last executing test programs: 2.277956483s ago: executing program 1 (id=514): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_MPU={0x8}]}}]}, 0x3c}}, 0x0) 2.21967909s ago: executing program 1 (id=516): r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x2}, 0x0, 0x0, r0) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000240)="0100000200373a4541062101a59ea940d2cb0b3692f5020000a00000050000000000eb000000a5e5be21c44e328e68f3922af831e4e51bfb30f7788fd57e51bc464355bd646d037ccc16ddb08a7b3a697a793acf37119e61f502d8bbb016f701890700000068d945af468c1c9090c76906b94e0f27761c75e58c82da54d010078660684a4106855bea1ce67fe118aa4acabb5bee7f082d23a16b010c92471eba59152e716af8776ab90ac47a9680aa613a56aa11bfa73af4c4e94b5cfc855f0e910186d7e68ac24f8b125140ac5f7f4819168ce1c25550c6773b410119873dd9827757d96c5e8aa4617cc54c5e67060a9266f416b78f774e53ca1f84e698d1fe3cee10a85882cbecb29f2a22535ac58e64d95ecbab66f54373b94475e05b79a0a61bc2ae1e5cd664c169fa6c29", 0x12d, r1) 2.140419696s ago: executing program 1 (id=519): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000000)={[{@lowerdir, 0x3a}], [], 0x2e}) bind$alg(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140), 0x0) syz_open_procfs(0x0, 0x0) syz_emit_ethernet(0x86, &(0x7f0000000000)={@broadcast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x1b59, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "0002000000753904030405a024f0dd00", "9384bbeb3018ad591b661fe808b21b77", {"694c875dfb1be5d2a0057a62022a1564", "a329d3a13bd5b6cc6a9471314a1d8c69"}}}}}}}, 0x0) openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0) 2.060803172s ago: executing program 1 (id=520): syz_open_dev$loop(0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x1) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) r4 = accept4(r3, 0x0, 0x0, 0x0) sendmmsg$alg(r4, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe1a}], 0x1, &(0x7f0000000380)=[@op={0x18}], 0x18}], 0x4924924924924b9, 0x0) recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/73, 0x49}, {&(0x7f0000000200)=""/83, 0x53}], 0x3a}, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@deltaction={0x14}, 0x14}}, 0x0) socket$inet6(0xa, 0x0, 0x7) 1.487346349s ago: executing program 2 (id=523): syz_io_uring_setup(0x3732, &(0x7f0000000700)={0x0, 0xfffffffd, 0x0, 0x0, 0xbc}, &(0x7f0000000000), &(0x7f0000000640)) syz_io_uring_setup(0x0, &(0x7f00000003c0)={0x0, 0x0, 0x2, 0x3}, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000000000000100000008000000010000000000000000000000000000000000000000000000000000000000000001"]) ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net/vlan/config\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0) chdir(&(0x7f0000000280)='./file0\x00') r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0) fcntl$lock(r4, 0x25, &(0x7f0000000000)={0x1}) fcntl$lock(r4, 0x7, &(0x7f00000006c0)) r5 = io_uring_setup(0x6a3f, &(0x7f00000002c0)={0x0, 0x4, 0x400, 0xfffffffb, 0x10d}) r6 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$CAPI_REGISTER(r6, 0x400c4301, &(0x7f0000000080)={0x0, 0x0, 0x800}) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r7 = inotify_init() inotify_add_watch(r7, &(0x7f0000000100)='./file0\x00', 0x82000000) inotify_add_watch(r7, &(0x7f0000000080)='./file0\x00', 0x16000109) read(r6, 0x0, 0x0) close_range(r5, 0xffffffffffffffff, 0x0) openat$vimc2(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) preadv(r3, &(0x7f0000000100)=[{&(0x7f0000000000)=""/9, 0x2c}], 0x1, 0x61, 0x0) r8 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r9 = dup(r8) ioctl$PTP_EXTTS_REQUEST2(r9, 0x40603d10, &(0x7f0000000040)) 1.146298073s ago: executing program 1 (id=525): r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0x8400017e) mkdir(&(0x7f0000000600)='./file0\x00', 0x0) r1 = dup(r0) ioctl$FIONREAD(r1, 0x541b, &(0x7f00000000c0)) 1.07760205s ago: executing program 1 (id=526): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x8000}, 0x48) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000001c0)='objagg_obj_put\x00'}, 0x10) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "7e12ddc5a89047bf00"}) pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) write$P9_RVERSION(r2, &(0x7f0000000380)=ANY=[@ANYBLOB="1500000065ffff0100001a11b5f90000003950323030302e4c"], 0xfffffffffffffffc) r3 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000180)=0x6) read(r3, 0x0, 0x2006) r4 = dup2(r3, r1) mmap(&(0x7f0000796000/0x7000)=nil, 0x7000, 0xfffffffffdfffffc, 0x810, r0, 0xb36d7000) r5 = userfaultfd(0x0) r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301) r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10) ioctl$USBDEVFS_REAPURB(r6, 0x4008550c, 0x0) ioctl$USBDEVFS_FREE_STREAMS(r6, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002302230102090500000010000020d3"]) ioctl$UFFDIO_API(r5, 0xc018aa3f, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX=r3, @ANYRESDEC=r6, @ANYRESHEX=r7, @ANYRES16=r6, @ANYRESDEC=r5, @ANYRES32=r4, @ANYRES32=r7], 0x0, 0x1, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x90) r8 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000000000020961b0a0000000000000109022d000100000000090400000503000000092100000001220500090581034000"], 0x0) syz_usb_control_io$hid(r8, 0x0, 0x0) syz_usb_control_io(r8, &(0x7f0000000d40)={0x2c, &(0x7f0000000780)=ANY=[@ANYBLOB='\x00\x00\a\x00\x00'], 0x0, 0x0, 0x0, 0x0}, 0x0) syz_open_dev$hidraw(&(0x7f0000000280), 0x0, 0x4a141) ioctl$HIDIOCGFEATURE(0xffffffffffffffff, 0xc0404807, 0x0) r9 = syz_open_dev$hidraw(&(0x7f0000000940), 0x0, 0x0) read$hidraw(r9, 0x0, 0x600) r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x87, 0x0, 0x0, 0x7ffc1ffb}]}) setgroups(0x0, 0x0) close_range(r10, 0xffffffffffffffff, 0x0) 492.185822ms ago: executing program 2 (id=529): r0 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x5}, 0x10) write(r0, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff02000000000000", 0x1e5) recvmmsg(r0, &(0x7f0000002dc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x3, 0x0, 0x0) 417.636434ms ago: executing program 2 (id=534): r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0x8400017e) mkdir(&(0x7f0000000600)='./file0\x00', 0x0) r1 = dup(r0) ioctl$FIONREAD(r1, 0x541b, &(0x7f00000000c0)) 346.576792ms ago: executing program 0 (id=536): mkdir(&(0x7f0000001200)='./control\x00', 0x0) chmod(&(0x7f0000000940)='./control\x00', 0x9c32f69e6caa24ef) lchown(&(0x7f0000000000)='./control\x00', 0x0, 0xee00) capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000280)) open(&(0x7f0000000080)='./control\x00', 0x551a01, 0x408) 346.112836ms ago: executing program 2 (id=537): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) r1 = syz_open_procfs(0x0, &(0x7f0000001080)='smaps_rollup\x00') read$FUSE(r1, &(0x7f0000002e40)={0x2020}, 0x2020) 321.943093ms ago: executing program 0 (id=539): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000640)=@broute={'broute\x00', 0x20, 0x1, 0x170, [], 0x0, 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0000000000000000ff0000000000000000d17d0000000000ce1d08d4b51d380b0000000000000000ffffffff0000000000000000892ee0987c31140000000000000000000000000000080000000000000800000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000000200000006e72300000000000000000000000000079616d3000000001000000000000b40079616d30000000000800000000000000766574b7708ad56f5f7465616d0000000180c2000000000000000000aaaaaaaaaa000000000000000000b0000000b0fcffffdf"]}, 0x175) write$binfmt_script(r0, &(0x7f0000000000), 0xfea7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000640)=@broute={'broute\x00', 0x7001, 0x1, 0x170, [], 0x0, 0x0, 0x0}, 0x1e8) 279.096547ms ago: executing program 2 (id=542): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) setitimer(0x0, 0x0, 0x0) 200.234259ms ago: executing program 0 (id=543): r0 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x5}, 0x10) write(r0, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff02000000000000", 0x1e5) recvmmsg(r0, &(0x7f0000002dc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x3, 0x0, 0x0) 199.941491ms ago: executing program 2 (id=544): r0 = socket$inet_sctp(0x2, 0x5, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e22, @local}, 0x10) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000040)=ANY=[@ANYBLOB="03"], 0xa) r2 = socket(0xa, 0x1, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000000c0)={0x44, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_FRAME={0x26, 0x33, @action={{{}, {}, @device_b}, @channel_switch={0xd, 0x4, {{0x25, 0x3}, @val={0x3e, 0x1}, @void}}}}]}, 0x44}}, 0x0) sendmsg$NL80211_CMD_SET_PMK(r2, &(0x7f0000000280)={&(0x7f0000000100), 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x7c, r4, 0x711, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "879ac2faaef6b6aea37487501ed0a4f7"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "ab4b97508fa4a66be791be9c081edb24"}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_PMK={0x14, 0xfe, "62642ccf566a16b1aa74b2a1159de7dd"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "27b498c2ad672415284bae869d692d9f"}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4810}, 0x40040) close(r2) r6 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000002f00)={0x0, 0x10, &(0x7f0000002ec0)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000002f40)=0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000000)={0x1, [0x0]}, &(0x7f0000000080)=0x8) sendmmsg$inet_sctp(r2, &(0x7f00000019c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="4900000000000000840000000100000000000000080200000000000000000000000000000000060000000000", @ANYRES32=r7], 0x30}], 0x1, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000400)={r7, 0x8e, "7a8bd591f7f5ffcf25116ca93f8485947253593f7cafbbe4475881fd897ff38f246d24a70ddfc077c17f882f681153be24db98eba6ba509fcb9813452118dc4e1b6720392ea2d3fb8c095e7e885f1808df0be6baf01837a43c8ca3bc9ed875bc1393b0376effac6fa5b13081356b85ddb1b37f3d14e3c12ba12e365621bb5b9cbb45c1a964231f73742ea092b1c6"}, &(0x7f00000001c0)=0x96) setsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000080)={r7, 0x4}, 0x8) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000000)={r7, 0x3ff, 0x2, [0x8, 0x69c1]}, 0xc) listen(r0, 0x1ff) sendto$inet(0xffffffffffffffff, &(0x7f0000000300)="ab", 0x1, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10) sendto$inet(r0, &(0x7f0000000300)="ab", 0xff05, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10) 199.606588ms ago: executing program 0 (id=545): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = userfaultfd(0x80001) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f00000000c0)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0) ioctl$UFFDIO_COPY(r0, 0xc020aa04, &(0x7f0000000040)={&(0x7f0000ff9000/0x4000)=nil, &(0x7f000092a000/0x1000)=nil, 0x4000, 0x0, 0x6040000}) 198.734ms ago: executing program 3 (id=546): ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, 0x0, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = dup2(r0, r0) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x60, &(0x7f0000000080)={'filter\x00', 0x4, [{0x11, 0x11}, {0x0, 0x100000000000000}]}, 0x68) 124.281693ms ago: executing program 0 (id=547): setreuid(0x0, 0xee01) msgctl$IPC_RMID(0x0, 0x0) r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000000140)=[{&(0x7f00000001c0)="580000001400192340834b80040d8c560a066e0202ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200060c10000000010000000000", 0x58}], 0x1) 124.100582ms ago: executing program 3 (id=548): mkdir(&(0x7f0000001200)='./control\x00', 0x0) chmod(&(0x7f0000000940)='./control\x00', 0x9c32f69e6caa24ef) lchown(&(0x7f0000000000)='./control\x00', 0x0, 0xee00) capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000280)) open(&(0x7f0000000080)='./control\x00', 0x551a01, 0x408) 123.608572ms ago: executing program 3 (id=549): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x44, 0x10, 0x40d, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0xc, 0x5, 0x0, 0x1, [@IFLA_BRPORT_BACKUP_PORT={0x8, 0x22, r2}]}}}]}, 0x44}}, 0x0) 59.077656ms ago: executing program 0 (id=550): r0 = open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15) r3 = syz_open_dev$video4linux(&(0x7f00000004c0), 0x0, 0x230880) ioctl$VIDIOC_ENUM_DV_TIMINGS(r3, 0xc0945662, &(0x7f0000000600)={0x0, 0x0, '\x00', {0x0, @reserved}}) r4 = dup(r2) r5 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000540), 0x220000, 0x0) write$P9_RLERRORu(r5, &(0x7f0000000580)=ANY=[@ANYRES32=r1, @ANYRES64=r1, @ANYRES8], 0xfffffe01) write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20) r6 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r6, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000500)=[@in6={0xa, 0x0, 0x0, @private1}]}, &(0x7f0000000340)=0x10) syz_emit_vhci(&(0x7f00000006c0)=ANY=[@ANYBLOB="04060310c9001ca8345e1e83b7b3362f00b45782b0a13ac6e52c64d14068b978ef96f7460f8fa2e9aa194145d51f450b93f390187e1280dc6fbd7e0dc855a9a9523e21e9df808535ce9409365107c9d593328f20625f9d46c84199cc422345bafc5590b6035597a8adfaffffffffffffff35730b98d08333f99769ec992df3dd12"], 0x6) openat$iommufd(0xffffffffffffff9c, 0x0, 0x208500, 0x0) r7 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000400)={r8, @in={{0x2, 0x0, @empty}}, 0x0, 0x9, 0x0, 0x2, 0x414d6714bf78e135}, 0x9c) r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x6, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2d}, 0x90) r10 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000080)={'syz_tun\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r9, r11}, 0x40) syz_emit_ethernet(0xe80, &(0x7f0000000100)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "2a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x4, 0x5}}}}}}}, 0x0) r12 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) close_range(r12, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000000)=@assoc_value={r8, 0x6}, &(0x7f00000000c0)=0x8) connect$unix(r4, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e21}, 0x6e) write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYRES32=0x0], 0x7c8) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',access=', @ANYRESDEC=r13]) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mounts\x00') 58.851412ms ago: executing program 3 (id=551): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x62) r0 = socket$inet_udplite(0x2, 0x2, 0x88) sendmsg$inet(r0, &(0x7f0000002680)={&(0x7f0000001140)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000002540)=ANY=[@ANYBLOB="11000000000000000000000001000000ff0000000000000014000000000000000000000002000000a300000000000000140000000000000000000000010000001900000000000000e8000000000000000000000007000000861b0000000301090f988791efd84001"], 0x130}, 0x0) 186.643µs ago: executing program 3 (id=552): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) setitimer(0x0, 0x0, 0x0) 0s ago: executing program 3 (id=553): syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) write$binfmt_misc(0xffffffffffffffff, 0x0, 0x5) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f00000005c0)=ANY=[@ANYBLOB="020086dd0300000000000000000060ec970000302c00fe8000000000000000000000000000aaff0200000000000000000000000000013a"], 0xfdef) kernel console output (not intermixed with test programs): [ 45.970450][ T39] audit: type=1400 audit(1721190726.829:83): avc: denied { write } for pid=5124 comm="sftp-server" path="pipe:[5694]" dev="pipefs" ino=5694 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 46.252949][ T39] audit: type=1400 audit(1721190727.109:84): avc: denied { read } for pid=4679 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 46.262998][ T39] audit: type=1400 audit(1721190727.109:85): avc: denied { append } for pid=4679 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 46.273020][ T39] audit: type=1400 audit(1721190727.109:86): avc: denied { open } for pid=4679 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 46.283304][ T39] audit: type=1400 audit(1721190727.109:87): avc: denied { getattr } for pid=4679 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 Warning: Permanently added '[localhost]:9734' (ED25519) to the list of known hosts. [ 50.230437][ T5145] cgroup: Unknown subsys name 'net' [ 50.400994][ T5145] cgroup: Unknown subsys name 'rlimit' [ 50.560648][ T39] kauditd_printk_skb: 6 callbacks suppressed [ 50.560663][ T39] audit: type=1400 audit(1721190731.419:94): avc: denied { setattr } for pid=5145 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 50.573153][ T39] audit: type=1400 audit(1721190731.419:95): avc: denied { create } for pid=5145 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 50.582062][ T39] audit: type=1400 audit(1721190731.419:96): avc: denied { write } for pid=5145 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 50.592521][ T39] audit: type=1400 audit(1721190731.419:97): avc: denied { read } for pid=5145 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 50.601677][ T39] audit: type=1400 audit(1721190731.419:98): avc: denied { mounton } for pid=5145 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 50.612584][ T39] audit: type=1400 audit(1721190731.429:99): avc: denied { mount } for pid=5145 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 50.621924][ T39] audit: type=1400 audit(1721190731.439:100): avc: denied { read } for pid=4917 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1 [ 50.634264][ T5197] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 50.639167][ T39] audit: type=1400 audit(1721190731.489:101): avc: denied { relabelto } for pid=5197 comm="mkswap" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 50.651127][ T39] audit: type=1400 audit(1721190731.489:102): avc: denied { write } for pid=5197 comm="mkswap" path="/swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 50.660850][ T39] audit: type=1400 audit(1721190731.489:103): avc: denied { read } for pid=5145 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 51.771842][ T5145] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 56.364839][ T39] kauditd_printk_skb: 1 callbacks suppressed [ 56.364851][ T39] audit: type=1400 audit(1721190737.219:105): avc: denied { execmem } for pid=5205 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 56.816630][ T39] audit: type=1400 audit(1721190737.659:106): avc: denied { mounton } for pid=5209 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 56.826807][ T39] audit: type=1400 audit(1721190737.669:107): avc: denied { mount } for pid=5209 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 56.835922][ T39] audit: type=1400 audit(1721190737.669:108): avc: denied { create } for pid=5209 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 56.844887][ T39] audit: type=1400 audit(1721190737.669:109): avc: denied { read write } for pid=5209 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 56.855069][ T39] audit: type=1400 audit(1721190737.669:110): avc: denied { open } for pid=5209 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 56.865390][ T39] audit: type=1400 audit(1721190737.679:111): avc: denied { ioctl } for pid=5210 comm="syz-executor" path="socket:[3793]" dev="sockfs" ino=3793 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 56.866020][ T5223] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 56.873463][ T5224] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 56.874700][ T5224] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 56.875224][ T5224] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 56.877001][ T5224] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 56.880733][ T5223] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 56.883916][ T5224] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 56.885570][ T5226] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 56.886235][ T5227] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 56.887168][ T5227] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 56.887783][ T5227] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 56.888099][ T5227] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 56.889107][ T5225] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 56.892423][ T4642] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 56.894290][ T39] audit: type=1400 audit(1721190737.749:112): avc: denied { read } for pid=5210 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 56.899303][ T4642] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 56.899851][ T39] audit: type=1400 audit(1721190737.749:113): avc: denied { open } for pid=5210 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 56.901735][ T5225] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 56.903061][ T5225] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 56.903175][ T4642] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 56.903462][ T4642] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 56.905309][ T39] audit: type=1400 audit(1721190737.749:114): avc: denied { mounton } for pid=5210 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 56.905469][ T4642] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 56.906869][ T4642] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 56.907206][ T4642] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 56.909038][ T5225] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 56.973594][ T5225] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 57.362074][ T5211] chnl_net:caif_netlink_parms(): no params data found [ 57.384940][ T5210] chnl_net:caif_netlink_parms(): no params data found [ 57.393283][ T5217] chnl_net:caif_netlink_parms(): no params data found [ 57.614938][ T5209] chnl_net:caif_netlink_parms(): no params data found [ 57.715628][ T5211] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.719494][ T5211] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.722941][ T5211] bridge_slave_0: entered allmulticast mode [ 57.726956][ T5211] bridge_slave_0: entered promiscuous mode [ 57.732997][ T5211] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.736172][ T5211] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.739206][ T5211] bridge_slave_1: entered allmulticast mode [ 57.742989][ T5211] bridge_slave_1: entered promiscuous mode [ 57.771958][ T5210] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.775022][ T5210] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.778016][ T5210] bridge_slave_0: entered allmulticast mode [ 57.781861][ T5210] bridge_slave_0: entered promiscuous mode [ 57.791946][ T5210] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.795131][ T5210] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.798302][ T5210] bridge_slave_1: entered allmulticast mode [ 57.802078][ T5210] bridge_slave_1: entered promiscuous mode [ 57.832214][ T5217] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.835411][ T5217] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.838635][ T5217] bridge_slave_0: entered allmulticast mode [ 57.842748][ T5217] bridge_slave_0: entered promiscuous mode [ 57.943258][ T5217] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.946369][ T5217] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.949247][ T5217] bridge_slave_1: entered allmulticast mode [ 57.952476][ T5217] bridge_slave_1: entered promiscuous mode [ 57.985555][ T5210] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.011950][ T5211] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.020411][ T5210] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.047675][ T5211] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.106316][ T5217] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.162293][ T5210] team0: Port device team_slave_0 added [ 58.168013][ T5217] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.243189][ T5210] team0: Port device team_slave_1 added [ 58.276826][ T5211] team0: Port device team_slave_0 added [ 58.279627][ T5209] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.282451][ T5209] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.285424][ T5209] bridge_slave_0: entered allmulticast mode [ 58.289080][ T5209] bridge_slave_0: entered promiscuous mode [ 58.320286][ T5217] team0: Port device team_slave_0 added [ 58.328297][ T5217] team0: Port device team_slave_1 added [ 58.333213][ T5211] team0: Port device team_slave_1 added [ 58.355105][ T5209] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.357821][ T5209] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.360641][ T5209] bridge_slave_1: entered allmulticast mode [ 58.364309][ T5209] bridge_slave_1: entered promiscuous mode [ 58.484695][ T5210] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 58.487368][ T5210] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.497453][ T5210] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 58.525817][ T5211] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 58.528142][ T5211] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.540231][ T5211] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 58.569637][ T5210] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 58.572723][ T5210] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.583358][ T5210] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 58.588840][ T5217] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 58.594716][ T5217] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.605377][ T5217] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 58.611431][ T5211] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 58.613801][ T5211] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.623200][ T5211] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 58.629837][ T5209] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.642784][ T5217] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 58.645930][ T5217] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.656666][ T5217] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 58.672160][ T5209] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.767468][ T5209] team0: Port device team_slave_0 added [ 58.864832][ T5209] team0: Port device team_slave_1 added [ 58.895511][ T5217] hsr_slave_0: entered promiscuous mode [ 58.899223][ T5217] hsr_slave_1: entered promiscuous mode [ 58.908085][ T5211] hsr_slave_0: entered promiscuous mode [ 58.913952][ T5211] hsr_slave_1: entered promiscuous mode [ 58.916833][ T5211] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 58.919635][ T5211] Cannot create hsr debugfs directory [ 58.922565][ T5225] Bluetooth: hci1: command tx timeout [ 58.931341][ T5225] Bluetooth: hci2: command tx timeout [ 58.931496][ T5214] Bluetooth: hci3: command tx timeout [ 58.980419][ T5210] hsr_slave_0: entered promiscuous mode [ 58.984355][ T5210] hsr_slave_1: entered promiscuous mode [ 58.987570][ T5210] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 58.991230][ T5210] Cannot create hsr debugfs directory [ 58.999457][ T5209] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 59.000330][ T5214] Bluetooth: hci0: command tx timeout [ 59.005288][ T5209] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.015489][ T5209] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 59.070780][ T5209] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 59.074028][ T5209] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.084344][ T5209] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 59.322314][ T5209] hsr_slave_0: entered promiscuous mode [ 59.325702][ T5209] hsr_slave_1: entered promiscuous mode [ 59.328773][ T5209] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 59.332868][ T5209] Cannot create hsr debugfs directory [ 59.689977][ T5217] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 59.709065][ T5217] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 59.718173][ T5217] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 59.723264][ T5217] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 59.772650][ T5210] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 59.782495][ T5210] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 59.789269][ T5210] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 59.795642][ T5210] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 59.884060][ T5211] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 59.905718][ T5211] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 59.918472][ T5211] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 59.926472][ T5211] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 59.999848][ T5217] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.024538][ T5209] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 60.037181][ T5209] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 60.046076][ T5209] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 60.053961][ T5209] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 60.079246][ T5217] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.110935][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.114314][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.136058][ T825] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.139157][ T825] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.159797][ T5210] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.209940][ T5210] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.243104][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.245925][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.259817][ T5259] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.263393][ T5259] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.272812][ T5211] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.295987][ T5217] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 60.343869][ T5211] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.390862][ T5259] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.394242][ T5259] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.398524][ T5259] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.401316][ T5259] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.440860][ T5209] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.455421][ T5211] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 60.459679][ T5211] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 60.487173][ T5209] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.507759][ T5257] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.510568][ T5257] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.530050][ T5217] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 60.542539][ T5257] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.545665][ T5257] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.591574][ T5209] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 60.596214][ T5209] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 60.628849][ T5210] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 60.651159][ T5211] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 60.685094][ T5217] veth0_vlan: entered promiscuous mode [ 60.725824][ T5217] veth1_vlan: entered promiscuous mode [ 60.763809][ T5210] veth0_vlan: entered promiscuous mode [ 60.774148][ T5210] veth1_vlan: entered promiscuous mode [ 60.802039][ T5211] veth0_vlan: entered promiscuous mode [ 60.814565][ T5211] veth1_vlan: entered promiscuous mode [ 60.842177][ T5209] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 60.853212][ T5211] veth0_macvtap: entered promiscuous mode [ 60.867447][ T5217] veth0_macvtap: entered promiscuous mode [ 60.873888][ T5211] veth1_macvtap: entered promiscuous mode [ 60.899781][ T5217] veth1_macvtap: entered promiscuous mode [ 60.924284][ T5210] veth0_macvtap: entered promiscuous mode [ 60.935613][ T5211] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 60.944643][ T5211] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 60.958642][ T5211] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.963466][ T5211] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.967603][ T5211] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.972149][ T5211] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.992868][ T5210] veth1_macvtap: entered promiscuous mode [ 61.000345][ T5214] Bluetooth: hci1: command tx timeout [ 61.011452][ T5214] Bluetooth: hci3: command tx timeout [ 61.013578][ T5225] Bluetooth: hci2: command tx timeout [ 61.016746][ T5217] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 61.022069][ T5217] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.028463][ T5217] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 61.040301][ T5217] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 61.044819][ T5217] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.049662][ T5217] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 61.076152][ T5217] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.080047][ T5217] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.090435][ T5217] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.090803][ T5225] Bluetooth: hci0: command tx timeout [ 61.094704][ T5217] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.103242][ T5209] veth0_vlan: entered promiscuous mode [ 61.117342][ T5210] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 61.123185][ T5210] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.126779][ T5210] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 61.135840][ T5210] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.144017][ T5210] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 61.156868][ T5209] veth1_vlan: entered promiscuous mode [ 61.171694][ T5210] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 61.175992][ T5210] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.181660][ T5210] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 61.185951][ T5210] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.192417][ T5210] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 61.223371][ T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.227357][ T5210] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.227441][ T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.231491][ T5210] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.250157][ T5210] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.253366][ T5210] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.316805][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.321133][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.327526][ T1187] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.332029][ T1187] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.359101][ T5209] veth0_macvtap: entered promiscuous mode [ 61.368701][ T5209] veth1_macvtap: entered promiscuous mode [ 61.373046][ T39] kauditd_printk_skb: 6 callbacks suppressed [ 61.373059][ T39] audit: type=1400 audit(1721190742.229:121): avc: denied { unmount } for pid=5211 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 61.384966][ T39] audit: type=1400 audit(1721190742.239:122): avc: denied { mounton } for pid=5211 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=2385 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 61.395349][ T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.395465][ T39] audit: type=1400 audit(1721190742.249:123): avc: denied { mount } for pid=5211 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 61.398386][ T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.438134][ T5209] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 61.442750][ T5209] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.446732][ T5209] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 61.451253][ T5209] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.454821][ T5209] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 61.458965][ T5209] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.461439][ T39] audit: type=1400 audit(1721190742.309:124): avc: denied { read write } for pid=5211 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 61.475462][ T39] audit: type=1400 audit(1721190742.309:125): avc: denied { open } for pid=5211 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 61.479573][ T5209] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 61.489183][ T39] audit: type=1400 audit(1721190742.309:126): avc: denied { ioctl } for pid=5211 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 61.499397][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.502805][ T39] audit: type=1400 audit(1721190742.339:127): avc: denied { read } for pid=5278 comm="syz.3.4" name="iommu" dev="devtmpfs" ino=634 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 61.506501][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.512642][ T39] audit: type=1400 audit(1721190742.349:128): avc: denied { open } for pid=5278 comm="syz.3.4" path="/dev/iommu" dev="devtmpfs" ino=634 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 61.525103][ T39] audit: type=1400 audit(1721190742.359:129): avc: denied { ioctl } for pid=5278 comm="syz.3.4" path="/dev/iommu" dev="devtmpfs" ino=634 ioctlcmd=0x3b81 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 61.528937][ T5209] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 61.540809][ T5209] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.545284][ T5209] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 61.549642][ T5209] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.553949][ T5209] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 61.557919][ T5209] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.564843][ T5209] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 61.570959][ T5209] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.574253][ T5209] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.579313][ T5209] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.595121][ T5209] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.605186][ T39] audit: type=1400 audit(1721190742.459:130): avc: denied { create } for pid=5282 comm="syz.2.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 61.638407][ T1187] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.649646][ T1187] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.712269][ T5289] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8'. [ 61.738166][ T5225] Bluetooth: hci2: Malformed Event: 0x2f [ 61.741341][ T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.741360][ T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.789651][ T1187] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.794318][ T1187] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.857622][ T5297] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=13394 sclass=netlink_route_socket pid=5297 comm=syz.2.11 [ 62.170904][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 62.311166][ T825] usb 8-1: new full-speed USB device number 2 using dummy_hcd [ 62.503813][ T825] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 62.503862][ T825] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 62.503887][ T825] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 1023, setting to 64 [ 62.503909][ T825] usb 8-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 25 [ 62.516489][ T825] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 62.546499][ T825] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 62.546523][ T825] usb 8-1: SerialNumber: syz [ 62.552107][ T5307] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 62.558711][ T5307] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 62.562907][ T825] cdc_acm 8-1:1.0: Control and data interfaces are not separated! [ 62.795666][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 62.871739][ T825] cdc_acm 8-1:1.0: ttyACM0: USB ACM device [ 62.881550][ T825] usb 8-1: USB disconnect, device number 2 [ 63.039643][ T5327] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.19'. [ 63.039962][ T5327] openvswitch: netlink: IP tunnel attribute has 3056 unknown bytes. [ 63.080605][ T5214] Bluetooth: hci1: command tx timeout [ 63.091187][ T5214] Bluetooth: hci2: command tx timeout [ 63.093842][ T5214] Bluetooth: hci3: command tx timeout [ 63.182290][ T66] Bluetooth: hci0: command tx timeout [ 63.409687][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 63.960922][ T66] Bluetooth: hci4: command 0x1003 tx timeout [ 63.960950][ T5225] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 64.090445][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 64.094353][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 64.555640][ T5225] Bluetooth: hci3: Malformed Event: 0x2f [ 65.021413][ T5257] usb 7-1: new full-speed USB device number 2 using dummy_hcd [ 65.170465][ T5225] Bluetooth: hci3: command tx timeout [ 65.170509][ T5225] Bluetooth: hci2: command tx timeout [ 65.170559][ T5225] Bluetooth: hci1: command tx timeout [ 65.254161][ T66] Bluetooth: hci0: command tx timeout [ 65.256234][ T5257] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 65.256252][ T5257] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 65.256266][ T5257] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 1023, setting to 64 [ 65.256278][ T5257] usb 7-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 25 [ 65.266044][ T5257] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 65.266071][ T5257] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 65.266089][ T5257] usb 7-1: SerialNumber: syz [ 65.273407][ T5360] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 65.273858][ T5360] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 65.275528][ T5257] cdc_acm 7-1:1.0: Control and data interfaces are not separated! [ 65.429464][ T5364] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 66.160612][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 66.214283][ T5257] cdc_acm 7-1:1.0: ttyACM0: USB ACM device [ 66.232605][ T5257] usb 7-1: USB disconnect, device number 2 [ 66.453408][ T39] kauditd_printk_skb: 47 callbacks suppressed [ 66.453423][ T39] audit: type=1400 audit(1721190747.309:178): avc: denied { read } for pid=5365 comm="syz.3.32" name="event0" dev="devtmpfs" ino=862 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 66.465815][ T39] audit: type=1400 audit(1721190747.309:179): avc: denied { open } for pid=5365 comm="syz.3.32" path="/dev/input/event0" dev="devtmpfs" ino=862 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 66.475627][ T39] audit: type=1400 audit(1721190747.309:180): avc: denied { ioctl } for pid=5365 comm="syz.3.32" path="/dev/input/event0" dev="devtmpfs" ino=862 ioctlcmd=0x4500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 66.529532][ T39] audit: type=1400 audit(1721190747.379:181): avc: denied { read } for pid=5381 comm="syz.1.39" name="card2" dev="devtmpfs" ino=640 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 66.541211][ T39] audit: type=1400 audit(1721190747.379:182): avc: denied { open } for pid=5381 comm="syz.1.39" path="/dev/dri/card2" dev="devtmpfs" ino=640 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 66.561309][ T39] audit: type=1400 audit(1721190747.389:183): avc: denied { ioctl } for pid=5381 comm="syz.1.39" path="/dev/dri/card2" dev="devtmpfs" ino=640 ioctlcmd=0x64c3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 66.874485][ T39] audit: type=1400 audit(1721190747.729:184): avc: denied { read } for pid=5396 comm="syz.2.44" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 66.885769][ T39] audit: type=1400 audit(1721190747.729:185): avc: denied { open } for pid=5396 comm="syz.2.44" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 66.966742][ T39] audit: type=1400 audit(1721190747.819:186): avc: denied { setopt } for pid=5401 comm="syz.2.47" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 66.980913][ T39] audit: type=1400 audit(1721190747.819:187): avc: denied { connect } for pid=5401 comm="syz.2.47" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 67.013471][ T5405] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 67.026789][ T5405] netlink: 8 bytes leftover after parsing attributes in process `syz.1.48'. [ 67.036096][ T5405] Zero length message leads to an empty skb [ 67.148418][ T5411] netlink: 12 bytes leftover after parsing attributes in process `syz.3.52'. [ 67.172398][ T5416] xt_TCPMSS: Only works on TCP SYN packets [ 67.212211][ T66] Bluetooth: hci2: Malformed Event: 0x2f [ 67.450878][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 67.454475][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 67.610257][ T5257] usb 8-1: new full-speed USB device number 3 using dummy_hcd [ 67.694271][ T5432] netlink: 8 bytes leftover after parsing attributes in process `syz.0.57'. [ 67.827011][ T5257] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 67.831923][ T5257] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 67.837088][ T5257] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 1023, setting to 64 [ 67.842203][ T5257] usb 8-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 25 [ 67.849598][ T5257] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 67.854129][ T5257] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 67.857947][ T5257] usb 8-1: SerialNumber: syz [ 67.864761][ T5423] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 67.868392][ T5423] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 67.872862][ T5257] cdc_acm 8-1:1.0: Control and data interfaces are not separated! [ 68.108539][ T5257] cdc_acm 8-1:1.0: ttyACM0: USB ACM device [ 68.114239][ T5257] usb 8-1: USB disconnect, device number 3 [ 68.286711][ T5448] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=13394 sclass=netlink_route_socket pid=5448 comm=syz.2.63 [ 68.316086][ T64] Bluetooth: hci4: Frame reassembly failed (-84) [ 68.845393][ T5457] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 68.920238][ T5459] netlink: 4 bytes leftover after parsing attributes in process `syz.3.67'. [ 68.950758][ T5459] syzkaller0: entered promiscuous mode [ 68.952996][ T5458] syzkaller0: left promiscuous mode [ 69.331897][ T5468] netlink: 12 bytes leftover after parsing attributes in process `syz.0.70'. [ 69.857317][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 69.867705][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 70.330608][ T5489] netlink: 8 bytes leftover after parsing attributes in process `syz.0.78'. [ 70.362916][ T5225] Bluetooth: hci4: command 0x1003 tx timeout [ 70.366577][ T66] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 70.462440][ T5496] xt_TCPMSS: Only works on TCP SYN packets [ 71.062416][ T5512] netlink: 4 bytes leftover after parsing attributes in process `syz.3.83'. [ 71.105363][ T5512] syzkaller0: entered promiscuous mode [ 71.109371][ T5510] syzkaller0: left promiscuous mode [ 71.183533][ T5518] capability: warning: `syz.3.86' uses deprecated v2 capabilities in a way that may be insecure [ 71.367546][ T5527] netlink: 24 bytes leftover after parsing attributes in process `syz.2.90'. [ 71.376859][ T5527] netlink: 24 bytes leftover after parsing attributes in process `syz.2.90'. [ 71.690371][ T39] kauditd_printk_skb: 22 callbacks suppressed [ 71.690386][ T39] audit: type=1400 audit(1721190752.539:210): avc: denied { name_bind } for pid=5528 comm="syz.0.91" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1 [ 71.721578][ T5541] netlink: 4 bytes leftover after parsing attributes in process `syz.2.94'. [ 71.811630][ T5541] syzkaller0: entered promiscuous mode [ 71.817270][ T5540] syzkaller0: left promiscuous mode [ 71.872286][ T39] audit: type=1400 audit(1721190752.729:211): avc: denied { create } for pid=5544 comm="syz.2.96" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 71.896047][ T39] audit: type=1400 audit(1721190752.739:212): avc: denied { ioctl } for pid=5544 comm="syz.2.96" path="socket:[7157]" dev="sockfs" ino=7157 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 71.925406][ T39] audit: type=1400 audit(1721190752.779:213): avc: denied { create } for pid=5548 comm="syz.2.98" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 71.938954][ T39] audit: type=1400 audit(1721190752.789:214): avc: denied { write } for pid=5548 comm="syz.2.98" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 72.056056][ T39] audit: type=1400 audit(1721190752.909:215): avc: denied { create } for pid=5557 comm="syz.1.102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 72.076821][ T39] audit: type=1400 audit(1721190752.929:216): avc: denied { bind } for pid=5557 comm="syz.1.102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 72.096624][ T39] audit: type=1400 audit(1721190752.929:217): avc: denied { listen } for pid=5557 comm="syz.1.102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 72.111153][ T39] audit: type=1400 audit(1721190752.939:218): avc: denied { connect } for pid=5557 comm="syz.1.102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 72.125230][ T39] audit: type=1400 audit(1721190752.949:219): avc: denied { write } for pid=5557 comm="syz.1.102" path="socket:[10248]" dev="sockfs" ino=10248 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 72.291613][ T66] Bluetooth: hci3: unexpected event 0x01 length: 4 > 1 [ 72.695877][ T5594] netlink: 4 bytes leftover after parsing attributes in process `syz.0.117'. [ 72.766199][ T5594] syzkaller0: entered promiscuous mode [ 72.770951][ T5592] syzkaller0: left promiscuous mode [ 73.094602][ T5616] warning: `syz.3.126' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 73.286716][ T5623] netlink: 4 bytes leftover after parsing attributes in process `syz.1.129'. [ 73.354688][ T5623] syzkaller0: entered promiscuous mode [ 73.359102][ T5622] syzkaller0: left promiscuous mode [ 73.987494][ T5643] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=13394 sclass=netlink_route_socket pid=5643 comm=syz.3.137 [ 74.040311][ T1091] Bluetooth: hci4: Frame reassembly failed (-84) [ 74.282183][ T5225] Bluetooth: hci0: ACL packet for unknown connection handle 203 [ 74.286213][ T5225] Bluetooth: hci0: Malformed Event: 0x02 [ 74.369799][ T5651] netlink: 4 bytes leftover after parsing attributes in process `syz.2.139'. [ 74.422384][ T5651] syzkaller0: entered promiscuous mode [ 74.427239][ T5649] syzkaller0: left promiscuous mode [ 74.490306][ T5653] xt_TCPMSS: Only works on TCP SYN packets [ 74.940748][ T5661] mmap: syz.0.142 (5661) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 75.279639][ T5225] Bluetooth: hci1: unexpected event 0x01 length: 4 > 1 [ 75.626141][ T5686] xt_cgroup: invalid path, errno=-2 [ 75.717797][ T5686] xt_NFQUEUE: number of total queues is 0 [ 76.029859][ T5225] Bluetooth: hci3: ACL packet for unknown connection handle 203 [ 76.044072][ T66] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 76.047332][ T5225] Bluetooth: hci4: command 0x1003 tx timeout [ 76.047373][ T5214] Bluetooth: hci3: Malformed Event: 0x02 [ 76.643641][ T5707] netlink: 4 bytes leftover after parsing attributes in process `syz.3.157'. [ 76.715607][ T5707] syzkaller0: entered promiscuous mode [ 76.719688][ T5706] syzkaller0: left promiscuous mode [ 77.509041][ T1361] ieee802154 phy0 wpan0: encryption failed: -22 [ 77.512727][ T1361] ieee802154 phy1 wpan1: encryption failed: -22 [ 77.825780][ T39] kauditd_printk_skb: 21 callbacks suppressed [ 77.825796][ T39] audit: type=1400 audit(1721190758.679:241): avc: denied { execute } for pid=5732 comm="syz.2.165" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=9036 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 78.053568][ T39] audit: type=1400 audit(1721190758.909:242): avc: denied { append } for pid=5742 comm="syz.2.169" name="card0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 78.090464][ T5214] Bluetooth: hci0: ACL packet for unknown connection handle 203 [ 78.110695][ T5214] Bluetooth: hci0: Malformed Event: 0x02 [ 79.021129][ T39] audit: type=1400 audit(1721190759.879:243): avc: denied { write } for pid=5775 comm="syz.1.181" name="ppp" dev="devtmpfs" ino=714 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 79.060880][ T39] audit: type=1400 audit(1721190759.889:244): avc: denied { ioctl } for pid=5775 comm="syz.1.181" path="/dev/ppp" dev="devtmpfs" ino=714 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 79.126436][ T5782] xt_cgroup: invalid path, errno=-2 [ 79.199967][ T5788] xt_NFQUEUE: number of total queues is 0 [ 79.308224][ T39] audit: type=1400 audit(1721190760.159:245): avc: denied { setattr } for pid=5791 comm="syz.0.186" name="NETLINK" dev="sockfs" ino=10439 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 79.554394][ T39] audit: type=1400 audit(1721190760.409:246): avc: denied { read } for pid=5791 comm="syz.0.186" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1 [ 79.564412][ T39] audit: type=1400 audit(1721190760.409:247): avc: denied { open } for pid=5791 comm="syz.0.186" path="/51/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1 [ 79.582709][ T5805] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5805 comm=syz.1.189 [ 79.597848][ T5801] netlink: 4 bytes leftover after parsing attributes in process `syz.1.189'. [ 79.603761][ T39] audit: type=1400 audit(1721190760.439:248): avc: denied { getopt } for pid=5800 comm="syz.1.189" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 79.613204][ T39] audit: type=1400 audit(1721190760.449:249): avc: denied { read } for pid=5800 comm="syz.1.189" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 79.689985][ T39] audit: type=1400 audit(1721190760.539:250): avc: denied { open } for pid=5808 comm="syz.2.191" path="/dev/ptyq9" dev="devtmpfs" ino=138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1 [ 80.246303][ T5845] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5845 comm=syz.0.204 [ 80.256239][ T5845] netlink: 4 bytes leftover after parsing attributes in process `syz.0.204'. [ 80.532638][ T5854] netlink: 'syz.0.207': attribute type 1 has an invalid length. [ 80.536432][ T5854] netlink: 8 bytes leftover after parsing attributes in process `syz.0.207'. [ 81.160258][ T56] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 81.191078][ T5884] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.218'. [ 81.256420][ T5886] netlink: 'syz.0.219': attribute type 1 has an invalid length. [ 81.259728][ T5886] netlink: 8 bytes leftover after parsing attributes in process `syz.0.219'. [ 81.363188][ T56] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 81.367747][ T56] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 81.380432][ T56] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 81.384865][ T56] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 81.391317][ T56] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 81.395207][ T56] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 81.400665][ T56] usb 8-1: config 0 descriptor?? [ 81.406871][ T5878] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 81.844274][ T56] plantronics 0003:047F:FFFF.0002: unknown main item tag 0xd [ 81.856144][ T56] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 81.875669][ T56] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 81.939232][ T5912] netlink: 'syz.1.228': attribute type 1 has an invalid length. [ 81.942726][ T5912] netlink: 8 bytes leftover after parsing attributes in process `syz.1.228'. [ 82.176912][ T827] usb 8-1: USB disconnect, device number 4 [ 82.862803][ T39] kauditd_printk_skb: 24 callbacks suppressed [ 82.862818][ T39] audit: type=1400 audit(1721190763.719:275): avc: denied { ioctl } for pid=5950 comm="syz.2.239" path="/dev/vhost-net" dev="devtmpfs" ino=1115 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 83.009784][ T39] audit: type=1400 audit(1721190763.859:276): avc: denied { read } for pid=5954 comm="syz.3.240" name="mouse0" dev="devtmpfs" ino=867 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1 [ 83.027392][ T39] audit: type=1400 audit(1721190763.859:277): avc: denied { open } for pid=5954 comm="syz.3.240" path="/dev/input/mouse0" dev="devtmpfs" ino=867 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1 [ 83.031714][ T5955] netlink: 104 bytes leftover after parsing attributes in process `syz.3.240'. [ 83.039582][ T39] audit: type=1400 audit(1721190763.879:278): avc: denied { ioctl } for pid=5954 comm="syz.3.240" path="/dev/input/mouse0" dev="devtmpfs" ino=867 ioctlcmd=0xae60 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1 [ 83.380654][ T5963] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.244'. [ 83.458245][ T5971] SET target dimension over the limit! [ 83.533460][ T39] audit: type=1400 audit(1721190764.389:279): avc: denied { write } for pid=5966 comm="syz.3.241" name="cpuset.effective_cpus" dev="9p" ino=37622018 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 83.685392][ T39] audit: type=1400 audit(1721190764.539:280): avc: denied { create } for pid=5980 comm="syz.0.250" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 83.694135][ T39] audit: type=1400 audit(1721190764.539:281): avc: denied { setopt } for pid=5980 comm="syz.0.250" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 83.710036][ T39] audit: type=1400 audit(1721190764.539:282): avc: denied { getopt } for pid=5980 comm="syz.0.250" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 83.793945][ T5984] netlink: 124 bytes leftover after parsing attributes in process `syz.0.251'. [ 83.800090][ T39] audit: type=1400 audit(1721190764.649:283): avc: denied { create } for pid=5983 comm="syz.0.251" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 83.813142][ T39] audit: type=1400 audit(1721190764.669:284): avc: denied { write } for pid=5983 comm="syz.0.251" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 84.761458][ T6017] netlink: 'syz.2.262': attribute type 5 has an invalid length. [ 85.837807][ T6043] netlink: 'syz.2.272': attribute type 5 has an invalid length. [ 86.020069][ T6049] exFAT-fs (nullb0): invalid boot record signature [ 86.023166][ T6049] exFAT-fs (nullb0): failed to read boot sector [ 86.026085][ T6049] exFAT-fs (nullb0): failed to recognize exfat type [ 86.217934][ T6058] Driver unsupported XDP return value 0 on prog (id 40) dev N/A, expect packet loss! [ 86.330399][ T5258] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 86.513363][ T5258] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 86.525013][ T5258] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 86.537856][ T5258] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 86.570333][ T5258] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 86.576169][ T5258] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 86.582082][ T5258] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 86.591927][ T5258] usb 8-1: config 0 descriptor?? [ 86.595445][ T6051] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 86.819825][ T6082] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6082 comm=syz.0.286 [ 86.828135][ T6079] netlink: 4 bytes leftover after parsing attributes in process `syz.0.286'. [ 87.030045][ T5258] plantronics 0003:047F:FFFF.0003: unknown main item tag 0xd [ 87.037488][ T5258] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving [ 87.047693][ T5258] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 87.297632][ T57] usb 8-1: USB disconnect, device number 5 [ 87.648631][ T1957] cfg80211: failed to load regulatory.db [ 87.953242][ T5214] Bluetooth: hci0: unexpected event 0x01 length: 4 > 1 [ 88.093990][ T6117] syz.2.298 uses obsolete (PF_INET,SOCK_PACKET) [ 88.407070][ T39] kauditd_printk_skb: 7 callbacks suppressed [ 88.407085][ T39] audit: type=1400 audit(1721190769.259:292): avc: denied { map } for pid=6124 comm="syz.2.300" path="/dev/hpet" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 88.448883][ T39] audit: type=1400 audit(1721190769.299:293): avc: denied { map } for pid=6124 comm="syz.2.300" path="socket:[11469]" dev="sockfs" ino=11469 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 88.458768][ T39] audit: type=1400 audit(1721190769.299:294): avc: denied { read } for pid=6124 comm="syz.2.300" path="socket:[11469]" dev="sockfs" ino=11469 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 88.501781][ T6125] netlink: 212872 bytes leftover after parsing attributes in process `syz.2.300'. [ 88.521403][ T6125] openvswitch: netlink: ufid size 60 bytes exceeds the range (1, 16) [ 88.541026][ T6125] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 88.548423][ T39] audit: type=1400 audit(1721190769.399:295): avc: denied { setopt } for pid=6124 comm="syz.2.300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 88.557477][ T39] audit: type=1400 audit(1721190769.399:296): avc: denied { connect } for pid=6124 comm="syz.2.300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 88.774803][ T39] audit: type=1400 audit(1721190769.629:297): avc: denied { getopt } for pid=6129 comm="syz.2.302" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 88.915383][ T6139] Bluetooth: MGMT ver 1.23 [ 88.984770][ T6141] Bluetooth: MGMT ver 1.23 [ 89.040294][ T5258] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 89.110398][ T1957] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 89.220266][ T5258] usb 7-1: Using ep0 maxpacket: 32 [ 89.225035][ T5258] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 89.233001][ T5258] usb 7-1: New USB device found, idVendor=0499, idProduct=105a, bcdDevice=cc.96 [ 89.236693][ T5258] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 89.239749][ T5258] usb 7-1: Product: syz [ 89.241684][ T5258] usb 7-1: Manufacturer: syz [ 89.243689][ T5258] usb 7-1: SerialNumber: syz [ 89.247763][ T5258] usb 7-1: config 0 descriptor?? [ 89.295309][ T1957] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 89.300779][ T1957] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 89.305517][ T1957] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 89.310577][ T1957] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 89.316199][ T1957] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 89.320968][ T1957] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 89.327488][ T1957] usb 8-1: config 0 descriptor?? [ 89.331479][ T6135] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 89.465314][ T6149] exFAT-fs (nullb0): invalid boot record signature [ 89.469194][ T6149] exFAT-fs (nullb0): failed to read boot sector [ 89.472393][ T6149] exFAT-fs (nullb0): failed to recognize exfat type [ 89.519986][ T5258] snd-usb-audio 7-1:0.0: probe with driver snd-usb-audio failed with error -2 [ 89.551469][ T5258] usb 7-1: USB disconnect, device number 3 [ 89.761448][ T1957] plantronics 0003:047F:FFFF.0004: unknown main item tag 0xd [ 89.767071][ T1957] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving [ 89.775996][ T1957] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 89.792419][ T5218] udevd[5218]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 89.976789][ T39] audit: type=1400 audit(1721190770.829:298): avc: denied { execute } for pid=6166 comm="syz.1.318" path="/84/net_prio.prioidx" dev="tmpfs" ino=447 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 89.981441][ T6167] sock: sock_set_timeout: `syz.1.318' (pid 6167) tries to set negative timeout [ 89.990563][ T39] audit: type=1400 audit(1721190770.829:299): avc: denied { setopt } for pid=6166 comm="syz.1.318" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 90.006964][ T39] audit: type=1400 audit(1721190770.859:300): avc: denied { read } for pid=6166 comm="syz.1.318" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 90.046088][ T1287] usb 8-1: USB disconnect, device number 6 [ 90.154924][ T5214] Bluetooth: hci3: unexpected event 0x01 length: 4 > 1 [ 90.221086][ T5214] Bluetooth: Unexpected start frame (len 26) [ 90.580213][ T5257] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 90.695129][ T6194] sock: sock_set_timeout: `syz.3.329' (pid 6194) tries to set negative timeout [ 90.760242][ T5257] usb 5-1: Using ep0 maxpacket: 32 [ 90.764761][ T5257] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 90.790173][ T5257] usb 5-1: New USB device found, idVendor=0499, idProduct=105a, bcdDevice=cc.96 [ 90.794223][ T5257] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 90.797725][ T5257] usb 5-1: Product: syz [ 90.799451][ T5257] usb 5-1: Manufacturer: syz [ 90.806375][ T5257] usb 5-1: SerialNumber: syz [ 90.810623][ T5257] usb 5-1: config 0 descriptor?? [ 91.004568][ T6202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:aa) already exists on: batadv_slave_0 [ 91.009887][ T6202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.119733][ T5257] snd-usb-audio 5-1:0.0: probe with driver snd-usb-audio failed with error -2 [ 91.130477][ T5257] usb 5-1: USB disconnect, device number 2 [ 91.395757][ T6212] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 91.401278][ T5218] udevd[5218]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 91.565545][ T6219] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.340'. [ 91.575043][ T6219] openvswitch: netlink: IP tunnel attribute has 3056 unknown bytes. [ 91.690531][ T5257] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 91.728854][ T39] audit: type=1800 audit(1721190772.579:301): pid=6224 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.340" name="/" dev="fuse" ino=1 res=0 errno=0 [ 91.767038][ T6226] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode [ 91.796559][ T6226] mac80211_hwsim hwsim8 wlan0: left promiscuous mode [ 91.890266][ T5257] usb 6-1: Using ep0 maxpacket: 32 [ 91.903647][ T5257] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 91.908924][ T5257] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 91.930164][ T5257] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 91.935761][ T5257] usb 6-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00 [ 91.950386][ T5257] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 91.973030][ T5257] usb 6-1: config 0 descriptor?? [ 92.398719][ T5257] ntrig 0003:1B96:000A.0005: unknown main item tag 0x0 [ 92.410423][ T5257] ntrig 0003:1B96:000A.0005: unknown main item tag 0x0 [ 92.413458][ T5257] ntrig 0003:1B96:000A.0005: unknown main item tag 0x0 [ 92.416508][ T5257] ntrig 0003:1B96:000A.0005: unknown main item tag 0x0 [ 92.419453][ T5257] ntrig 0003:1B96:000A.0005: unknown main item tag 0x0 [ 92.427799][ T5257] ntrig 0003:1B96:000A.0005: hidraw1: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.1-1/input0 [ 92.428637][ T6255] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode [ 92.465742][ T6255] mac80211_hwsim hwsim8 wlan0: left promiscuous mode [ 92.726926][ T5214] Bluetooth: hci0: unexpected event 0x01 length: 4 > 1 [ 92.756933][ T5257] usb 6-1: USB disconnect, device number 2 [ 92.792155][ T5214] Bluetooth: Unexpected start frame (len 26) [ 92.988144][ T6264] program syz.2.356 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 93.039954][ T6264] netlink: 4 bytes leftover after parsing attributes in process `syz.2.356'. [ 94.278284][ T39] kauditd_printk_skb: 3 callbacks suppressed [ 94.278299][ T39] audit: type=1400 audit(1721190775.129:305): avc: denied { create } for pid=6291 comm="syz.2.369" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 94.326342][ T6292] smc: net device batadv_slave_1 applied user defined pnetid SYZ2 [ 94.346968][ T39] audit: type=1400 audit(1721190775.199:306): avc: denied { connect } for pid=6291 comm="syz.2.369" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 94.382016][ T39] audit: type=1400 audit(1721190775.239:307): avc: denied { bind } for pid=6291 comm="syz.2.369" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 94.392815][ T39] audit: type=1400 audit(1721190775.239:308): avc: denied { node_bind } for pid=6291 comm="syz.2.369" saddr=fe88::3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1 [ 94.424979][ T39] audit: type=1400 audit(1721190775.269:309): avc: denied { create } for pid=6291 comm="syz.2.369" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 94.434828][ T39] audit: type=1400 audit(1721190775.269:310): avc: denied { name_bind } for pid=6291 comm="syz.2.369" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1 [ 94.450009][ T6296] netlink: 24 bytes leftover after parsing attributes in process `syz.1.371'. [ 94.461277][ T39] audit: type=1400 audit(1721190775.269:311): avc: denied { ioctl } for pid=6291 comm="syz.2.369" path="socket:[10232]" dev="sockfs" ino=10232 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 94.476287][ T39] audit: type=1400 audit(1721190775.289:312): avc: denied { create } for pid=6295 comm="syz.1.371" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 94.493933][ T39] audit: type=1400 audit(1721190775.289:313): avc: denied { write } for pid=6295 comm="syz.1.371" name="file0" dev="tmpfs" ino=495 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 94.510478][ T39] audit: type=1400 audit(1721190775.299:314): avc: denied { open } for pid=6295 comm="syz.1.371" path="/93/file0" dev="tmpfs" ino=495 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 94.995780][ T6324] evm: overlay not supported [ 95.035583][ T6326] netlink: 24 bytes leftover after parsing attributes in process `syz.1.384'. [ 95.197895][ T6326] blktrace: Concurrent blktraces are not allowed on loop3 [ 95.436933][ T6339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:aa) already exists on: batadv_slave_0 [ 95.441977][ T6339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.446402][ T6339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:aa) already exists on: batadv_slave_0 [ 95.453617][ T6339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.648034][ T6355] netlink: 24 bytes leftover after parsing attributes in process `syz.0.395'. [ 95.697918][ T6359] program syz.2.394 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 95.739354][ T6359] netlink: 4 bytes leftover after parsing attributes in process `syz.2.394'. [ 95.771064][ T5214] Bluetooth: hci2: unexpected event 0x01 length: 4 > 1 [ 95.936683][ T6373] openvswitch: netlink: Missing key (keys=20040, expected=200000) [ 96.029151][ T6381] ip6t_rpfilter: unknown options [ 96.111400][ T6388] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode active-backup(1) [ 96.174221][ T6393] netlink: 24 bytes leftover after parsing attributes in process `syz.0.411'. [ 96.236999][ T6397] openvswitch: netlink: Missing key (keys=20040, expected=200000) [ 96.297837][ T6393] blktrace: Concurrent blktraces are not allowed on loop1 [ 96.336073][ T6403] netlink: 'syz.0.416': attribute type 1 has an invalid length. [ 96.342872][ T6403] netlink: 'syz.0.416': attribute type 2 has an invalid length. [ 96.352368][ T6401] PKCS8: Unsupported PKCS#8 version [ 96.399443][ T6408] ip6t_rpfilter: unknown options [ 96.439269][ T6411] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode active-backup(1) [ 96.510459][ T6417] openvswitch: netlink: Missing key (keys=20040, expected=200000) [ 96.646657][ T6427] netlink: 'syz.2.427': attribute type 1 has an invalid length. [ 96.649823][ T6427] netlink: 'syz.2.427': attribute type 2 has an invalid length. [ 97.319087][ T6445] ip6t_rpfilter: unknown options [ 97.447960][ T6451] openvswitch: netlink: Missing key (keys=20040, expected=200000) [ 97.967358][ T6460] netlink: 'syz.2.437': attribute type 1 has an invalid length. [ 98.001179][ T6460] netlink: 'syz.2.437': attribute type 2 has an invalid length. [ 98.683791][ T6478] openvswitch: netlink: Missing key (keys=20040, expected=200000) [ 98.831432][ T6483] netlink: 'syz.0.446': attribute type 1 has an invalid length. [ 98.834944][ T6483] netlink: 'syz.0.446': attribute type 2 has an invalid length. [ 99.362400][ T6504] netlink: 'syz.2.455': attribute type 1 has an invalid length. [ 99.365886][ T6504] netlink: 'syz.2.455': attribute type 2 has an invalid length. [ 99.440777][ T39] kauditd_printk_skb: 29 callbacks suppressed [ 99.440793][ T39] audit: type=1400 audit(1721190780.299:344): avc: denied { setopt } for pid=6505 comm="syz.2.457" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 99.463996][ T6506] netlink: 168 bytes leftover after parsing attributes in process `syz.2.457'. [ 99.488557][ T6506] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8) [ 99.491641][ T6506] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 99.497044][ T6506] vhci_hcd vhci_hcd.0: Device attached [ 99.601885][ T5214] Bluetooth: hci0: unexpected event 0x01 length: 4 > 1 [ 99.664908][ T5214] Bluetooth: Unexpected start frame (len 26) [ 99.810388][ T1957] usb 18-1: SetAddress Request (2) to port 0 [ 99.814112][ T1957] usb 18-1: new SuperSpeed USB device number 2 using vhci_hcd [ 100.269258][ T6513] vhci_hcd: connection reset by peer [ 100.279513][ T1093] vhci_hcd: stop threads [ 100.286926][ T1093] vhci_hcd: release socket [ 100.290540][ T1093] vhci_hcd: disconnect device [ 100.409757][ T39] audit: type=1400 audit(1721190781.259:345): avc: denied { watch } for pid=6533 comm="syz.1.464" path="/117/control" dev="tmpfs" ino=619 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 100.852827][ T39] audit: type=1400 audit(1721190781.709:346): avc: denied { read } for pid=6558 comm="syz.2.474" path="socket:[13288]" dev="sockfs" ino=13288 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 101.330352][ T6576] netlink: 24 bytes leftover after parsing attributes in process `syz.2.481'. [ 101.568225][ T39] audit: type=1400 audit(1721190782.419:347): avc: denied { bind } for pid=6577 comm="syz.1.482" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 101.587761][ T39] audit: type=1400 audit(1721190782.439:348): avc: denied { listen } for pid=6577 comm="syz.1.482" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 101.609342][ T39] audit: type=1400 audit(1721190782.459:349): avc: denied { connect } for pid=6577 comm="syz.1.482" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 101.622962][ T39] audit: type=1400 audit(1721190782.469:350): avc: denied { name_connect } for pid=6577 comm="syz.1.482" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1 [ 101.667958][ T39] audit: type=1400 audit(1721190782.519:351): avc: denied { listen } for pid=6577 comm="syz.1.482" lport=46719 faddr=::ffff:172.30.0.2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 102.134150][ T39] audit: type=1400 audit(1721190782.989:352): avc: denied { bind } for pid=6603 comm="syz.2.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 102.142777][ T39] audit: type=1400 audit(1721190782.989:353): avc: denied { connect } for pid=6603 comm="syz.2.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 103.447446][ T6645] overlayfs: cannot append lower layer [ 103.931814][ T6662] netlink: 168 bytes leftover after parsing attributes in process `syz.0.509'. [ 103.950708][ T6662] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8) [ 103.953820][ T6662] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 103.958646][ T6662] vhci_hcd vhci_hcd.0: Device attached [ 104.270347][ T5236] usb 14-1: SetAddress Request (2) to port 0 [ 104.272802][ T5236] usb 14-1: new SuperSpeed USB device number 2 using vhci_hcd [ 104.336796][ T6688] overlayfs: cannot append lower layer [ 104.927528][ T1957] usb 18-1: device descriptor read/8, error -110 [ 105.001432][ T6665] vhci_hcd: connection reset by peer [ 105.012782][ T13] vhci_hcd: stop threads [ 105.016959][ T13] vhci_hcd: release socket [ 105.024470][ T13] vhci_hcd: disconnect device [ 105.381848][ T1957] usb usb18-port1: attempt power cycle [ 105.440258][ T6719] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 105.679220][ T6721] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 105.701554][ T6721] kvm: pic: non byte read [ 105.705861][ T6721] kvm: pic: level sensitive irq not supported [ 105.707783][ T6721] kvm: pic: non byte read [ 105.717489][ T6721] kvm: pic: level sensitive irq not supported [ 105.734529][ C3] hrtimer: interrupt took 16582419 ns [ 105.741903][ T6721] kvm: pic: non byte read [ 105.745454][ T6721] kvm: pic: level sensitive irq not supported [ 105.745811][ T6721] kvm: pic: non byte read [ 105.747626][ T39] kauditd_printk_skb: 7 callbacks suppressed [ 105.747763][ T39] audit: type=1400 audit(1721190786.599:361): avc: denied { read } for pid=6720 comm="syz.0.527" dev="sockfs" ino=14520 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 105.750841][ T1287] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 105.781688][ T6721] 9pnet_fd: Insufficient options for proto=fd [ 105.946445][ T6728] capability: warning: `syz.0.530' uses 32-bit capabilities (legacy support in use) [ 105.961257][ T1287] usb 6-1: Using ep0 maxpacket: 32 [ 105.965809][ T1287] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 105.977313][ T1287] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 105.986301][ T1287] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 105.993700][ T6732] syz.0.531 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 105.994545][ T1287] usb 6-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00 [ 106.006777][ T1287] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 106.014287][ T1287] usb 6-1: config 0 descriptor?? [ 106.048782][ T1957] usb usb18-port1: unable to enumerate USB device [ 106.202944][ T6752] input: syz1 as /devices/virtual/input/input10 [ 106.208843][ T39] audit: type=1400 audit(1721190787.059:362): avc: denied { read } for pid=4682 comm="acpid" name="event4" dev="devtmpfs" ino=2446 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 106.226138][ T39] audit: type=1400 audit(1721190787.059:363): avc: denied { open } for pid=4682 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2446 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 106.237020][ T39] audit: type=1400 audit(1721190787.059:364): avc: denied { ioctl } for pid=4682 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2446 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 106.293403][ T39] audit: type=1400 audit(1721190787.139:365): avc: denied { bind } for pid=6759 comm="syz.2.544" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 106.302688][ T39] audit: type=1400 audit(1721190787.149:366): avc: denied { name_bind } for pid=6759 comm="syz.2.544" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 106.317096][ T39] audit: type=1400 audit(1721190787.149:367): avc: denied { node_bind } for pid=6759 comm="syz.2.544" saddr=172.20.20.170 src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1 [ 106.383809][ T39] audit: type=1400 audit(1721190787.239:368): avc: denied { name_connect } for pid=6759 comm="syz.2.544" dest=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 106.393920][ T39] audit: type=1400 audit(1721190787.239:369): avc: denied { shutdown } for pid=6769 comm="syz.0.550" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 106.443042][ T1287] ntrig 0003:1B96:000A.0006: unknown main item tag 0x0 [ 106.446207][ T1287] ntrig 0003:1B96:000A.0006: unknown main item tag 0x0 [ 106.449249][ T1287] ntrig 0003:1B96:000A.0006: unknown main item tag 0x0 [ 106.452343][ T1287] ntrig 0003:1B96:000A.0006: unknown main item tag 0x0 [ 106.456975][ T1287] ntrig 0003:1B96:000A.0006: unknown main item tag 0x0 [ 106.471339][ T1287] ntrig 0003:1B96:000A.0006: hidraw1: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.1-1/input0 [ 106.472986][ C1] ================================================================== [ 106.479842][ C1] BUG: KASAN: stack-out-of-bounds in __xsk_map_flush+0x267/0x310 [ 106.483312][ C1] Read of size 8 at addr ffffc900047d7c18 by task syz.0.550/6771 [ 106.488003][ C1] [ 106.489000][ C1] CPU: 1 PID: 6771 Comm: syz.0.550 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 106.493821][ C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 106.498202][ C1] Call Trace: [ 106.499456][ C1] [ 106.500666][ C1] dump_stack_lvl+0x116/0x1f0 [ 106.502661][ C1] print_report+0xc3/0x620 [ 106.504837][ C1] ? __virt_addr_valid+0x5e/0x590 [ 106.507035][ C1] kasan_report+0xd9/0x110 [ 106.509014][ C1] ? __xsk_map_flush+0x267/0x310 [ 106.511312][ C1] ? __xsk_map_flush+0x267/0x310 [ 106.513542][ C1] __xsk_map_flush+0x267/0x310 [ 106.515783][ C1] xdp_do_check_flushed+0x175/0x4e0 [ 106.518171][ C1] __napi_poll.constprop.0+0xd1/0x550 [ 106.520532][ C1] net_rx_action+0xa92/0x1010 [ 106.522704][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 106.524875][ C1] ? kvm_sched_clock_read+0x11/0x20 [ 106.527116][ C1] ? sched_clock+0x38/0x60 [ 106.529088][ C1] ? sched_clock_cpu+0x6d/0x4d0 [ 106.531145][ C1] handle_softirqs+0x216/0x8f0 [ 106.533126][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 106.535144][ C1] irq_exit_rcu+0xbb/0x120 [ 106.536790][ C1] common_interrupt+0xb0/0xd0 [ 106.539163][ C1] [ 106.540424][ C1] [ 106.541710][ C1] asm_common_interrupt+0x26/0x40 [ 106.543731][ C1] RIP: 0010:__sanitizer_cov_trace_switch+0x54/0x90 [ 106.546335][ C1] Code: 41 bd 03 00 00 00 4c 8b 75 00 31 db 4d 85 f6 74 1e 48 8b 74 dd 10 4c 89 e2 4c 89 ef 48 83 c3 01 48 8b 4c 24 28 e8 8c fd ff ff <49> 39 de 75 e2 5b 5d 41 5c 41 5d 41 5e c3 cc cc cc cc 48 83 f8 40 [ 106.554611][ C1] RSP: 0018:ffffc900047d73e0 EFLAGS: 00000297 [ 106.557334][ C1] RAX: 0000000000000002 RBX: 0000000000000003 RCX: ffffffff813d266e [ 106.560719][ C1] RDX: ffff888023552440 RSI: 0000000000000004 RDI: 0000000000000001 [ 106.564130][ C1] RBP: ffffffff8b29d0a0 R08: 0000000000000001 R09: 0000000000000004 [ 106.567344][ C1] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001 [ 106.570668][ C1] R13: 0000000000000001 R14: 0000000000000003 R15: 0000000000000001 [ 106.574024][ C1] ? unwind_next_frame+0xebe/0x23a0 [ 106.576293][ C1] unwind_next_frame+0xebe/0x23a0 [ 106.578556][ C1] ? arch_stack_walk+0xb2/0x170 [ 106.580828][ C1] __unwind_start+0x5aa/0x880 [ 106.583033][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 106.585813][ C1] arch_stack_walk+0xb2/0x170 [ 106.587925][ C1] ? stack_trace_save+0x95/0xd0 [ 106.590313][ C1] stack_trace_save+0x95/0xd0 [ 106.592467][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 106.595823][ C1] ? stack_trace_save+0x95/0xd0 [ 106.597965][ C1] ? stack_depot_save_flags+0x28/0x8f0 [ 106.600373][ C1] kasan_save_stack+0x33/0x60 [ 106.602492][ C1] kasan_save_track+0x14/0x30 [ 106.604611][ C1] __kasan_slab_alloc+0x89/0x90 [ 106.606751][ C1] kmem_cache_alloc_noprof+0x121/0x2f0 [ 106.609083][ C1] ? seq_open+0x5b/0x180 [ 106.610890][ C1] seq_open+0x5b/0x180 [ 106.612595][ C1] __seq_open_private+0x3e/0xd0 [ 106.614659][ C1] seq_open_private+0x24/0x40 [ 106.616625][ C1] mounts_open_common+0x2e8/0x770 [ 106.618712][ C1] ? __pfx_show_vfsmnt+0x10/0x10 [ 106.620804][ C1] ? __pfx_mounts_open_common+0x10/0x10 [ 106.623112][ C1] do_dentry_open+0x91f/0x15f0 [ 106.625094][ C1] ? __pfx_mounts_open+0x10/0x10 [ 106.627215][ C1] ? inode_permission+0xdd/0x5f0 [ 106.629302][ C1] vfs_open+0x82/0x3f0 [ 106.630936][ C1] ? may_open+0x1f2/0x400 [ 106.632687][ C1] path_openat+0x2141/0x2d20 [ 106.634471][ C1] ? __pfx_path_openat+0x10/0x10 [ 106.636487][ C1] ? __pfx___lock_acquire+0x10/0x10 [ 106.638576][ C1] ? find_held_lock+0x2d/0x110 [ 106.640559][ C1] do_filp_open+0x1dc/0x430 [ 106.642462][ C1] ? __pfx_do_filp_open+0x10/0x10 [ 106.644667][ C1] ? find_held_lock+0x2d/0x110 [ 106.646836][ C1] ? __pfx_kfree_link+0x10/0x10 [ 106.649106][ C1] ? _raw_spin_unlock+0x28/0x50 [ 106.651334][ C1] ? alloc_fd+0x2d7/0x6c0 [ 106.653416][ C1] do_sys_openat2+0x17a/0x1e0 [ 106.655500][ C1] ? __pfx_do_sys_openat2+0x10/0x10 [ 106.657756][ C1] ? __seccomp_filter+0x6a2/0xf40 [ 106.660082][ C1] ? __pfx___seccomp_filter+0x10/0x10 [ 106.662394][ C1] __x64_sys_openat+0x175/0x210 [ 106.664528][ C1] ? __pfx___x64_sys_openat+0x10/0x10 [ 106.667209][ C1] ? __secure_computing+0x273/0x3f0 [ 106.669478][ C1] do_syscall_64+0xcd/0x250 [ 106.671291][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.673850][ C1] RIP: 0033:0x7efdb2374450 [ 106.675686][ C1] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 79 8d 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 cc 8d 02 00 8b 44 [ 106.683938][ C1] RSP: 002b:00007efdb3157f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 106.687532][ C1] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007efdb2374450 [ 106.691271][ C1] RDX: 0000000000000002 RSI: 00007efdb3157fb0 RDI: 00000000ffffff9c [ 106.694366][ C1] RBP: 00007efdb3157fb0 R08: 0000000000000000 R09: 0000000000000000 [ 106.697355][ C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 106.700478][ C1] R13: 000000000000000b R14: 00007efdb2503f60 R15: 00007ffd3f6b5788 [ 106.703561][ C1] [ 106.704931][ C1] [ 106.705971][ C1] The buggy address belongs to stack of task syz.0.550/6771 [ 106.708922][ C1] and is located at offset 24 in frame: [ 106.711439][ C1] do_filp_open+0x0/0x430 [ 106.713279][ C1] [ 106.714185][ C1] This frame has 1 object: [ 106.715843][ C1] [48, 280) 'nd' [ 106.715852][ C1] [ 106.718309][ C1] The buggy address belongs to the virtual mapping at [ 106.718309][ C1] [ffffc900047d0000, ffffc900047d9000) created by: [ 106.718309][ C1] kernel_clone+0xfd/0x980 [ 106.725689][ C1] [ 106.726664][ C1] The buggy address belongs to the physical page: [ 106.728769][ C1] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88802e68ac80 pfn:0x2e68a [ 106.732655][ C1] memcg:ffff888042882282 [ 106.734586][ C1] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 106.738347][ C1] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 106.741742][ C1] raw: ffff88802e68ac80 0000000000000000 00000001ffffffff ffff888042882282 [ 106.745298][ C1] page dumped because: kasan: bad access detected [ 106.748278][ C1] page_owner tracks the page as allocated [ 106.751011][ C1] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x102dc2(GFP_HIGHUSER|__GFP_NOWARN|__GFP_ZERO), pid 6755, tgid 6755 (syz.0.543), ts 106235955647, free_ts 106200649292 [ 106.759648][ C1] post_alloc_hook+0x2d1/0x350 [ 106.761991][ C1] get_page_from_freelist+0x1353/0x2e50 [ 106.764478][ C1] __alloc_pages_noprof+0x22b/0x2460 [ 106.767627][ C1] alloc_pages_mpol_noprof+0x275/0x610 [ 106.770431][ C1] __vmalloc_node_range_noprof+0xa6a/0x1520 [ 106.773091][ C1] copy_process+0x2f3b/0x8de0 [ 106.775357][ C1] kernel_clone+0xfd/0x980 [ 106.777542][ C1] __do_sys_clone3+0x1f5/0x270 [ 106.780232][ C1] do_syscall_64+0xcd/0x250 [ 106.782493][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.785429][ C1] page last free pid 0 tgid 0 stack trace: [ 106.787887][ C1] free_unref_page+0x64a/0xe40 [ 106.789547][ C1] __folio_put+0x239/0x360 [ 106.791273][ C1] free_page_and_swap_cache+0x249/0x2c0 [ 106.793559][ C1] tlb_remove_table_rcu+0x89/0xe0 [ 106.796224][ C1] rcu_core+0x828/0x16b0 [ 106.798138][ C1] handle_softirqs+0x216/0x8f0 [ 106.800679][ C1] irq_exit_rcu+0xbb/0x120 [ 106.803131][ C1] sysvec_apic_timer_interrupt+0x95/0xb0 [ 106.806221][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 106.809162][ C1] [ 106.810237][ C1] Memory state around the buggy address: [ 106.813209][ C1] ffffc900047d7b00: 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00 [ 106.827533][ C1] ffffc900047d7b80: 00 f3 f3 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 106.831283][ C1] >ffffc900047d7c00: f1 f1 f1 f1 f1 f1 00 00 00 00 00 00 00 00 00 00 [ 106.834873][ C1] ^ [ 106.837057][ C1] ffffc900047d7c80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 106.841659][ C1] ffffc900047d7d00: 00 00 00 f3 f3 f3 f3 f3 f3 f3 f3 f3 00 00 00 00 [ 106.845581][ C1] ================================================================== [ 106.849211][ C1] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 106.851873][ C1] CPU: 1 PID: 6771 Comm: syz.0.550 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 106.855640][ C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 106.860643][ C1] Call Trace: [ 106.862100][ C1] [ 106.863323][ C1] dump_stack_lvl+0x3d/0x1f0 [ 106.865164][ C1] panic+0x6f5/0x7a0 [ 106.867047][ C1] ? __pfx_panic+0x10/0x10 [ 106.869534][ C1] ? irqentry_exit+0x3b/0x90 [ 106.871716][ C1] ? lockdep_hardirqs_on+0x7c/0x110 [ 106.873776][ C1] ? check_panic_on_warn+0x1f/0xb0 [ 106.876002][ C1] check_panic_on_warn+0xab/0xb0 [ 106.878046][ C1] end_report+0x117/0x180 [ 106.879746][ C1] kasan_report+0xe9/0x110 [ 106.881802][ C1] ? __xsk_map_flush+0x267/0x310 [ 106.883694][ C1] ? __xsk_map_flush+0x267/0x310 [ 106.885408][ C1] __xsk_map_flush+0x267/0x310 [ 106.887160][ C1] xdp_do_check_flushed+0x175/0x4e0 [ 106.889313][ C1] __napi_poll.constprop.0+0xd1/0x550 [ 106.891787][ C1] net_rx_action+0xa92/0x1010 [ 106.893757][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 106.895889][ C1] ? kvm_sched_clock_read+0x11/0x20 [ 106.898112][ C1] ? sched_clock+0x38/0x60 [ 106.900034][ C1] ? sched_clock_cpu+0x6d/0x4d0 [ 106.901993][ C1] handle_softirqs+0x216/0x8f0 [ 106.904417][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 106.906770][ C1] irq_exit_rcu+0xbb/0x120 [ 106.908787][ C1] common_interrupt+0xb0/0xd0 [ 106.910897][ C1] [ 106.912123][ C1] [ 106.913452][ C1] asm_common_interrupt+0x26/0x40 [ 106.915725][ C1] RIP: 0010:__sanitizer_cov_trace_switch+0x54/0x90 [ 106.918555][ C1] Code: 41 bd 03 00 00 00 4c 8b 75 00 31 db 4d 85 f6 74 1e 48 8b 74 dd 10 4c 89 e2 4c 89 ef 48 83 c3 01 48 8b 4c 24 28 e8 8c fd ff ff <49> 39 de 75 e2 5b 5d 41 5c 41 5d 41 5e c3 cc cc cc cc 48 83 f8 40 [ 106.933231][ C1] RSP: 0018:ffffc900047d73e0 EFLAGS: 00000297 [ 106.935663][ C1] RAX: 0000000000000002 RBX: 0000000000000003 RCX: ffffffff813d266e [ 106.939008][ C1] RDX: ffff888023552440 RSI: 0000000000000004 RDI: 0000000000000001 [ 106.942486][ C1] RBP: ffffffff8b29d0a0 R08: 0000000000000001 R09: 0000000000000004 [ 106.946137][ C1] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001 [ 106.949718][ C1] R13: 0000000000000001 R14: 0000000000000003 R15: 0000000000000001 [ 106.953294][ C1] ? unwind_next_frame+0xebe/0x23a0 [ 106.955677][ C1] unwind_next_frame+0xebe/0x23a0 [ 106.957922][ C1] ? arch_stack_walk+0xb2/0x170 [ 106.960225][ C1] __unwind_start+0x5aa/0x880 [ 106.962459][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 106.965408][ C1] arch_stack_walk+0xb2/0x170 [ 106.967496][ C1] ? stack_trace_save+0x95/0xd0 [ 106.969527][ C1] stack_trace_save+0x95/0xd0 [ 106.971533][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 106.973785][ C1] ? stack_trace_save+0x95/0xd0 [ 106.976140][ C1] ? stack_depot_save_flags+0x28/0x8f0 [ 106.978583][ C1] kasan_save_stack+0x33/0x60 [ 106.980721][ C1] kasan_save_track+0x14/0x30 [ 106.982759][ C1] __kasan_slab_alloc+0x89/0x90 [ 106.984688][ C1] kmem_cache_alloc_noprof+0x121/0x2f0 [ 106.986994][ C1] ? seq_open+0x5b/0x180 [ 106.988918][ C1] seq_open+0x5b/0x180 [ 106.990685][ C1] __seq_open_private+0x3e/0xd0 [ 106.992804][ C1] seq_open_private+0x24/0x40 [ 106.994942][ C1] mounts_open_common+0x2e8/0x770 [ 106.997199][ C1] ? __pfx_show_vfsmnt+0x10/0x10 [ 106.999452][ C1] ? __pfx_mounts_open_common+0x10/0x10 [ 107.002228][ C1] do_dentry_open+0x91f/0x15f0 [ 107.004456][ C1] ? __pfx_mounts_open+0x10/0x10 [ 107.006733][ C1] ? inode_permission+0xdd/0x5f0 [ 107.008767][ C1] vfs_open+0x82/0x3f0 [ 107.010543][ C1] ? may_open+0x1f2/0x400 [ 107.012469][ C1] path_openat+0x2141/0x2d20 [ 107.014537][ C1] ? __pfx_path_openat+0x10/0x10 [ 107.016782][ C1] ? __pfx___lock_acquire+0x10/0x10 [ 107.019125][ C1] ? find_held_lock+0x2d/0x110 [ 107.021313][ C1] do_filp_open+0x1dc/0x430 [ 107.023313][ C1] ? __pfx_do_filp_open+0x10/0x10 [ 107.025337][ C1] ? find_held_lock+0x2d/0x110 [ 107.027373][ C1] ? __pfx_kfree_link+0x10/0x10 [ 107.029970][ C1] ? _raw_spin_unlock+0x28/0x50 [ 107.032178][ C1] ? alloc_fd+0x2d7/0x6c0 [ 107.034137][ C1] do_sys_openat2+0x17a/0x1e0 [ 107.036256][ C1] ? __pfx_do_sys_openat2+0x10/0x10 [ 107.038592][ C1] ? __seccomp_filter+0x6a2/0xf40 [ 107.040657][ C1] ? __pfx___seccomp_filter+0x10/0x10 [ 107.042952][ C1] __x64_sys_openat+0x175/0x210 [ 107.045052][ C1] ? __pfx___x64_sys_openat+0x10/0x10 [ 107.047408][ C1] ? __secure_computing+0x273/0x3f0 [ 107.049670][ C1] do_syscall_64+0xcd/0x250 [ 107.051546][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.053967][ C1] RIP: 0033:0x7efdb2374450 [ 107.055956][ C1] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 79 8d 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 cc 8d 02 00 8b 44 [ 107.064896][ C1] RSP: 002b:00007efdb3157f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 107.068632][ C1] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007efdb2374450 [ 107.072222][ C1] RDX: 0000000000000002 RSI: 00007efdb3157fb0 RDI: 00000000ffffff9c [ 107.075794][ C1] RBP: 00007efdb3157fb0 R08: 0000000000000000 R09: 0000000000000000 [ 107.078907][ C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 107.082435][ C1] R13: 000000000000000b R14: 00007efdb2503f60 R15: 00007ffd3f6b5788 [ 107.086054][ C1] [ 107.087940][ C1] Kernel Offset: disabled [ 107.089667][ C1] Rebooting in 86400 seconds.. VM DIAGNOSIS: 04:33:07 Registers: info registers vcpu 0 CPU#0 RAX=00000000001c0755 RBX=0000000000000000 RCX=ffffffff8aebe9a9 RDX=0000000000000000 RSI=ffffffff8b2cb4c0 RDI=ffffffff8b904ee0 RBP=fffffbfff1b12af8 RSP=ffffffff8d807e20 R8 =0000000000000001 R9 =ffffed100d606fe1 R10=ffff88806b037f0b R11=0000000000000000 R12=0000000000000000 R13=ffffffff8d8957c0 R14=ffffffff8fe540d8 R15=0000000000000000 RIP=ffffffff8aebfd9f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b000000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f888d6c9d58 CR3=0000000041c7e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe24b974e0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f93261e430e ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f93261e431b ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f93261e4315 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f93261e4329 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f93261e43af ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f93261e448d ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84fe3125 RDI=ffffffff94dff3e0 RBP=ffffffff94dff3a0 RSP=ffffc900008b0740 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552 R12=0000000000000000 R13=0000000000000066 R14=ffffffff84fe30c0 R15=0000000000000000 RIP=ffffffff84fe314f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007efdb31586c0 ffffffff 00c00000 GS =0000 ffff88806b100000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000001b316e0ff8 CR3=0000000020ef0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000020520001 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efdb3157fa0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efdb23e430e ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efdb23e431b ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efdb23e4315 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efdb23e4329 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efdb23e43af ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efdb23e448d ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2973252865746972 770073252f64252f 6b7361742f666c65 732f636f72702f00 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0c56000d40514c57 520056000a41000a 4e5644510a434940 560a464a57550a00 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 000000000000004c ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=000000000009bc0b RBX=0000000000000002 RCX=ffffffff8aebe9a9 RDX=0000000000000000 RSI=ffffffff8b2cb4c0 RDI=ffffffff8b904ee0 RBP=ffffed1002fd9000 RSP=ffffc90000197e08 R8 =0000000000000001 R9 =ffffed100d646fe1 R10=ffff88806b237f0b R11=0000000000000000 R12=0000000000000002 R13=ffff888017ec8000 R14=ffffffff8fe540d8 R15=0000000000000000 RIP=ffffffff8aebfd9f RFL=00000242 [---Z---] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b200000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c332a78 CR3=000000002a3ee000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000003172 656c6c616b7a7973 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888c9e430e ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888c9e431b ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888c9e4315 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888c9e4329 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888c9e43af ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888c9e448d ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888cad4488 00007f888cad4480 00007f888cad4478 00007f888cad4450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888d63d100 00007f888cad4440 00007f888cad0004 0000000b000c000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888cad4498 00007f888cad4490 00007f888cad4488 00007f888cad4480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=00000004000008fb RBX=0000000000000001 RCX=0000000000000830 RDX=0000000000000004 RSI=00000000000000fb RDI=0000000000000004 RBP=0000000000000002 RSP=ffffc90002fb7b28 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffffffff81618590 R12=0000000000000002 R13=0000000000000000 R14=ffff88806b23ec80 R15=ffff888028d52801 RIP=ffffffff813bc108 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 00007f888d6c96c0 ffffffff 00c00000 GS =0000 ffff88806b300000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055558866a808 CR3=000000002a3ee000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888c9e430e ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888c9e431b ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888c9e4315 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888c9e4329 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888c9e43af ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888c9e448d ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888cad4488 00007f888cad4480 00007f888cad4478 00007f888cad4450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888d63d100 00007f888cad4440 00007f888cad4458 00007f888cad44a0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f888cad4498 00007f888cad4490 00007f888cad4488 00007f888cad4480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000