last executing test programs: 3.549158878s ago: executing program 1 (id=260): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000000034d564b0000000001"]) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1800) 3.430233387s ago: executing program 1 (id=261): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040), 0x4001, 0x0) close(0xffffffffffffffff) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000001c0)={0x1000000, 0x200101, 0x0, 'queue1\x00', 0xffffffff}) r2 = dup(r1) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000080)={'syz1\x00', {0x3ff, 0x3, 0x6}, 0x51, [0xd4, 0xa, 0x9, 0x8a3, 0x2, 0x2, 0x7fffffff, 0x80000001, 0x5, 0x1, 0x101, 0x3c6, 0x7, 0x6, 0xf70, 0x3, 0xe7, 0x7, 0x401, 0xbc5e, 0x0, 0x1, 0xa, 0xffff, 0x11, 0xe, 0x10, 0x20000000, 0x15098855, 0x6, 0x2, 0x403, 0x40, 0x4, 0xfffffff7, 0x4, 0xe79, 0x5, 0x1ff4, 0x1, 0x1, 0x80000000, 0x401, 0x9, 0xbdc7, 0xb, 0x1, 0x9, 0x1, 0x1, 0x6, 0x2, 0x80, 0x9, 0x5, 0x9, 0x0, 0x3a27, 0x1000, 0x8, 0x2, 0x6, 0x7ff, 0xb8547353], [0x80000000, 0xffffffff, 0x204, 0x5, 0x7fffffff, 0x1, 0x553, 0x6, 0x2, 0xfffffffc, 0x8, 0xc, 0x36, 0xa, 0x6, 0x1, 0x9, 0x98, 0x1a, 0xe56d, 0xa4, 0x4, 0x99d, 0x8, 0x0, 0xd, 0x5, 0x0, 0x6e38, 0x7fff, 0xa, 0x2, 0x3, 0x0, 0x5, 0x7, 0x4, 0xd, 0x9, 0xfff, 0x4, 0x0, 0x40, 0x1, 0x8, 0x3, 0x8, 0x0, 0x34f1, 0xd, 0x4, 0x1b2c5a17, 0x0, 0x9, 0x8, 0x0, 0xffffffff, 0x1, 0x6, 0x6, 0xac, 0x2, 0x1000054, 0xcfb9], [0x6, 0xdb8, 0x9, 0x4, 0x2, 0x6, 0x5, 0x5, 0x3, 0x5, 0xfffffffd, 0xc8d3, 0x33, 0x9a45, 0x0, 0xee40000, 0x1, 0x1, 0x43, 0x69d, 0xc44f, 0xffff, 0x0, 0x0, 0x8, 0x2, 0x4, 0x800, 0x7, 0x9, 0x0, 0x0, 0x1, 0xfffffffb, 0x3, 0x0, 0x9, 0x8c0, 0x9, 0x2, 0x9, 0x7, 0x6, 0x2, 0x5, 0x8, 0xffffff20, 0x55f2, 0xdf46, 0xfffffffd, 0x7f, 0x9, 0x8000, 0x40, 0x3, 0x46d7572a, 0xa, 0x6, 0x2, 0xffffff00, 0x2da15, 0xc4c, 0xffffff81, 0x10], [0x0, 0x897, 0x8, 0x5, 0x6, 0x101, 0xfffff410, 0xd, 0x7ff, 0x1ff, 0x4, 0x9, 0x80000001, 0x0, 0xb, 0x1da7, 0x7, 0x1, 0x7, 0x2, 0x7ff, 0x3ff, 0x0, 0x2, 0x6, 0x100, 0x80000000, 0xec9b, 0xc4ca, 0x6, 0x0, 0x101, 0xff, 0x7, 0x9, 0x5, 0x7, 0x101, 0x9, 0x3000000, 0xe, 0x4000006, 0xf, 0x1, 0x9, 0x1, 0x4, 0x100009, 0x100, 0x3, 0x3c, 0x1000, 0x3, 0x2, 0x15, 0x8000, 0x7, 0x7e, 0x5, 0x7, 0xfffffffc, 0x4, 0x6, 0xeff]}, 0x45c) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r3) sendmsg$IEEE802154_ADD_IFACE(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01000000ecffffffffff2000000005002000000000000c001f0070687930"], 0x28}}, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r2, 0x40605346, &(0x7f0000001280)={0x0, 0x0, {0x1, 0x0, 0x0, 0x0, 0xf963}}) openat$cgroup_type(r2, &(0x7f0000000000), 0x2, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000640)={'wlan1\x00', 0x0}) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), r5) sendmsg$NL80211_CMD_SET_TID_CONFIG(r5, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f00000007c0)={0x34, r7, 0x1, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x15}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000004}, 0x20000040) sendmsg$NL80211_CMD_EXTERNAL_AUTH(r2, &(0x7f0000000680)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000640)={&(0x7f00000008c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=r7, @ANYBLOB="20002dbd7000ffdbdf257f0000000c009900070000005200000014005500859ce93dd0a326f8256489ad98b3a6f114005500abf3465b3ec07fdec1bdec55070b538d14005500fb216e06ba97ef55b47fb1f55d958d7a8e780a00340001010101010100000a003400010101010101000012003400774ec7e7e6ef62c7a232d60df483000006004800680000006fe8cf3da87c96390876a6ec9db7e6b612e82ccee8c7c73b9663b0f697a3d74080c52d8747b9acea3a712d5ca3d9692f2ddf9a5bb804e78845f0a190331fbf39c83b43f0dfd8d650e192f0d71aca744c98b9ea08148f6a16a433a6558a67bcacdd5c77965c"], 0x90}, 0x1, 0x0, 0x0, 0x4004000}, 0xf270e256f8c0c9af) ioctl$SNDCTL_DSP_STEREO(r0, 0x40045010, &(0x7f0000000080)=0x1) 3.370707276s ago: executing program 1 (id=262): bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x9fd, 0x84, 0x105, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r0}, 0x38) bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, &(0x7f0000000840)=""/121, &(0x7f0000000680), &(0x7f0000000540), 0x6c, r0}, 0x38) r1 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0) ioctl$I2C_SMBUS(r1, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x3, &(0x7f0000003040)={0x0, "f4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95df8c01eaf07677d18bc"}}) 3.369743992s ago: executing program 1 (id=263): syz_usb_ep_write(0xffffffffffffffff, 0x6, 0xc1, &(0x7f0000000040)="70ddad43c73af9123ee9344ef39d9b433a8d995dbf11a4296a58d07211ecca50fae18d398b839fbf2020d3ff0c12a6baeb2ee23bfb7969c4c56cd42a6414d3009953c24dd36e0331915a38e96f121e00dd79ab23f13274e80bdc603622a3c82646c5d2d2a20dbe7b4a796ade7bfe6f6291791643448cd9bc006dad2b9611e43dd15bcd3ac81feef918781f5508319824c6db325b25dc99218953bdc7046d245259660911d1c961809e362fd33dc4ea2090f823e5335194b1130dc1be01eed36f37") r0 = getpid() r1 = syz_usb_connect$cdc_ncm(0x3, 0x11b, &(0x7f0000000140)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0xff, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x109, 0x2, 0x1, 0x80, 0x0, 0x4, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x8, 0x24, 0x6, 0x0, 0x1, "8d8f7a"}, {0x5, 0x24, 0x0, 0x5}, {0xd, 0x24, 0xf, 0x1, 0x4, 0x8, 0xb}, {0x6, 0x24, 0x1a, 0x6a, 0x8}, [@mdlm={0x15, 0x24, 0x12, 0xbee}, @mdlm_detail={0x4e, 0x24, 0x13, 0x8, "f6b5f07cc92a71f780524f52eee3631d003cb62ea4e459f29db82a1d5230e18f271d8f72ec1f7dee7242d695cf4ae43def30987ba94a2f124948b5d8094eca4e85d644f150ff378ad2f5"}, @mdlm_detail={0x43, 0x24, 0x13, 0xff, "d5758bf48c0f0eac988359b0ca58dd28985fe3f1a3394fb02c0b4ba3143a4373ff65a85dd5c2606892e5d30c3e551573301d196d1d0c5849ba62e516fc3da1"}, @acm={0x4, 0x24, 0x2, 0xe}]}, {{0x9, 0x5, 0x81, 0x3, 0x4df777e26752e260, 0x73, 0x3, 0x7f}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x8, 0x7, 0x3, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x400, 0x4, 0x2d, 0x9}}}}}}}]}}, &(0x7f00000003c0)={0xa, &(0x7f0000000280)={0xa, 0x6, 0x300, 0xff, 0x4c, 0x6, 0x40, 0x6}, 0x7c, &(0x7f00000002c0)={0x5, 0xf, 0x7c, 0x1, [@generic={0x77, 0x10, 0x1, "b1119b4fa4c3198a4b00214d524e2f54cae71ee68bfa783cc27c9a395f9a2e7b3c3c195f7cacce59358e6b0510ee3cab2163365ef584442f41cd133723b03a59c451998a4c20c88201f089468dbe05c22fccb2ef37187d428395a45fb9e7ecfca54ede24b6c445470d2b7784b5818f39b3d590de"}]}, 0x1, [{0x45, &(0x7f0000000340)=@string={0x45, 0x3, "2492528037d567fab00178e7a8e62b4742d2da046c056f3a28b40665e2baf69b31e68a60b7fc4f91ec4bcaeaea515598ac00c1ea989504e8449753d4635a2390080a36"}}]}) syz_usb_disconnect(r1) r2 = syz_pidfd_open(r0, 0x0) process_madvise(r2, &(0x7f0000001440)=[{&(0x7f0000000000)="9f", 0x1f}, {0x0, 0x18100}], 0x2, 0x19, 0x0) 2.099398657s ago: executing program 3 (id=278): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) (async) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x40, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"]) (async, rerun: 64) chdir(&(0x7f0000000740)='./file0\x00') (async, rerun: 64) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) ioctl$KVM_CAP_PMU_CAPABILITY(0xffffffffffffffff, 0x4068aea3, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x4000) ftruncate(r0, 0xc17a) (async) writev(r0, &(0x7f0000000280)=[{&(0x7f0000000200)="ac", 0x1}], 0x1) mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) (async, rerun: 32) r1 = socket$can_bcm(0x1d, 0x2, 0x2) (rerun: 32) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) connect$can_bcm(r1, &(0x7f0000000180)={0x1d, r2}, 0x10) sendmsg$can_bcm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)={0x5, 0x413, 0x0, {}, {}, {0x0, 0x0, 0x1}, 0x1, @can={{}, 0x7, 0x7, 0x0, 0x0, "94b1c39a3cc2fbfd"}}, 0x48}}, 0x0) (async) r3 = open(&(0x7f0000000140)='./file0\x00', 0x2, 0x0) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r4}, 0x10) (async) migrate_pages(0x0, 0x5, &(0x7f0000000000)=0x9, &(0x7f0000000040)=0x272) (async) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r5, 0x1, 0x1, &(0x7f0000000240)={0x6}, 0xa8) (async) write$FUSE_IOCTL(r3, &(0x7f0000000100)={0x20}, 0xfdef) (async) r6 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x45885, 0x10000, 0x0, 0xb9, 0x0, r3}, &(0x7f0000000340)=0x0, &(0x7f0000002300)=0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x5, &(0x7f0000000400)=@framed={{0x18, 0x0, 0x0, 0x0, 0x40}, [@alu={0x7, 0x0, 0x3, 0x0, 0x3, 0xfffffffffffffff4, 0xffffffffffffffff}, @generic={0x8, 0xd, 0x9, 0x4, 0x2}]}, &(0x7f00000000c0)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async) syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, 0x0, 0x1}) (async) io_uring_enter(r6, 0x3516, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64) syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff) (rerun: 64) r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3}}, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) (async) r10 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000080)={'syz_tun\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r9, r11}, 0x10) 2.098840761s ago: executing program 3 (id=279): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x16b301, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x15) write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[], 0xff2e) 1.96994809s ago: executing program 3 (id=281): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000000034d564b0000000001"]) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3000000) 1.790117462s ago: executing program 3 (id=284): r0 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_CMAP(r2, 0x4b70, &(0x7f0000000180)) bind$can_j1939(r0, &(0x7f0000000040)={0x1d, r1, 0x8000000000000003}, 0x18) setsockopt$SO_J1939_ERRQUEUE(r0, 0x6b, 0x4, &(0x7f0000000100), 0x4) bind$can_raw(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) r4 = socket$nl_generic(0x10, 0x3, 0x10) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0) umount2(&(0x7f0000000280)='./file0\x00', 0x0) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r4, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000400)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="cf110000000000f4ffff1200000008000300", @ANYRES32=r6, @ANYBLOB="040013000a00060008021100000100000600100080"], 0x48}, 0x1, 0x0, 0x0, 0xc0}, 0x0) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000000280)={&(0x7f0000000080), 0xc, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="2c011f43ab1bcf8a46bf06750d04c58f6422ae4765057a908da43cf66353e3b7ee9b7620c01a8562dfb3d974f4c5280f0f090ef162b35f032c94c4397db21ee792a08ebb1b76ceb1c857c11a1bf841f0b78c12c26beb5a108476569b00"/106, @ANYRES16=r5, @ANYBLOB="100028bd7000fedbdf25670000000c009900090000002b0000000800c400810000000301c5005a9e9954ce2d5c102b887661a30bca78c19b1c8c9eb210b056d084247d6910a3c06a76994ba8618fc77858c6faf09e8c280ccd70424a514890804b5472a5d28a22dfcd6fcc1102b8139e0cb7673f9f07ae721b8a5c3aaf082700696697f50d2e688922a847ee727fff7badc8fee6ab7cae8a01446fce741121af6f0a4670a80f3582c8af81229fe050a2de260db5d009fc87cdab0872b793c683e4aa6d348d55f74c22fc88f999d6f537e9246bf50c15ccc689306d82f6e7d85312447a1201eba5c77668cfe31348496c3a9f20bff9e3cffab094551a40c549101d3963b42f9b968713347c66b13b1e7ebc4a6ce8506e8aaf4cb72e070710fc013dd83ef1b400"], 0x12c}, 0x1, 0x0, 0x0, 0x801}, 0x80) 1.670411647s ago: executing program 0 (id=288): r0 = io_uring_setup(0x3153, &(0x7f00000001c0)={0x0, 0x3e50, 0x8, 0x3, 0x123}) r1 = syz_io_uring_setup(0x239, &(0x7f00000002c0)={0x0, 0x10000000, 0xc5e1a3f53cee031d, 0x8000, 0x0, 0x0, r0}, &(0x7f0000000000), &(0x7f0000000140)) io_uring_register$IORING_REGISTER_NAPI(r1, 0x1b, &(0x7f0000000280)={0x80000000, 0xf1}, 0x1) r2 = syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00') r3 = socket$inet_tcp(0x2, 0x1, 0x0) sendmsg$nl_xfrm(r2, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80002080}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=@getspdinfo={0x14, 0x25, 0x1, 0x70bd26, 0x25dfdbfc, 0x8, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x24000080}, 0x20000040) bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10) connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, 0x0, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f00000017c0)='veno\x00', 0x5) sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) read$FUSE(r2, &(0x7f0000002280)={0x2020}, 0x2020) 787.991143ms ago: executing program 0 (id=295): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000000034d564b0000000001"]) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 9) 659.573319ms ago: executing program 3 (id=298): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VIDIOC_G_CROP(r2, 0xc014563b, &(0x7f0000000000)={0x9, {0x8, 0x3, 0x1, 0xf89}}) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="12edf76c4072187e0000000e0000000002006bbf389a41951dfdb000000000000000000000080017004e234e23"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0) add_key(&(0x7f0000000140)='rxrpc_s\x00', &(0x7f0000000180), 0x0, 0x0, 0xfffffffffffffffe) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000000)={'veth1_to_team\x00', 0x400}) r3 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r3, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10) bind$tipc(r3, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10) r4 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r4, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10) timer_create(0x9, &(0x7f0000000100)={0x0, 0x0, 0x1}, &(0x7f0000000500)) timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x77359400}, {0x0, 0x989680}}, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000700)={{}, {0x77359400}}, &(0x7f0000000380)) bind$tipc(r4, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x3, 0x4}}, 0x10) bind$tipc(r3, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42, 0x20000003}}}, 0x10) bind$tipc(r4, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_CAP_HYPERV_SYNIC2(r7, 0x4068aea3, 0x0) bind$tipc(r4, &(0x7f00000001c0)=@name={0x1e, 0x2, 0x0, {{0x42, 0xfffffffe}}}, 0x10) r8 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCGPGRP(r8, 0x40086806, &(0x7f0000000100)) bind$tipc(r3, 0x0, 0x0) write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0584"], 0xfdef) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f0000000300)={'syztnl0\x00', &(0x7f0000000280)={'erspan0\x00', 0x0, 0x7800, 0x7, 0x9320, 0x7, {{0xa, 0x4, 0x3, 0x1, 0x28, 0x65, 0x0, 0x0, 0x4, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@ssrr={0x89, 0x13, 0x55, [@rand_addr=0x64010102, @dev={0xac, 0x14, 0x14, 0x11}, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1]}]}}}}}) sendmsg$nl_route(r1, &(0x7f0000000480)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="30000000160000012dbd7000ffdbdf25022040fd", @ANYRES32=0x0, @ANYBLOB="08002400640101001414bb08000100ac1e0101"], 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000800) 658.80592ms ago: executing program 2 (id=299): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x4) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x2}, {{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0x3}}, {}, [], {{}, {0x6, 0x0, 0x5, 0x8}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) ftruncate(r3, 0x6) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0x10}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0xf2ff, &(0x7f0000000440)={&(0x7f0000000280)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r5, {0x0, 0x7}, {}, {0xa}}, [@filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0x2, 0x3}]}}, @TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x2}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x20000000) 560.508745ms ago: executing program 0 (id=300): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="0107000000000000000020"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0) (async) write$selinux_load(0xffffffffffffffff, &(0x7f0000000340)={0xf97cff8c, 0x8}, 0x2000) (async) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002300)={r0, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000140)="b9ff0300600d698cff9e14f008004de7f9c764360000000200", 0x0, 0xe00, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) (async) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000000)={0x1504cff8, 0x827, 0x7f, 0x80000000, 0x11, "3d5a010d4ca3364344fb26130280fa1beb27fb"}) (async) r2 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) syz_emit_vhci(&(0x7f0000000180)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}, {0xfd, 0xc9, @any, 0x0, 0x5, 0x2b, 0x7, 0x66, 0x5}}}, 0x14) (async) symlink(0x0, &(0x7f0000000e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') (async) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f00000002c0)=ANY=[]) r3 = socket$nl_route(0x10, 0x3, 0x0) (async) r4 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$get_persistent(0x16, 0xee00, r4) (async) r5 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'sit0\x00', 0x0}) sendmsg$nl_route(r5, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@ipv6_newnexthop={0x38, 0x68, 0x1, 0x0, 0x25dfdbfd, {}, [@NHA_ENCAP={0x18, 0x8, 0x0, 0x1, @SEG6_LOCAL_NH6={0x14, 0x5, @mcast2}}, @NHA_OIF={0x8, 0x5, r6}]}, 0x38}}, 0x90) (async) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r8 = socket$unix(0x1, 0x5, 0x0) (async) r9 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r8, &(0x7f0000000000)={0xd7ca259dc47776d0}) (async) ppoll(&(0x7f0000000200)=[{r9, 0x80c1}], 0x1, 0x0, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000001c0)={'dummy0\x00', 0x0}) (async) r11 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="480000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0080000000000000200012800b0001006d61637365630000100002800c000100ffffffffffffffff08000500", @ANYRES32=r10], 0x48}}, 0x0) (async) sendmsg$nl_route(r3, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f0000000380)=@ipv6_getnexthop={0x18, 0x6a, 0x100, 0x70bd27, 0x25dfdbfb}, 0x18}, 0x1, 0x0, 0x0, 0x4008840}, 0x0) 560.357944ms ago: executing program 0 (id=301): openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x900, 0x0) (async) r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x900, 0x0) ioctl$DVD_READ_STRUCT(r0, 0x5392, &(0x7f0000000b00)=@manufact={0x4, 0x0, 0x800, "ae370a06327342c0059b4d587b02ce4d8f08509f5912fe933bf5e7fa767d309f83506b5fe26a7e149207c7d8bb9af37c1b01e59e7008354e875dd30fb4d4e2ba9940645311a6c19c318457fa19832992bb0b7d449a79b1ec0092fe3a6bd72e12e435cbde5061dfaea38d0072faa9fc8104d061699c7e3d5e4a7641f0ac3c40232a469c16a8ec80cc31d9275d6a7127b3384fc9af05cf5fab055f1e319c7d41c3aa00da9b0063b42b25c29a38a8d29e1fb93a63eaf6cff8246cf75d0486fd977374a9cc285338cefef44595c60e98384708b534994ef04ee405af48ff733ad45692c9895f51d73f2cef0c3b9ed19e50091e3da961a2711b1a05b52d44b052a034c5a0a70018db9733d467700799d09d916394db73543beb7d49223194c38e9ff02a6299449832ee610acd3011dc1ae01759a6c08c4b6e637d6bd18358fc3c5794c55b0bc922763f120c36d507165f7f7b4d6c62a57b150c0345177106925152c8d31f56563ca9fb417c670f77256a887a4865aef909b385d8d061e13eb967ca6c558f8d81a220832bbea01d4d48cba5d0d38e35abb70990ef12a0d9690ab91733381d7784751f8e07605e4a0eb0806b77d3f92643b0e910f43bea1a79c3b53e988f35a59a504e694875f490b5631b7300af19e59f5710f0bbbc893cb8db4516a712a9407614403ff6de3179b4243eaeb6b65061f17680ee2a6412134d454fa9da12ef98d939be012b32c7a8a9d8273412efd645089a7c07d0f130825ee38ebbf5649ba0d07faaf6c456de422558fbccb7ce6deb86a8d94b56feb411b13c9debbf297c4d4cae2fadb5516df1a4b5820a898865a5071ab9ed82def2f123d2331c2eb258739518bed5129e9270ec08619ee2d023bfaf683a3c3736636186f5550a0ccab4c4916487c817e0983a9cd8ace4e56e3a2dfd89d86f0b8991b0d1222b853e1138e2465278a5c273699bf3ed344bd33eb66111fe260b8f995e99b6e6de924fac9fd876a58f97b4823c5d1522c0364368f09e41198dacb3beb6e53df2a33f9d464b2f8e8cd8dc2294e4e6a62a03f84ef7dc58464574eb4555fd631632650159b790eb62542aac14edff4bbc20e36f621575d98fa831e36e228fcc2ea7709aa9bcbbff9840697afc1687f690f61cd6c4aa9935efc0ce8ffb749fdeb6602c515e8058cd3c5ee7063b633a52e3508ca60afdd3def0bdca49b26b7fb2a1f755b6cf2a3065bde2b2edc2ea4efa8bf370c580c28eccc7d0033b1f34cf26337ba751c944696858e1579c460567743da0d56c64b28b4010ffc70534e963f036d92f41a94079045074c9ea7c415f99c630a1a7d3aa73dd5d5b5e7bebdae5702d443ffc1ff2940c9ebbf96887f6a9d6be216f58dbb55b98e12a2a686815637a177ced2c8cd2f67141629db96a54db042e089774122b7bf7e6971dc7eec36e4ef15f4136316c6e60cd65d47b4ba4a00b13969eddd552ddd49c4c651fe7ff08780f715f7bfe97ba102ade11795862b3452f491a7049c2a15b57a931243785523fd2d60dc3e96deb0f492f00c56e2dee5302f40fe308afe24944bd4d126b4e76889833f967b8fa96ac17afbff57c7a13298bc82b67a5a66f380039ea83dff36caddd19af652a1c635e4c72c7c892fd77f57f2f475f1f372ff010312cae9afb1619b0da8c9496e100d8ef3fac7d57a2da08a6b9e3b9c90fe6801f09624cc96f33826cfa4dd05a2c1d09f51b31711a7e4ad2798ee221cc42b24475d8f7309fea572fcb132c7b238f7aecfd68f24148004f0052c360d39ac600f4fb1ad2a942fc04ac26598ed5854a0dc2495f3ddf3b585e613b25ab1475e7ce805ef4706314aa3e56f2f229ed89742b54792ce31aa1245c1d9bcfa7a3e4ee36fc29b78ac5370f47f037d389b8b795f22fe82f8554b91c6bf969d6ce5bbac5c53155bd1a461a6b90048668f5689a989a459e6f6961006b9932a97ba25b7c2dd3265448922d180c4642d0fb63d52361a6077869b4e69966eafda3faf07310c351531f1a02c23c31db2d55ac80a6df77046c4ff8386811d54efa693d80969269bff096b9895fe8d6547c00fb6fb3e3f974a363d1f624361769be76ddc0ce93e9f8e5d9f85750a6eaa57e4d21e0ac6635ab0a25cd753e35065e94d0a080902dafd08aebc46d272babf186d982040a1413cb5068c4044eeba196cbddc8016180f9286b1da8db28b920c88ba67a21ca070af36c3b585cf859be80fd78614a05a3e40d0c7ea3944b2f059e749a88fb3375da60775ec670f519131375f8cf489be3328cd9c705f77417276a5d59ab0c00c829259397293966eaba77a49b2445cbbb786c3791048e516008e3a8a408f7a0f3373efe0466c1eb90cb51768cea6bac97c5bdfdb0aa8eeb6ceca5bdd3b0bed9e1fbd39b8220df70ef2a85de22648f8955c1c149299c0ba4b6875de62d62a439902915d69f55ae06dafcffdf442c62155a523175dc4e54d518a2c446d82542eaeaf7474457a1c1ea4d1de024ad958000e39525bb3c527b10394c200f6f5c3517722d87bfca9842c4c906b4973fbd3bcd19fa94eb5acb10cebe1e2302c62b985b8e9d021d864e19f6a604f3421a899cee0db94e69453288fce2b0ed4c10a4dd6e951dd10a7471e5dc4c7f05f137fb5b95fa76cf5b923170b2f21ec03acf87a4cee6f1f4d63904e532cd7589a58205c082e796a98488088c4d1128116996c512cf3fe6cce664741e3075bd267f774babdb8f293367b58f2bf9fbd8bc894a15a322428af5a52d36fe4708d8e50f93a20c799ea72c28589d66fadc802e0c4618cd2a21f0065fb893fd0b0f4fba0762d0be216764506a1f3283c612213ecfdaa8018676015aaadf9034ee3c029f6841c89952ae3b4a675f5a63fd1c294b35d12d3b5f78"}) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='fd\x00') readlinkat(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000032240)=""/102400, 0x19000) ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 558.683039ms ago: executing program 2 (id=302): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000000034d564b0000000001"]) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7000000) 450.67272ms ago: executing program 0 (id=303): pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15) r2 = dup(r1) mkdirat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0\x00', 0x0) write$FUSE_DIRENTPLUS(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="10"], 0x10) mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) madvise(&(0x7f0000e95000/0x4000)=nil, 0x4000, 0x12) syz_clone3(&(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_clone(0x4008080, &(0x7f0000000000)="7448d3c9d4473e4a35f915c7b9a4b961b256416085becc948c3d64290110849e327ac368757eb4cdbc4844df10a47ef90244b9693ebb129449c09cce4c163ad7ff14772a1f240b29a82d736c8fe15fffacf830898c135d2ebd02b5ff663a3bbcb5fb8a847f7c683fe63665893e7178e9f70176b82a17f8a50dd7c35312ddc620624eaa9c31ddf272ab856a47f1d448e947ca0d0725214fd86165fa2c91e6190ef6ccc44eb24bcea020385cc7392028d1b3302a8443447d0ace7dabb3f9edcb1623665365187658358fbe8cb5b4f07e2bf45f9c5e8f7c9a", 0xd7, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180)="40a73a54c50f7b78acd44683a8b85dfa10a3d29c81cf3f64992b1567f44a06a6d86eeea21cabb7b9f8e4c1776f5b42933b3e04711c71") 380.500173ms ago: executing program 2 (id=304): r0 = socket(0x2, 0x3, 0xff) bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) connect$inet(r0, &(0x7f00000000c0)={0x2, 0xfff9, @multicast1}, 0x10) ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000280)={r0, r0, 0x1, 0xa7, &(0x7f0000000180)="7dfc322f206acfcaba71b41d493667df2fc9d6e94c4f77fc62d10a2a9f035e84d8092a08199753fd184572b0736f34387e904c5ef9c379d3f309854e3df6b07f8fc34b36b916b355ba53840ddad85c98744321228b1ac3214c7407bf2d7c024afdd9cb013a6b8cfac7b898ad93481442dad2160b5e0c3abba71c5d321f2a86c787a07b2e1c83da8a9819827a4cbfb92281d7bbad11a99ac6197d625d9568e57927fbc4e363a37c", 0x3, 0x8, 0xf0d, 0x1ff, 0xfffc, 0x2, 0x1e, 'syz1\x00'}) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[], 0xc0}, 0x1, 0x0, 0x0, 0x40c0}, 0x844) 379.372022ms ago: executing program 3 (id=305): unshare(0x2e040f00) r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000003c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f00020000000905040200de7e001009058b1e20"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) write$char_usb(r1, 0x0, 0x0) eventfd(0x2) io_uring_setup(0x23d9, &(0x7f0000000000)={0x0, 0x6940, 0x2000, 0x3, 0x343}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={r2, 0xffffffffffffffff}, 0x4) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000200)={0xfffffff7, 0x0}, 0x8) r5 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000280)=@generic={&(0x7f0000000240)='./file0\x00', 0x0, 0x28}, 0x18) r6 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000300)=@o_path={&(0x7f00000002c0)='./file0\x00', 0x0, 0x10, r1}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x15, 0xe, &(0x7f0000000100)=@raw=[@exit, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}], &(0x7f0000000180)='syzkaller\x00', 0x3d08, 0x0, 0x0, 0x41000, 0x10, '\x00', 0x0, @fallback=0x33, r2, 0x8, 0x0, 0x0, 0x10, &(0x7f00000001c0)={0x1, 0xe, 0x5f6, 0x4}, 0x10, r4, r5, 0x2, &(0x7f0000000340)=[r2, r2, r2, r6], &(0x7f0000000380)=[{0x4, 0x4, 0x7, 0x1}, {0x4, 0x2, 0xf, 0x2}], 0x10, 0xfffff800, @void, @value}, 0x94) poll(&(0x7f0000000140), 0x0, 0xffffffff) r7 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080), 0x400102, 0x0) syz_io_uring_setup(0x7793, &(0x7f0000000440)={0x0, 0x251b9, 0x26, 0x2, 0x2d7, 0x0, r7}, 0x0, 0x0) 379.183626ms ago: executing program 2 (id=306): r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000040), 0x40002, 0x0) (async) r1 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r1, &(0x7f0000000140)='^', 0x34000, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) ioctl$KVM_SET_XSAVE(r4, 0x5000aea5, &(0x7f0000000200)={[0x4, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0xf, 0x7ff, 0xfffffffb, 0x5, 0x4, 0x7b, 0x0, 0x7, 0xfff, 0x80, 0x4, 0xcd7a, 0x7fff, 0x401, 0x1ff, 0x200, 0x10001, 0xf, 0x0, 0x6, 0x0, 0x100, 0x10001, 0x6, 0x1ff, 0xb, 0x3, 0x6, 0x2, 0x6, 0x2, 0x9, 0xffff, 0x0, 0x7, 0x6, 0x1, 0x0, 0x6, 0xb6, 0x0, 0xfffffe00, 0x8, 0xfffffffe, 0xaedc, 0x3, 0x8, 0xabb, 0xa0b, 0x4, 0x6, 0x2, 0x6, 0xc8, 0x8001, 0xfffffffa, 0x6, 0x1, 0x8000, 0x6, 0x2, 0x9c77, 0x10001, 0x8f, 0x4, 0xc, 0xdeb0, 0x9, 0x7, 0xfffffa0b, 0xd1f, 0x7, 0x883d, 0xffffffff, 0x101, 0x7ff, 0xfffffffb, 0x7fffffff, 0x0, 0x10000, 0x6, 0x6, 0x401, 0x2, 0x0, 0x80000000, 0x81, 0xc, 0x161d00, 0x874e, 0xfffffffc, 0x347f, 0x0, 0xfffffffd, 0x9, 0x5, 0xfffffff7, 0x6, 0x4, 0x2, 0x7, 0x1, 0x9, 0x9, 0x4ac, 0x8, 0x0, 0xd, 0x1, 0x3, 0x1d7, 0xffff6af3, 0x1, 0xee, 0x80000000, 0x2, 0x1, 0xa3d, 0x1, 0x800, 0x0, 0x5, 0x0, 0x3, 0x1, 0x3, 0x3, 0x8c66, 0x5, 0x1ff, 0x0, 0xc16, 0x1, 0x6, 0x7, 0x1, 0x4, 0x25a, 0xfff, 0x3ff, 0x8001, 0x3, 0x5, 0x1, 0x4, 0x5, 0x0, 0x7, 0x8, 0x0, 0x8, 0x5, 0x1, 0x5, 0x7, 0x7, 0x7ff, 0x1, 0x80000001, 0xfff, 0x9, 0x9, 0x5, 0x2, 0x3, 0x6, 0x4, 0x81, 0x4, 0x0, 0x8, 0x0, 0x40, 0x80000000, 0xb1, 0x6, 0xe, 0x5, 0xb329, 0x5, 0x8, 0x5, 0x0, 0x0, 0x2, 0x7, 0x8000, 0x1, 0x631, 0xb, 0xf2, 0xd6, 0x200, 0x10000, 0x9, 0x0, 0x324, 0xfffffff8, 0x8, 0x8001, 0xfff, 0x8, 0x8, 0x5c8c, 0x7, 0x6, 0xfffff52e, 0x6, 0x9, 0x2, 0x219, 0x7fffffff, 0x180, 0x3, 0x9, 0x3, 0x1, 0xc24, 0x8, 0x3b, 0xfffffffd, 0x943, 0x5, 0x3f7, 0x6, 0xce, 0xe0b7, 0x84, 0xd0fc, 0x5232, 0x3ff, 0x5517, 0x0, 0xf, 0xa, 0x401, 0x8, 0x0, 0x5, 0x7ff, 0x2, 0x250, 0x2296, 0xfffffffc, 0x1, 0x4, 0x3, 0x101, 0x2, 0x8001, 0x3, 0x5, 0x8, 0x9, 0x5, 0x7, 0x1, 0x3ff, 0xb, 0x5, 0x5, 0x40d, 0x4, 0x2, 0x1000, 0xd5ed30f4, 0x9, 0x1, 0x7fffffff, 0x401, 0x3, 0xa, 0x836e, 0x2, 0x0, 0x8000, 0x8, 0x9730, 0xff, 0x8, 0x7, 0x2, 0xac2, 0x5212, 0x4, 0x3, 0x4, 0x7, 0x5, 0x7, 0xfffffffc, 0x400, 0x65, 0x1af7, 0x500b, 0xff, 0x7, 0xff, 0x3, 0x5, 0x100, 0x6, 0x8, 0x8, 0x1, 0x1000000, 0x7ff, 0x6, 0x5, 0x5, 0x1, 0x80000001, 0x5, 0x3, 0x4, 0x54, 0x50000000, 0x3, 0x4, 0x8000, 0x1, 0xf, 0xfffffff9, 0x49, 0xffffdaca, 0x4, 0x36, 0x0, 0x2, 0x1, 0x9, 0x5, 0x0, 0x7, 0x0, 0x7, 0x8, 0xd, 0x5, 0xa27b, 0x4, 0x3, 0xc, 0x6, 0x4, 0x4, 0x1, 0xfffffff9, 0xc5c, 0x81, 0x5, 0x8149, 0x0, 0xffffffff, 0x1, 0x401, 0xbc77, 0x9, 0x1, 0x4, 0x7, 0x10000, 0x1f0, 0x5, 0x0, 0xcad, 0x4, 0x1, 0xfffffe00, 0xeb74, 0x5, 0x7a9d, 0x3, 0xd, 0x7, 0xfff, 0x8000, 0x11205e9f, 0xc2e3, 0x0, 0x400, 0x8849, 0xab7a, 0xfffffffd, 0xffffffff, 0x1, 0x6, 0x0, 0x6, 0xd5, 0x6, 0x1ff, 0x0, 0xff, 0x7, 0x80, 0x4, 0x9, 0x10, 0xf, 0xfe72, 0x7fff, 0x0, 0x8, 0x4, 0x4, 0x80000, 0x9, 0xf5, 0x2, 0x6, 0x1, 0x1696dd23, 0x7, 0x7, 0x4, 0x4000, 0x3ff, 0x3, 0x4, 0x2, 0x6, 0x5, 0xfffffffb, 0x3, 0x0, 0x0, 0x1, 0x4, 0x3ff, 0x401, 0xa, 0x0, 0x1, 0xc, 0x0, 0xffffffff, 0xfffffff9, 0x4, 0x9, 0x0, 0x2, 0x7, 0x10000, 0x78ac, 0xf, 0x100, 0x0, 0x5, 0x9, 0xc, 0x6, 0x675, 0x8001, 0x80000000, 0x9, 0x2, 0x1ff, 0xc, 0x0, 0x200, 0x400, 0x1, 0x1, 0x3, 0x5, 0x6, 0x3, 0x8, 0xff, 0x4, 0x5, 0x6, 0x200, 0xd4, 0x7fffffff, 0x0, 0x1, 0x2, 0x7, 0x4, 0x7, 0x3, 0x8, 0x7f, 0x1df17d65, 0x7, 0x9, 0x9, 0x2, 0x3, 0xfff, 0xffffffff, 0x2, 0xb5, 0x3ff, 0x9, 0xfffffffc, 0x4, 0x0, 0x5, 0x2, 0xac, 0x5, 0x8, 0x7, 0xb, 0x7, 0x1, 0x8c000000, 0x8, 0x7, 0x9, 0x8, 0x6, 0x2aa7, 0xf8a5, 0x2, 0xc38, 0x2, 0xfffffffd, 0x7, 0x5, 0x9, 0x81, 0x7, 0x4, 0x790f, 0xffff, 0x1, 0xffff12ef, 0x6, 0x20, 0x3, 0x5968, 0x5b, 0x5, 0x80000000, 0x4, 0x7, 0x2, 0xd, 0x3, 0x0, 0x569e, 0x4, 0x7, 0x6, 0xfffff9a5, 0x9, 0x10000, 0x100, 0x4, 0xe00, 0x3, 0x80, 0x80, 0x7, 0x8, 0x2, 0x0, 0x7fffffff, 0x80000001, 0x401, 0xfffffd61, 0x7, 0x0, 0x6, 0x8001, 0x10, 0x6, 0x8, 0x7, 0x7, 0x6, 0x1a5d82f7, 0x7, 0x6, 0x7fff, 0x9, 0xfffff801, 0xfffffffc, 0x9, 0x7, 0x2, 0x3, 0x6, 0x4, 0x0, 0x0, 0x9, 0x2, 0x7, 0x994, 0x6, 0x1, 0x6, 0x6, 0x4, 0x9, 0xd, 0x6, 0x22, 0x2, 0x40, 0x1, 0x4, 0x9, 0x1, 0x8, 0x3, 0xff, 0x0, 0x1b, 0x7d404d42, 0x0, 0x4ba7, 0x5, 0x3, 0x0, 0x4, 0x4, 0x400, 0x5, 0x7, 0x55d, 0x8001, 0x4, 0x3, 0x7, 0x4, 0x5, 0x9, 0xffff0000, 0x265, 0x4, 0x2e, 0x9, 0xa, 0xa3, 0x9, 0x8000, 0x9, 0x0, 0x2, 0x802292e0, 0x3, 0x9, 0x9b0, 0xa0, 0x0, 0x5, 0x2, 0xaabd, 0x0, 0x5, 0x100, 0x2, 0x8, 0x2, 0xc7fae055, 0x3, 0xabb, 0x9, 0x0, 0x3, 0x2, 0x5, 0x7, 0x9, 0x9, 0x8, 0x24000, 0x1000, 0x8, 0x9623, 0xfffffff9, 0x306, 0x2, 0x10, 0xfff, 0x1, 0x8, 0xa, 0x1, 0x80000001, 0x8, 0x5, 0x6b93fc79, 0xda, 0x8, 0xfffffff8, 0x2, 0x0, 0x0, 0x400, 0x8, 0x1ff, 0x8001, 0x6, 0x742, 0x1, 0xfff, 0x7, 0x7, 0x9, 0x8, 0x0, 0xffffffff, 0x5, 0xb, 0x3, 0x7, 0xa, 0x8, 0x5, 0x8, 0x6, 0x49, 0x401, 0x7, 0x7, 0x8, 0xfffffffd, 0x8, 0x2, 0x1000, 0x0, 0x7, 0x6, 0x1f, 0x3, 0x6, 0x0, 0x7, 0x1, 0x5, 0x4, 0xa, 0x2, 0x2, 0x9, 0xff, 0x9, 0x9cc, 0x5b5, 0x5, 0x100, 0x5, 0x4, 0x2, 0x5, 0x7, 0x2, 0x8e, 0xc2, 0x2d66, 0x4, 0x800, 0x8, 0x7fffffff, 0x52, 0x2, 0x9, 0xfff, 0x8, 0x2, 0x94ed, 0x8001, 0x3, 0x125c, 0x9, 0x10001, 0x3, 0xffff, 0x3, 0x80, 0x9, 0xb, 0x6, 0x2, 0x6, 0xffffffff, 0x30, 0x2, 0x4, 0x2, 0xfffffff8, 0x7, 0xfffffffc, 0x2b, 0x0, 0x5, 0x77a8, 0xcec4, 0x8, 0x1, 0xfffffff8, 0xfffff30e, 0x3, 0x1, 0x6, 0x7, 0x9, 0x4, 0x249, 0x8, 0x70, 0xb, 0x8, 0x3, 0x6, 0x4, 0x9, 0x8, 0x5, 0x3, 0xfffffff8, 0x2dff, 0xd0cf, 0x10000, 0x0, 0x2, 0x5, 0xa, 0x1, 0x10, 0x4, 0x4, 0xe5, 0x9, 0xc63b, 0x0, 0xffff, 0x1, 0xf, 0x0, 0x3, 0x5b26, 0xffffffff, 0xf, 0x9a8, 0x80000001, 0x7, 0x4, 0x10, 0x0, 0x0, 0x9, 0x1, 0x3, 0x5, 0x3, 0x0, 0x3, 0x6, 0x7, 0x2, 0x1e7a, 0x401, 0x1, 0x1, 0x4, 0x9, 0x5, 0x8d3036bf, 0x53, 0xb0, 0x10000, 0xfffffffc, 0x9, 0x7fff, 0x6, 0x8, 0x3ff, 0xc, 0x2, 0x1, 0x6, 0x2, 0xaf2d, 0x1ff, 0x3ff, 0x6, 0x3, 0x4, 0x1, 0xfffffffd, 0x4, 0x5, 0x1, 0xe, 0xff, 0x9, 0xfff, 0x9, 0x9, 0x7, 0x0, 0xffffffff, 0x7, 0xf, 0x5, 0xfffffff8, 0x9, 0x8, 0xffffff01, 0x1, 0xc, 0x4, 0x9, 0x401, 0x0, 0x7, 0x7, 0x2, 0x42038fd5, 0x0, 0x0, 0x8, 0x746, 0x101, 0x0, 0x8, 0x2, 0x6, 0x401, 0x6f, 0x667, 0x5, 0x4, 0x6ed, 0xad3c, 0xfffffffe, 0x3752, 0xffffff56, 0x9, 0x80, 0xd, 0x2, 0x1, 0x2, 0xda52, 0x38, 0x7, 0x7, 0x6, 0x3, 0x7, 0xe6e7, 0xb1, 0x10000000, 0x6, 0x8000, 0xffffff7f, 0x401, 0x9, 0x4, 0x2, 0x1, 0xef, 0x8, 0xa27, 0x10, 0x10000, 0x2, 0x553, 0x9f1, 0x163c, 0xc33, 0x7, 0x4, 0x0, 0x7, 0x1, 0x6, 0x6, 0x7, 0x200, 0xc186, 0x0, 0x358, 0x4, 0x9, 0x6, 0x5, 0x1, 0x7, 0xfff, 0xb72b, 0xfa, 0x4, 0xf2ab, 0x8d35, 0x3, 0xffffffff, 0x2, 0x20, 0xfffffff8, 0x1, 0x1, 0xd3a, 0x3, 0x7, 0xef7d, 0x6, 0x7, 0x8, 0x6, 0x8, 0xfffffffa, 0x9, 0x9, 0x8, 0x3, 0x7, 0x2]}) listen(r1, 0xda90) (async) r5 = accept4(r1, 0x0, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r5, 0x84, 0x6, &(0x7f0000000240)={0x0, @in6={{0xa, 0x4e20, 0x3, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7}}}, &(0x7f0000000580)=0x84) (async) write$binfmt_script(r0, 0x0, 0x0) 377.553177ms ago: executing program 0 (id=307): setsockopt$MRT_FLUSH(0xffffffffffffffff, 0x0, 0xd4, &(0x7f0000000040)=0xe, 0x4) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_LBT_MODE(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x20008800) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_NMI(r3, 0xae9a) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x3, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) setsockopt$MRT_FLUSH(0xffffffffffffffff, 0x0, 0xd4, &(0x7f0000000040)=0xe, 0x4) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff) (async) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async) sendmsg$NL802154_CMD_SET_LBT_MODE(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x20008800) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_NMI(r3, 0xae9a) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x3, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) 299.262535ms ago: executing program 1 (id=308): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000000034d564b0000000001"]) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 10) 60.17899ms ago: executing program 2 (id=309): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = socket(0x2a, 0x2, 0x0) sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0) getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=@gettfilter={0x24, 0x2e, 0x4, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r2, {0xe, 0xd}, {0xb, 0x4}, {0xe, 0xf}}}, 0x24}}, 0xc084) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newtfilter={0x90, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0xfffa}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x60, 0x2, [@TCA_FLOWER_ACT={0x54, 0x3, [@m_connmark={0x50, 0x1, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffff8, 0xfff, 0x0, 0x5, 0xb}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}, @TCA_FLOWER_FLAGS={0x8, 0x16, 0x12}]}}]}, 0x90}}, 0x24000000) r3 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0) getpeername$packet(r1, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000100)=0x14) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1080000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=@dellinkprop={0x1bc, 0x6d, 0x10, 0x70bd28, 0x25dfdbff, {0x0, 0x0, 0x0, r2, 0x40023, 0x1000}, [@IFLA_VF_PORTS={0x14c, 0x18, 0x0, 0x1, [{0x4c, 0x1, 0x0, 0x1, [@IFLA_PORT_REQUEST={0x5, 0x6, 0xff}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "a8143334023f37ba2a222e4bbd8439f9"}, @IFLA_PORT_REQUEST={0x5}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "20271c2637a4d2f96e862998215d1ccf"}, @IFLA_PORT_PROFILE={0xd, 0x2, '*/+:#)\'@\x00'}]}, {0x58, 0x1, 0x0, 0x1, [@IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "2704bf423c2cd4adcdf5cf3b585e5ddd"}, @IFLA_PORT_REQUEST={0x5, 0x6, 0xfa}, @IFLA_PORT_VF={0x8, 0x1, 0xbb29}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "36a0cb55d93cd1d4825f6a16be420ec4"}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "e10ab55039d42398c6a2013c840c234e"}, @IFLA_PORT_VF={0x8, 0x1, 0x7d}]}, {0x68, 0x1, 0x0, 0x1, [@IFLA_PORT_REQUEST={0x5, 0x6, 0x25}, @IFLA_PORT_VF={0x8, 0x1, 0x2}, @IFLA_PORT_VF={0x8, 0x1, 0x4}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "e25423bfc01fcda834096bdf1ddf22e5"}, @IFLA_PORT_PROFILE={0x8, 0x2, '}.!\x00'}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "23084c6a34b9aa43eea9ee9551026e2f"}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x6}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "bd405bce67912ff30c1bb6effdb0ea14"}]}, {0x3c, 0x1, 0x0, 0x1, [@IFLA_PORT_VF={0x8, 0x1, 0x4f1c}, @IFLA_PORT_VF={0x8, 0x1, 0x3}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "795f5c787dac21f504becb35cb562798"}, @IFLA_PORT_PROFILE={0xb, 0x2, 'flower\x00'}, @IFLA_PORT_VF={0x8, 0x1, 0x4}]}]}, @IFLA_BROADCAST={0xa, 0x2, @local}, @IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERIER={0x5, 0x19, 0x6}]}}}, @IFLA_IFALIAS={0x14, 0x14, 'bond0\x00'}, @IFLA_PHYS_SWITCH_ID={0x11, 0x24, "5044e8ca5776bc41f214711b61"}]}, 0x1bc}, 0x1, 0x0, 0x0, 0x4004041}, 0x64040000) ioctl$KDSKBLED(r0, 0x4b65, 0x4) 59.794626ms ago: executing program 2 (id=310): socket$nl_generic(0x10, 0x3, 0x10) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) close(0x3) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r2 = socket$kcm(0x2, 0xa, 0x2) socket$unix(0x1, 0x1, 0x0) socket$netlink(0x10, 0x3, 0x4) (async) r3 = socket$netlink(0x10, 0x3, 0x4) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r3, 0x10e, 0x8, &(0x7f0000000080)=0x4a810da0, 0x4) recvmsg(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x2) (async) recvmsg(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x2) writev(r3, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f9cc3f4ff7f4e32f61bcdf1e422000000000100804824cabecc4b381eaadc28f23457e792945f64009400050028925aaa000000c600000000000000feff2c707f8f00ff", 0x58}], 0x1) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r1, &(0x7f00000005c0)=ANY=[@ANYBLOB="020086dd0300000000003000000060ec970012302c00fe8000000000000000000000000000aaff0200000000000000000000000000013a"], 0xfdef) recvmmsg(r0, &(0x7f00000086c0)=[{{0x0, 0x0, 0x0}, 0x101}], 0x1, 0x40018042, 0x0) socketpair(0xf, 0x5, 0xf811, &(0x7f0000000040)) (async) socketpair(0xf, 0x5, 0xf811, &(0x7f0000000040)) 0s ago: executing program 1 (id=311): prlimit64(0x0, 0x0, &(0x7f0000000000)={0x9, 0x100009b}, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)={[{@dyn}]}) chdir(&(0x7f00000000c0)='./file0\x00') mkdir(&(0x7f0000000240)='./bus\x00', 0x1e2) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): [ 38.159722][ T40] audit: type=1400 audit(1742301653.825:81): avc: denied { rlimitinh } for pid=5920 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 38.167587][ T40] audit: type=1400 audit(1742301653.825:82): avc: denied { siginh } for pid=5920 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 38.450985][ T40] audit: type=1400 audit(1742301654.125:83): avc: denied { read } for pid=5338 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 38.457531][ T40] audit: type=1400 audit(1742301654.125:84): avc: denied { append } for pid=5338 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 38.464068][ T40] audit: type=1400 audit(1742301654.125:85): avc: denied { open } for pid=5338 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 38.469945][ T40] audit: type=1400 audit(1742301654.125:86): avc: denied { getattr } for pid=5338 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 Warning: Permanently added '[localhost]:39123' (ED25519) to the list of known hosts. [ 40.010707][ T40] audit: type=1400 audit(1742301655.685:87): avc: denied { name_bind } for pid=5926 comm="sshd" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 41.766687][ T5928] cgroup: Unknown subsys name 'net' [ 41.935229][ T5928] cgroup: Unknown subsys name 'cpuset' [ 41.940216][ T5928] cgroup: Unknown subsys name 'rlimit' [ 42.104307][ T5933] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 42.686138][ T5928] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 44.960728][ T40] kauditd_printk_skb: 17 callbacks suppressed [ 44.960741][ T40] audit: type=1400 audit(1742301660.635:105): avc: denied { execmem } for pid=5935 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 45.125913][ T40] audit: type=1400 audit(1742301660.805:106): avc: denied { create } for pid=5939 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 45.132119][ T40] audit: type=1400 audit(1742301660.805:107): avc: denied { read write } for pid=5939 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 45.139552][ T40] audit: type=1400 audit(1742301660.805:108): avc: denied { open } for pid=5939 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 45.148128][ T40] audit: type=1400 audit(1742301660.815:109): avc: denied { ioctl } for pid=5939 comm="syz-executor" path="socket:[6718]" dev="sockfs" ino=6718 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 45.175859][ T5948] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 45.178677][ T5948] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 45.181680][ T5948] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 45.184164][ T5948] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 45.187810][ T5948] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 45.188582][ T5952] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 45.190202][ T5948] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 45.192438][ T5952] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 45.194484][ T5948] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 45.196148][ T5952] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 45.197700][ T5953] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 45.199094][ T5948] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 45.200437][ T5952] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 45.202485][ T5948] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 45.203344][ T5953] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 45.203730][ T5953] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 45.203938][ T5953] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 45.204575][ T5952] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 45.207799][ T5948] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 45.209904][ T5952] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 45.210941][ T5948] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 45.212616][ T40] audit: type=1400 audit(1742301660.885:110): avc: denied { read } for pid=5944 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 45.212638][ T40] audit: type=1400 audit(1742301660.885:111): avc: denied { open } for pid=5944 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 45.212657][ T40] audit: type=1400 audit(1742301660.885:112): avc: denied { mounton } for pid=5944 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 45.213486][ T5295] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 45.243085][ T5295] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 45.245361][ T5295] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 45.353223][ T40] audit: type=1400 audit(1742301661.035:113): avc: denied { module_request } for pid=5944 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 45.431195][ T5944] chnl_net:caif_netlink_parms(): no params data found [ 45.442076][ T5949] chnl_net:caif_netlink_parms(): no params data found [ 45.477556][ T5941] chnl_net:caif_netlink_parms(): no params data found [ 45.567532][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.569513][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.571739][ T5944] bridge_slave_0: entered allmulticast mode [ 45.574858][ T5944] bridge_slave_0: entered promiscuous mode [ 45.589428][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.591492][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.594062][ T5944] bridge_slave_1: entered allmulticast mode [ 45.596165][ T5944] bridge_slave_1: entered promiscuous mode [ 45.645839][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.648740][ T5949] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.650751][ T5949] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.652873][ T5949] bridge_slave_0: entered allmulticast mode [ 45.655354][ T5949] bridge_slave_0: entered promiscuous mode [ 45.665857][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.667834][ T5941] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.669788][ T5941] bridge_slave_0: entered allmulticast mode [ 45.671840][ T5941] bridge_slave_0: entered promiscuous mode [ 45.675355][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.688345][ T5949] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.690324][ T5949] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.692510][ T5949] bridge_slave_1: entered allmulticast mode [ 45.695653][ T5949] bridge_slave_1: entered promiscuous mode [ 45.708037][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.710032][ T5941] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.712021][ T5941] bridge_slave_1: entered allmulticast mode [ 45.714343][ T5941] bridge_slave_1: entered promiscuous mode [ 45.724498][ T5939] chnl_net:caif_netlink_parms(): no params data found [ 45.736052][ T5949] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.748860][ T5944] team0: Port device team_slave_0 added [ 45.753404][ T5944] team0: Port device team_slave_1 added [ 45.756079][ T5949] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.768565][ T5941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.774552][ T5941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.818562][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 45.820526][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.827945][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 45.854413][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 45.856395][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.864515][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 45.871007][ T5949] team0: Port device team_slave_0 added [ 45.896558][ T5941] team0: Port device team_slave_0 added [ 45.902255][ T5941] team0: Port device team_slave_1 added [ 45.904827][ T5949] team0: Port device team_slave_1 added [ 45.915804][ T5939] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.917883][ T5939] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.919939][ T5939] bridge_slave_0: entered allmulticast mode [ 45.922104][ T5939] bridge_slave_0: entered promiscuous mode [ 45.962148][ T5939] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.964282][ T5939] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.966251][ T5939] bridge_slave_1: entered allmulticast mode [ 45.969084][ T5939] bridge_slave_1: entered promiscuous mode [ 45.980700][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 45.982735][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.989704][ T5949] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 45.995249][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 45.997591][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.004940][ T5949] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.017770][ T5944] hsr_slave_0: entered promiscuous mode [ 46.020177][ T5944] hsr_slave_1: entered promiscuous mode [ 46.034494][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.036444][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.043531][ T5941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.049583][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.051521][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.058679][ T5941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.072158][ T5939] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.076825][ T5939] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.142472][ T5939] team0: Port device team_slave_0 added [ 46.170614][ T5949] hsr_slave_0: entered promiscuous mode [ 46.175006][ T5949] hsr_slave_1: entered promiscuous mode [ 46.177549][ T5949] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.180682][ T5949] Cannot create hsr debugfs directory [ 46.186225][ T5939] team0: Port device team_slave_1 added [ 46.206970][ T5941] hsr_slave_0: entered promiscuous mode [ 46.208898][ T5941] hsr_slave_1: entered promiscuous mode [ 46.210683][ T5941] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.212982][ T5941] Cannot create hsr debugfs directory [ 46.229584][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.231591][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.239356][ T5939] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.273651][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.276164][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.283600][ T5939] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.369861][ T5939] hsr_slave_0: entered promiscuous mode [ 46.371847][ T5939] hsr_slave_1: entered promiscuous mode [ 46.374237][ T5939] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.376406][ T5939] Cannot create hsr debugfs directory [ 46.493769][ T5944] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 46.500873][ T5944] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 46.507168][ T5944] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 46.514853][ T5944] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 46.558750][ T5949] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 46.563841][ T5949] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 46.571527][ T5949] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 46.576878][ T5949] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 46.600317][ T5941] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 46.604535][ T5941] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 46.609307][ T5941] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 46.614111][ T5941] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 46.647640][ T5939] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 46.652408][ T5939] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 46.657267][ T5939] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 46.660513][ T5939] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 46.679002][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.693284][ T5944] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.705606][ T5949] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.709774][ T1205] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.712003][ T1205] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.717480][ T78] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.719554][ T78] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.729529][ T5949] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.743160][ T78] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.745223][ T78] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.756534][ T78] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.758579][ T78] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.785001][ T5941] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.796118][ T40] audit: type=1400 audit(1742301662.475:114): avc: denied { sys_module } for pid=5944 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 46.810752][ T5941] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.815493][ T1205] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.817502][ T1205] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.820656][ T5939] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.835562][ T78] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.837553][ T78] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.854731][ T5939] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.862032][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.864073][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.870277][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.872298][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.880913][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 46.891254][ T5949] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 46.918563][ T5944] veth0_vlan: entered promiscuous mode [ 46.937405][ T5944] veth1_vlan: entered promiscuous mode [ 46.941737][ T5949] veth0_vlan: entered promiscuous mode [ 46.947441][ T5949] veth1_vlan: entered promiscuous mode [ 46.970499][ T5949] veth0_macvtap: entered promiscuous mode [ 46.978071][ T5944] veth0_macvtap: entered promiscuous mode [ 46.982868][ T5944] veth1_macvtap: entered promiscuous mode [ 46.987369][ T5949] veth1_macvtap: entered promiscuous mode [ 46.996560][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.000859][ T5941] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.008069][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 47.011918][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.016592][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.024443][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.027517][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 47.030429][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.034190][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.040160][ T5949] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.042880][ T5949] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.045297][ T5949] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.047737][ T5949] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.051988][ T5944] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.055717][ T5944] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.058911][ T5944] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.062074][ T5944] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.099886][ T5941] veth0_vlan: entered promiscuous mode [ 47.118212][ T5939] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.120729][ T5941] veth1_vlan: entered promiscuous mode [ 47.131415][ T1205] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.135971][ T1205] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.139486][ T114] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.141744][ T114] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.159523][ T5941] veth0_macvtap: entered promiscuous mode [ 47.162290][ T78] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.162983][ T5941] veth1_macvtap: entered promiscuous mode [ 47.164730][ T78] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.173342][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.175563][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.179422][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 47.183037][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.186552][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 47.190266][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.195208][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.207232][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 47.211145][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.214857][ T5295] Bluetooth: hci2: command tx timeout [ 47.216961][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 47.219912][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.223974][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.231093][ T5949] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 47.234634][ T5939] veth0_vlan: entered promiscuous mode [ 47.237427][ T5941] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.239950][ T5941] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.243115][ T5941] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.245905][ T5941] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.256801][ T5939] veth1_vlan: entered promiscuous mode [ 47.276031][ T5939] veth0_macvtap: entered promiscuous mode [ 47.287963][ T5939] veth1_macvtap: entered promiscuous mode [ 47.292730][ T5295] Bluetooth: hci3: command tx timeout [ 47.292868][ T68] Bluetooth: hci1: command tx timeout [ 47.294483][ T5951] Bluetooth: hci0: command tx timeout [ 47.297623][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.300090][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.308118][ T5939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 47.311042][ T5939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.315513][ T5939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 47.318481][ T5939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.321140][ T5939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 47.324569][ T5939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.328127][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.331903][ T5939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 47.335503][ T5939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.338168][ T5939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 47.341837][ T5939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.344076][ T6010] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6010 comm=syz.0.1 [ 47.345627][ T5939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 47.351557][ T6010] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1'. [ 47.351731][ T5939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.359835][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.366641][ T5939] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.369289][ T5939] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.371856][ T5939] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.374816][ T5939] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.388240][ T114] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.390574][ T114] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.396444][ T6013] capability: warning: `syz.0.7' uses deprecated v2 capabilities in a way that may be insecure [ 47.401561][ T6013] overlayfs: failed to resolve './file1': -2 [ 47.428684][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.430850][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.454485][ T78] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.457982][ T78] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.539378][ T6031] syz.1.11 uses obsolete (PF_INET,SOCK_PACKET) [ 47.608656][ T6039] Zero length message leads to an empty skb [ 47.621095][ T6048] 9pnet_virtio: no channels available for device syz [ 47.633170][ T6030] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=49434 sclass=netlink_route_socket pid=6030 comm=syz.2.3 [ 47.832635][ T26] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 47.846769][ T6070] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 47.896113][ T6078] netlink: 28 bytes leftover after parsing attributes in process `syz.1.23'. [ 47.994100][ T26] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 47.996922][ T26] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 47.999531][ T26] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 48.006118][ T26] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 48.008760][ T26] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 48.011010][ T26] usb 8-1: Product: syz [ 48.012254][ T26] usb 8-1: Manufacturer: syz [ 48.013922][ T26] usb 8-1: SerialNumber: syz [ 48.221883][ T26] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 48.230178][ T6093] unknown channel width for channel at 909000KHz? [ 48.232839][ T6093] unknown channel width for channel at 909000KHz? [ 48.234665][ T6093] unknown channel width for channel at 909000KHz? [ 48.239021][ T6093] cgroup: Invalid name [ 48.240771][ T6093] netlink: 12 bytes leftover after parsing attributes in process `syz.2.27'. [ 48.649835][ T6110] netlink: 4 bytes leftover after parsing attributes in process `syz.0.30'. [ 48.652879][ T6110] xt_hashlimit: max too large, truncated to 1048576 [ 48.743444][ T6114] exFAT-fs (loop0): mounting with "discard" option, but the device does not support discard [ 48.747262][ T6114] syz.0.31: attempt to access beyond end of device [ 48.747262][ T6114] loop0: rw=0, sector=0, nr_sectors = 1 limit=0 [ 48.750972][ T6114] exFAT-fs (loop0): unable to read boot sector [ 48.752960][ T6114] exFAT-fs (loop0): failed to read boot sector [ 48.754765][ T6114] exFAT-fs (loop0): failed to recognize exfat type [ 48.810932][ T6143] syz.0.32: vmalloc error: size 16105472, failed to allocated page array size 31456, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 48.826586][ T6143] CPU: 3 UID: 0 PID: 6143 Comm: syz.0.32 Not tainted 6.14.0-rc7-syzkaller-00050-gfc444ada1310 #0 [ 48.826608][ T6143] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 48.826617][ T6143] Call Trace: [ 48.826622][ T6143] [ 48.826628][ T6143] dump_stack_lvl+0x16c/0x1f0 [ 48.826652][ T6143] warn_alloc+0x24d/0x3a0 [ 48.826670][ T6143] ? __pfx_warn_alloc+0x10/0x10 [ 48.826692][ T6143] ? __get_vm_area_node+0x1b0/0x2f0 [ 48.826712][ T6143] ? __get_vm_area_node+0x1dc/0x2f0 [ 48.826737][ T6143] __vmalloc_node_range_noprof+0x1102/0x1530 [ 48.826759][ T6143] ? __pfx___mutex_trylock_common+0x10/0x10 [ 48.826778][ T6143] ? __kasan_kmalloc+0xaa/0xb0 [ 48.826799][ T6143] ? __vcalloc_noprof+0x4d/0x80 [ 48.826823][ T6143] ? kvm_set_memslot+0x34/0x1380 [ 48.826842][ T6143] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 48.826863][ T6143] ? __pfx___mutex_lock+0x10/0x10 [ 48.826888][ T6143] ? __vcalloc_noprof+0x4d/0x80 [ 48.826908][ T6143] __vmalloc_noprof+0x6d/0x90 [ 48.826928][ T6143] ? __vcalloc_noprof+0x4d/0x80 [ 48.826949][ T6143] __vcalloc_noprof+0x4d/0x80 [ 48.826969][ T6143] kvm_set_memslot+0xee3/0x1380 [ 48.826989][ T6143] ? kasan_save_track+0x14/0x30 [ 48.827005][ T6143] kvm_set_memory_region+0xea1/0x1630 [ 48.827031][ T6143] ? __pfx_kvm_set_memory_region+0x10/0x10 [ 48.827047][ T6143] ? __might_fault+0xe3/0x190 [ 48.827070][ T6143] kvm_vm_ioctl+0x1551/0x3d70 [ 48.827095][ T6143] ? __pfx_mark_lock+0x10/0x10 [ 48.827118][ T6143] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 48.827148][ T6143] ? find_held_lock+0x2d/0x110 [ 48.827166][ T6143] ? tomoyo_path_number_perm+0x298/0x590 [ 48.827186][ T6143] ? __pfx_lock_release+0x10/0x10 [ 48.827208][ T6143] ? tomoyo_path_number_perm+0x46d/0x590 [ 48.827230][ T6143] ? tomoyo_path_number_perm+0x190/0x590 [ 48.827249][ T6143] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 48.827267][ T6143] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 48.827291][ T6143] ? do_vfs_ioctl+0x513/0x1990 [ 48.827311][ T6143] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 48.827353][ T6143] ? selinux_file_ioctl+0x180/0x270 [ 48.827374][ T6143] ? selinux_file_ioctl+0xb4/0x270 [ 48.827396][ T6143] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 48.827418][ T6143] __x64_sys_ioctl+0x190/0x200 [ 48.827439][ T6143] do_syscall_64+0xcd/0x250 [ 48.827460][ T6143] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 48.827479][ T6143] RIP: 0033:0x7fa492b8d169 [ 48.827492][ T6143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 48.827505][ T6143] RSP: 002b:00007fa493998038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 48.827520][ T6143] RAX: ffffffffffffffda RBX: 00007fa492da5fa0 RCX: 00007fa492b8d169 [ 48.827530][ T6143] RDX: 0000400000000080 RSI: 000000004020ae46 RDI: 0000000000000005 [ 48.827538][ T6143] RBP: 00007fa492c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 48.827547][ T6143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 48.827560][ T6143] R13: 0000000000000000 R14: 00007fa492da5fa0 R15: 00007fff92943b88 [ 48.827581][ T6143] [ 48.827587][ T6143] Mem-Info: [ 48.877034][ T6149] netlink: 8 bytes leftover after parsing attributes in process `syz.1.33'. [ 48.879203][ T6143] active_anon:5766 inactive_anon:0 isolated_anon:0 [ 48.879203][ T6143] active_file:1157 inactive_file:38441 isolated_file:0 [ 48.879203][ T6143] unevictable:1768 dirty:1604 writeback:0 [ 48.879203][ T6143] slab_reclaimable:10981 slab_unreclaimable:69354 [ 48.879203][ T6143] mapped:23541 shmem:2471 pagetables:777 [ 48.879203][ T6143] sec_pagetables:297 bounce:0 [ 48.879203][ T6143] kernel_misc_reclaimable:0 [ 48.879203][ T6143] free:485946 free_pcp:7387 free_cma:0 [ 48.946768][ T6143] Node 0 active_anon:23064kB inactive_anon:0kB active_file:4628kB inactive_file:153692kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:94164kB dirty:6380kB writeback:0kB shmem:6348kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12592kB pagetables:3108kB sec_pagetables:1188kB all_unreclaimable? no [ 48.956854][ T6143] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:36kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:144kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 48.965146][ T6143] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 48.972476][ T6143] lowmem_reserve[]: 0 1240 1240 1240 1240 [ 48.974306][ T6143] Node 0 DMA32 free:340788kB boost:0kB min:27608kB low:34508kB high:41408kB reserved_highatomic:0KB active_anon:23064kB inactive_anon:0kB active_file:4628kB inactive_file:153692kB unevictable:3536kB writepending:6380kB present:2080628kB managed:1270128kB mlocked:0kB bounce:0kB free_pcp:28000kB local_pcp:8256kB free_cma:0kB [ 48.982914][ T6143] lowmem_reserve[]: 0 0 0 0 0 [ 48.984291][ T6143] Node 1 Normal free:1587508kB boost:0kB min:39632kB low:49540kB high:59448kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB writepending:36kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:2076kB local_pcp:548kB free_cma:0kB [ 48.992021][ T6143] lowmem_reserve[]: 0 0 0 0 0 [ 48.993729][ T6143] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 48.997329][ T6143] Node 0 DMA32: 2*4kB (UM) 9*8kB (UE) 14*16kB (ME) 22*32kB (UME) 9*64kB (UE) 7*128kB (ME) 3*256kB (UME) 13*512kB (UME) 9*1024kB (UME) 7*2048kB (UME) 75*4096kB (UM) = 340656kB [ 49.002171][ T6143] Node 1 Normal: 23*4kB (UME) 9*8kB (UME) 13*16kB (UME) 84*32kB (UME) 59*64kB (UME) 19*128kB (UME) 5*256kB (UE) 6*512kB (UME) 1*1024kB (E) 2*2048kB (UM) 383*4096kB (M) = 1587508kB [ 49.007260][ T6143] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 49.010646][ T6143] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 49.014204][ T6143] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 49.016837][ T6143] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 49.019383][ T6143] 42069 total pagecache pages [ 49.020688][ T6143] 0 pages in swap cache [ 49.021848][ T6143] Free swap = 124996kB [ 49.023160][ T6143] Total swap = 124996kB [ 49.024347][ T6143] 1048443 pages RAM [ 49.025418][ T6143] 0 pages HighMem/MovableOnly [ 49.026731][ T6143] 281590 pages reserved [ 49.027887][ T6143] 0 pages cma reserved [ 49.288950][ T6176] overlay: ./bus is not a directory [ 49.293182][ T5951] Bluetooth: hci2: command tx timeout [ 49.319933][ T6179] netlink: 12 bytes leftover after parsing attributes in process `syz.0.42'. [ 49.342791][ T6185] tmpfs: Bad value for 'mpol' [ 49.373785][ T5951] Bluetooth: hci0: command tx timeout [ 49.373812][ T5295] Bluetooth: hci3: command tx timeout [ 49.380111][ T6187] netlink: 12 bytes leftover after parsing attributes in process `syz.2.47'. [ 49.382690][ T5295] Bluetooth: hci1: command tx timeout [ 49.662646][ T9] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 49.832627][ T9] usb 7-1: Using ep0 maxpacket: 8 [ 49.835870][ T9] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 49.838776][ T9] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 49.841578][ T9] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 49.844648][ T9] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 49.848427][ T9] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 49.851105][ T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 50.059039][ T9] usb 7-1: usb_control_msg returned -32 [ 50.060680][ T9] usbtmc 7-1:16.0: can't read capabilities [ 50.115798][ T6207] netlink: 16 bytes leftover after parsing attributes in process `syz.0.52'. [ 50.237650][ T6212] netlink: 8 bytes leftover after parsing attributes in process `syz.0.54'. [ 50.265463][ T40] kauditd_printk_skb: 130 callbacks suppressed [ 50.265473][ T40] audit: type=1400 audit(1742301665.945:245): avc: denied { create } for pid=6213 comm="syz.0.55" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 50.272413][ T40] audit: type=1400 audit(1742301665.945:246): avc: denied { setopt } for pid=6213 comm="syz.0.55" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 50.291647][ T40] audit: type=1400 audit(1742301665.965:247): avc: denied { setopt } for pid=6215 comm="syz.0.56" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 50.297643][ T40] audit: type=1400 audit(1742301665.965:248): avc: denied { map_read map_write } for pid=6215 comm="syz.0.56" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 50.322726][ T40] audit: type=1400 audit(1742301666.005:249): avc: denied { unlink } for pid=6221 comm="syz.0.57" name="#1" dev="tmpfs" ino=131 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 50.328731][ T40] audit: type=1400 audit(1742301666.005:250): avc: denied { mount } for pid=6221 comm="syz.0.57" name="/" dev="overlay" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 50.334827][ T40] audit: type=1400 audit(1742301666.005:251): avc: denied { mounton } for pid=6221 comm="syz.0.57" path="/20/bus/file0" dev="overlay" ino=133 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 50.346428][ T40] audit: type=1400 audit(1742301666.025:252): avc: denied { read } for pid=6221 comm="syz.0.57" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 50.398536][ T40] audit: type=1400 audit(1742301666.075:253): avc: denied { ioctl } for pid=6221 comm="syz.0.57" path="socket:[9737]" dev="sockfs" ino=9737 ioctlcmd=0x890c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 50.599988][ T1453] usb 8-1: USB disconnect, device number 2 [ 50.609756][ T1453] usblp0: removed [ 50.610235][ T40] audit: type=1400 audit(1742301666.285:254): avc: denied { ioctl } for pid=6227 comm="syz.1.59" path="/dev/fuse" dev="devtmpfs" ino=105 ioctlcmd=0xe500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1 [ 50.631771][ T6231] xt_bpf: check failed: parse error [ 50.661306][ T6229] Bluetooth: MGMT ver 1.23 [ 50.801836][ T6235] input: syz0 as /devices/virtual/input/input6 [ 50.813994][ T6235] geneve2: entered promiscuous mode [ 50.815827][ T6235] geneve2: entered allmulticast mode [ 51.029838][ T6246] netlink: 'syz.3.65': attribute type 9 has an invalid length. [ 51.032093][ T6246] netlink: 201384 bytes leftover after parsing attributes in process `syz.3.65'. [ 51.035331][ T6246] openvswitch: netlink: Message has 6 unknown bytes. [ 51.382627][ T5295] Bluetooth: hci2: command tx timeout [ 51.462704][ T5295] Bluetooth: hci1: command tx timeout [ 51.462746][ T5951] Bluetooth: hci3: command tx timeout [ 51.464294][ T5295] Bluetooth: hci0: command tx timeout [ 51.882710][ T5983] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 52.032686][ T5983] usb 5-1: Using ep0 maxpacket: 8 [ 52.036824][ T5983] usb 5-1: config 0 has an invalid interface number: 55 but max is 0 [ 52.039986][ T5983] usb 5-1: config 0 has no interface number 0 [ 52.042358][ T5983] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 52.045589][ T5983] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 52.048944][ T5983] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 52.053354][ T5983] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 52.058203][ T5983] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 52.061575][ T5983] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 52.066249][ T5983] usb 5-1: config 0 descriptor?? [ 52.074398][ T5983] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 52.277009][ T1456] usb 5-1: USB disconnect, device number 2 [ 52.282275][ T1456] ldusb 5-1:0.55: LD USB Device #0 now disconnected [ 52.432609][ T5983] usb 7-1: USB disconnect, device number 2 [ 52.806416][ T6334] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000). [ 52.811390][ T6334] qnx6: wrong signature (magic) in superblock #1. [ 52.814995][ T6334] qnx6: unable to read the first superblock [ 52.898877][ T6347] __nla_validate_parse: 3 callbacks suppressed [ 52.898887][ T6347] netlink: 16 bytes leftover after parsing attributes in process `syz.0.91'. [ 52.969562][ T6354] netlink: 8 bytes leftover after parsing attributes in process `syz.0.94'. [ 53.003044][ T6359] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 53.003044][ T6359] The task syz.2.92 (6359) triggered the difference, watch for misbehavior. [ 53.010073][ T26] Process accounting resumed [ 53.226121][ T6366] netlink: 8 bytes leftover after parsing attributes in process `syz.0.97'. [ 53.356932][ T6380] zonefs (nbd3) ERROR: Not a zoned block device [ 53.403958][ T6387] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 53.452690][ T5951] Bluetooth: hci2: command tx timeout [ 53.533142][ T68] Bluetooth: hci1: command tx timeout [ 53.533642][ T5948] Bluetooth: hci0: command tx timeout [ 53.534863][ T5951] Bluetooth: hci3: command tx timeout [ 53.696220][ T6416] netlink: 8 bytes leftover after parsing attributes in process `syz.1.114'. [ 53.874059][ T6431] trusted_key: syz.3.119 sent an empty control message without MSG_MORE. [ 53.876793][ T6431] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 54.225910][ T6482] overlayfs: lower data-only dirs require metacopy support. [ 54.272691][ T26] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 54.435452][ T26] usb 8-1: Using ep0 maxpacket: 8 [ 54.439020][ T26] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 54.441755][ T26] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 54.444674][ T26] usb 8-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 54.447679][ T26] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 54.450930][ T26] usb 8-1: config 0 descriptor?? [ 54.660851][ T835] usb 8-1: USB disconnect, device number 3 [ 54.697061][ T6513] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=528 sclass=netlink_route_socket pid=6513 comm=syz.0.146 [ 54.700837][ T6513] No control pipe specified [ 54.894097][ T6517] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 55.156613][ T6528] netlink: 76 bytes leftover after parsing attributes in process `syz.0.152'. [ 55.276787][ T6535] netlink: 165 bytes leftover after parsing attributes in process `syz.3.154'. [ 55.438071][ T40] kauditd_printk_skb: 90 callbacks suppressed [ 55.438081][ T40] audit: type=1400 audit(1742301671.115:345): avc: denied { bind } for pid=6545 comm="syz.3.159" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 55.447722][ T40] audit: type=1400 audit(1742301671.115:346): avc: denied { node_bind } for pid=6545 comm="syz.3.159" saddr=224.0.0.1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1 [ 55.485438][ T6548] netlink: 8 bytes leftover after parsing attributes in process `syz.3.160'. [ 55.515484][ T6552] netlink: 24 bytes leftover after parsing attributes in process `syz.3.162'. [ 55.560220][ T6558] capability: warning: `syz.2.161' uses 32-bit capabilities (legacy support in use) [ 55.587640][ T40] audit: type=1400 audit(1742301671.265:347): avc: denied { getopt } for pid=6559 comm="syz.3.164" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 55.612797][ T5951] Bluetooth: hci3: command 0x0405 tx timeout [ 55.671840][ T40] audit: type=1400 audit(1742301671.345:348): avc: denied { read write } for pid=6568 comm="syz.3.167" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 55.679144][ T40] audit: type=1400 audit(1742301671.345:349): avc: denied { open } for pid=6568 comm="syz.3.167" path="/dev/raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 55.685524][ T40] audit: type=1400 audit(1742301671.345:350): avc: denied { ioctl } for pid=6568 comm="syz.3.167" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 55.692077][ T40] audit: type=1400 audit(1742301671.365:351): avc: denied { getopt } for pid=6570 comm="syz.2.168" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 55.715816][ T6573] netlink: 4420 bytes leftover after parsing attributes in process `syz.2.169'. [ 55.793522][ T6577] netlink: 8 bytes leftover after parsing attributes in process `syz.1.171'. [ 55.796453][ T6577] netlink: 'syz.1.171': attribute type 10 has an invalid length. [ 55.802196][ T6577] team0: Port device netdevsim0 added [ 55.857305][ T40] audit: type=1400 audit(1742301671.535:352): avc: denied { setopt } for pid=6576 comm="syz.1.171" lport=40619 faddr=fc02:: scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 55.872276][ T40] audit: type=1400 audit(1742301671.545:353): avc: denied { bind } for pid=6585 comm="syz.2.173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 55.912674][ T5983] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 55.927580][ T40] audit: type=1400 audit(1742301671.605:354): avc: denied { append } for pid=6585 comm="syz.2.173" name="loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 56.064578][ T5983] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 56.072243][ T5983] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 56.081190][ T5983] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 56.087910][ T5983] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 56.091347][ T5983] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 56.098202][ T5983] usb 8-1: config 0 descriptor?? [ 56.126637][ T6596] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 56.378534][ T6604] nbd: must specify a size in bytes for the device [ 56.509613][ T5983] plantronics 0003:047F:FFFF.0002: unknown main item tag 0xd [ 56.513835][ T5983] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 56.522861][ T5983] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 56.582300][ T6609] could not allocate digest TFM handle cryptd(blake2b-160) [ 56.679764][ T6623] netlink: 'syz.1.184': attribute type 1 has an invalid length. [ 56.776915][ T1456] usb 8-1: USB disconnect, device number 4 [ 56.796929][ T6635] FAULT_INJECTION: forcing a failure. [ 56.796929][ T6635] name failslab, interval 1, probability 0, space 0, times 1 [ 56.801596][ T6635] CPU: 0 UID: 0 PID: 6635 Comm: syz.0.187 Not tainted 6.14.0-rc7-syzkaller-00050-gfc444ada1310 #0 [ 56.801615][ T6635] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 56.801625][ T6635] Call Trace: [ 56.801630][ T6635] [ 56.801636][ T6635] dump_stack_lvl+0x16c/0x1f0 [ 56.801675][ T6635] should_fail_ex+0x50a/0x650 [ 56.801707][ T6635] ? fs_reclaim_acquire+0xae/0x150 [ 56.801731][ T6635] ? tomoyo_realpath_from_path+0xb9/0x720 [ 56.801754][ T6635] should_failslab+0xc2/0x120 [ 56.801772][ T6635] __kmalloc_noprof+0xcb/0x510 [ 56.801789][ T6635] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 56.801816][ T6635] tomoyo_realpath_from_path+0xb9/0x720 [ 56.801837][ T6635] ? tomoyo_path_number_perm+0x235/0x590 [ 56.801859][ T6635] ? tomoyo_path_number_perm+0x235/0x590 [ 56.801891][ T6635] tomoyo_path_number_perm+0x248/0x590 [ 56.801910][ T6635] ? tomoyo_path_number_perm+0x235/0x590 [ 56.801930][ T6635] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 56.801972][ T6635] ? __pfx_lock_release+0x10/0x10 [ 56.801994][ T6635] ? trace_lock_acquire+0x14e/0x1f0 [ 56.802015][ T6635] ? lock_acquire+0x2f/0xb0 [ 56.802035][ T6635] ? __fget_files+0x40/0x3a0 [ 56.802053][ T6635] ? __fget_files+0x206/0x3a0 [ 56.802071][ T6635] security_file_ioctl+0x9b/0x240 [ 56.802095][ T6635] __x64_sys_ioctl+0xb7/0x200 [ 56.802116][ T6635] do_syscall_64+0xcd/0x250 [ 56.802139][ T6635] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 56.802161][ T6635] RIP: 0033:0x7fa492b8d169 [ 56.802173][ T6635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 56.802188][ T6635] RSP: 002b:00007fa493998038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 56.802211][ T6635] RAX: ffffffffffffffda RBX: 00007fa492da5fa0 RCX: 00007fa492b8d169 [ 56.802221][ T6635] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 56.802230][ T6635] RBP: 00007fa493998090 R08: 0000000000000000 R09: 0000000000000000 [ 56.802239][ T6635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 56.802247][ T6635] R13: 0000000000000000 R14: 00007fa492da5fa0 R15: 00007fff92943b88 [ 56.802268][ T6635] [ 56.804244][ T6635] ERROR: Out of memory at tomoyo_realpath_from_path. [ 57.061005][ T6658] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 57.064949][ T6658] overlayfs: maximum fs stacking depth exceeded [ 57.204059][ T6679] FAULT_INJECTION: forcing a failure. [ 57.204059][ T6679] name failslab, interval 1, probability 0, space 0, times 0 [ 57.208196][ T6679] CPU: 2 UID: 0 PID: 6679 Comm: syz.0.200 Not tainted 6.14.0-rc7-syzkaller-00050-gfc444ada1310 #0 [ 57.208209][ T6679] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 57.208215][ T6679] Call Trace: [ 57.208218][ T6679] [ 57.208226][ T6679] dump_stack_lvl+0x16c/0x1f0 [ 57.208243][ T6679] should_fail_ex+0x50a/0x650 [ 57.208260][ T6679] ? fs_reclaim_acquire+0xae/0x150 [ 57.208275][ T6679] ? tomoyo_encode2+0x100/0x3e0 [ 57.208290][ T6679] should_failslab+0xc2/0x120 [ 57.208302][ T6679] __kmalloc_noprof+0xcb/0x510 [ 57.208313][ T6679] ? rcu_is_watching+0x12/0xc0 [ 57.208325][ T6679] tomoyo_encode2+0x100/0x3e0 [ 57.208341][ T6679] tomoyo_encode+0x29/0x50 [ 57.208355][ T6679] tomoyo_realpath_from_path+0x19d/0x720 [ 57.208371][ T6679] ? tomoyo_path_number_perm+0x235/0x590 [ 57.208385][ T6679] tomoyo_path_number_perm+0x248/0x590 [ 57.208397][ T6679] ? tomoyo_path_number_perm+0x235/0x590 [ 57.208410][ T6679] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 57.208434][ T6679] ? __pfx_lock_release+0x10/0x10 [ 57.208448][ T6679] ? trace_lock_acquire+0x14e/0x1f0 [ 57.208461][ T6679] ? lock_acquire+0x2f/0xb0 [ 57.208475][ T6679] ? __fget_files+0x40/0x3a0 [ 57.208487][ T6679] ? __fget_files+0x206/0x3a0 [ 57.208498][ T6679] security_file_ioctl+0x9b/0x240 [ 57.208513][ T6679] __x64_sys_ioctl+0xb7/0x200 [ 57.208528][ T6679] do_syscall_64+0xcd/0x250 [ 57.208542][ T6679] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 57.208556][ T6679] RIP: 0033:0x7fa492b8d169 [ 57.208565][ T6679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 57.208573][ T6679] RSP: 002b:00007fa493998038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 57.208583][ T6679] RAX: ffffffffffffffda RBX: 00007fa492da5fa0 RCX: 00007fa492b8d169 [ 57.208589][ T6679] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 57.208594][ T6679] RBP: 00007fa493998090 R08: 0000000000000000 R09: 0000000000000000 [ 57.208600][ T6679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 57.208605][ T6679] R13: 0000000000000000 R14: 00007fa492da5fa0 R15: 00007fff92943b88 [ 57.208616][ T6679] [ 57.208624][ T6679] ERROR: Out of memory at tomoyo_realpath_from_path. [ 57.518129][ T6716] trusted_key: encrypted_key: insufficient parameters specified [ 57.810089][ T6733] FAULT_INJECTION: forcing a failure. [ 57.810089][ T6733] name failslab, interval 1, probability 0, space 0, times 0 [ 57.813992][ T6733] CPU: 1 UID: 0 PID: 6733 Comm: syz.2.215 Not tainted 6.14.0-rc7-syzkaller-00050-gfc444ada1310 #0 [ 57.814006][ T6733] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 57.814013][ T6733] Call Trace: [ 57.814021][ T6733] [ 57.814025][ T6733] dump_stack_lvl+0x16c/0x1f0 [ 57.814056][ T6733] should_fail_ex+0x50a/0x650 [ 57.814077][ T6733] ? fs_reclaim_acquire+0xae/0x150 [ 57.814092][ T6733] ? vhost_task_create+0xe6/0x2e0 [ 57.814111][ T6733] should_failslab+0xc2/0x120 [ 57.814123][ T6733] __kmalloc_cache_noprof+0x68/0x410 [ 57.814139][ T6733] ? rcu_is_watching+0x12/0xc0 [ 57.814150][ T6733] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 57.814166][ T6733] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 57.814177][ T6733] vhost_task_create+0xe6/0x2e0 [ 57.814189][ T6733] ? __pfx_vhost_task_create+0x10/0x10 [ 57.814201][ T6733] ? kvm_mmu_post_init_vm+0xb4/0x370 [ 57.814222][ T6733] ? __pfx_vhost_task_fn+0x10/0x10 [ 57.814235][ T6733] ? lock_acquire.part.0+0x11b/0x380 [ 57.814250][ T6733] ? find_held_lock+0x2d/0x110 [ 57.814264][ T6733] kvm_mmu_post_init_vm+0x1b7/0x370 [ 57.814277][ T6733] kvm_arch_vcpu_ioctl_run+0x66/0x17f0 [ 57.814289][ T6733] ? lock_acquire+0x2f/0xb0 [ 57.814303][ T6733] ? kvm_vcpu_ioctl+0x14be/0x16b0 [ 57.814317][ T6733] kvm_vcpu_ioctl+0x5ea/0x16b0 [ 57.814330][ T6733] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 57.814345][ T6733] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450 [ 57.814363][ T6733] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 57.814381][ T6733] ? __pfx_lock_release+0x10/0x10 [ 57.814400][ T6733] ? selinux_file_ioctl+0x180/0x270 [ 57.814442][ T6733] ? selinux_file_ioctl+0xb4/0x270 [ 57.814464][ T6733] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 57.814478][ T6733] __x64_sys_ioctl+0x190/0x200 [ 57.814494][ T6733] do_syscall_64+0xcd/0x250 [ 57.814508][ T6733] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 57.814522][ T6733] RIP: 0033:0x7fc005b8d169 [ 57.814531][ T6733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 57.814540][ T6733] RSP: 002b:00007fc0039f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 57.814549][ T6733] RAX: ffffffffffffffda RBX: 00007fc005da5fa0 RCX: 00007fc005b8d169 [ 57.814555][ T6733] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 57.814560][ T6733] RBP: 00007fc0039f6090 R08: 0000000000000000 R09: 0000000000000000 [ 57.814566][ T6733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 57.814571][ T6733] R13: 0000000000000000 R14: 00007fc005da5fa0 R15: 00007ffeec60c798 [ 57.814583][ T6733] [ 57.896443][ C1] vkms_vblank_simulate: vblank timer overrun [ 57.919507][ T6736] fuse: Unknown parameter 'ÿÿÿÿÿÿÿÿ' [ 57.998405][ T6743] tmpfs: Invalid uid '0x00000000ffffffff' [ 58.733554][ T5295] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 58.736557][ T5295] Bluetooth: hci2: Injecting HCI hardware error event [ 58.739027][ T5295] Bluetooth: hci2: hardware error 0x00 [ 59.156044][ T6761] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 59.158057][ T6761] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 59.165649][ T6761] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 59.169592][ T6761] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 59.172016][ T6761] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 59.175879][ T6761] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 59.179028][ T6761] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 59.181109][ T6761] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 59.184773][ T6761] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 59.285298][ T6783] FAULT_INJECTION: forcing a failure. [ 59.285298][ T6783] name failslab, interval 1, probability 0, space 0, times 0 [ 59.285329][ T6783] CPU: 3 UID: 0 PID: 6783 Comm: syz.1.227 Not tainted 6.14.0-rc7-syzkaller-00050-gfc444ada1310 #0 [ 59.285340][ T6783] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 59.285346][ T6783] Call Trace: [ 59.285349][ T6783] [ 59.285353][ T6783] dump_stack_lvl+0x16c/0x1f0 [ 59.285369][ T6783] should_fail_ex+0x50a/0x650 [ 59.285385][ T6783] ? fs_reclaim_acquire+0xae/0x150 [ 59.285401][ T6783] should_failslab+0xc2/0x120 [ 59.285412][ T6783] kmem_cache_alloc_node_noprof+0x72/0x3c0 [ 59.285423][ T6783] ? mark_held_locks+0x9f/0xe0 [ 59.285436][ T6783] ? copy_process+0x4be/0x8c50 [ 59.285446][ T6783] ? _raw_spin_unlock_irq+0x23/0x50 [ 59.285459][ T6783] copy_process+0x4be/0x8c50 [ 59.285467][ T6783] ? kasan_save_stack+0x33/0x60 [ 59.285476][ T6783] ? kasan_save_track+0x14/0x30 [ 59.285484][ T6783] ? __kasan_kmalloc+0xaa/0xb0 [ 59.285493][ T6783] ? vhost_task_create+0xe6/0x2e0 [ 59.285505][ T6783] ? kvm_mmu_post_init_vm+0x1b7/0x370 [ 59.285518][ T6783] ? kvm_arch_vcpu_ioctl_run+0x66/0x17f0 [ 59.285529][ T6783] ? kvm_vcpu_ioctl+0x5ea/0x16b0 [ 59.285540][ T6783] ? __x64_sys_ioctl+0x190/0x200 [ 59.285554][ T6783] ? do_syscall_64+0xcd/0x250 [ 59.285566][ T6783] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 59.285587][ T6783] ? __pfx_copy_process+0x10/0x10 [ 59.285603][ T6783] ? lockdep_init_map_type+0x16d/0x7d0 [ 59.285617][ T6783] ? __raw_spin_lock_init+0x3a/0x110 [ 59.285627][ T6783] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 59.285642][ T6783] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 59.285653][ T6783] vhost_task_create+0x1d3/0x2e0 [ 59.285665][ T6783] ? __pfx_vhost_task_create+0x10/0x10 [ 59.285678][ T6783] ? kvm_mmu_post_init_vm+0xb4/0x370 [ 59.285693][ T6783] ? __pfx_vhost_task_fn+0x10/0x10 [ 59.285706][ T6783] ? lock_acquire.part.0+0x11b/0x380 [ 59.285720][ T6783] ? find_held_lock+0x2d/0x110 [ 59.285734][ T6783] kvm_mmu_post_init_vm+0x1b7/0x370 [ 59.285747][ T6783] kvm_arch_vcpu_ioctl_run+0x66/0x17f0 [ 59.285758][ T6783] ? lock_acquire+0x2f/0xb0 [ 59.285771][ T6783] ? kvm_vcpu_ioctl+0x14be/0x16b0 [ 59.285785][ T6783] kvm_vcpu_ioctl+0x5ea/0x16b0 [ 59.285798][ T6783] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 59.285813][ T6783] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450 [ 59.285831][ T6783] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 59.285849][ T6783] ? __pfx_lock_release+0x10/0x10 [ 59.285868][ T6783] ? selinux_file_ioctl+0x180/0x270 [ 59.285883][ T6783] ? selinux_file_ioctl+0xb4/0x270 [ 59.285899][ T6783] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 59.285911][ T6783] __x64_sys_ioctl+0x190/0x200 [ 59.285926][ T6783] do_syscall_64+0xcd/0x250 [ 59.285939][ T6783] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 59.285952][ T6783] RIP: 0033:0x7f926538d169 [ 59.285961][ T6783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 59.285970][ T6783] RSP: 002b:00007f9266176038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 59.285979][ T6783] RAX: ffffffffffffffda RBX: 00007f92655a6080 RCX: 00007f926538d169 [ 59.285985][ T6783] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 59.285991][ T6783] RBP: 00007f9266176090 R08: 0000000000000000 R09: 0000000000000000 [ 59.285996][ T6783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 59.286001][ T6783] R13: 0000000000000001 R14: 00007f92655a6080 R15: 00007fff56a59ae8 [ 59.286013][ T6783] [ 59.297730][ T6782] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 59.548137][ T6804] kvm: user requested TSC rate below hardware speed [ 59.663350][ T6809] __nla_validate_parse: 6 callbacks suppressed [ 59.663364][ T6809] netlink: 16 bytes leftover after parsing attributes in process `syz.3.238'. [ 59.722687][ T66] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 59.873784][ T66] usb 6-1: too many configurations: 46, using maximum allowed: 8 [ 59.876817][ T66] usb 6-1: config index 0 descriptor too short (expected 65519, got 146) [ 59.879991][ T66] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 59.885083][ T66] usb 6-1: config index 1 descriptor too short (expected 65519, got 146) [ 59.887806][ T66] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 59.891738][ T66] usb 6-1: config index 2 descriptor too short (expected 65519, got 146) [ 59.894216][ T66] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 59.897696][ T66] usb 6-1: config index 3 descriptor too short (expected 65519, got 146) [ 59.900084][ T66] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 59.903763][ T66] usb 6-1: config index 4 descriptor too short (expected 65519, got 146) [ 59.906079][ T66] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 59.909633][ T66] usb 6-1: config index 5 descriptor too short (expected 65519, got 146) [ 59.912049][ T66] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 59.920155][ T66] usb 6-1: config index 6 descriptor too short (expected 65519, got 146) [ 59.922491][ T66] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 59.926163][ T66] usb 6-1: config index 7 descriptor too short (expected 65519, got 146) [ 59.928507][ T66] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 59.932864][ T66] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 59.935340][ T66] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 59.937766][ T66] usb 6-1: Product: syz [ 59.938953][ T66] usb 6-1: Manufacturer: syz [ 59.940247][ T66] usb 6-1: SerialNumber: syz [ 59.945774][ T66] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 59.952707][ T5983] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 59.968242][ T66] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 60.102695][ T5983] usb 5-1: Using ep0 maxpacket: 32 [ 60.107589][ T5983] usb 5-1: config 1 interface 0 altsetting 6 bulk endpoint 0x82 has invalid maxpacket 32 [ 60.110184][ T5983] usb 5-1: config 1 interface 0 altsetting 6 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 60.113723][ T5983] usb 5-1: config 1 interface 0 has no altsetting 0 [ 60.116912][ T5983] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 60.119339][ T5983] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 60.121452][ T5983] usb 5-1: Product: syz [ 60.122693][ T5983] usb 5-1: Manufacturer: и [ 60.123915][ T5983] usb 5-1: SerialNumber: syz [ 60.126678][ T6818] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 60.128753][ T6818] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 60.171536][ T6800] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 60.175292][ T6800] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 60.178782][ T6800] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 60.182121][ T6800] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 60.185663][ T6800] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 60.188985][ T6800] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 60.192681][ T6800] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 60.196066][ T6800] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 60.199537][ T6800] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 60.202933][ T6800] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 60.214119][ T6812] usb 6-1: USB disconnect, device number 2 [ 60.335471][ T5983] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -22 [ 60.339305][ T5983] usb 5-1: USB disconnect, device number 3 [ 60.493794][ T5948] Bluetooth: hci0: command 0x0c1a tx timeout [ 60.604554][ T6849] FAULT_INJECTION: forcing a failure. [ 60.604554][ T6849] name failslab, interval 1, probability 0, space 0, times 0 [ 60.608080][ T6849] CPU: 3 UID: 0 PID: 6849 Comm: syz.3.243 Not tainted 6.14.0-rc7-syzkaller-00050-gfc444ada1310 #0 [ 60.608093][ T6849] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 60.608099][ T6849] Call Trace: [ 60.608103][ T6849] [ 60.608107][ T6849] dump_stack_lvl+0x16c/0x1f0 [ 60.608124][ T6849] should_fail_ex+0x50a/0x650 [ 60.608140][ T6849] ? fs_reclaim_acquire+0xae/0x150 [ 60.608156][ T6849] should_failslab+0xc2/0x120 [ 60.608168][ T6849] __kmalloc_cache_node_noprof+0x6e/0x420 [ 60.608178][ T6849] ? __get_vm_area_node+0x101/0x2f0 [ 60.608195][ T6849] __get_vm_area_node+0x101/0x2f0 [ 60.608211][ T6849] __vmalloc_node_range_noprof+0x26a/0x1530 [ 60.608227][ T6849] ? vhost_task_create+0x1d3/0x2e0 [ 60.608246][ T6849] ? mod_objcg_state+0x4c4/0x8d0 [ 60.608261][ T6849] ? lockdep_hardirqs_on+0x7c/0x110 [ 60.608275][ T6849] ? vhost_task_create+0x1d3/0x2e0 [ 60.608290][ T6849] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 60.608306][ T6849] ? rcu_is_watching+0x12/0xc0 [ 60.608317][ T6849] ? trace_kmem_cache_alloc+0x2d/0xd0 [ 60.608331][ T6849] ? kmem_cache_alloc_node_noprof+0x272/0x3c0 [ 60.608340][ T6849] ? mark_held_locks+0x9f/0xe0 [ 60.608354][ T6849] ? copy_process+0x4be/0x8c50 [ 60.608363][ T6849] ? vhost_task_create+0x1d3/0x2e0 [ 60.608376][ T6849] copy_process+0x2ef2/0x8c50 [ 60.608385][ T6849] ? vhost_task_create+0x1d3/0x2e0 [ 60.608396][ T6849] ? kasan_save_stack+0x33/0x60 [ 60.608405][ T6849] ? kasan_save_track+0x14/0x30 [ 60.608413][ T6849] ? __kasan_kmalloc+0xaa/0xb0 [ 60.608422][ T6849] ? vhost_task_create+0xe6/0x2e0 [ 60.608433][ T6849] ? kvm_mmu_post_init_vm+0x1b7/0x370 [ 60.608445][ T6849] ? kvm_arch_vcpu_ioctl_run+0x66/0x17f0 [ 60.608457][ T6849] ? kvm_vcpu_ioctl+0x5ea/0x16b0 [ 60.608468][ T6849] ? __x64_sys_ioctl+0x190/0x200 [ 60.608481][ T6849] ? do_syscall_64+0xcd/0x250 [ 60.608493][ T6849] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 60.608513][ T6849] ? __pfx_copy_process+0x10/0x10 [ 60.608530][ T6849] ? lockdep_init_map_type+0x16d/0x7d0 [ 60.608544][ T6849] ? __raw_spin_lock_init+0x3a/0x110 [ 60.608554][ T6849] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 60.608569][ T6849] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 60.608580][ T6849] vhost_task_create+0x1d3/0x2e0 [ 60.608592][ T6849] ? __pfx_vhost_task_create+0x10/0x10 [ 60.608605][ T6849] ? kvm_mmu_post_init_vm+0xb4/0x370 [ 60.608620][ T6849] ? __pfx_vhost_task_fn+0x10/0x10 [ 60.608634][ T6849] ? lock_acquire.part.0+0x11b/0x380 [ 60.608647][ T6849] ? find_held_lock+0x2d/0x110 [ 60.608661][ T6849] kvm_mmu_post_init_vm+0x1b7/0x370 [ 60.608675][ T6849] kvm_arch_vcpu_ioctl_run+0x66/0x17f0 [ 60.608686][ T6849] ? lock_acquire+0x2f/0xb0 [ 60.608699][ T6849] ? kvm_vcpu_ioctl+0x14be/0x16b0 [ 60.608712][ T6849] kvm_vcpu_ioctl+0x5ea/0x16b0 [ 60.608725][ T6849] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 60.608740][ T6849] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450 [ 60.608758][ T6849] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 60.608776][ T6849] ? __pfx_lock_release+0x10/0x10 [ 60.608795][ T6849] ? selinux_file_ioctl+0x180/0x270 [ 60.608810][ T6849] ? selinux_file_ioctl+0xb4/0x270 [ 60.608826][ T6849] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 60.608838][ T6849] __x64_sys_ioctl+0x190/0x200 [ 60.608853][ T6849] do_syscall_64+0xcd/0x250 [ 60.608866][ T6849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 60.608879][ T6849] RIP: 0033:0x7f6fda18d169 [ 60.608888][ T6849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 60.608897][ T6849] RSP: 002b:00007f6fdafda038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 60.608906][ T6849] RAX: ffffffffffffffda RBX: 00007f6fda3a5fa0 RCX: 00007f6fda18d169 [ 60.608912][ T6849] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 60.608917][ T6849] RBP: 00007f6fdafda090 R08: 0000000000000000 R09: 0000000000000000 [ 60.608923][ T6849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 60.608928][ T6849] R13: 0000000000000000 R14: 00007f6fda3a5fa0 R15: 00007ffd3d6eb078 [ 60.608940][ T6849] [ 60.608945][ T6849] syz.3.243: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 60.734825][ T6849] CPU: 2 UID: 0 PID: 6849 Comm: syz.3.243 Not tainted 6.14.0-rc7-syzkaller-00050-gfc444ada1310 #0 [ 60.734837][ T6849] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 60.734844][ T6849] Call Trace: [ 60.734847][ T6849] [ 60.734851][ T6849] dump_stack_lvl+0x16c/0x1f0 [ 60.734868][ T6849] warn_alloc+0x24d/0x3a0 [ 60.734880][ T6849] ? __pfx_warn_alloc+0x10/0x10 [ 60.734890][ T6849] ? rcu_is_watching+0x12/0xc0 [ 60.734901][ T6849] ? __kmalloc_cache_node_noprof+0x2ad/0x420 [ 60.734914][ T6849] ? __kasan_kmalloc+0x8a/0xb0 [ 60.734924][ T6849] ? __get_vm_area_node+0x1dc/0x2f0 [ 60.734942][ T6849] __vmalloc_node_range_noprof+0xd24/0x1530 [ 60.734959][ T6849] ? mod_objcg_state+0x4c4/0x8d0 [ 60.734974][ T6849] ? lockdep_hardirqs_on+0x7c/0x110 [ 60.734988][ T6849] ? vhost_task_create+0x1d3/0x2e0 [ 60.735012][ T6849] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 60.735028][ T6849] ? rcu_is_watching+0x12/0xc0 [ 60.735038][ T6849] ? trace_kmem_cache_alloc+0x2d/0xd0 [ 60.735052][ T6849] ? kmem_cache_alloc_node_noprof+0x272/0x3c0 [ 60.735062][ T6849] ? mark_held_locks+0x9f/0xe0 [ 60.735075][ T6849] ? copy_process+0x4be/0x8c50 [ 60.735085][ T6849] ? vhost_task_create+0x1d3/0x2e0 [ 60.735098][ T6849] copy_process+0x2ef2/0x8c50 [ 60.735107][ T6849] ? vhost_task_create+0x1d3/0x2e0 [ 60.735118][ T6849] ? kasan_save_stack+0x33/0x60 [ 60.735127][ T6849] ? kasan_save_track+0x14/0x30 [ 60.735135][ T6849] ? __kasan_kmalloc+0xaa/0xb0 [ 60.735143][ T6849] ? vhost_task_create+0xe6/0x2e0 [ 60.735155][ T6849] ? kvm_mmu_post_init_vm+0x1b7/0x370 [ 60.735167][ T6849] ? kvm_arch_vcpu_ioctl_run+0x66/0x17f0 [ 60.735178][ T6849] ? kvm_vcpu_ioctl+0x5ea/0x16b0 [ 60.735189][ T6849] ? __x64_sys_ioctl+0x190/0x200 [ 60.735201][ T6849] ? do_syscall_64+0xcd/0x250 [ 60.735214][ T6849] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 60.735234][ T6849] ? __pfx_copy_process+0x10/0x10 [ 60.735251][ T6849] ? lockdep_init_map_type+0x16d/0x7d0 [ 60.735265][ T6849] ? __raw_spin_lock_init+0x3a/0x110 [ 60.735275][ T6849] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 60.735290][ T6849] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 60.735301][ T6849] vhost_task_create+0x1d3/0x2e0 [ 60.735313][ T6849] ? __pfx_vhost_task_create+0x10/0x10 [ 60.735326][ T6849] ? kvm_mmu_post_init_vm+0xb4/0x370 [ 60.735341][ T6849] ? __pfx_vhost_task_fn+0x10/0x10 [ 60.735355][ T6849] ? lock_acquire.part.0+0x11b/0x380 [ 60.735368][ T6849] ? find_held_lock+0x2d/0x110 [ 60.735382][ T6849] kvm_mmu_post_init_vm+0x1b7/0x370 [ 60.735396][ T6849] kvm_arch_vcpu_ioctl_run+0x66/0x17f0 [ 60.735407][ T6849] ? lock_acquire+0x2f/0xb0 [ 60.735419][ T6849] ? kvm_vcpu_ioctl+0x14be/0x16b0 [ 60.735436][ T6849] kvm_vcpu_ioctl+0x5ea/0x16b0 [ 60.735450][ T6849] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 60.735465][ T6849] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450 [ 60.735483][ T6849] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 60.735501][ T6849] ? __pfx_lock_release+0x10/0x10 [ 60.735519][ T6849] ? selinux_file_ioctl+0x180/0x270 [ 60.735534][ T6849] ? selinux_file_ioctl+0xb4/0x270 [ 60.735550][ T6849] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 60.735563][ T6849] __x64_sys_ioctl+0x190/0x200 [ 60.735577][ T6849] do_syscall_64+0xcd/0x250 [ 60.735591][ T6849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 60.735604][ T6849] RIP: 0033:0x7f6fda18d169 [ 60.735612][ T6849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 60.735621][ T6849] RSP: 002b:00007f6fdafda038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 60.735630][ T6849] RAX: ffffffffffffffda RBX: 00007f6fda3a5fa0 RCX: 00007f6fda18d169 [ 60.735635][ T6849] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 60.735641][ T6849] RBP: 00007f6fdafda090 R08: 0000000000000000 R09: 0000000000000000 [ 60.735646][ T6849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 60.735651][ T6849] R13: 0000000000000000 R14: 00007f6fda3a5fa0 R15: 00007ffd3d6eb078 [ 60.735663][ T6849] [ 60.735667][ T6849] Mem-Info: [ 60.804897][ T6852] tipc: Started in network mode [ 60.806200][ T6849] active_anon:6272 inactive_anon:0 isolated_anon:0 [ 60.806200][ T6849] active_file:12830 inactive_file:38463 isolated_file:0 [ 60.806200][ T6849] unevictable:1768 dirty:247 writeback:0 [ 60.806200][ T6849] slab_reclaimable:11640 slab_unreclaimable:71481 [ 60.806200][ T6849] mapped:24870 shmem:2441 pagetables:840 [ 60.806200][ T6849] sec_pagetables:300 bounce:0 [ 60.806200][ T6849] kernel_misc_reclaimable:0 [ 60.806200][ T6849] free:467854 free_pcp:3404 free_cma:0 [ 60.807897][ T6852] tipc: Node identity 4, cluster identity 4711 [ 60.809846][ T6849] Node 0 active_anon:25088kB inactive_anon:0kB active_file:51320kB inactive_file:153780kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:99480kB dirty:988kB writeback:0kB shmem:6228kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12784kB pagetables:3360kB sec_pagetables:1200kB all_unreclaimable? no [ 60.811207][ T6852] tipc: Node number set to 4 [ 60.813805][ T5295] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 60.815961][ T6849] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:144kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 60.891769][ T6849] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 60.891814][ T6851] tty tty22: ldisc open failed (-12), clearing slot 21 [ 60.899729][ T6849] lowmem_reserve[]: 0 1240 1240 1240 1240 [ 60.899757][ T6849] Node 0 DMA32 free:276440kB boost:2048kB min:29656kB low:36556kB high:43456kB reserved_highatomic:0KB active_anon:25088kB inactive_anon:0kB active_file:51320kB inactive_file:153780kB unevictable:3536kB writepending:988kB present:2080628kB managed:1270128kB mlocked:0kB bounce:0kB free_pcp:3992kB local_pcp:1004kB free_cma:0kB [ 60.899785][ T6849] lowmem_reserve[]: 0 0 0 0 0 [ 60.899829][ T6849] Node 1 Normal free:1578456kB boost:0kB min:39632kB low:49540kB high:59448kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:10460kB local_pcp:248kB free_cma:0kB [ 60.899856][ T6849] lowmem_reserve[]: 0 0 0 0 0 [ 60.899877][ T6849] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 60.899955][ T6849] Node 0 DMA32: 1*4kB (U) 29*8kB (ME) 182*16kB (UME) 305*32kB (UME) 257*64kB (UME) 157*128kB (UME) 144*256kB (UME) 109*512kB (UM) 65*1024kB (UME) 17*2048kB (UME) 8*4096kB (M) = 276268kB [ 60.900049][ T6849] Node 1 Normal: 50*4kB (UME) 16*8kB (UME) 7*16kB (UME) 11*32kB (ME) 13*64kB (UME) 9*128kB (UME) 1*256kB (E) 5*512kB (UME) 2*1024kB (UE) 1*2048kB (M) 383*4096kB (M) = 1578456kB [ 60.900144][ T6849] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 60.900152][ T6849] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 60.900160][ T6849] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 60.900168][ T6849] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 60.900175][ T6849] 53734 total pagecache pages [ 60.900182][ T6849] 0 pages in swap cache [ 60.900187][ T6849] Free swap = 124744kB [ 60.900191][ T6849] Total swap = 124996kB [ 60.900195][ T6849] 1048443 pages RAM [ 60.900199][ T6849] 0 pages HighMem/MovableOnly [ 60.900203][ T6849] 281590 pages reserved [ 60.900207][ T6849] 0 pages cma reserved [ 60.972627][ T66] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive [ 60.974829][ T66] ath9k_htc: Failed to initialize the device [ 60.977896][ T6812] usb 6-1: ath9k_htc: USB layer deinitialized [ 61.060917][ T6863] fuse: Bad value for 'fd' [ 61.063518][ T40] kauditd_printk_skb: 78 callbacks suppressed [ 61.063527][ T40] audit: type=1400 audit(1742301676.735:433): avc: denied { mount } for pid=6862 comm="syz.3.248" name="/" dev="pstore" ino=6347 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1 [ 61.073304][ T40] audit: type=1400 audit(1742301676.755:434): avc: denied { remount } for pid=6862 comm="syz.3.248" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1 [ 61.078777][ T40] audit: type=1400 audit(1742301676.755:435): avc: denied { mounton } for pid=6862 comm="syz.3.248" path="/54/file0" dev="pstore" ino=6347 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=dir permissive=1 [ 61.084993][ T40] audit: type=1400 audit(1742301676.765:436): avc: denied { write } for pid=6862 comm="syz.3.248" name="/" dev="9p" ino=36831287 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 61.091949][ T40] audit: type=1400 audit(1742301676.765:437): avc: denied { add_name } for pid=6862 comm="syz.3.248" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 61.092069][ T40] audit: type=1400 audit(1742301676.765:438): avc: denied { create } for pid=6862 comm="syz.3.248" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 61.117189][ T40] audit: type=1400 audit(1742301676.765:439): avc: denied { associate } for pid=6862 comm="syz.3.248" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 61.195714][ T6883] FAULT_INJECTION: forcing a failure. [ 61.195714][ T6883] name failslab, interval 1, probability 0, space 0, times 0 [ 61.206449][ T40] audit: type=1400 audit(1742301676.875:440): avc: denied { unmount } for pid=5949 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1 [ 61.220413][ C1] vkms_vblank_simulate: vblank timer overrun [ 61.220801][ T5295] Bluetooth: hci3: command 0x0405 tx timeout [ 61.221111][ T6883] CPU: 0 UID: 0 PID: 6883 Comm: syz.1.254 Not tainted 6.14.0-rc7-syzkaller-00050-gfc444ada1310 #0 [ 61.221124][ T6883] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 61.221130][ T6883] Call Trace: [ 61.221133][ T6883] [ 61.221137][ T6883] dump_stack_lvl+0x16c/0x1f0 [ 61.221154][ T6883] should_fail_ex+0x50a/0x650 [ 61.221177][ T6883] ? fs_reclaim_acquire+0xae/0x150 [ 61.221193][ T6883] ? lsm_blob_alloc+0x68/0x90 [ 61.221203][ T6883] should_failslab+0xc2/0x120 [ 61.221215][ T6883] __kmalloc_noprof+0xcb/0x510 [ 61.221225][ T6883] ? __pfx_perf_event_init_task+0x10/0x10 [ 61.221236][ T6883] ? audit_alloc+0xa3/0x7b0 [ 61.221249][ T6883] lsm_blob_alloc+0x68/0x90 [ 61.221259][ T6883] security_task_alloc+0x2d/0x260 [ 61.221276][ T6883] copy_process+0x24cc/0x8c50 [ 61.221285][ T6883] ? kasan_save_stack+0x33/0x60 [ 61.221294][ T6883] ? kasan_save_track+0x14/0x30 [ 61.221303][ T6883] ? __kasan_kmalloc+0xaa/0xb0 [ 61.221311][ T6883] ? vhost_task_create+0xe6/0x2e0 [ 61.221322][ T6883] ? kvm_mmu_post_init_vm+0x1b7/0x370 [ 61.221335][ T6883] ? kvm_arch_vcpu_ioctl_run+0x66/0x17f0 [ 61.221347][ T6883] ? kvm_vcpu_ioctl+0x5ea/0x16b0 [ 61.221358][ T6883] ? __x64_sys_ioctl+0x190/0x200 [ 61.221371][ T6883] ? do_syscall_64+0xcd/0x250 [ 61.221383][ T6883] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.221405][ T6883] ? __pfx_copy_process+0x10/0x10 [ 61.221422][ T6883] ? lockdep_init_map_type+0x16d/0x7d0 [ 61.221436][ T6883] ? __raw_spin_lock_init+0x3a/0x110 [ 61.221447][ T6883] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 61.221462][ T6883] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 61.221473][ T6883] vhost_task_create+0x1d3/0x2e0 [ 61.221485][ T6883] ? __pfx_vhost_task_create+0x10/0x10 [ 61.221497][ T6883] ? kvm_mmu_post_init_vm+0xb4/0x370 [ 61.221513][ T6883] ? __pfx_vhost_task_fn+0x10/0x10 [ 61.221527][ T6883] ? lock_acquire.part.0+0x11b/0x380 [ 61.221540][ T6883] ? find_held_lock+0x2d/0x110 [ 61.221554][ T6883] kvm_mmu_post_init_vm+0x1b7/0x370 [ 61.221573][ T6883] kvm_arch_vcpu_ioctl_run+0x66/0x17f0 [ 61.221587][ T6883] ? lock_acquire+0x2f/0xb0 [ 61.221602][ T6883] ? kvm_vcpu_ioctl+0x14be/0x16b0 [ 61.221622][ T6883] kvm_vcpu_ioctl+0x5ea/0x16b0 [ 61.221641][ T6883] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 61.221660][ T6883] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450 [ 61.221678][ T6883] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 61.221699][ T6883] ? __pfx_lock_release+0x10/0x10 [ 61.221728][ T6883] ? selinux_file_ioctl+0x180/0x270 [ 61.221749][ T6883] ? selinux_file_ioctl+0xb4/0x270 [ 61.221770][ T6883] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 61.221784][ T6883] __x64_sys_ioctl+0x190/0x200 [ 61.221805][ T6883] do_syscall_64+0xcd/0x250 [ 61.221826][ T6883] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.221844][ T6883] RIP: 0033:0x7f926538d169 [ 61.221857][ T6883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 61.221869][ T6883] RSP: 002b:00007f9266197038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 61.221879][ T6883] RAX: ffffffffffffffda RBX: 00007f92655a5fa0 RCX: 00007f926538d169 [ 61.221885][ T6883] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 61.221891][ T6883] RBP: 00007f9266197090 R08: 0000000000000000 R09: 0000000000000000 [ 61.221896][ T6883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 61.221901][ T6883] R13: 0000000000000000 R14: 00007f92655a5fa0 R15: 00007fff56a59ae8 [ 61.221914][ T6883] [ 61.225544][ T40] audit: type=1400 audit(1742301676.875:441): avc: denied { create } for pid=6885 comm="syz.2.255" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 61.230841][ T5948] Bluetooth: hci1: command 0x0c1a tx timeout [ 61.232177][ T40] audit: type=1400 audit(1742301676.875:442): avc: denied { mounton } for pid=6885 comm="syz.2.255" path="/55/file0" dev="tmpfs" ino=305 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 61.291516][ T835] hid-generic 03D7:0940:0000.0003: unknown main item tag 0x7 [ 61.349491][ T835] hid-generic 03D7:0940:0000.0003: unexpected long global item [ 61.351929][ T835] hid-generic 03D7:0940:0000.0003: probe with driver hid-generic failed with error -22 [ 61.589906][ T6902] ALSA: seq fatal error: cannot create timer (-19) [ 61.612658][ T1456] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 61.762625][ T1456] usb 7-1: Using ep0 maxpacket: 8 [ 61.765401][ T1456] usb 7-1: config 0 has no interfaces? [ 61.767872][ T1456] usb 7-1: config 0 has no interfaces? [ 61.770358][ T1456] usb 7-1: config 0 has no interfaces? [ 61.773775][ T1456] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 61.776969][ T1456] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 61.780224][ T1456] usb 7-1: Product: syz [ 61.781758][ T1456] usb 7-1: Manufacturer: syz [ 61.783703][ T1456] usb 7-1: SerialNumber: syz [ 61.788041][ T1456] usb 7-1: config 0 descriptor?? [ 61.924207][ T6812] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 61.993118][ T835] usb 7-1: USB disconnect, device number 3 [ 62.003076][ T6912] [U] [ 62.004530][ T6912] [U] [ 62.005505][ T6912] [U] [ 62.006288][ T6912] [U] [ 62.007347][ T6912] [U] [ 62.008176][ T6912] [U] [ 62.008994][ T6912] [U] [ 62.009781][ T6912] [U] [ 62.010721][ T6912] [U] [ 62.011542][ T6912] [U] [ 62.012328][ T6912] [U] [ 62.013121][ T6912] [U] [ 62.014346][ T6912] [U] [ 62.015184][ T6912] [U] [ 62.015959][ T6912] [U] [ 62.016712][ T6912] [U] [ 62.052739][ T6812] usb 6-1: device descriptor read/64, error -71 [ 62.093317][ T6913] [U] [ 62.167673][ T6919] FAULT_INJECTION: forcing a failure. [ 62.167673][ T6919] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 62.171692][ T6919] CPU: 3 UID: 0 PID: 6919 Comm: syz.0.267 Not tainted 6.14.0-rc7-syzkaller-00050-gfc444ada1310 #0 [ 62.171705][ T6919] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 62.171711][ T6919] Call Trace: [ 62.171715][ T6919] [ 62.171719][ T6919] dump_stack_lvl+0x16c/0x1f0 [ 62.171737][ T6919] should_fail_ex+0x50a/0x650 [ 62.171753][ T6919] ? __pfx___might_resched+0x10/0x10 [ 62.171771][ T6919] should_fail_alloc_page+0xe7/0x130 [ 62.171784][ T6919] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 62.171799][ T6919] ? hlock_class+0x4e/0x130 [ 62.171811][ T6919] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 62.171823][ T6919] ? hlock_class+0x4e/0x130 [ 62.171833][ T6919] ? __pfx_mark_lock+0x10/0x10 [ 62.171846][ T6919] ? mark_lock+0xb5/0xc60 [ 62.171860][ T6919] ? __pfx_mark_lock+0x10/0x10 [ 62.171873][ T6919] ? hlock_class+0x4e/0x130 [ 62.171882][ T6919] ? mark_lock+0xb5/0xc60 [ 62.171894][ T6919] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 62.171907][ T6919] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 62.171919][ T6919] ? mark_lock+0xb5/0xc60 [ 62.171932][ T6919] ? hlock_class+0x4e/0x130 [ 62.171943][ T6919] ? mark_lock+0xb5/0xc60 [ 62.171955][ T6919] ? hlock_class+0x4e/0x130 [ 62.171965][ T6919] ? mark_lock+0xb5/0xc60 [ 62.171979][ T6919] ? __pfx_mark_lock+0x10/0x10 [ 62.171991][ T6919] ? hlock_class+0x4e/0x130 [ 62.172000][ T6919] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 62.172017][ T6919] ? policy_nodemask+0xea/0x4e0 [ 62.172030][ T6919] alloc_pages_mpol+0x1fc/0x540 [ 62.172042][ T6919] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 62.172057][ T6919] alloc_pages_noprof+0x131/0x390 [ 62.172068][ T6919] pte_alloc_one+0x20/0x390 [ 62.172084][ T6919] __pte_alloc+0x6e/0x3d0 [ 62.172098][ T6919] ? __pfx___pte_alloc+0x10/0x10 [ 62.172115][ T6919] do_pte_missing+0x2828/0x3e10 [ 62.172125][ T6919] ? mt_find+0x82d/0xa20 [ 62.172138][ T6919] ? __pfx_lock_release+0x10/0x10 [ 62.172154][ T6919] __handle_mm_fault+0x103c/0x2a40 [ 62.172168][ T6919] ? __pfx___handle_mm_fault+0x10/0x10 [ 62.172177][ T6919] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 62.172198][ T6919] ? find_vma+0xc0/0x140 [ 62.172212][ T6919] ? __pfx_find_vma+0x10/0x10 [ 62.172231][ T6919] handle_mm_fault+0x3fa/0xaa0 [ 62.172243][ T6919] do_user_addr_fault+0x7a3/0x13f0 [ 62.172260][ T6919] exc_page_fault+0x5c/0xc0 [ 62.172272][ T6919] asm_exc_page_fault+0x26/0x30 [ 62.172286][ T6919] RIP: 0010:record_steal_time+0x396/0xbe0 [ 62.172298][ T6919] Code: ff ff 7f 00 00 4c 89 e7 e8 17 ae 7c 00 49 39 ec 0f 82 ad 00 00 00 e8 99 b3 7c 00 0f 01 cb 0f ae e8 45 31 e4 41 be f2 ff ff ff <44> 86 65 10 45 31 f6 31 ff 44 89 f6 e8 79 ae 7c 00 45 85 f6 0f 84 [ 62.172307][ T6919] RSP: 0018:ffffc9000327fa78 EFLAGS: 00050246 [ 62.172315][ T6919] RAX: 0000000000000000 RBX: ffff888053448000 RCX: ffffffff813d3eb9 [ 62.172321][ T6919] RDX: ffff8880232b0000 RSI: ffffffff813d3ec7 RDI: 0000000000000006 [ 62.172327][ T6919] RBP: 0000400000fe6000 R08: 0000000000000006 R09: 00007ffffffff000 [ 62.172332][ T6919] R10: 0000400000fe6000 R11: 0000000000000000 R12: 0000000000000000 [ 62.172337][ T6919] R13: ffff888053448bb8 R14: 00000000fffffff2 R15: ffff888053448000 [ 62.172347][ T6919] ? record_steal_time+0x379/0xbe0 [ 62.172357][ T6919] ? record_steal_time+0x387/0xbe0 [ 62.172369][ T6919] ? record_steal_time+0x387/0xbe0 [ 62.172381][ T6919] vcpu_run+0x210b/0x4cc0 [ 62.172397][ T6919] ? __pfx_vcpu_run+0x10/0x10 [ 62.172407][ T6919] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 62.172422][ T6919] ? rcu_is_watching+0x12/0xc0 [ 62.172432][ T6919] ? trace_lock_acquire+0x14e/0x1f0 [ 62.172443][ T6919] ? __local_bh_enable_ip+0xa4/0x120 [ 62.172458][ T6919] ? lockdep_hardirqs_on+0x7c/0x110 [ 62.172469][ T6919] ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0 [ 62.172483][ T6919] ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0 [ 62.172495][ T6919] kvm_arch_vcpu_ioctl_run+0x865/0x17f0 [ 62.172510][ T6919] kvm_vcpu_ioctl+0x5ea/0x16b0 [ 62.172523][ T6919] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 62.172551][ T6919] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450 [ 62.172569][ T6919] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 62.172587][ T6919] ? __pfx_lock_release+0x10/0x10 [ 62.172606][ T6919] ? selinux_file_ioctl+0x180/0x270 [ 62.172620][ T6919] ? selinux_file_ioctl+0xb4/0x270 [ 62.172647][ T6919] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 62.172660][ T6919] __x64_sys_ioctl+0x190/0x200 [ 62.172675][ T6919] do_syscall_64+0xcd/0x250 [ 62.172689][ T6919] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 62.172702][ T6919] RIP: 0033:0x7fa492b8d169 [ 62.172710][ T6919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 62.172718][ T6919] RSP: 002b:00007fa493998038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 62.172727][ T6919] RAX: ffffffffffffffda RBX: 00007fa492da5fa0 RCX: 00007fa492b8d169 [ 62.172732][ T6919] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 62.172737][ T6919] RBP: 00007fa493998090 R08: 0000000000000000 R09: 0000000000000000 [ 62.172743][ T6919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 62.172748][ T6919] R13: 0000000000000000 R14: 00007fa492da5fa0 R15: 00007fff92943b88 [ 62.172760][ T6919] [ 62.195607][ T6893] program syz.2.257 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 62.285617][ T6921] input: syz0 as /devices/virtual/input/input8 [ 62.341753][ T6812] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 62.475880][ T6812] usb 6-1: device descriptor read/64, error -71 [ 62.572675][ T5295] Bluetooth: hci0: command 0x0c1a tx timeout [ 62.573272][ T6961] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 62.580851][ T835] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 62.584032][ T835] Bluetooth: hci0: Error when powering off device on rfkill (-110) [ 62.594477][ T6812] usb usb6-port1: attempt power cycle [ 62.633330][ T6961] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 62.689162][ T6961] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 62.770822][ T6984] ======================================================= [ 62.770822][ T6984] WARNING: The mand mount option has been deprecated and [ 62.770822][ T6984] and is ignored by this kernel. Remove the mand [ 62.770822][ T6984] option from the mount to silence this warning. [ 62.770822][ T6984] ======================================================= [ 62.794028][ T6961] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 62.855008][ T6961] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.860623][ T6961] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.868126][ T6961] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.873671][ T6961] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.942840][ T6812] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 62.973399][ T6812] usb 6-1: device descriptor read/8, error -71 [ 63.052274][ T7008] FAULT_INJECTION: forcing a failure. [ 63.052274][ T7008] name failslab, interval 1, probability 0, space 0, times 0 [ 63.056923][ T7008] CPU: 2 UID: 0 PID: 7008 Comm: syz.0.280 Not tainted 6.14.0-rc7-syzkaller-00050-gfc444ada1310 #0 [ 63.056936][ T7008] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 63.056943][ T7008] Call Trace: [ 63.056946][ T7008] [ 63.056950][ T7008] dump_stack_lvl+0x16c/0x1f0 [ 63.056967][ T7008] should_fail_ex+0x50a/0x650 [ 63.056984][ T7008] ? fs_reclaim_acquire+0xae/0x150 [ 63.056999][ T7008] should_failslab+0xc2/0x120 [ 63.057011][ T7008] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 63.057022][ T7008] ? ptlock_alloc+0x1f/0x70 [ 63.057034][ T7008] ptlock_alloc+0x1f/0x70 [ 63.057043][ T7008] pte_alloc_one+0x74/0x390 [ 63.057059][ T7008] __pte_alloc+0x6e/0x3d0 [ 63.057072][ T7008] ? __pfx___pte_alloc+0x10/0x10 [ 63.057088][ T7008] do_pte_missing+0x2828/0x3e10 [ 63.057099][ T7008] ? mt_find+0x82d/0xa20 [ 63.057112][ T7008] ? __pfx_lock_release+0x10/0x10 [ 63.057129][ T7008] __handle_mm_fault+0x103c/0x2a40 [ 63.057147][ T7008] ? __pfx___handle_mm_fault+0x10/0x10 [ 63.057156][ T7008] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 63.057178][ T7008] ? find_vma+0xc0/0x140 [ 63.057191][ T7008] ? __pfx_find_vma+0x10/0x10 [ 63.057206][ T7008] handle_mm_fault+0x3fa/0xaa0 [ 63.057219][ T7008] do_user_addr_fault+0x7a3/0x13f0 [ 63.057235][ T7008] exc_page_fault+0x5c/0xc0 [ 63.057248][ T7008] asm_exc_page_fault+0x26/0x30 [ 63.057261][ T7008] RIP: 0010:record_steal_time+0x396/0xbe0 [ 63.057273][ T7008] Code: ff ff 7f 00 00 4c 89 e7 e8 17 ae 7c 00 49 39 ec 0f 82 ad 00 00 00 e8 99 b3 7c 00 0f 01 cb 0f ae e8 45 31 e4 41 be f2 ff ff ff <44> 86 65 10 45 31 f6 31 ff 44 89 f6 e8 79 ae 7c 00 45 85 f6 0f 84 [ 63.057282][ T7008] RSP: 0018:ffffc9000331fa78 EFLAGS: 00050246 [ 63.057290][ T7008] RAX: 0000000000000000 RBX: ffff88805344a940 RCX: ffffffff813d3eb9 [ 63.057296][ T7008] RDX: ffff88804f22c880 RSI: ffffffff813d3ec7 RDI: 0000000000000006 [ 63.057301][ T7008] RBP: 0000400000fe6000 R08: 0000000000000006 R09: 00007ffffffff000 [ 63.057307][ T7008] R10: 0000400000fe6000 R11: 0000000000000000 R12: 0000000000000000 [ 63.057312][ T7008] R13: ffff88805344b4f8 R14: 00000000fffffff2 R15: ffff88805344a940 [ 63.057321][ T7008] ? record_steal_time+0x379/0xbe0 [ 63.057332][ T7008] ? record_steal_time+0x387/0xbe0 [ 63.057344][ T7008] ? record_steal_time+0x387/0xbe0 [ 63.057357][ T7008] vcpu_run+0x210b/0x4cc0 [ 63.057373][ T7008] ? __pfx_vcpu_run+0x10/0x10 [ 63.057384][ T7008] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 63.057399][ T7008] ? rcu_is_watching+0x12/0xc0 [ 63.057409][ T7008] ? trace_lock_acquire+0x14e/0x1f0 [ 63.057420][ T7008] ? __local_bh_enable_ip+0xa4/0x120 [ 63.057436][ T7008] ? lockdep_hardirqs_on+0x7c/0x110 [ 63.057447][ T7008] ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0 [ 63.057465][ T7008] ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0 [ 63.057480][ T7008] kvm_arch_vcpu_ioctl_run+0x865/0x17f0 [ 63.057501][ T7008] kvm_vcpu_ioctl+0x5ea/0x16b0 [ 63.057518][ T7008] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 63.057533][ T7008] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450 [ 63.057551][ T7008] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 63.057569][ T7008] ? __pfx_lock_release+0x10/0x10 [ 63.057588][ T7008] ? selinux_file_ioctl+0x180/0x270 [ 63.057603][ T7008] ? selinux_file_ioctl+0xb4/0x270 [ 63.057619][ T7008] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 63.057632][ T7008] __x64_sys_ioctl+0x190/0x200 [ 63.057647][ T7008] do_syscall_64+0xcd/0x250 [ 63.057661][ T7008] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 63.057674][ T7008] RIP: 0033:0x7fa492b8d169 [ 63.057682][ T7008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 63.057692][ T7008] RSP: 002b:00007fa493998038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 63.057701][ T7008] RAX: ffffffffffffffda RBX: 00007fa492da5fa0 RCX: 00007fa492b8d169 [ 63.057706][ T7008] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 63.057712][ T7008] RBP: 00007fa493998090 R08: 0000000000000000 R09: 0000000000000000 [ 63.057717][ T7008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 63.057722][ T7008] R13: 0000000000000000 R14: 00007fa492da5fa0 R15: 00007fff92943b88 [ 63.057735][ T7008] [ 63.266093][ T7018] netlink: 20 bytes leftover after parsing attributes in process `syz.3.284'. [ 63.302865][ T5295] Bluetooth: hci3: command 0x0405 tx timeout [ 63.303482][ T5948] Bluetooth: hci1: command 0x0c1a tx timeout [ 63.307540][ T835] Bluetooth: hci1: Opcode 0x0c1a failed: -110 [ 63.309752][ T835] Bluetooth: hci1: Error when powering off device on rfkill (-110) [ 63.322717][ T6812] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 63.343323][ T6812] usb 6-1: device descriptor read/8, error -71 [ 63.454461][ T6812] usb usb6-port1: unable to enumerate USB device [ 63.497690][ T7038] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 63.499662][ T7038] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 63.504276][ T7038] vhci_hcd vhci_hcd.0: Device attached [ 63.506728][ T7040] vhci_hcd: connection closed [ 63.508433][ T6137] vhci_hcd: stop threads [ 63.511368][ T6137] vhci_hcd: release socket [ 63.512739][ T6137] vhci_hcd: disconnect device [ 64.223817][ T7048] FAULT_INJECTION: forcing a failure. [ 64.223817][ T7048] name failslab, interval 1, probability 0, space 0, times 0 [ 64.227373][ T7048] CPU: 3 UID: 0 PID: 7048 Comm: syz.0.295 Not tainted 6.14.0-rc7-syzkaller-00050-gfc444ada1310 #0 [ 64.227390][ T7048] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 64.227402][ T7048] Call Trace: [ 64.227406][ T7048] [ 64.227410][ T7048] dump_stack_lvl+0x16c/0x1f0 [ 64.227427][ T7048] should_fail_ex+0x50a/0x650 [ 64.227443][ T7048] ? fs_reclaim_acquire+0xae/0x150 [ 64.227459][ T7048] should_failslab+0xc2/0x120 [ 64.227471][ T7048] __kmalloc_node_noprof+0xd1/0x510 [ 64.227483][ T7048] ? __vmalloc_node_range_noprof+0x3d8/0x1530 [ 64.227500][ T7048] __vmalloc_node_range_noprof+0x3d8/0x1530 [ 64.227520][ T7048] ? vhost_task_create+0x1d3/0x2e0 [ 64.227536][ T7048] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 64.227553][ T7048] ? rcu_is_watching+0x12/0xc0 [ 64.227564][ T7048] ? trace_kmem_cache_alloc+0x2d/0xd0 [ 64.227578][ T7048] ? kmem_cache_alloc_node_noprof+0x272/0x3c0 [ 64.227588][ T7048] ? mark_held_locks+0x9f/0xe0 [ 64.227602][ T7048] ? copy_process+0x4be/0x8c50 [ 64.227611][ T7048] ? vhost_task_create+0x1d3/0x2e0 [ 64.227624][ T7048] copy_process+0x2ef2/0x8c50 [ 64.227633][ T7048] ? vhost_task_create+0x1d3/0x2e0 [ 64.227644][ T7048] ? kasan_save_stack+0x33/0x60 [ 64.227653][ T7048] ? kasan_save_track+0x14/0x30 [ 64.227662][ T7048] ? __kasan_kmalloc+0xaa/0xb0 [ 64.227670][ T7048] ? vhost_task_create+0xe6/0x2e0 [ 64.227681][ T7048] ? kvm_mmu_post_init_vm+0x1b7/0x370 [ 64.227694][ T7048] ? kvm_arch_vcpu_ioctl_run+0x66/0x17f0 [ 64.227706][ T7048] ? kvm_vcpu_ioctl+0x5ea/0x16b0 [ 64.227717][ T7048] ? __x64_sys_ioctl+0x190/0x200 [ 64.227730][ T7048] ? do_syscall_64+0xcd/0x250 [ 64.227743][ T7048] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 64.227763][ T7048] ? __pfx_copy_process+0x10/0x10 [ 64.227780][ T7048] ? lockdep_init_map_type+0x16d/0x7d0 [ 64.227794][ T7048] ? __raw_spin_lock_init+0x3a/0x110 [ 64.227805][ T7048] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 64.227820][ T7048] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 64.227831][ T7048] vhost_task_create+0x1d3/0x2e0 [ 64.227843][ T7048] ? __pfx_vhost_task_create+0x10/0x10 [ 64.227856][ T7048] ? kvm_mmu_post_init_vm+0xb4/0x370 [ 64.227871][ T7048] ? __pfx_vhost_task_fn+0x10/0x10 [ 64.227885][ T7048] ? lock_acquire.part.0+0x11b/0x380 [ 64.227899][ T7048] ? find_held_lock+0x2d/0x110 [ 64.227913][ T7048] kvm_mmu_post_init_vm+0x1b7/0x370 [ 64.227926][ T7048] kvm_arch_vcpu_ioctl_run+0x66/0x17f0 [ 64.227938][ T7048] ? lock_acquire+0x2f/0xb0 [ 64.227950][ T7048] ? kvm_vcpu_ioctl+0x14be/0x16b0 [ 64.227964][ T7048] kvm_vcpu_ioctl+0x5ea/0x16b0 [ 64.227977][ T7048] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 64.227992][ T7048] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450 [ 64.228010][ T7048] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 64.228028][ T7048] ? __pfx_lock_release+0x10/0x10 [ 64.228047][ T7048] ? selinux_file_ioctl+0x180/0x270 [ 64.228062][ T7048] ? selinux_file_ioctl+0xb4/0x270 [ 64.228078][ T7048] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 64.228090][ T7048] __x64_sys_ioctl+0x190/0x200 [ 64.228105][ T7048] do_syscall_64+0xcd/0x250 [ 64.228118][ T7048] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 64.228132][ T7048] RIP: 0033:0x7fa492b8d169 [ 64.228140][ T7048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 64.228149][ T7048] RSP: 002b:00007fa493998038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 64.228158][ T7048] RAX: ffffffffffffffda RBX: 00007fa492da5fa0 RCX: 00007fa492b8d169 [ 64.228167][ T7048] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 64.228175][ T7048] RBP: 00007fa493998090 R08: 0000000000000000 R09: 0000000000000000 [ 64.228184][ T7048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 64.228192][ T7048] R13: 0000000000000000 R14: 00007fa492da5fa0 R15: 00007fff92943b88 [ 64.228209][ T7048] [ 64.338032][ T7057] netlink: 'syz.2.297': attribute type 4 has an invalid length. [ 64.431872][ T7064] program syz.0.300 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 64.721697][ T7088] FAULT_INJECTION: forcing a failure. [ 64.721697][ T7088] name failslab, interval 1, probability 0, space 0, times 0 [ 64.726681][ T7088] CPU: 0 UID: 0 PID: 7088 Comm: syz.1.308 Not tainted 6.14.0-rc7-syzkaller-00050-gfc444ada1310 #0 [ 64.726702][ T7088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 64.726711][ T7088] Call Trace: [ 64.726716][ T7088] [ 64.726722][ T7088] dump_stack_lvl+0x16c/0x1f0 [ 64.726747][ T7088] should_fail_ex+0x50a/0x650 [ 64.726771][ T7088] ? fs_reclaim_acquire+0xae/0x150 [ 64.726797][ T7088] should_failslab+0xc2/0x120 [ 64.726816][ T7088] __kmalloc_node_noprof+0xd1/0x510 [ 64.726832][ T7088] ? __pfx_mark_lock+0x10/0x10 [ 64.726853][ T7088] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 64.726883][ T7088] __kvmalloc_node_noprof+0xad/0x1a0 [ 64.726909][ T7088] __kvm_mmu_topup_memory_cache+0x451/0x600 [ 64.726938][ T7088] mmu_topup_memory_caches+0x25/0x170 [ 64.726960][ T7088] kvm_mmu_load+0xda/0x22a0 [ 64.726977][ T7088] ? irqentry_exit+0x3b/0x90 [ 64.726999][ T7088] ? kvm_apic_has_interrupt+0xb6/0x190 [ 64.727024][ T7088] ? __pfx_kvm_apic_has_interrupt+0x10/0x10 [ 64.727052][ T7088] ? __pfx_kvm_mmu_load+0x10/0x10 [ 64.727072][ T7088] ? kvm_cpu_has_injectable_intr+0x9b/0x1a0 [ 64.727095][ T7088] ? kvm_check_and_inject_events+0x725/0x12e0 [ 64.727113][ T7088] ? record_steal_time+0x3c1/0xbe0 [ 64.727134][ T7088] vcpu_run+0x2e8b/0x4cc0 [ 64.727162][ T7088] ? __pfx_vcpu_run+0x10/0x10 [ 64.727179][ T7088] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 64.727202][ T7088] ? rcu_is_watching+0x12/0xc0 [ 64.727221][ T7088] ? trace_lock_acquire+0x14e/0x1f0 [ 64.727239][ T7088] ? __local_bh_enable_ip+0xa4/0x120 [ 64.727263][ T7088] ? lockdep_hardirqs_on+0x7c/0x110 [ 64.727280][ T7088] ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0 [ 64.727305][ T7088] ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0 [ 64.727324][ T7088] kvm_arch_vcpu_ioctl_run+0x865/0x17f0 [ 64.727350][ T7088] kvm_vcpu_ioctl+0x5ea/0x16b0 [ 64.727378][ T7088] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 64.727405][ T7088] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450 [ 64.727434][ T7088] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 64.727464][ T7088] ? __pfx_lock_release+0x10/0x10 [ 64.727498][ T7088] ? selinux_file_ioctl+0x180/0x270 [ 64.727522][ T7088] ? selinux_file_ioctl+0xb4/0x270 [ 64.727548][ T7088] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 64.727569][ T7088] __x64_sys_ioctl+0x190/0x200 [ 64.727594][ T7088] do_syscall_64+0xcd/0x250 [ 64.727618][ T7088] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 64.727639][ T7088] RIP: 0033:0x7f926538d169 [ 64.727653][ T7088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 64.727668][ T7088] RSP: 002b:00007f9266197038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 64.727683][ T7088] RAX: ffffffffffffffda RBX: 00007f92655a5fa0 RCX: 00007f926538d169 [ 64.727691][ T7088] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 64.727700][ T7088] RBP: 00007f9266197090 R08: 0000000000000000 R09: 0000000000000000 [ 64.727708][ T7088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 64.727718][ T7088] R13: 0000000000000000 R14: 00007f92655a5fa0 R15: 00007fff56a59ae8 [ 64.727741][ T7088] [ 64.982718][ T10] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 65.049152][ T5941] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000056: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 65.053668][ T5941] KASAN: null-ptr-deref in range [0x00000000000002b0-0x00000000000002b7] [ 65.058060][ T5941] CPU: 0 UID: 0 PID: 5941 Comm: syz-executor Not tainted 6.14.0-rc7-syzkaller-00050-gfc444ada1310 #0 [ 65.062121][ T5941] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 65.065756][ T5941] RIP: 0010:afs_atcell_get_link+0x33e/0x480 [ 65.067912][ T5941] Code: 89 c3 89 c6 e8 63 c0 3b fe 85 db 75 64 e8 5a c5 3b fe 48 8d bd b0 02 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 1f 01 00 00 4c 89 f6 bf 03 00 00 00 4c 8b a5 b0 [ 65.074536][ T5941] RSP: 0018:ffffc9000384f988 EFLAGS: 00010206 [ 65.076746][ T5941] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff837e2d7a [ 65.079545][ T5941] RDX: 0000000000000056 RSI: ffffffff837e2d06 RDI: 00000000000002b0 [ 65.082364][ T5941] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 65.085310][ T5941] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000 [ 65.088154][ T5941] R13: ffff88804df7d000 R14: 0000000000000003 R15: ffff888036569480 [ 65.090893][ T5941] FS: 000055557c585500(0000) GS:ffff88806a600000(0000) knlGS:0000000000000000 [ 65.093473][ T5941] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 65.095222][ T5941] CR2: 000055557c5a8608 CR3: 00000000298dc000 CR4: 0000000000352ef0 [ 65.097321][ T5941] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 65.099375][ T5941] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 65.101374][ T5941] Call Trace: [ 65.102265][ T5941] [ 65.103141][ T5941] ? die_addr+0x3b/0xa0 [ 65.104252][ T5941] ? exc_general_protection+0x155/0x230 [ 65.105712][ T5941] ? asm_exc_general_protection+0x26/0x30 [ 65.107201][ T5941] ? afs_atcell_get_link+0x39a/0x480 [ 65.108591][ T5941] ? afs_atcell_get_link+0x326/0x480 [ 65.109996][ T5941] ? afs_atcell_get_link+0x33e/0x480 [ 65.111463][ T5941] ? afs_atcell_get_link+0x326/0x480 [ 65.112872][ T5941] ? __pfx_afs_atcell_get_link+0x10/0x10 [ 65.114494][ T5941] step_into+0x1982/0x2220 [ 65.115850][ T5941] ? __pfx_step_into+0x10/0x10 [ 65.117238][ T5941] ? lookup_fast+0x153/0x5f0 [ 65.118472][ T5941] path_openat+0x74c/0x2d80 [ 65.119694][ T5941] ? __pfx_path_openat+0x10/0x10 [ 65.121071][ T5941] ? __pfx___lock_acquire+0x10/0x10 [ 65.122686][ T5941] ? lock_acquire.part.0+0x11b/0x380 [ 65.124284][ T5941] ? find_held_lock+0x2d/0x110 [ 65.125530][ T5941] do_filp_open+0x20c/0x470 [ 65.126776][ T5941] ? __pfx_do_filp_open+0x10/0x10 [ 65.128109][ T5941] ? find_held_lock+0x2d/0x110 [ 65.129366][ T5941] ? alloc_fd+0x41f/0x760 [ 65.130679][ T5941] do_sys_openat2+0x17a/0x1e0 [ 65.132329][ T5941] ? __pfx_do_sys_openat2+0x10/0x10 [ 65.134135][ T5941] ? do_unlinkat+0x165/0x760 [ 65.135767][ T5941] ? __virt_addr_valid+0x5e/0x590 [ 65.137585][ T5941] ? __pfx_do_unlinkat+0x10/0x10 [ 65.139262][ T5941] __x64_sys_openat+0x175/0x210 [ 65.140908][ T5941] ? __pfx___x64_sys_openat+0x10/0x10 [ 65.142748][ T5941] do_syscall_64+0xcd/0x250 [ 65.144328][ T5941] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 65.146325][ T5941] RIP: 0033:0x7f926538bad0 [ 65.147870][ T5941] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 65.154292][ T5941] RSP: 002b:00007fff56a57c10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 65.157114][ T5941] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f926538bad0 [ 65.159866][ T5941] RDX: 0000000000000000 RSI: 00007fff56a57d40 RDI: 00000000ffffff9c [ 65.162568][ T5941] RBP: 00007fff56a57d40 R08: 0000000000000000 R09: 0000000000000000 [ 65.165253][ T5941] R10: 0000000000000000 R11: 0000000000000293 R12: 00007fff56a58e30 [ 65.168151][ T5941] R13: 00007f926540e08c R14: 000055557c5854a8 R15: 00007fff56a59f00 [ 65.170811][ T5941] [ 65.171889][ T5941] Modules linked in: [ 65.173703][ T5941] ---[ end trace 0000000000000000 ]--- [ 65.176141][ T5941] RIP: 0010:afs_atcell_get_link+0x33e/0x480 [ 65.178209][ T5941] Code: 89 c3 89 c6 e8 63 c0 3b fe 85 db 75 64 e8 5a c5 3b fe 48 8d bd b0 02 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 1f 01 00 00 4c 89 f6 bf 03 00 00 00 4c 8b a5 b0 [ 65.191549][ T5941] RSP: 0018:ffffc9000384f988 EFLAGS: 00010206 [ 65.193749][ T5941] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff837e2d7a [ 65.196438][ T5941] RDX: 0000000000000056 RSI: ffffffff837e2d06 RDI: 00000000000002b0 [ 65.199119][ T5941] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 65.201776][ T5941] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000 [ 65.204605][ T5941] R13: ffff88804df7d000 R14: 0000000000000003 R15: ffff888036569480 [ 65.207360][ T5941] FS: 000055557c585500(0000) GS:ffff88806a600000(0000) knlGS:0000000000000000 [ 65.209779][ T5941] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 65.211875][ T5941] CR2: 000055557c5a8608 CR3: 00000000298dc000 CR4: 0000000000352ef0 [ 65.214674][ T5941] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 65.216945][ T5941] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 65.219142][ T5941] Kernel panic - not syncing: Fatal exception [ 65.221852][ T5941] Kernel Offset: disabled [ 65.223416][ T5941] Rebooting in 86400 seconds.. VM DIAGNOSIS: 12:41:20 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8540ab15 RDI=ffffffff9ab847c0 RBP=ffffffff9ab84780 RSP=ffffc9000384f380 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b R12=0000000000000000 R13=0000000000000030 R14=ffffffff9ab84780 R15=0000000000000000 RIP=ffffffff8540ab3f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 000055557c585500 ffffffff 00c00000 GS =0000 ffff88806a600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055557c5a8608 CR3=00000000298dc000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000020081 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff56a57c90 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f926540f282 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f926540f28f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f926540f289 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f926540f29d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f926540f323 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f926540f401 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 2074657365720064 656c696166202973 2528746174736c00 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 0551405640570041 40494c4443050c56 000d514451564900 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000011 RBX=ffff88806a6468a0 RCX=ffffffff81ade3da RDX=ffff88802688c880 RSI=ffffffff81ade3b4 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc9000340f838 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=ffffed100d4c8d15 R13=0000000000000001 R14=ffff88806a73fe80 R15=ffff88806a6468a8 RIP=ffffffff81ade3cb RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 000055558c962500 ffffffff 00c00000 GS =0000 ffff88806a700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f92655a7bac CR3=000000004b470000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ece7a83448865160 df0248e806a16cf4 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d4b982fb157f06ca faa981e0003c8911 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 504d6a7d504cdb15 7b1f4e705d2fcae3 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0d07ded8a5cdfc92 6d41eef0d90e44f4 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000180 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 85419c1e090bc0ff 0000000000000028 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8899ee8c8943c478 011c90018972a3be ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 893c765200000028 0000002800000028 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000028 05e5007d00000028 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 21bfa6335816f8c8 021dcc7f7f77bf58 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7b6779025ecdbcd6 e449b14e2e692aed ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f926557c488 00007f926557c480 00007f926557c478 00007f926557c450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f92660dd100 00007f926557c440 00007f9265570004 0000000b000c000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f926557c498 00007f926557c490 00007f926557c488 00007f926557c480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=ffff8880301c3000 RBX=0000000000001000 RCX=0000000000000a00 RDX=0000000000001000 RSI=ffff888029de0600 RDI=ffff8880301c3600 RBP=ffff8880301c3000 RSP=ffffc9000370f3a0 R8 =0000000000000000 R9 =ffffed10053bc1ff R10=ffff888029de0fff R11=0000000000000000 R12=ffff888029de0000 R13=00007fa49226b000 R14=ffffea0000a77800 R15=ffffc9000370fa80 RIP=ffffffff8b56620a RFL=00010246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 00007fa4939986c0 ffffffff 00c00000 GS =0000 ffff88806a800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007fff92942ff8 CR3=00000000376d6000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 89491df11b9c1ec4 476fca9d7d08a772 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 afef9e2573513e33 a79a8eeb91fd16b7 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b95a7efa70e9365b 010d9bd2a0d931a5 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a3e5cc1ccaafc53b 234790fdaad5abbb ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 14f5e9ad0aa853dc 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ed46aa8100000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 26216705208843e3 89b714a517d27ea6 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000005c3b49b ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856b08c647 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=000000000004e854 RBX=0000000000000003 RCX=ffffffff8b578469 RDX=ffffed100d526f86 RSI=ffffffff8bd36ae0 RDI=ffffffff819084a9 RBP=ffffed1003b5a910 RSP=ffffc900001b7e08 R8 =0000000000000000 R9 =ffffed100d526f85 R10=ffff88806a937c2b R11=0000000000000000 R12=0000000000000003 R13=ffff88801dad4880 R14=ffffffff90626810 R15=0000000000000000 RIP=ffffffff8b57984f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a900000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00004000000086c0 CR3=0000000054b46000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000000ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000003172 656c6c616b7a7973 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc005c0f282 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc005c0f28f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc005c0f289 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc005c0f29d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc005c0f323 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc005c0f401 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a01000000000000 0000000000000002 ffaa000000000000 0000000000000080 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc0068dd100 00007fc005d7c440 00007fc005d7c458 0004000b000c0008 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc005d7c498 00007fc005d7c490 00007fc005d7c488 00007fc005d7c480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000