last executing test programs: 3.463764418s ago: executing program 0 (id=3369): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) ptrace$ARCH_GET_GS(0x1e, r0, &(0x7f0000000240), 0x1004) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, @void}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000950029366eac18a6a5c0"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) accept$alg(0xffffffffffffffff, 0x0, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000002080)={0xc, {"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", 0x1000}}, 0x1006) write$tun(0xffffffffffffffff, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x100) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r4 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000000340)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00ZH?']) setuid(0x0) mkdir(&(0x7f0000000600)='./file1\x00', 0x0) mount(&(0x7f0000000040)=@nullb, &(0x7f0000000a00)='./file1\x00', &(0x7f0000000000)='reiserfs\x00', 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000400000000000000000000000fdffffff00"], 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48) socket$nl_netfilter(0x10, 0x3, 0xc) 2.276967327s ago: executing program 2 (id=3375): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0x541b, 0x0) syz_usbip_server_init(0x5) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1) sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x20048040}, 0x0) write$nci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="610301fd71e6e5b1d10bc451b4e178b6ffd6"], 0x12) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)) (async) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async) process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async) ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0x541b, 0x0) (async) syz_usbip_server_init(0x5) (async) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) (async) syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1) (async) sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x20048040}, 0x0) (async) write$nci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="610301fd71e6e5b1d10bc451b4e178b6ffd6"], 0x12) (async) 2.241544654s ago: executing program 1 (id=3376): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000340)={'wpan1\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_DEV(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x50, r1, 0x852dd6c070cd7e4d, 0x70bd2a, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0x200000000000000}}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_PAN_ID={0x6}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x50}, 0x4, 0x700000000000000}, 0x0) 2.232724123s ago: executing program 2 (id=3377): r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) syz_io_uring_setup(0xd4, 0x0, 0x0, &(0x7f0000000080)) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r7, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x28, r8, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x0, 0x3}}}}}, 0x28}}, 0x0) splice(r4, 0x0, r6, 0x0, 0x8000f28, 0x0) splice(r5, 0x0, r2, 0x0, 0x7f, 0xe) ioctl$AUTOFS_IOC_EXPIRE_MULTI(r1, 0x40049366, 0x0) write(r3, 0x0, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x4012831, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0) get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000cd8000/0x4000)=nil, 0x2) bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0) r10 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000500)={r10, 0x0, 0x25, 0x8, @val=@tcx={@void, @value}}, 0x1c) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={r0}, 0x4) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{}, &(0x7f0000000580), 0x0}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, 0x0, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x58, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) 2.182635682s ago: executing program 1 (id=3378): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) ptrace$ARCH_GET_GS(0x1e, r0, &(0x7f0000000240), 0x1004) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, @void}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000950029366eac18a6a5c0"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) accept$alg(0xffffffffffffffff, 0x0, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000002080)={0xc, {"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", 0x1000}}, 0x1006) write$tun(0xffffffffffffffff, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x100) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r4 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000000340)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00ZH?']) setuid(0x0) mkdir(&(0x7f0000000600)='./file1\x00', 0x0) mount(&(0x7f0000000040)=@nullb, &(0x7f0000000a00)='./file1\x00', &(0x7f0000000000)='reiserfs\x00', 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000400000000000000000000000fdffffff00"], 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48) socket$nl_netfilter(0x10, 0x3, 0xc) 1.686538806s ago: executing program 3 (id=3381): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e) sendmmsg(r0, &(0x7f0000009140)=[{{0x0, 0x0, &(0x7f0000001480)=[{&(0x7f0000000000)="b3c7612122a38f78ed803d60c0f0a6c7bdd030c4de", 0x15}, {&(0x7f0000000300)="faa1960eb20987610663550cc69cb8838b2b34196fc7847ba4692117277283adfb568d05a8ccf2c596188395a2c0531da21d27a36b92f648762fa84738049b9b8fd4c00b9903b3af69149fefb48c2e7394b67c112fc36ec72199", 0x5a}, {&(0x7f0000000280)="d6dcb41bd4a5b728a4", 0x9}, {&(0x7f0000000380)="a447bb30c8fd79df941bf099ca52243dd226a84db7a1c75b509624bdca29ac83f9bf48dfff6361e143a48e7522653d02ec1345865273fca3ce1c973f8f2a82fec827b471a0357eeeb8caf12a36207c601f", 0x51}, {&(0x7f0000000440)="f9d4488fba252a17e5156282709e35e5c66ad63fcc4b53cef927ccad", 0x1c}, {&(0x7f0000000480)="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", 0xc00}, {&(0x7f0000001f40)="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", 0xfdc}], 0x7}}, {{0x0, 0x0, &(0x7f0000001cc0)=[{&(0x7f0000001b40)="9ef5f516b5b8", 0x6}, {&(0x7f0000001b80)="6c3e3aa2ed785b67f34aa27c37c864a84c3683b7493feeccab436e6925fe33e9a76d6efe5961c56cf936d7136a3653d28c117c816b48e7d9f8ebe6c734bc317d229d5dc02b2c1b3f631c775ce9007b0e881f962e6aa37e5193986228c59f4f1695409c8490a7a42c571157e4d3b4871e10aff422552b5dec841435ce946a13277161c2e3b57e0bed43b367143dbb447d6baf85d0b5e4a07381057e3ffb3a2e4c9ae4c7f1a05b638e81fdeebfb13706683e3ad4b9182733e24dca9cf8cfdd28ddb096834233a722d10ce231e8099ecb8c3d54a5b890ef201b6d5294baf26d4374f5129101968c64", 0xe7}, {&(0x7f0000001c80)="12dc3e9c22bb373f8208715d9af59209a1c81c7bc144e626e4677eff84255b7041449388da3e220a7147d14e01e7", 0x2e}, {&(0x7f00000043c0)="9709627df286325102c37d7574622e66edc27aa7bb93a1dd34824a93b03f04352cf41c5649fabb80c6eae66324482ebf6cd35ff5d171b383f4264ae45e5f7ab9dcda1188c782ffc5ce7f53c397b87242d359aa489d41a49121972a6dc73318fba7dd6718817671a7af83d47744849c48382ec2c602ccf7d15e2f90f9ad96df33fc8bad071e9a888499676a8e0a4f31b0b5f006160f9d3e3f565d7b6c73a602d052da5850592a4b1b6013ea03b95ed364696203ab6afaa4234a6738323536d8bbb3465d3ad76c31f2f9e4cb1cce8d092788ad150c90821f09eb863c09d8c3ac60b0523186d3ee672dbeb36a64763be865990e726755cbb10fc32751436baebeaba59a9f3c66481f49a3f62739cf98a90e79bc7db41763c367d67297797ae69192d0785cfdad0215f3e8fdc08f7f14d6e7a0e0b4cc2ebac102f95cf08559195fe3781353476210ac56706c82b1d7a801f7f1a43eb9d5fe06b70e0e6e206fda26db68d28c93f00aafa3ea825c9766fe0b2c65dd303aa593f3f212f86bad6f306b647df45f40e99f2ab7fd8a4bd05cca0e3b1cfd07bc903d30b7ef3ce5bb22a2b2597655401cac5039c3d0fd02a7c384fde7a407627661081f6e708b70d788ce93a1f8d3762b1dccbc88d8c9732575e89decf86e8bdaa686f102a7dd843f9dd30b4822c2dc62a7754911aa47eacb8bd5b16b11e7599ac50dc22046e6e64cb240d7e13476375018eb4ff4436b4923504edfa7b544662c7abbedd8d9931642a6212d6401e700f1aa2af5c4fe63d6e681a9f96ed06d9a1735ec851e644698b52189b59e041ba2f9b2559e2981f8e015e0c95ba37700ed916a6d82f327be6e6942f3b299005322313f074f097a8c83e3839d41149de27a472791e8e42534160cd66b33382182347a346113b9ddf85b8ff69df0d738ddea30b29c221edd476eaa2fd783ea162e85ce3f8f03ff3642007d7394e586b2219ddd5d51e15b5bfb6bc9dbdc7fa4c40c20e4edd2b0cff24402b55b2517cbcfbb9978f8149d1ab769c221bc551c9a78a676a9752f0a8a69126c8e8ece84c13929d9ebffe6b59f6e25b35d718da604466938b2c51028223330eaa0aa85a440443822a14abc0f995b7b9d7f59280992ed127f3d98abaee7bca4b0e4cfb048b51117f39073ca33e14a3a6cafaa2e09a9c002f36e069c1a44d1ceab0ef00aee4fad7683f8c564646250d33c4cc49f75003e163d54d989b626e94ef73e02ec022c567d083994026f257b1206fec91430118cfae0284a3d84d0e1e5c39621ac52d319d64e6234f6640c16cd7eb5a9558168eb8b254c415ef2938b5ff9465231ce758f55e75bcd4546110da5636f58996f4e583fb58ee80df4cbdeb792d1c8e608e582f446c577e0c4c2c75df272e5c68a95c02efb821822cc9ba5033a1eebca913997806306e6a5e6f9c74fcd8e314028fb167a45853c39aa859d70cc76e16e744a0ba9df99bbe47f99aea407726e3d279d14bb64406d0744e862cfa01368f715020178ed25c489ad55c541e34db8daf96b78ed799b06bcdbde283505f8845c9a1b91199cb87bc8bd602ab81b5d4fc8eb22c5e4c69be41458a7cd99f68c9ba3472a44a543b70fc76190b900909e5f2f500313566eb3638ac76d8852f987a8c282017e27111615d05be916799ae41fd74b57efbccf00b7d31fe605f6e35f7e04f9f968d91d8fbac3521a52fac93c3a05cbcfc9b18727621c4ec19e9088e60d99ad0d31d387dc20d0f119fff5c4693dfc1f2a67b66e7b278b99a1bb23ede810d59ec272aa5fad1f3b41aae314ad69f56fb4a7671d4fa296e9a41d3cc8cc402317c6db1cb458a2d61e940581083aa853611338572b8dcc6b6bb471deb15a63988509f658ad345c550b21fc5225f15c6884918ea878226354cf14176831d0721c3c9c339451d97881bb5c4a03db9277852b60e184c9cc62c9a4ebf0901458c5e3f308305be8851157f3adb4226a194fb5a536343dc4e2db62beaf1e356ae55f4fa8e5621a07e7e27d976b12a7f501a3b6b16c4303719517b32f142db8c2888bef0e26f8cd72b494641b356fb94143a8fef4053810a52df71870e93b684a38cc283c31224dd1eb1c2ad142cad3a48f51fb3dab3a0712fbd11aa5a0d3ffc28ce61690d03800b518a2718b98b06f3ad8963e923d894d97f7a00b12cecc0adc5a009bc4e544fd4e781ce8dcfbb2c3a03725da92651f1ad24240b0cbe972bd13da038f5b46952d9df104ad302e7ccfd0233f2a221ac92553304c7f21a6c7008c43dc26f9bd280e0b7e08083bc8dc6635bf01b34437b2addad716b12b41fabbd05274e6fa766c8a64638847483d99959887c6030a911cebbf28f3189cdc1083c37d8147caa738ad2ae9a7641014745f19b79d3a48145d5094a2ed9e59759347aded86ff50cdfd5da02a10e0708f3ee5d320d753db31ecdc940d98a9bdc30309afcedf4b451e4add535c3dbf7a01a33cf9e998fc79404478bb854ea6f13fcb1dcd2c37147e3e2961192810a2758eb74d9aa7acbd61e7bff4d0b6cf7690719ea75399579b378ba6636a27b1645d2c21c7d31894056793aef68476db38379e9a434b8744be88a096f2a1ae6210a2e4e968817d18ffae86ad4b9b19199047d2ea9fbcb93415c8e48d7484014f87c0cb8adbadf6394cdba124465dad15f2ad5805a43376e3197a1f5467057dae344630c203f678a5d6f933cd981731cff4fbb91b4beffb1f4c0c01e9ca1f1c7dfe39982e357520e605d8584fb0cf8d3d7679277ca52f8bd4dad67ba9af2a0c24a8fba3796fda2573b2603251c72a02f3b4cb611f533d9803ca5c0b8cd462a5658c5671e56d22ff8384827a5b0ec02ebefb6e99360d21593840e2dc5b4c609d03e61103e6c01f70e2e980c2429bf631db3fb6a34679d52596bae35ab532a8641bebab002be0eafb984ca0709b4b916240224e99956bffa041d13789e080e2a0a0ac7a01723ed29d828269c2a7a9ee73c807b175e4acf46793a9cfe78662643e8aa529f742247853f7c6535232256c250d61568dd56735ae92fe32209f73be7996f2ee601ba5dc5850757e993a26a9452d791eb9eed6def908011c8e606b8a1cde00227788ec6f2f264267d6263dfb6c9b9fa50198ba795247dfc301675b2fd896783f558eb165313e19128929838740be4feaf55e49c24f0b6e28ccbcb62ab2493cf265f7b7da049c0e5c79f74cfc55bd016867f5a9eba3464e2bba2786f76793cf0fe2f84fc5bf938055402cefef4d3c5c5ca54b94aea66f33b67d1fe2c607114bcef5881999ac7971ebcf364a40410dd8aeae09daaeca47de6aeb4defa8ce21ba23f2d68e54979dbb117c029c05314692ec451f3f6b09b101c09324c0d1fe163e9668c37e54a025f5908fdb561833b41b17c79e96bdd0ee2f51fab69d4c1e8a6b8e7754a97fcab4f992e01723e999b1cd9088a3672c2017d915158cdcd50c56d05e07216f53f6f8b687cadafc84a3ad26d20c1745a5a345ef26f54bab3f4af45c6a2fdc46b0b39e2381e747c40944cb44d144fac127484ab83967f02f0035750580acf855c2672504a1f565d3e8faa645f50db1e6b3fa51a910454416687a54f79a969d6ac9d1a91fa67b6bf71435dd0df68b8828da999a6afcfeef57fc13f63800d51525b92258cf65084549e5b9bcddadee48c6b29d77d57d77a499efa6cd6449931c2cd9314eca58c5fa0d1d66ca8f535afff8e78cd87f976cc8623a08175896d3063eaf4ef231c3022f1bf2ad3ecce1dde298a4ea5a094f46c284bb331e601b42a78992551c8f9fed4547ff8c40d80523e3544ac19beb837360f9c48a462ccf03c77504afa3819cbdbe7a509e14074642b416d7e69fc89e0e2d3e3b0f49d61d15318f989d699941591ab8d14cac4ae9409712f442b1d043205b063d9f36b9a4edead61a78bec952738d9a752eaf93be6e82d64eca6942930261eff0c6fac8bc7efa2016da3cb88036823f820419faf8325116bc11b16c210dd69acfabae1c62843ded5a19b3adf325827798ba63e02d5f1ed774c591819c21be70fc2ff5ae43a4a623cb4facd34f74c4a1efada735cc3e3d08cf207f7a84804cf175b136da724ca9c5b77b0d2dbfc45cb7b0776573fee167b5e41f81a8afe2e5f52303f80cc16af67c451e5c45d9859003c6c90ccc0f251d5653d934867aeddced15204764cadbb237ebe77dac67860f662a0b1d3272ee42337eb5b06315c07e907966dcaa7009c108b6fddb30587a654672f02a609ebbabee6086cdbb93f7f667d65bb73ac23eea17dca83c44b15a44459fef6cc742475416f73251d4dfdf4f63a7cbfe0e9be0ded5cd4781f00c6efee5939dedcdd5d4c39fc45cc963aecbe2c28a7760842ad57902c95b34335468d2dfdf9bef80615c466536a5d2ec14e45582ad0dbfe48d26b4e13e9ac9327702f5a66aa275ebbcf48a5a1d1cf8bc19938b2d1b44a441cc69a906da793f26f5f078602752be2c66fa75845f52e60a2caf1c58cba7af6548130621d83defe7b0f42ccbafdfe1a6fa0a31a919bcf3dabd7d1f80a9932e55602b51f688a1a38c4c74fafa54e0b09bbecad39ac4c46714192fe94a6f4163b305792cf28171e7736644dc703db732be8752a266f311062a761afe207a905046a246443d447c166da9d93ef5f41733bd5ea59234d87794bfb7125308d0e51c3bcb0abd58c59ab3ee919d5aa001bbd244514ff6b6bc6c101fff39ad39f5dc730ae306645c3d2ef50bbdc883b30e37c24ac5c1e76e447b2b7754af6f107e1655946d4b3360ddf46f255fa27ecab15ca17e530ffc02aba8dc5d34d8f1e56d656b326ab614a1345ad578f39cd20e31353e9d741d7f65178ce56034cc8a480bd66f21b0a3e8d09d12ffda2fae27b4132f88ddc467ea7be669be8b096f6428faa48e244aa12dfcf9c590424e821e0e2d50c9fa949d332116071b280d99666fac8aba22e8678f8b15d1f227d975e799c2d4b561946d2f1112031a97564b39ff7335c4f4297ecee7844f57dfb0071dc5ea865d5f6bbf9c98177803915a86c754163b7bfd9810dd7e1c5624fb46c7787e13ed178f290d3d3b0e76fdc9af0f2dd306de66424e1257adb3989d6899647f1f291f3d12c68ef5c4e30aea8803b330590fc6718488afd8c31681bfddd298f40effebdd97dcc1622a932fc84e04af052695af6a3c5e31e5ca492c99e9cb33be85835a3241062d56d9fdfdbe8344d55e5c8592ba6972ed2049c04cbf39c907ac6ae3fb56d17ef7081e7570fe13be8431d4c2d313150378482916b09c358dff16cfcb6f904a18d5fb4b19f182a9d6d9af3a52d19296633da40d9a", 0xeba}], 0x4}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x4, 0x0) 1.67227666s ago: executing program 1 (id=3382): syz_emit_ethernet(0x66, &(0x7f00000000c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0088a800008100ff0086dd60003d2400283a00fe8000000000000000000000000000bb00"/61], 0x0) 1.634011236s ago: executing program 3 (id=3383): process_vm_readv(0x0, &(0x7f0000008400)=[{0x0}, {&(0x7f0000000340)=""/157, 0x9d}], 0x2, 0x0, 0x0, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000000c0)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10) sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x0) sendmmsg$unix(r1, &(0x7f0000003dc0)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0xfffffdef}}, {{&(0x7f0000000280)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}], 0x299, 0x0) 1.633702702s ago: executing program 1 (id=3384): openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x285c2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000000000), 0x651, 0x0) r1 = syz_open_dev$video(&(0x7f0000000040), 0x0, 0x0) socket$inet(0x2, 0x80002, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x682e}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6) sendmsg$NL80211_CMD_DEL_KEY(0xffffffffffffffff, 0x0, 0x4008800) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_TRANSLATE(r5, 0xc018ae85, &(0x7f0000000000)) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/asound/timers\x00', 0x0, 0x0) read$FUSE(r6, &(0x7f00000045c0)={0x2020}, 0x2020) ioctl$VIDIOC_S_FMT(r1, 0xc0d05640, &(0x7f0000000440)={0x9, @pix_mp={0x10, 0x0, 0x3032344d, 0x9, 0x0, [{0x0, 0x2}, {0x0, 0xf}, {0x0, 0x20}, {0x2}, {0x5, 0x100}], 0x0, 0x0, 0x8, 0x0, 0x3}}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'veth1_to_bridge\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000730000"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r7, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x90) r8 = io_uring_setup(0x5091, &(0x7f0000000040)={0x0, 0x2, 0x2}) r9 = syz_open_dev$tty20(0xc, 0x4, 0x0) r10 = fcntl$dupfd(r9, 0x0, r9) ioctl$TCFLSH(r10, 0x5608, 0x1) io_uring_register$IORING_UNREGISTER_FILES(r8, 0x3, 0x0, 0x0) 1.627062351s ago: executing program 2 (id=3385): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) ptrace$ARCH_GET_GS(0x1e, r0, &(0x7f0000000240), 0x1004) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, @void}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000950029366eac18a6a5c0"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) accept$alg(0xffffffffffffffff, 0x0, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000002080)={0xc, {"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", 0x1000}}, 0x1006) write$tun(0xffffffffffffffff, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x100) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r4 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000000340)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00ZH?']) setuid(0x0) mkdir(&(0x7f0000000600)='./file1\x00', 0x0) mount(&(0x7f0000000040)=@nullb, &(0x7f0000000a00)='./file1\x00', &(0x7f0000000000)='reiserfs\x00', 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000400000000000000000000000fdffffff00"], 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48) socket$nl_netfilter(0x10, 0x3, 0xc) 1.556960189s ago: executing program 3 (id=3386): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0), 0x802, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000180), 0x8000, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB]) sendfile(r0, r0, 0x0, 0x5) 1.37090399s ago: executing program 0 (id=3387): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) connect$inet(0xffffffffffffffff, 0x0, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='smaps\x00') readv(r2, &(0x7f00000022c0)=[{&(0x7f00000021c0)=""/200, 0xc8}], 0x1) r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, 0x0}], 0x1, 0x8, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r4 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000340)="89000000120081ae08060cdc030000007f03e3f7000000006ee2ffca1b1f1400000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec001210000140090c0c00bdad446b9bbc7a46e39882a5dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1, 0x0, 0x0, 0xff0f0000}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000200000000000000950000000000000059ebae0eb7f4c8803605e4b2f7dd3874131b74a180007dd8767d588c23cdb963042468289a8a1fbcd229fe662dfd71d03c1c797aba20c0f9fa155100437f8c1c41daa62210704ac661c1cf7ee90f2b8216ce954d702b"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) removexattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000400)=ANY=[]) r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$LOOP_CTL_ADD(r5, 0x4c80, 0xb) bind$inet6(0xffffffffffffffff, 0x0, 0x0) 614.786614ms ago: executing program 3 (id=3388): r0 = bpf$MAP_CREATE(0xe4ffffff, &(0x7f0000000000)=@base={0x5, 0x1, 0x40, 0x40, 0x41, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000180), 0x1003, r0}, 0x38) 553.304718ms ago: executing program 2 (id=3389): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xb, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x500}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x73}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 551.850049ms ago: executing program 3 (id=3390): ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x0, 0x0) ioctl$KVM_TRANSLATE(0xffffffffffffffff, 0xc018ae85, &(0x7f0000000040)={0x0, 0x6000}) r0 = add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) keyctl$update(0x2, r0, 0x0, 0x0) r1 = syz_open_dev$MSR(0x0, 0x0, 0x0) read$msr(r1, &(0x7f0000000300)=""/102400, 0x19000) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) openat$pfkey(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x20004080}, 0x4040000) write$binfmt_aout(r4, 0x0, 0xff2e) ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7fffeff00"}) r6 = syz_open_pts(r4, 0x0) r7 = dup3(r6, r4, 0x0) ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x17) ioctl$KVM_SET_PIT(r3, 0x8048ae66, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000002c0)={[0x2000000000000000, 0xffffffffffffffff, 0x0, 0x40, 0x0, 0x2db, 0x2004cb, 0x0, 0x20000000000000, 0x2000000000000, 0x0, 0x0, 0x1, 0x2], 0x2000, 0x60202}) openat$sysfs(0xffffffffffffff9c, 0x0, 0x4a8200, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10) socket$inet6(0xa, 0x806, 0x0) 551.552287ms ago: executing program 2 (id=3391): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e) sendmmsg(r0, &(0x7f0000009140)=[{{0x0, 0x0, &(0x7f0000001480)=[{&(0x7f0000000000)="b3c7612122a38f78ed803d60c0f0a6c7bdd030c4de", 0x15}, {&(0x7f0000000300)="faa1960eb20987610663550cc69cb8838b2b34196fc7847ba4692117277283adfb568d05a8ccf2c596188395a2c0531da21d27a36b92f648762fa84738049b9b8fd4c00b9903b3af69149fefb48c2e7394b67c112fc36ec72199", 0x5a}, {&(0x7f0000000280)="d6dcb41bd4a5b728a4", 0x9}, {&(0x7f0000000380)="a447bb30c8fd79df941bf099ca52243dd226a84db7a1c75b509624bdca29ac83f9bf48dfff6361e143a48e7522653d02ec1345865273fca3ce1c973f8f2a82fec827b471a0357eeeb8caf12a36207c601f", 0x51}, {&(0x7f0000000440)="f9d4488fba252a17e5156282709e35e5c66ad63fcc4b53cef927ccad", 0x1c}, {&(0x7f0000000480)="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", 0xc00}, {&(0x7f0000001f40)="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", 0xfdc}], 0x7}}, {{0x0, 0x0, &(0x7f0000001cc0)=[{&(0x7f0000001b40)="9ef5f516b5b8", 0x6}, {&(0x7f0000001b80)="6c3e3aa2ed785b67f34aa27c37c864a84c3683b7493feeccab436e6925fe33e9a76d6efe5961c56cf936d7136a3653d28c117c816b48e7d9f8ebe6c734bc317d229d5dc02b2c1b3f631c775ce9007b0e881f962e6aa37e5193986228c59f4f1695409c8490a7a42c571157e4d3b4871e10aff422552b5dec841435ce946a13277161c2e3b57e0bed43b367143dbb447d6baf85d0b5e4a07381057e3ffb3a2e4c9ae4c7f1a05b638e81fdeebfb13706683e3ad4b9182733e24dca9cf8cfdd28ddb096834233a722d10ce231e8099ecb8c3d54a5b890ef201b6d5294baf26d4374f5129101968c64", 0xe7}, {&(0x7f0000001c80)="12dc3e9c22bb373f8208715d9af59209a1c81c7bc144e626e4677eff84255b7041449388da3e220a7147d14e01e7", 0x2e}, {&(0x7f00000043c0)="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", 0xeba}], 0x4}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x4, 0x0) 485.748888ms ago: executing program 2 (id=3392): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$net_dm(&(0x7f0000006a00), r5) sendmsg$NET_DM_CMD_START(r4, 0x0, 0x0) sendmsg$NET_DM_CMD_STOP(r3, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r6, 0x101, 0x70bd28, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000) r7 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$inet6_IPV6_RTHDR(r2, 0x29, 0x39, &(0x7f0000002e40)=ANY=[@ANYBLOB="00020201"], 0x18) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, r7, {0x1fc, 0x6}}, './file0\x00'}) openat$cgroup_freezer_state(r8, &(0x7f00000001c0), 0x2, 0x0) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c) r9 = socket$inet6_sctp(0xa, 0x801, 0x84) r10 = socket$inet(0x2, 0x80001, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r9, 0x84, 0x6e, &(0x7f00000000c0)=[@in={0x2, 0x4e21, @private=0xa010100}, @in6={0xa, 0x4e22, 0x7fffffff, @private2, 0x8}, @in6={0xa, 0x4e21, 0x7fff, @private1={0xfc, 0x1, '\x00', 0x1}, 0x1}, @in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in6={0xa, 0x4e23, 0x8, @private1, 0x1}, @in={0x2, 0x4e21, @local}, @in6={0xa, 0x4e23, 0x4, @rand_addr=' \x01\x00', 0x7fff}], 0xa0) getsockopt$inet_sctp_SCTP_MAX_BURST(r10, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_RTOINFO(r9, 0x84, 0x0, &(0x7f0000000200)={r11, 0x0, 0x3}, 0x10) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000040)={r11, 0x200}, &(0x7f0000000080)=0x8) sendto$inet6(r2, 0x0, 0x0, 0x0, 0x0, 0x0) prlimit64(0x0, 0x4, &(0x7f0000000140)={0x2000000000008, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r12 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r12, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x46, 0x0, 0x0) clock_nanosleep(0x0, 0x1, &(0x7f0000000400), 0x0) 485.569301ms ago: executing program 1 (id=3393): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = dup(r0) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="680000000206010300000000fffff000000000000500010006001f00050005000a0000000900020073797a32000000000500040000000000140007800800064000000000080013400000004011000300686173683a6970"], 0x68}}, 0x0) 428.648485ms ago: executing program 1 (id=3394): prlimit64(0x0, 0xe, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, 0x0, 0x40000) bpf$PROG_LOAD(0x5, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) r3 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x8, 0x4, &(0x7f0000000000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x8, 0x76}, [@call={0x27}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffed8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3f) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001240)=@base={0xf, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x37) close(r3) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000004008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@map=r4, r7, 0x5, 0x0, 0x0, @void, @value}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r4}, &(0x7f0000000100), &(0x7f0000000140)=r3}, 0x20) sendmsg(r5, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000001680)=[{&(0x7f0000001400)='H', 0x20001401}], 0x1}, 0x0) (fail_nth: 47) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) 323.618149ms ago: executing program 3 (id=3395): bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) syz_io_uring_setup(0xd4, 0x0, 0x0, &(0x7f0000000080)) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r3, 0x0, r5, 0x0, 0x8000f28, 0x0) splice(r4, 0x0, r1, 0x0, 0x7f, 0xe) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94) r7 = socket(0x2a, 0x2, 0x0) getsockname$packet(r7, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x9, 0x1}}}}]}, 0x44}}, 0x0) r9 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r9, &(0x7f00000002c0), 0x40000000000009f, 0x0) r10 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r10, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r11, {0xfff1}, {0xffff, 0xffff}, {0x0, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000000) r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r12}, 0xc) ioctl$AUTOFS_IOC_EXPIRE_MULTI(r0, 0x40049366, 0x0) write(r2, 0x0, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x4012831, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0) get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000cd8000/0x4000)=nil, 0x2) bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0) 76.270593ms ago: executing program 0 (id=3396): r0 = socket$inet6(0xa, 0x3, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0xe22, 0x0, @loopback={0xff00000000000000}}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x6}, 0x1c) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x58, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0xd0}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x58}}, 0x0) sendmsg$IPSET_CMD_LIST(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x7, 0x6, 0x301, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0) setsockopt$MRT6_DEL_MFC(r0, 0x29, 0xcd, &(0x7f0000000080)={{0xa, 0x4e20, 0x400, @local, 0x5}, {0xa, 0x4e21, 0xf, @local, 0x8}, 0x7, {[0x2, 0x3, 0xfffffffc, 0x8, 0x0, 0xfffffff8, 0x7, 0x3ff]}}, 0x5c) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[], 0x0) 69.25523ms ago: executing program 0 (id=3397): prlimit64(0x0, 0xe, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff}) r1 = socket$inet_udp(0x2, 0x2, 0x0) close(r1) splice(r0, 0x0, r1, 0x0, 0x4ffe6, 0x0) openat$incfs(r0, &(0x7f0000000040)='.log\x00', 0x101900, 0x152) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r2, 0x0, 0x21, &(0x7f0000000000)=0xffffffff, 0x4) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) socket$inet_tcp(0x2, 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1, 0x5, &(0x7f0000000c00)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x102}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94) socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000680)=ANY=[@ANYBLOB="4101000010001307000000000000f4219879ab1b9a13ba21e669bf9b000000000000000000000000000000000000ac1414a200"/78, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e00000020000000000000000000000000000000032000000ac14140000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000004800020070636263286663727970742900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001c00170000004e2400000000ffffffff00"/268], 0x154}}, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000800)='./file0/file0\x00', 0xf2) r3 = landlock_create_ruleset(&(0x7f0000000180)={0x100}, 0x10, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r3, 0x1, &(0x7f0000000200)={0x100}, 0x0) 379.221µs ago: executing program 0 (id=3398): socket(0x1d, 0x2, 0x6) r0 = socket$netlink(0x10, 0x3, 0x400000000000004) writev(r0, &(0x7f0000019440)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c076f2c6014f5d219221d80481aed108a2cb749a807133ed7a80ffe0090f000060000000a2bcb503ca00000f7f8900000020000000", 0x48}], 0x1) socket$rxrpc(0x21, 0x2, 0xa) r1 = creat(&(0x7f0000000340)='./file0/file0\x00', 0x48) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) socket$nl_route(0x10, 0x3, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x12) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x4, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x1, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffc71) syz_init_net_socket$x25(0x9, 0x5, 0x0) socket$caif_stream(0x25, 0x1, 0x0) r3 = socket$tipc(0x1e, 0x5, 0x0) r4 = syz_open_dev$evdev(&(0x7f0000000080), 0x2, 0x0) ioctl$EVIOCSMASK(r4, 0x40104593, &(0x7f0000000000)={0x0, 0x7, &(0x7f00000010c0)="f39561fc17b7f9"}) bind$tipc(r3, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r1, 0xc01064c2, &(0x7f0000000280)={0x0, 0x1, r1}) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(r1, 0xc01064c1, &(0x7f0000000300)={r5}) r6 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x0, 0x3}, 0x10) setregid(0x0, 0xee01) getresgid(&(0x7f0000000000), &(0x7f0000000040), 0x0) getresgid(&(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)=0x0) setresgid(0xffffffffffffffff, 0x0, r7) setregid(0x0, 0x0) setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, 0x0, 0x0) 0s ago: executing program 0 (id=3399): getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev, 0x0, 0x1}, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, &(0x7f0000000100)) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r1, 0x0, 0x23, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x9) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendmmsg$inet6(r3, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYBLOB='\t\x00', @ANYRES32=r3], 0x1000f) ioperm(0x0, 0x6, 0x603) epoll_create1(0x0) setfsuid(0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000003b00040008000300", @ANYRES32=r6, @ANYBLOB="2f00330040000000080211000000080211000001505050505050"], 0x4c}}, 0x46) r7 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r7, 0x0, &(0x7f00000000c0)) readv(r7, &(0x7f0000000200)=[{&(0x7f0000000480)=""/171, 0xab}], 0x1) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_emit_ethernet(0x32, 0x0, 0x0) syz_genetlink_get_family_id$nfc(0x0, r8) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000000040)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), r4) kernel console output (not intermixed with test programs): : 0000000000000002 [ 546.930848][T15249] R13: 0000000000000000 R14: 00007f5d57535f80 R15: 00007ffcc8a5db88 [ 546.932900][T15249] [ 546.933716][T15253] CPU: 3 UID: 0 PID: 15253 Comm: syz.3.2712 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 546.937058][T15253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 546.939993][T15253] Call Trace: [ 546.940867][T15253] [ 546.941669][T15253] dump_stack_lvl+0x16c/0x1f0 [ 546.942945][T15253] should_fail_ex+0x497/0x5b0 [ 546.944234][T15253] _copy_to_user+0x30/0xc0 [ 546.945454][T15253] video_usercopy+0xf37/0x1600 [ 546.946869][T15253] ? __pfx___video_do_ioctl+0x10/0x10 [ 546.948686][T15253] ? __pfx_video_usercopy+0x10/0x10 [ 546.950573][T15253] v4l2_ioctl+0x1ba/0x250 [ 546.952137][T15253] ? __pfx_v4l2_ioctl+0x10/0x10 [ 546.953871][T15253] __x64_sys_ioctl+0x18f/0x220 [ 546.955597][T15253] do_syscall_64+0xcd/0x250 [ 546.957210][T15253] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 546.959285][T15253] RIP: 0033:0x7f393cd7dff9 [ 546.960854][T15253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 546.967491][T15253] RSP: 002b:00007f393da90038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 546.970369][T15253] RAX: ffffffffffffffda RBX: 00007f393cf35f80 RCX: 00007f393cd7dff9 [ 546.973107][T15253] RDX: 0000000020000480 RSI: 0000000080685600 RDI: 0000000000000005 [ 546.975850][T15253] RBP: 00007f393da90090 R08: 0000000000000000 R09: 0000000000000000 [ 546.978536][T15253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 546.981349][T15253] R13: 0000000000000000 R14: 00007f393cf35f80 R15: 00007fff38f50f78 [ 546.984119][T15253] [ 546.985294][ C3] vkms_vblank_simulate: vblank timer overrun [ 547.118613][ T39] audit: type=1326 audit(1728547692.904:5485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15264 comm="syz.2.2716" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d5737dff9 code=0x7ffc0000 [ 547.132081][ T39] audit: type=1326 audit(1728547692.904:5486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15264 comm="syz.2.2716" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d5737dff9 code=0x7ffc0000 [ 547.140241][ T39] audit: type=1326 audit(1728547692.914:5487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15264 comm="syz.2.2716" exe="/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f5d5737dff9 code=0x7ffc0000 [ 547.148812][ T39] audit: type=1326 audit(1728547692.914:5488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15264 comm="syz.2.2716" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d5737dff9 code=0x7ffc0000 [ 547.157402][ T39] audit: type=1326 audit(1728547692.914:5489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15264 comm="syz.2.2716" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d5737dff9 code=0x7ffc0000 [ 547.165955][ T39] audit: type=1326 audit(1728547692.914:5490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15264 comm="syz.2.2716" exe="/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f5d5737dff9 code=0x7ffc0000 [ 547.174373][ T39] audit: type=1326 audit(1728547692.914:5491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15264 comm="syz.2.2716" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d5737dff9 code=0x7ffc0000 [ 547.180739][ T39] audit: type=1326 audit(1728547692.914:5492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15264 comm="syz.2.2716" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d5737dff9 code=0x7ffc0000 [ 547.186485][ T39] audit: type=1326 audit(1728547692.914:5493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15264 comm="syz.2.2716" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5d5737dff9 code=0x7ffc0000 [ 547.194232][ T39] audit: type=1326 audit(1728547692.914:5494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15264 comm="syz.2.2716" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d5737dff9 code=0x7ffc0000 [ 547.465074][T15275] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2718'. [ 547.837239][ C3] vkms_vblank_simulate: vblank timer overrun [ 548.465473][T15281] program syz.2.2719 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 548.542556][T15281] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 550.229767][T15304] program syz.3.2725 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 550.250257][T15304] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 551.138147][ T1379] ieee802154 phy1 wpan1: encryption failed: -22 [ 551.460661][T15319] program syz.1.2728 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 551.468604][T15319] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 552.399275][ T2789] usb 6-1: new high-speed USB device number 44 using dummy_hcd [ 552.553823][ T2789] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 552.557496][ T2789] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 552.560735][ T2789] usb 6-1: New USB device found, idVendor=28bd, idProduct=0933, bcdDevice= 0.00 [ 552.564156][ T2789] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 552.568205][ T2789] usb 6-1: config 0 descriptor?? [ 553.037356][ T39] kauditd_printk_skb: 37 callbacks suppressed [ 553.037937][ T39] audit: type=1400 audit(1728547699.119:5532): avc: denied { getopt } for pid=15332 comm="syz.2.2733" laddr=::ffff:172.0.0.0 lport=39306 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 553.124086][T15328] program syz.0.2731 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 553.129120][T15328] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 553.169697][T15330] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 553.174475][T15330] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 553.303544][ T2789] input: HID 28bd:0933 Mouse as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:28BD:0933.0006/input/input32 [ 553.376178][ T2789] uclogic 0003:28BD:0933.0006: input,hidraw1: USB HID v5.50 Mouse [HID 28bd:0933] on usb-dummy_hcd.1-1/input0 [ 553.500131][ T9] usb 6-1: USB disconnect, device number 44 [ 554.268887][T15339] program syz.0.2734 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 554.284302][T15339] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 554.520425][T15349] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15349 comm=syz.0.2737 [ 554.570088][T15350] program syz.1.2736 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 554.816526][ T39] audit: type=1400 audit(1728547700.746:5533): avc: denied { append } for pid=15348 comm="syz.0.2737" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1 [ 554.819225][T15350] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 554.951822][T15247] Bluetooth: hci4: command 0x1003 tx timeout [ 554.951900][ T4767] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 556.904180][T15367] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 557.684748][T15375] program syz.1.2742 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 557.703396][T15375] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 558.507510][T15393] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2749'. [ 558.735491][T15411] @: renamed from vlan0 (while UP) [ 558.740893][ T39] audit: type=1400 audit(1728547705.104:5534): avc: denied { bind } for pid=15410 comm="syz.1.2755" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1 [ 558.785426][T15411] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present! [ 559.106901][T15416] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2756'. [ 559.214819][ T39] audit: type=1400 audit(1728547705.608:5535): avc: denied { watch_sb } for pid=15417 comm="syz.1.2757" path="/61" dev="tmpfs" ino=337 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 559.431728][ T39] audit: type=1400 audit(1728547705.839:5536): avc: denied { create } for pid=15425 comm="syz.1.2760" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 559.654169][T15429] program syz.2.2759 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 559.676348][T15429] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 559.706989][T15432] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2761'. [ 561.868320][T15474] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2782'. [ 562.074366][T15479] program syz.1.2774 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 562.154284][T15479] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 562.678750][T15485] FAULT_INJECTION: forcing a failure. [ 562.678750][T15485] name failslab, interval 1, probability 0, space 0, times 0 [ 562.683940][T15485] CPU: 0 UID: 0 PID: 15485 Comm: syz.3.2775 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 562.687755][T15485] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 562.691461][T15485] Call Trace: [ 562.692688][T15485] [ 562.693778][T15485] dump_stack_lvl+0x16c/0x1f0 [ 562.695513][T15485] should_fail_ex+0x497/0x5b0 [ 562.697227][T15485] ? __pfx___lock_acquire+0x10/0x10 [ 562.699073][T15485] should_failslab+0xc2/0x120 [ 562.700768][T15485] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 562.702735][T15485] ? radix_tree_node_alloc.constprop.0+0x7c/0x350 [ 562.705065][T15485] radix_tree_node_alloc.constprop.0+0x7c/0x350 [ 562.707348][T15485] idr_get_free+0x528/0xa40 [ 562.709023][T15485] idr_alloc_u32+0x191/0x2f0 [ 562.710625][T15485] ? __pfx_idr_alloc_u32+0x10/0x10 [ 562.712391][T15485] ? lock_acquire.part.0+0x11b/0x380 [ 562.714260][T15485] idr_alloc_cyclic+0x10c/0x230 [ 562.716036][T15485] ? __pfx_idr_alloc_cyclic+0x10/0x10 [ 562.717981][T15485] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 562.719948][T15485] ? lock_acquire+0x2f/0xb0 [ 562.721602][T15485] ? bpf_prog_load+0xf50/0x2660 [ 562.723371][T15485] bpf_prog_load+0xf6f/0x2660 [ 562.725093][T15485] ? __pfx_bpf_prog_load+0x10/0x10 [ 562.726963][T15485] ? avc_has_perm_noaudit+0x143/0x3a0 [ 562.728934][T15485] ? selinux_bpf+0xde/0x130 [ 562.730609][T15485] __sys_bpf+0x402b/0x49a0 [ 562.732232][T15485] ? ksys_write+0x21e/0x260 [ 562.733901][T15485] ? reacquire_held_locks+0x440/0x4c0 [ 562.735851][T15485] ? __pfx___sys_bpf+0x10/0x10 [ 562.737592][T15485] ? vfs_write+0x14d/0x1140 [ 562.739261][T15485] ? __mutex_unlock_slowpath+0x164/0x650 [ 562.741307][T15485] ? fput+0x30/0x390 [ 562.742757][T15485] ? ksys_write+0x1ad/0x260 [ 562.744420][T15485] ? __pfx_ksys_write+0x10/0x10 [ 562.746208][T15485] __x64_sys_bpf+0x78/0xc0 [ 562.747846][T15485] ? lockdep_hardirqs_on+0x7c/0x110 [ 562.749734][T15485] do_syscall_64+0xcd/0x250 [ 562.751400][T15485] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 562.753918][T15485] RIP: 0033:0x7f393cd7dff9 [ 562.756604][T15485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 562.765050][T15485] RSP: 002b:00007f393da90038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 562.768070][T15485] RAX: ffffffffffffffda RBX: 00007f393cf35f80 RCX: 00007f393cd7dff9 [ 562.770828][T15485] RDX: 0000000000000094 RSI: 00000000200000c0 RDI: 0000000000000005 [ 562.773547][T15485] RBP: 00007f393da90090 R08: 0000000000000000 R09: 0000000000000000 [ 562.776430][T15485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 562.779281][T15485] R13: 0000000000000001 R14: 00007f393cf35f80 R15: 00007fff38f50f78 [ 562.782131][T15485] [ 562.799958][ T39] audit: type=1326 audit(1728547709.366:5537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15490 comm="syz.1.2777" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ddf7dff9 code=0x7ffc0000 [ 562.818326][ T39] audit: type=1326 audit(1728547709.366:5538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15490 comm="syz.1.2777" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ddf7dff9 code=0x7ffc0000 [ 562.832589][ T39] audit: type=1326 audit(1728547709.366:5539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15490 comm="syz.1.2777" exe="/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7fa9ddf7dff9 code=0x7ffc0000 [ 562.842376][ T39] audit: type=1326 audit(1728547709.366:5540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15490 comm="syz.1.2777" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ddf7dff9 code=0x7ffc0000 [ 562.849443][ T39] audit: type=1326 audit(1728547709.366:5541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15490 comm="syz.1.2777" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ddf7dff9 code=0x7ffc0000 [ 562.856177][ T39] audit: type=1326 audit(1728547709.366:5542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15490 comm="syz.1.2777" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa9ddf7dff9 code=0x7ffc0000 [ 562.868382][ T39] audit: type=1326 audit(1728547709.366:5543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15490 comm="syz.1.2777" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ddf7dff9 code=0x7ffc0000 [ 563.837264][T15511] program syz.0.2781 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 563.844830][T15511] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 564.060926][T15522] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2786'. [ 564.069251][T15522] syzkaller1: entered promiscuous mode [ 564.070783][T15522] syzkaller1: entered allmulticast mode [ 564.075551][T15522] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2786'. [ 564.199976][T15533] FAULT_INJECTION: forcing a failure. [ 564.199976][T15533] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 564.203611][T15533] CPU: 2 UID: 0 PID: 15533 Comm: syz.2.2790 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 564.206570][T15533] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 564.209333][T15533] Call Trace: [ 564.210205][T15533] [ 564.210996][T15533] dump_stack_lvl+0x16c/0x1f0 [ 564.212231][T15533] should_fail_ex+0x497/0x5b0 [ 564.213469][T15533] _copy_from_iter+0x2a1/0x1540 [ 564.214835][T15533] ? __pfx__copy_from_iter+0x10/0x10 [ 564.216204][T15533] ? __virt_addr_valid+0x1a4/0x590 [ 564.217541][T15533] ? __virt_addr_valid+0x5e/0x590 [ 564.218854][T15533] ? __phys_addr_symbol+0x30/0x80 [ 564.220165][T15533] ? __check_object_size+0x488/0x710 [ 564.221543][T15533] hci_sock_sendmsg+0x46d/0x25e0 [ 564.222850][T15533] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 564.224285][T15533] sock_write_iter+0x4fe/0x5b0 [ 564.225546][T15533] ? __pfx_sock_write_iter+0x10/0x10 [ 564.226949][T15533] ? bpf_lsm_file_permission+0x9/0x10 [ 564.228350][T15533] ? security_file_permission+0x71/0x210 [ 564.229805][T15533] vfs_write+0x6b5/0x1140 [ 564.230946][T15533] ? __pfx_sock_write_iter+0x10/0x10 [ 564.232292][T15533] ? trace_lock_acquire+0x14a/0x1d0 [ 564.233556][T15533] ? __pfx_vfs_write+0x10/0x10 [ 564.234857][T15533] ? __fget_files+0x40/0x3f0 [ 564.236057][T15533] ksys_write+0x1fa/0x260 [ 564.237167][T15533] ? __pfx_ksys_write+0x10/0x10 [ 564.238447][T15533] do_syscall_64+0xcd/0x250 [ 564.239642][T15533] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 564.241183][T15533] RIP: 0033:0x7f5d5737dff9 [ 564.242365][T15533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 564.248600][T15533] RSP: 002b:00007f5d5811d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 564.251788][T15533] RAX: ffffffffffffffda RBX: 00007f5d57535f80 RCX: 00007f5d5737dff9 [ 564.254650][T15533] RDX: 0000000000000004 RSI: 0000000020000000 RDI: 0000000000000004 [ 564.256941][T15533] RBP: 00007f5d5811d090 R08: 0000000000000000 R09: 0000000000000000 [ 564.258992][T15533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 564.261031][T15533] R13: 0000000000000000 R14: 00007f5d57535f80 R15: 00007ffcc8a5db88 [ 564.263084][T15533] [ 564.496038][T15546] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 564.499466][T15546] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 564.503230][T15546] netdevsim netdevsim2: Falling back to sysfs fallback for: . [ 564.611568][ T39] kauditd_printk_skb: 4 callbacks suppressed [ 564.611581][ T39] audit: type=1400 audit(1728547711.246:5548): avc: denied { cmd } for pid=15541 comm="syz.0.2793" path="socket:[84758]" dev="sockfs" ino=84758 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 565.334113][T15557] x86/PAT: syz.1.2797:15557 freeing invalid memtype [mem 0xfed00000-0xfed00fff] [ 565.373643][T15564] FAULT_INJECTION: forcing a failure. [ 565.373643][T15564] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 565.377491][T15564] CPU: 1 UID: 0 PID: 15564 Comm: syz.0.2800 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 565.380417][T15564] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 565.383552][T15564] Call Trace: [ 565.384534][T15564] [ 565.385321][T15564] dump_stack_lvl+0x16c/0x1f0 [ 565.386806][T15564] should_fail_ex+0x497/0x5b0 [ 565.388314][T15564] _copy_from_iter+0x2a1/0x1540 [ 565.389720][T15564] ? __pfx__copy_from_iter+0x10/0x10 [ 565.391483][T15564] ? __virt_addr_valid+0x1a4/0x590 [ 565.393160][T15564] ? __virt_addr_valid+0x5e/0x590 [ 565.394541][T15564] ? __phys_addr_symbol+0x30/0x80 [ 565.396004][T15564] ? __check_object_size+0x488/0x710 [ 565.397646][T15564] file_tty_write.constprop.0+0x48d/0x9a0 [ 565.399534][T15564] vfs_write+0x6b5/0x1140 [ 565.400840][T15564] ? __pfx_tty_write+0x10/0x10 [ 565.402188][T15564] ? trace_lock_acquire+0x14a/0x1d0 [ 565.403665][T15564] ? __pfx_vfs_write+0x10/0x10 [ 565.404989][T15564] ? __fget_files+0x40/0x3f0 [ 565.406340][T15564] ksys_write+0x12f/0x260 [ 565.407603][T15564] ? __pfx_ksys_write+0x10/0x10 [ 565.408971][T15564] do_syscall_64+0xcd/0x250 [ 565.410271][T15564] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 565.411939][T15564] RIP: 0033:0x7f1f1d37dff9 [ 565.413173][T15564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 565.418602][T15564] RSP: 002b:00007f1f1e12c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 565.421029][T15564] RAX: ffffffffffffffda RBX: 00007f1f1d535f80 RCX: 00007f1f1d37dff9 [ 565.423248][T15564] RDX: 0000000000000098 RSI: 0000000020000000 RDI: 000000000000000a [ 565.425348][T15564] RBP: 00007f1f1e12c090 R08: 0000000000000000 R09: 0000000000000000 [ 565.427512][T15564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 565.429711][T15564] R13: 0000000000000000 R14: 00007f1f1d535f80 R15: 00007fff46513618 [ 565.431898][T15564] [ 565.547547][T15568] netlink: 'syz.1.2801': attribute type 10 has an invalid length. [ 565.551051][T15568] netlink: 'syz.1.2801': attribute type 10 has an invalid length. [ 565.554157][T15568] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2801'. [ 565.557624][T15568] team0: entered promiscuous mode [ 565.559552][T15568] team_slave_0: entered promiscuous mode [ 565.562340][T15568] team_slave_1: entered promiscuous mode [ 565.567961][T15568] bridge0: port 3(team0) entered blocking state [ 565.570764][T15568] bridge0: port 3(team0) entered disabled state [ 565.574606][T15568] team0: entered allmulticast mode [ 565.576541][T15568] team_slave_0: entered allmulticast mode [ 565.578663][T15568] team_slave_1: entered allmulticast mode [ 565.584713][ T5748] usb 7-1: new high-speed USB device number 38 using dummy_hcd [ 565.593395][T15568] bridge0: port 3(team0) entered blocking state [ 565.595791][T15568] bridge0: port 3(team0) entered forwarding state [ 565.724240][ T5748] usb 7-1: Using ep0 maxpacket: 8 [ 565.727880][ T5748] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 565.732100][ T5748] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 565.736053][ T5748] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 565.739850][ T5748] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 565.744775][ T5748] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 565.748252][ T5748] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 565.945722][ T5748] usb 7-1: GET_CAPABILITIES returned 0 [ 565.947371][ T5748] usbtmc 7-1:16.0: can't read capabilities [ 566.287946][ T39] audit: type=1400 audit(1728547713.041:5549): avc: denied { create } for pid=15579 comm="syz.0.2805" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1 [ 566.293395][ T39] audit: type=1400 audit(1728547713.041:5550): avc: denied { setopt } for pid=15579 comm="syz.0.2805" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1 [ 568.243873][ T57] usb 7-1: USB disconnect, device number 38 [ 568.360639][ T39] audit: type=1400 audit(1728547715.204:5551): avc: denied { write } for pid=15627 comm="syz.2.2819" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 568.366104][T15628] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2819'. [ 568.368696][ T39] audit: type=1400 audit(1728547715.214:5552): avc: denied { nlmsg_write } for pid=15627 comm="syz.2.2819" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 568.659628][T15634] program syz.2.2820 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 568.700462][T15634] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 569.365758][ T39] audit: type=1107 audit(1728547716.264:5553): pid=15652 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='5;' [ 569.388246][T15655] netlink: 5296 bytes leftover after parsing attributes in process `syz.3.2830'. [ 569.413720][T15657] netlink: 'syz.3.2831': attribute type 9 has an invalid length. [ 569.416457][T15657] netlink: 134640 bytes leftover after parsing attributes in process `syz.3.2831'. [ 569.471649][T15662] qrtr: Invalid version 47 [ 569.475188][T15662] No such timeout policy "syz0" [ 569.735386][T15674] dccp_invalid_packet: P.type (RESET) not Data || [Data]Ack, while P.X == 0 [ 569.822513][T15675] program syz.1.2834 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 569.830760][T15675] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 570.197103][T15678] FAULT_INJECTION: forcing a failure. [ 570.197103][T15678] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 570.200948][T15678] CPU: 1 UID: 0 PID: 15678 Comm: syz.0.2835 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 570.203712][T15678] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 570.206500][T15678] Call Trace: [ 570.207379][T15678] [ 570.208156][T15678] dump_stack_lvl+0x16c/0x1f0 [ 570.209387][T15678] should_fail_ex+0x497/0x5b0 [ 570.210642][T15678] _copy_from_user+0x30/0xf0 [ 570.211851][T15678] kstrtouint_from_user+0xd7/0x1c0 [ 570.213179][T15678] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 570.214675][T15678] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 570.216125][T15678] proc_fail_nth_write+0x84/0x250 [ 570.217460][T15678] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 570.218936][T15678] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 570.220387][T15678] vfs_write+0x28e/0x1140 [ 570.221528][T15678] ? __fget_files+0x23a/0x3f0 [ 570.222781][T15678] ? fdget_pos+0x24c/0x360 [ 570.223952][T15678] ? __pfx_lock_release+0x10/0x10 [ 570.225262][T15678] ? trace_lock_acquire+0x14a/0x1d0 [ 570.226650][T15678] ? __pfx_vfs_write+0x10/0x10 [ 570.227902][T15678] ? __pfx___mutex_lock+0x10/0x10 [ 570.229219][T15678] ? __fget_files+0x244/0x3f0 [ 570.230465][T15678] ksys_write+0x12f/0x260 [ 570.231609][T15678] ? __pfx_ksys_write+0x10/0x10 [ 570.232885][T15678] do_syscall_64+0xcd/0x250 [ 570.234079][T15678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.235646][T15678] RIP: 0033:0x7f1f1d37cadf [ 570.236814][T15678] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48 [ 570.241799][T15678] RSP: 002b:00007f1f1e10b030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 570.243960][T15678] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1f1d37cadf [ 570.245998][T15678] RDX: 0000000000000001 RSI: 00007f1f1e10b0a0 RDI: 0000000000000006 [ 570.248067][T15678] RBP: 00007f1f1e10b090 R08: 0000000000000000 R09: 002367732f766564 [ 570.250113][T15678] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 570.252212][T15678] R13: 0000000000000000 R14: 00007f1f1d536058 R15: 00007fff46513618 [ 570.254264][T15678] [ 570.777697][ T39] audit: type=1400 audit(1728547717.745:5554): avc: denied { append } for pid=15697 comm="syz.2.2841" name="nullb0" dev="devtmpfs" ino=691 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 571.172340][T15706] netlink: 'syz.2.2844': attribute type 12 has an invalid length. [ 571.176821][T15706] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2844'. [ 573.953307][ T6286] usb 5-1: new high-speed USB device number 30 using dummy_hcd [ 574.229983][ T6286] usb 5-1: Using ep0 maxpacket: 8 [ 574.232951][ T6286] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 574.235604][ T6286] usb 5-1: config 0 has no interface number 0 [ 574.237662][ T6286] usb 5-1: config 0 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 574.242064][ T6286] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 574.245039][ T6286] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 574.248692][ T6286] usb 5-1: config 0 descriptor?? [ 574.252695][ T6286] iowarrior 5-1:0.1: no interrupt-in endpoint found [ 574.400681][T15751] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2853'. [ 574.483537][T15752] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 574.516956][ T6286] usb 5-1: USB disconnect, device number 30 [ 575.397835][T15780] FAULT_INJECTION: forcing a failure. [ 575.397835][T15780] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 575.402136][T15780] CPU: 2 UID: 0 PID: 15780 Comm: syz.3.2866 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 575.405376][T15780] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 575.408167][T15780] Call Trace: [ 575.409129][T15780] [ 575.410219][T15780] dump_stack_lvl+0x16c/0x1f0 [ 575.412080][T15780] should_fail_ex+0x497/0x5b0 [ 575.413865][T15780] _copy_to_user+0x30/0xc0 [ 575.415495][T15780] rng_dev_read+0x25d/0x720 [ 575.417627][T15780] ? __pfx_virtio_read+0x10/0x10 [ 575.419443][T15780] ? __pfx_rng_dev_read+0x10/0x10 [ 575.421251][T15780] ? bpf_lsm_file_permission+0x9/0x10 [ 575.423205][T15780] ? security_file_permission+0x71/0x210 [ 575.425246][T15780] ? __pfx_rng_dev_read+0x10/0x10 [ 575.427081][T15780] vfs_readv+0x6bf/0x890 [ 575.428646][T15780] ? find_held_lock+0x2d/0x110 [ 575.430425][T15780] ? __pfx_vfs_readv+0x10/0x10 [ 575.432160][T15780] ? find_held_lock+0x2d/0x110 [ 575.433913][T15780] ? __pfx_lock_release+0x10/0x10 [ 575.435749][T15780] ? trace_lock_acquire+0x14a/0x1d0 [ 575.437139][T15780] ? __fget_files+0x244/0x3f0 [ 575.438409][T15780] ? __x64_sys_preadv+0x22d/0x310 [ 575.439968][T15780] __x64_sys_preadv+0x22d/0x310 [ 575.441731][T15780] ? __pfx___x64_sys_preadv+0x10/0x10 [ 575.443652][T15780] do_syscall_64+0xcd/0x250 [ 575.445251][T15780] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 575.447124][T15780] RIP: 0033:0x7f393cd7dff9 [ 575.448432][T15780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 575.454242][T15780] RSP: 002b:00007f393da90038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 575.457059][T15780] RAX: ffffffffffffffda RBX: 00007f393cf35f80 RCX: 00007f393cd7dff9 [ 575.460336][T15780] RDX: 0000000000000001 RSI: 0000000020000240 RDI: 0000000000000004 [ 575.463171][T15780] RBP: 00007f393da90090 R08: 0000000000000000 R09: 0000000000000000 [ 575.465890][T15780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 575.468447][T15780] R13: 0000000000000000 R14: 00007f393cf35f80 R15: 00007fff38f50f78 [ 575.471046][T15780] [ 575.794282][T15788] program syz.3.2867 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 575.811403][T15788] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 576.663874][T15793] Bluetooth: MGMT ver 1.23 [ 576.770197][T15795] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2869'. [ 577.474120][T15798] netlink: 'syz.2.2870': attribute type 1 has an invalid length. [ 577.523422][ T39] audit: type=1400 audit(1728547724.832:5555): avc: denied { getopt } for pid=15806 comm="syz.2.2875" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 578.676315][T15832] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2882'. [ 580.647403][T15850] overlay: ./bus is not a directory [ 581.750427][ T39] audit: type=1804 audit(1728547729.273:5556): pid=15873 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.2894" name="/" dev="pidfs" ino=16175 res=1 errno=0 [ 584.999105][T15921] program syz.2.2906 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 585.033242][T15921] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 585.523225][T15927] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2908'. [ 585.848203][T15935] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2909'. [ 585.851230][T15935] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2909'. [ 585.869088][T14812] usb 6-1: new high-speed USB device number 45 using dummy_hcd [ 586.013969][T14812] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 586.021655][T14812] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 586.025163][T14812] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 586.029739][T14812] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 586.033766][T14812] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 586.039296][T14812] usb 6-1: config 0 descriptor?? [ 586.437943][T14812] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 586.444199][T14812] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving [ 586.450254][T14812] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 586.698773][T15931] ip6gretap0 speed is unknown, defaulting to 1000 [ 586.701000][T15931] ip6gretap0 speed is unknown, defaulting to 1000 [ 586.704063][T15931] ip6gretap0 speed is unknown, defaulting to 1000 [ 586.708563][T15931] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 586.715522][T15931] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 586.736810][T15931] ip6gretap0 speed is unknown, defaulting to 1000 [ 586.740963][T15931] ip6gretap0 speed is unknown, defaulting to 1000 [ 586.744979][T15931] ip6gretap0 speed is unknown, defaulting to 1000 [ 586.753678][T15931] ip6gretap0 speed is unknown, defaulting to 1000 [ 586.757767][T15931] ip6gretap0 speed is unknown, defaulting to 1000 [ 586.761482][T15931] ip6gretap0 speed is unknown, defaulting to 1000 [ 586.902273][T15953] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2914'. [ 587.717642][T15963] program syz.2.2917 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 587.747123][T15963] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 587.871659][ T9] usb 6-1: reset high-speed USB device number 45 using dummy_hcd [ 588.596214][T15970] program syz.2.2918 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 588.609293][T15970] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 588.745800][T15973] program syz.1.2919 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 589.281318][T13981] usb 6-1: USB disconnect, device number 45 [ 589.463630][T15984] FAULT_INJECTION: forcing a failure. [ 589.463630][T15984] name failslab, interval 1, probability 0, space 0, times 0 [ 589.468184][T15984] CPU: 3 UID: 0 PID: 15984 Comm: syz.2.2924 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 589.472196][T15984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 589.476193][T15984] Call Trace: [ 589.477515][T15984] [ 589.478674][T15984] dump_stack_lvl+0x16c/0x1f0 [ 589.480474][T15984] should_fail_ex+0x497/0x5b0 [ 589.482346][T15984] ? fs_reclaim_acquire+0xae/0x160 [ 589.484293][T15984] should_failslab+0xc2/0x120 [ 589.486041][T15984] __kmalloc_noprof+0xcb/0x400 [ 589.487808][T15984] ? d_absolute_path+0x137/0x1b0 [ 589.489650][T15984] tomoyo_encode2+0x100/0x3e0 [ 589.491421][T15984] tomoyo_encode+0x29/0x50 [ 589.493129][T15984] tomoyo_realpath_from_path+0x19d/0x720 [ 589.495251][T15984] tomoyo_path_number_perm+0x245/0x590 [ 589.497341][T15984] ? tomoyo_path_number_perm+0x232/0x590 [ 589.500185][T15984] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 589.502548][T15984] ? trace_lock_acquire+0x14a/0x1d0 [ 589.504521][T15984] ? lock_acquire+0x2f/0xb0 [ 589.506282][T15984] ? __fget_files+0x40/0x3f0 [ 589.508031][T15984] ? __fget_files+0x244/0x3f0 [ 589.509829][T15984] security_file_ioctl+0x9b/0x240 [ 589.511797][T15984] __x64_sys_ioctl+0xbb/0x220 [ 589.513599][T15984] do_syscall_64+0xcd/0x250 [ 589.515347][T15984] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 589.517585][T15984] RIP: 0033:0x7f5d5737dff9 [ 589.519417][T15984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 589.526812][T15984] RSP: 002b:00007f5d5811d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 589.529769][T15984] RAX: ffffffffffffffda RBX: 00007f5d57535f80 RCX: 00007f5d5737dff9 [ 589.532555][T15984] RDX: 00000000200000c0 RSI: 00000000c0305710 RDI: 0000000000000004 [ 589.535366][T15984] RBP: 00007f5d5811d090 R08: 0000000000000000 R09: 0000000000000000 [ 589.538151][T15984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 589.540956][T15984] R13: 0000000000000000 R14: 00007f5d57535f80 R15: 00007ffcc8a5db88 [ 589.543765][T15984] [ 589.545017][ C3] vkms_vblank_simulate: vblank timer overrun [ 589.549358][T15984] ERROR: Out of memory at tomoyo_realpath_from_path. [ 589.881643][T15991] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2927'. [ 590.013835][ T6286] usb 5-1: new high-speed USB device number 31 using dummy_hcd [ 590.147855][T16003] program syz.3.2926 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 590.192712][ T6286] usb 5-1: Using ep0 maxpacket: 8 [ 590.200493][ T6286] usb 5-1: New USB device found, idVendor=12d1, idProduct=fae2, bcdDevice=70.8b [ 590.203691][ T6286] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 590.205774][ T6286] usb 5-1: Product: syz [ 590.207179][ T6286] usb 5-1: Manufacturer: syz [ 590.208426][ T6286] usb 5-1: SerialNumber: syz [ 590.214954][ T6286] usb 5-1: config 0 descriptor?? [ 590.225146][ T6286] option 5-1:0.0: GSM modem (1-port) converter detected [ 590.411968][ T6286] usb 5-1: USB disconnect, device number 31 [ 590.414008][ T6286] option 5-1:0.0: device disconnected [ 590.849744][T16023] geneve2: entered promiscuous mode [ 591.110247][ T39] audit: type=1400 audit(1728548507.097:5557): avc: denied { create } for pid=16028 comm="syz.0.2938" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 591.119542][ T39] audit: type=1400 audit(1728548507.097:5558): avc: denied { ioctl } for pid=16028 comm="syz.0.2938" path="socket:[87342]" dev="sockfs" ino=87342 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 591.615616][T16041] program syz.2.2940 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 591.636364][T16041] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 592.069725][T16054] FAULT_INJECTION: forcing a failure. [ 592.069725][T16054] name failslab, interval 1, probability 0, space 0, times 0 [ 592.073714][T16054] CPU: 3 UID: 0 PID: 16054 Comm: syz.3.2945 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 592.076755][T16054] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 592.076777][T16054] Call Trace: [ 592.076781][T16054] [ 592.076787][T16054] dump_stack_lvl+0x16c/0x1f0 [ 592.076806][T16054] should_fail_ex+0x497/0x5b0 [ 592.084096][T16054] ? fs_reclaim_acquire+0xae/0x160 [ 592.085811][T16054] should_failslab+0xc2/0x120 [ 592.087339][T16054] __kmalloc_noprof+0xcb/0x400 [ 592.088742][T16054] lsm_blob_alloc+0x68/0x90 [ 592.090032][T16054] security_sb_alloc+0x28/0x230 [ 592.091418][T16054] alloc_super+0x245/0xbd0 [ 592.092734][T16054] ? lock_acquire+0x2f/0xb0 [ 592.094029][T16054] sget_fc+0x116/0xc20 [ 592.095168][T16054] ? __pfx_set_anon_super_fc+0x10/0x10 [ 592.096701][T16054] ? __pfx_mqueue_fill_super+0x10/0x10 [ 592.098218][T16054] get_tree_nodev+0x28/0x190 [ 592.099556][T16054] mqueue_get_tree+0xf1/0x130 [ 592.100887][T16054] vfs_get_tree+0x8f/0x380 [ 592.102150][T16054] ? refcount_dec_and_lock+0x32/0xc0 [ 592.103656][T16054] fc_mount+0x16/0xc0 [ 592.104787][T16054] mq_init_ns+0x426/0x620 [ 592.106026][T16054] copy_ipcs+0x383/0x600 [ 592.107218][T16054] ? copy_utsname+0xab/0x470 [ 592.108621][T16054] create_new_namespaces+0x20a/0xad0 [ 592.110280][T16054] ? security_capable+0x7e/0x260 [ 592.111869][T16054] copy_namespaces+0x468/0x560 [ 592.113245][T16054] copy_process+0x2a14/0x8db0 [ 592.114758][T16054] ? __pfx_copy_process+0x10/0x10 [ 592.117036][T16054] ? get_pid_task+0xfc/0x250 [ 592.118783][T16054] ? trace_lock_acquire+0x14a/0x1d0 [ 592.120727][T16054] ? find_held_lock+0x2d/0x110 [ 592.122486][T16054] kernel_clone+0xfd/0x960 [ 592.124199][T16054] ? __pfx_kernel_clone+0x10/0x10 [ 592.126081][T16054] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 592.128183][T16054] ? 0xffffffffff600000 [ 592.129697][T16054] __do_sys_clone+0xba/0x100 [ 592.131367][T16054] ? __pfx___do_sys_clone+0x10/0x10 [ 592.133213][T16054] ? 0xffffffffff600000 [ 592.134751][T16054] do_syscall_64+0xcd/0x250 [ 592.136456][T16054] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 592.138622][T16054] RIP: 0033:0x7f393cd7dff9 [ 592.140224][T16054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 592.147063][T16054] RSP: 002b:00007f393da8ffe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 592.149984][T16054] RAX: ffffffffffffffda RBX: 00007f393cf35f80 RCX: 00007f393cd7dff9 [ 592.152572][T16054] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000028280000 [ 592.155002][T16054] RBP: 00007f393da90090 R08: ffffffffff600000 R09: ffffffffff600000 [ 592.157432][T16054] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 592.159802][T16054] R13: 0000000000000000 R14: 00007f393cf35f80 R15: 00007fff38f50f78 [ 592.162188][T16054] ? 0xffffffffff600000 [ 592.163442][T16054] ? 0xffffffffff600000 [ 592.164666][T16054] [ 592.165640][ C3] vkms_vblank_simulate: vblank timer overrun [ 593.721819][T16052] program syz.0.2943 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 593.728117][T16052] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 593.890071][T16069] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2950'. [ 594.156505][ T39] audit: type=1400 audit(1728548510.299:5559): avc: denied { setopt } for pid=16079 comm="syz.1.2954" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1 [ 594.380907][T16091] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2955'. [ 594.384283][T16091] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2955'. [ 594.498070][ T6286] usb 5-1: new high-speed USB device number 32 using dummy_hcd [ 594.650512][ T6286] usb 5-1: Using ep0 maxpacket: 8 [ 594.657150][ T6286] usb 5-1: config index 0 descriptor too short (expected 5924, got 36) [ 594.659439][ T6286] usb 5-1: config 250 has an invalid interface number: 228 but max is -1 [ 594.661593][ T6286] usb 5-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 594.664087][ T6286] usb 5-1: config 250 has no interface number 0 [ 594.665744][ T6286] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 594.668923][ T6286] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 594.671850][ T6286] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 26 [ 594.674541][ T6286] usb 5-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 594.678007][ T6286] usb 5-1: config 250 interface 228 has no altsetting 0 [ 594.682259][ T6286] usb 5-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 594.684688][ T6286] usb 5-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 594.686873][ T6286] usb 5-1: Product: syz [ 594.687968][ T6286] usb 5-1: SerialNumber: syz [ 594.696204][ T6286] hub 5-1:250.228: bad descriptor, ignoring hub [ 594.698749][ T6286] hub 5-1:250.228: probe with driver hub failed with error -5 [ 594.984765][ T6286] usblp 5-1:250.228: usblp0: USB Bidirectional printer dev 32 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 595.300633][ T6286] usb 5-1: USB disconnect, device number 32 [ 595.312434][ T6286] usblp0: removed [ 595.612388][T16107] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2962'. [ 595.637027][T16109] program syz.1.2958 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 595.644931][T16109] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 595.650756][ T6286] usb 5-1: new high-speed USB device number 33 using dummy_hcd [ 595.821987][ T6286] usb 5-1: Using ep0 maxpacket: 8 [ 595.841362][ T6286] usb 5-1: config index 0 descriptor too short (expected 5924, got 36) [ 595.846617][ T6286] usb 5-1: config 250 has an invalid interface number: 228 but max is -1 [ 595.850323][ T6286] usb 5-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 595.853556][ T6286] usb 5-1: config 250 has no interface number 0 [ 595.860257][ T6286] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 595.863812][ T6286] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 595.873937][ T6286] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 26 [ 595.897939][ T6286] usb 5-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 595.907759][ T6286] usb 5-1: config 250 interface 228 has no altsetting 0 [ 595.931502][ T6286] usb 5-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 595.938307][ T6286] usb 5-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 595.950315][ T6286] usb 5-1: Product: syz [ 595.952423][ T6286] usb 5-1: SerialNumber: syz [ 595.959940][ T6286] hub 5-1:250.228: bad descriptor, ignoring hub [ 595.961698][ T6286] hub 5-1:250.228: probe with driver hub failed with error -5 [ 596.031783][ T5370] usb 8-1: new high-speed USB device number 41 using dummy_hcd [ 596.184121][ T5370] usb 8-1: Using ep0 maxpacket: 8 [ 596.200367][ T5370] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 596.202880][ T5370] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 596.205389][ T5370] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 596.207977][ T5370] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 596.211249][ T5370] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 596.213695][ T5370] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 596.324221][ T6286] usblp 5-1:250.228: usblp0: USB Bidirectional printer dev 33 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 596.352099][T16116] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 596.415172][ T5370] usb 8-1: GET_CAPABILITIES returned 0 [ 596.416674][ T5370] usbtmc 8-1:16.0: can't read capabilities [ 596.497424][T16119] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2966'. [ 596.499970][T16119] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2966'. [ 596.508034][ T6286] usb 5-1: USB disconnect, device number 33 [ 596.513289][ T6286] usblp0: removed [ 596.648114][T16124] input: syz0 as /devices/virtual/input/input37 [ 597.368295][T16130] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2969'. [ 597.908015][ T2789] usb 7-1: new high-speed USB device number 39 using dummy_hcd [ 598.081606][ T2789] usb 7-1: Using ep0 maxpacket: 16 [ 598.086473][ T2789] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 598.095251][ T2789] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87 [ 598.099343][ T2789] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 152, changing to 11 [ 598.103258][ T2789] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 8285, setting to 1024 [ 598.107247][ T2789] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 598.120148][ T2789] usb 7-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89 [ 598.123376][ T2789] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 598.126203][ T2789] usb 7-1: Product: syz [ 598.132893][ T2789] usb 7-1: Manufacturer: syz [ 598.134611][ T2789] usb 7-1: SerialNumber: syz [ 598.137858][ T2789] usb 7-1: config 0 descriptor?? [ 598.395681][ T2789] appledisplay 7-1:0.0: Error while getting initial brightness: -110 [ 598.398747][ T2789] appledisplay 7-1:0.0: probe with driver appledisplay failed with error -110 [ 598.422267][ C3] vkms_vblank_simulate: vblank timer overrun [ 598.459303][T16150] program syz.0.2973 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 598.465489][T16150] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 598.612742][T14812] usb 7-1: USB disconnect, device number 39 [ 598.787979][ T5370] usb 8-1: USB disconnect, device number 41 [ 598.831933][T16165] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 598.939069][T16171] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2982'. [ 599.126687][T16174] FAULT_INJECTION: forcing a failure. [ 599.126687][T16174] name failslab, interval 1, probability 0, space 0, times 0 [ 599.131587][T16174] CPU: 3 UID: 0 PID: 16174 Comm: syz.2.2983 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 599.135489][T16174] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 599.139289][T16174] Call Trace: [ 599.140498][T16174] [ 599.141583][T16174] dump_stack_lvl+0x16c/0x1f0 [ 599.143364][T16174] should_fail_ex+0x497/0x5b0 [ 599.145063][T16174] ? fs_reclaim_acquire+0xae/0x160 [ 599.146879][T16174] should_failslab+0xc2/0x120 [ 599.148570][T16174] kmem_cache_alloc_node_noprof+0x71/0x310 [ 599.150733][T16174] ? __alloc_skb+0x2b1/0x380 [ 599.152421][T16174] __alloc_skb+0x2b1/0x380 [ 599.154157][T16174] ? __pfx___alloc_skb+0x10/0x10 [ 599.156457][T16174] netlink_dump+0x6af/0xcc0 [ 599.158137][T16174] ? __skb_recv_datagram+0x1b1/0x220 [ 599.160044][T16174] ? __pfx_netlink_dump+0x10/0x10 [ 599.161869][T16174] ? __check_object_size+0x31/0x710 [ 599.163779][T16174] ? skb_recv_datagram+0x89/0xc0 [ 599.165807][T16174] ? rcu_is_watching+0x12/0xc0 [ 599.167675][T16174] netlink_recvmsg+0xa0d/0xf30 [ 599.169522][T16174] ? __pfx_netlink_recvmsg+0x10/0x10 [ 599.171471][T16174] ? find_held_lock+0x2d/0x110 [ 599.173273][T16174] ? __pfx_lock_release+0x10/0x10 [ 599.175160][T16174] ? trace_lock_acquire+0x14a/0x1d0 [ 599.177124][T16174] ____sys_recvmsg+0x5f8/0x6b0 [ 599.178919][T16174] ? __pfx_____sys_recvmsg+0x10/0x10 [ 599.180821][T16174] ? find_held_lock+0x2d/0x110 [ 599.182570][T16174] ___sys_recvmsg+0x115/0x1a0 [ 599.184648][T16174] ? __pfx____sys_recvmsg+0x10/0x10 [ 599.186614][T16174] ? trace_lock_acquire+0x14a/0x1d0 [ 599.188475][T16174] ? ktime_get_ts64+0x106/0x2a0 [ 599.190297][T16174] ? __pfx___might_resched+0x10/0x10 [ 599.192171][T16174] do_recvmmsg+0x2ba/0x750 [ 599.193827][T16174] ? __pfx_do_recvmmsg+0x10/0x10 [ 599.195671][T16174] ? __might_fault+0xe3/0x190 [ 599.197360][T16174] ? __might_fault+0xe3/0x190 [ 599.199094][T16174] ? __pfx_get_timespec64+0x10/0x10 [ 599.201009][T16174] ? __fget_files+0x244/0x3f0 [ 599.202788][T16174] __x64_sys_recvmmsg+0x1a6/0x290 [ 599.204645][T16174] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 599.206637][T16174] do_syscall_64+0xcd/0x250 [ 599.208396][T16174] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 599.210674][T16174] RIP: 0033:0x7f5d5737dff9 [ 599.212391][T16174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 599.219843][T16174] RSP: 002b:00007f5d5811d038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 599.222959][T16174] RAX: ffffffffffffffda RBX: 00007f5d57535f80 RCX: 00007f5d5737dff9 [ 599.225755][T16174] RDX: 0400000000000ec0 RSI: 0000000020002ec0 RDI: 0000000000000003 [ 599.228647][T16174] RBP: 00007f5d5811d090 R08: 00000000200001c0 R09: 0000000000000000 [ 599.231583][T16174] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 599.234457][T16174] R13: 0000000000000000 R14: 00007f5d57535f80 R15: 00007ffcc8a5db88 [ 599.237369][T16174] [ 599.238583][ C3] vkms_vblank_simulate: vblank timer overrun [ 599.535071][T16186] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2986'. [ 599.539217][T16186] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2986'. [ 599.542781][T16186] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2986'. [ 599.547213][T16186] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2986'. [ 599.649992][T16190] overlayfs: conflicting options: userxattr,verity=on [ 599.884055][T16195] batadv0: mtu less than device minimum [ 600.827025][ T39] audit: type=1400 audit(1728548517.302:5560): avc: denied { write } for pid=16202 comm="syz.0.2991" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 600.961151][T16207] netlink: 256 bytes leftover after parsing attributes in process `syz.3.2993'. [ 600.963703][T16207] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2993'. [ 600.983605][T16207] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2993'. [ 601.038207][T16212] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2994'. [ 601.140199][ T39] audit: type=1400 audit(1728548517.628:5561): avc: denied { write } for pid=16213 comm="syz.3.2995" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 601.719599][T16227] program syz.2.3005 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 601.746654][T16227] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 602.677828][T16251] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3003'. [ 602.793131][ T39] audit: type=1400 audit(1728548519.244:5562): avc: denied { remount } for pid=16250 comm="syz.2.3003" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 603.238267][ T39] audit: type=1400 audit(1728548519.832:5563): avc: denied { ioctl } for pid=16277 comm="syz.1.3011" path="/128/file0/file0" dev="fuse" ino=0 ioctlcmd=0x5393 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1 [ 603.283045][T16276] ip6gretap0 speed is unknown, defaulting to 1000 [ 603.673952][T16295] FAULT_INJECTION: forcing a failure. [ 603.673952][T16295] name failslab, interval 1, probability 0, space 0, times 0 [ 603.677410][T16295] CPU: 2 UID: 0 PID: 16295 Comm: syz.3.3016 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 603.680487][T16295] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 603.683275][T16295] Call Trace: [ 603.684153][T16295] [ 603.684932][T16295] dump_stack_lvl+0x16c/0x1f0 [ 603.686194][T16295] should_fail_ex+0x497/0x5b0 [ 603.687430][T16295] ? fs_reclaim_acquire+0xae/0x160 [ 603.688773][T16295] should_failslab+0xc2/0x120 [ 603.690013][T16295] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 603.691399][T16295] ? security_file_alloc+0x34/0x2b0 [ 603.692734][T16295] ? rcu_is_watching+0x12/0xc0 [ 603.693961][T16295] security_file_alloc+0x34/0x2b0 [ 603.695289][T16295] init_file+0x93/0x230 [ 603.696917][T16295] alloc_empty_file+0x91/0x1e0 [ 603.698176][T16295] path_openat+0xe1/0x2d60 [ 603.699337][T16295] ? hlock_class+0x4e/0x130 [ 603.700504][T16295] ? __lock_acquire+0x163e/0x3ce0 [ 603.701815][T16295] ? __pfx_path_openat+0x10/0x10 [ 603.703128][T16295] ? __pfx___lock_acquire+0x10/0x10 [ 603.704480][T16295] do_filp_open+0x1dc/0x430 [ 603.705668][T16295] ? __pfx_do_filp_open+0x10/0x10 [ 603.707002][T16295] ? find_held_lock+0x2d/0x110 [ 603.708260][T16295] ? _raw_spin_unlock+0x28/0x50 [ 603.709532][T16295] ? alloc_fd+0x2d7/0x6c0 [ 603.710690][T16295] do_sys_openat2+0x17a/0x1e0 [ 603.711922][T16295] ? __pfx_do_sys_openat2+0x10/0x10 [ 603.713268][T16295] ? __fget_files+0x244/0x3f0 [ 603.714500][T16295] __x64_sys_openat+0x175/0x210 [ 603.715703][T16295] ? __pfx___x64_sys_openat+0x10/0x10 [ 603.717111][T16295] ? ksys_write+0x1ad/0x260 [ 603.718244][T16295] do_syscall_64+0xcd/0x250 [ 603.719423][T16295] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 603.720964][T16295] RIP: 0033:0x7f393cd7c990 [ 603.722138][T16295] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44 [ 603.726861][T16295] RSP: 002b:00007f393da8fb70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 603.728847][T16295] RAX: ffffffffffffffda RBX: 0000000000000800 RCX: 00007f393cd7c990 [ 603.730816][T16295] RDX: 0000000000000800 RSI: 00007f393da8fc10 RDI: 00000000ffffff9c [ 603.732703][T16295] RBP: 00007f393da8fc10 R08: 0000000000000000 R09: 0023776172646968 [ 603.734591][T16295] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 603.736468][T16295] R13: 0000000000000000 R14: 00007f393cf35f80 R15: 00007fff38f50f78 [ 603.738391][T16295] [ 604.588901][ T39] audit: type=1326 audit(1728548521.250:5564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16308 comm="syz.3.3022" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f393cd7dff9 code=0x7ffc0000 [ 604.596087][ T39] audit: type=1326 audit(1728548521.250:5565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16308 comm="syz.3.3022" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f393cd7dff9 code=0x7ffc0000 [ 604.602695][ T39] audit: type=1326 audit(1728548521.250:5566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16308 comm="syz.3.3022" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f393cd7dff9 code=0x7ffc0000 [ 604.610279][ T39] audit: type=1326 audit(1728548521.250:5567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16308 comm="syz.3.3022" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f393cd7dff9 code=0x7ffc0000 [ 604.620773][ T39] audit: type=1326 audit(1728548521.250:5568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16308 comm="syz.3.3022" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f393cd7dff9 code=0x7ffc0000 [ 604.630324][ T39] audit: type=1326 audit(1728548521.250:5569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16308 comm="syz.3.3022" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f393cd7dff9 code=0x7ffc0000 [ 604.631588][T16318] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 604.648924][T16318] ip6gretap0 speed is unknown, defaulting to 1000 [ 605.828425][T16345] ip6gretap0 speed is unknown, defaulting to 1000 [ 606.179286][T16340] program syz.2.3027 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 606.187653][T16340] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 606.740112][T16349] program syz.0.3028 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 606.754456][T16349] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 606.779154][T16362] tipc: Started in network mode [ 606.780609][T16362] tipc: Node identity ac1414aa, cluster identity 4711 [ 606.783502][T16362] tipc: Enabled bearer , priority 10 [ 606.789482][T16362] tipc: Disabling bearer [ 608.258719][T16381] Cannot find add_set index 0 as target [ 608.315596][T16384] FAULT_INJECTION: forcing a failure. [ 608.315596][T16384] name failslab, interval 1, probability 0, space 0, times 0 [ 608.320645][T16384] CPU: 3 UID: 0 PID: 16384 Comm: syz.3.3037 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 608.324470][T16384] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 608.328846][T16384] Call Trace: [ 608.330056][T16384] [ 608.331139][T16384] dump_stack_lvl+0x16c/0x1f0 [ 608.332841][T16384] should_fail_ex+0x497/0x5b0 [ 608.334534][T16384] ? fs_reclaim_acquire+0xae/0x160 [ 608.336330][T16384] should_failslab+0xc2/0x120 [ 608.337970][T16384] __kmalloc_noprof+0xcb/0x400 [ 608.339676][T16384] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 608.341685][T16384] tomoyo_realpath_from_path+0xb9/0x720 [ 608.343660][T16384] ? tomoyo_path_number_perm+0x232/0x590 [ 608.345542][T16384] tomoyo_path_number_perm+0x245/0x590 [ 608.347474][T16384] ? tomoyo_path_number_perm+0x232/0x590 [ 608.349450][T16384] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 608.351648][T16384] ? trace_lock_acquire+0x14a/0x1d0 [ 608.353479][T16384] ? lock_acquire+0x2f/0xb0 [ 608.355084][T16384] ? __fget_files+0x40/0x3f0 [ 608.356721][T16384] ? __fget_files+0x244/0x3f0 [ 608.358399][T16384] security_file_ioctl+0x9b/0x240 [ 608.360175][T16384] __x64_sys_ioctl+0xbb/0x220 [ 608.361879][T16384] do_syscall_64+0xcd/0x250 [ 608.363518][T16384] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 608.365581][T16384] RIP: 0033:0x7f393cd7dbfb [ 608.367174][T16384] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00 [ 608.374408][T16384] RSP: 002b:00007f393da8e490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 608.377485][T16384] RAX: ffffffffffffffda RBX: 00007f393da8ebe0 RCX: 00007f393cd7dbfb [ 608.380485][T16384] RDX: 00007f393da8ebe0 RSI: 000000004020ae46 RDI: 0000000000000005 [ 608.383441][T16384] RBP: 0000000000000005 R08: 0000000000000001 R09: 0000000000000000 [ 608.386253][T16384] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000016 [ 608.388994][T16384] R13: 0000000020016000 R14: 0000000020000000 R15: 00000000fec00000 [ 608.391789][T16384] [ 608.392938][ C3] vkms_vblank_simulate: vblank timer overrun [ 608.399191][T16384] ERROR: Out of memory at tomoyo_realpath_from_path. [ 608.553994][T16390] program syz.1.3039 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 608.570181][T16390] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 608.670413][T16394] program syz.3.3040 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 608.701504][T16394] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 609.666448][ T1379] ieee802154 phy1 wpan1: encryption failed: -22 [ 610.009785][T16425] FAULT_INJECTION: forcing a failure. [ 610.009785][T16425] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 610.013279][T16425] CPU: 2 UID: 0 PID: 16425 Comm: syz.3.3048 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 610.016053][T16425] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 610.018754][T16425] Call Trace: [ 610.019631][T16425] [ 610.020410][T16425] dump_stack_lvl+0x16c/0x1f0 [ 610.021644][T16425] should_fail_ex+0x497/0x5b0 [ 610.022942][T16425] _copy_from_user+0x30/0xf0 [ 610.024156][T16425] kstrtouint_from_user+0xd7/0x1c0 [ 610.025493][T16425] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 610.027015][T16425] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 610.028481][T16425] proc_fail_nth_write+0x84/0x250 [ 610.029831][T16425] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 610.031322][T16425] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 610.032755][T16425] vfs_write+0x28e/0x1140 [ 610.033877][T16425] ? __fget_files+0x23a/0x3f0 [ 610.035138][T16425] ? fdget_pos+0x24c/0x360 [ 610.036308][T16425] ? __pfx_lock_release+0x10/0x10 [ 610.037579][T16425] ? trace_lock_acquire+0x14a/0x1d0 [ 610.038958][T16425] ? __pfx_vfs_write+0x10/0x10 [ 610.040221][T16425] ? __pfx___mutex_lock+0x10/0x10 [ 610.041545][T16425] ? __fget_files+0x244/0x3f0 [ 610.042808][T16425] ksys_write+0x12f/0x260 [ 610.043961][T16425] ? __pfx_ksys_write+0x10/0x10 [ 610.045246][T16425] do_syscall_64+0xcd/0x250 [ 610.046488][T16425] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 610.048037][T16425] RIP: 0033:0x7f393cd7cadf [ 610.049207][T16425] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48 [ 610.054264][T16425] RSP: 002b:00007f393c7ff030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 610.056414][T16425] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f393cd7cadf [ 610.058486][T16425] RDX: 0000000000000001 RSI: 00007f393c7ff0a0 RDI: 0000000000000003 [ 610.060542][T16425] RBP: 00007f393c7ff090 R08: 0000000000000000 R09: 0000000000000058 [ 610.062571][T16425] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 610.064628][T16425] R13: 0000000000000000 R14: 00007f393cf36058 R15: 00007fff38f50f78 [ 610.067512][T16425] [ 611.272468][T16439] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 611.287664][ T39] kauditd_printk_skb: 9 callbacks suppressed [ 611.287679][ T39] audit: type=1400 audit(1728548528.274:5579): avc: denied { connect } for pid=16438 comm="syz.2.3053" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 611.290557][T16439] sg_write: process 356 (syz.2.3053) changed security contexts after opening file descriptor, this is not allowed. [ 611.481829][T16449] ip6gretap0 speed is unknown, defaulting to 1000 [ 611.500963][T16448] ip6gretap0 speed is unknown, defaulting to 1000 [ 611.654599][T16460] syzkaller0: entered allmulticast mode [ 612.011733][ T2789] kernel write not supported for file /sg0 (pid: 2789 comm: kworker/2:2) [ 613.175106][T16441] program syz.0.3051 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 613.178879][T16441] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 613.211357][T16471] ip6gretap0 speed is unknown, defaulting to 1000 [ 613.254270][T16471] __nla_validate_parse: 1 callbacks suppressed [ 613.254287][T16471] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3068'. [ 613.384864][ T2789] usb 8-1: new high-speed USB device number 42 using dummy_hcd [ 613.435285][T16487] netlink: 'syz.0.3063': attribute type 7 has an invalid length. [ 613.437836][T16487] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3063'. [ 613.520237][T16488] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3061'. [ 613.813919][ T2789] usb 8-1: Using ep0 maxpacket: 16 [ 613.817260][ T2789] usb 8-1: config 0 has an invalid interface number: 8 but max is 0 [ 613.820042][ T2789] usb 8-1: config 0 has no interface number 0 [ 613.822186][ T2789] usb 8-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 613.826087][ T2789] usb 8-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 613.831111][ T2789] usb 8-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 613.834247][ T2789] usb 8-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 613.836941][ T2789] usb 8-1: Product: syz [ 613.838373][ T2789] usb 8-1: SerialNumber: syz [ 613.841358][ T2789] usb 8-1: config 0 descriptor?? [ 613.845479][ T2789] cm109 8-1:0.8: invalid payload size 0, expected 4 [ 613.848386][ T2789] input: CM109 USB driver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.8/input/input39 [ 613.972052][T16491] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3064'. [ 613.992067][ T39] audit: type=1400 audit(1728548531.119:5580): avc: denied { ioctl } for pid=16492 comm="syz.0.3065" path="socket:[91372]" dev="sockfs" ino=91372 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1 [ 614.094813][T16499] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3060'. [ 614.631133][T16507] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3069'. [ 614.686759][T16508] snd_dummy snd_dummy.0: control 0:1040187392:0:syz0:0 is already present [ 615.130169][ C2] cm109 8-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 615.130338][ T9] usb 8-1: USB disconnect, device number 42 [ 615.131976][ C2] cm109 8-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 615.139562][ T9] cm109 8-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 615.751875][T16520] program syz.1.3072 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 615.759925][T16520] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 616.399034][ T39] audit: type=1400 audit(1728548533.649:5581): avc: denied { map } for pid=16528 comm="syz.1.3076" path="/proc/sys/net/ipv4/tcp_wmem" dev="proc" ino=90851 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_net_t tclass=file permissive=1 [ 616.405082][ T39] audit: type=1400 audit(1728548533.649:5582): avc: denied { execute } for pid=16528 comm="syz.1.3076" path="/proc/sys/net/ipv4/tcp_wmem" dev="proc" ino=90851 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_net_t tclass=file permissive=1 [ 616.533610][T16533] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3077'. [ 616.536851][T16533] tmpfs: Bad value for 'mpol' [ 616.563440][T16535] bond_slave_0: entered promiscuous mode [ 616.565386][T16535] bond_slave_1: entered promiscuous mode [ 616.567692][T16535] macsec1: entered promiscuous mode [ 616.569546][T16535] bond0: entered promiscuous mode [ 616.571471][T16535] macsec1: entered allmulticast mode [ 616.573208][T16535] bond0: entered allmulticast mode [ 616.574943][T16535] bond_slave_0: entered allmulticast mode [ 616.576966][T16535] bond_slave_1: entered allmulticast mode [ 616.580553][T16535] bond0: left allmulticast mode [ 616.582186][T16535] bond_slave_0: left allmulticast mode [ 616.584012][T16535] bond_slave_1: left allmulticast mode [ 616.585956][T16535] bond0: left promiscuous mode [ 616.587744][T16535] bond_slave_0: left promiscuous mode [ 616.589513][T16535] bond_slave_1: left promiscuous mode [ 616.680812][ T39] audit: type=1400 audit(1728548533.933:5583): avc: denied { mount } for pid=16536 comm="syz.3.3079" name="/" dev="9p" ino=36574198 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 616.688451][ T39] audit: type=1400 audit(1728548533.943:5584): avc: denied { append } for pid=16536 comm="syz.3.3079" name="file0" dev="9p" ino=36574228 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 616.694449][ T39] audit: type=1400 audit(1728548533.943:5585): avc: denied { open } for pid=16536 comm="syz.3.3079" path="/180/file0/file0" dev="9p" ino=36574228 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 616.700691][ T39] audit: type=1400 audit(1728548533.954:5586): avc: denied { listen } for pid=16536 comm="syz.3.3079" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 616.928504][ T5748] usb 8-1: new high-speed USB device number 43 using dummy_hcd [ 617.071429][ T5748] usb 8-1: Using ep0 maxpacket: 8 [ 617.074401][ T5748] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 617.077136][ T5748] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 617.079701][ T5748] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 617.083560][ T5748] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 617.086681][ T5748] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 617.093128][ T5748] hub 8-1:1.0: bad descriptor, ignoring hub [ 617.095222][ T5748] hub 8-1:1.0: probe with driver hub failed with error -5 [ 617.097516][ T5748] cdc_wdm 8-1:1.0: skipping garbage [ 617.098923][ T5748] cdc_wdm 8-1:1.0: skipping garbage [ 617.101356][ T5748] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22 [ 617.395172][T14339] usb 8-1: USB disconnect, device number 43 [ 617.728538][ T9] usb 8-1: new high-speed USB device number 44 using dummy_hcd [ 617.871446][ T9] usb 8-1: Using ep0 maxpacket: 8 [ 617.874629][ T9] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 617.877231][ T9] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 617.879539][ T9] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 617.882252][ T9] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 617.885038][ T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 617.888876][ T9] hub 8-1:1.0: bad descriptor, ignoring hub [ 617.890582][ T9] hub 8-1:1.0: probe with driver hub failed with error -5 [ 617.893079][ T9] cdc_wdm 8-1:1.0: skipping garbage [ 617.894501][ T9] cdc_wdm 8-1:1.0: skipping garbage [ 617.895921][ T9] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22 [ 618.195490][ T9] usb 8-1: USB disconnect, device number 44 [ 618.527129][T16548] program syz.0.3083 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 618.531136][T16548] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 618.656563][ T39] audit: type=1400 audit(1728548536.022:5587): avc: denied { unmount } for pid=14078 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 618.814061][T16556] xt_HMARK: proto mask must be zero with L3 mode [ 618.927384][T16570] netlink: 4548 bytes leftover after parsing attributes in process `syz.0.3084'. [ 619.077306][T16579] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3093'. [ 619.148929][T16581] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3094'. [ 619.188184][T16581] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 619.209031][T16583] program syz.2.3092 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 619.220859][T16583] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 620.570039][T16620] tmpfs: Unknown parameter './bus' [ 620.579009][T16619] overlayfs: workdir and upperdir must reside under the same mount [ 622.834882][T16628] program syz.0.3106 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 622.838805][T16628] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 623.107511][T16643] ipvlan2: entered promiscuous mode [ 623.273712][T16660] netlink: 191416 bytes leftover after parsing attributes in process `syz.3.3115'. [ 623.480991][ T5375] usb 5-1: new high-speed USB device number 34 using dummy_hcd [ 623.518978][T14339] usb 8-1: new high-speed USB device number 45 using dummy_hcd [ 623.632952][ T5375] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 623.637720][ T5375] usb 5-1: config 1 has an invalid descriptor of length 110, skipping remainder of the config [ 623.641671][ T5375] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 623.646493][ T5375] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 101, changing to 10 [ 623.650659][ T5375] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 10100, setting to 1024 [ 623.661833][T14339] usb 8-1: Using ep0 maxpacket: 8 [ 623.662742][ T5375] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 623.665578][T14339] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024 [ 623.665629][T14339] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 623.665644][T14339] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0 [ 623.668477][ T5375] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 623.668490][ T5375] usb 5-1: Product: syz [ 623.668498][ T5375] usb 5-1: Manufacturer: syz [ 623.669992][T16658] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 623.671781][T14339] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0 [ 623.674728][ T5375] cdc_wdm 5-1:1.0: skipping garbage [ 623.677030][T14339] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 623.678884][ T5375] cdc_wdm 5-1:1.0: skipping garbage [ 623.680092][T14339] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 623.680105][T14339] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 623.683513][ T5375] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 623.689532][T14339] usbtmc 8-1:16.0: probe with driver usbtmc failed with error -22 [ 623.690199][ T5375] cdc_wdm 5-1:1.0: Unknown control protocol [ 623.886914][ T5375] usb 5-1: USB disconnect, device number 34 [ 623.900768][ T6286] usb 8-1: USB disconnect, device number 45 [ 624.084801][ T39] audit: type=1400 audit(1728548541.713:5588): avc: denied { read } for pid=16657 comm="syz.0.3114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 624.807657][T16670] netlink: 'syz.1.3120': attribute type 21 has an invalid length. [ 624.810353][T16670] netlink: 128 bytes leftover after parsing attributes in process `syz.1.3120'. [ 624.813569][T16670] netlink: 'syz.1.3120': attribute type 4 has an invalid length. [ 624.817833][T16670] netlink: 'syz.1.3120': attribute type 3 has an invalid length. [ 624.820197][T16670] netlink: 3 bytes leftover after parsing attributes in process `syz.1.3120'. [ 624.824641][T16670] netlink: 188 bytes leftover after parsing attributes in process `syz.1.3120'. [ 624.860041][T16672] program syz.1.3121 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 624.871258][T16672] netlink: 48 bytes leftover after parsing attributes in process `syz.1.3121'. [ 625.004006][T16676] program syz.3.3118 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 625.016924][T16676] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 625.630291][T16690] overlayfs: conflicting options: metacopy=on,redirect_dir=follow [ 626.253320][T14812] usb 6-1: new high-speed USB device number 46 using dummy_hcd [ 626.407121][T14812] usb 6-1: config index 0 descriptor too short (expected 4096, got 36) [ 626.409810][T14812] usb 6-1: config 0 has an invalid descriptor of length 72, skipping remainder of the config [ 626.424474][T14812] usb 6-1: config 0 has no interfaces? [ 626.426575][T14812] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 626.429819][T14812] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 626.444028][T14812] usb 6-1: config 0 descriptor?? [ 626.583696][T16725] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3137'. [ 626.816730][T14812] usb 6-1: string descriptor 0 read error: -71 [ 626.819649][T14812] usb 6-1: USB disconnect, device number 46 [ 626.991990][T16722] program syz.0.3132 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 626.995990][T16722] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 627.731828][T16735] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3147'. [ 627.842324][T16744] netlink: 4096 bytes leftover after parsing attributes in process `syz.2.3141'. [ 627.848515][T16744] openvswitch: netlink: Actions may not be safe on all matching packets [ 627.859884][T16744] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3141'. [ 628.122576][T14339] usb 7-1: new high-speed USB device number 40 using dummy_hcd [ 628.271880][T14339] usb 7-1: Using ep0 maxpacket: 16 [ 628.275540][T14339] usb 7-1: config 0 has no interfaces? [ 628.279544][T14339] usb 7-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88 [ 628.282773][T14339] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 628.285093][T14339] usb 7-1: Product: syz [ 628.286510][T14339] usb 7-1: Manufacturer: syz [ 628.288258][T14339] usb 7-1: SerialNumber: syz [ 628.291450][T14339] usb 7-1: config 0 descriptor?? [ 628.487983][T14339] usb 7-1: USB disconnect, device number 40 [ 629.004038][T16760] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3144'. [ 629.022985][T16760] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3144'. [ 633.663424][T14812] usb 7-1: new high-speed USB device number 41 using dummy_hcd [ 633.806417][T14812] usb 7-1: Using ep0 maxpacket: 16 [ 633.811720][T14812] usb 7-1: config 0 has an invalid interface number: 8 but max is 0 [ 633.816415][T14812] usb 7-1: config 0 has no interface number 0 [ 633.818779][T14812] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 633.823072][T14812] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 633.832521][T14812] usb 7-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 633.836675][T14812] usb 7-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 633.839852][T14812] usb 7-1: Product: syz [ 633.841491][T14812] usb 7-1: SerialNumber: syz [ 633.845793][T14812] usb 7-1: config 0 descriptor?? [ 633.850613][T14812] cm109 7-1:0.8: invalid payload size 0, expected 4 [ 633.854806][T14812] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.8/input/input40 [ 634.055553][ T11] team0: left allmulticast mode [ 634.057908][ T11] team_slave_1: left allmulticast mode [ 634.060273][ T11] bridge0: port 3(team0) entered disabled state [ 634.083065][ T11] bridge_slave_1: left allmulticast mode [ 634.084580][ T11] bridge_slave_1: left promiscuous mode [ 634.086174][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 634.090845][ T11] bridge_slave_0: left allmulticast mode [ 634.095052][ T11] bridge_slave_0: left promiscuous mode [ 634.097248][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 634.115081][T16851] __nla_validate_parse: 1 callbacks suppressed [ 634.115097][T16851] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3168'. [ 634.372749][ T11] batman_adv: batadv0: Removing interface: gretap1 [ 634.610213][ T11] bond0 (unregistering): (slave bridge0): Releasing backup interface [ 634.681506][ C3] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 634.681576][T14339] usb 7-1: USB disconnect, device number 41 [ 634.684064][ C3] cm109 7-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 634.690290][T14339] cm109 7-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 634.867624][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 634.874868][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 634.880707][ T11] bond0 (unregistering): Released all slaves [ 634.949490][ T11] þü: left promiscuous mode [ 635.175584][ T11] batman_adv: batadv0: Removing interface: wlan1 [ 635.473933][ T11] hsr_slave_0: left promiscuous mode [ 635.476722][ T11] hsr_slave_1: left promiscuous mode [ 635.480089][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 635.482231][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 635.484423][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 635.486332][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 635.517051][ T11] veth1_macvtap: left promiscuous mode [ 635.518579][ T11] veth0_macvtap: left promiscuous mode [ 635.520098][ T11] veth1_vlan: left promiscuous mode [ 635.521704][ T11] veth0_vlan: left promiscuous mode [ 635.606510][ T11] pimreg (unregistering): left allmulticast mode [ 636.631985][ T11] team0 (unregistering): Port device team_slave_1 removed [ 636.743349][T16882] program syz.3.3175 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 636.805181][T16882] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 637.794850][T16897] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3179'. [ 638.176906][T16905] program syz.2.3182 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 638.184145][T16905] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 638.735549][T16918] program syz.2.3184 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 638.741512][T16918] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 639.244332][ C3] vkms_vblank_simulate: vblank timer overrun [ 639.339564][ C3] vkms_vblank_simulate: vblank timer overrun [ 641.269092][T16932] FAULT_INJECTION: forcing a failure. [ 641.269092][T16932] name failslab, interval 1, probability 0, space 0, times 0 [ 641.274004][T16932] CPU: 2 UID: 0 PID: 16932 Comm: syz.1.3188 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 641.277875][T16932] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 641.281734][T16932] Call Trace: [ 641.282996][T16932] [ 641.284092][T16932] dump_stack_lvl+0x16c/0x1f0 [ 641.285859][T16932] should_fail_ex+0x497/0x5b0 [ 641.287593][T16932] ? fs_reclaim_acquire+0xae/0x160 [ 641.289469][T16932] should_failslab+0xc2/0x120 [ 641.291208][T16932] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 641.293184][T16932] ? vm_area_dup+0x53/0x2f0 [ 641.294873][T16932] vm_area_dup+0x53/0x2f0 [ 641.296478][T16932] copy_process+0x7891/0x8db0 [ 641.298242][T16932] ? __pfx_copy_process+0x10/0x10 [ 641.300092][T16932] ? get_pid_task+0xfc/0x250 [ 641.301791][T16932] ? trace_lock_acquire+0x14a/0x1d0 [ 641.303718][T16932] ? find_held_lock+0x2d/0x110 [ 641.305499][T16932] kernel_clone+0xfd/0x960 [ 641.307137][T16932] ? __pfx_kernel_clone+0x10/0x10 [ 641.308989][T16932] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 641.311184][T16932] __do_sys_clone+0xba/0x100 [ 641.312889][T16932] ? __pfx___do_sys_clone+0x10/0x10 [ 641.314827][T16932] do_syscall_64+0xcd/0x250 [ 641.316506][T16932] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 641.318672][T16932] RIP: 0033:0x7fa9ddf7dff9 [ 641.320312][T16932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 641.328084][T16932] RSP: 002b:00007fa9decfafe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 641.331128][T16932] RAX: ffffffffffffffda RBX: 00007fa9de136058 RCX: 00007fa9ddf7dff9 [ 641.334002][T16932] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000004000 [ 641.336859][T16932] RBP: 00007fa9decfb090 R08: 0000000000000000 R09: 0000000000000000 [ 641.339726][T16932] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 641.342589][T16932] R13: 0000000000000000 R14: 00007fa9de136058 R15: 00007ffe5bb9f088 [ 641.345451][T16932] [ 641.687714][T16940] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3191'. [ 641.691291][T16940] netlink: 'syz.1.3191': attribute type 7 has an invalid length. [ 641.694333][T16940] netlink: 'syz.1.3191': attribute type 13 has an invalid length. [ 641.706700][T16940] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 641.710244][T16940] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 641.714355][T16940] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 641.717583][T16940] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 641.722395][T16940] vxlan0: entered promiscuous mode [ 641.726038][T16942] input: syz0 as /devices/virtual/input/input43 [ 641.753736][T16940] netlink: 'syz.1.3191': attribute type 10 has an invalid length. [ 641.756595][T16940] netlink: 210880 bytes leftover after parsing attributes in process `syz.1.3191'. [ 642.585219][ T39] audit: type=1326 audit(1728548561.136:5589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16946 comm="syz.0.3195" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f1d37dff9 code=0x7ffc0000 [ 642.591006][T16949] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 642.593533][ T39] audit: type=1326 audit(1728548561.136:5590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16946 comm="syz.0.3195" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f1d37dff9 code=0x7ffc0000 [ 642.605706][ T39] audit: type=1326 audit(1728548561.147:5591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16946 comm="syz.0.3195" exe="/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f1f1d37dff9 code=0x7ffc0000 [ 642.626244][ T39] audit: type=1326 audit(1728548561.147:5592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16946 comm="syz.0.3195" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f1d37dff9 code=0x7ffc0000 [ 642.635966][ T39] audit: type=1326 audit(1728548561.147:5593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16946 comm="syz.0.3195" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f1d37dff9 code=0x7ffc0000 [ 642.645953][ T39] audit: type=1326 audit(1728548561.147:5594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16946 comm="syz.0.3195" exe="/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f1f1d37dff9 code=0x7ffc0000 [ 642.656241][ T39] audit: type=1326 audit(1728548561.147:5595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16946 comm="syz.0.3195" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f1d37dff9 code=0x7ffc0000 [ 642.666539][ T39] audit: type=1326 audit(1728548561.147:5596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16946 comm="syz.0.3195" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f1d37dff9 code=0x7ffc0000 [ 642.676731][ T39] audit: type=1326 audit(1728548561.147:5597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16946 comm="syz.0.3195" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1f1d37dff9 code=0x7ffc0000 [ 642.687451][ T39] audit: type=1326 audit(1728548561.147:5598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16946 comm="syz.0.3195" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f1d37dff9 code=0x7ffc0000 [ 644.052830][T16963] program syz.2.3206 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 644.067381][T16963] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 645.499637][T16978] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3202'. [ 645.768431][T14339] usb 7-1: new high-speed USB device number 42 using dummy_hcd [ 645.924518][T14339] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 645.928352][T14339] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 645.933787][T14339] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 645.939143][T14339] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 645.943419][T14339] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 645.950899][T14339] usb 7-1: config 0 descriptor?? [ 646.190446][T16990] program syz.3.3207 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 646.207809][T16990] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 646.646507][T14339] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 646.649282][T14339] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving [ 646.654716][T14339] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 646.736341][T16992] siw: device registration error -23 [ 647.030664][T16998] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3211'. [ 647.153610][T17000] program syz.3.3209 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 647.164785][T17000] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 647.332339][ T9] usb 7-1: USB disconnect, device number 42 [ 647.875033][T17009] program syz.1.3220 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 647.881068][T17009] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 650.275019][T17031] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17031 comm=syz.2.3218 [ 650.671664][T17042] program syz.1.3222 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 651.044491][T17042] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 651.171839][T17046] @: renamed from vlan0 (while UP) [ 651.232294][T17046] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present! [ 651.381195][T17054] netlink: 'syz.1.3227': attribute type 2 has an invalid length. [ 651.482411][T17060] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3229'. [ 651.491156][T17060] syzkaller1: entered promiscuous mode [ 651.492708][T17060] syzkaller1: entered allmulticast mode [ 651.498906][T17060] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3229'. [ 652.664178][T17079] program syz.3.3232 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 652.700867][T17079] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 653.541752][T17087] program syz.1.3243 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 653.550321][T17087] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 654.212569][T17095] netlink: 'syz.2.3238': attribute type 9 has an invalid length. [ 654.215110][T17095] netlink: 134640 bytes leftover after parsing attributes in process `syz.2.3238'. [ 654.500158][T17100] program syz.3.3237 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 654.549993][T17100] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 657.350387][T17124] program syz.1.3246 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 658.188568][ C3] vkms_vblank_simulate: vblank timer overrun [ 658.383761][T17134] @: renamed from vlan0 (while UP) [ 658.472063][T17134] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present! [ 658.704939][T17141] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 658.814106][T17145] netlink: 191416 bytes leftover after parsing attributes in process `syz.3.3250'. [ 659.312202][T14339] usb 8-1: new high-speed USB device number 46 using dummy_hcd [ 659.363549][T17131] program syz.0.3256 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 659.370870][T17131] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 659.473939][T14339] usb 8-1: Using ep0 maxpacket: 8 [ 659.476732][T14339] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024 [ 659.479659][T14339] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 659.482873][T14339] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0 [ 659.485875][T14339] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0 [ 659.488439][T14339] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 659.491793][T14339] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 659.491806][T14339] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 659.499230][T14339] usbtmc 8-1:16.0: probe with driver usbtmc failed with error -22 [ 659.696825][T14176] usb 8-1: USB disconnect, device number 46 [ 659.744455][T17150] program syz.1.3251 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 659.802141][T17150] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 660.755682][T17167] program syz.1.3255 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 660.881583][T17167] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 661.928805][T17176] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3259'. [ 661.932437][T17176] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3259'. [ 663.133592][T17182] program syz.3.3261 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 663.535268][T17182] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 663.950590][T17194] netlink: 48 bytes leftover after parsing attributes in process `syz.3.3265'. [ 663.988092][T17196] netlink: 'syz.3.3266': attribute type 2 has an invalid length. [ 664.458236][T17184] program syz.0.3260 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 664.469415][T17184] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 665.558465][T17223] program syz.2.3271 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 665.564653][T17223] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 666.741449][T14812] kernel write not supported for file /sg0 (pid: 14812 comm: kworker/3:2) [ 667.074893][ C3] vkms_vblank_simulate: vblank timer overrun [ 667.163116][T17235] program syz.1.3274 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 667.171114][T17219] program syz.0.3277 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 667.174399][T17235] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 667.187876][T17219] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 667.284764][T14812] usb 7-1: new high-speed USB device number 43 using dummy_hcd [ 667.427665][T14812] usb 7-1: Using ep0 maxpacket: 8 [ 667.456817][ T39] kauditd_printk_skb: 38 callbacks suppressed [ 667.456827][ T39] audit: type=1400 audit(1728548587.258:5637): avc: denied { connect } for pid=17249 comm="syz.0.3279" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 667.476403][T17251] program syz.1.3278 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 667.483598][T17251] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 667.736459][T14812] usb 7-1: config index 0 descriptor too short (expected 301, got 45) [ 667.739235][T14812] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 667.743167][T14812] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 667.746427][T14812] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 667.750152][T14812] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 667.759319][T14812] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 667.763226][T14812] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 667.964304][T14812] usb 7-1: usb_control_msg returned -32 [ 667.965990][T14812] usbtmc 7-1:16.0: can't read capabilities [ 668.171709][ T1379] ieee802154 phy1 wpan1: encryption failed: -22 [ 668.400894][T17263] program syz.3.3281 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 668.408333][T17263] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 668.568428][T17266] program syz.1.3282 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 668.584803][T17266] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 669.571030][T17276] program syz.1.3284 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 669.578908][T17276] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 669.702230][ T9] usb 7-1: USB disconnect, device number 43 [ 669.772189][T17281] netlink: 100 bytes leftover after parsing attributes in process `syz.2.3286'. [ 670.442790][T17294] program syz.1.3289 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 670.470755][T17294] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 670.945276][T17308] program syz.2.3293 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 671.014458][T17308] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 671.890114][T17318] program syz.2.3295 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 671.954166][T17317] program syz.1.3304 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 672.202585][T17318] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 672.238166][T17317] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 672.751892][ T5338] Bluetooth: hci4: command 0x1003 tx timeout [ 672.759082][T15359] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 672.864935][T17328] program syz.2.3306 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 672.874132][T17328] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 673.757679][T17339] program syz.3.3300 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 674.114545][T17339] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 674.199044][T17346] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3301'. [ 674.667150][T17354] program syz.2.3305 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 674.674530][T17354] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 675.598544][T17364] FAULT_INJECTION: forcing a failure. [ 675.598544][T17364] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 675.603883][T17364] CPU: 3 UID: 0 PID: 17364 Comm: syz.1.3310 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 675.607841][T17364] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 675.611698][T17364] Call Trace: [ 675.612939][T17364] [ 675.614057][T17364] dump_stack_lvl+0x16c/0x1f0 [ 675.615764][T17364] should_fail_ex+0x497/0x5b0 [ 675.617527][T17364] _copy_from_user+0x30/0xf0 [ 675.619255][T17364] copy_clone_args_from_user+0x158/0x7c0 [ 675.621309][T17364] ? ksys_write+0x12f/0x260 [ 675.623025][T17364] ? __pfx_copy_clone_args_from_user+0x10/0x10 [ 675.625997][T17364] ? vfs_write+0x14d/0x1140 [ 675.627590][T17364] __do_sys_clone3+0xaa/0x270 [ 675.629353][T17364] ? __pfx___do_sys_clone3+0x10/0x10 [ 675.631360][T17364] do_syscall_64+0xcd/0x250 [ 675.633015][T17364] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 675.635147][T17364] RIP: 0033:0x7fa9ddf7dff9 [ 675.636757][T17364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 675.643588][T17364] RSP: 002b:00007fa9ded1bf08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 675.646561][T17364] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fa9ddf7dff9 [ 675.649470][T17364] RDX: 00007fa9ded1bf20 RSI: 0000000000000058 RDI: 00007fa9ded1bf20 [ 675.652327][T17364] RBP: 00007fa9ded1c090 R08: 0000000000000000 R09: 0000000000000058 [ 675.655219][T17364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 675.658156][T17364] R13: 0000000000000000 R14: 00007fa9de135f80 R15: 00007ffe5bb9f088 [ 675.661210][T17364] [ 675.662578][ C3] vkms_vblank_simulate: vblank timer overrun [ 676.050987][T17370] kAFS: No cell specified [ 677.052638][ T39] audit: type=1400 audit(1728548597.327:5638): avc: denied { getopt } for pid=17373 comm="syz.1.3320" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 677.345068][T17381] program syz.2.3312 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 677.362940][T17381] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 678.139530][T17396] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3317'. [ 678.141881][T17396] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3317'. [ 678.294804][ C3] vkms_vblank_simulate: vblank timer overrun [ 678.380585][ C3] vkms_vblank_simulate: vblank timer overrun [ 678.532931][ C3] vkms_vblank_simulate: vblank timer overrun [ 678.672201][T17412] netlink: 'syz.1.3322': attribute type 1 has an invalid length. [ 678.674942][T17412] netlink: 224 bytes leftover after parsing attributes in process `syz.1.3322'. [ 678.695938][T17412] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3322'. [ 678.937896][T17398] program syz.0.3315 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 678.954206][T17398] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 679.692456][T17429] netlink: 'syz.3.3327': attribute type 21 has an invalid length. [ 679.694540][T17429] netlink: 'syz.3.3327': attribute type 1 has an invalid length. [ 679.698190][T17429] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=7961 sclass=netlink_route_socket pid=17429 comm=syz.3.3327 [ 679.732315][T17432] FAULT_INJECTION: forcing a failure. [ 679.732315][T17432] name failslab, interval 1, probability 0, space 0, times 0 [ 679.736109][T17432] CPU: 3 UID: 0 PID: 17432 Comm: syz.3.3328 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 679.738885][T17432] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 679.741658][T17432] Call Trace: [ 679.742540][T17432] [ 679.743321][T17432] dump_stack_lvl+0x16c/0x1f0 [ 679.744559][T17432] should_fail_ex+0x497/0x5b0 [ 679.745809][T17432] ? fs_reclaim_acquire+0xae/0x160 [ 679.747354][T17432] should_failslab+0xc2/0x120 [ 679.748620][T17432] __kmalloc_noprof+0xcb/0x400 [ 679.749886][T17432] tomoyo_encode2+0x100/0x3e0 [ 679.751130][T17432] tomoyo_encode+0x29/0x50 [ 679.752308][T17432] tomoyo_mount_acl+0x314/0x880 [ 679.753601][T17432] ? hlock_class+0x4e/0x130 [ 679.754825][T17432] ? __lock_acquire+0x163e/0x3ce0 [ 679.756160][T17432] ? __pfx_tomoyo_mount_acl+0x10/0x10 [ 679.757585][T17432] ? __pfx___lock_acquire+0x10/0x10 [ 679.758949][T17432] ? stack_trace_save+0x95/0xd0 [ 679.760422][T17432] ? __pfx_lock_release+0x10/0x10 [ 679.761747][T17432] ? trace_lock_acquire+0x14a/0x1d0 [ 679.763112][T17432] ? tomoyo_mount_permission+0x146/0x410 [ 679.764590][T17432] ? lock_acquire+0x2f/0xb0 [ 679.765790][T17432] ? tomoyo_mount_permission+0x146/0x410 [ 679.767264][T17432] tomoyo_mount_permission+0x16b/0x410 [ 679.768689][T17432] ? tomoyo_mount_permission+0x146/0x410 [ 679.770155][T17432] ? __pfx_tomoyo_mount_permission+0x10/0x10 [ 679.771724][T17432] ? get_current_fs_domain+0x188/0x1f0 [ 679.773149][T17432] security_sb_mount+0x9b/0x260 [ 679.774435][T17432] path_mount+0x129/0x1f20 [ 679.775823][T17432] ? kmem_cache_free+0x152/0x4b0 [ 679.777125][T17432] ? __pfx_path_mount+0x10/0x10 [ 679.778414][T17432] ? putname+0x12e/0x170 [ 679.779532][T17432] __x64_sys_mount+0x294/0x320 [ 679.780787][T17432] ? __pfx___x64_sys_mount+0x10/0x10 [ 679.782178][T17432] do_syscall_64+0xcd/0x250 [ 679.783376][T17432] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 679.784913][T17432] RIP: 0033:0x7f393cd7dff9 [ 679.786096][T17432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 679.791071][T17432] RSP: 002b:00007f393da90038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 679.793458][T17432] RAX: ffffffffffffffda RBX: 00007f393cf35f80 RCX: 00007f393cd7dff9 [ 679.795509][T17432] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000 [ 679.797568][T17432] RBP: 00007f393da90090 R08: 0000000000000000 R09: 0000000000000000 [ 679.799622][T17432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 679.801685][T17432] R13: 0000000000000000 R14: 00007f393cf35f80 R15: 00007fff38f50f78 [ 679.803749][T17432] [ 679.804582][ C3] vkms_vblank_simulate: vblank timer overrun [ 680.206015][T17441] kAFS: No cell specified [ 681.192606][T17420] program syz.0.3323 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 681.207772][T17420] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 681.310647][T17450] program syz.3.3331 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 681.399227][T17452] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 681.904689][ T2789] usb 6-1: new high-speed USB device number 47 using dummy_hcd [ 682.057008][ T2789] usb 6-1: Using ep0 maxpacket: 8 [ 682.061130][ T2789] usb 6-1: config index 0 descriptor too short (expected 301, got 45) [ 682.064700][ T2789] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 682.067740][ T2789] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 682.076423][ T2789] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 682.079839][ T2789] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 682.084184][ T2789] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 682.090479][ T2789] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 682.110772][T17460] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3335'. [ 682.240386][T17466] fuse: Unknown parameter '00000000000000000000003' [ 682.244596][T17466] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3337'. [ 682.299903][ T2789] usb 6-1: usb_control_msg returned -32 [ 682.301985][ T2789] usbtmc 6-1:16.0: can't read capabilities [ 683.377066][T17458] program syz.0.3334 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 683.382219][T17458] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 683.787038][T17496] program syz.2.3343 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 683.830252][T17496] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 684.093247][T17503] FAULT_INJECTION: forcing a failure. [ 684.093247][T17503] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 684.100243][T17503] CPU: 3 UID: 0 PID: 17503 Comm: syz.3.3347 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 684.104081][T17503] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 684.107978][T17503] Call Trace: [ 684.109196][T17503] [ 684.110299][T17503] dump_stack_lvl+0x16c/0x1f0 [ 684.112050][T17503] should_fail_ex+0x497/0x5b0 [ 684.113793][T17503] _copy_to_iter+0x2a1/0x1540 [ 684.115527][T17503] ? chacha_block_generic+0x18a/0x270 [ 684.117502][T17503] ? __pfx__copy_to_iter+0x10/0x10 [ 684.119376][T17503] ? lockdep_hardirqs_on+0x7c/0x110 [ 684.121259][T17503] ? crng_make_state+0x48e/0x6d0 [ 684.123029][T17503] get_random_bytes_user+0x180/0x3c0 [ 684.124903][T17503] ? __pfx_get_random_bytes_user+0x10/0x10 [ 684.126964][T17503] ? __mutex_unlock_slowpath+0x164/0x650 [ 684.128957][T17503] ? __fget_files+0x244/0x3f0 [ 684.130669][T17503] __x64_sys_getrandom+0x184/0x290 [ 684.132511][T17503] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 684.134600][T17503] do_syscall_64+0xcd/0x250 [ 684.136292][T17503] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 684.138478][T17503] RIP: 0033:0x7f393cd7dff9 [ 684.140131][T17503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 684.147156][T17503] RSP: 002b:00007f393da90038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 684.150225][T17503] RAX: ffffffffffffffda RBX: 00007f393cf35f80 RCX: 00007f393cd7dff9 [ 684.153155][T17503] RDX: 0000000000000000 RSI: 00000000ffffff4f RDI: 0000000020000600 [ 684.156032][T17503] RBP: 00007f393da90090 R08: 0000000000000000 R09: 0000000000000000 [ 684.158852][T17503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 684.161664][T17503] R13: 0000000000000000 R14: 00007f393cf35f80 R15: 00007fff38f50f78 [ 684.164545][T17503] [ 684.165778][ C3] vkms_vblank_simulate: vblank timer overrun [ 684.462582][T17515] bond0: Unable to set peer notification delay as MII monitoring is disabled [ 684.462865][T17513] random: crng reseeded on system resumption [ 684.494305][T17517] FAULT_INJECTION: forcing a failure. [ 684.494305][T17517] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 684.498086][T17517] CPU: 1 UID: 0 PID: 17517 Comm: syz.2.3352 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 684.501647][T17517] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 684.504995][T17517] Call Trace: [ 684.505905][T17517] [ 684.506698][T17517] dump_stack_lvl+0x16c/0x1f0 [ 684.508017][T17517] should_fail_ex+0x497/0x5b0 [ 684.509427][T17517] _copy_to_user+0x30/0xc0 [ 684.510628][T17517] simple_read_from_buffer+0xd0/0x160 [ 684.512261][T17517] proc_fail_nth_read+0x198/0x270 [ 684.513752][T17517] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 684.515349][T17517] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 684.517481][T17517] vfs_read+0x1ce/0xbd0 [ 684.518880][T17517] ? __fget_files+0x23a/0x3f0 [ 684.520421][T17517] ? fdget_pos+0x24c/0x360 [ 684.521927][T17517] ? __pfx_lock_release+0x10/0x10 [ 684.523575][T17517] ? trace_lock_acquire+0x14a/0x1d0 [ 684.525284][T17517] ? __pfx_vfs_read+0x10/0x10 [ 684.526946][T17517] ? __pfx___mutex_lock+0x10/0x10 [ 684.528795][T17517] ? __fget_files+0x244/0x3f0 [ 684.530497][T17517] ksys_read+0x12f/0x260 [ 684.531979][T17517] ? __pfx_ksys_read+0x10/0x10 [ 684.533285][T17517] do_syscall_64+0xcd/0x250 [ 684.534573][T17517] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 684.536177][T17517] RIP: 0033:0x7f5d5737ca3c [ 684.537436][T17517] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 684.542902][T17517] RSP: 002b:00007f5d5811d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 684.545147][T17517] RAX: ffffffffffffffda RBX: 00007f5d57535f80 RCX: 00007f5d5737ca3c [ 684.547327][T17517] RDX: 000000000000000f RSI: 00007f5d5811d0a0 RDI: 0000000000000004 [ 684.549580][T17517] RBP: 00007f5d5811d090 R08: 0000000000000000 R09: 0000000000000000 [ 684.552455][T17517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 684.552952][ T64] usb 6-1: USB disconnect, device number 47 [ 684.554663][T17517] R13: 0000000000000000 R14: 00007f5d57535f80 R15: 00007ffcc8a5db88 [ 684.554680][T17517] [ 684.594801][T17519] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3354'. [ 684.608584][T17521] binder: BINDER_SET_CONTEXT_MGR already set [ 684.610730][T17521] binder: 17520:17521 ioctl 4018620d 200001c0 returned -16 [ 684.980738][ T5377] usb 7-1: new high-speed USB device number 44 using dummy_hcd [ 685.243917][ T5377] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 685.247396][ T5377] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 685.250793][ T5377] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 685.254006][ T5377] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 685.261410][ T5377] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 685.264572][ T5377] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 685.270843][T17533] program syz.3.3357 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 685.288486][ T5377] usb 7-1: Product: syz [ 685.290160][ T5377] usb 7-1: Manufacturer: syz [ 685.316271][T17533] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 685.350745][ T5377] cdc_wdm 7-1:1.0: skipping garbage [ 685.361959][ T5377] cdc_wdm 7-1:1.0: skipping garbage [ 685.382307][ T5377] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device [ 685.384455][ T5377] cdc_wdm 7-1:1.0: Unknown control protocol [ 685.550911][ T2789] usb 7-1: USB disconnect, device number 44 [ 686.227732][T17553] FAULT_INJECTION: forcing a failure. [ 686.227732][T17553] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 686.228942][ T64] usb 8-1: new high-speed USB device number 47 using dummy_hcd [ 686.235081][T17553] CPU: 3 UID: 0 PID: 17553 Comm: syz.1.3363 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 686.238747][T17553] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 686.242283][T17553] Call Trace: [ 686.243270][T17553] [ 686.244282][T17553] dump_stack_lvl+0x16c/0x1f0 [ 686.245912][T17553] should_fail_ex+0x497/0x5b0 [ 686.247514][T17553] _copy_from_user+0x30/0xf0 [ 686.249069][T17553] copy_msghdr_from_user+0x99/0x160 [ 686.250784][T17553] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 686.252762][T17553] ? kfree+0x274/0x4b0 [ 686.254250][T17553] ? __pfx___lock_acquire+0x10/0x10 [ 686.256206][T17553] ___sys_recvmsg+0xdc/0x1a0 [ 686.257914][T17553] ? __pfx____sys_recvmsg+0x10/0x10 [ 686.259738][T17553] ? find_held_lock+0x2d/0x110 [ 686.261370][T17553] ? lock_acquire+0x2f/0xb0 [ 686.262898][T17553] ? __pfx___might_resched+0x10/0x10 [ 686.264690][T17553] ? __might_fault+0xe3/0x190 [ 686.266273][T17553] do_recvmmsg+0x2ba/0x750 [ 686.267800][T17553] ? __pfx_do_recvmmsg+0x10/0x10 [ 686.269625][T17553] ? vfs_write+0x14d/0x1140 [ 686.271323][T17553] ? __mutex_unlock_slowpath+0x164/0x650 [ 686.273242][T17553] ? __fget_files+0x244/0x3f0 [ 686.274938][T17553] __x64_sys_recvmmsg+0x239/0x290 [ 686.276720][T17553] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 686.278620][T17553] do_syscall_64+0xcd/0x250 [ 686.280127][T17553] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 686.282124][T17553] RIP: 0033:0x7fa9ddf7dff9 [ 686.283437][T17553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 686.288665][T17553] RSP: 002b:00007fa9decfb038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 686.291150][T17553] RAX: ffffffffffffffda RBX: 00007fa9de136058 RCX: 00007fa9ddf7dff9 [ 686.293874][T17553] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000005 [ 686.296651][T17553] RBP: 00007fa9decfb090 R08: 0000000000000000 R09: 0000000000000000 [ 686.299360][T17553] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 686.302030][T17553] R13: 0000000000000000 R14: 00007fa9de136058 R15: 00007ffe5bb9f088 [ 686.304766][T17553] [ 686.306156][ C3] vkms_vblank_simulate: vblank timer overrun [ 686.464881][T17555] program syz.2.3364 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 686.477032][ T64] usb 8-1: Using ep0 maxpacket: 8 [ 686.480358][ T64] usb 8-1: config index 0 descriptor too short (expected 301, got 45) [ 686.483329][ T64] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 686.487425][ T64] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 686.490752][ T64] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 686.494187][ T64] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 686.499549][ T64] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 686.502728][ T64] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 686.535864][T17555] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 686.705260][ T64] usb 8-1: usb_control_msg returned -32 [ 686.707345][ T64] usbtmc 8-1:16.0: can't read capabilities [ 687.340458][T17544] program syz.0.3359 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 687.356383][T17544] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 687.449831][T17576] xt_recent: Unsupported userspace flags (000000de) [ 687.458012][T17576] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3368'. [ 687.811277][T17585] netlink: 'syz.2.3371': attribute type 10 has an invalid length. [ 687.963931][T17591] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17591 comm=syz.2.3373 [ 687.967895][T17591] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3373'. [ 687.997349][T17594] program syz.1.3370 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 688.028913][T17594] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 688.755745][T17599] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4) [ 688.757512][T17599] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 688.760145][T17599] vhci_hcd vhci_hcd.0: Device attached [ 688.764328][T17599] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_cmd_wq": -EINTR [ 688.771431][T17603] vhci_hcd: connection closed [ 688.785897][ T1110] vhci_hcd: stop threads [ 688.790013][ T1110] vhci_hcd: release socket [ 688.797103][ T1110] vhci_hcd: disconnect device [ 688.864746][ T5748] usb 8-1: USB disconnect, device number 47 [ 689.032264][T17614] program syz.1.3378 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 689.234135][T17614] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 689.238002][ T39] audit: type=1400 audit(1728548610.115:5639): avc: denied { listen } for pid=17630 comm="syz.3.3380" lport=129 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 689.250878][T17631] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=17631 comm=syz.3.3380 [ 689.349897][T17583] program syz.0.3369 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 689.363481][T17583] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 689.733099][T17654] program syz.2.3385 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 689.751202][T17654] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 690.537506][T17671] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3393'. [ 690.702836][T17675] FAULT_INJECTION: forcing a failure. [ 690.702836][T17675] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 690.706888][T17675] CPU: 1 UID: 0 PID: 17675 Comm: syz.1.3394 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 690.709717][T17675] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 690.712464][T17675] Call Trace: [ 690.713345][T17675] [ 690.714126][T17675] dump_stack_lvl+0x16c/0x1f0 [ 690.715357][T17675] should_fail_ex+0x497/0x5b0 [ 690.716588][T17675] _copy_from_iter+0x2a1/0x1540 [ 690.717864][T17675] ? _copy_from_iter+0x15e/0x1540 [ 690.719170][T17675] ? __pfx__copy_from_iter+0x10/0x10 [ 690.720535][T17675] ? __pfx__copy_from_iter+0x10/0x10 [ 690.721908][T17675] ? __virt_addr_valid+0x1a4/0x590 [ 690.723269][T17675] copy_page_from_iter+0xa5/0x120 [ 690.724584][T17675] skb_copy_datagram_from_iter+0x29b/0x710 [ 690.726119][T17675] unix_stream_sendmsg+0x4dc/0x1000 [ 690.727471][T17675] ? __pfx_unix_stream_sendmsg+0x10/0x10 [ 690.728920][T17675] ? __import_iovec+0x1fd/0x6e0 [ 690.730201][T17675] ____sys_sendmsg+0xaaf/0xc90 [ 690.731449][T17675] ? copy_msghdr_from_user+0x10b/0x160 [ 690.732860][T17675] ? __pfx_____sys_sendmsg+0x10/0x10 [ 690.734267][T17675] ? __pfx___lock_acquire+0x10/0x10 [ 690.735614][T17675] ___sys_sendmsg+0x135/0x1e0 [ 690.736846][T17675] ? __pfx____sys_sendmsg+0x10/0x10 [ 690.738230][T17675] ? lock_acquire+0x2f/0xb0 [ 690.739413][T17675] ? __fget_files+0x40/0x3f0 [ 690.740627][T17675] ? fdget+0x176/0x210 [ 690.741714][T17675] __sys_sendmsg+0x117/0x1f0 [ 690.742919][T17675] ? __pfx___sys_sendmsg+0x10/0x10 [ 690.744262][T17675] ? __fget_files+0x244/0x3f0 [ 690.745528][T17675] do_syscall_64+0xcd/0x250 [ 690.746714][T17675] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 690.748243][T17675] RIP: 0033:0x7fa9ddf7dff9 [ 690.749424][T17675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 690.754342][T17675] RSP: 002b:00007fa9decfb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 690.756520][T17675] RAX: ffffffffffffffda RBX: 00007fa9de136058 RCX: 00007fa9ddf7dff9 [ 690.758570][T17675] RDX: 0000000000000000 RSI: 00000000200029c0 RDI: 0000000000000008 [ 690.760617][T17675] RBP: 00007fa9decfb090 R08: 0000000000000000 R09: 0000000000000000 [ 690.762664][T17675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 690.764703][T17675] R13: 0000000000000000 R14: 00007fa9de136058 R15: 00007ffe5bb9f088 [ 690.766770][T17675] [ 691.034101][T17691] [ 691.034890][T17691] ====================================================== [ 691.036932][T17691] WARNING: possible circular locking dependency detected [ 691.038953][T17691] 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 Not tainted [ 691.041113][T17691] ------------------------------------------------------ [ 691.044160][T17691] syz.0.3399/17691 is trying to acquire lock: [ 691.045841][T17691] ffffffff90173448 (rfcomm_mutex){+.+.}-{3:3}, at: rfcomm_dlc_exists+0x5f/0x1a0 [ 691.048462][T17691] [ 691.048462][T17691] but task is already holding lock: [ 691.050732][T17691] ffffffff90178408 (rfcomm_ioctl_mutex){+.+.}-{3:3}, at: rfcomm_dev_ioctl+0x905/0x1ca0 [ 691.053527][T17691] [ 691.053527][T17691] which lock already depends on the new lock. [ 691.053527][T17691] [ 691.056399][T17691] [ 691.056399][T17691] the existing dependency chain (in reverse order) is: [ 691.058864][T17691] [ 691.058864][T17691] -> #3 (rfcomm_ioctl_mutex){+.+.}-{3:3}: [ 691.061008][T17691] __mutex_lock+0x175/0x9c0 [ 691.062408][T17691] rfcomm_dev_ioctl+0x905/0x1ca0 [ 691.063930][T17691] rfcomm_sock_ioctl+0xb4/0xe0 [ 691.065445][T17691] sock_do_ioctl+0x116/0x280 [ 691.066881][T17691] sock_ioctl+0x228/0x6c0 [ 691.068212][T17691] __x64_sys_ioctl+0x18f/0x220 [ 691.069708][T17691] do_syscall_64+0xcd/0x250 [ 691.071130][T17691] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 691.072912][T17691] [ 691.072912][T17691] -> #2 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}: [ 691.075447][T17691] lock_sock_nested+0x3a/0xf0 [ 691.076951][T17691] rfcomm_sk_state_change+0x6d/0x3b0 [ 691.078679][T17691] __rfcomm_dlc_close+0x28c/0x700 [ 691.080295][T17691] rfcomm_dlc_close+0x1eb/0x240 [ 691.082060][T17691] __rfcomm_sock_close+0xa7/0x230 [ 691.083631][T17691] rfcomm_sock_shutdown+0xd5/0x230 [ 691.085326][T17691] rfcomm_sock_release+0x5d/0x140 [ 691.086892][T17691] __sock_release+0xb0/0x270 [ 691.088654][T17691] sock_close+0x1c/0x30 [ 691.090341][T17691] __fput+0x3f6/0xb60 [ 691.091838][T17691] task_work_run+0x14e/0x250 [ 691.093283][T17691] get_signal+0x1ca/0x2770 [ 691.094798][T17691] arch_do_signal_or_restart+0x90/0x7e0 [ 691.097059][T17691] syscall_exit_to_user_mode+0x150/0x2a0 [ 691.099204][T17691] do_syscall_64+0xda/0x250 [ 691.101051][T17691] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 691.103322][T17691] [ 691.103322][T17691] -> #1 (&d->lock){+.+.}-{3:3}: [ 691.105657][T17691] __mutex_lock+0x175/0x9c0 [ 691.107319][T17691] __rfcomm_dlc_close+0x235/0x700 [ 691.109390][T17691] rfcomm_dlc_close+0x1eb/0x240 [ 691.111372][T17691] __rfcomm_sock_close+0xa7/0x230 [ 691.113461][T17691] rfcomm_sock_shutdown+0xd5/0x230 [ 691.115570][T17691] rfcomm_sock_release+0x5d/0x140 [ 691.117402][T17691] __sock_release+0xb0/0x270 [ 691.118796][T17691] sock_close+0x1c/0x30 [ 691.120067][T17691] __fput+0x3f6/0xb60 [ 691.121362][T17691] task_work_run+0x14e/0x250 [ 691.122683][T17691] get_signal+0x1ca/0x2770 [ 691.123994][T17691] arch_do_signal_or_restart+0x90/0x7e0 [ 691.125607][T17691] syscall_exit_to_user_mode+0x150/0x2a0 [ 691.127370][T17691] do_syscall_64+0xda/0x250 [ 691.129189][T17691] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 691.131613][T17691] [ 691.131613][T17691] -> #0 (rfcomm_mutex){+.+.}-{3:3}: [ 691.134168][T17691] __lock_acquire+0x250b/0x3ce0 [ 691.135980][T17691] lock_acquire.part.0+0x11b/0x380 [ 691.137979][T17691] __mutex_lock+0x175/0x9c0 [ 691.139830][T17691] rfcomm_dlc_exists+0x5f/0x1a0 [ 691.141806][T17691] rfcomm_dev_ioctl+0x9e6/0x1ca0 [ 691.143768][T17691] rfcomm_sock_ioctl+0xb4/0xe0 [ 691.145532][T17691] sock_do_ioctl+0x116/0x280 [ 691.147404][T17691] sock_ioctl+0x228/0x6c0 [ 691.148897][T17691] __x64_sys_ioctl+0x18f/0x220 [ 691.150549][T17691] do_syscall_64+0xcd/0x250 [ 691.151968][T17691] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 691.153801][T17691] [ 691.153801][T17691] other info that might help us debug this: [ 691.153801][T17691] [ 691.156882][T17691] Chain exists of: [ 691.156882][T17691] rfcomm_mutex --> sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM --> rfcomm_ioctl_mutex [ 691.156882][T17691] [ 691.161510][T17691] Possible unsafe locking scenario: [ 691.161510][T17691] [ 691.163702][T17691] CPU0 CPU1 [ 691.165701][T17691] ---- ---- [ 691.167736][T17691] lock(rfcomm_ioctl_mutex); [ 691.169495][T17691] lock(sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM); [ 691.172607][T17691] lock(rfcomm_ioctl_mutex); [ 691.175262][T17691] lock(rfcomm_mutex); [ 691.176839][T17691] [ 691.176839][T17691] *** DEADLOCK *** [ 691.176839][T17691] [ 691.179392][T17691] 2 locks held by syz.0.3399/17691: [ 691.181370][T17691] #0: ffff88803da1f258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: rfcomm_sock_ioctl+0xa7/0xe0 [ 691.185207][T17691] #1: ffffffff90178408 (rfcomm_ioctl_mutex){+.+.}-{3:3}, at: rfcomm_dev_ioctl+0x905/0x1ca0 [ 691.189017][T17691] [ 691.189017][T17691] stack backtrace: [ 691.191329][T17691] CPU: 1 UID: 0 PID: 17691 Comm: syz.0.3399 Not tainted 6.12.0-rc2-syzkaller-00061-gb983b271662b #0 [ 691.194582][T17691] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 691.198162][T17691] Call Trace: [ 691.199421][T17691] [ 691.200571][T17691] dump_stack_lvl+0x116/0x1f0 [ 691.202430][T17691] print_circular_bug+0x41c/0x610 [ 691.204058][T17691] check_noncircular+0x31a/0x400 [ 691.205522][T17691] ? __pfx_check_noncircular+0x10/0x10 [ 691.207034][T17691] ? mark_lock+0xb5/0xc60 [ 691.208272][T17691] ? __pfx___lock_acquire+0x10/0x10 [ 691.210022][T17691] ? lockdep_lock+0xc6/0x200 [ 691.211801][T17691] ? __pfx_lockdep_lock+0x10/0x10 [ 691.213313][T17691] ? find_held_lock+0x2d/0x110 [ 691.214659][T17691] __lock_acquire+0x250b/0x3ce0 [ 691.216077][T17691] ? __pfx___lock_acquire+0x10/0x10 [ 691.217610][T17691] ? finish_task_switch.isra.0+0x217/0xcc0 [ 691.219264][T17691] ? __switch_to+0x749/0x1180 [ 691.220647][T17691] lock_acquire.part.0+0x11b/0x380 [ 691.222037][T17691] ? rfcomm_dlc_exists+0x5f/0x1a0 [ 691.223402][T17691] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 691.224823][T17691] ? rcu_is_watching+0x12/0xc0 [ 691.226601][T17691] ? trace_lock_acquire+0x14a/0x1d0 [ 691.228419][T17691] ? rfcomm_dlc_exists+0x5f/0x1a0 [ 691.230289][T17691] ? lock_acquire+0x2f/0xb0 [ 691.231905][T17691] ? rfcomm_dlc_exists+0x5f/0x1a0 [ 691.233708][T17691] __mutex_lock+0x175/0x9c0 [ 691.235335][T17691] ? rfcomm_dlc_exists+0x5f/0x1a0 [ 691.236980][T17691] ? rfcomm_dlc_exists+0x5f/0x1a0 [ 691.238839][T17691] ? __pfx___mutex_lock+0x10/0x10 [ 691.240642][T17691] ? rfcomm_dlc_exists+0x5f/0x1a0 [ 691.242248][T17691] rfcomm_dlc_exists+0x5f/0x1a0 [ 691.243832][T17691] rfcomm_dev_ioctl+0x9e6/0x1ca0 [ 691.245288][T17691] ? irqentry_exit+0x3b/0x90 [ 691.246581][T17691] ? __pfx_rfcomm_dev_ioctl+0x10/0x10 [ 691.248218][T17691] rfcomm_sock_ioctl+0xb4/0xe0 [ 691.249885][T17691] sock_do_ioctl+0x116/0x280 [ 691.251311][T17691] ? __pfx_sock_do_ioctl+0x10/0x10 [ 691.252691][T17691] ? ioctl_has_perm.constprop.0.isra.0+0x2ea/0x460 [ 691.254515][T17691] ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460 [ 691.256371][T17691] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 691.258273][T17691] sock_ioctl+0x228/0x6c0 [ 691.259801][T17691] ? __pfx_sock_ioctl+0x10/0x10 [ 691.261615][T17691] ? selinux_file_ioctl+0x180/0x270 [ 691.263515][T17691] ? selinux_file_ioctl+0xb4/0x270 [ 691.265447][T17691] ? __pfx_sock_ioctl+0x10/0x10 [ 691.267169][T17691] __x64_sys_ioctl+0x18f/0x220 [ 691.268902][T17691] do_syscall_64+0xcd/0x250 [ 691.270497][T17691] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 691.272540][T17691] RIP: 0033:0x7f1f1d37dff9 [ 691.274244][T17691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 691.281416][T17691] RSP: 002b:00007f1f1e12c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 691.284329][T17691] RAX: ffffffffffffffda RBX: 00007f1f1d535f80 RCX: 00007f1f1d37dff9 [ 691.287256][T17691] RDX: 0000000020000100 RSI: 00000000400452c8 RDI: 0000000000000004 [ 691.290386][T17691] RBP: 00007f1f1d3f0296 R08: 0000000000000000 R09: 0000000000000000 [ 691.293510][T17691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 691.296522][T17691] R13: 0000000000000000 R14: 00007f1f1d535f80 R15: 00007fff46513618 [ 691.299623][T17691] VM DIAGNOSIS: 07:57:37 Registers: info registers vcpu 0 CPU#0 RAX=00000000019f9344 RBX=0000000000000000 RCX=ffffffff8b21e0b9 RDX=ffffed100d4c7026 RSI=ffffffff8bd1a000 RDI=ffffffff81647e7c RBP=fffffbfff1bd2af8 RSP=ffffffff8de07e20 R8 =0000000000000000 R9 =ffffed100d4c7025 R10=ffff88806a63812b R11=ffffffff8b6f86c0 R12=0000000000000000 R13=ffffffff8de957c0 R14=ffffffff905f37c8 R15=0000000000000000 RIP=ffffffff8b21f49f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020048000 CR3=0000000028724000 CR4=00352ef0 DR0=0000000000000010 DR1=0000000000000006 DR2=0000000000000006 DR3=0000000000000003 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000fffffffe Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe5bb9f420 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9ddff1133 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9ddff1140 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9ddff113a ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9ddff114e ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9ddff11d4 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9ddff12b2 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff850a76b5 RDI=ffffffff9aae3b40 RBP=ffffffff9aae3b00 RSP=ffffc900061cf190 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d R12=0000000000000000 R13=000000000000002d R14=ffffffff850a7650 R15=0000000000000000 RIP=ffffffff850a76df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f1f1e12c6c0 ffffffff 00c00000 GS =0000 ffff88806a700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000555583385808 CR3=0000000061d4a000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=0000000000000fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8132bfb8 ffffffff8132bfb8 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8132bfb8 ffffffff8132bfb8 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 ffffffff8132bfb8 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5d573f1133 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5d573f1140 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5d573f113a ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5d573f114e ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5d573f11d4 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5d573f12b2 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8132bfb8 ffffffff8132bfb8 ffffffff8132bf8b ffffffff8132bf8b ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5d5806d100 00007f5d5750b440 00007f5d00040008 0000000f0010000c ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5d5750b498 00007f5d5750b490 00007f5d5750b488 00007f5d5750b480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=ffffffff90ef8a1a RBX=ffffffff906e6aa8 RCX=dffffc0000000000 RDX=ffffffff81348928 RSI=0000000000000000 RDI=ffffffff906e6a98 RBP=ffffffff906e6aac RSP=ffffc900065dec38 R8 =ffffffff90ef8a44 R9 =ffffffff90f07e14 R10=ffffc900065ded38 R11=0000000000003489 R12=ffffffff906e6aa8 R13=ffffffff81348993 R14=ffffffff906e6a98 R15=0000000000000004 RIP=ffffffff813d445e RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f393c7de6c0 ffffffff 00c00000 GS =0000 ffff88806a800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f74c15ffc70 CR3=000000002faf6000 CR4=00352ef0 DR0=0000000000000010 DR1=0000000000000006 DR2=0000000000000006 DR3=0000000000000003 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=000000000000003f Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9ddff1133 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9ddff1140 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9ddff113a ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9ddff114e ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9ddff11d4 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9ddff12b2 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9de10b488 00007fa9de10b480 00007fa9de10b478 00007fa9de10b450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9dec6d100 00007fa9de10b440 00007fa9de10b458 0000000700080006 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9de10b498 00007fa9de10b490 00007fa9de10b488 00007fa9de10b480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000ebe14c RBX=0000000000000003 RCX=ffffffff8b21e0b9 RDX=ffffed100d527026 RSI=ffffffff8bd1a000 RDI=ffffffff81647e7c RBP=ffffed1003b5b488 RSP=ffffc900001a7e08 R8 =0000000000000000 R9 =ffffed100d527025 R10=ffff88806a93812b R11=0000000000000000 R12=0000000000000003 R13=ffff88801dada440 R14=ffffffff905f37c8 R15=0000000000000000 RIP=ffffffff8b21f49f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a900000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f02dc20b440 CR3=000000002387a000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000c0fffc00 Opmask01=00000000000000ff Opmask02=00000000000000ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000015 000000000001df8a ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055558b2d8424 000055558b2d8420 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055558b2d54a8 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055558b2e955f 000055558b2e9100 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055558b2e6b04 000055558b2e6b00 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000030323335 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 c002100008800401 00000e0806060133 ac02d61000089003 1280040880030380 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 9c03ffffffff0403 ffffffff04641000 06014c9a20100006 100020100006104d ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0800039803420800 0390030010000380 0301000010080603 ffffffff0404014d ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0035c09003001000 35c0800301800403 800400100006014f d400080003a00300 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010100000808060a 800404014d82006c 6f6f7468746501ff ffffffffffffffef ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 080a800303ffffff ff0435c080040010 0000080008014fe4 12100035c0b00300 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 100035c0a0031010 0035c09003001000 35c0800301800403 800400100006014f ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d400080003a00300 0800039803420800 0390030010000380 0301000010080603 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000