last executing test programs: 2.285824794s ago: executing program 1 (id=148): mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x2b38094, 0x0) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000080)='./file1\x00') r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) setpgid(r0, 0x0) setpgid(0x0, r0) mkdir(&(0x7f0000000140)='./file1/file0\x00', 0xa) mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='mpol=prefer=re']) 2.237017962s ago: executing program 1 (id=150): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x9) r1 = socket$inet_mptcp(0x2, 0x1, 0x106) sendmmsg(r1, 0x0, 0x0, 0x20044000) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r3, @ANYBLOB="010000000000fbdbdf250100030008000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}}, 0x20000000) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, r3, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800) bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r4 = socket(0x2a, 0x2, 0x0) getsockname$packet(r4, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0x4, 0x70bd28, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x10}, {0xd}, {0x0, 0x7}}}, 0x24}}, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0) 2.187482408s ago: executing program 1 (id=153): r0 = socket$inet6(0xa, 0x3, 0x8000000003c) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x528, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x588) listen(0xffffffffffffffff, 0xfff) syz_emit_ethernet(0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="bbbbbbbbbbbb00000000000086dd600a843500380600fe8000070000000000000000000000bbfe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="e002000000000000000521e11a1312a95c044c8ba98e5ce6fe0bf989560eba880000000000000000"], 0x0) 1.59757607s ago: executing program 1 (id=171): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x9) r1 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, 0x0, 0x20000000) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r2, 0x0, 0x800) socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sendmsg$sock(r0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000}, 0x2404c855) 1.597344602s ago: executing program 1 (id=172): rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0) mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19) capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000280)) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0x10) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) syz_usb_disconnect(r1) syz_usb_connect(0x6, 0x24, &(0x7f0000000280)=ANY=[], 0x0) ioctl$EVIOCRMFF(r1, 0x40045506, 0x0) r2 = userfaultfd(0x80801) r3 = io_uring_setup(0x676f, &(0x7f0000000140)={0x0, 0x471, 0x2, 0x1, 0xd6}) syz_io_uring_setup(0x1c3e, &(0x7f00000001c0)={0x0, 0xa391, 0x200, 0x1, 0x3cc, 0x0, r3}, &(0x7f0000000080), &(0x7f0000000240)) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) r4 = userfaultfd(0x80001) ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r4, 0xc020aa07, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x0, 0x2}) ioctl$UFFDIO_WRITEPROTECT(r4, 0xc018aa06, &(0x7f0000000000)={{&(0x7f00006fd000/0x3000)=nil, 0x3000}, 0x3}) semctl$IPC_RMID(r0, 0x0, 0x0) 996.847743ms ago: executing program 2 (id=182): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x9) r1 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, 0x0, 0x20000000) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r2, 0x0, 0x800) socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sendmsg$sock(r0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500000}, 0x2404c855) 926.581289ms ago: executing program 2 (id=183): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c040, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000002480)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x5, &(0x7f0000000040)}, 0x0) sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x20040000}, 0x0) setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f0000000040), 0x4) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='nfs4\x00', 0x0, &(0x7f00000001c0)='\x01') mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) setpgid(r0, 0x0) setpgid(0x0, r0) mkdir(&(0x7f0000000140)='./file1/file0\x00', 0xa) 925.309728ms ago: executing program 2 (id=185): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mkdir(0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x8cff, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}]}) 876.792241ms ago: executing program 2 (id=187): bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x19, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000003c000000000000000000000061121c000000000095"], &(0x7f0000000600)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 876.274436ms ago: executing program 2 (id=189): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x9}, 0x1c) listen(r0, 0x3) syz_emit_ethernet(0x86, &(0x7f00000001c0)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local, {[@timestamp_addr={0x44, 0x4, 0xd5, 0x1, 0x4}]}}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x18, 0x2, 0x0, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x6}, @exp_smc={0xfe, 0x6}, @exp_fastopen={0xfe, 0x10, 0xf989, "9fca59893b5031248415bcf1"}, @timestamp={0x8, 0xa, 0x200, 0x9}, @sack={0x5, 0xa, [0x2, 0x2]}, @exp_fastopen={0xfe, 0xb, 0xf989, "43ecdca921d221"}, @sack_perm={0x4, 0x2}, @fastopen={0x22, 0x6, "8537c855"}, @sack={0x5, 0x2}]}}}}}}}, 0x0) 875.18577ms ago: executing program 2 (id=190): r0 = syz_open_dev$radio(&(0x7f0000000000), 0x2, 0x2) ioctl$VIDIOC_S_JPEGCOMP(r0, 0x408c563e, &(0x7f0000000040)={0x7fff, 0xa, 0x33, "230d31924a9f4856edcf104fdba1fac2803939d5f3030b6486dbe7e28986c1f2f51f04695c269f2a4efa82d84baec295ded6a2f58b874d9a3ad22e63", 0x8, "40864ffd7230e2bb25766cc389b5086e11eb017ee836d3c55f41b9bd53abb32e350466a81239827adfe563947eba9c4ce3b6a70a6e15393eb1e14b8d", 0x8}) mount(&(0x7f0000000100)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='bfs\x00', 0x80004, &(0x7f00000001c0)='+%*,.\x00') prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000240)={0x6, &(0x7f0000000200)=[{0x800, 0x8, 0x9e, 0x9}, {0x240, 0xf4, 0x4, 0x1}, {0x8, 0x4, 0x2, 0x1}, {0xf, 0x7, 0x81, 0x1}, {0x0, 0x5, 0xd, 0x542}, {0xff00, 0x6, 0x7, 0x4}]}) chdir(&(0x7f0000000280)='./file0\x00') r1 = signalfd(r0, &(0x7f00000002c0)={[0x6]}, 0x8) chroot(&(0x7f0000000300)='./file0\x00') mkdir(&(0x7f0000000340)='./file0\x00', 0x101) ioctl$VIDIOC_G_MODULATOR(r1, 0xc0445636, &(0x7f0000000380)={0x80000001, "7f1ffa6cbaa476e10a39301311038725e471f766c5aea7c456f61786dd852b5a", 0x800, 0xfffffffa, 0xe33, 0x10, 0x4}) ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000440)={0x5, &(0x7f0000000400)=[{0x3, 0xf, 0x80, 0x2}, {0x5, 0x2, 0x0, 0x6}, {0xa, 0x7, 0x7, 0x3}, {0x2, 0x2, 0xfc, 0xffff}, {0x6, 0xda, 0xc}]}) getsockopt$inet_sctp6_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f0000000480), &(0x7f00000004c0)=0x4) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000500)) ioctl$SNDCTL_SEQ_THRESHOLD(r1, 0x4004510d, &(0x7f0000000540)=0x4766) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000580), &(0x7f00000005c0)=0x4) sync_file_range(0xffffffffffffffff, 0x68e, 0x5, 0x5) chdir(&(0x7f0000000600)='./file0\x00') setxattr$security_ima(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680), &(0x7f00000006c0)=@v1={0x2, "0ca1b09c"}, 0x5, 0x2) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) fcntl$getflags(r2, 0x9) ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r1, 0x3312, 0xffffffff) setxattr$security_selinux(&(0x7f0000000700)='./file0\x00', &(0x7f0000000740), &(0x7f0000000780)='system_u:object_r:userio_device_t:s0\x00', 0x25, 0x1) connect$pppl2tp(r1, &(0x7f00000007c0)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x4, 0x1, 0x2, 0x1}}, 0x26) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000800)={'ip_vti0\x00'}) ioctl$SNDRV_CTL_IOCTL_PVERSION(r1, 0x80045500, &(0x7f0000000840)) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000880)='ip6erspan0\x00', 0x10) mknodat$null(r1, &(0x7f00000008c0)='./file0\x00', 0x400, 0x103) ioctl$BTRFS_IOC_SCRUB(r2, 0xc400941b, &(0x7f0000000900)={0x0, 0xcdb, 0x10000}) ioctl$BTRFS_IOC_SCRUB(r2, 0xc400941b, &(0x7f0000000d00)={r3, 0x2, 0x46}) ioctl$PTP_EXTTS_REQUEST2(r1, 0x40103d0b, &(0x7f0000001100)={0x8, 0x5}) setsockopt$SO_J1939_ERRQUEUE(0xffffffffffffffff, 0x6b, 0x4, &(0x7f0000001140)=0x1, 0x4) 826.972166ms ago: executing program 1 (id=192): openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) socket$packet(0x11, 0x2, 0x300) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000406d041bc70000000000010902"], 0x0) socket$inet6_udp(0xa, 0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_netfilter(0x10, 0x3, 0xc) socket$inet6_udplite(0xa, 0x2, 0x88) socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x1, 0x803, 0x0) pipe(&(0x7f0000000100)) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000007b000304fcffffff3f00000000000000", @ANYRES32=0x0, @ANYBLOB="a5fdad8800000000140012800b0001006970766c616e00000400028008000500", @ANYBLOB='\b'], 0x44}, 0x1, 0x300000000000000, 0x0, 0x4004}, 0x0) 688.403039ms ago: executing program 0 (id=199): r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r2, 0x8b19, &(0x7f0000000080)={'wlan1\x00', @random="02000014000a"}) r3 = accept4$unix(0xffffffffffffffff, 0x0, &(0x7f0000000480), 0x81800) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x14, 0x27, 0x9, 0x4, 0x0, {0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x810}, 0x14) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@bloom_filter={0x1e, 0x5b, 0x4, 0xa, 0x20000, 0xffffffffffffffff, 0xad54, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x2, 0x3, @void, @value, @void, @value}, 0x50) sendmsg$netlink(r2, &(0x7f00000005c0)={&(0x7f0000000040)=@kern={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000003c0)=[{&(0x7f0000000200)={0x1b4, 0x13, 0x100, 0x70bd2a, 0x25dfdbfc, "", [@typed={0xa1, 0x7, 0x0, 0x0, @binary="b87a1295dffb93fd7199c7828f09cd8fabbaf0465c26c673f6655d881c8a6c6c3d8710ad0cbf9310a2f88990b27d78fa2de163d4e90e14b179fcce39eb3f627c2dcd2b1d3e02749ffefe00f2637a1c30280c8747b5d13b1a02eb3b776f362c98e9a3f41c3cb5cf273ac17cf262dba5cf06b75ee991728a76f27d03544c273c1bcab3df9bad111647b2f6e8fd11cde845df1dfdef2776b72695548eb67b"}, @generic="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"]}, 0x1b4}, {&(0x7f0000001d80)={0x1140, 0x1d, 0x401, 0x70bd29, 0x25dfdbfb, "", [@typed={0x6, 0xe8, 0x0, 0x0, @str='&\x00'}, @nested={0x111e, 0xf, 0x0, 0x1, [@generic="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", @generic="6493145949198fefd7ed710f", @typed={0xc, 0x123, 0x0, 0x0, @u64=0x4}, @generic="24d2ef6668b03fdf6ab4d97fa9fe458d562d9bcc80a6ee59c0d781449beacdf1b35caa60c6026d5ff8100ce9f482ca28c207e2f170292d1a20d7699305cfeef9ec85c844d3846098c74248c56129c02dee6ba74c2d88be9c81705bc9304390350230d297de21c66bd26a7e576bb81a216cc6bac8ef1f2bee35735d6d7a36ca1aad3a122e47672691ed6ea0753a48f8", @generic="874eadcf88b437223935f71decdd4834ef005a71a513932256d12760a85866a405fb4c3e308b4311bacd8e02c5df130397872700679194d626c6df27b72279abc05b731ff86e718b0fc4aabd808377c64723bb4371edeada5878d9137e8d6f7c2c159810d5cb02", @typed={0x8, 0x73, 0x0, 0x0, @u32=0x7}, @nested={0x4, 0x68}]}, @typed={0x8, 0x72, 0x0, 0x0, @fd=r0}]}, 0x1140}], 0x2, &(0x7f0000000540)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}, @rights={{0x34, 0x1, 0x1, [r3, r4, 0xffffffffffffffff, r5, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, r0]}}], 0x78}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b4050000000000006910a40000000000bc001000000000009500000000000000ef4f7c81f5427c16bd2aacf32cdbb47063fd9a7bb1f3ad622c3261f324e081c0ea39bd16d9869302cc08fbd94867708cb208e22cc0ad536525e3b39869285c126353f6a49bc5abc6b9a4eab313655286ee33a56f03b665dd5f1739bda6accc3b9b0d26450d3161263aed01194269a5fba4553bb18fa1f37e2f68a8ef81f090829d0ee04b52611a41642b31a6fe2653171379cc327fc11e38418b589777f8c8ddcbf88df947a05937ea"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={0xffffffffffffffff, r1, 0x25, 0x0, @void}, 0x10) syz_emit_ethernet(0xd81, &(0x7f0000000fc0)={@local, @broadcast, @val={@void, {0x8100, 0x2}}, {@ipv4={0x800, @gre={{0x5, 0x4, 0x3, 0x1, 0xd6f, 0x64, 0x0, 0x4, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr=0x64010101}, {{0x0, 0x0, 0x1, 0x1}, {0x1, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x1}, {0x8, 0x88be, 0x1, {{0x1, 0x1, 0xfa, 0x1, 0x0, 0x3, 0x7, 0x5}, 0x1, {0x1000}}}, {0x8, 0x22eb, 0x1, {{0x1, 0x2, 0x9, 0x1, 0x1, 0x1, 0x6, 0x10}, 0x2, {0x5d1, 0x40, 0x1, 0x15, 0x1, 0x1, 0x2, 0x1}}}, {0x8, 0x6558, 0x1, "3e9c7461135f3431c2d3ca7b42d20ba7a787f88c935da22c690597fc4c209f8f12ffc1876878d010b6b17d6f2e66175bf144289484a27b46f2adf6f8869bc24983094224f27aa9ea5149987348ab70db2234b2d9f0ab52f2216ed4b59dcc15c6e6ebb1fa972bb4b06da1b8401d0f811c9a9c2bc7cf23635e32af59f3deae9f40b93477879611c15444da1d841ad494be856af161da849f1b3e2a3dbd02a0d34f685795ec0ce67b7b93d4bae8fcd98d5cc1c775cc5dc88cde84b99e2118d8113ffd3b74952a12b3764165af3211bf79c8573d3623877718a180fe6bb69bf71bf03f9d7269392b0663aea7ba1b2cc15a5ac5a9f800f56ddc208ff89908d3183c4aa9a7ea58a9621a8868d9ca15ba186675c1e5770090766502986df7292c6560585f8cb9096e0258f43fd0abb94fb8da39e2950ae23dd05e96eea150cefe84c58d6e3d4d196f7a71c49314d5816ce9207233666e95a40e6a4f2d9493682e4f86fc0c31003c7ba27e7c322bfe6e9bf00a00e059ef8433883aba3ce7ce527ca650b39540346693b404649d6dde6b5e682064dabeadda60e998d5e07c56449db9db6aae620e20fb818700ffda7417c179e1499971ce2f06bc87df68e6f9b019ec2238729c9abb6ac0cc0bcea961a5b72e1291ec5a6350e8b01fc4eff72b2f823841cc8fe9133fe4148ae7e7b68acadc0e3ed1455d3b4df11fb945940520c0e2a1b6679339b4abd9cd1a48169898341c64077a76f75011f7ae3c8400f392938ef90b893816785a6c5098d43967777700bfbdf45b5aa05eba56a3fa4903e96cf91713b4b1842de023b5ac1e7003d22223cc558162e43a76ab7105d0539b89ecfeb9185e0ea7c782f4d93f2d23f710d63a3af62e8304bd93991dcfe781c9274b8e3a7f1dffa1e157fd0499f16cba56fdb9930141f7bed5b8080efbf6129366640621b1a46e1ce2a0550ad3ea1e79f09eef0e94fe9e603bffcb4e73a86ed49012e3d73fc8344a6b655aba6df481202717c09b08bcd49d6369dfcd1fffba289c4054576ecbc564e1f961aa04639f0c7c450417f7c737804aedc48430c91124748c6ab05da728da4948336d9b4d1a4fee1c9a6ffd782f0905127366ab9f02b4b9b10d2da405b6eb8c7b23ab257ee9b026a35308c262c66f3affd184f118d2a41e126e1baffc91cec4da89c0ba51a1031f162e5371d85daa85234e00d53b170a0ca53b5f17fe294d3de3d9c6f96da91eb14404642ed94486a857f859dbd89a1a213c3c9b9256bb3d0e2c96f2120eb82c827704697461b309841f285c9a8792bc8855817e216f7e45d744337ad38e0be715d24e2693e40bddb186aebf5a017eb2e11eed760aa02f9e9db6a24acaa5d46d422b02eed71f2224cf9fed9575a9db4f73a3bd104f9efd0804f61ee431bc6c9893fba875bc4989733f42e2fa7fe4e0f5511afee081a52945a0466e4b8530a3863c36064cfaf718f60a4f04ba4c033413000808bca77014cac56fd240717948645971e01fbf915f193b752b426f147515e0a9dc94d4514bd9ae1e145b6cd9cf5d6efb21adecf459cd1bb6fa43054f57c2c401b7e5bb051112555ef06849ecd3b03f280a42da8ef67a5e3591164af9613cb13f3e0fed67f0bce014a8912e1540129121fbf990edb15c9bc88239ec5b12a2997c8e171d25e6e0eaa8d4d47b0b8a64dfac22d7008354b8bb82b5384a262a94d3138c6685a18cd25fa660eeed7df98f891c58e4a58ea5ec3237d471324c6efbb9d165820bd7c1037ccda38686e164324d2c37be51475cd2c10d0519db4450d3fd991c5a192a666c13944db6e49e5dd093412893de200665456c95e2f4f40533981f0d45142e42845b650a71afce245b2bc0a311797b0e7833a43df23f2ca1e5a4aec84fea84f641139d1f2fa60e21f25ae4c0d45c0cd296c773a345247dfd44e9d9ac7f5515cfa2154f239691209e46de5e70b55deb0e1724c9c59b084ba08d614c55ae47907983f581e0b79434a987e004480071b4d62bbcb2999aaa01b95e24003dabf522bb753625893d8b8e5f31b9c7d000f07bd06b0338a8aa109216960a1a0c3ad62ad0919b9548afa5f444dbd9d878bb40c928342a58003bc687971acbc6b7eb3a60cbb419c829e680ea78f173bd3ad9e4bfe14523a4293e0e199eed88cfab582ed08c3316f587d8a8e62b65a64bbfaf3f240818f3c154a7b863513fef81b733340dbea31be7b75f87c861475f9b0ee4653652112349fb801b8a1e97fee8d1f2af7684126e51896faeacc535e04d23849874f73584f5979f148704730c59c44279855172dc35be2876c8033a7af025a6766d0bdaf21a0a7099c5349f4ee71b172671b5d487f709371551b0fafe416b143fa7a9b5f921c450cb0a498930bd991c51bd8e854ad00d0573795e285a46ad29a04fefd72c31698e8ce350233371ac8c05028e25caf4a1f196e44255be145de6c8cca42ec62dab93a90730f51b17e8662230850949d2e92e50069a293cc6bf47d8ebbc677d9c021641928d116e01d558ffcba0cbedf779a44a987e7d99aaa6acdb828948b6cc2dd2ffd27bff7833b14551ccf767be53af4124b1f2db5b48655dc1dafaf1dbf058e9abf6c41a19c41d1abb273acedec7d0826180bd6bc336a723390b49461f736b64b3ff7fc2cefda83daffee10acad1ac7b3e725898b435eda36380ea97df7118b31c7bfb9c5a87353ad5b8f1673ffd8cb93ebd215f5ff1f9949334e9e979c4e94863b73655a8c790569935e9bd5218516a5eedfca46ef191f528235355f8ed16328371bd480206c5023e6ff2052650c7faaf2b292f81a32709781419b2ee908fa93d3771a4a114c2a47642509ab0a7e43fc7538e11fa63185a1af95b41bbe36c932f0a65bf297971b5699461f38c06d98da5a1c446d93f01c5d3d037a40396a28a37602f8898a5e47cd6ac1324ddff7bd3c643ae54d8f1eef10e7a0121c0be8f76c9bcccbda11333a0bd8d8e13b905d6d9d424e837d8539e02d99c6d5e730806de9c006d453a6f8ed5f3c63f603ba74c134adf64250d8eace762b717d5cc1f7964df8fb147196c6821b02224067e97d19f7b7ec35b37686c9b7128ca14b03a7da8445c551f4730e4a80b1846583b023398f429ec17a3cc4b29cb916b6db3eab865f2636008fd33330b7b7a96308bb7158cfa87ab383827ad3c704a49e41f30c061c0e3ca78179cbb4d7b2de8a0aaf8c7a4faed3270e50d29024c20f749bc74f7b04910ddbfce93806918a97ea512c9e9df0d8e33c005d7a31105596c8e25f5956671f5c4f7b785cb07c862f50298a487386e79b6ee9cf58bad497bdbda52889225dbf739ca6bc157112294834bf4a9ede07c63e50984615b0c8c79f40bafbb1b186b61365739adab9ecd79675a56ecad50761a7d07f0e11b6a577c0ef62c69794be6c5dfdd58bed3fdb4591fd5297b609d16d16b0d907fc92afbab13fff6d7807d963f99dc20558227c2abf7a9db80bcde2801c81856ef541eb4545e66cca666e79773ebba144b09fb28ad9b363e5f66f6d84afb153eead6968b651176a2a36a3207f62305bf6e6182f561b189e2aceaff1fe1422a6910314f816516616594402b5b3143db377664c23835dd4a610ddf569e46b44bb05f89a98d6cfe779328fb6c50cbd635c6cbdae181f75e92deecf044919b25459bdf8f431be214e492274ec570e01d57025f9a02ef99168b8137c75a786909332d831b720a7ed53e2e603d1ceae2220f82f617c4a0ed6d81118949c1b930a80f963b737f6f051d6bf0f876e4b1a6a316acd45df1166ba1ebf6a83d408f9519b7ce47b0e178b57bdf94b8f12a5ae38f0c20c32086b78abfcc04ccb054a17f767130bf575bc42f0a6ab2e15f58df95470288e4c447e4f4b59a0d19bab1c6fc99f949c1326bb33f826855b7c445868a921481a60c87b9b06c900d7443e5b0ca515b6d2b09d2aac07662c45f542e5b74018a5b4eb93c67c8be5263992c35544749e6a783a02f54a3a290341a73d2b9fe4fb27ee46b0424249c8a2ea9b5f6f3fb030e5d74074a2ccbdc7ec39f4eb0275b133ce2562c0b710383bfdd59cc49b2a25003652c61e622e7e2d20079e7116a5529d7c7aeed331b8924e808173f4aaa1ea228e626071c1e0c7b9277a6efbab77d28609462423ce16407b5107831e55d6794400b3881a76df246f37388cd1838c85f85782558d276fb006f8981986e8e40ed136e7bcfac00ac966f8820e51cb6d7d7b01fdc5d25d52c8a60575f32d6735d9c37e3a34f1cc4f2ebe2038664a177a5d9f2b81cbee7c4d215abe4b655db17f19722944bd00832ccaf62678ef1da2549a771b1f053cc7ea26952e3813e7c30248d5779af6d6d91c52e8bf8ca80c4a940025d31b07ec8dcefdae1f09a104b1cb4148d9d557bf76a369b3f2d98dbbcec1700c37dbef6fdacdd55be2aae9e6d926a857d4d13a5ad718865e8531d85277af57e877ac9ef991c003144dfdfcf86581fa0d93751587b9f1900b71103849016815369f3c10789137c9f5a7f67eb8056dcc3c33f24a65e1ef6499add5e3da1c57bbf97a0a63b7040837dc72b3be2458241fc8d09949763514c3a2fcfc69e8351b14f7009854070996e2da8f8d1e19e4c5ee66eeb925bcc2bf3977b58cd44e37c1773490b4194658765dee18a41c6f336915da73a68fe379c3fb2aa64d5e0b0bfa6feb8e6b4d28892f298b42f18e293599bbbd730094b17fc880c1c3442d91d12"}}}}}}, 0x0) 627.240722ms ago: executing program 0 (id=202): socket$inet_tcp(0x2, 0x1, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x3, 0x3, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_ecred_reconf_req={{0x19, 0x3, 0x4}, {0x1, 0x7}}}}, 0x11) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b7050000000000007910a800000000007d0a0000000000009500000000000000"], &(0x7f00000002c0)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f3, 0x10, &(0x7f0000000080), 0xfffffffffffffc79, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2a) r1 = syz_open_dev$vim2m(&(0x7f0000000040), 0x8, 0x2) openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r2 = io_uring_setup(0x3eae, &(0x7f0000000080)={0x0, 0x1000000, 0x0, 0x2}) io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r2, 0x10, &(0x7f0000000400)={0x93, 0x0, &(0x7f0000000240)=[{0x0}], &(0x7f0000000280), 0x1}, 0x20) ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000000)={0x9, 0x2, 0x1}) ioctl$vim2m_VIDIOC_QBUF(r1, 0xc058560f, &(0x7f0000000180)=@multiplanar_mmap={0x0, 0x2, 0x4, 0x0, 0x1, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "71aebd58"}, 0x0, 0x1, {0x0}}) openat$cgroup_type(r0, &(0x7f0000000080), 0x2, 0x0) 527.244124ms ago: executing program 0 (id=203): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00d6fdde330ad344e78296386371672204742f00000000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000002200000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000280)='ext4_writepages\x00', r1}, 0x18) msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) ioctl$SNDCTL_DSP_SPEED(r2, 0xc0045002, &(0x7f0000000000)=0x7fffffff) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000500)={0xa00, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000380), 0x101302, 0x0) r4 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000001740), 0x2, 0x0) ioctl$VIDIOC_STREAMON(r4, 0x40045612, &(0x7f0000001780)=0x5) ioctl$SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f0000000080)) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb01001800000000000000500000005000000002000000000000000300000d0000000000000000000000000b000000000000000600000003000000000000000000000d00000000000000000100001304"], 0x0, 0x6a, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28) ioctl$SNDCTL_DSP_SETTRIGGER(r3, 0x40045010, &(0x7f0000000040)=0x4) writev(r3, &(0x7f0000000240)=[{&(0x7f00000000c0)="5bb23969091fa34ae0e3df84ab817fc86007ea21638ddcb212cb76297e7b130895bdf72802558db96bab296cb4f6896affef6a1fa23fd0079977566c8d8a4aa297628a9aa36d6d7f68adbbeac4a431846e73440b5e91e65603dc24b6a0ace554143daed1dd884e19fafc2030db252f76d760dd91dbae9f92e53f971bc48aff09d6f829dbdd06d3344230fbd039379cd5602fc971adde0c4fd7cdaedfc23e6336c711aad90d5365fbdae2dc763ac984867f1954e87ddc834bb00288a32e23bbff8223015c1bbcf068751be4e3a78c7888cde7c726c7b8ebe477c25eaf6b", 0xdd}, {&(0x7f0000000000)="c030a5b131f01e917de6ff0c6ba1efe39bf82cca6c3048dd3abd46c10be85c6382a2ef73c3c51e0987d3a3d60b6cc3c36dfb83199393d47b7eedb5e1", 0x3c}, {&(0x7f00000001c0)="e93fd96d88000d2c96f2b53eb6f89c6944dc70949096bb7e81d55c2a13470e0ebb21e46e5c7521ce10d136ce9401026d223f27e1c58d9d9dfe84ee027158de971ec4415e23f9edb65676846f154473c190796bd3b0e49e0a32c1ac68d07b3fc811269c6006020a", 0x67}], 0x3) 457.547532ms ago: executing program 3 (id=204): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c040, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000002480)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x5, &(0x7f0000000040)}, 0x0) sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x20040000}, 0x0) setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f0000000040), 0x4) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='nfs4\x00', 0x0, &(0x7f00000001c0)='\x01') mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) setpgid(r0, 0x0) setpgid(0x0, r0) mkdir(&(0x7f0000000140)='./file1/file0\x00', 0xa) 457.340395ms ago: executing program 3 (id=205): socket$inet(0x10, 0x3, 0x0) bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x80, 0x6, @link_local}, 0x14) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x1, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000006640)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 387.5635ms ago: executing program 3 (id=206): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(0x0, 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x8cff, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}]}) 387.418023ms ago: executing program 3 (id=207): mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000080)='./file1\x00') r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) setpgid(r0, 0x0) setpgid(0x0, r0) mkdir(&(0x7f0000000140)='./file1/file0\x00', 0xa) mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='mpol=prefer=re']) 317.234358ms ago: executing program 3 (id=208): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-blowfish-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5", 0x4) r2 = accept4(r1, 0x0, 0x0, 0x0) sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x24044081}, 0x20008051) syz_genetlink_get_family_id$ipvs(&(0x7f0000000240), r2) r3 = socket$igmp(0x2, 0x3, 0x2) sendmmsg$inet(r3, &(0x7f0000004840)=[{{&(0x7f0000000000)={0x2, 0x4e20, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="2400000000000000000000000700000001071336ac1414aaac1414aaac1e080100000000000000001c000000000000000000000008000000", @ANYBLOB="031b88", @ANYBLOB], 0x48}}], 0x1, 0x0) r4 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$VHOST_SET_FEATURES(r5, 0x4008af00, &(0x7f0000000200)=0x8001100) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a030000000d0000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff00080003400000000c2c0000000b0a01010000000000000000070000000900020073797a31000000000900010073797a30"], 0xc0}}, 0x0) recvmsg$kcm(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)=@can, 0x80, &(0x7f0000000a80)=[{&(0x7f0000000380)=""/27, 0x1b}, {&(0x7f00000003c0)=""/219, 0xdb}, {&(0x7f0000002fc0)=""/217, 0xd9}, {&(0x7f0000000640)=""/108, 0x6c}, {&(0x7f0000002f80)=""/16, 0x10}, {&(0x7f00000006c0)=""/90, 0x5a}, {&(0x7f0000000740)=""/213, 0xd5}, {&(0x7f0000000840)=""/180, 0xb4}, {&(0x7f0000000900)=""/76, 0x4c}, {&(0x7f0000000980)=""/246, 0xf6}], 0xa, &(0x7f0000000b40)=""/70, 0x46}, 0x2) syz_emit_ethernet(0x1b2, &(0x7f0000002dc0)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a37f2", 0x17c, 0x2c, 0x0, @remote, @local, {[@hopopts={0x3a, 0x9, '\x00', [@padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @pad1, @jumbo={0xc2, 0x4, 0x1ff}, @pad1, @padn, @calipso={0x7, 0x28, {0x0, 0x8, 0x7f, 0xffff, [0x4, 0x6762, 0x7, 0x0]}}, @ra={0x5, 0x2, 0x4}, @ra={0x5, 0x2, 0x2}, @enc_lim]}, @hopopts={0x6, 0x20, '\x00', [@generic={0x91, 0x74, "f60ec4527e4af2d9ca12a0b600bf741aadd72de9de520ee663c3675d9116501120975ee1d1cc59b1ff48ce8a7f874a60c1108c273536b3fe705d2a29f67dc685217af528131ad8ef20f826744b87c6d48255478c07db36689eb1203fa516e680e632c9093e5c6b9e6aaa1312fc921b29c370592f"}, @pad1, @generic={0x1, 0x8, "d485ff7641892a4b"}, @generic={0x6, 0x15, "9f2d645ba076d9d7a36ad09a5caf158cd811af055e"}, @calipso={0x7, 0x48, {0x2, 0x10, 0x2, 0x401, [0x7, 0xb, 0x5, 0x6, 0x0, 0xde4, 0x7, 0x2]}}, @generic={0xb, 0x1a, "83a8040c1612fa1000294615d51c14006729b840f2a72fd82381"}, @pad1]}], {{0x5fe, 0x3, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) mount(&(0x7f0000000180)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000001c0)='.\x00', &(0x7f0000000200)='ocfs2\x00', 0x200800, 0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r7, 0x29, 0x41, &(0x7f0000005a00)=ANY=[@ANYBLOB="66696c7465721d00000000000000000000007d1600000000000000000000000004"], 0x68) r8 = fcntl$dupfd(r0, 0x0, r0) r9 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="4c00000010004b0422000000000000007a000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800b00010062726964676500001c0002800800040000000000080015"], 0x4c}}, 0x0) ioctl$TCFLSH(r8, 0x400455c8, 0x2) read$FUSE(r8, &(0x7f0000000bc0)={0x2020, 0x0, 0x0}, 0x2020) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000002c00)={{{@in6=@private0, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@private1}, 0x0, @in=@initdev}}, &(0x7f00000005c0)=0xe8) r12 = getegid() write$FUSE_DIRENTPLUS(r8, &(0x7f0000002d00)=ANY=[@ANYBLOB="b000000000150000", @ANYRES64=r10, @ANYBLOB="060000000000000002000000000000000300000000000000a600000000000000080000000c00000001000000000000000400000000000000800800000000000001fcffffffffffff0500000000000000040000000000000005000000000001000200000000c00000f7ffffff", @ANYRES32=r11, @ANYRES32=r12, @ANYBLOB="090000000000000000000000050000000000000005000000000000000400000008000000245b5d2700000000"], 0xb0) r13 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x2501, 0x0) ioctl$SNDCTL_MIDI_INFO(r13, 0xc074510c, &(0x7f0000000040)={"f66365db9db42d27ca1e35888e4250ac8306703dd8d581f29b9d6832a575", 0x8, 0x4, 0xb, [0xab, 0x1, 0x14dc, 0x7, 0xfffffff5, 0x1, 0x7f, 0x6, 0x9, 0x5, 0xec196f00, 0x3, 0x1, 0x32, 0x9, 0x3, 0x6, 0x9]}) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x2) 161.133977ms ago: executing program 0 (id=209): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) mkdir(0x0, 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x5c00000000000000, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}]}) 150.740038ms ago: executing program 3 (id=210): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"]) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) ftruncate(r0, 0xc17c) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4004000}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (fail_nth: 3) 155.095µs ago: executing program 0 (id=211): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c) mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0) execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) ftruncate(r2, 0xc17c) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x7c, 0x2, 0x6, 0x301, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x8}, @IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x7707de8d}, @IPSET_ATTR_CIDR={0x5}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010102}}]}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:mac\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x7c}, 0x1, 0x0, 0x0, 0x840}, 0x4004040) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) bind$bt_hci(r0, &(0x7f00000000c0)={0x1f, 0xffff, 0x3}, 0x6) write(r0, &(0x7f0000000000)="3f000000010000", 0x7) 0s ago: executing program 0 (id=212): openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) socket$packet(0x11, 0x2, 0x300) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000406d041bc70000000000010902"], 0x0) socket$inet6_udp(0xa, 0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_netfilter(0x10, 0x3, 0xc) socket$inet6_udplite(0xa, 0x2, 0x88) socket$nl_netfilter(0x10, 0x3, 0xc) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x1, 0x803, 0x0) pipe(&(0x7f0000000100)) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="44c3ff0010000304fcffffff3f00000000000000", @ANYRES32=0x0, @ANYBLOB="a5fdad8800000000140012800b0001006970766c616e00000400028008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r2], 0x44}, 0x1, 0x300000000000000, 0x0, 0x4004}, 0x0) kernel console output (not intermixed with test programs): [ 38.202036][ T40] audit: type=1400 audit(1737036786.607:80): avc: denied { write } for pid=5924 comm="sh" path="pipe:[2819]" dev="pipefs" ino=2819 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 38.211999][ T40] audit: type=1400 audit(1737036786.607:81): avc: denied { rlimitinh } for pid=5924 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 38.217438][ T40] audit: type=1400 audit(1737036786.607:82): avc: denied { siginh } for pid=5924 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 38.942638][ T40] audit: type=1400 audit(1737036787.367:83): avc: denied { read } for pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 38.949107][ T40] audit: type=1400 audit(1737036787.367:84): avc: denied { append } for pid=5334 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 38.956574][ T40] audit: type=1400 audit(1737036787.367:85): avc: denied { open } for pid=5334 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 38.962827][ T40] audit: type=1400 audit(1737036787.367:86): avc: denied { getattr } for pid=5334 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 Warning: Permanently added '[localhost]:11256' (ED25519) to the list of known hosts. [ 39.121607][ T40] audit: type=1400 audit(1737036787.537:87): avc: denied { name_bind } for pid=5928 comm="sshd" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 40.622215][ T5930] cgroup: Unknown subsys name 'net' [ 40.746164][ T5930] cgroup: Unknown subsys name 'cpuset' [ 40.751125][ T5930] cgroup: Unknown subsys name 'rlimit' [ 40.971892][ T5934] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 41.562256][ T5930] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 43.466979][ T40] kauditd_printk_skb: 17 callbacks suppressed [ 43.466991][ T40] audit: type=1400 audit(1737036791.887:105): avc: denied { execmem } for pid=5937 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 43.631537][ T40] audit: type=1400 audit(1737036792.047:106): avc: denied { create } for pid=5942 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 43.638490][ T40] audit: type=1400 audit(1737036792.047:107): avc: denied { read write } for pid=5942 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 43.645588][ T40] audit: type=1400 audit(1737036792.047:108): avc: denied { read write } for pid=5943 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 43.652398][ T40] audit: type=1400 audit(1737036792.057:109): avc: denied { open } for pid=5942 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 43.658981][ T5945] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 43.659560][ T40] audit: type=1400 audit(1737036792.057:110): avc: denied { ioctl } for pid=5942 comm="syz-executor" path="socket:[2863]" dev="sockfs" ino=2863 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 43.662491][ T5945] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 43.673673][ T5953] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 43.676135][ T5953] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 43.678710][ T5953] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 43.680938][ T5948] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 43.681121][ T5953] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 43.681225][ T5951] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 43.681789][ T5951] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 43.682447][ T5951] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 43.683121][ T5951] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 43.683732][ T5951] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 43.683929][ T5956] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 43.684349][ T5956] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 43.684556][ T5956] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 43.687189][ T5291] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 43.687971][ T40] audit: type=1400 audit(1737036792.107:111): avc: denied { read } for pid=5942 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 43.688857][ T5951] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 43.691322][ T5953] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 43.692489][ T5951] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 43.694586][ T40] audit: type=1400 audit(1737036792.107:112): avc: denied { open } for pid=5942 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 43.697143][ T5951] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 43.698953][ T40] audit: type=1400 audit(1737036792.107:113): avc: denied { mounton } for pid=5942 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 43.701171][ T5951] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 43.706426][ T5945] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 43.737854][ T5945] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 43.740010][ T5945] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 43.839529][ T40] audit: type=1400 audit(1737036792.257:114): avc: denied { module_request } for pid=5952 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 43.869839][ T5952] chnl_net:caif_netlink_parms(): no params data found [ 43.906650][ T5942] chnl_net:caif_netlink_parms(): no params data found [ 43.942641][ T5943] chnl_net:caif_netlink_parms(): no params data found [ 43.984578][ T5952] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.986633][ T5952] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.989004][ T5952] bridge_slave_0: entered allmulticast mode [ 43.991219][ T5952] bridge_slave_0: entered promiscuous mode [ 43.995219][ T5952] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.997357][ T5952] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.999430][ T5952] bridge_slave_1: entered allmulticast mode [ 44.001689][ T5952] bridge_slave_1: entered promiscuous mode [ 44.018591][ T5949] chnl_net:caif_netlink_parms(): no params data found [ 44.064390][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.066440][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.068429][ T5942] bridge_slave_0: entered allmulticast mode [ 44.070511][ T5942] bridge_slave_0: entered promiscuous mode [ 44.075684][ T5952] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.096127][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.098233][ T5943] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.100306][ T5943] bridge_slave_0: entered allmulticast mode [ 44.103411][ T5943] bridge_slave_0: entered promiscuous mode [ 44.105755][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.107775][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.109789][ T5942] bridge_slave_1: entered allmulticast mode [ 44.111952][ T5942] bridge_slave_1: entered promiscuous mode [ 44.124285][ T5952] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.160035][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.162396][ T5943] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.164798][ T5943] bridge_slave_1: entered allmulticast mode [ 44.167976][ T5943] bridge_slave_1: entered promiscuous mode [ 44.190568][ T5952] team0: Port device team_slave_0 added [ 44.230547][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.234297][ T5952] team0: Port device team_slave_1 added [ 44.236303][ T5949] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.238712][ T5949] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.241328][ T5949] bridge_slave_0: entered allmulticast mode [ 44.244166][ T5949] bridge_slave_0: entered promiscuous mode [ 44.247747][ T5943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.251834][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.269441][ T5949] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.271488][ T5949] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.275197][ T5949] bridge_slave_1: entered allmulticast mode [ 44.279157][ T5949] bridge_slave_1: entered promiscuous mode [ 44.294347][ T5943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.305899][ T5952] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.307928][ T5952] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.316474][ T5952] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.367443][ T5942] team0: Port device team_slave_0 added [ 44.369470][ T5952] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.372238][ T5952] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.382891][ T5952] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.389072][ T5949] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.393597][ T5943] team0: Port device team_slave_0 added [ 44.397022][ T5942] team0: Port device team_slave_1 added [ 44.418354][ T5949] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.422202][ T5943] team0: Port device team_slave_1 added [ 44.475651][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.478460][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.486037][ T5943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.490480][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.492560][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.500537][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.512905][ T5949] team0: Port device team_slave_0 added [ 44.515146][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.517156][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.525163][ T5943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.528744][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.530934][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.538659][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.556035][ T5952] hsr_slave_0: entered promiscuous mode [ 44.558760][ T5952] hsr_slave_1: entered promiscuous mode [ 44.562783][ T5949] team0: Port device team_slave_1 added [ 44.586380][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.588356][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.597209][ T5949] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.602011][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.603929][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.610991][ T5949] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.644088][ T5943] hsr_slave_0: entered promiscuous mode [ 44.647042][ T5943] hsr_slave_1: entered promiscuous mode [ 44.649074][ T5943] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 44.651584][ T5943] Cannot create hsr debugfs directory [ 44.701471][ T5949] hsr_slave_0: entered promiscuous mode [ 44.704060][ T5949] hsr_slave_1: entered promiscuous mode [ 44.705950][ T5949] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 44.708634][ T5949] Cannot create hsr debugfs directory [ 44.721083][ T5942] hsr_slave_0: entered promiscuous mode [ 44.723539][ T5942] hsr_slave_1: entered promiscuous mode [ 44.725599][ T5942] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 44.727834][ T5942] Cannot create hsr debugfs directory [ 44.964155][ T5952] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 44.970508][ T5952] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 44.974100][ T5952] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 44.980599][ T5952] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 44.994150][ T5949] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 44.997496][ T5949] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 45.000921][ T5949] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 45.004404][ T5949] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 45.026163][ T5943] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 45.030784][ T5943] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 45.034107][ T5943] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 45.037446][ T5943] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 45.061238][ T5942] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 45.067199][ T5942] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 45.071545][ T5942] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 45.078337][ T5942] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 45.119310][ T5949] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.123706][ T5952] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.140844][ T5949] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.146717][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.148896][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.155482][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.161062][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.163160][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.169035][ T5952] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.180115][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.182146][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.189673][ T5943] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.197261][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.199320][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.203729][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.205713][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.218887][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.221664][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.230253][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.245417][ T5942] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.262024][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.264219][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.274344][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.276461][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.285715][ T5943] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 45.354023][ T5949] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.362815][ T5952] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.365937][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.378153][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.399882][ T5949] veth0_vlan: entered promiscuous mode [ 45.410716][ T5952] veth0_vlan: entered promiscuous mode [ 45.420006][ T5949] veth1_vlan: entered promiscuous mode [ 45.422950][ T5942] veth0_vlan: entered promiscuous mode [ 45.431325][ T5952] veth1_vlan: entered promiscuous mode [ 45.435875][ T5943] veth0_vlan: entered promiscuous mode [ 45.437957][ T5942] veth1_vlan: entered promiscuous mode [ 45.448699][ T5943] veth1_vlan: entered promiscuous mode [ 45.455025][ T5952] veth0_macvtap: entered promiscuous mode [ 45.458326][ T5952] veth1_macvtap: entered promiscuous mode [ 45.468224][ T5942] veth0_macvtap: entered promiscuous mode [ 45.473087][ T5949] veth0_macvtap: entered promiscuous mode [ 45.477725][ T5942] veth1_macvtap: entered promiscuous mode [ 45.483781][ T5952] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.486302][ T5949] veth1_macvtap: entered promiscuous mode [ 45.495288][ T5952] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.497979][ T5943] veth0_macvtap: entered promiscuous mode [ 45.503310][ T5952] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.505956][ T5952] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.508475][ T5952] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.511231][ T5952] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.516180][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.519204][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.524725][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.528288][ T5943] veth1_macvtap: entered promiscuous mode [ 45.534607][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.537566][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.540314][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.543585][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.546923][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.551949][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.555220][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.558494][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.565185][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.568262][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.571060][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.574302][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.578636][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.584096][ T5942] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.586668][ T5942] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.589176][ T5942] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.591654][ T5942] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.597689][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.600744][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.605203][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.609239][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.613280][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.616219][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.619586][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.625748][ T5949] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.628470][ T5949] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.630989][ T5949] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.634126][ T5949] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.641756][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.644900][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.647706][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.650508][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.653408][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.656407][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.659689][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.669851][ T5943] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.672689][ T5943] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.675394][ T5943] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.677889][ T5943] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.714373][ T1137] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.717568][ T1137] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.733854][ T1252] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.736048][ T1252] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.748729][ T1252] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.750910][ T1252] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.753421][ T5945] Bluetooth: hci0: command tx timeout [ 45.754839][ T5947] Bluetooth: hci3: command tx timeout [ 45.755927][ T5945] Bluetooth: hci2: command tx timeout [ 45.759666][ T5945] Bluetooth: hci1: command tx timeout [ 45.763396][ T1252] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.765696][ T1252] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.766205][ T1137] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.766221][ T1137] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.787785][ T1137] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.790033][ T1137] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.806353][ T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.808616][ T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.825381][ T5942] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 45.825596][ T1137] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.832889][ T1137] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.882409][ T6007] bond0: (slave macvlan2): Error -98 calling set_mac_address [ 45.884876][ T6008] ======================================================= [ 45.884876][ T6008] WARNING: The mand mount option has been deprecated and [ 45.884876][ T6008] and is ignored by this kernel. Remove the mand [ 45.884876][ T6008] option from the mount to silence this warning. [ 45.884876][ T6008] ======================================================= [ 45.942678][ T6018] netlink: 32 bytes leftover after parsing attributes in process `syz.2.6'. [ 45.984766][ T6024] netlink: 104 bytes leftover after parsing attributes in process `syz.3.5'. [ 46.024366][ T6027] syz.1.2 uses obsolete (PF_INET,SOCK_PACKET) [ 46.103323][ T6018] kvm: emulating exchange as write [ 46.770245][ T6032] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9'. [ 46.772912][ T6032] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9'. [ 46.929862][ T6045] bond0: (slave macvlan2): Error -98 calling set_mac_address [ 47.000820][ T6048] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 47.041953][ T6000] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 47.214307][ T6000] usb 8-1: config 0 has no interfaces? [ 47.216454][ T6000] usb 8-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00 [ 47.219921][ T6000] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 47.223867][ T6000] usb 8-1: config 0 descriptor?? [ 47.432201][ T1485] usb 8-1: USB disconnect, device number 2 [ 47.832712][ T5945] Bluetooth: hci2: command tx timeout [ 47.832900][ T5947] Bluetooth: hci0: command tx timeout [ 47.842246][ T5947] Bluetooth: hci1: command tx timeout [ 47.966308][ T6075] overlay: filesystem on ./bus not supported as upperdir [ 48.004446][ T6079] vxcan2: entered promiscuous mode [ 48.087445][ T6097] xt_hashlimit: size too large, truncated to 1048576 [ 48.098157][ T6099] netlink: 'syz.2.38': attribute type 10 has an invalid length. [ 48.113538][ T6099] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 48.301942][ T9] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 48.464484][ T9] usb 5-1: config 0 has no interfaces? [ 48.466140][ T9] usb 5-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00 [ 48.468746][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 48.473223][ T9] usb 5-1: config 0 descriptor?? [ 48.678963][ T9] usb 5-1: USB disconnect, device number 2 [ 48.700786][ T40] kauditd_printk_skb: 83 callbacks suppressed [ 48.700797][ T40] audit: type=1400 audit(1737036797.117:198): avc: denied { create } for pid=6115 comm="syz.3.44" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 48.709197][ T40] audit: type=1400 audit(1737036797.117:199): avc: denied { ioctl } for pid=6115 comm="syz.3.44" path="socket:[9753]" dev="sockfs" ino=9753 ioctlcmd=0xf505 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 48.740772][ T40] audit: type=1400 audit(1737036797.157:200): avc: denied { write } for pid=6117 comm="syz.3.45" name="/" dev="9p" ino=37618253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 48.747244][ T40] audit: type=1400 audit(1737036797.157:201): avc: denied { add_name } for pid=6117 comm="syz.3.45" name="cgroup.kill" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 48.749699][ T6118] netfs: Couldn't get user pages (rc=-14) [ 48.753280][ T40] audit: type=1400 audit(1737036797.157:202): avc: denied { create } for pid=6117 comm="syz.3.45" name="cgroup.kill" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 48.760434][ T40] audit: type=1400 audit(1737036797.157:203): avc: denied { associate } for pid=6117 comm="syz.3.45" name="cgroup.kill" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 48.766859][ T40] audit: type=1400 audit(1737036797.167:204): avc: denied { read append open } for pid=6117 comm="syz.3.45" path="/13/file0/cgroup.kill" dev="9p" ino=37618299 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 48.774154][ T40] audit: type=1400 audit(1737036797.167:205): avc: denied { map } for pid=6117 comm="syz.3.45" path="/13/file0/cgroup.kill" dev="9p" ino=37618299 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 48.780768][ T40] audit: type=1400 audit(1737036797.167:206): avc: denied { write } for pid=6117 comm="syz.3.45" path="/13/file0/cgroup.kill" dev="9p" ino=37618299 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 48.907979][ T40] audit: type=1400 audit(1737036797.327:207): avc: denied { unmount } for pid=5943 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 48.966035][ T6124] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=62224 sclass=netlink_route_socket pid=6124 comm=syz.1.49 [ 48.993650][ T6126] xt_hashlimit: size too large, truncated to 1048576 [ 49.033124][ T5947] Bluetooth: hci3: command tx timeout [ 49.233534][ T6146] FAULT_INJECTION: forcing a failure. [ 49.233534][ T6146] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 49.237932][ T6146] CPU: 3 UID: 0 PID: 6146 Comm: syz.0.56 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0 [ 49.241415][ T6146] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 49.245053][ T6146] Call Trace: [ 49.245910][ T6146] [ 49.246971][ T6146] dump_stack_lvl+0x16c/0x1f0 [ 49.248586][ T6146] should_fail_ex+0x497/0x5b0 [ 49.250165][ T6146] ? fs_reclaim_acquire+0xae/0x150 [ 49.251885][ T6146] should_fail_alloc_page+0xe7/0x130 [ 49.253654][ T6146] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 49.255591][ T6146] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 49.257117][ T6146] __alloc_pages_noprof+0x190/0x25b0 [ 49.258460][ T6146] ? __kernel_text_address+0xd/0x40 [ 49.259792][ T6146] ? arch_stack_walk+0xa7/0x100 [ 49.261089][ T6146] ? hlock_class+0x4e/0x130 [ 49.262272][ T6146] ? mark_lock+0xb5/0xc60 [ 49.263385][ T6146] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 49.265113][ T6146] ? __pfx_mark_lock+0x10/0x10 [ 49.266621][ T6146] ? __pfx_stack_trace_save+0x10/0x10 [ 49.268215][ T6146] ? trace_lock_acquire+0x14e/0x1f0 [ 49.270182][ T6146] ? stack_depot_save_flags+0x28/0x9c0 [ 49.272232][ T6146] ? kasan_save_stack+0x42/0x60 [ 49.274036][ T6146] ? kasan_save_stack+0x33/0x60 [ 49.275763][ T6146] ? kasan_save_track+0x14/0x30 [ 49.277434][ T6146] ? __kasan_slab_alloc+0x89/0x90 [ 49.279160][ T6146] ? kmem_cache_alloc_node_noprof+0x223/0x3c0 [ 49.281364][ T6146] ? alloc_vmap_area+0x636/0x2a70 [ 49.283198][ T6146] ? __get_vm_area_node+0x19e/0x2f0 [ 49.285108][ T6146] ? vmalloc_noprof+0x6b/0x90 [ 49.286816][ T6146] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 49.288948][ T6146] ? policy_nodemask+0xea/0x4e0 [ 49.290738][ T6146] alloc_pages_mpol_noprof+0x2c8/0x620 [ 49.292742][ T6146] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 49.294899][ T6146] ? __pfx___lock_acquire+0x10/0x10 [ 49.296790][ T6146] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 49.298577][ T6146] get_free_pages_noprof+0xc/0x40 [ 49.300044][ T6146] kasan_populate_vmalloc_pte+0x2d/0x160 [ 49.302123][ T6146] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 49.304373][ T6146] __apply_to_page_range+0x5fd/0xd30 [ 49.306255][ T6146] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 49.308512][ T6146] ? __pfx___apply_to_page_range+0x10/0x10 [ 49.310594][ T6146] ? insert_vmap_area+0x2ef/0x4d0 [ 49.312097][ T6146] alloc_vmap_area+0x93e/0x2a70 [ 49.313385][ T6146] ? __pfx_alloc_vmap_area+0x10/0x10 [ 49.315193][ T6146] __get_vm_area_node+0x19e/0x2f0 [ 49.317123][ T6146] __vmalloc_node_range_noprof+0x26a/0x1530 [ 49.319239][ T6146] ? bpf_prog_calc_tag+0x108/0x720 [ 49.321023][ T6146] ? bpf_prog_calc_tag+0x108/0x720 [ 49.322869][ T6146] ? stack_trace_save+0x95/0xd0 [ 49.324628][ T6146] ? stack_depot_save_flags+0x28/0x9c0 [ 49.326633][ T6146] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 49.328928][ T6146] ? kasan_save_stack+0x42/0x60 [ 49.330695][ T6146] ? kasan_save_stack+0x33/0x60 [ 49.332524][ T6146] ? kasan_save_track+0x14/0x30 [ 49.334288][ T6146] ? __kasan_kmalloc+0xaa/0xb0 [ 49.336016][ T6146] ? __kmalloc_node_noprof+0x21f/0x510 [ 49.338011][ T6146] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 49.339997][ T6146] ? bpf_prog_calc_tag+0x108/0x720 [ 49.341903][ T6146] vmalloc_noprof+0x6b/0x90 [ 49.343594][ T6146] ? bpf_prog_calc_tag+0x108/0x720 [ 49.345475][ T6146] bpf_prog_calc_tag+0x108/0x720 [ 49.347296][ T6146] ? __pfx_bpf_prog_calc_tag+0x10/0x10 [ 49.349360][ T6146] ? __pfx_sort+0x10/0x10 [ 49.350935][ T6146] ? find_containing_subprog+0x175/0x1d0 [ 49.353004][ T6146] ? add_subprog_and_kfunc+0x5e5/0x1b70 [ 49.355016][ T6146] resolve_pseudo_ldimm64+0xcd/0x2950 [ 49.357004][ T6146] ? __pfx_add_subprog_and_kfunc+0x10/0x10 [ 49.359130][ T6146] ? __pfx_resolve_pseudo_ldimm64+0x10/0x10 [ 49.361195][ T6146] ? __kmalloc_node_noprof+0x23d/0x510 [ 49.363121][ T6146] ? bpf_lsm_capget+0x1/0x10 [ 49.364846][ T6146] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 49.366832][ T6146] ? check_subprogs+0x592/0x7f0 [ 49.368606][ T6146] bpf_check+0x53f7/0xb0d0 [ 49.370245][ T6146] ? kasan_save_stack+0x42/0x60 [ 49.372026][ T6146] ? kasan_save_stack+0x33/0x60 [ 49.373814][ T6146] ? __kasan_kmalloc+0xaa/0xb0 [ 49.375547][ T6146] ? do_syscall_64+0xcd/0x250 [ 49.377297][ T6146] ? __pfx_bpf_check+0x10/0x10 [ 49.379075][ T6146] ? kasan_save_track+0x14/0x30 [ 49.380851][ T6146] ? __kasan_kmalloc+0xaa/0xb0 [ 49.382580][ T6146] ? selinux_bpf_prog_load+0x15f/0x1c0 [ 49.384543][ T6146] bpf_prog_load+0xedb/0x2660 [ 49.386253][ T6146] ? __pfx_bpf_prog_load+0x10/0x10 [ 49.387955][ T6146] ? avc_has_perm_noaudit+0x143/0x3a0 [ 49.389809][ T6146] ? selinux_bpf+0xde/0x130 [ 49.391383][ T6146] __sys_bpf+0x4043/0x49c0 [ 49.392931][ T6146] ? __pfx_lock_release+0x10/0x10 [ 49.394656][ T6146] ? __pfx___sys_bpf+0x10/0x10 [ 49.395961][ T6146] ? vfs_write+0x306/0x1150 [ 49.397155][ T6146] ? __mutex_unlock_slowpath+0x164/0x690 [ 49.398647][ T6146] ? fput+0x67/0x440 [ 49.399683][ T6146] ? ksys_write+0x1ba/0x250 [ 49.400879][ T6146] ? __pfx_ksys_write+0x10/0x10 [ 49.402516][ T6146] __x64_sys_bpf+0x78/0xc0 [ 49.404104][ T6146] ? lockdep_hardirqs_on+0x7c/0x110 [ 49.405965][ T6146] do_syscall_64+0xcd/0x250 [ 49.407638][ T6146] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 49.409787][ T6146] RIP: 0033:0x7fc6ad585d29 [ 49.411443][ T6146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 49.418119][ T6146] RSP: 002b:00007fc6ae36a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 49.420989][ T6146] RAX: ffffffffffffffda RBX: 00007fc6ad775fa0 RCX: 00007fc6ad585d29 [ 49.423717][ T6146] RDX: 0000000000000094 RSI: 0000000020000300 RDI: 0000000000000005 [ 49.426570][ T6146] RBP: 00007fc6ae36a090 R08: 0000000000000000 R09: 0000000000000000 [ 49.429335][ T6146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 49.431996][ T6146] R13: 0000000000000001 R14: 00007fc6ad775fa0 R15: 00007ffdd66060a8 [ 49.434511][ T6146] [ 49.437274][ T6146] syz.0.56: vmalloc error: size 64, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 49.441374][ T6146] CPU: 3 UID: 0 PID: 6146 Comm: syz.0.56 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0 [ 49.444345][ T6146] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 49.447508][ T6146] Call Trace: [ 49.448503][ T6146] [ 49.449371][ T6146] dump_stack_lvl+0x16c/0x1f0 [ 49.450728][ T6146] warn_alloc+0x24d/0x3a0 [ 49.451947][ T6146] ? __pfx_warn_alloc+0x10/0x10 [ 49.453435][ T6146] ? kfree+0x14f/0x4b0 [ 49.454601][ T6146] ? __get_vm_area_node+0x1dc/0x2f0 [ 49.456089][ T6146] __vmalloc_node_range_noprof+0xd27/0x1530 [ 49.457779][ T6146] ? bpf_prog_calc_tag+0x108/0x720 [ 49.459234][ T6146] ? stack_trace_save+0x95/0xd0 [ 49.460658][ T6146] ? stack_depot_save_flags+0x28/0x9c0 [ 49.462229][ T6146] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 49.464110][ T6146] ? kasan_save_stack+0x42/0x60 [ 49.465535][ T6146] ? kasan_save_stack+0x33/0x60 [ 49.466929][ T6146] ? kasan_save_track+0x14/0x30 [ 49.468419][ T6146] ? __kasan_kmalloc+0xaa/0xb0 [ 49.469807][ T6146] ? __kmalloc_node_noprof+0x21f/0x510 [ 49.471368][ T6146] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 49.473105][ T6146] ? bpf_prog_calc_tag+0x108/0x720 [ 49.474545][ T6146] vmalloc_noprof+0x6b/0x90 [ 49.475835][ T6146] ? bpf_prog_calc_tag+0x108/0x720 [ 49.477320][ T6146] bpf_prog_calc_tag+0x108/0x720 [ 49.478761][ T6146] ? __pfx_bpf_prog_calc_tag+0x10/0x10 [ 49.480310][ T6146] ? __pfx_sort+0x10/0x10 [ 49.481550][ T6146] ? find_containing_subprog+0x175/0x1d0 [ 49.483155][ T6146] ? add_subprog_and_kfunc+0x5e5/0x1b70 [ 49.484800][ T6146] resolve_pseudo_ldimm64+0xcd/0x2950 [ 49.486354][ T6146] ? __pfx_add_subprog_and_kfunc+0x10/0x10 [ 49.488028][ T6146] ? __pfx_resolve_pseudo_ldimm64+0x10/0x10 [ 49.489866][ T6146] ? __kmalloc_node_noprof+0x23d/0x510 [ 49.491442][ T6146] ? bpf_lsm_capget+0x1/0x10 [ 49.492960][ T6146] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 49.494580][ T6146] ? check_subprogs+0x592/0x7f0 [ 49.496018][ T6146] bpf_check+0x53f7/0xb0d0 [ 49.497351][ T6146] ? kasan_save_stack+0x42/0x60 [ 49.498804][ T6146] ? kasan_save_stack+0x33/0x60 [ 49.500227][ T6146] ? __kasan_kmalloc+0xaa/0xb0 [ 49.501632][ T6146] ? do_syscall_64+0xcd/0x250 [ 49.503000][ T6146] ? __pfx_bpf_check+0x10/0x10 [ 49.504483][ T6146] ? kasan_save_track+0x14/0x30 [ 49.505934][ T6146] ? __kasan_kmalloc+0xaa/0xb0 [ 49.507362][ T6146] ? selinux_bpf_prog_load+0x15f/0x1c0 [ 49.509123][ T6146] bpf_prog_load+0xedb/0x2660 [ 49.510556][ T6146] ? __pfx_bpf_prog_load+0x10/0x10 [ 49.512130][ T6146] ? avc_has_perm_noaudit+0x143/0x3a0 [ 49.513809][ T6146] ? selinux_bpf+0xde/0x130 [ 49.515151][ T6146] __sys_bpf+0x4043/0x49c0 [ 49.516465][ T6146] ? __pfx_lock_release+0x10/0x10 [ 49.518024][ T6146] ? __pfx___sys_bpf+0x10/0x10 [ 49.519461][ T6146] ? vfs_write+0x306/0x1150 [ 49.520787][ T6146] ? __mutex_unlock_slowpath+0x164/0x690 [ 49.522493][ T6146] ? fput+0x67/0x440 [ 49.523631][ T6146] ? ksys_write+0x1ba/0x250 [ 49.524969][ T6146] ? __pfx_ksys_write+0x10/0x10 [ 49.525491][ T6151] 9pnet_virtio: no channels available for device syz [ 49.526416][ T6146] __x64_sys_bpf+0x78/0xc0 [ 49.529676][ T6146] ? lockdep_hardirqs_on+0x7c/0x110 [ 49.531215][ T6146] do_syscall_64+0xcd/0x250 [ 49.532594][ T6146] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 49.534320][ T6146] RIP: 0033:0x7fc6ad585d29 [ 49.535706][ T6146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 49.541336][ T6146] RSP: 002b:00007fc6ae36a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 49.543813][ T6146] RAX: ffffffffffffffda RBX: 00007fc6ad775fa0 RCX: 00007fc6ad585d29 [ 49.546102][ T6146] RDX: 0000000000000094 RSI: 0000000020000300 RDI: 0000000000000005 [ 49.548473][ T6146] RBP: 00007fc6ae36a090 R08: 0000000000000000 R09: 0000000000000000 [ 49.550755][ T6146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 49.553222][ T6146] R13: 0000000000000001 R14: 00007fc6ad775fa0 R15: 00007ffdd66060a8 [ 49.555594][ T6146] [ 49.559584][ T6146] Mem-Info: [ 49.560585][ T6146] active_anon:6526 inactive_anon:0 isolated_anon:0 [ 49.560585][ T6146] active_file:1403 inactive_file:38393 isolated_file:0 [ 49.560585][ T6146] unevictable:1768 dirty:1845 writeback:0 [ 49.560585][ T6146] slab_reclaimable:11001 slab_unreclaimable:69942 [ 49.560585][ T6146] mapped:25009 shmem:3555 pagetables:761 [ 49.560585][ T6146] sec_pagetables:297 bounce:0 [ 49.560585][ T6146] kernel_misc_reclaimable:0 [ 49.560585][ T6146] free:491948 free_pcp:1799 free_cma:0 [ 49.573670][ T6146] Node 0 active_anon:28708kB inactive_anon:0kB active_file:5612kB inactive_file:153500kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:102764kB dirty:7348kB writeback:0kB shmem:13412kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11760kB pagetables:3044kB sec_pagetables:1188kB all_unreclaimable? no [ 49.583014][ T6146] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:32kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 49.591603][ T6146] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 49.599482][ T6146] lowmem_reserve[]: 0 1212 0 0 0 [ 49.600947][ T6146] Node 0 DMA32 free:351232kB boost:0kB min:27608kB low:34508kB high:41408kB reserved_highatomic:0KB active_anon:35096kB inactive_anon:0kB active_file:5612kB inactive_file:153500kB unevictable:3536kB writepending:7356kB present:2080628kB managed:1269912kB mlocked:0kB bounce:0kB free_pcp:13696kB local_pcp:608kB free_cma:0kB [ 49.609804][ T6146] lowmem_reserve[]: 0 0 0 0 0 [ 49.611226][ T6146] Node 1 Normal free:1585088kB boost:0kB min:39632kB low:49540kB high:59448kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB writepending:32kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:752kB local_pcp:0kB free_cma:0kB [ 49.619658][ T6146] lowmem_reserve[]: 0 0 0 0 0 [ 49.621052][ T6146] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 49.625112][ T6146] Node 0 DMA32: 16*4kB (UM) 29*8kB (UE) 133*16kB (UM) 27*32kB (UE) 21*64kB (UE) 15*128kB (UME) 10*256kB (UE) 9*512kB (UME) 3*1024kB (UME) 3*2048kB (UE) 80*4096kB (M) = 350616kB [ 49.630251][ T6146] Node 1 Normal: 10*4kB (UME) 15*8kB (UME) 28*16kB (UME) 151*32kB (UME) 66*64kB (UME) 16*128kB (UME) 6*256kB (U) 8*512kB (UME) 1*1024kB (E) 5*2048kB (UME) 380*4096kB (M) = 1585088kB [ 49.635458][ T6146] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 49.638200][ T6146] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 49.640906][ T6146] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 49.643651][ T6146] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 49.646343][ T6146] 46307 total pagecache pages [ 49.647763][ T6146] 0 pages in swap cache [ 49.649074][ T6146] Free swap = 124996kB [ 49.650272][ T6146] Total swap = 124996kB [ 49.651493][ T6146] 1048443 pages RAM [ 49.652679][ T6146] 0 pages HighMem/MovableOnly [ 49.654131][ T6146] 281644 pages reserved [ 49.655384][ T6146] 0 pages cma reserved [ 49.715840][ T6158] FAULT_INJECTION: forcing a failure. [ 49.715840][ T6158] name failslab, interval 1, probability 0, space 0, times 1 [ 49.719472][ T6158] CPU: 3 UID: 0 PID: 6158 Comm: syz.3.62 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0 [ 49.722439][ T6158] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 49.725543][ T6158] Call Trace: [ 49.726529][ T6158] [ 49.727390][ T6158] dump_stack_lvl+0x16c/0x1f0 [ 49.728765][ T6158] should_fail_ex+0x497/0x5b0 [ 49.730129][ T6158] ? fs_reclaim_acquire+0xae/0x150 [ 49.731616][ T6158] should_failslab+0xc2/0x120 [ 49.733011][ T6158] __kmalloc_noprof+0xcb/0x510 [ 49.734399][ T6158] ? d_absolute_path+0x137/0x1b0 [ 49.735841][ T6158] ? rcu_is_watching+0x12/0xc0 [ 49.737256][ T6158] tomoyo_encode2+0x100/0x3e0 [ 49.738651][ T6158] tomoyo_encode+0x29/0x50 [ 49.739944][ T6158] tomoyo_realpath_from_path+0x19d/0x720 [ 49.741573][ T6158] tomoyo_path_number_perm+0x248/0x590 [ 49.743142][ T6158] ? tomoyo_path_number_perm+0x235/0x590 [ 49.744762][ T6158] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 49.746535][ T6158] ? __pfx_lock_release+0x10/0x10 [ 49.748017][ T6158] ? trace_lock_acquire+0x14e/0x1f0 [ 49.749533][ T6158] ? lock_acquire+0x2f/0xb0 [ 49.750881][ T6158] ? __fget_files+0x40/0x3a0 [ 49.752233][ T6158] ? __fget_files+0x206/0x3a0 [ 49.753719][ T6158] security_file_ioctl+0x9b/0x240 [ 49.755218][ T6158] __x64_sys_ioctl+0xb7/0x200 [ 49.756589][ T6158] do_syscall_64+0xcd/0x250 [ 49.757921][ T6158] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 49.759636][ T6158] RIP: 0033:0x7fa8d7185d29 [ 49.760932][ T6158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 49.766476][ T6158] RSP: 002b:00007fa8d7f96038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 49.768875][ T6158] RAX: ffffffffffffffda RBX: 00007fa8d7375fa0 RCX: 00007fa8d7185d29 [ 49.771157][ T6158] RDX: 0000000020000080 RSI: 0000000000005423 RDI: 0000000000000003 [ 49.773431][ T6158] RBP: 00007fa8d7f96090 R08: 0000000000000000 R09: 0000000000000000 [ 49.775706][ T6158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 49.777993][ T6158] R13: 0000000000000000 R14: 00007fa8d7375fa0 R15: 00007ffd40a8dd18 [ 49.780266][ T6158] [ 49.783571][ T6158] ERROR: Out of memory at tomoyo_realpath_from_path. [ 49.818589][ T6161] Zero length message leads to an empty skb [ 49.912070][ T5947] Bluetooth: hci1: command tx timeout [ 49.912132][ T67] Bluetooth: hci2: command tx timeout [ 49.913068][ T5945] Bluetooth: hci0: command tx timeout [ 49.952720][ T6170] overlayfs: failed to resolve './file1': -2 [ 50.101097][ T6178] netlink: 28 bytes leftover after parsing attributes in process `syz.1.70'. [ 50.104216][ T6178] netlink: 'syz.1.70': attribute type 7 has an invalid length. [ 50.106606][ T6178] netlink: 'syz.1.70': attribute type 8 has an invalid length. [ 50.108762][ T6178] netlink: 4 bytes leftover after parsing attributes in process `syz.1.70'. [ 50.112915][ T9] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 50.113477][ T6178] erspan0: entered promiscuous mode [ 50.117623][ T6178] batadv_slave_1: entered promiscuous mode [ 50.119783][ T6178] gretap0: entered promiscuous mode [ 50.273442][ T9] usb 8-1: config 0 has no interfaces? [ 50.275130][ T9] usb 8-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00 [ 50.277751][ T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 50.281622][ T9] usb 8-1: config 0 descriptor?? [ 50.481968][ T64] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 50.488961][ T6001] usb 8-1: USB disconnect, device number 3 [ 50.512152][ T6200] FAULT_INJECTION: forcing a failure. [ 50.512152][ T6200] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 50.516614][ T6200] CPU: 1 UID: 0 PID: 6200 Comm: syz.1.78 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0 [ 50.519656][ T6200] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 50.522715][ T6200] Call Trace: [ 50.523687][ T6200] [ 50.524568][ T6200] dump_stack_lvl+0x16c/0x1f0 [ 50.525938][ T6200] should_fail_ex+0x497/0x5b0 [ 50.527301][ T6200] _copy_to_user+0x32/0xd0 [ 50.528799][ T6200] simple_read_from_buffer+0xd0/0x160 [ 50.530405][ T6200] proc_fail_nth_read+0x198/0x270 [ 50.531867][ T6200] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 50.533393][ T6200] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 50.535045][ T6200] vfs_read+0x1df/0xbe0 [ 50.536224][ T6200] ? __fget_files+0x1fc/0x3a0 [ 50.537602][ T6200] ? __pfx___mutex_lock+0x10/0x10 [ 50.539070][ T6200] ? __pfx_vfs_read+0x10/0x10 [ 50.540420][ T6200] ? __fget_files+0x206/0x3a0 [ 50.541775][ T6200] ksys_read+0x12b/0x250 [ 50.542995][ T6200] ? __pfx_ksys_read+0x10/0x10 [ 50.544368][ T6200] do_syscall_64+0xcd/0x250 [ 50.545688][ T6200] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 50.547377][ T6200] RIP: 0033:0x7f564ff8473c [ 50.548883][ T6200] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 50.554306][ T6200] RSP: 002b:00007f5650d0b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 50.556679][ T6200] RAX: ffffffffffffffda RBX: 00007f5650175fa0 RCX: 00007f564ff8473c [ 50.558940][ T6200] RDX: 000000000000000f RSI: 00007f5650d0b0a0 RDI: 0000000000000005 [ 50.561190][ T6200] RBP: 00007f5650d0b090 R08: 0000000000000000 R09: 0000000000000000 [ 50.563425][ T6200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 50.565678][ T6200] R13: 0000000000000000 R14: 00007f5650175fa0 R15: 00007ffd52ed4ce8 [ 50.567944][ T6200] [ 50.657194][ T64] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 50.661736][ T64] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 50.666179][ T64] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 50.670259][ T64] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 50.675706][ T64] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 50.679279][ T64] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 50.684758][ T64] usb 7-1: config 0 descriptor?? [ 50.798296][ T6216] netlink: 36 bytes leftover after parsing attributes in process `syz.0.84'. [ 50.802551][ T6216] netlink: 16 bytes leftover after parsing attributes in process `syz.0.84'. [ 50.806439][ T6216] netlink: 36 bytes leftover after parsing attributes in process `syz.0.84'. [ 50.811307][ T6216] netlink: 36 bytes leftover after parsing attributes in process `syz.0.84'. [ 50.856196][ T6221] netlink: 'syz.0.86': attribute type 7 has an invalid length. [ 50.858615][ T6221] netlink: 'syz.0.86': attribute type 8 has an invalid length. [ 50.863989][ T6221] erspan0: entered promiscuous mode [ 50.867411][ T6221] batadv_slave_1: entered promiscuous mode [ 50.874298][ T6221] gretap0: entered promiscuous mode [ 50.876183][ T6221] debugfs: Directory 'hsr1' with parent 'hsr' already present! [ 50.878389][ T6221] Cannot create hsr debugfs directory [ 50.910153][ T6226] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 50.915189][ T6226] bond0: (slave lo): Error: Device can not be enslaved while up [ 51.027408][ T6232] ata3.00: invalid multi_count 1 ignored [ 51.096581][ T64] plantronics 0003:047F:FFFF.0002: ignoring exceeding usage max [ 51.100216][ T64] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 51.106531][ T64] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 51.112379][ T67] Bluetooth: hci3: command tx timeout [ 51.200346][ T6241] random: crng reseeded on system resumption [ 51.313470][ T6243] netfs: Duplicate cookie detected [ 51.315211][ T6243] netfs: O-cookie c=00000003 [fl=4000 na=0 nA=0 s=-] [ 51.317232][ T6243] netfs: O-cookie V=00000002 [9p,syz,] [ 51.318885][ T6243] netfs: O-key=[8] '4c023e0200000000' [ 51.320438][ T6243] netfs: N-cookie c=00000004 [fl=8 na=0 nA=0 s=-] [ 51.322360][ T6243] netfs: N-cookie V=00000002 [9p,syz,] [ 51.323944][ T6243] netfs: N-key=[8] '4c023e0200000000' [ 51.582847][ T6245] __nla_validate_parse: 2 callbacks suppressed [ 51.582857][ T6245] netlink: 52 bytes leftover after parsing attributes in process `syz.3.96'. [ 51.627907][ T6250] netlink: 52 bytes leftover after parsing attributes in process `syz.3.96'. [ 51.661496][ T6254] overlayfs: failed to resolve './file1': -2 [ 51.709728][ T6258] FAULT_INJECTION: forcing a failure. [ 51.709728][ T6258] name failslab, interval 1, probability 0, space 0, times 0 [ 51.713380][ T6258] CPU: 2 UID: 0 PID: 6258 Comm: syz.3.99 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0 [ 51.716316][ T6258] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 51.719382][ T6258] Call Trace: [ 51.720375][ T6258] [ 51.721235][ T6258] dump_stack_lvl+0x16c/0x1f0 [ 51.722626][ T6258] should_fail_ex+0x497/0x5b0 [ 51.723984][ T6258] ? fs_reclaim_acquire+0xae/0x150 [ 51.725461][ T6258] should_failslab+0xc2/0x120 [ 51.726828][ T6258] __kmalloc_node_noprof+0xd1/0x510 [ 51.728229][ T6258] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 51.729824][ T6258] __kvmalloc_node_noprof+0xad/0x1a0 [ 51.731346][ T6258] check_cfg+0xb4/0x8e0 [ 51.732559][ T6258] ? check_subprogs+0x592/0x7f0 [ 51.733971][ T6258] bpf_check+0x54e0/0xb0d0 [ 51.735246][ T6258] ? kasan_save_stack+0x42/0x60 [ 51.736642][ T6258] ? kasan_save_stack+0x33/0x60 [ 51.738064][ T6258] ? __kasan_kmalloc+0xaa/0xb0 [ 51.739496][ T6258] ? do_syscall_64+0xcd/0x250 [ 51.740858][ T6258] ? __pfx_bpf_check+0x10/0x10 [ 51.742236][ T6258] ? kasan_save_track+0x14/0x30 [ 51.743631][ T6258] ? __kasan_kmalloc+0xaa/0xb0 [ 51.745008][ T6258] ? selinux_bpf_prog_load+0x15f/0x1c0 [ 51.746566][ T6258] bpf_prog_load+0xedb/0x2660 [ 51.747912][ T6258] ? __pfx_bpf_prog_load+0x10/0x10 [ 51.749401][ T6258] ? avc_has_perm_noaudit+0x143/0x3a0 [ 51.750941][ T6258] ? selinux_bpf+0xde/0x130 [ 51.752399][ T6258] __sys_bpf+0x4043/0x49c0 [ 51.753733][ T6258] ? __pfx_lock_release+0x10/0x10 [ 51.755175][ T6258] ? __pfx___sys_bpf+0x10/0x10 [ 51.756569][ T6258] ? vfs_write+0x306/0x1150 [ 51.757919][ T6258] ? __mutex_unlock_slowpath+0x164/0x690 [ 51.759543][ T6258] ? fput+0x67/0x440 [ 51.760670][ T6258] ? ksys_write+0x1ba/0x250 [ 51.761959][ T6258] ? __pfx_ksys_write+0x10/0x10 [ 51.763359][ T6258] __x64_sys_bpf+0x78/0xc0 [ 51.764570][ T6258] ? lockdep_hardirqs_on+0x7c/0x110 [ 51.766055][ T6258] do_syscall_64+0xcd/0x250 [ 51.767349][ T6258] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 51.769040][ T6258] RIP: 0033:0x7fa8d7185d29 [ 51.770318][ T6258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 51.775508][ T6258] RSP: 002b:00007fa8d7f96038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 51.777726][ T6258] RAX: ffffffffffffffda RBX: 00007fa8d7375fa0 RCX: 00007fa8d7185d29 [ 51.779920][ T6258] RDX: 0000000000000094 RSI: 0000000020000300 RDI: 0000000000000005 [ 51.782097][ T6258] RBP: 00007fa8d7f96090 R08: 0000000000000000 R09: 0000000000000000 [ 51.784191][ T6258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 51.786343][ T6258] R13: 0000000000000001 R14: 00007fa8d7375fa0 R15: 00007ffd40a8dd18 [ 51.788501][ T6258] [ 51.806554][ T64] usb 7-1: USB disconnect, device number 2 [ 51.819612][ T6270] netlink: 28 bytes leftover after parsing attributes in process `syz.3.103'. [ 51.822246][ T6270] netlink: 'syz.3.103': attribute type 7 has an invalid length. [ 51.824314][ T6270] netlink: 'syz.3.103': attribute type 8 has an invalid length. [ 51.826545][ T6270] netlink: 4 bytes leftover after parsing attributes in process `syz.3.103'. [ 51.832848][ T6270] erspan0: entered promiscuous mode [ 51.835056][ T6270] batadv_slave_1: entered promiscuous mode [ 51.837462][ T6270] gretap0: entered promiscuous mode [ 51.839407][ T6270] debugfs: Directory 'hsr1' with parent 'hsr' already present! [ 51.843196][ T6270] Cannot create hsr debugfs directory [ 51.856355][ T6252] input: syz1 as /devices/virtual/input/input5 [ 51.892387][ T6275] tmpfs: Bad value for 'mpol' [ 51.924338][ T6281] overlayfs: failed to resolve './file0': -2 [ 51.953099][ T6283] warning: `syz.3.109' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 51.957717][ T6283] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 51.968017][ T6283] Illegal XDP return value 313510450 on prog (id 10) dev syz_tun, expect packet loss! [ 51.994509][ T67] Bluetooth: hci2: command tx timeout [ 51.994552][ T5947] Bluetooth: hci1: command tx timeout [ 52.003277][ T5947] Bluetooth: hci0: command tx timeout [ 52.037511][ T6293] FAULT_INJECTION: forcing a failure. [ 52.037511][ T6293] name failslab, interval 1, probability 0, space 0, times 0 [ 52.042229][ T6293] CPU: 1 UID: 0 PID: 6293 Comm: syz.3.114 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0 [ 52.046160][ T6293] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 52.049276][ T6293] Call Trace: [ 52.050342][ T6293] [ 52.051204][ T6293] dump_stack_lvl+0x16c/0x1f0 [ 52.052638][ T6293] should_fail_ex+0x497/0x5b0 [ 52.054146][ T6293] ? fs_reclaim_acquire+0xae/0x150 [ 52.056044][ T6293] should_failslab+0xc2/0x120 [ 52.057737][ T6293] __kmalloc_node_noprof+0xd1/0x510 [ 52.059214][ T6293] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 52.060786][ T6293] __kvmalloc_node_noprof+0xad/0x1a0 [ 52.062257][ T6293] check_cfg+0x10a/0x8e0 [ 52.063593][ T6293] ? check_subprogs+0x592/0x7f0 [ 52.065005][ T6293] bpf_check+0x54e0/0xb0d0 [ 52.066278][ T6293] ? kasan_save_stack+0x42/0x60 [ 52.067676][ T6293] ? kasan_save_stack+0x33/0x60 [ 52.069069][ T6293] ? __kasan_kmalloc+0xaa/0xb0 [ 52.070884][ T6293] ? do_syscall_64+0xcd/0x250 [ 52.072824][ T6293] ? __pfx_bpf_check+0x10/0x10 [ 52.074683][ T6293] ? kasan_save_track+0x14/0x30 [ 52.076362][ T6293] ? __kasan_kmalloc+0xaa/0xb0 [ 52.078033][ T6293] ? selinux_bpf_prog_load+0x15f/0x1c0 [ 52.079654][ T6293] bpf_prog_load+0xedb/0x2660 [ 52.081022][ T6293] ? __pfx_bpf_prog_load+0x10/0x10 [ 52.082509][ T6293] ? avc_has_perm_noaudit+0x143/0x3a0 [ 52.084134][ T6293] ? selinux_bpf+0xde/0x130 [ 52.085630][ T6293] __sys_bpf+0x4043/0x49c0 [ 52.086907][ T6293] ? __pfx_lock_release+0x10/0x10 [ 52.088336][ T6293] ? __pfx___sys_bpf+0x10/0x10 [ 52.089711][ T6293] ? vfs_write+0x306/0x1150 [ 52.091016][ T6293] ? __mutex_unlock_slowpath+0x164/0x690 [ 52.092639][ T6293] ? fput+0x67/0x440 [ 52.093890][ T6293] ? ksys_write+0x1ba/0x250 [ 52.095260][ T6293] ? __pfx_ksys_write+0x10/0x10 [ 52.096677][ T6293] __x64_sys_bpf+0x78/0xc0 [ 52.097960][ T6293] ? lockdep_hardirqs_on+0x7c/0x110 [ 52.099468][ T6293] do_syscall_64+0xcd/0x250 [ 52.100794][ T6293] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 52.102571][ T6293] RIP: 0033:0x7fa8d7185d29 [ 52.104281][ T6293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 52.110488][ T6293] RSP: 002b:00007fa8d7f96038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 52.112931][ T6293] RAX: ffffffffffffffda RBX: 00007fa8d7375fa0 RCX: 00007fa8d7185d29 [ 52.115669][ T6293] RDX: 0000000000000094 RSI: 0000000020000300 RDI: 0000000000000005 [ 52.117944][ T6293] RBP: 00007fa8d7f96090 R08: 0000000000000000 R09: 0000000000000000 [ 52.120184][ T6293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 52.122472][ T6293] R13: 0000000000000001 R14: 00007fa8d7375fa0 R15: 00007ffd40a8dd18 [ 52.124710][ T6293] [ 52.133169][ T6301] tmpfs: Bad value for 'mpol' [ 52.157598][ T6304] netlink: 32 bytes leftover after parsing attributes in process `syz.1.119'. [ 52.194843][ T6309] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 52.254832][ T6317] hsr0: entered allmulticast mode [ 52.256425][ T6317] hsr_slave_0: entered allmulticast mode [ 52.258076][ T6317] hsr_slave_1: entered allmulticast mode [ 52.260771][ T6317] hsr_slave_0: left promiscuous mode [ 52.264937][ T6317] hsr_slave_1: left promiscuous mode [ 52.275005][ T6317] hsr0 (unregistering): left allmulticast mode [ 52.295142][ T6321] netlink: 'syz.1.126': attribute type 4 has an invalid length. [ 52.333633][ T6323] tmpfs: Bad value for 'mpol' [ 52.384981][ T6330] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 52.441363][ T6340] FAULT_INJECTION: forcing a failure. [ 52.441363][ T6340] name failslab, interval 1, probability 0, space 0, times 0 [ 52.442816][ T6338] netlink: 36 bytes leftover after parsing attributes in process `syz.3.130'. [ 52.446448][ T6340] CPU: 2 UID: 0 PID: 6340 Comm: syz.1.135 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0 [ 52.448852][ T6338] netlink: 16 bytes leftover after parsing attributes in process `syz.3.130'. [ 52.452400][ T6340] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 52.452413][ T6340] Call Trace: [ 52.452418][ T6340] [ 52.452426][ T6340] dump_stack_lvl+0x16c/0x1f0 [ 52.452452][ T6340] should_fail_ex+0x497/0x5b0 [ 52.452474][ T6340] ? fs_reclaim_acquire+0xae/0x150 [ 52.452492][ T6340] should_failslab+0xc2/0x120 [ 52.452514][ T6340] __kmalloc_cache_noprof+0x68/0x410 [ 52.452537][ T6340] do_check_common+0x184/0xcea0 [ 52.455259][ T6338] netlink: 36 bytes leftover after parsing attributes in process `syz.3.130'. [ 52.459066][ T6340] ? lockdep_hardirqs_on+0x7c/0x110 [ 52.459099][ T6340] ? kvfree+0x47/0x50 [ 52.460227][ T6338] netlink: 36 bytes leftover after parsing attributes in process `syz.3.130'. [ 52.461219][ T6340] ? __pfx_do_check_common+0x10/0x10 [ 52.461249][ T6340] ? kvfree+0x47/0x50 [ 52.474056][ T6336] netfs: Couldn't get user pages (rc=-14) [ 52.475227][ T6340] ? check_cfg+0x403/0x8e0 [ 52.486073][ T6340] bpf_check+0x703a/0xb0d0 [ 52.487405][ T6340] ? kasan_save_stack+0x42/0x60 [ 52.488822][ T6340] ? kasan_save_stack+0x33/0x60 [ 52.490150][ T6340] ? __kasan_kmalloc+0xaa/0xb0 [ 52.491504][ T6340] ? __pfx_bpf_check+0x10/0x10 [ 52.492942][ T6340] ? __kasan_kmalloc+0xaa/0xb0 [ 52.494290][ T6340] ? selinux_bpf_prog_load+0x15f/0x1c0 [ 52.495829][ T6340] bpf_prog_load+0xedb/0x2660 [ 52.497206][ T6340] ? __pfx_bpf_prog_load+0x10/0x10 [ 52.498713][ T6340] ? avc_has_perm_noaudit+0x143/0x3a0 [ 52.500178][ T6340] ? selinux_bpf+0xde/0x130 [ 52.501485][ T6340] __sys_bpf+0x4043/0x49c0 [ 52.502762][ T6340] ? __pfx_lock_release+0x10/0x10 [ 52.504173][ T6340] ? __pfx___sys_bpf+0x10/0x10 [ 52.505531][ T6340] ? vfs_write+0x306/0x1150 [ 52.506819][ T6340] ? __mutex_unlock_slowpath+0x164/0x690 [ 52.508489][ T6340] ? fput+0x67/0x440 [ 52.509644][ T6340] ? ksys_write+0x1ba/0x250 [ 52.510951][ T6340] ? __pfx_ksys_write+0x10/0x10 [ 52.512489][ T6340] __x64_sys_bpf+0x78/0xc0 [ 52.513794][ T6340] ? lockdep_hardirqs_on+0x7c/0x110 [ 52.515293][ T6340] do_syscall_64+0xcd/0x250 [ 52.516622][ T6340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 52.518366][ T6340] RIP: 0033:0x7f564ff85d29 [ 52.519677][ T6340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 52.525136][ T6340] RSP: 002b:00007f5650d0b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 52.527526][ T6340] RAX: ffffffffffffffda RBX: 00007f5650175fa0 RCX: 00007f564ff85d29 [ 52.529830][ T6340] RDX: 0000000000000094 RSI: 0000000020000300 RDI: 0000000000000005 [ 52.532094][ T6340] RBP: 00007f5650d0b090 R08: 0000000000000000 R09: 0000000000000000 [ 52.534365][ T6340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 52.536778][ T6340] R13: 0000000000000001 R14: 00007f5650175fa0 R15: 00007ffd52ed4ce8 [ 52.539120][ T6340] [ 52.580530][ T6347] QAT: Device 7 not found [ 52.590137][ T6343] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=6343 comm=syz.2.136 [ 52.606021][ T6350] 9pnet_virtio: no channels available for device syz [ 52.678763][ T6357] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 52.767954][ T6371] No control pipe specified [ 52.809604][ T6380] netlink: 36 bytes leftover after parsing attributes in process `syz.1.150'. [ 52.843445][ T6386] xt_hashlimit: size too large, truncated to 1048576 [ 52.849459][ T6388] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 52.945350][ T6403] No control pipe specified [ 53.003318][ T6001] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 53.135409][ T6417] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 53.173082][ T6001] usb 7-1: config 0 has no interfaces? [ 53.174676][ T6001] usb 7-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00 [ 53.177291][ T6001] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 53.180492][ T6001] usb 7-1: config 0 descriptor?? [ 53.385854][ T6001] usb 7-1: USB disconnect, device number 3 [ 53.464226][ T6440] capability: warning: `syz.1.172' uses 32-bit capabilities (legacy support in use) [ 53.482061][ T64] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 53.633090][ T64] usb 8-1: config 0 has no interfaces? [ 53.634741][ T64] usb 8-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00 [ 53.637333][ T64] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 53.640469][ T64] usb 8-1: config 0 descriptor?? [ 53.846459][ T9] usb 8-1: USB disconnect, device number 4 [ 54.087105][ T6462] No control pipe specified [ 54.123828][ T6470] overlayfs: failed to resolve './file1': -2 [ 54.170671][ T6480] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 54.196885][ T40] kauditd_printk_skb: 89 callbacks suppressed [ 54.196896][ T40] audit: type=1326 audit(1737036802.617:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6481 comm="syz.2.190" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbbc3385d29 code=0x0 [ 54.205166][ T40] audit: type=1400 audit(1737036802.617:296): avc: denied { getopt } for pid=6482 comm="syz.0.191" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 54.379523][ T6504] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 54.452080][ T5285] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 54.623287][ T5285] usb 6-1: config 0 has no interfaces? [ 54.626114][ T5285] usb 6-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00 [ 54.633065][ T5285] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 54.640302][ T5285] usb 6-1: config 0 descriptor?? [ 54.677602][ T6519] autofs: Unknown parameter '0x0000000000000000' [ 54.788025][ T6522] syz.3.208: attempt to access beyond end of device [ 54.788025][ T6522] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0 [ 54.792193][ T6522] (syz.3.208,6522,0):ocfs2_get_sector:1769 ERROR: status = -5 [ 54.794509][ T6522] (syz.3.208,6522,0):ocfs2_sb_probe:749 ERROR: status = -5 [ 54.796639][ T6522] (syz.3.208,6522,0):ocfs2_fill_super:990 ERROR: superblock probe failed! [ 54.799083][ T6522] (syz.3.208,6522,0):ocfs2_fill_super:1178 ERROR: status = -5 [ 54.844286][ T6486] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=123 sclass=netlink_route_socket pid=6486 comm=syz.1.192 [ 54.850128][ T8] usb 6-1: USB disconnect, device number 2 [ 54.861588][ T40] audit: type=1400 audit(1737036803.277:297): avc: denied { getopt } for pid=6521 comm="syz.3.208" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 54.937258][ T6527] FAULT_INJECTION: forcing a failure. [ 54.937258][ T6527] name failslab, interval 1, probability 0, space 0, times 0 [ 54.940704][ T6529] process 'syz.0.211' launched './file0' with NULL argv: empty string added [ 54.940984][ T6527] CPU: 1 UID: 0 PID: 6527 Comm: syz.3.210 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0 [ 54.943497][ T40] audit: type=1400 audit(1737036803.357:298): avc: denied { execute } for pid=6528 comm="syz.0.211" name="file0" dev="tmpfs" ino=397 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 54.946351][ T6527] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 54.953402][ T40] audit: type=1400 audit(1737036803.377:299): avc: denied { execute_no_trans } for pid=6528 comm="syz.0.211" path="/62/file0" dev="tmpfs" ino=397 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 54.955496][ T6527] Call Trace: [ 54.955502][ T6527] [ 54.963984][ T6527] dump_stack_lvl+0x16c/0x1f0 [ 54.965343][ T6527] should_fail_ex+0x497/0x5b0 [ 54.966725][ T6527] ? fs_reclaim_acquire+0xae/0x150 [ 54.968196][ T6527] should_failslab+0xc2/0x120 [ 54.969590][ T6527] __kmalloc_cache_noprof+0x68/0x410 [ 54.971128][ T6527] ? __pfx___folio_start_writeback+0x10/0x10 [ 54.972872][ T6527] ? do_raw_spin_lock+0x12d/0x2c0 [ 54.974325][ T6527] netfs_buffer_make_space+0x432/0x6b0 [ 54.975890][ T6527] netfs_buffer_append_folio+0x298/0x360 [ 54.977518][ T6527] netfs_write_folio+0x540/0x1930 [ 54.978985][ T6527] netfs_writepages+0x29a/0x8f0 [ 54.980403][ T6527] ? __pfx_netfs_writepages+0x10/0x10 [ 54.981980][ T6527] ? __pfx___lock_acquire+0x10/0x10 [ 54.983481][ T6527] ? find_held_lock+0x2d/0x110 [ 54.984899][ T6527] ? __pfx_netfs_writepages+0x10/0x10 [ 54.986452][ T6527] do_writepages+0x1b3/0x820 [ 54.987789][ T6527] ? find_held_lock+0x2d/0x110 [ 54.989176][ T6527] ? __pfx_do_writepages+0x10/0x10 [ 54.990648][ T6527] ? wbc_attach_fdatawrite_inode+0x13a/0x190 [ 54.992384][ T6527] ? __pfx_lock_release+0x10/0x10 [ 54.993839][ T6527] ? do_raw_spin_lock+0x12d/0x2c0 [ 54.995286][ T6527] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 54.996841][ T6527] ? lock_acquire+0x2f/0xb0 [ 54.998146][ T6527] ? wbc_attach_fdatawrite_inode+0x24/0x190 [ 54.999846][ T6527] ? do_raw_spin_unlock+0x172/0x230 [ 55.001350][ T6527] ? _raw_spin_unlock+0x28/0x50 [ 55.002755][ T6527] filemap_fdatawrite_wbc+0x104/0x160 [ 55.004293][ T6527] v9fs_mmap_vm_close+0x1ff/0x250 [ 55.005566][ T6527] ? __pfx_v9fs_mmap_vm_close+0x10/0x10 [ 55.007051][ T6527] ? __pfx_v9fs_mmap_vm_close+0x10/0x10 [ 55.008645][ T6527] __mmap_region+0x5bf/0x2760 [ 55.010008][ T6527] ? __pfx___mmap_region+0x10/0x10 [ 55.011458][ T6527] ? hlock_class+0x4e/0x130 [ 55.012749][ T6527] ? mark_lock+0xb5/0xc60 [ 55.013986][ T6527] ? register_lock_class+0xb1/0x1240 [ 55.015501][ T6527] ? find_held_lock+0x2d/0x110 [ 55.016921][ T6527] ? mm_get_unmapped_area+0x95/0xe0 [ 55.018415][ T6527] ? shmem_get_unmapped_area+0x183/0xa20 [ 55.020021][ T6527] ? cap_mmap_addr+0x53/0x320 [ 55.021383][ T6527] mmap_region+0x127/0x320 [ 55.022664][ T6527] do_mmap+0xa09/0x1050 [ 55.023861][ T6527] vm_mmap_pgoff+0x1ba/0x360 [ 55.025192][ T6527] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 55.026679][ T6527] ? __fget_files+0x206/0x3a0 [ 55.028022][ T6527] ksys_mmap_pgoff+0x7d/0x5c0 [ 55.029377][ T6527] ? __pfx_ksys_write+0x10/0x10 [ 55.030756][ T6527] __x64_sys_mmap+0x125/0x190 [ 55.032119][ T6527] do_syscall_64+0xcd/0x250 [ 55.033449][ T6527] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 55.035137][ T6527] RIP: 0033:0x7fa8d7185d29 [ 55.036444][ T6527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 55.041879][ T6527] RSP: 002b:00007fa8d7f96038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 55.044233][ T6527] RAX: ffffffffffffffda RBX: 00007fa8d7375fa0 RCX: 00007fa8d7185d29 [ 55.046513][ T6527] RDX: b635773f06ebbeef RSI: 0000000000b36000 RDI: 0000000020000000 [ 55.048777][ T6527] RBP: 00007fa8d7f96090 R08: ffffffffffffffff R09: 0000000000000000 [ 55.051031][ T6527] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000001 [ 55.053309][ T6527] R13: 0000000000000000 R14: 00007fa8d7375fa0 R15: 00007ffd40a8dd18 [ 55.055576][ T6527] [ 55.057007][ C1] hpet: Lost 7 RTC interrupts [ 55.059702][ T6527] [ 55.060612][ T6527] ============================================ [ 55.062400][ T6527] WARNING: possible recursive locking detected [ 55.064282][ T6527] 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0 Not tainted [ 55.066824][ T6527] -------------------------------------------- [ 55.069762][ T6527] syz.3.210/6527 is trying to acquire lock: [ 55.071493][ T6527] ffff888033e1d9a0 (&mm->mmap_lock){++++}-{4:4}, at: gup_fast_fallback+0x11bf/0x2690 [ 55.074229][ T6527] [ 55.074229][ T6527] but task is already holding lock: [ 55.076305][ T6527] ffff888033e1d9a0 (&mm->mmap_lock){++++}-{4:4}, at: vm_mmap_pgoff+0x160/0x360 [ 55.078874][ T6527] [ 55.078874][ T6527] other info that might help us debug this: [ 55.081130][ T6527] Possible unsafe locking scenario: [ 55.081130][ T6527] [ 55.083259][ T6527] CPU0 [ 55.084378][ T6527] ---- [ 55.085349][ T6527] lock(&mm->mmap_lock); [ 55.086610][ T6527] lock(&mm->mmap_lock); [ 55.087855][ T6527] [ 55.087855][ T6527] *** DEADLOCK *** [ 55.087855][ T6527] [ 55.090550][ T6527] May be due to missing lock nesting notation [ 55.090550][ T6527] [ 55.093365][ T6527] 2 locks held by syz.3.210/6527: [ 55.095022][ T6527] #0: ffff888033e1d9a0 (&mm->mmap_lock){++++}-{4:4}, at: vm_mmap_pgoff+0x160/0x360 [ 55.097862][ T6527] #1: ffff8880359c11e0 (&ctx->wb_lock){+.+.}-{4:4}, at: netfs_writepages+0xb9/0x8f0 [ 55.100552][ T6527] [ 55.100552][ T6527] stack backtrace: [ 55.102243][ T6527] CPU: 0 UID: 0 PID: 6527 Comm: syz.3.210 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0 [ 55.105275][ T6527] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 55.108653][ T6527] Call Trace: [ 55.109624][ T6527] [ 55.110475][ T6527] dump_stack_lvl+0x116/0x1f0 [ 55.111870][ T6527] print_deadlock_bug+0x2e3/0x410 [ 55.113605][ T6527] __lock_acquire+0x2117/0x3c40 [ 55.115036][ T6527] ? __pfx___lock_acquire+0x10/0x10 [ 55.116538][ T6527] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 55.118205][ T6527] ? lockdep_hardirqs_on+0x7c/0x110 [ 55.119690][ T6527] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 55.121369][ T6527] lock_acquire.part.0+0x11b/0x380 [ 55.122820][ T6527] ? gup_fast_fallback+0x11bf/0x2690 [ 55.124352][ T6527] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 55.125958][ T6527] ? rcu_is_watching+0x12/0xc0 [ 55.127367][ T6527] ? trace_lock_acquire+0x14e/0x1f0 [ 55.128921][ T6527] ? p9_client_write+0x447/0x680 [ 55.130351][ T6527] ? v9fs_issue_write+0xe4/0x1b0 [ 55.131786][ T6527] ? netfs_do_issue_write+0x92/0x110 [ 55.133333][ T6527] ? gup_fast_fallback+0x11bf/0x2690 [ 55.134825][ T6527] ? lock_acquire+0x2f/0xb0 [ 55.136142][ T6527] ? gup_fast_fallback+0x11bf/0x2690 [ 55.137701][ T6527] ? gup_fast_fallback+0x11bf/0x2690 [ 55.139219][ T6527] gup_fast_fallback+0x11f8/0x2690 [ 55.140669][ T6527] ? gup_fast_fallback+0x11bf/0x2690 [ 55.142159][ T6527] ? __pfx_gup_fast_fallback+0x10/0x10 [ 55.143732][ T6527] ? rcu_is_watching+0x12/0xc0 [ 55.145239][ T6527] ? trace_kmalloc+0x2d/0xd0 [ 55.146589][ T6527] get_user_pages_fast+0xa8/0x100 [ 55.148029][ T6527] ? __pfx_get_user_pages_fast+0x10/0x10 [ 55.149760][ T6527] ? __kvmalloc_node_noprof+0x7c/0x1a0 [ 55.151342][ T6527] __iov_iter_get_pages_alloc+0x8ed/0x2280 [ 55.153055][ T6527] ? __lock_acquire+0x15a9/0x3c40 [ 55.154582][ T6527] ? radix_tree_node_alloc.constprop.0+0x1e8/0x350 [ 55.156460][ T6527] ? __pfx___iov_iter_get_pages_alloc+0x10/0x10 [ 55.158305][ T6527] ? radix_tree_node_alloc.constprop.0+0x1b8/0x350 [ 55.160197][ T6527] ? delete_node+0x207/0x8e0 [ 55.161591][ T6527] iov_iter_get_pages_alloc2+0x53/0xf0 [ 55.163163][ T6527] p9_get_mapped_pages.part.0.constprop.0+0x4ca/0x7d0 [ 55.165234][ T6527] ? __pfx_p9_get_mapped_pages.part.0.constprop.0+0x10/0x10 [ 55.167334][ T6527] ? __pfx_p9pdu_vwritef+0x10/0x10 [ 55.169129][ T6527] p9_virtio_zc_request+0x1be/0x1390 [ 55.171128][ T6527] ? p9pdu_writef+0xc4/0x100 [ 55.172904][ T6527] ? __pfx_p9_virtio_zc_request+0x10/0x10 [ 55.175122][ T6527] ? __pfx_p9_tag_alloc+0x10/0x10 [ 55.177173][ T6527] ? rcu_is_watching+0x12/0xc0 [ 55.179159][ T6527] ? trace_9p_protocol_dump+0x19e/0x220 [ 55.181388][ T6527] ? rcu_is_watching+0x12/0xc0 [ 55.183263][ T6527] ? p9_client_prepare_req+0x111/0x4d0 [ 55.185424][ T6527] ? __pfx_p9_client_prepare_req+0x10/0x10 [ 55.187738][ T6527] p9_client_zc_rpc.constprop.0+0x29a/0x880 [ 55.189951][ T6527] ? __pfx_p9_client_zc_rpc.constprop.0+0x10/0x10 [ 55.192428][ T6527] ? kasan_save_stack+0x42/0x60 [ 55.194040][ T6527] ? kasan_save_track+0x14/0x30 [ 55.195451][ T6527] ? __kasan_kmalloc+0xaa/0xb0 [ 55.196901][ T6527] ? netfs_buffer_make_space+0x432/0x6b0 [ 55.198519][ T6527] ? netfs_buffer_append_folio+0x298/0x360 [ 55.200190][ T6527] ? netfs_write_folio+0x540/0x1930 [ 55.201692][ T6527] ? netfs_writepages+0x29a/0x8f0 [ 55.203140][ T6527] ? __pfx_p9_virtio_zc_request+0x10/0x10 [ 55.205040][ T6527] p9_client_write+0x447/0x680 [ 55.206451][ T6527] ? __pfx_p9_client_write+0x10/0x10 [ 55.207999][ T6527] v9fs_issue_write+0xe4/0x1b0 [ 55.209380][ T6527] ? __pfx_v9fs_issue_write+0x10/0x10 [ 55.210909][ T6527] ? rcu_is_watching+0x12/0xc0 [ 55.212309][ T6527] netfs_do_issue_write+0x92/0x110 [ 55.213803][ T6527] netfs_advance_write+0x164/0xc80 [ 55.215582][ T6527] ? netfs_buffer_append_folio+0x276/0x360 [ 55.217271][ T6527] netfs_write_folio+0xc19/0x1930 [ 55.218709][ T6527] netfs_writepages+0x29a/0x8f0 [ 55.220100][ T6527] ? __pfx_netfs_writepages+0x10/0x10 [ 55.221605][ T6527] ? __pfx___lock_acquire+0x10/0x10 [ 55.223140][ T6527] ? find_held_lock+0x2d/0x110 [ 55.224556][ T6527] ? __pfx_netfs_writepages+0x10/0x10 [ 55.226107][ T6527] do_writepages+0x1b3/0x820 [ 55.227466][ T6527] ? find_held_lock+0x2d/0x110 [ 55.228854][ T6527] ? __pfx_do_writepages+0x10/0x10 [ 55.230328][ T6527] ? wbc_attach_fdatawrite_inode+0x13a/0x190 [ 55.231934][ T6001] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 55.232031][ T6527] ? __pfx_lock_release+0x10/0x10 [ 55.235958][ T6527] ? do_raw_spin_lock+0x12d/0x2c0 [ 55.237431][ T6527] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 55.239000][ T6527] ? lock_acquire+0x2f/0xb0 [ 55.240313][ T6527] ? wbc_attach_fdatawrite_inode+0x24/0x190 [ 55.242020][ T6527] ? do_raw_spin_unlock+0x172/0x230 [ 55.243516][ T6527] ? _raw_spin_unlock+0x28/0x50 [ 55.244954][ T6527] filemap_fdatawrite_wbc+0x104/0x160 [ 55.246497][ T6527] v9fs_mmap_vm_close+0x1ff/0x250 [ 55.247939][ T6527] ? __pfx_v9fs_mmap_vm_close+0x10/0x10 [ 55.249538][ T6527] ? __pfx_v9fs_mmap_vm_close+0x10/0x10 [ 55.251139][ T6527] __mmap_region+0x5bf/0x2760 [ 55.252634][ T6527] ? __pfx___mmap_region+0x10/0x10 [ 55.254166][ T6527] ? hlock_class+0x4e/0x130 [ 55.255426][ T6527] ? mark_lock+0xb5/0xc60 [ 55.256696][ T6527] ? register_lock_class+0xb1/0x1240 [ 55.258218][ T6527] ? find_held_lock+0x2d/0x110 [ 55.259593][ T6527] ? mm_get_unmapped_area+0x95/0xe0 [ 55.261112][ T6527] ? shmem_get_unmapped_area+0x183/0xa20 [ 55.262731][ T6527] ? cap_mmap_addr+0x53/0x320 [ 55.264171][ T6527] mmap_region+0x127/0x320 [ 55.265512][ T6527] do_mmap+0xa09/0x1050 [ 55.266704][ T6527] vm_mmap_pgoff+0x1ba/0x360 [ 55.268017][ T6527] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 55.269524][ T6527] ? __fget_files+0x206/0x3a0 [ 55.270881][ T6527] ksys_mmap_pgoff+0x7d/0x5c0 [ 55.272246][ T6527] ? __pfx_ksys_write+0x10/0x10 [ 55.273641][ T6527] __x64_sys_mmap+0x125/0x190 [ 55.274922][ T6527] do_syscall_64+0xcd/0x250 [ 55.276165][ T6527] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 55.278116][ T6527] RIP: 0033:0x7fa8d7185d29 [ 55.279791][ T6527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 55.286502][ T6527] RSP: 002b:00007fa8d7f96038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 55.288770][ T6527] RAX: ffffffffffffffda RBX: 00007fa8d7375fa0 RCX: 00007fa8d7185d29 [ 55.290828][ T6527] RDX: b635773f06ebbeef RSI: 0000000000b36000 RDI: 0000000020000000 [ 55.292815][ T6527] RBP: 00007fa8d7f96090 R08: ffffffffffffffff R09: 0000000000000000 [ 55.295356][ T6527] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000001 [ 55.297829][ T6527] R13: 0000000000000000 R14: 00007fa8d7375fa0 R15: 00007ffd40a8dd18 [ 55.300314][ T6527] [ 55.382986][ T6001] usb 5-1: config 0 has no interfaces? [ 55.384636][ T6001] usb 5-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00 [ 55.387198][ T6001] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 55.390186][ T6001] usb 5-1: config 0 descriptor?? [ 55.594585][ T6001] usb 5-1: USB disconnect, device number 3 [ 55.753607][ T12] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000017: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 55.758505][ T12] KASAN: null-ptr-deref in range [0x00000000000000b8-0x00000000000000bf] [ 55.760973][ T12] CPU: 1 UID: 0 PID: 12 Comm: kworker/u32:1 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0 [ 55.763996][ T12] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 55.767031][ T12] Workqueue: events_unbound netfs_write_collection_worker [ 55.769041][ T12] RIP: 0010:gup_fast_fallback+0x32d/0x2690 [ 55.770722][ T12] Code: 03 80 3c 02 00 0f 85 52 22 00 00 48 8b 9b 48 05 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d bb b8 00 00 00 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 33 22 00 00 48 89 e8 31 ff 48 c1 e8 24 25 f8 0f [ 55.777820][ T12] RSP: 0018:ffffc900000f7108 EFLAGS: 00010006 [ 55.779672][ T12] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff81a1c205 [ 55.782506][ T12] RDX: 0000000000000017 RSI: ffffffff81e1fe34 RDI: 00000000000000b8 [ 55.785013][ T12] RBP: 0000000000000000 R08: 0000000000000000 R09: fffffbfff20be932 [ 55.787880][ T12] R10: ffffffff905f4997 R11: 0000000000000b92 R12: 0000000000000200 [ 55.790344][ T12] R13: ffff888032352c40 R14: 0000000000001000 R15: 0000000000000000 [ 55.792682][ T12] FS: 0000000000000000(0000) GS:ffff88806a700000(0000) knlGS:0000000000000000 [ 55.795387][ T12] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 55.797293][ T12] CR2: 0000000020000200 CR3: 0000000031440000 CR4: 0000000000352ef0 [ 55.799571][ T12] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 55.801912][ T12] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 55.804382][ T12] Call Trace: [ 55.805361][ T12] [ 55.806216][ T12] ? die_addr+0x3b/0xa0 [ 55.807390][ T12] ? exc_general_protection+0x155/0x230 [ 55.808886][ T12] ? asm_exc_general_protection+0x26/0x30 [ 55.810445][ T12] ? trace_irq_disable.constprop.0+0x35/0x140 [ 55.812131][ T12] ? gup_fast_fallback+0x2e4/0x2690 [ 55.813741][ T12] ? gup_fast_fallback+0x32d/0x2690 [ 55.815183][ T12] ? gup_fast_fallback+0x2e4/0x2690 [ 55.816668][ T12] ? __pfx_gup_fast_fallback+0x10/0x10 [ 55.818160][ T12] ? rcu_is_watching+0x12/0xc0 [ 55.819559][ T12] ? trace_kmalloc+0x2d/0xd0 [ 55.820906][ T12] get_user_pages_fast+0xa8/0x100 [ 55.822444][ T12] ? __pfx_get_user_pages_fast+0x10/0x10 [ 55.824144][ T12] ? __kvmalloc_node_noprof+0x7c/0x1a0 [ 55.825728][ T12] __iov_iter_get_pages_alloc+0x8ed/0x2280 [ 55.827437][ T12] ? p9_client_zc_rpc.constprop.0+0x105/0x880 [ 55.829206][ T12] ? radix_tree_node_alloc.constprop.0+0x1e8/0x350 [ 55.831084][ T12] ? netfs_write_collection_worker+0x3e1e/0x4810 [ 55.832991][ T12] ? __pfx___iov_iter_get_pages_alloc+0x10/0x10 [ 55.835459][ T12] ? radix_tree_node_alloc.constprop.0+0x1b8/0x350 [ 55.838158][ T12] ? delete_node+0x207/0x8e0 [ 55.840041][ T12] iov_iter_get_pages_alloc2+0x53/0xf0 [ 55.842201][ T12] p9_get_mapped_pages.part.0.constprop.0+0x4ca/0x7d0 [ 55.844861][ T12] ? __pfx_p9_get_mapped_pages.part.0.constprop.0+0x10/0x10 [ 55.847759][ T12] ? __pfx_p9pdu_vwritef+0x10/0x10 [ 55.849838][ T12] ? rcu_is_watching+0x12/0xc0 [ 55.851785][ T12] p9_virtio_zc_request+0x1be/0x1390 [ 55.853883][ T12] ? p9pdu_writef+0xc4/0x100 [ 55.855751][ T12] ? __pfx_p9_virtio_zc_request+0x10/0x10 [ 55.858021][ T12] ? __pfx_p9_tag_alloc+0x10/0x10 [ 55.860022][ T12] ? rcu_is_watching+0x12/0xc0 [ 55.861958][ T12] ? trace_9p_protocol_dump+0x19e/0x220 [ 55.864153][ T12] ? rcu_is_watching+0x12/0xc0 [ 55.866108][ T12] ? p9_client_prepare_req+0x111/0x4d0 [ 55.868291][ T12] ? __pfx_p9_client_prepare_req+0x10/0x10 [ 55.870606][ T12] ? trace_irq_enable.constprop.0+0xea/0x140 [ 55.872716][ T12] ? finish_task_switch.isra.0+0x217/0xcc0 [ 55.874871][ T12] p9_client_zc_rpc.constprop.0+0x29a/0x880 [ 55.877285][ T12] ? __pfx_p9_client_zc_rpc.constprop.0+0x10/0x10 [ 55.879862][ T12] ? __pfx___schedule+0x10/0x10 [ 55.881817][ T12] ? __pfx_p9_virtio_zc_request+0x10/0x10 [ 55.884042][ T12] p9_client_write+0x447/0x680 [ 55.886010][ T12] ? __pfx_p9_client_write+0x10/0x10 [ 55.888213][ T12] ? __wait_on_bit+0x128/0x180 [ 55.890178][ T12] ? __pfx_bit_wait+0x10/0x10 [ 55.892089][ T12] v9fs_issue_write+0xe4/0x1b0 [ 55.894031][ T12] ? __pfx_v9fs_issue_write+0x10/0x10 [ 55.896161][ T12] ? rcu_is_watching+0x12/0xc0 [ 55.898145][ T12] netfs_do_issue_write+0x92/0x110 [ 55.900236][ T12] netfs_write_collection_worker+0x3e1e/0x4810 [ 55.902718][ T12] ? lock_release+0x4e2/0x6f0 [ 55.904627][ T12] ? __pfx_netfs_write_collection_worker+0x10/0x10 [ 55.907271][ T12] ? rcu_is_watching+0x12/0xc0 [ 55.909233][ T12] ? process_one_work+0x921/0x1ba0 [ 55.911328][ T12] ? lock_acquire+0x2f/0xb0 [ 55.913175][ T12] ? process_one_work+0x921/0x1ba0 [ 55.915238][ T12] process_one_work+0x9c5/0x1ba0 [ 55.917226][ T12] ? __pfx_process_one_work+0x10/0x10 [ 55.919392][ T12] ? rcu_is_watching+0x12/0xc0 [ 55.921307][ T12] ? assign_work+0x1a0/0x250 [ 55.922926][ T12] worker_thread+0x6c8/0xf00 [ 55.924586][ T12] ? __pfx_worker_thread+0x10/0x10 [ 55.926072][ T12] kthread+0x2c1/0x3a0 [ 55.927254][ T12] ? _raw_spin_unlock_irq+0x23/0x50 [ 55.928761][ T12] ? __pfx_kthread+0x10/0x10 [ 55.930101][ T12] ret_from_fork+0x45/0x80 [ 55.931403][ T12] ? __pfx_kthread+0x10/0x10 [ 55.932753][ T12] ret_from_fork_asm+0x1a/0x30 [ 55.934269][ T12] [ 55.935152][ T12] Modules linked in: [ 55.936288][ T12] ---[ end trace 0000000000000000 ]--- [ 55.937933][ T12] RIP: 0010:gup_fast_fallback+0x32d/0x2690 [ 55.939620][ T12] Code: 03 80 3c 02 00 0f 85 52 22 00 00 48 8b 9b 48 05 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d bb b8 00 00 00 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 33 22 00 00 48 89 e8 31 ff 48 c1 e8 24 25 f8 0f [ 55.946046][ T12] RSP: 0018:ffffc900000f7108 EFLAGS: 00010006 [ 55.947951][ T12] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff81a1c205 [ 55.950215][ T12] RDX: 0000000000000017 RSI: ffffffff81e1fe34 RDI: 00000000000000b8 [ 55.952523][ T12] RBP: 0000000000000000 R08: 0000000000000000 R09: fffffbfff20be932 [ 55.954868][ T12] R10: ffffffff905f4997 R11: 0000000000000b92 R12: 0000000000000200 [ 55.957132][ T12] R13: ffff888032352c40 R14: 0000000000001000 R15: 0000000000000000 [ 55.959392][ T12] FS: 0000000000000000(0000) GS:ffff88806a700000(0000) knlGS:0000000000000000 [ 55.961937][ T12] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 55.964124][ T12] CR2: 0000000020000200 CR3: 0000000031440000 CR4: 0000000000352ef0 [ 55.966484][ T12] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 55.968818][ T12] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 55.971058][ T12] Kernel panic - not syncing: Fatal exception [ 55.973565][ T12] Kernel Offset: disabled [ 55.974859][ T12] Rebooting in 86400 seconds.. VM DIAGNOSIS: 14:13:23 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff851c0de5 RDI=ffffffff9ab11b20 RBP=ffffffff9ab11ae0 RSP=ffffc9000632e280 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e33312e36 R12=0000000000000000 R13=0000000000000020 R14=ffffffff851c0d80 R15=0000000000000000 RIP=ffffffff851c0e0f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fa8d7f966c0 ffffffff 00c00000 GS =0000 ffff88806a600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c37e5ce CR3=0000000031440000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000306e 6170737265367069 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbbc3402a9a ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbbc3402aa7 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbbc3402aa1 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbbc3402ab5 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbbc3402b3b ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbbc3402c19 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0008000f0010000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000029844 RBX=0000000000000001 RCX=ffffffff8b2a17c9 RDX=ffffed100d4e6fee RSI=ffffffff8bd1eea0 RDI=ffffffff8170a6b9 RBP=ffffed1003ad1910 RSP=ffffc90000187e08 R8 =0000000000000000 R9 =ffffed100d4e6fed R10=ffff88806a737f6b R11=0000000000000000 R12=0000000000000001 R13=ffff88801d68c880 R14=ffffffff905f4990 R15=0000000000000000 RIP=ffffffff8b2a2baf RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020000200 CR3=0000000031fc2000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000c0fffc00 Opmask01=00000000000000ff Opmask02=00000000000000ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000015 000000000001df8a ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055559035fdda 000055559035fc30 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555903622c4 00005555903622c0 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555903630c0 0000555590362d20 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555903626d4 00005555903626d0 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0800061000201000 06005bce00080002 100014100006015b 9e18080006100020 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 060106ce28080007 800304800402013b d400080020861000 02100006025afa00 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2003000800100303 ffffffff04000308 0488040507800404 8004010000020806 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000003fffff fffc0403001000ff c34428080a80030a 8004058003058004 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100100000040100 00000806060154a6 0280880800600300 1000500306808080 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8080808080100040 0302100030030188 1000059003010000 0408060b8003000a ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000808080af80301 00000408060af003 0005000880020004 00006e616c767069 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0001000b80120014 0000000088adfda5 40080ab003000800 0aa8030000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=ffffea000149f0c0 RCX=ffffffff82087877 RDX=ffff8880244cc880 RSI=0000000000000000 RDI=0000000000000007 RBP=ffff88801dcc6cf0 RSP=ffffc9000338f588 R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=1ffffffff1c38d71 R12=0000000000000000 R13=0000000000000001 R14=ffffea0001491948 R15=ffffc9000338faa8 RIP=ffffffff819a1e22 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007fc6ad569ae0 CR3=000000004b25a000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd52ed5080 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5650002a9a ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5650002aa7 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5650002aa1 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5650002ab5 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5650002b3b ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5650002c19 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000050 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=dffffc0000000000 RBX=ffff88801d6a2440 RCX=ffffffff813b8c7c RDX=1ffff11004e1a315 RSI=ffffffff813b8196 RDI=ffff8880270d18a8 RBP=ffff8880270d0000 RSP=ffffc900001a7c08 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000 R12=000055556bc50500 R13=000000000003d90c R14=0000000000000003 R15=ffff8880270d1880 RIP=ffffffff8b29c240 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 000055556bc50500 ffffffff 00c00000 GS =0000 ffff88806a900000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007fc6ae369f98 CR3=0000000031440000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=00000000000000ff Opmask02=000000000000003f Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 656863616373663d 65686361632c796e ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa8d7202a9a ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa8d7202aa7 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa8d7202aa1 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa8d7202ab5 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa8d7202b3b ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa8d7202c19 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa8d734b488 00007fa8d734b480 00007fa8d734b478 00007fa8d734b450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa8d7ead100 00007fa8d734b440 00007fa8d734b458 0000000700080006 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa8d734b498 00007fa8d734b490 00007fa8d734b488 00007fa8d734b480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 00000000000001a4 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000