Comm: syz.0.132 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 116.077567][ T5821] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 116.082299][ T5821] Call Trace: [ 116.083824][ T5821] [ 116.085186][ T5821] dump_stack_lvl+0x16c/0x1f0 [ 116.087298][ T5821] should_fail_ex+0x497/0x5b0 [ 116.089404][ T5821] _copy_from_user+0x30/0xf0 [ 116.091509][ T5821] kstrtouint_from_user+0xd7/0x1c0 [ 116.093793][ T5821] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 116.096315][ T5821] ? __pfx_lock_acquire+0x10/0x10 [ 116.098566][ T5821] proc_fail_nth_write+0x84/0x260 [ 116.100823][ T5821] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 116.103316][ T5821] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 116.105796][ T5821] vfs_write+0x29a/0x1140 [ 116.107720][ T5821] ? __fdget_pos+0xeb/0x180 [ 116.109714][ T5821] ? __pfx_vfs_write+0x10/0x10 [ 116.111840][ T5821] ? __pfx___mutex_lock+0x10/0x10 [ 116.114096][ T5821] ? __fget_files+0x256/0x400 [ 116.116207][ T5821] ksys_write+0x12f/0x260 [ 116.118132][ T5821] ? __pfx_ksys_write+0x10/0x10 [ 116.120286][ T5821] do_syscall_64+0xcd/0x250 [ 116.122324][ T5821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.124907][ T5821] RIP: 0033:0x7f1d3af789df [ 116.126893][ T5821] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48 [ 116.135379][ T5821] RSP: 002b:00007f1d3bca0030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 116.139069][ T5821] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1d3af789df [ 116.142488][ T5821] RDX: 0000000000000001 RSI: 00007f1d3bca00a0 RDI: 0000000000000004 [ 116.145947][ T5821] RBP: 00007f1d3bca0090 R08: 0000000000000000 R09: 0000000000000000 [ 116.149410][ T5821] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 116.152760][ T5821] R13: 0000000000000000 R14: 00007f1d3b115f80 R15: 00007ffc3d0df388 [ 116.156007][ T5821] [ 116.157380][ C1] vkms_vblank_simulate: vblank timer overrun [ 116.157606][ T5819] binder: BINDER_SET_CONTEXT_MGR already set [ 116.163218][ T5819] binder: 5814:5819 ioctl 4018620d 200002c0 returned -16 [ 116.201680][ T5824] netlink: 48 bytes leftover after parsing attributes in process `syz.0.133'. [ 116.403049][ T66] Bluetooth: hci3: ISO packet for unknown connection handle 0 [ 116.576102][ T5835] usb usb7: usbfs: process 5835 (syz.0.136) did not claim interface 0 before use [ 117.013210][ T5847] netlink: 48 bytes leftover after parsing attributes in process `syz.2.142'. [ 117.362370][ T5859] Bluetooth: MGMT ver 1.23 [ 117.382377][ T5862] netlink: 40 bytes leftover after parsing attributes in process `syz.2.147'. [ 117.428101][ T5870] netlink: 48 bytes leftover after parsing attributes in process `syz.2.151'. [ 117.523331][ T5875] netlink: 'syz.3.154': attribute type 10 has an invalid length. [ 117.526852][ T5875] netlink: 40 bytes leftover after parsing attributes in process `syz.3.154'. [ 117.531757][ T5875] ipvlan1: entered promiscuous mode [ 117.534029][ T5875] ipvlan1: entered allmulticast mode [ 117.536523][ T5875] veth0_vlan: entered allmulticast mode [ 117.543186][ T5875] bridge0: port 3(ipvlan1) entered blocking state [ 117.545580][ T5875] bridge0: port 3(ipvlan1) entered disabled state [ 117.551235][ T5875] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check. [ 117.862511][ T5880] ======================================================= [ 117.862511][ T5880] WARNING: The mand mount option has been deprecated and [ 117.862511][ T5880] and is ignored by this kernel. Remove the mand [ 117.862511][ T5880] option from the mount to silence this warning. [ 117.862511][ T5880] ======================================================= [ 118.260963][ T5889] FAULT_INJECTION: forcing a failure. [ 118.260963][ T5889] name failslab, interval 1, probability 0, space 0, times 0 [ 118.267233][ T5889] CPU: 0 UID: 0 PID: 5889 Comm: syz.1.159 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 118.272493][ T5889] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 118.277320][ T5889] Call Trace: [ 118.278912][ T5889] [ 118.280329][ T5889] dump_stack_lvl+0x16c/0x1f0 [ 118.282671][ T5889] should_fail_ex+0x497/0x5b0 [ 118.284966][ T5889] ? fs_reclaim_acquire+0xae/0x160 [ 118.287365][ T5889] should_failslab+0xc2/0x120 [ 118.289682][ T5889] __kmalloc_noprof+0xcb/0x400 [ 118.292060][ T5889] constrain_params_by_rules+0x176/0xca0 [ 118.294772][ T5889] ? __pfx___lock_acquire+0x10/0x10 [ 118.297337][ T5889] ? __pfx_mark_lock+0x10/0x10 [ 118.299604][ T5889] ? hlock_class+0x4e/0x130 [ 118.301850][ T5889] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 118.304789][ T5889] ? hlock_class+0x4e/0x130 [ 118.307020][ T5889] ? mark_lock+0xb5/0xc60 [ 118.309084][ T5889] ? __pfx___lock_acquire+0x10/0x10 [ 118.311636][ T5889] ? snd_interval_refine+0x2fa/0x580 [ 118.314230][ T5889] snd_pcm_hw_refine+0x7ef/0xad0 [ 118.316668][ T5889] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 118.319201][ T5889] ? __pfx_lock_release+0x10/0x10 [ 118.321661][ T5889] ? mark_held_locks+0x9f/0xe0 [ 118.324204][ T5889] snd_pcm_hw_params+0x2ce/0x1a30 [ 118.326526][ T5889] ? snd_pcm_drop+0x230/0x2b0 [ 118.328761][ T5889] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 118.331373][ T5889] ? mark_held_locks+0x9f/0xe0 [ 118.333586][ T5889] ? _raw_spin_unlock_irq+0x23/0x50 [ 118.335979][ T5889] ? lockdep_hardirqs_on+0x7c/0x110 [ 118.338523][ T5889] snd_pcm_kernel_ioctl+0x147/0x2d0 [ 118.341018][ T5889] snd_pcm_oss_change_params_locked+0x1406/0x3a60 [ 118.344035][ T5889] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 118.347331][ T5889] ? __mutex_lock+0x1a6/0x9c0 [ 118.349567][ T5889] ? snd_pcm_oss_read+0x380/0x760 [ 118.352002][ T5889] ? __pfx___mutex_lock+0x10/0x10 [ 118.354372][ T5889] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 118.357153][ T5889] snd_pcm_oss_read+0x3a2/0x760 [ 118.359417][ T5889] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 118.361968][ T5889] vfs_read+0x1d4/0xbd0 [ 118.363696][ T5889] ? __pfx_vfs_read+0x10/0x10 [ 118.365950][ T5889] ? __fget_files+0x256/0x400 [ 118.367881][ T5889] ? __fget_light+0x173/0x210 [ 118.370166][ T5889] ksys_read+0x12f/0x260 [ 118.371955][ T5889] ? __pfx_ksys_read+0x10/0x10 [ 118.374173][ T5889] do_syscall_64+0xcd/0x250 [ 118.376279][ T5889] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.379209][ T5889] RIP: 0033:0x7f2fe4979ef9 [ 118.381286][ T5889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 118.390020][ T5889] RSP: 002b:00007f2fe574e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 118.393916][ T5889] RAX: ffffffffffffffda RBX: 00007f2fe4b15f80 RCX: 00007f2fe4979ef9 [ 118.397665][ T5889] RDX: 00000000000000ab RSI: 0000000020000440 RDI: 0000000000000003 [ 118.401447][ T5889] RBP: 00007f2fe574e090 R08: 0000000000000000 R09: 0000000000000000 [ 118.404772][ T5889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 118.408476][ T5889] R13: 0000000000000000 R14: 00007f2fe4b15f80 R15: 00007ffce5175f88 [ 118.412144][ T5889] [ 118.561756][ T5896] netlink: 48 bytes leftover after parsing attributes in process `syz.3.161'. [ 118.627334][ T5899] netlink: 236 bytes leftover after parsing attributes in process `syz.1.162'. [ 118.721717][ T5903] FAULT_INJECTION: forcing a failure. [ 118.721717][ T5903] name failslab, interval 1, probability 0, space 0, times 0 [ 118.726714][ T5903] CPU: 3 UID: 0 PID: 5903 Comm: syz.2.164 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 118.730540][ T5903] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 118.734157][ T5903] Call Trace: [ 118.735263][ T5903] [ 118.736404][ T5903] dump_stack_lvl+0x16c/0x1f0 [ 118.738264][ T5903] should_fail_ex+0x497/0x5b0 [ 118.740495][ T5903] ? fs_reclaim_acquire+0xae/0x160 [ 118.742291][ T5903] should_failslab+0xc2/0x120 [ 118.743891][ T5903] __kmalloc_cache_noprof+0x6b/0x300 [ 118.745714][ T5903] ? gfs2_init_fs_context+0x47/0x400 [ 118.747535][ T5903] gfs2_init_fs_context+0x47/0x400 [ 118.749656][ T5903] ? __pfx_gfs2_init_fs_context+0x10/0x10 [ 118.751867][ T5903] alloc_fs_context+0x54a/0x9c0 [ 118.753739][ T5903] path_mount+0xb08/0x1f20 [ 118.755054][ T5901] FAULT_INJECTION: forcing a failure. [ 118.755054][ T5901] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 118.755441][ T5903] ? __pfx_path_mount+0x10/0x10 [ 118.762259][ T5903] ? putname+0x12e/0x170 [ 118.763653][ T5903] ? putname+0x12e/0x170 [ 118.765254][ T5903] __x64_sys_mount+0x294/0x320 [ 118.767192][ T5903] ? __pfx___x64_sys_mount+0x10/0x10 [ 118.769364][ T5903] do_syscall_64+0xcd/0x250 [ 118.771277][ T5903] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.773712][ T5903] RIP: 0033:0x7fa8df579ef9 [ 118.775577][ T5903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 118.783260][ T5903] RSP: 002b:00007fa8e0379038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 118.786412][ T5903] RAX: ffffffffffffffda RBX: 00007fa8df715f80 RCX: 00007fa8df579ef9 [ 118.789166][ T5903] RDX: 00000000200000c0 RSI: 0000000020000080 RDI: 0000000020000140 [ 118.792452][ T5903] RBP: 00007fa8e0379090 R08: 0000000000000000 R09: 0000000000000000 [ 118.795629][ T5903] R10: 0000000002008044 R11: 0000000000000246 R12: 0000000000000002 [ 118.798705][ T5903] R13: 0000000000000000 R14: 00007fa8df715f80 R15: 00007ffc438c33e8 [ 118.801657][ T5903] [ 118.802583][ T5901] CPU: 0 UID: 0 PID: 5901 Comm: syz.3.163 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 118.806089][ T5901] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 118.810136][ T5901] Call Trace: [ 118.811285][ T5901] [ 118.812585][ T5901] dump_stack_lvl+0x16c/0x1f0 [ 118.814549][ T5901] should_fail_ex+0x497/0x5b0 [ 118.816283][ T5901] _copy_from_user+0x30/0xf0 [ 118.817933][ T5901] copy_msghdr_from_user+0x99/0x160 [ 118.820109][ T5901] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 118.822370][ T5901] ? rcu_is_watching+0x12/0xc0 [ 118.824313][ T5901] ? __pfx___lock_acquire+0x10/0x10 [ 118.826477][ T5901] ___sys_recvmsg+0xdc/0x1a0 [ 118.828067][ T5901] ? __pfx____sys_recvmsg+0x10/0x10 [ 118.830281][ T5901] ? find_held_lock+0x2d/0x110 [ 118.832307][ T5901] ? __pfx___might_resched+0x10/0x10 [ 118.834582][ T5901] ? __might_fault+0xe3/0x190 [ 118.836246][ T5901] do_recvmmsg+0x2ba/0x750 [ 118.837826][ T5901] ? __pfx_do_recvmmsg+0x10/0x10 [ 118.839488][ T5901] ? vfs_write+0x14d/0x1140 [ 118.841390][ T5901] ? __mutex_unlock_slowpath+0x164/0x650 [ 118.842636][ T5906] overlayfs: workdir and upperdir must reside under the same mount [ 118.843551][ T5901] __x64_sys_recvmmsg+0x239/0x290 [ 118.843567][ T5901] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 118.851281][ T5901] do_syscall_64+0xcd/0x250 [ 118.853050][ T5901] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.855460][ T5901] RIP: 0033:0x7fb9d5579ef9 [ 118.857068][ T5901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 118.864126][ T5901] RSP: 002b:00007fb9d6281038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 118.866993][ T5901] RAX: ffffffffffffffda RBX: 00007fb9d5715f80 RCX: 00007fb9d5579ef9 [ 118.869898][ T5901] RDX: 0000000000000493 RSI: 0000000020004d80 RDI: 0000000000000003 [ 118.872517][ T5901] RBP: 00007fb9d6281090 R08: 0000000000000000 R09: 0000000000000000 [ 118.874975][ T5901] R10: 000000000000000a R11: 0000000000000246 R12: 0000000000000002 [ 118.877410][ T5901] R13: 0000000000000000 R14: 00007fb9d5715f80 R15: 00007ffc00376218 [ 118.880697][ T5901] [ 119.802917][ T39] kauditd_printk_skb: 37 callbacks suppressed [ 119.802932][ T39] audit: type=1400 audit(1724968385.858:323): avc: denied { mount } for pid=5918 comm="syz.0.169" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 119.816534][ T39] audit: type=1400 audit(1724968385.858:324): avc: denied { mounton } for pid=5918 comm="syz.0.169" path="/47/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1 [ 119.835188][ T39] audit: type=1400 audit(1724968385.858:325): avc: denied { mount } for pid=5918 comm="syz.0.169" name="/" dev="overlay" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 120.745870][ T39] audit: type=1400 audit(1724968386.798:326): avc: denied { unmount } for pid=5340 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 120.756841][ T39] audit: type=1400 audit(1724968386.808:327): avc: denied { watch_mount watch_reads } for pid=5921 comm="syz.2.170" path="/43" dev="tmpfs" ino=243 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 120.777963][ T5924] netlink: 48 bytes leftover after parsing attributes in process `syz.0.171'. [ 120.802544][ T39] audit: type=1400 audit(1724968386.858:328): avc: denied { bind } for pid=5925 comm="syz.2.172" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 120.814644][ T39] audit: type=1400 audit(1724968386.858:329): avc: denied { getopt } for pid=5925 comm="syz.2.172" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 120.939786][ T39] audit: type=1400 audit(1724968386.988:330): avc: denied { shutdown } for pid=5938 comm="syz.0.174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 121.202351][ T5945] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=32792 sclass=netlink_route_socket pid=5945 comm=syz.0.176 [ 121.209922][ T5945] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 121.215081][ T5945] batadv_slave_0: entered allmulticast mode [ 121.246781][ T5944] block nbd0: shutting down sockets [ 121.301973][ T39] audit: type=1400 audit(1724968387.358:331): avc: denied { setopt } for pid=5947 comm="syz.0.177" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 121.310486][ T39] audit: type=1400 audit(1724968387.358:332): avc: denied { read } for pid=5947 comm="syz.0.177" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 121.460779][ T5954] Invalid ELF header magic: != ELF [ 121.668574][ T5957] netlink: 48 bytes leftover after parsing attributes in process `syz.1.181'. [ 121.849402][ T5962] FAULT_INJECTION: forcing a failure. [ 121.849402][ T5962] name failslab, interval 1, probability 0, space 0, times 0 [ 121.855217][ T5962] CPU: 3 UID: 0 PID: 5962 Comm: syz.1.182 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 121.859559][ T5962] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 121.864035][ T5962] Call Trace: [ 121.865485][ T5962] [ 121.866791][ T5962] dump_stack_lvl+0x16c/0x1f0 [ 121.868876][ T5962] should_fail_ex+0x497/0x5b0 [ 121.870915][ T5962] ? __pfx_lock_acquire+0x10/0x10 [ 121.873089][ T5962] should_failslab+0xc2/0x120 [ 121.874969][ T5962] __kmalloc_node_track_caller_noprof+0xcf/0x430 [ 121.877512][ T5962] ? sidtab_sid2str_get+0x17a/0x680 [ 121.879726][ T5962] kmemdup_noprof+0x29/0x60 [ 121.881780][ T5962] sidtab_sid2str_get+0x17a/0x680 [ 121.883970][ T5962] ? kasan_quarantine_put+0x10a/0x240 [ 121.886306][ T5962] sidtab_entry_to_string+0x33/0x110 [ 121.888621][ T5962] security_sid_to_context_core+0x35c/0x640 [ 121.891157][ T5962] security_secid_to_secctx+0x75/0xc0 [ 121.893498][ T5962] hci_sock_recvmsg+0xd43/0x13c0 [ 121.895663][ T5962] ? __pfx_hci_sock_recvmsg+0x10/0x10 [ 121.898002][ T5962] ? __pfx_mark_lock+0x10/0x10 [ 121.900065][ T5962] ? stack_access_ok+0xf9/0x270 [ 121.902165][ T5962] ? find_held_lock+0x2d/0x110 [ 121.904217][ T5962] ? security_socket_recvmsg+0x98/0xd0 [ 121.906573][ T5962] sock_recvmsg+0x1f6/0x250 [ 121.908524][ T5962] ____sys_recvmsg+0x21f/0x6b0 [ 121.910619][ T5962] ? __pfx_____sys_recvmsg+0x10/0x10 [ 121.912845][ T5962] ? find_held_lock+0x2d/0x110 [ 121.914692][ T5962] ___sys_recvmsg+0x115/0x1a0 [ 121.916528][ T5962] ? __pfx____sys_recvmsg+0x10/0x10 [ 121.918790][ T5962] ? __fget_light+0x173/0x210 [ 121.920827][ T5962] do_recvmmsg+0x2ba/0x750 [ 121.922794][ T5962] ? __pfx_do_recvmmsg+0x10/0x10 [ 121.924929][ T5962] ? vfs_write+0x14d/0x1140 [ 121.926676][ T5962] ? __mutex_unlock_slowpath+0x164/0x650 [ 121.929023][ T5962] __x64_sys_recvmmsg+0x239/0x290 [ 121.931198][ T5962] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 121.933548][ T5962] do_syscall_64+0xcd/0x250 [ 121.935491][ T5962] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.938066][ T5962] RIP: 0033:0x7f2fe4979ef9 [ 121.939982][ T5962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 121.948221][ T5962] RSP: 002b:00007f2fe574e038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 121.951787][ T5962] RAX: ffffffffffffffda RBX: 00007f2fe4b15f80 RCX: 00007f2fe4979ef9 [ 121.955163][ T5962] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 121.958541][ T5962] RBP: 00007f2fe574e090 R08: 0000000000000000 R09: 0000000000000000 [ 121.961895][ T5962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 121.965289][ T5962] R13: 0000000000000000 R14: 00007f2fe4b15f80 R15: 00007ffce5175f88 [ 121.968665][ T5962] [ 123.142867][ T5977] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12 sclass=netlink_route_socket pid=5977 comm=syz.0.186 [ 123.149788][ T5979] FAULT_INJECTION: forcing a failure. [ 123.149788][ T5979] name failslab, interval 1, probability 0, space 0, times 0 [ 123.155837][ T5979] CPU: 1 UID: 0 PID: 5979 Comm: syz.2.187 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 123.160597][ T5979] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 123.165219][ T5979] Call Trace: [ 123.166754][ T5979] [ 123.168263][ T5979] dump_stack_lvl+0x16c/0x1f0 [ 123.170283][ T5979] should_fail_ex+0x497/0x5b0 [ 123.172463][ T5979] should_failslab+0xc2/0x120 [ 123.174585][ T5979] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 123.176886][ T5979] ? skb_clone+0x190/0x3f0 [ 123.178666][ T5979] skb_clone+0x190/0x3f0 [ 123.180513][ T5979] netlink_deliver_tap+0xab3/0xd90 [ 123.182825][ T5979] netlink_unicast+0x5e1/0x7f0 [ 123.184905][ T5979] ? __pfx_netlink_unicast+0x10/0x10 [ 123.187053][ T5979] netlink_sendmsg+0x8b8/0xd70 [ 123.189044][ T5979] ? __pfx_netlink_sendmsg+0x10/0x10 [ 123.191335][ T5979] ? __import_iovec+0x1fd/0x6e0 [ 123.193134][ T5979] ____sys_sendmsg+0xab5/0xc90 [ 123.194899][ T5979] ? copy_msghdr_from_user+0x10b/0x160 [ 123.196996][ T5979] ? __pfx_____sys_sendmsg+0x10/0x10 [ 123.198994][ T5979] ? find_held_lock+0x2d/0x110 [ 123.200980][ T5979] ? __pfx___lock_acquire+0x10/0x10 [ 123.203249][ T5979] ___sys_sendmsg+0x135/0x1e0 [ 123.205425][ T5979] ? __pfx____sys_sendmsg+0x10/0x10 [ 123.207728][ T5979] ? ksys_write+0x21c/0x260 [ 123.209598][ T5979] ? __fget_light+0x173/0x210 [ 123.211841][ T5979] __sys_sendmsg+0x117/0x1f0 [ 123.214227][ T5979] ? __pfx___sys_sendmsg+0x10/0x10 [ 123.216569][ T5979] do_syscall_64+0xcd/0x250 [ 123.218702][ T5979] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.221512][ T5979] RIP: 0033:0x7fa8df579ef9 [ 123.223631][ T5979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 123.232513][ T5979] RSP: 002b:00007fa8e0379038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 123.236396][ T5979] RAX: ffffffffffffffda RBX: 00007fa8df715f80 RCX: 00007fa8df579ef9 [ 123.240087][ T5979] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 123.243813][ T5979] RBP: 00007fa8e0379090 R08: 0000000000000000 R09: 0000000000000000 [ 123.247177][ T5979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 123.251124][ T5979] R13: 0000000000000000 R14: 00007fa8df715f80 R15: 00007ffc438c33e8 [ 123.254881][ T5979] [ 123.258875][ T5979] netlink: 288 bytes leftover after parsing attributes in process `syz.2.187'. [ 123.355869][ T5981] input: syz1 as /devices/virtual/input/input5 [ 124.722640][ T5987] netlink: 48 bytes leftover after parsing attributes in process `syz.0.190'. [ 124.967256][ T39] kauditd_printk_skb: 14 callbacks suppressed [ 124.967266][ T39] audit: type=1400 audit(1724968391.018:347): avc: denied { create } for pid=5991 comm="syz.3.192" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 124.978122][ T39] audit: type=1400 audit(1724968391.028:348): avc: denied { setopt } for pid=5991 comm="syz.3.192" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 125.216318][ T39] audit: type=1400 audit(1724968391.268:349): avc: denied { sqpoll } for pid=5998 comm="syz.3.193" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 125.230630][ T39] audit: type=1400 audit(1724968391.288:350): avc: denied { wake_alarm } for pid=5998 comm="syz.3.193" capability=35 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 125.361287][ T39] audit: type=1400 audit(1724968391.418:351): avc: denied { remount } for pid=6002 comm="syz.1.194" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 125.371227][ T39] audit: type=1400 audit(1724968391.418:352): avc: denied { create } for pid=6002 comm="syz.1.194" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 125.711997][ T66] Bluetooth: hci0: ISO packet too small [ 125.920712][ T6009] netlink: 36 bytes leftover after parsing attributes in process `syz.0.197'. [ 125.930475][ T6013] netlink: 48 bytes leftover after parsing attributes in process `syz.1.199'. [ 126.030047][ T6016] binder: BINDER_SET_CONTEXT_MGR already set [ 126.032809][ T6016] binder: 6012:6016 ioctl 4018620d 200005c0 returned -16 [ 126.206440][ T6018] netlink: 'syz.0.200': attribute type 10 has an invalid length. [ 126.211757][ T6018] team0: Device vlan0 is up. Set it down before adding it as a team port [ 126.219819][ T39] audit: type=1400 audit(1724968392.268:353): avc: denied { rename } for pid=4806 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 126.260929][ T39] audit: type=1400 audit(1724968392.268:354): avc: denied { unlink } for pid=4806 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 126.272430][ T39] audit: type=1400 audit(1724968392.268:355): avc: denied { create } for pid=4806 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 126.475127][ T39] audit: type=1400 audit(1724968392.528:356): avc: denied { connect } for pid=6025 comm="syz.3.203" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 127.930004][ T6037] netlink: 16 bytes leftover after parsing attributes in process `syz.1.206'. [ 128.085034][ T6041] netlink: 8 bytes leftover after parsing attributes in process `syz.1.209'. [ 128.233674][ T6046] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.208'. [ 128.237665][ T6043] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.208'. [ 128.262239][ T6047] netlink: 4 bytes leftover after parsing attributes in process `syz.1.210'. [ 128.421184][ T6047] team1: Mode changed to "loadbalance" [ 128.504909][ T6051] binder: BINDER_SET_CONTEXT_MGR already set [ 128.507514][ T6051] binder: 6048:6051 ioctl 4018620d 200005c0 returned -16 [ 129.619382][ T6065] ip6gretap0 speed is unknown, defaulting to 1000 [ 129.623152][ T6065] ip6gretap0 speed is unknown, defaulting to 1000 [ 129.626496][ T6065] ip6gretap0 speed is unknown, defaulting to 1000 [ 129.635529][ T6065] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 129.656782][ T6065] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 129.688219][ T6065] ip6gretap0 speed is unknown, defaulting to 1000 [ 129.693953][ T6065] ip6gretap0 speed is unknown, defaulting to 1000 [ 129.699338][ T6065] ip6gretap0 speed is unknown, defaulting to 1000 [ 129.713958][ T6065] ip6gretap0 speed is unknown, defaulting to 1000 [ 130.190429][ T39] kauditd_printk_skb: 19 callbacks suppressed [ 130.190444][ T39] audit: type=1400 audit(1724968396.248:376): avc: denied { read } for pid=6073 comm="syz.3.219" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 130.263149][ T39] audit: type=1400 audit(1724968396.318:377): avc: denied { mount } for pid=6069 comm="syz.0.218" name="/" dev="configfs" ino=2086 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 130.265947][ T6077] netlink: 'syz.3.220': attribute type 6 has an invalid length. [ 130.292360][ T6072] overlayfs: missing 'workdir' [ 130.672719][ T6089] netlink: 24 bytes leftover after parsing attributes in process `syz.3.226'. [ 130.853788][ T6097] netlink: 20 bytes leftover after parsing attributes in process `syz.3.230'. [ 130.902360][ T6099] netlink: 8 bytes leftover after parsing attributes in process `syz.3.231'. [ 130.952136][ T39] audit: type=1400 audit(1724968397.008:378): avc: denied { bind } for pid=6100 comm="syz.3.232" lport=55623 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 130.960856][ T39] audit: type=1400 audit(1724968397.008:379): avc: denied { name_bind } for pid=6100 comm="syz.3.232" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1 [ 130.969491][ T39] audit: type=1400 audit(1724968397.008:380): avc: denied { node_bind } for pid=6100 comm="syz.3.232" saddr=fe80::aa src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1 [ 131.105079][ C1] vxcan0: j1939_tp_rxtimer: 0xffff88816dbcae00: rx timeout, send abort [ 131.111091][ C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff88816dbcae00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 131.227322][ T39] audit: type=1400 audit(1724968397.278:381): avc: denied { unmount } for pid=5340 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 131.310076][ T6115] netlink: 4 bytes leftover after parsing attributes in process `syz.3.239'. [ 132.065170][ T6134] netlink: 20 bytes leftover after parsing attributes in process `syz.1.246'. [ 133.196225][ T39] audit: type=1400 audit(1724968399.248:382): avc: denied { setopt } for pid=6143 comm="syz.3.251" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 133.419443][ T1382] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.429993][ T1382] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.836763][ T5353] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 133.841805][ T5353] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 133.845751][ T5353] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 133.852024][ T5353] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 133.856429][ T5353] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 133.862450][ T5353] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 133.927591][ T6156] lo speed is unknown, defaulting to 1000 [ 134.060283][ T39] audit: type=1400 audit(1724968399.928:383): avc: denied { mounton } for pid=6156 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 134.506286][ T6156] ip6gretap0 speed is unknown, defaulting to 1000 [ 134.654889][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 134.799551][ T6165] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 134.858187][ T39] audit: type=1326 audit(1724968400.908:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6179 comm="syz.0.263" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d3af79ef9 code=0x7ffc0000 [ 134.869221][ T39] audit: type=1326 audit(1724968400.918:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6179 comm="syz.0.263" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d3af79ef9 code=0x7ffc0000 [ 134.898753][ T6156] chnl_net:caif_netlink_parms(): no params data found [ 135.178318][ T6156] bridge0: port 1(bridge_slave_0) entered blocking state [ 135.182992][ T6156] bridge0: port 1(bridge_slave_0) entered disabled state [ 135.189292][ T6156] bridge_slave_0: entered allmulticast mode [ 135.194767][ T6156] bridge_slave_0: entered promiscuous mode [ 135.209937][ T6156] bridge0: port 2(bridge_slave_1) entered blocking state [ 135.213879][ T6156] bridge0: port 2(bridge_slave_1) entered disabled state [ 135.217188][ T6156] bridge_slave_1: entered allmulticast mode [ 135.224112][ T6156] bridge_slave_1: entered promiscuous mode [ 135.375688][ T6156] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 135.413699][ T6156] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 135.702305][ T6156] team0: Port device team_slave_0 added [ 135.709270][ T6156] team0: Port device team_slave_1 added [ 135.810587][ T6156] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 135.813580][ T6156] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 135.849260][ T6156] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 135.864879][ T6156] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 135.890064][ T66] Bluetooth: hci4: command tx timeout [ 135.899834][ T6156] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 135.928964][ T6156] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 136.281529][ T6156] hsr_slave_0: entered promiscuous mode [ 136.288202][ T6156] hsr_slave_1: entered promiscuous mode [ 136.291407][ T6156] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 136.294249][ T6156] Cannot create hsr debugfs directory [ 136.338899][ T6229] syzkaller0: entered promiscuous mode [ 136.342456][ T6229] syzkaller0: entered allmulticast mode [ 137.425552][ T39] kauditd_printk_skb: 5 callbacks suppressed [ 137.425565][ T39] audit: type=1326 audit(1724968403.478:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6241 comm="syz.0.284" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d3af79ef9 code=0x7ffc0000 [ 137.442621][ T39] audit: type=1326 audit(1724968403.498:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6241 comm="syz.0.284" exe="/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f1d3af79ef9 code=0x7ffc0000 [ 137.454280][ T39] audit: type=1326 audit(1724968403.498:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6241 comm="syz.0.284" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d3af79ef9 code=0x7ffc0000 [ 137.464079][ T39] audit: type=1326 audit(1724968403.508:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6241 comm="syz.0.284" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1d3af79ef9 code=0x7ffc0000 [ 137.474188][ T39] audit: type=1326 audit(1724968403.508:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6241 comm="syz.0.284" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d3af79ef9 code=0x7ffc0000 [ 137.484884][ T39] audit: type=1326 audit(1724968403.508:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6241 comm="syz.0.284" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d3af79ef9 code=0x7ffc0000 [ 137.495067][ T39] audit: type=1326 audit(1724968403.508:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6241 comm="syz.0.284" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1d3af79ef9 code=0x7ffc0000 [ 137.505916][ T39] audit: type=1326 audit(1724968403.508:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6241 comm="syz.0.284" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d3af79ef9 code=0x7ffc0000 [ 137.515815][ T39] audit: type=1326 audit(1724968403.508:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6241 comm="syz.0.284" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d3af79ef9 code=0x7ffc0000 [ 137.525951][ T39] audit: type=1326 audit(1724968403.508:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6241 comm="syz.0.284" exe="/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7f1d3af79ef9 code=0x7ffc0000 [ 137.959821][ T66] Bluetooth: hci4: command tx timeout [ 138.867923][ T6260] netlink: 4 bytes leftover after parsing attributes in process `syz.0.290'. [ 139.018387][ T6260] hsr_slave_1 (unregistering): left promiscuous mode [ 139.201153][ T6156] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 139.379826][ T6156] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 139.577425][ T6156] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 139.830281][ T6156] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.006038][ T6156] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 140.026299][ T6156] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 140.037399][ T6156] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 140.040070][ T66] Bluetooth: hci4: command tx timeout [ 140.068932][ T6156] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 140.207615][ T6156] 8021q: adding VLAN 0 to HW filter on device bond0 [ 140.233639][ T6288] ------------[ cut here ]------------ [ 140.236667][ T6288] WARNING: CPU: 2 PID: 6288 at include/linux/rwsem.h:195 follow_pte+0x414/0x4c0 [ 140.240965][ T6288] Modules linked in: [ 140.242845][ T6288] CPU: 2 UID: 0 PID: 6288 Comm: syz.3.299 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 140.248854][ T6288] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 140.252619][ T6288] RIP: 0010:follow_pte+0x414/0x4c0 [ 140.254426][ T6288] Code: bf 98 01 00 00 be ff ff ff ff e8 17 03 42 09 31 ff 41 89 c4 89 c6 e8 8b 5f bb ff 45 85 e4 0f 85 80 fc ff ff e8 3d 5d bb ff 90 <0f> 0b 90 e9 72 fc ff ff e8 2f 5d bb ff 90 0f 0b 48 c7 c7 b8 2b 13 [ 140.261333][ T6288] RSP: 0018:ffffc900036f74d0 EFLAGS: 00010287 [ 140.264041][ T6288] RAX: 0000000000009a36 RBX: 00007efced883000 RCX: ffffc900053d1000 [ 140.266782][ T6288] RDX: 0000000000040000 RSI: ffffffff81cf18d3 RDI: 0000000000000005 [ 140.269524][ T6288] RBP: ffff88802c62fe88 R08: 0000000000000005 R09: 0000000000000000 [ 140.272950][ T6288] R10: 0000000000000000 R11: 00000000000001ca R12: 0000000000000000 [ 140.275922][ T6288] R13: ffffc900036f7530 R14: ffffc900036f7550 R15: ffff888020e4df00 [ 140.279234][ T6288] FS: 00007fb9d4fde6c0(0000) GS:ffff88806b200000(0000) knlGS:0000000000000000 [ 140.283218][ T6288] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 140.285930][ T6288] CR2: 0000000000000000 CR3: 0000000051d2c000 CR4: 0000000000350ef0 [ 140.289131][ T6288] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 140.292421][ T6288] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 140.295672][ T6288] Call Trace: [ 140.297169][ T6288] [ 140.298452][ T6288] ? show_regs+0x8c/0xa0 [ 140.300472][ T6288] ? __warn+0xe5/0x3c0 [ 140.302270][ T6288] ? follow_pte+0x414/0x4c0 [ 140.304312][ T6288] ? report_bug+0x3c0/0x580 [ 140.306291][ T6288] ? handle_bug+0x3d/0x70 [ 140.308198][ T6288] ? exc_invalid_op+0x17/0x50 [ 140.310443][ T6288] ? asm_exc_invalid_op+0x1a/0x20 [ 140.312677][ T6288] ? follow_pte+0x413/0x4c0 [ 140.314638][ T6288] ? follow_pte+0x414/0x4c0 [ 140.316664][ T6288] get_pat_info+0xf2/0x510 [ 140.318634][ T6288] ? __pfx_get_pat_info+0x10/0x10 [ 140.320890][ T6288] untrack_pfn+0xf7/0x4d0 [ 140.322562][ T6288] ? __pfx_untrack_pfn+0x10/0x10 [ 140.324547][ T6288] ? zap_page_range_single+0x307/0x560 [ 140.326935][ T6288] ? __pfx_lock_release+0x10/0x10 [ 140.329135][ T6288] ? uprobe_munmap+0x20/0x5d0 [ 140.331288][ T6288] unmap_single_vma+0x1bd/0x2b0 [ 140.333396][ T6288] zap_page_range_single+0x326/0x560 [ 140.335687][ T6288] ? __pfx_zap_page_range_single+0x10/0x10 [ 140.338240][ T6288] ? __pfx___might_resched+0x10/0x10 [ 140.340646][ T6288] ? vma_interval_tree_subtree_search+0x14d/0x1b0 [ 140.343395][ T6288] unmap_mapping_range+0x1ee/0x280 [ 140.345576][ T6288] ? __pfx_unmap_mapping_range+0x10/0x10 [ 140.348022][ T6288] ? inode_newsize_ok+0x13b/0x200 [ 140.350277][ T6288] truncate_pagecache+0x53/0x90 [ 140.352434][ T6288] simple_setattr+0xf2/0x120 [ 140.354322][ T6288] notify_change+0xf41/0x1230 [ 140.356387][ T6288] do_truncate+0x15c/0x220 [ 140.358348][ T6288] ? __pfx_do_truncate+0x10/0x10 [ 140.360644][ T6288] path_openat+0x27a8/0x2d20 [ 140.362668][ T6288] ? __pfx_path_openat+0x10/0x10 [ 140.364775][ T6288] ? __pfx___lock_acquire+0x10/0x10 [ 140.367590][ T6288] ? find_held_lock+0x2d/0x110 [ 140.369568][ T6288] do_filp_open+0x1dc/0x430 [ 140.371642][ T6288] ? __pfx_do_filp_open+0x10/0x10 [ 140.373659][ T6288] ? find_held_lock+0x2d/0x110 [ 140.375463][ T6288] ? _raw_spin_unlock+0x28/0x50 [ 140.377547][ T6288] ? alloc_fd+0x2d7/0x6c0 [ 140.379434][ T6288] do_sys_openat2+0x17a/0x1e0 [ 140.381543][ T6288] ? __pfx_do_sys_openat2+0x10/0x10 [ 140.383817][ T6288] ? __fget_files+0x256/0x400 [ 140.385886][ T6288] __x64_sys_openat+0x175/0x210 [ 140.388023][ T6288] ? __pfx___x64_sys_openat+0x10/0x10 [ 140.390436][ T6288] do_syscall_64+0xcd/0x250 [ 140.392430][ T6288] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.395041][ T6288] RIP: 0033:0x7fb9d5579ef9 [ 140.397076][ T6288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 140.405682][ T6288] RSP: 002b:00007fb9d4fde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 140.408942][ T6288] RAX: ffffffffffffffda RBX: 00007fb9d5716130 RCX: 00007fb9d5579ef9 [ 140.412055][ T6288] RDX: 0000000000003f00 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 140.414998][ T6288] RBP: 00007fb9d55e793e R08: 0000000000000000 R09: 0000000000000000 [ 140.418046][ T6288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 140.421147][ T6288] R13: 0000000000000000 R14: 00007fb9d5716130 R15: 00007ffc00376218 [ 140.424583][ T6288] [ 140.425996][ T6288] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 140.429288][ T6288] CPU: 2 UID: 0 PID: 6288 Comm: syz.3.299 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 140.433802][ T6288] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 140.438391][ T6288] Call Trace: [ 140.439975][ T6288] [ 140.441405][ T6288] dump_stack_lvl+0x3d/0x1f0 [ 140.443455][ T6288] panic+0x6dc/0x7c0 [ 140.445463][ T6288] ? __pfx_panic+0x10/0x10 [ 140.447400][ T6288] ? show_trace_log_lvl+0x363/0x500 [ 140.449669][ T6288] ? follow_pte+0x414/0x4c0 [ 140.451714][ T6288] check_panic_on_warn+0xab/0xb0 [ 140.453835][ T6288] __warn+0xf1/0x3c0 [ 140.455355][ T6288] ? follow_pte+0x414/0x4c0 [ 140.457165][ T6288] report_bug+0x3c0/0x580 [ 140.459049][ T6288] handle_bug+0x3d/0x70 [ 140.460901][ T6288] exc_invalid_op+0x17/0x50 [ 140.462830][ T6288] asm_exc_invalid_op+0x1a/0x20 [ 140.464562][ T6288] RIP: 0010:follow_pte+0x414/0x4c0 [ 140.466716][ T6288] Code: bf 98 01 00 00 be ff ff ff ff e8 17 03 42 09 31 ff 41 89 c4 89 c6 e8 8b 5f bb ff 45 85 e4 0f 85 80 fc ff ff e8 3d 5d bb ff 90 <0f> 0b 90 e9 72 fc ff ff e8 2f 5d bb ff 90 0f 0b 48 c7 c7 b8 2b 13 [ 140.473822][ T6288] RSP: 0018:ffffc900036f74d0 EFLAGS: 00010287 [ 140.476176][ T6288] RAX: 0000000000009a36 RBX: 00007efced883000 RCX: ffffc900053d1000 [ 140.479125][ T6288] RDX: 0000000000040000 RSI: ffffffff81cf18d3 RDI: 0000000000000005 [ 140.482179][ T6288] RBP: ffff88802c62fe88 R08: 0000000000000005 R09: 0000000000000000 [ 140.485037][ T6288] R10: 0000000000000000 R11: 00000000000001ca R12: 0000000000000000 [ 140.488023][ T6288] R13: ffffc900036f7530 R14: ffffc900036f7550 R15: ffff888020e4df00 [ 140.490821][ T6288] ? follow_pte+0x413/0x4c0 [ 140.492613][ T6288] get_pat_info+0xf2/0x510 [ 140.494621][ T6288] ? __pfx_get_pat_info+0x10/0x10 [ 140.496856][ T6288] untrack_pfn+0xf7/0x4d0 [ 140.498829][ T6288] ? __pfx_untrack_pfn+0x10/0x10 [ 140.501035][ T6288] ? zap_page_range_single+0x307/0x560 [ 140.503445][ T6288] ? __pfx_lock_release+0x10/0x10 [ 140.505670][ T6288] ? uprobe_munmap+0x20/0x5d0 [ 140.507763][ T6288] unmap_single_vma+0x1bd/0x2b0 [ 140.509951][ T6288] zap_page_range_single+0x326/0x560 [ 140.512365][ T6288] ? __pfx_zap_page_range_single+0x10/0x10 [ 140.514965][ T6288] ? __pfx___might_resched+0x10/0x10 [ 140.517084][ T6288] ? vma_interval_tree_subtree_search+0x14d/0x1b0 [ 140.519495][ T6288] unmap_mapping_range+0x1ee/0x280 [ 140.521728][ T6288] ? __pfx_unmap_mapping_range+0x10/0x10 [ 140.524149][ T6288] ? inode_newsize_ok+0x13b/0x200 [ 140.526082][ T6288] truncate_pagecache+0x53/0x90 [ 140.527886][ T6288] simple_setattr+0xf2/0x120 [ 140.529829][ T6288] notify_change+0xf41/0x1230 [ 140.531600][ T6288] do_truncate+0x15c/0x220 [ 140.533224][ T6288] ? __pfx_do_truncate+0x10/0x10 [ 140.535388][ T6288] path_openat+0x27a8/0x2d20 [ 140.537230][ T6288] ? __pfx_path_openat+0x10/0x10 [ 140.539187][ T6288] ? __pfx___lock_acquire+0x10/0x10 [ 140.541435][ T6288] ? find_held_lock+0x2d/0x110 [ 140.543276][ T6288] do_filp_open+0x1dc/0x430 [ 140.544831][ T6288] ? __pfx_do_filp_open+0x10/0x10 [ 140.546712][ T6288] ? find_held_lock+0x2d/0x110 [ 140.548553][ T6288] ? _raw_spin_unlock+0x28/0x50 [ 140.550447][ T6288] ? alloc_fd+0x2d7/0x6c0 [ 140.552166][ T6288] do_sys_openat2+0x17a/0x1e0 [ 140.554168][ T6288] ? __pfx_do_sys_openat2+0x10/0x10 [ 140.556359][ T6288] ? __fget_files+0x256/0x400 [ 140.558292][ T6288] __x64_sys_openat+0x175/0x210 [ 140.560042][ T6288] ? __pfx___x64_sys_openat+0x10/0x10 [ 140.562272][ T6288] do_syscall_64+0xcd/0x250 [ 140.564332][ T6288] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.566664][ T6288] RIP: 0033:0x7fb9d5579ef9 [ 140.568441][ T6288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 140.575908][ T6288] RSP: 002b:00007fb9d4fde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 140.578858][ T6288] RAX: ffffffffffffffda RBX: 00007fb9d5716130 RCX: 00007fb9d5579ef9 [ 140.581894][ T6288] RDX: 0000000000003f00 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 140.585389][ T6288] RBP: 00007fb9d55e793e R08: 0000000000000000 R09: 0000000000000000 [ 140.588825][ T6288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 140.592276][ T6288] R13: 0000000000000000 R14: 00007fb9d5716130 R15: 00007ffc00376218 [ 140.595680][ T6288] [ 140.597595][ T6288] Kernel Offset: disabled [ 140.599967][ T6288] Rebooting in 86400 seconds.. VM DIAGNOSIS: 21:53:26 Registers: info registers vcpu 0 CPU#0 RAX=fffffbfff28c5af8 RBX=fffffbfff28c5af8 RCX=ffffffff81683318 RDX=fffffbfff28c5af8 RSI=0000000000000008 RDI=ffffffff9462d7b8 RBP=fffffbfff28c5af7 RSP=ffffc900035c7470 R8 =0000000000000000 R9 =fffffbfff28c5af7 R10=ffffffff9462d7bf R11=0000000000000000 R12=0000000000000000 R13=ffff888028ba0ae0 R14=0000000000000004 R15=ffff888028ba0000 RIP=ffffffff81e79d6f RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fb9d4fff6c0 ffffffff 00c00000 GS =0000 ffff88806b000000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002003c000 CR3=0000000051d2c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=0000000000000fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 ffffffff8100a0af ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d3afe8762 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d3afe876f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d3afe8769 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d3afe877d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d3afe8803 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d3afe88e1 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d3b0eb488 00007f1d3b0eb480 00007f1d3b0eb478 00007f1d3b0eb450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d3bc4d100 00007f1d3b0eb440 00007f1d3b0eb458 00007f1d3b0eb4a0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d3b0eb498 00007f1d3b0eb490 00007f1d3b0eb488 00007f1d3b0eb480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=000000000017bec5 RBX=0000000000000001 RCX=ffffffff8b112a99 RDX=0000000000000000 RSI=ffffffff8b4cc500 RDI=ffffffff8bb09c00 RBP=ffffed1003058910 RSP=ffffc90000187e08 R8 =0000000000000001 R9 =ffffed100d626fd9 R10=ffff88806b137ecb R11=0000000000000000 R12=0000000000000001 R13=ffff8880182c4880 R14=ffffffff9012fad8 R15=0000000000000000 RIP=ffffffff8b113e8f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b100000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c3a8e94 CR3=000000000db7c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000000000054 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00656572665f6568 6361635f6d656d6b ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2fe49e8762 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2fe49e876f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2fe49e8769 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2fe49e877d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2fe49e8803 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2fe49e88e1 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000100000085 00000000000004b7 00000008000003b7 fffffff800000207 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 9500000001000000 8500000000000004 b700000008000004 0008000f0010000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 07000000000000a2 bf00000000fff88a 7b00000000000008 b700000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff84fe75a0 RDI=ffffffff9519f5a0 RBP=ffffffff9519f560 RSP=ffffc900036f6e58 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000020 R14=fffffbfff2a33f06 R15=dffffc0000000000 RIP=ffffffff84fe75c7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fb9d4fde6c0 ffffffff 00c00000 GS =0000 ffff88806b200000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=0000000051d2c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d55e8762 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d55e876f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d55e8769 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d55e877d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d55e8803 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d55e88e1 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d56eb488 00007fb9d56eb480 00007fb9d56eb478 00007fb9d56eb450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d624d100 00007fb9d56eb440 00007fb9d56eb458 00007fb9d56eb4a0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d56eb498 00007fb9d56eb490 00007fb9d56eb488 00007fb9d56eb480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000c9 0000000000000000 0000000000000000 000000000000365c ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=ffff88806b328500 RCX=000000000000080b RDX=0000000000000000 RSI=ffffffff813c33cc RDI=0000000000000001 RBP=0000000000000003 RSP=ffffc90000908fc0 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=ffffc90000908ff8 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff813b813f RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 000055556e3f9500 ffffffff 00c00000 GS =0000 ffff88806b300000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb9d4fddf98 CR3=0000000024cd8000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 007375746174732f 78756e696c65732f ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d55e8762 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d55e876f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d55e8769 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d55e877d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d55e8803 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d55e88e1 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d56eb488 00007fb9d56eb480 00007fb9d56eb478 00007fb9d56eb450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d624d100 00007fb9d56eb440 00007fb9d56e0004 0008000f0010000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb9d56eb498 00007fb9d56eb490 00007fb9d56eb488 00007fb9d56eb480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000c9 0000000000000000 0000000000000000 000000000000365c ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000