last executing test programs: 17.437410803s ago: executing program 0 (id=8): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket(0x10, 0x2, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=@newqdisc={0x5c, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x2c, 0x2, {{0x0, 0xff13, 0x0, 0xffff8000, 0xfffffffb}, [@TCA_NETEM_CORR={0x10, 0x1, {0x9, 0x2d, 0x8}}]}}}]}, 0x5c}}, 0x0) bind$packet(r0, &(0x7f0000000400)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @remote}, 0x14) sendto$packet(r0, &(0x7f0000000080)="1555f6acfd136f8ed06375bd86dd", 0xe, 0x0, 0x0, 0x0) (fail_nth: 4) 17.367362613s ago: executing program 0 (id=9): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) listen(r1, 0x100) accept4(r1, 0x0, 0x0, 0x0) shutdown(r1, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x5, 0x6, 0x40, 0x40, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, 0x0) syz_io_uring_setup(0x4122, &(0x7f00000002c0)={0x0, 0xf637, 0x10, 0x1, 0x92}, &(0x7f00000000c0), &(0x7f00000003c0)) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r6 = socket$inet6_sctp(0xa, 0x1, 0x84) bind$inet6(r6, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @empty}, 0x1c) sendto$inet6(r6, &(0x7f0000000180)="1a", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r6, 0x84, 0x75, &(0x7f0000000140)={0x0, 0x101}, &(0x7f0000000280)=0x8) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='blkio.bfq.sectors_recursive\x00', 0x275a, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x7, 0xfff, 0xfff, 0x20, r8, 0x80, '\x00', 0x0, r5, 0x5, 0x2, 0x4, 0xc, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f00000002c0)=ANY=[@ANYRES16=0x0, @ANYRESHEX], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuset.memory_pressure\x00', 0x0, 0x0) r9 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0) sendmsg$IPSET_CMD_FLUSH(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x4, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040), 0x111}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x106, 0x1}}, 0x20) 17.035457418s ago: executing program 0 (id=10): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000340)={'wpan0\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_DEV(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x50, r1, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_PAN_ID={0x6}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x50}, 0x4, 0x700000000000000}, 0x0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r4) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000340)={'wpan0\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_DEV(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x50, r5, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0x2000000}}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r7}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xfe}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x50}, 0x4, 0x700000000000000}, 0x0) (fail_nth: 4) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r8, 0x0, 0x0) 16.975948877s ago: executing program 0 (id=12): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000180), 0xfea7) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) (async, rerun: 32) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) (async, rerun: 32) r3 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff) (rerun: 64) sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYRESOCT=0x0, @ANYRES16=r4, @ANYBLOB="ff830500000700", @ANYRESHEX=r4], 0x4}}, 0x0) sendfile(r3, r2, 0x0, 0x100000002) 16.975539119s ago: executing program 0 (id=13): write$binfmt_script(0xffffffffffffffff, &(0x7f0000001700), 0x4) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xf, 0xf, &(0x7f0000000480)=ANY=[@ANYRESOCT, @ANYRES32=r0, @ANYRES32=r0], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d) bpf$PROG_LOAD(0x5, 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r4, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) r5 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000000200)=0x10) r6 = socket$unix(0x1, 0x1, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) r9 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000000000000000000000200000008006a020000000008000b01"], 0x24}}, 0x0) sendmsg$NL80211_CMD_SET_COALESCE(r7, &(0x7f0000000200)={0x0, 0xffffffffffffff8c, &(0x7f0000000b00)={&(0x7f0000000040)=ANY=[@ANYBLOB="01000080", @ANYRES16=r8, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r10, @ANYBLOB], 0x28}}, 0x0) bind$unix(r6, &(0x7f00000001c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x56) bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0) r11 = userfaultfd(0x801) ioctl$UFFDIO_API(r11, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_CONTINUE(r4, 0xc020aa04, 0x0) ioctl$KVM_SET_CLOCK(r3, 0x4188aec6, &(0x7f0000000040)) r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r12}, 0x10) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x46d, 0xc086, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) 13.807480508s ago: executing program 0 (id=37): mkdir(&(0x7f0000000480)='./file1\x00', 0x1) setxattr$security_capability(&(0x7f0000000080)='./file1\x00', &(0x7f0000000180), &(0x7f0000000200)=@v1={0x1000000, [{0xb, 0xf921}]}, 0xc, 0x1) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000040)=""/54, 0x0, 0xffff1000}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, 0x0}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000500)={0x2, 0x0, [{0x6000, 0x71, &(0x7f0000000b80)=""/113}, {0x6000, 0x1000, &(0x7f0000001600)=""/4096}]}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000100)=@req={0x3fc, 0x0, 0x0, 0x6}, 0x10) r2 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) recvmmsg(r1, &(0x7f0000008140)=[{{0x0, 0x0, &(0x7f0000002880)=[{&(0x7f0000000200)=""/2, 0x2}], 0x1}}], 0x1, 0x7fb14726dcaa, 0x0) r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$UI_END_FF_ERASE(r3, 0x400c55cb, &(0x7f0000000080)={0x3, 0x9, 0x17}) add_key(&(0x7f0000000100)='user\x00', &(0x7f00000001c0)={'syz', 0x1}, &(0x7f0000000740)="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", 0x1000, 0xfffffffffffffffd) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/rt_acct\x00') r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000000c0)='block_bio_remap\x00', r4}, 0x10) sync() creat(&(0x7f0000000000)='./file0\x00', 0x28) mount(&(0x7f0000000140)=@loop={'/dev/loop', 0x0}, &(0x7f0000000240)='./file1\x00', &(0x7f00000002c0)='bpf\x00', 0x4000, 0x0) 2.227474771s ago: executing program 1 (id=182): pipe(&(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000300)={0xa, 0x8000002, 0x0, @loopback}, 0x1c) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) socket(0x2b, 0x3, 0xa760) r2 = socket$packet(0x11, 0x2, 0x300) sendmsg$NL80211_CMD_TDLS_MGMT(0xffffffffffffffff, 0x0, 0x0) recvmsg(r2, 0x0, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x20058041, 0x0, 0x0) splice(r1, 0x0, r0, 0x0, 0x7fffffffffffffff, 0x0) sendto$packet(r1, &(0x7f0000000340), 0xfffffffffffffd4d, 0x0, 0x0, 0x0) 2.22452098s ago: executing program 1 (id=183): socket$inet6_udplite(0xa, 0x2, 0x88) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) connect$bt_sco(r1, &(0x7f0000000200)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8) setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000140)={0x0, 0x7d7, 0x0, 0x1, 0x4}, 0xc) r2 = socket$inet6(0xa, 0x806, 0x0) bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x54}}, 0x0) listen(r2, 0x3) r3 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r3, &(0x7f0000772000)={0x2, 0x4e23}, 0x10) r4 = accept4(r2, 0x0, 0x0, 0x0) recvmmsg(r3, &(0x7f0000007940), 0x55, 0x30, 0x0) sendmmsg(r4, &(0x7f0000007040)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)}, {&(0x7f0000000e40)="232bfa80a6ee0314e5dc52f2c88bd23b28483f", 0x13}, {0x0}, {0x0}], 0x4}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x5, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0) connect$inet(r3, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) 1.837518106s ago: executing program 2 (id=189): socket$inet6_tcp(0xa, 0x1, 0x0) socket$nl_route(0x10, 0x3, 0x0) unshare(0x60600) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x8, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000000c0)={r0, &(0x7f0000000300), &(0x7f0000000000)=""/10, 0x2}, 0x20) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00') write$binfmt_script(r1, &(0x7f0000001800)={'#! ', './cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0xff1) syz_emit_ethernet(0x3e, &(0x7f0000000100)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x67, 0x0, @rand_addr, @broadcast}, @time_exceeded={0x21, 0x0, 0x0, 0x12, 0x0, 0x2802, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr, @local}}}}}}, 0x0) syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000040), 0xfea7) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x58, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x2c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'syz_tun\x00'}]}]}]}], {0x14}}, 0x80}}, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/keys\x00', 0x0, 0x0) add_key$fscrypt_provisioning(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x0}, &(0x7f0000000140)=ANY=[@ANYBLOB="0100000000000000006263646566676869026b6c6d6e75767778797a30313233343536"], 0x29, 0xffffffffffffffff) r5 = syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x0) ioctl$CEC_ADAP_S_LOG_ADDRS(r5, 0xc05c6104, &(0x7f00000001c0)={"f2efe21e", 0x0, 0x6, 0x4d, 0x0, 0x7, "2179d46fd08e3c0ced34c7d0c7e6d7", "7ca24a13", "5161dc20", "a2d1d4a2", ["1af0b1ba1cb8fd54c9c9b587", "bed0f3d6ce7a5f7389827f04", "33af343c60abc64f2fdc9ddf", "9b3842fc63849f62b6eb1c3c"]}) r6 = syz_open_dev$cec(&(0x7f0000000d00), 0x0, 0x0) ioctl$CEC_TRANSMIT(r6, 0xc0386105, &(0x7f0000000d40)={0x0, 0x0, 0x4, 0x0, 0x0, 0x4063, "57c1169b6664ea61326ac71ae7213059"}) r7 = socket$inet6(0xa, 0x806, 0x0) bind$inet6(r7, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c) listen(r7, 0x3) r8 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r8, &(0x7f0000772000)={0x2, 0x4e23}, 0x10) r9 = accept4(r7, 0x0, 0x0, 0x0) sendmmsg(r9, &(0x7f0000001940)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000940)=ANY=[], 0x10}}], 0x1, 0x0) syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0) 1.637623s ago: executing program 2 (id=190): unshare(0x68060200) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0) (async) setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000100)=@filter={'filter\x00', 0xe, 0x5, 0x936, [0x0, 0x20000880, 0x20000b0e, 0x20000d2a], 0x0, &(0x7f0000000000), &(0x7f0000000880)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{0x11, 0x10, 0x8884, 'pimreg0\x00', 'vlan0\x00', 'veth0_to_bridge\x00', 'vlan0\x00', @random="a5786f648874", [0x0, 0xff, 0x0, 0xff, 0xff, 0xff], @multicast, [0xff, 0x0, 0x0, 0x0, 0xff], 0xde, 0x12e, 0x25e, [@state={{'state\x00', 0x0, 0x8}, {{0xc634}}}, @statistic={{'statistic\x00', 0x0, 0x18}, {{0x0, 0x1, 0xe9, 0xe, 0x0, {0x4}}}}], [@common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x9, 'syz0\x00', {0x8}}}}], @common=@SECMARK={'SECMARK\x00', 0x108, {{0x1, 0xd, 'system_u:object_r:audisp_exec_t:s0\x00'}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{0x5, 0x32, 0x8884, 'veth0_macvtap\x00', 'pim6reg1\x00', 'pimreg\x00', 'veth1_macvtap\x00', @multicast, [0x0, 0x0, 0x0, 0xff], @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1a}, [0xff, 0xff], 0x6e, 0x9e, 0xee, [], [@common=@AUDIT={'AUDIT\x00', 0x8, {{0x3}}}], @common=@log={'log\x00', 0x28, {{0x3, "d31555fb22b5ad0b925d63719b3b5df9fbf84ca8fd7b491979c2ffcb9a2b", 0x2}}}}, {0x5, 0x64, 0x8914, 'veth0_to_hsr\x00', 'sit0\x00', 'caif0\x00', 'nicvf0\x00', @multicast, [0x0, 0xff, 0xff, 0xff], @dev={'\xaa\xaa\xaa\xaa\xaa', 0x10}, [0x0, 0xff, 0xff, 0xff, 0xff], 0x6e, 0xb6, 0xfe, [], [@common=@ERROR={'ERROR\x00', 0x20, {"6c2eebd79ee3a70a325e3b203efd22643333e118e569aae8e4bf4ad4d422"}}], @common=@ERROR={'ERROR\x00', 0x20, {"aba9bf948ffaf6ed740b93e84f3822faef4f56d6e341a7003772a1ad7b74"}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffc, 0x1, [{0x3, 0xc, 0x88ca, 'veth1_to_bridge\x00', 'wg0\x00', 'pimreg\x00', 'pimreg0\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x12}, [0xff, 0xff], @multicast, [0x0, 0x0, 0xff, 0xff, 0xff], 0xe6, 0x15e, 0x28e, [@ip6={{'ip6\x00', 0x0, 0x50}, {{@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [0xffffffff, 0xffffff00, 0xfffe7e, 0xff], [0xffffff00, 0xffffff00, 0xffffffff, 0xff], 0xf, 0x1, 0x44, 0x4, 0x4e22, 0x4e21, 0x4e20, 0x4e23}}}], [@common=@ERROR={'ERROR\x00', 0x20, {"466a0f2321177e9a2f61764bcd38b6a00cf23463ea7e64728989906ccf8f"}}, @common=@redirect={'redirect\x00', 0x8, {{0xfffffffffffffffd}}}], @common=@SECMARK={'SECMARK\x00', 0x108, {{0x1, 0x5, 'system_u:object_r:ssh_agent_exec_t:s0\x00'}}}}]}, {0x0, '\x00', 0x4, 0xfffffffffffffffe, 0x1, [{0x11, 0x0, 0x9100, 'macvlan1\x00', 'ip6tnl0\x00', 'vcan0\x00', 'gretap0\x00', @empty, [0x7f, 0x0, 0xff, 0xff, 0xff], @random="de10c784dfcc", [0x0, 0x0, 0xff, 0xff, 0xff, 0xff], 0x9e, 0x14e, 0x19e, [@cpu={{'cpu\x00', 0x0, 0x8}, {{0x1, 0x1}}}], [@common=@dnat={'dnat\x00', 0x10, {{@empty, 0x10}}}, @common=@NFLOG={'NFLOG\x00', 0x50, {{0x2, 0x8aea, 0x0, 0x1, 0x0, "65fd39887973837f29b930eb0406da8251ec4f34331f09300e054ef0720da5c3372885215e67e9462a1a397b2d06a5fd5062b39dcb2698a017932542590ca6c5"}}}], @common=@LED={'LED\x00', 0x28, {{'syz0\x00', 0x3, 0x6, {0x800000000000}}}}}]}]}, 0x9ae) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000003c0)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000800)={0x68, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_IFINDEX={0x8, 0x1, r3}, @WGDEVICE_A_PEERS={0x4c, 0x8, 0x0, 0x1, [{0x48, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e21, 0x0, @loopback}}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}]}]}]}, 0x68}}, 0x0) 1.538098033s ago: executing program 2 (id=191): pipe(&(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000300)={0xa, 0x8000002, 0x0, @loopback}, 0x1c) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) socket(0x2b, 0x3, 0xa760) r2 = socket$packet(0x11, 0x2, 0x300) sendmsg$NL80211_CMD_TDLS_MGMT(0xffffffffffffffff, 0x0, 0x0) recvmsg(r2, 0x0, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x20058041, 0x0, 0x0) splice(r1, 0x0, r0, 0x0, 0x7fffffffffffffff, 0x0) sendto$packet(r1, &(0x7f0000000340), 0xfffffffffffffd4d, 0x0, 0x0, 0x0) 1.458160843s ago: executing program 2 (id=192): r0 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x6, 0x4, 0x4000000}]}]}]}}]}, 0xa4}}, 0x0) (fail_nth: 11) 1.287427265s ago: executing program 2 (id=193): munmap(&(0x7f0000004000/0x3000)=nil, 0x3000) r0 = socket$inet6(0xa, 0x2, 0x3a) sendto$inet6(r0, &(0x7f0000000080)="800009e92208a1ce", 0x8, 0x0, &(0x7f0000000040)={0xa, 0x0, 0x20000000, @private0, 0x9}, 0x1c) socket$netlink(0x10, 0x3, 0x0) setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000240)={0x100000011, @multicast2, 0x0, 0x0, 'nq\x00', 0x3b, 0xffffffff, 0x4a}, 0x2c) socket$nl_xfrm(0x10, 0x3, 0x6) r1 = socket$unix(0x1, 0x1, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) bind$unix(r2, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) listen(r2, 0x0) shutdown(r1, 0x0) connect$unix(r1, &(0x7f0000000340)=@abs={0x1, 0x0, 0x4e21}, 0x6e) r3 = accept(r2, 0x0, 0x0) sendto$inet6(r3, &(0x7f0000000200)='\x00', 0x1, 0x200448d1, 0x0, 0x0) r4 = socket(0x10, 0x3, 0x0) r5 = socket$xdp(0x2c, 0x3, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x211000, 0x1000}, 0x20) setsockopt$XDP_RX_RING(r5, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'ipvlan1\x00', 0x0}) setsockopt$XDP_UMEM_COMPLETION_RING(r4, 0x11b, 0x6, &(0x7f0000000180)=0x11ccb0, 0x4) setsockopt$XDP_UMEM_FILL_RING(r5, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4) bind$xdp(r5, &(0x7f0000000100)={0x2c, 0x0, r7}, 0x10) write(r4, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000003c0000000000000008000f0001000000", 0x24) r8 = socket$netlink(0x10, 0x3, 0x400000000000004) openat$sw_sync_info(0xffffff9c, 0x0, 0x303040, 0x0) writev(r8, &(0x7f0000019440)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80ffe0090f000060000000a2bc5603ca00000f7f89000000200000004a2471083ec6991778581acb6c0101ff0000000309", 0x48}], 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket$igmp(0x2, 0x3, 0x2) 1.238238799s ago: executing program 1 (id=194): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000040)=0x3, 0x4) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x1a, 0x0, 0x0) 1.237833081s ago: executing program 1 (id=195): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), r1) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x1}}, 0x30) read$FUSE(r3, &(0x7f0000004180)={0x2020, 0x0, 0x0}, 0x2020) umount2(&(0x7f00000001c0)='./file0\x00', 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='contention_end\x00', r5}, 0x10) write$FUSE_OPEN(r3, &(0x7f00000002c0)={0x20, 0x0, r4}, 0x20) r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ipv6_route\x00') lseek(r6, 0xae7d, 0x0) read$hiddev(r6, &(0x7f0000002440)=""/132, 0x84) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000180)={0x44, r2, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x185}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5}]}, 0x44}}, 0x0) set_mempolicy(0x3, &(0x7f0000000000)=0x5, 0x8) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) syz_clone(0x20003000, 0x0, 0x0, 0x0, 0x0, 0x0) 1.167550345s ago: executing program 3 (id=196): r0 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0xa4, 0x24, 0xf0b, 0xf1, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x6, 0x4, 0x4000000}]}]}]}}]}, 0xa4}}, 0x0) 1.167406738s ago: executing program 3 (id=197): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) sendto$inet6(r1, &(0x7f0000000080)="44f9b108b1cd", 0x6, 0x1, 0x0, 0x0) ioctl$sock_inet6_tcp_SIOCATMARK(r1, 0x8905, &(0x7f0000000280)) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000002c0)='veth1_to_bridge\x00', 0x10) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000240)={0x0, 0x20, &(0x7f0000000180)=[@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000280)=0x10) 1.087764663s ago: executing program 3 (id=198): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000b80)=ANY=[@ANYRESHEX], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffe08, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0xffff0000, 0xf0, 0xe200, &(0x7f0000001a40)="2b206d074843b397737ea49da2aa", 0x0, 0xf000, 0x720e, 0x0, 0x0, 0x0, 0x0}, 0x48) r1 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x2, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000002c0)=@bpf_ext={0x1c, 0x1, 0x0, 0x0, 0x3466, 0x0, 0x0, 0x40f00, 0x32, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000001c0)={0x3, 0x5, 0x98c, 0x101}, 0x10, 0xfc60, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="043e110b07"], 0xfc) sendmsg$GTP_CMD_DELPDP(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x14}}, 0x0) getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f00000004c0)) sendmsg$nl_route_sched(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@newqdisc={0x38, 0x24, 0xf1d, 0x70bd28, 0x2, {0x0, 0x0, 0x0, r3, {}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x7}]}, 0x38}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000700)=@newqdisc={0x40, 0x24, 0x200, 0xfffffffc, 0xfffffffd, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff6}, {0x0, 0xffff}, {0x0, 0xffe0}}, [@qdisc_kind_options=@q_pfifo_head_drop={{0x14}, {0x8, 0x2, 0x5}}]}, 0x40}}, 0x28000) socket$netlink(0x10, 0x3, 0x1e) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = dup(r6) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r8, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000b80)=@newtaction={0xb0, 0x30, 0x301, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x1300}, [{0x9c, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0xfffffffe}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x2, 0xe3, 0x8, 0x3, 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xb0}}, 0x0) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000880)=[0x0, 0x0, 0x0, 0x0]}) syz_open_dev$MSR(&(0x7f0000000480), 0x2, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r10 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@cgroup=r10, 0x2b, 0x0, 0xa, &(0x7f00000001c0)=[0x0], 0x1, 0x0, &(0x7f00000014c0), 0x0, 0x0}, 0x40) ioctl$DRM_IOCTL_MODE_GETPLANE(r7, 0xc02064b6, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)}) add_key$user(&(0x7f0000000740), &(0x7f00000007c0)={'syz', 0x0}, &(0x7f0000000800)="675c2b24cb3d4eadeff4b91e03a67b2a6783634a6ebf977674e255537349c11f48505ca7aec7e0ca5386de2a43e8c7640d5462a08bef9733dbf08849f373f5a36ab30444505c2f7228230151f23503f1e151", 0x52, 0xffffffffffffffff) ioctl$DRM_IOCTL_MODE_GETPLANE(r7, 0xc02064b6, &(0x7f0000000440)={0x0, r9, r11, 0x0, 0x0, 0x3, &(0x7f0000000400)=[0x0, 0x0, 0x0]}) 1.026137534s ago: executing program 1 (id=199): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000040)=0x3, 0x4) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x1a, &(0x7f0000000200)={0x1, 'veth0_to_bridge\x00'}, 0x18) syz_emit_ethernet(0x0, 0x0, 0x0) 1.025783865s ago: executing program 1 (id=200): syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000080)="0f3800bbf540dceb260f015f009d0f6f140f20d86635080000000f22d867660f38022066b96c0800000f322e2e0f88070066b9800000c00f326635010000000f30", 0x41}], 0x1, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x4000}) ioctl$KVM_NMI(r3, 0xae9a) ioctl$KVM_RUN(r3, 0xae80, 0x0) 947.856309ms ago: executing program 3 (id=201): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000340)={'wpan0\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_DEV(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x50, r1, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_PAN_ID={0x6}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x50}, 0x4, 0x700000000000000}, 0x0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r4) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioperm(0x0, 0x1, 0x8) request_key(0x0, 0x0, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000340)={'wpan0\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_DEV(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x50, r5, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0x2000000}}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r7}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xfe}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x50}, 0x4, 0x700000000000000}, 0x0) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r8, 0x0, 0x0) 947.678616ms ago: executing program 3 (id=202): socket$inet6_udplite(0xa, 0x2, 0x88) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) connect$bt_sco(r1, &(0x7f0000000200)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8) setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000140)={0x0, 0x7d7, 0x0, 0x1, 0x4}, 0xc) r2 = socket$inet6(0xa, 0x806, 0x0) bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x54}}, 0x0) listen(r2, 0x3) r3 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r3, &(0x7f0000772000)={0x2, 0x4e23}, 0x10) r4 = accept4(r2, 0x0, 0x0, 0x0) recvmmsg(r3, &(0x7f0000007940), 0x55, 0x30, 0x0) sendmmsg(r4, &(0x7f0000007040)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)}, {&(0x7f0000000e40)="232bfa80a6ee0314e5dc52f2c88bd23b28483f", 0x13}, {0x0}, {0x0}], 0x4}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x5, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0) connect$inet(r3, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) 408.179076ms ago: executing program 2 (id=203): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() r1 = socket$kcm(0x10, 0x2, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="180000000000000000000000fcffffff850000007b00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000100)=r2, 0x4) sendmsg$kcm(r1, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d80000001c0081044e81f782db44b904021d080303000000e8fe03a1180015000600142603600e1208000f0000810401a80016040400014003000000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10) sched_setscheduler(0x0, 0x0, 0x0) r6 = socket$alg(0x26, 0x5, 0x0) accept$alg(r6, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) getpid() flock(0xffffffffffffffff, 0x0) setuid(0x0) mkdir(&(0x7f0000000600)='./file1\x00', 0x0) mount(&(0x7f0000000040)=@nullb, &(0x7f0000000a00)='./file1\x00', &(0x7f0000000000)='reiserfs\x00', 0x0, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r8 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000000046682d562c3163534e830000ac12a8b52f0d7086e274aa97a91fa46cdcefe7534fde04cace652b4c498a446290f93bce3177127ebc0c24e7e718c0b1da96d9c9fa8e95810000007cb9806b9641bb5a0124c1a1eae02533d551ea74d77602fab0ffc0a054efb9481ba4bf71fd681cb4a7dbe2f50747fcb93a0661f8889baa4958ff45d0961803846e520f882536fdad77614bdd2b6b19a7ead5ca28d9f56159ed73935ee196838e2d856a0d2f5564fa"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x40000000, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) 0s ago: executing program 3 (id=204): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x1a, 0x0, 0x0) 0s ago: executing program 3 (id=206): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000780)={0x2c, r1, 0x5, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0x6, 0x34, @random="9221"}, @NL80211_ATTR_USE_MFP={0x8}]}, 0x2c}}, 0x0) (fail_nth: 11) kernel console output (not intermixed with test programs): [ 38.146180][ T39] audit: type=1400 audit(1730593109.276:81): avc: denied { rlimitinh } for pid=5853 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 38.151910][ T39] audit: type=1400 audit(1730593109.276:82): avc: denied { siginh } for pid=5853 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 38.893691][ T39] audit: type=1400 audit(1730593110.036:83): avc: denied { read } for pid=5344 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 38.900367][ T39] audit: type=1400 audit(1730593110.036:84): avc: denied { append } for pid=5344 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 38.907590][ T39] audit: type=1400 audit(1730593110.036:85): avc: denied { open } for pid=5344 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 38.913534][ T39] audit: type=1400 audit(1730593110.036:86): avc: denied { getattr } for pid=5344 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 Warning: Permanently added '[localhost]:19744' (ED25519) to the list of known hosts. [ 40.090097][ T39] audit: type=1400 audit(1730593111.236:87): avc: denied { name_bind } for pid=5881 comm="sshd" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 42.073250][ T5889] cgroup: Unknown subsys name 'net' [ 42.217425][ T5889] cgroup: Unknown subsys name 'cpuset' [ 42.221135][ T5889] cgroup: Unknown subsys name 'rlimit' [ 42.408508][ T5932] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 43.108835][ T5889] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 45.980930][ T39] kauditd_printk_skb: 17 callbacks suppressed [ 45.980943][ T39] audit: type=1400 audit(1730593117.126:105): avc: denied { execmem } for pid=5941 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 46.174158][ T39] audit: type=1400 audit(1730593117.316:106): avc: denied { create } for pid=5945 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 46.184451][ T39] audit: type=1400 audit(1730593117.326:107): avc: denied { read write } for pid=5945 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 46.190567][ T39] audit: type=1400 audit(1730593117.326:108): avc: denied { open } for pid=5945 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 46.198975][ T39] audit: type=1400 audit(1730593117.336:109): avc: denied { ioctl } for pid=5945 comm="syz-executor" path="socket:[2896]" dev="sockfs" ino=2896 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 46.218167][ T5299] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 46.235489][ T5957] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 46.238776][ T5957] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 46.243204][ T5957] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 46.247299][ T5957] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 46.251679][ T5957] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 46.255916][ T5957] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 46.258855][ T5957] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 46.262133][ T5957] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 46.265079][ T5957] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 46.269772][ T5957] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 46.272467][ T5957] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 46.273016][ T5953] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 46.275405][ T5957] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 46.279197][ T5953] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 46.281038][ T5957] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 46.283935][ T5953] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 46.287013][ T5957] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 46.290769][ T5957] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 46.291349][ T5959] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 46.293567][ T5957] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 46.296926][ T5959] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 46.301355][ T39] audit: type=1400 audit(1730593117.436:110): avc: denied { read } for pid=5954 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 46.302902][ T5959] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 46.307444][ T5961] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 46.312657][ T39] audit: type=1400 audit(1730593117.436:111): avc: denied { open } for pid=5954 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 46.324847][ T39] audit: type=1400 audit(1730593117.436:112): avc: denied { mounton } for pid=5954 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 46.478419][ T39] audit: type=1400 audit(1730593117.626:113): avc: denied { module_request } for pid=5955 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 46.507716][ T5955] chnl_net:caif_netlink_parms(): no params data found [ 46.528050][ T5954] chnl_net:caif_netlink_parms(): no params data found [ 46.555360][ T5949] chnl_net:caif_netlink_parms(): no params data found [ 46.671429][ T5945] chnl_net:caif_netlink_parms(): no params data found [ 46.766466][ T5955] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.769083][ T5955] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.771906][ T5955] bridge_slave_0: entered allmulticast mode [ 46.775030][ T5955] bridge_slave_0: entered promiscuous mode [ 46.815877][ T5949] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.818603][ T5949] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.821356][ T5949] bridge_slave_0: entered allmulticast mode [ 46.824649][ T5949] bridge_slave_0: entered promiscuous mode [ 46.828638][ T5949] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.831006][ T5949] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.833014][ T5949] bridge_slave_1: entered allmulticast mode [ 46.836036][ T5949] bridge_slave_1: entered promiscuous mode [ 46.839434][ T5955] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.842486][ T5955] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.846645][ T5955] bridge_slave_1: entered allmulticast mode [ 46.849809][ T5955] bridge_slave_1: entered promiscuous mode [ 46.853062][ T5954] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.855948][ T5954] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.858868][ T5954] bridge_slave_0: entered allmulticast mode [ 46.861949][ T5954] bridge_slave_0: entered promiscuous mode [ 46.932064][ T5954] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.935353][ T5954] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.938013][ T5954] bridge_slave_1: entered allmulticast mode [ 46.943570][ T5954] bridge_slave_1: entered promiscuous mode [ 46.965920][ T5949] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.970735][ T5955] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.000528][ T5949] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.005472][ T5955] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.025616][ T5954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.029760][ T5945] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.031905][ T5945] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.033886][ T5945] bridge_slave_0: entered allmulticast mode [ 47.037142][ T5945] bridge_slave_0: entered promiscuous mode [ 47.082460][ T5954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.100806][ T5945] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.103508][ T5945] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.107472][ T5945] bridge_slave_1: entered allmulticast mode [ 47.110473][ T5945] bridge_slave_1: entered promiscuous mode [ 47.115866][ T5949] team0: Port device team_slave_0 added [ 47.129770][ T5955] team0: Port device team_slave_0 added [ 47.179291][ T5949] team0: Port device team_slave_1 added [ 47.182555][ T5955] team0: Port device team_slave_1 added [ 47.200067][ T5954] team0: Port device team_slave_0 added [ 47.205152][ T5945] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.244000][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.246526][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.256258][ T5949] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.263510][ T5954] team0: Port device team_slave_1 added [ 47.267386][ T5945] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.270813][ T5955] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.272591][ T5955] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.280778][ T5955] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.286154][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.288656][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.297642][ T5949] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.327183][ T5955] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.329476][ T5955] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.338715][ T5955] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.383178][ T5945] team0: Port device team_slave_0 added [ 47.388415][ T5945] team0: Port device team_slave_1 added [ 47.401135][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.403541][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.410655][ T5954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.435806][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.437726][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.445432][ T5954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.477872][ T5955] hsr_slave_0: entered promiscuous mode [ 47.479987][ T5955] hsr_slave_1: entered promiscuous mode [ 47.506988][ T5945] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.509491][ T5945] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.520665][ T5945] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.546724][ T5949] hsr_slave_0: entered promiscuous mode [ 47.548703][ T5949] hsr_slave_1: entered promiscuous mode [ 47.550616][ T5949] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 47.552790][ T5949] Cannot create hsr debugfs directory [ 47.568328][ T5945] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.570820][ T5945] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.579918][ T5945] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.593812][ T5954] hsr_slave_0: entered promiscuous mode [ 47.596935][ T5954] hsr_slave_1: entered promiscuous mode [ 47.599676][ T5954] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 47.602245][ T5954] Cannot create hsr debugfs directory [ 47.717832][ T5945] hsr_slave_0: entered promiscuous mode [ 47.720015][ T5945] hsr_slave_1: entered promiscuous mode [ 47.722248][ T5945] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 47.724440][ T5945] Cannot create hsr debugfs directory [ 47.887794][ T5955] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 47.894803][ T5955] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 47.899313][ T5955] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 47.905688][ T5955] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 47.928114][ T5945] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 47.933056][ T5945] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 47.939619][ T5945] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 47.944415][ T5945] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 47.979198][ T5949] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 47.988825][ T5949] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 47.993497][ T5949] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 47.998718][ T5949] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 48.043218][ T5954] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 48.048361][ T5954] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 48.057124][ T5954] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 48.063505][ T5954] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 48.085703][ T5955] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.097658][ T5945] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.126555][ T5955] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.135749][ T83] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.138025][ T83] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.145710][ T5945] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.160955][ T83] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.164000][ T83] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.172598][ T208] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.174988][ T208] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.182674][ T208] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.185041][ T208] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.229518][ T5949] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.247149][ T5954] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.269462][ T5949] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.281835][ T5954] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.282941][ T39] audit: type=1400 audit(1730593119.426:114): avc: denied { sys_module } for pid=5945 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 48.288248][ T83] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.291864][ T83] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.295329][ T83] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.297398][ T83] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.305790][ T67] Bluetooth: hci2: command tx timeout [ 48.307048][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.310768][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.331422][ T83] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.333998][ T83] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.385631][ T67] Bluetooth: hci0: command tx timeout [ 48.385903][ T5959] Bluetooth: hci1: command tx timeout [ 48.389654][ T5945] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.394231][ T5959] Bluetooth: hci3: command tx timeout [ 48.407820][ T5955] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.430204][ T5945] veth0_vlan: entered promiscuous mode [ 48.447215][ T5945] veth1_vlan: entered promiscuous mode [ 48.463680][ T5955] veth0_vlan: entered promiscuous mode [ 48.470964][ T5945] veth0_macvtap: entered promiscuous mode [ 48.476071][ T5955] veth1_vlan: entered promiscuous mode [ 48.480852][ T5945] veth1_macvtap: entered promiscuous mode [ 48.507513][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.510839][ T5955] veth0_macvtap: entered promiscuous mode [ 48.518533][ T5955] veth1_macvtap: entered promiscuous mode [ 48.522909][ T5954] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.527106][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.531524][ T5949] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.538863][ T5945] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.541911][ T5945] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.545615][ T5945] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.549009][ T5945] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.565940][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.569935][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.575085][ T5955] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.578717][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.582273][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.585672][ T5955] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.598723][ T5955] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.601777][ T5955] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.605374][ T5955] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.608191][ T5955] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.673893][ T1144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.676318][ T1144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.676842][ T5954] veth0_vlan: entered promiscuous mode [ 48.683267][ T5949] veth0_vlan: entered promiscuous mode [ 48.696877][ T5949] veth1_vlan: entered promiscuous mode [ 48.699964][ T5954] veth1_vlan: entered promiscuous mode [ 48.705999][ T1144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.708451][ T1144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.730943][ T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.733518][ T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.742043][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.746133][ T5949] veth0_macvtap: entered promiscuous mode [ 48.746201][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.753907][ T5949] veth1_macvtap: entered promiscuous mode [ 48.759840][ T5954] veth0_macvtap: entered promiscuous mode [ 48.765018][ T5954] veth1_macvtap: entered promiscuous mode [ 48.773896][ T5945] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 48.775260][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.782108][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.786047][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.788785][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.791898][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.795946][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.799001][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.801434][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.804016][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.807515][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.826926][ T5949] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.829285][ T5949] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.831711][ T5949] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.833982][ T5949] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.851339][ T5954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.855526][ T5954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.858786][ T5954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.862627][ T5954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.867285][ T5954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.870781][ T5954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.876389][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.902312][ T5954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.910886][ T5954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.914029][ T5954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.917108][ T5954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.920012][ T5954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.923323][ T5954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.926630][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.930502][ T5954] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.933641][ T5954] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.938920][ T5954] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.942183][ T5954] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.952405][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.955664][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.979601][ T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.982132][ T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.997465][ T1144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.999922][ T1144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.011633][ T1144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.017575][ T1144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.124512][ T8] usb 6-1: new full-speed USB device number 2 using dummy_hcd [ 49.276846][ T8] usb 6-1: config 1 interface 0 altsetting 253 endpoint 0x1 has invalid maxpacket 1023, setting to 64 [ 49.279955][ T8] usb 6-1: config 1 interface 0 has no altsetting 0 [ 49.286183][ T8] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 49.288648][ T8] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 49.290686][ T8] usb 6-1: Product: syz [ 49.291781][ T8] usb 6-1: Manufacturer: syz [ 49.292973][ T8] usb 6-1: SerialNumber: syz [ 49.298563][ T6013] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 49.345605][ T6029] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8'. [ 49.549583][ T8] usb 6-1: USB disconnect, device number 2 [ 49.568769][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 49.690692][ T6038] FAULT_INJECTION: forcing a failure. [ 49.690692][ T6038] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 49.694588][ T6038] CPU: 3 UID: 0 PID: 6038 Comm: syz.0.10 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 49.697542][ T6038] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 49.700505][ T6038] Call Trace: [ 49.701428][ T6038] [ 49.702326][ T6038] dump_stack_lvl+0x16c/0x1f0 [ 49.703774][ T6038] should_fail_ex+0x497/0x5b0 [ 49.705538][ T6038] _copy_from_iter+0x469/0x1560 [ 49.707168][ T6038] ? __pfx__copy_from_iter+0x10/0x10 [ 49.709366][ T6038] ? __virt_addr_valid+0x1a4/0x590 [ 49.711537][ T6038] ? __virt_addr_valid+0x5e/0x590 [ 49.713574][ T6038] ? __phys_addr_symbol+0x30/0x80 [ 49.715307][ T6038] ? __check_object_size+0x488/0x710 [ 49.717077][ T6038] netlink_sendmsg+0x813/0xd70 [ 49.718399][ T6038] ? __pfx_netlink_sendmsg+0x10/0x10 [ 49.719732][ T6038] ____sys_sendmsg+0xaaf/0xc90 [ 49.721072][ T6038] ? copy_msghdr_from_user+0x10b/0x160 [ 49.722516][ T6038] ? __pfx_____sys_sendmsg+0x10/0x10 [ 49.723825][ T6038] ? __pfx___lock_acquire+0x10/0x10 [ 49.725178][ T6038] ___sys_sendmsg+0x135/0x1e0 [ 49.726481][ T6038] ? __pfx____sys_sendmsg+0x10/0x10 [ 49.727798][ T6038] ? lock_acquire+0x2f/0xb0 [ 49.728997][ T6038] ? __fget_files+0x40/0x3f0 [ 49.730211][ T6038] ? fdget+0x176/0x210 [ 49.731269][ T6038] __sys_sendmsg+0x117/0x1f0 [ 49.732457][ T6038] ? __pfx___sys_sendmsg+0x10/0x10 [ 49.733748][ T6038] ? __fget_files+0x244/0x3f0 [ 49.734932][ T6038] do_syscall_64+0xcd/0x250 [ 49.736140][ T6038] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 49.737683][ T6038] RIP: 0033:0x7f3ac457e719 [ 49.738908][ T6038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 49.744301][ T6038] RSP: 002b:00007f3ac52fb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 49.746704][ T6038] RAX: ffffffffffffffda RBX: 00007f3ac4735f80 RCX: 00007f3ac457e719 [ 49.748741][ T6038] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 49.750978][ T6038] RBP: 00007f3ac52fb090 R08: 0000000000000000 R09: 0000000000000000 [ 49.753059][ T6038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 49.755304][ T6038] R13: 0000000000000000 R14: 00007f3ac4735f80 R15: 00007ffc8d8737e8 [ 49.757321][ T6038] [ 50.149508][ T6054] netlink: 828 bytes leftover after parsing attributes in process `syz.2.14'. [ 50.194454][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 50.198460][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 50.201687][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 50.211832][ T6064] netlink: 92 bytes leftover after parsing attributes in process `syz.1.17'. [ 50.218196][ T6064] netlink: 92 bytes leftover after parsing attributes in process `syz.1.17'. [ 50.222034][ T6064] Zero length message leads to an empty skb [ 50.241711][ T5988] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 50.279372][ T6060] tipc: Started in network mode [ 50.281613][ T6060] tipc: Node identity 363a9bfebc28, cluster identity 4711 [ 50.285652][ T6060] tipc: Enabled bearer , priority 0 [ 50.309368][ T6060] tipc: Resetting bearer [ 50.329829][ T6059] tipc: Resetting bearer [ 50.353340][ T6072] FAULT_INJECTION: forcing a failure. [ 50.353340][ T6072] name failslab, interval 1, probability 0, space 0, times 0 [ 50.358745][ T6072] CPU: 3 UID: 0 PID: 6072 Comm: syz.3.23 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 50.363366][ T6072] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 50.367361][ T6072] Call Trace: [ 50.368584][ T6072] [ 50.369616][ T6072] dump_stack_lvl+0x16c/0x1f0 [ 50.371344][ T6072] should_fail_ex+0x497/0x5b0 [ 50.373009][ T6072] should_failslab+0xc2/0x120 [ 50.374503][ T6072] __kmalloc_cache_noprof+0x6b/0x300 [ 50.376577][ T6072] ? once_disable_jump+0x46/0x200 [ 50.378503][ T6072] once_disable_jump+0x46/0x200 [ 50.380300][ T6072] recent_mt_check.isra.0+0x9dd/0xc30 [ 50.382260][ T6072] ? __pfx_recent_mt_check.isra.0+0x10/0x10 [ 50.384442][ T6072] ? __pfx___lock_acquire+0x10/0x10 [ 50.385263][ T5959] Bluetooth: hci2: command tx timeout [ 50.386216][ T6072] ? hlock_class+0x4e/0x130 [ 50.386246][ T6072] recent_mt_check_v0+0xf6/0x160 [ 50.391574][ T6072] ? __pfx_recent_mt_check_v0+0x10/0x10 [ 50.393614][ T6072] ? lock_acquire.part.0+0x11b/0x380 [ 50.395602][ T6072] ? __mutex_unlock_slowpath+0x164/0x650 [ 50.397900][ T6072] ? __pfx_recent_mt_check_v0+0x10/0x10 [ 50.400354][ T6072] xt_check_match+0x284/0xa50 [ 50.402244][ T6072] ? vclkdev_alloc+0x260/0x3f0 [ 50.404085][ T6072] ? __pfx_xt_check_match+0x10/0x10 [ 50.406066][ T6072] ? pcpu_alloc_noprof+0x1f5/0x1690 [ 50.408119][ T6072] ? xt_find_match+0x1f2/0x290 [ 50.410096][ T6072] find_check_entry.constprop.0+0x34d/0xa20 [ 50.412439][ T6072] ? __pfx_find_check_entry.constprop.0+0x10/0x10 [ 50.414786][ T6072] ? kfree+0x14f/0x4b0 [ 50.416549][ T6072] ? kvfree+0x47/0x50 [ 50.418051][ T6072] translate_table+0xd06/0x17b0 [ 50.419829][ T6072] ? __pfx_translate_table+0x10/0x10 [ 50.421757][ T6072] ? __might_fault+0xe3/0x190 [ 50.423591][ T6072] do_ip6t_set_ctl+0x605/0xc40 [ 50.425472][ T6072] ? rcu_is_watching+0x12/0xc0 [ 50.427189][ T6072] ? trace_contention_end+0xea/0x140 [ 50.429417][ T6072] ? __pfx_do_ip6t_set_ctl+0x10/0x10 [ 50.431346][ T6072] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 50.433510][ T6072] ? nf_sockopt_find.constprop.0+0x221/0x290 [ 50.435728][ T6072] nf_setsockopt+0x8a/0xf0 [ 50.437520][ T6072] ipv6_setsockopt+0x135/0x170 [ 50.439381][ T6072] rawv6_setsockopt+0xd7/0x680 [ 50.441148][ T6072] ? __pfx_rawv6_setsockopt+0x10/0x10 [ 50.443058][ T6072] ? selinux_socket_setsockopt+0x6a/0x80 [ 50.445129][ T6072] ? sock_common_setsockopt+0x2e/0xf0 [ 50.447354][ T6072] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 50.449347][ T6072] do_sock_setsockopt+0x222/0x480 [ 50.450821][ T6072] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 50.452445][ T6072] ? fdget+0x176/0x210 [ 50.453710][ T6072] __sys_setsockopt+0x1a4/0x270 [ 50.455192][ T6072] ? __pfx___sys_setsockopt+0x10/0x10 [ 50.457039][ T6072] ? fput+0x30/0x390 [ 50.458619][ T6072] ? ksys_write+0x1ad/0x260 [ 50.460238][ T6072] ? __pfx_ksys_write+0x10/0x10 [ 50.461645][ T6072] __x64_sys_setsockopt+0xbd/0x160 [ 50.462994][ T6072] ? do_syscall_64+0x91/0x250 [ 50.464248][ T6072] ? lockdep_hardirqs_on+0x7c/0x110 [ 50.465841][ T6072] do_syscall_64+0xcd/0x250 [ 50.467157][ T6072] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 50.468692][ T6072] RIP: 0033:0x7f4d7d37e719 [ 50.469930][ T6072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 50.474315][ T5959] Bluetooth: hci3: command tx timeout [ 50.474919][ T6072] RSP: 002b:00007f4d7e1c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 50.477625][ T5959] Bluetooth: hci1: command tx timeout [ 50.479529][ T6072] RAX: ffffffffffffffda RBX: 00007f4d7d535f80 RCX: 00007f4d7d37e719 [ 50.483472][ T6072] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003 [ 50.485703][ T6072] RBP: 00007f4d7e1c5090 R08: 0000000000000520 R09: 0000000000000000 [ 50.487898][ T6072] R10: 0000000020000600 R11: 0000000000000246 R12: 0000000000000001 [ 50.489980][ T6072] R13: 0000000000000000 R14: 00007f4d7d535f80 R15: 00007ffcedf31de8 [ 50.492143][ T6072] [ 50.493897][ T5959] Bluetooth: hci0: command tx timeout [ 50.503541][ T6072] Cannot find set identified by id 0 to match [ 50.526364][ T5988] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 50.530352][ T5988] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 50.533123][ T5988] usb 5-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.00 [ 50.536109][ T5988] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 50.541938][ T5988] usb 5-1: config 0 descriptor?? [ 51.305575][ T5989] tipc: Node number set to 2316475390 [ 51.353748][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 51.425059][ T6059] tipc: Disabling bearer [ 51.454204][ T39] kauditd_printk_skb: 69 callbacks suppressed [ 51.454216][ T39] audit: type=1400 audit(1730593122.596:182): avc: denied { bind } for pid=6076 comm="syz.1.25" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 51.463499][ T39] audit: type=1400 audit(1730593122.606:183): avc: denied { create } for pid=6076 comm="syz.1.25" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 51.469570][ T39] audit: type=1400 audit(1730593122.616:184): avc: denied { create } for pid=6078 comm="syz.3.26" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 51.475065][ T39] audit: type=1400 audit(1730593122.616:185): avc: denied { bind } for pid=6078 comm="syz.3.26" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 51.480701][ T39] audit: type=1400 audit(1730593122.626:186): avc: denied { write } for pid=6078 comm="syz.3.26" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 51.485536][ T6077] 9pnet_fd: Insufficient options for proto=fd [ 51.487215][ T6079] atomic_op ffff88802b057998 conn xmit_atomic 0000000000000000 [ 51.489119][ T39] audit: type=1400 audit(1730593122.636:187): avc: denied { mounton } for pid=6076 comm="syz.1.25" path="/6/file0" dev="tmpfs" ino=48 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 51.510836][ T6079] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 51.515693][ T6077] xt_hashlimit: size too large, truncated to 1048576 [ 51.515979][ T6079] infiniband Syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 51.519414][ T6081] netlink: 'syz.2.27': attribute type 72 has an invalid length. [ 51.522989][ T6081] netlink: 'syz.2.27': attribute type 8 has an invalid length. [ 51.583220][ T6085] capability: warning: `syz.2.28' uses deprecated v2 capabilities in a way that may be insecure [ 51.592761][ T6085] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 51.596943][ T39] audit: type=1400 audit(1730593122.746:188): avc: denied { getopt } for pid=6084 comm="syz.2.28" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 51.611067][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 51.653051][ T39] audit: type=1400 audit(1730593122.796:189): avc: denied { read } for pid=6086 comm="syz.3.30" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 51.660566][ T6087] binder_alloc: 6086: binder_alloc_buf size -512 failed, no address space [ 51.663479][ T6087] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 8192 (num: 1 largest: 8192) [ 51.664578][ T39] audit: type=1400 audit(1730593122.796:190): avc: denied { open } for pid=6086 comm="syz.3.30" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 51.677596][ T39] audit: type=1400 audit(1730593122.806:191): avc: denied { ioctl } for pid=6086 comm="syz.3.30" path="/dev/binderfs/binder0" dev="binder" ino=7 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 51.731402][ T6095] ======================================================= [ 51.731402][ T6095] WARNING: The mand mount option has been deprecated and [ 51.731402][ T6095] and is ignored by this kernel. Remove the mand [ 51.731402][ T6095] option from the mount to silence this warning. [ 51.731402][ T6095] ======================================================= [ 51.818606][ T5959] Bluetooth: hci2: unexpected event 0x13 length: 0 < 1 [ 51.822778][ T6101] netlink: 'syz.3.34': attribute type 10 has an invalid length. [ 51.834290][ T6101] syz_tun: entered promiscuous mode [ 51.846292][ T6101] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 52.140835][ T6106] tipc: Started in network mode [ 52.144387][ T6106] tipc: Node identity 0a60fd157d7c, cluster identity 4711 [ 52.154202][ T6106] tipc: Enabled bearer , priority 0 [ 52.177873][ T6106] tipc: Resetting bearer [ 52.198919][ T6105] tipc: Resetting bearer [ 52.474323][ T5959] Bluetooth: hci2: command tx timeout [ 52.545208][ T5959] Bluetooth: hci0: command tx timeout [ 52.545289][ T67] Bluetooth: hci1: command tx timeout [ 52.545388][ T5948] Bluetooth: hci3: command tx timeout [ 52.855333][ T5988] usbhid 5-1:0.0: can't add hid device: -71 [ 52.866701][ T5988] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 52.871192][ T5988] usb 5-1: USB disconnect, device number 2 [ 53.175224][ T830] tipc: Node number set to 1998388501 [ 53.197513][ T6105] tipc: Disabling bearer [ 53.243944][ T6112] Bluetooth: MGMT ver 1.23 [ 53.251710][ T6112] nbd: must specify at least one socket [ 53.320037][ T67] Bluetooth: hci3: unexpected event 0x09 length: 10 > 3 [ 53.320920][ T67] Bluetooth: hci3: SCO packet for unknown connection handle 1039 [ 53.346776][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 53.384619][ T6119] FAULT_INJECTION: forcing a failure. [ 53.384619][ T6119] name failslab, interval 1, probability 0, space 0, times 0 [ 53.388343][ T6119] CPU: 0 UID: 0 PID: 6119 Comm: syz.2.42 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 53.390883][ T6119] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 53.394121][ T6119] Call Trace: [ 53.395168][ T6119] [ 53.396241][ T6119] dump_stack_lvl+0x16c/0x1f0 [ 53.397764][ T6119] should_fail_ex+0x497/0x5b0 [ 53.399036][ T6119] should_failslab+0xc2/0x120 [ 53.400729][ T6119] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 53.402986][ T6119] ? skb_clone+0x190/0x3f0 [ 53.404780][ T6119] skb_clone+0x190/0x3f0 [ 53.406113][ T6119] netlink_deliver_tap+0xab3/0xd90 [ 53.407673][ T6119] netlink_unicast+0x6b4/0x7f0 [ 53.408980][ T6119] ? __pfx_netlink_unicast+0x10/0x10 [ 53.410504][ T6119] ? genl_rcv_msg+0x4bd/0x800 [ 53.411706][ T6119] netlink_ack+0x6a8/0xb90 [ 53.412893][ T6119] netlink_rcv_skb+0x348/0x440 [ 53.414161][ T6119] ? __pfx_genl_rcv_msg+0x10/0x10 [ 53.416611][ T6119] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 53.418322][ T6119] ? down_read+0xc9/0x330 [ 53.419620][ T6119] ? __pfx_down_read+0x10/0x10 [ 53.421063][ T6119] ? netlink_deliver_tap+0x1ae/0xd90 [ 53.422449][ T6119] genl_rcv+0x28/0x40 [ 53.423498][ T6119] netlink_unicast+0x53c/0x7f0 [ 53.424759][ T6119] ? __pfx_netlink_unicast+0x10/0x10 [ 53.426188][ T6119] netlink_sendmsg+0x8b8/0xd70 [ 53.427480][ T6119] ? __pfx_netlink_sendmsg+0x10/0x10 [ 53.428945][ T6119] ____sys_sendmsg+0xaaf/0xc90 [ 53.430261][ T6119] ? copy_msghdr_from_user+0x10b/0x160 [ 53.431733][ T6119] ? __pfx_____sys_sendmsg+0x10/0x10 [ 53.433142][ T6119] ? __pfx___lock_acquire+0x10/0x10 [ 53.434525][ T6119] ___sys_sendmsg+0x135/0x1e0 [ 53.435983][ T6119] ? __pfx____sys_sendmsg+0x10/0x10 [ 53.437482][ T6119] ? lock_acquire+0x2f/0xb0 [ 53.438836][ T6119] ? __fget_files+0x40/0x3f0 [ 53.440632][ T6119] ? fdget+0x176/0x210 [ 53.441817][ T6119] __sys_sendmsg+0x117/0x1f0 [ 53.443098][ T6119] ? __pfx___sys_sendmsg+0x10/0x10 [ 53.444655][ T6119] ? __fget_files+0x244/0x3f0 [ 53.446026][ T6119] do_syscall_64+0xcd/0x250 [ 53.447285][ T6119] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 53.448919][ T6119] RIP: 0033:0x7f770617e719 [ 53.450153][ T6119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 53.455537][ T6119] RSP: 002b:00007f7705bff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 53.457674][ T6119] RAX: ffffffffffffffda RBX: 00007f7706335f80 RCX: 00007f770617e719 [ 53.459729][ T6119] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 53.461793][ T6119] RBP: 00007f7705bff090 R08: 0000000000000000 R09: 0000000000000000 [ 53.464031][ T6119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 53.466168][ T6119] R13: 0000000000000000 R14: 00007f7706335f80 R15: 00007fff9066ca28 [ 53.468243][ T6119] [ 53.525110][ T6120] nvme_fabrics: unknown parameter or missing value 'õ' in ctrl creation request [ 53.651780][ T6121] e1000e 0000:00:02.0 eth1: NIC Link is Down [ 53.674987][ T0] NOHZ tick-stop error: local softirq work is pending, handler #48!!! [ 53.715008][ T6134] netlink: 'syz.2.44': attribute type 72 has an invalid length. [ 53.720002][ T6134] netlink: 'syz.2.44': attribute type 8 has an invalid length. [ 54.061374][ T6147] FAULT_INJECTION: forcing a failure. [ 54.061374][ T6147] name failslab, interval 1, probability 0, space 0, times 0 [ 54.080405][ T6147] CPU: 1 UID: 0 PID: 6147 Comm: syz.2.47 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 54.084390][ T6147] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 54.088482][ T6147] Call Trace: [ 54.089718][ T6147] [ 54.090603][ T6147] dump_stack_lvl+0x16c/0x1f0 [ 54.091847][ T6147] should_fail_ex+0x497/0x5b0 [ 54.093213][ T6147] ? fs_reclaim_acquire+0xae/0x150 [ 54.094886][ T6147] should_failslab+0xc2/0x120 [ 54.096557][ T6147] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 54.098094][ T6147] ? skb_clone+0x190/0x3f0 [ 54.099348][ T6147] skb_clone+0x190/0x3f0 [ 54.100572][ T6147] nfnetlink_rcv_batch+0x1d9/0x24e0 [ 54.102461][ T6147] ? __pfx___lock_acquire+0x10/0x10 [ 54.104360][ T6147] ? __pfx_nfnetlink_rcv_batch+0x10/0x10 [ 54.107044][ T6147] ? find_held_lock+0x2d/0x110 [ 54.108848][ T6147] ? avc_has_perm_noaudit+0x119/0x3a0 [ 54.110536][ T6147] ? avc_has_perm_noaudit+0x143/0x3a0 [ 54.112211][ T6147] ? __asan_memset+0x23/0x50 [ 54.113554][ T6147] ? __nla_validate_parse+0x601/0x2880 [ 54.115459][ T6147] ? __pfx___nla_validate_parse+0x10/0x10 [ 54.117005][ T6147] ? find_held_lock+0x2d/0x110 [ 54.118243][ T6147] ? cap_capable+0x1cf/0x240 [ 54.119466][ T6147] ? __nla_parse+0x40/0x60 [ 54.120660][ T6147] nfnetlink_rcv+0x3c3/0x430 [ 54.121892][ T6147] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 54.123242][ T6147] netlink_unicast+0x53c/0x7f0 [ 54.124638][ T6147] ? __pfx_netlink_unicast+0x10/0x10 [ 54.126034][ T6147] netlink_sendmsg+0x8b8/0xd70 [ 54.127697][ T6147] ? __pfx_netlink_sendmsg+0x10/0x10 [ 54.130009][ T6147] ____sys_sendmsg+0xaaf/0xc90 [ 54.131811][ T6147] ? copy_msghdr_from_user+0x10b/0x160 [ 54.133952][ T6147] ? __pfx_____sys_sendmsg+0x10/0x10 [ 54.136135][ T6147] ? __pfx___lock_acquire+0x10/0x10 [ 54.137817][ T6147] ___sys_sendmsg+0x135/0x1e0 [ 54.139124][ T6147] ? __pfx____sys_sendmsg+0x10/0x10 [ 54.140563][ T6147] ? lock_acquire+0x2f/0xb0 [ 54.141876][ T6147] ? __fget_files+0x40/0x3f0 [ 54.143321][ T6147] ? fdget+0x176/0x210 [ 54.144580][ T6147] __sys_sendmsg+0x117/0x1f0 [ 54.146012][ T6147] ? __pfx___sys_sendmsg+0x10/0x10 [ 54.148450][ T6147] ? __fget_files+0x244/0x3f0 [ 54.150365][ T6147] do_syscall_64+0xcd/0x250 [ 54.152031][ T6147] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 54.154358][ T6147] RIP: 0033:0x7f770617e719 [ 54.156214][ T6147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 54.163486][ T6147] RSP: 002b:00007f7705bff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 54.167017][ T6147] RAX: ffffffffffffffda RBX: 00007f7706335f80 RCX: 00007f770617e719 [ 54.170339][ T6147] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 54.173624][ T6147] RBP: 00007f7705bff090 R08: 0000000000000000 R09: 0000000000000000 [ 54.176754][ T6147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 54.179871][ T6147] R13: 0000000000000000 R14: 00007f7706335f80 R15: 00007fff9066ca28 [ 54.183050][ T6147] [ 54.250493][ T6160] bond0: entered promiscuous mode [ 54.251882][ T6160] bond_slave_0: entered promiscuous mode [ 54.255509][ T6160] bond_slave_1: entered promiscuous mode [ 54.260799][ T6160] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 54.346412][ T6164] capability: warning: `syz.2.48' uses 32-bit capabilities (legacy support in use) [ 54.425621][ T6159] bond0: left promiscuous mode [ 54.428383][ T6159] bond_slave_0: left promiscuous mode [ 54.430363][ T6159] bond_slave_1: left promiscuous mode [ 54.452960][ T6179] kvm: kvm [6177]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0xb285 [ 54.523559][ T6185] raw_sendmsg: syz.2.52 forgot to set AF_INET. Fix it! [ 54.555677][ T67] Bluetooth: hci2: command tx timeout [ 54.558760][ T6187] netlink: 892 bytes leftover after parsing attributes in process `syz.3.53'. [ 54.624178][ T67] Bluetooth: hci0: command tx timeout [ 54.625734][ T67] Bluetooth: hci1: command tx timeout [ 54.627558][ T67] Bluetooth: hci3: command tx timeout [ 54.674213][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 54.678115][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 54.755974][ T6209] netlink: 'syz.1.60': attribute type 4 has an invalid length. [ 55.538604][ T6219] netlink: 892 bytes leftover after parsing attributes in process `syz.1.64'. [ 55.577132][ T6221] netlink: 8 bytes leftover after parsing attributes in process `syz.2.65'. [ 55.604972][ T6227] netlink: 12 bytes leftover after parsing attributes in process `syz.1.67'. [ 55.629042][ T6229] netlink: 'syz.3.69': attribute type 1 has an invalid length. [ 55.631064][ T6229] netlink: 224 bytes leftover after parsing attributes in process `syz.3.69'. [ 55.757942][ T6245] netlink: 892 bytes leftover after parsing attributes in process `syz.3.75'. [ 55.758838][ T6247] netlink: 12 bytes leftover after parsing attributes in process `syz.2.76'. [ 55.767035][ T6247] FAULT_INJECTION: forcing a failure. [ 55.767035][ T6247] name failslab, interval 1, probability 0, space 0, times 0 [ 55.771159][ T6247] CPU: 2 UID: 0 PID: 6247 Comm: syz.2.76 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 55.773985][ T6247] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 55.776848][ T6247] Call Trace: [ 55.777727][ T6247] [ 55.778636][ T6247] dump_stack_lvl+0x16c/0x1f0 [ 55.779969][ T6247] should_fail_ex+0x497/0x5b0 [ 55.781656][ T6247] ? fs_reclaim_acquire+0xae/0x150 [ 55.783351][ T6247] should_failslab+0xc2/0x120 [ 55.785093][ T6247] kmem_cache_alloc_node_noprof+0x71/0x310 [ 55.786981][ T6247] ? __alloc_skb+0x2b1/0x380 [ 55.788306][ T6247] ? lock_acquire.part.0+0x11b/0x380 [ 55.789693][ T6247] __alloc_skb+0x2b1/0x380 [ 55.790950][ T6247] ? __pfx___alloc_skb+0x10/0x10 [ 55.792349][ T6247] ? __pfx_lock_release+0x10/0x10 [ 55.793973][ T6247] ? mark_held_locks+0x9f/0xe0 [ 55.795734][ T6247] ? dev_graft_qdisc+0xc9/0x190 [ 55.797303][ T6247] qdisc_notify.isra.0+0xd7/0x3f0 [ 55.799304][ T6247] qdisc_graft+0xd9c/0x1780 [ 55.800941][ T6247] ? __pfx_qdisc_graft+0x10/0x10 [ 55.802779][ T6247] ? __pfx_qdisc_create+0x10/0x10 [ 55.804412][ T6247] tc_modify_qdisc+0x1145/0x1c40 [ 55.805895][ T6247] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 55.807414][ T6247] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 55.808967][ T6247] rtnetlink_rcv_msg+0x3c7/0xea0 [ 55.810272][ T6247] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 55.811737][ T6247] netlink_rcv_skb+0x16b/0x440 [ 55.813026][ T6247] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 55.814658][ T6247] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 55.816204][ T6247] ? netlink_deliver_tap+0x1ae/0xd90 [ 55.817844][ T6247] netlink_unicast+0x53c/0x7f0 [ 55.819273][ T6247] ? __pfx_netlink_unicast+0x10/0x10 [ 55.820636][ T6247] netlink_sendmsg+0x8b8/0xd70 [ 55.822048][ T6247] ? __pfx_netlink_sendmsg+0x10/0x10 [ 55.823530][ T6247] ____sys_sendmsg+0xaaf/0xc90 [ 55.825164][ T6247] ? copy_msghdr_from_user+0x10b/0x160 [ 55.826780][ T6247] ? __pfx_____sys_sendmsg+0x10/0x10 [ 55.828191][ T6247] ? __pfx___lock_acquire+0x10/0x10 [ 55.829673][ T6247] ___sys_sendmsg+0x135/0x1e0 [ 55.830983][ T6247] ? __pfx____sys_sendmsg+0x10/0x10 [ 55.832441][ T6247] ? lock_acquire+0x2f/0xb0 [ 55.833650][ T6247] ? __fget_files+0x40/0x3f0 [ 55.835226][ T6247] ? fdget+0x176/0x210 [ 55.836946][ T6247] __sys_sendmsg+0x117/0x1f0 [ 55.838382][ T6247] ? __pfx___sys_sendmsg+0x10/0x10 [ 55.839951][ T6247] ? __fget_files+0x244/0x3f0 [ 55.841465][ T6247] do_syscall_64+0xcd/0x250 [ 55.842880][ T6247] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 55.844827][ T6247] RIP: 0033:0x7f770617e719 [ 55.846178][ T6247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 55.851144][ T6247] RSP: 002b:00007f7705bff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 55.853405][ T6247] RAX: ffffffffffffffda RBX: 00007f7706335f80 RCX: 00007f770617e719 [ 55.855544][ T6247] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000003 [ 55.857789][ T6247] RBP: 00007f7705bff090 R08: 0000000000000000 R09: 0000000000000000 [ 55.860290][ T6247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 55.862809][ T6247] R13: 0000000000000000 R14: 00007f7706335f80 R15: 00007fff9066ca28 [ 55.864894][ T6247] [ 55.915017][ T6253] netlink: 28 bytes leftover after parsing attributes in process `syz.2.78'. [ 55.991997][ T6249] process 'syz.3.77' launched '/dev/fd/4/./file0' with NULL argv: empty string added [ 56.170830][ T6275] nbd: must specify at least one socket [ 56.270270][ T6280] netlink: 12 bytes leftover after parsing attributes in process `syz.2.87'. [ 56.290992][ T6280] fuse: Unknown parameter 'fd00000000000000000000' [ 56.624839][ T6290] FAULT_INJECTION: forcing a failure. [ 56.624839][ T6290] name failslab, interval 1, probability 0, space 0, times 0 [ 56.630378][ T6290] CPU: 2 UID: 0 PID: 6290 Comm: syz.1.90 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 56.633732][ T6290] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 56.637772][ T6290] Call Trace: [ 56.639138][ T6290] [ 56.640443][ T6290] dump_stack_lvl+0x16c/0x1f0 [ 56.642435][ T6290] should_fail_ex+0x497/0x5b0 [ 56.644206][ T6290] ? fs_reclaim_acquire+0xae/0x150 [ 56.646566][ T6290] should_failslab+0xc2/0x120 [ 56.648739][ T6290] __kmalloc_noprof+0xcb/0x400 [ 56.650994][ T6290] sock_kmalloc+0x111/0x170 [ 56.652524][ T6290] skcipher_recvmsg+0x49d/0x1020 [ 56.654141][ T6290] ? find_held_lock+0x2d/0x110 [ 56.655710][ T6290] ? __pfx_skcipher_recvmsg+0x10/0x10 [ 56.657513][ T6290] sock_recvmsg+0x1f6/0x250 [ 56.659009][ T6290] ____sys_recvmsg+0x219/0x6b0 [ 56.660618][ T6290] ? __pfx_____sys_recvmsg+0x10/0x10 [ 56.662389][ T6290] ? find_held_lock+0x2d/0x110 [ 56.664003][ T6290] ___sys_recvmsg+0x115/0x1a0 [ 56.665758][ T6290] ? __pfx____sys_recvmsg+0x10/0x10 [ 56.667579][ T6290] ? lock_acquire+0x2f/0xb0 [ 56.669160][ T6290] ? fdget+0x176/0x210 [ 56.670681][ T6290] do_recvmmsg+0x2ba/0x750 [ 56.672312][ T6290] ? __pfx_do_recvmmsg+0x10/0x10 [ 56.673859][ T6290] ? vfs_write+0x306/0x1150 [ 56.675288][ T6290] ? __mutex_unlock_slowpath+0x164/0x650 [ 56.677022][ T6290] ? __fget_files+0x244/0x3f0 [ 56.678427][ T6290] __x64_sys_recvmmsg+0x239/0x290 [ 56.680132][ T6290] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 56.682692][ T6290] do_syscall_64+0xcd/0x250 [ 56.684901][ T6290] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 56.687364][ T6290] RIP: 0033:0x7f552457e719 [ 56.689067][ T6290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 56.695512][ T6290] RSP: 002b:00007f55253e0038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 56.698473][ T6290] RAX: ffffffffffffffda RBX: 00007f5524735f80 RCX: 00007f552457e719 [ 56.701087][ T6290] RDX: 0000000000000001 RSI: 0000000020001180 RDI: 0000000000000004 [ 56.703702][ T6290] RBP: 00007f55253e0090 R08: 0000000000000000 R09: 0000000000000000 [ 56.706226][ T6290] R10: 0000000000012021 R11: 0000000000000246 R12: 0000000000000001 [ 56.708234][ T6290] R13: 0000000000000000 R14: 00007f5524735f80 R15: 00007fff5d81e498 [ 56.710311][ T6290] [ 56.712877][ T39] kauditd_printk_skb: 73 callbacks suppressed [ 56.712891][ T39] audit: type=1400 audit(1730593127.856:265): avc: denied { rename } for pid=5344 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 56.725266][ T39] audit: type=1400 audit(1730593127.856:266): avc: denied { unlink } for pid=5344 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 56.735010][ T39] audit: type=1400 audit(1730593127.856:267): avc: denied { create } for pid=5344 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 56.800146][ T39] audit: type=1400 audit(1730593127.946:268): avc: denied { getopt } for pid=6292 comm="syz.1.91" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 57.091997][ T5959] block nbd2: Receive control failed (result -32) [ 57.097138][ T6285] block nbd2: shutting down sockets [ 57.132827][ T39] audit: type=1400 audit(1730593128.276:269): avc: denied { create } for pid=6296 comm="syz.2.92" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 57.139941][ T39] audit: type=1400 audit(1730593128.276:270): avc: denied { setopt } for pid=6296 comm="syz.2.92" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 57.146830][ T39] audit: type=1400 audit(1730593128.276:271): avc: denied { write } for pid=6296 comm="syz.2.92" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 57.233948][ T39] audit: type=1400 audit(1730593128.376:272): avc: denied { getopt } for pid=6303 comm="syz.2.95" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 57.239985][ T6304] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6304 comm=syz.2.95 [ 57.244009][ T6304] netlink: 8 bytes leftover after parsing attributes in process `syz.2.95'. [ 57.255490][ T6304] syz.2.95 (6304) used greatest stack depth: 20432 bytes left [ 57.281147][ T6306] nbd: must specify at least one socket [ 57.610101][ T39] audit: type=1400 audit(1730593128.756:273): avc: denied { create } for pid=6310 comm="syz.2.98" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 57.620159][ T39] audit: type=1400 audit(1730593128.766:274): avc: denied { setopt } for pid=6310 comm="syz.2.98" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 57.682537][ T6319] Cannot find set identified by id 0 to match [ 57.685748][ T6319] FAULT_INJECTION: forcing a failure. [ 57.685748][ T6319] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 57.689774][ T6319] CPU: 0 UID: 0 PID: 6319 Comm: syz.2.102 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 57.692528][ T6319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 57.695706][ T6319] Call Trace: [ 57.696837][ T6319] [ 57.697679][ T6319] dump_stack_lvl+0x16c/0x1f0 [ 57.699029][ T6319] should_fail_ex+0x497/0x5b0 [ 57.700414][ T6319] _copy_to_user+0x32/0xd0 [ 57.701708][ T6319] simple_read_from_buffer+0xd0/0x160 [ 57.703356][ T6319] proc_fail_nth_read+0x198/0x270 [ 57.704879][ T6319] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 57.706436][ T6319] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 57.707973][ T6319] vfs_read+0x1df/0xbe0 [ 57.708957][ T6321] syz.1.101 uses obsolete (PF_INET,SOCK_PACKET) [ 57.709159][ T6319] ? __fget_files+0x23a/0x3f0 [ 57.712381][ T6319] ? fdget_pos+0x24c/0x360 [ 57.713565][ T6319] ? __pfx_lock_release+0x10/0x10 [ 57.714890][ T6319] ? trace_lock_acquire+0x14a/0x1d0 [ 57.716559][ T6319] ? __pfx_vfs_read+0x10/0x10 [ 57.717872][ T6319] ? __pfx___mutex_lock+0x10/0x10 [ 57.719359][ T6319] ? __fget_files+0x244/0x3f0 [ 57.720756][ T6319] ksys_read+0x12f/0x260 [ 57.722497][ T6319] ? __pfx_ksys_read+0x10/0x10 [ 57.724327][ T6319] do_syscall_64+0xcd/0x250 [ 57.725683][ T6319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 57.727411][ T6319] RIP: 0033:0x7f770617d15c [ 57.728664][ T6319] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 57.733735][ T6319] RSP: 002b:00007f7705bff030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 57.736090][ T6319] RAX: ffffffffffffffda RBX: 00007f7706335f80 RCX: 00007f770617d15c [ 57.738241][ T6319] RDX: 000000000000000f RSI: 00007f7705bff0a0 RDI: 0000000000000004 [ 57.740323][ T6319] RBP: 00007f7705bff090 R08: 0000000000000000 R09: 0000000000000000 [ 57.742400][ T6319] R10: 0000000020000600 R11: 0000000000000246 R12: 0000000000000002 [ 57.744492][ T6319] R13: 0000000000000000 R14: 00007f7706335f80 R15: 00007fff9066ca28 [ 57.746751][ T6319] [ 57.900208][ T6330] nbd: must specify at least one socket [ 57.997386][ T6337] netlink: 'syz.1.106': attribute type 9 has an invalid length. [ 58.224320][ T5989] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 58.354480][ T5989] usb 7-1: device descriptor read/64, error -71 [ 58.464336][ T67] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 58.464395][ T5959] Bluetooth: hci4: command 0x1003 tx timeout [ 58.578592][ T6343] FAULT_INJECTION: forcing a failure. [ 58.578592][ T6343] name failslab, interval 1, probability 0, space 0, times 0 [ 58.582789][ T6343] CPU: 2 UID: 0 PID: 6343 Comm: syz.3.110 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 58.585666][ T6343] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 58.588543][ T6343] Call Trace: [ 58.589498][ T6343] [ 58.590339][ T6343] dump_stack_lvl+0x16c/0x1f0 [ 58.591867][ T6343] should_fail_ex+0x497/0x5b0 [ 58.593477][ T6343] should_failslab+0xc2/0x120 [ 58.594212][ T5989] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 58.595148][ T6343] __kmalloc_cache_noprof+0x6b/0x300 [ 58.598785][ T6343] ? sctp_add_bind_addr+0x9a/0x3d0 [ 58.600061][ T6343] sctp_add_bind_addr+0x9a/0x3d0 [ 58.601329][ T6343] sctp_copy_local_addr_list+0x39e/0x5a0 [ 58.602705][ T6343] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 58.604338][ T6343] ? irqentry_exit+0x3b/0x90 [ 58.605484][ T6343] ? lockdep_hardirqs_on+0x7c/0x110 [ 58.606865][ T6343] ? sctp_bind_addr_copy+0xe0/0x530 [ 58.608207][ T6343] sctp_bind_addr_copy+0xe0/0x530 [ 58.609536][ T6343] sctp_connect_new_asoc+0x1d8/0x790 [ 58.610853][ T6343] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 58.612345][ T6343] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 58.614018][ T6343] sctp_sendmsg+0x1610/0x1eb0 [ 58.615390][ T6343] ? avc_has_perm+0x11b/0x1c0 [ 58.616639][ T6343] ? __pfx_sctp_sendmsg+0x10/0x10 [ 58.618079][ T6343] ? __pfx_sock_has_perm+0x10/0x10 [ 58.619530][ T6343] ? __pfx_sctp_sendmsg+0x10/0x10 [ 58.620823][ T6343] inet_sendmsg+0x119/0x140 [ 58.622002][ T6343] __sys_sendto+0x426/0x4d0 [ 58.623229][ T6343] ? __pfx___sys_sendto+0x10/0x10 [ 58.624635][ T6343] ? ksys_write+0x1ad/0x260 [ 58.625846][ T6343] ? __pfx_ksys_write+0x10/0x10 [ 58.627133][ T6343] __x64_sys_sendto+0xe0/0x1c0 [ 58.628298][ T6343] ? do_syscall_64+0x91/0x250 [ 58.629356][ T6343] ? lockdep_hardirqs_on+0x7c/0x110 [ 58.630530][ T6343] do_syscall_64+0xcd/0x250 [ 58.631555][ T6343] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 58.632952][ T6343] RIP: 0033:0x7f4d7d37e719 [ 58.634172][ T6343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 58.639773][ T6343] RSP: 002b:00007f4d7e1c5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 58.641971][ T6343] RAX: ffffffffffffffda RBX: 00007f4d7d535f80 RCX: 00007f4d7d37e719 [ 58.644039][ T6343] RDX: 0000000000034000 RSI: 0000000020000300 RDI: 0000000000000003 [ 58.646227][ T6343] RBP: 00007f4d7e1c5090 R08: 0000000020000380 R09: 0000000000000010 [ 58.648411][ T6343] R10: 000000000000fcff R11: 0000000000000246 R12: 0000000000000002 [ 58.650509][ T6343] R13: 0000000000000000 R14: 00007f4d7d535f80 R15: 00007ffcedf31de8 [ 58.652596][ T6343] [ 58.734199][ T5989] usb 7-1: device descriptor read/64, error -71 [ 58.854905][ T5989] usb usb7-port1: attempt power cycle [ 58.892628][ T6366] FAULT_INJECTION: forcing a failure. [ 58.892628][ T6366] name failslab, interval 1, probability 0, space 0, times 0 [ 58.897390][ T6366] CPU: 0 UID: 0 PID: 6366 Comm: syz.3.113 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 58.900198][ T6366] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 58.902803][ T6366] Call Trace: [ 58.904116][ T6366] [ 58.905101][ T6366] dump_stack_lvl+0x16c/0x1f0 [ 58.906351][ T6366] should_fail_ex+0x497/0x5b0 [ 58.907595][ T6366] should_failslab+0xc2/0x120 [ 58.909188][ T6366] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 58.911032][ T6366] ? dev_queue_xmit_nit+0x43/0xba0 [ 58.912413][ T6366] ? skb_clone+0x190/0x3f0 [ 58.913799][ T6366] skb_clone+0x190/0x3f0 [ 58.915237][ T6366] dev_queue_xmit_nit+0x38f/0xba0 [ 58.916951][ T6366] dev_hard_start_xmit+0x56/0x790 [ 58.918359][ T6366] ? __dev_queue_xmit+0x252/0x4350 [ 58.919873][ T6366] __dev_queue_xmit+0x7c7/0x4350 [ 58.921654][ T6366] ? __pfx___dev_queue_xmit+0x10/0x10 [ 58.924195][ T6366] ? __skb_clone+0x570/0x760 [ 58.925942][ T6366] netlink_deliver_tap+0xa7d/0xd90 [ 58.927815][ T6366] netlink_unicast+0x6b4/0x7f0 [ 58.929482][ T6366] ? __pfx_netlink_unicast+0x10/0x10 [ 58.930968][ T6366] ? rtnetlink_rcv_msg+0x3e6/0xea0 [ 58.932326][ T6366] netlink_ack+0x6a8/0xb90 [ 58.933664][ T6366] netlink_rcv_skb+0x348/0x440 [ 58.935316][ T6366] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 58.937116][ T6366] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 58.938633][ T6366] ? netlink_deliver_tap+0x1ae/0xd90 [ 58.940064][ T6366] netlink_unicast+0x53c/0x7f0 [ 58.941435][ T6366] ? __pfx_netlink_unicast+0x10/0x10 [ 58.942856][ T6366] netlink_sendmsg+0x8b8/0xd70 [ 58.944258][ T6366] ? __pfx_netlink_sendmsg+0x10/0x10 [ 58.945688][ T6366] ____sys_sendmsg+0xaaf/0xc90 [ 58.946947][ T6366] ? copy_msghdr_from_user+0x10b/0x160 [ 58.948388][ T6366] ? __pfx_____sys_sendmsg+0x10/0x10 [ 58.949662][ T6366] ? __pfx___lock_acquire+0x10/0x10 [ 58.950995][ T6366] ___sys_sendmsg+0x135/0x1e0 [ 58.952247][ T6366] ? __pfx____sys_sendmsg+0x10/0x10 [ 58.953822][ T6366] ? lock_acquire+0x2f/0xb0 [ 58.955324][ T6366] ? __fget_files+0x40/0x3f0 [ 58.956768][ T6366] ? fdget+0x176/0x210 [ 58.957917][ T6366] __sys_sendmsg+0x117/0x1f0 [ 58.959354][ T6366] ? __pfx___sys_sendmsg+0x10/0x10 [ 58.960848][ T6366] ? __fget_files+0x244/0x3f0 [ 58.962230][ T6366] do_syscall_64+0xcd/0x250 [ 58.963670][ T6366] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 58.965676][ T6366] RIP: 0033:0x7f4d7d37e719 [ 58.967181][ T6366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 58.973888][ T6366] RSP: 002b:00007f4d7e1c5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 58.976457][ T6366] RAX: ffffffffffffffda RBX: 00007f4d7d535f80 RCX: 00007f4d7d37e719 [ 58.978850][ T6366] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000004 [ 58.980911][ T6366] RBP: 00007f4d7e1c5090 R08: 0000000000000000 R09: 0000000000000000 [ 58.982959][ T6366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 58.985073][ T6366] R13: 0000000000000000 R14: 00007f4d7d535f80 R15: 00007ffcedf31de8 [ 58.987206][ T6366] [ 59.118859][ T6372] nbd: must specify at least one socket [ 59.224926][ T5989] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 59.245093][ T5989] usb 7-1: device descriptor read/8, error -71 [ 59.329778][ T6374] netlink: 'syz.3.116': attribute type 5 has an invalid length. [ 59.484405][ T5989] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 59.507699][ T5989] usb 7-1: device descriptor read/8, error -71 [ 59.614623][ T5989] usb usb7-port1: unable to enumerate USB device [ 59.619634][ T6385] __nla_validate_parse: 2 callbacks suppressed [ 59.619648][ T6385] netlink: 8 bytes leftover after parsing attributes in process `syz.3.120'. [ 59.722150][ T6391] openvswitch: netlink: Missing key (keys=48, expected=80) [ 59.804146][ T6399] nbd: must specify at least one socket [ 59.856589][ T6395] netlink: 36 bytes leftover after parsing attributes in process `syz.3.123'. [ 59.859554][ T6395] netlink: 16 bytes leftover after parsing attributes in process `syz.3.123'. [ 59.862442][ T6395] netlink: 36 bytes leftover after parsing attributes in process `syz.3.123'. [ 59.865968][ T6395] netlink: 36 bytes leftover after parsing attributes in process `syz.3.123'. [ 59.889401][ T6401] FAULT_INJECTION: forcing a failure. [ 59.889401][ T6401] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 59.893502][ T6401] CPU: 2 UID: 0 PID: 6401 Comm: syz.1.125 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 59.896500][ T6401] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 59.900378][ T6401] Call Trace: [ 59.901551][ T6401] [ 59.902645][ T6401] dump_stack_lvl+0x16c/0x1f0 [ 59.904211][ T6401] should_fail_ex+0x497/0x5b0 [ 59.906098][ T6401] _copy_to_user+0x32/0xd0 [ 59.907839][ T6401] simple_read_from_buffer+0xd0/0x160 [ 59.909938][ T6401] proc_fail_nth_read+0x198/0x270 [ 59.911753][ T6401] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 59.913295][ T6401] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 59.914681][ T6401] vfs_read+0x1df/0xbe0 [ 59.915795][ T6401] ? __fget_files+0x23a/0x3f0 [ 59.917009][ T6401] ? fdget_pos+0x24c/0x360 [ 59.918156][ T6401] ? __pfx_lock_release+0x10/0x10 [ 59.919423][ T6401] ? trace_lock_acquire+0x14a/0x1d0 [ 59.921175][ T6401] ? __pfx_vfs_read+0x10/0x10 [ 59.922889][ T6401] ? __pfx___mutex_lock+0x10/0x10 [ 59.924840][ T6401] ? __fget_files+0x244/0x3f0 [ 59.927682][ T6401] ksys_read+0x12f/0x260 [ 59.929174][ T6401] ? __pfx_ksys_read+0x10/0x10 [ 59.930434][ T6401] do_syscall_64+0xcd/0x250 [ 59.931602][ T6401] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 59.933119][ T6401] RIP: 0033:0x7f552457d15c [ 59.934255][ T6401] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 59.939402][ T6401] RSP: 002b:00007f55253e0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 59.941911][ T6401] RAX: ffffffffffffffda RBX: 00007f5524735f80 RCX: 00007f552457d15c [ 59.943852][ T6401] RDX: 000000000000000f RSI: 00007f55253e00a0 RDI: 0000000000000005 [ 59.946041][ T6401] RBP: 00007f55253e0090 R08: 0000000000000000 R09: 0000000000000000 [ 59.948102][ T6401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 59.950804][ T6401] R13: 0000000000000000 R14: 00007f5524735f80 R15: 00007fff5d81e498 [ 59.953788][ T6401] [ 60.018598][ T6409] netlink: 'syz.1.129': attribute type 1 has an invalid length. [ 60.022583][ T6409] warning: `syz.1.129' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 60.142176][ T6420] netlink: 20 bytes leftover after parsing attributes in process `syz.1.131'. [ 60.257755][ T6430] FAULT_INJECTION: forcing a failure. [ 60.257755][ T6430] name failslab, interval 1, probability 0, space 0, times 0 [ 60.261925][ T6430] CPU: 2 UID: 0 PID: 6430 Comm: syz.3.134 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 60.265025][ T6430] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 60.268016][ T6430] Call Trace: [ 60.268970][ T6430] [ 60.269864][ T6430] dump_stack_lvl+0x16c/0x1f0 [ 60.271189][ T6430] should_fail_ex+0x497/0x5b0 [ 60.272640][ T6430] ? fs_reclaim_acquire+0xae/0x150 [ 60.274073][ T6430] should_failslab+0xc2/0x120 [ 60.275312][ T6430] __kmalloc_noprof+0xcb/0x400 [ 60.276598][ T6430] ieee80211_assign_beacon+0x1046/0x1bc0 [ 60.278084][ T6430] ieee80211_start_ap+0x1ec8/0x3180 [ 60.279530][ T6430] ? __pfx_ieee80211_start_ap+0x10/0x10 [ 60.280972][ T6430] ? _cfg80211_chandef_usable+0x2fb/0x12c0 [ 60.282510][ T6430] ? cfg80211_find_elem_match+0x18e/0x1d0 [ 60.284129][ T6430] nl80211_start_ap+0x2b11/0x4820 [ 60.285577][ T6430] ? __pfx_nl80211_start_ap+0x10/0x10 [ 60.287163][ T6430] ? ref_tracker_alloc+0x2ef/0x5b0 [ 60.289030][ T6430] ? __pfx_netdev_run_todo+0x10/0x10 [ 60.291003][ T6430] ? __nla_parse+0x40/0x60 [ 60.292752][ T6430] ? nl80211_pre_doit+0x1b0/0xb10 [ 60.294950][ T6430] genl_family_rcv_msg_doit+0x202/0x2f0 [ 60.297208][ T6430] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 60.299280][ T6430] ? bpf_lsm_capable+0x9/0x10 [ 60.301035][ T6430] ? security_capable+0x7e/0x260 [ 60.302949][ T6430] ? ns_capable+0xd7/0x110 [ 60.304530][ T6430] genl_rcv_msg+0x565/0x800 [ 60.306217][ T6430] ? __pfx_genl_rcv_msg+0x10/0x10 [ 60.308019][ T6430] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 60.309892][ T6430] ? __pfx_nl80211_start_ap+0x10/0x10 [ 60.311961][ T6430] ? __pfx_nl80211_post_doit+0x10/0x10 [ 60.313831][ T6430] netlink_rcv_skb+0x16b/0x440 [ 60.315133][ T6430] ? __pfx_genl_rcv_msg+0x10/0x10 [ 60.316617][ T6430] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 60.318042][ T6430] ? down_read+0xc9/0x330 [ 60.319239][ T6430] ? __pfx_down_read+0x10/0x10 [ 60.320526][ T6430] ? netlink_deliver_tap+0x1ae/0xd90 [ 60.321939][ T6430] genl_rcv+0x28/0x40 [ 60.323031][ T6430] netlink_unicast+0x53c/0x7f0 [ 60.324774][ T6430] ? __pfx_netlink_unicast+0x10/0x10 [ 60.326316][ T6430] netlink_sendmsg+0x8b8/0xd70 [ 60.327925][ T6430] ? __pfx_netlink_sendmsg+0x10/0x10 [ 60.329799][ T6430] ____sys_sendmsg+0xaaf/0xc90 [ 60.332261][ T6430] ? copy_msghdr_from_user+0x10b/0x160 [ 60.333894][ T6430] ? __pfx_____sys_sendmsg+0x10/0x10 [ 60.335352][ T6430] ? __pfx___lock_acquire+0x10/0x10 [ 60.336788][ T6430] ___sys_sendmsg+0x135/0x1e0 [ 60.338041][ T6430] ? __pfx____sys_sendmsg+0x10/0x10 [ 60.339483][ T6430] ? lock_acquire+0x2f/0xb0 [ 60.341003][ T6430] ? __fget_files+0x40/0x3f0 [ 60.342594][ T6430] ? fdget+0x176/0x210 [ 60.343968][ T6430] __sys_sendmsg+0x117/0x1f0 [ 60.345616][ T6430] ? __pfx___sys_sendmsg+0x10/0x10 [ 60.347483][ T6430] ? __fget_files+0x244/0x3f0 [ 60.349164][ T6430] do_syscall_64+0xcd/0x250 [ 60.350486][ T6430] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 60.352248][ T6430] RIP: 0033:0x7f4d7d37e719 [ 60.353760][ T6430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 60.359019][ T6430] RSP: 002b:00007f4d7e1c5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 60.361282][ T6430] RAX: ffffffffffffffda RBX: 00007f4d7d535f80 RCX: 00007f4d7d37e719 [ 60.363399][ T6430] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 60.365872][ T6430] RBP: 00007f4d7e1c5090 R08: 0000000000000000 R09: 0000000000000000 [ 60.368478][ T6430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 60.370690][ T6430] R13: 0000000000000000 R14: 00007f4d7d535f80 R15: 00007ffcedf31de8 [ 60.372916][ T6430] [ 60.698762][ T6444] FAULT_INJECTION: forcing a failure. [ 60.698762][ T6444] name failslab, interval 1, probability 0, space 0, times 0 [ 60.706850][ T6444] CPU: 2 UID: 0 PID: 6444 Comm: syz.3.140 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 60.710567][ T6444] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 60.714241][ T6444] Call Trace: [ 60.715624][ T6444] [ 60.716661][ T6444] dump_stack_lvl+0x16c/0x1f0 [ 60.718477][ T6444] should_fail_ex+0x497/0x5b0 [ 60.720363][ T6444] ? fs_reclaim_acquire+0xae/0x150 [ 60.722590][ T6444] should_failslab+0xc2/0x120 [ 60.725092][ T6444] __kmalloc_noprof+0xcb/0x400 [ 60.726807][ T6444] nft_trans_alloc_gfp+0x26/0x2e0 [ 60.727660][ T6446] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 60.728719][ T6444] nf_tables_newtable+0x13b3/0x1b40 [ 60.728794][ T6444] ? net_generic+0xea/0x2a0 [ 60.736604][ T6444] ? __pfx_nf_tables_newtable+0x10/0x10 [ 60.738229][ T6444] ? trace_lock_acquire+0x14a/0x1d0 [ 60.739977][ T6444] ? __nla_parse+0x40/0x60 [ 60.741908][ T6444] nfnetlink_rcv_batch+0x1a28/0x24e0 [ 60.744067][ T6444] ? __pfx_nfnetlink_rcv_batch+0x10/0x10 [ 60.746043][ T6444] ? avc_has_perm_noaudit+0x119/0x3a0 [ 60.748029][ T6444] ? avc_has_perm_noaudit+0x143/0x3a0 [ 60.750244][ T6444] ? __nla_parse+0x40/0x60 [ 60.752113][ T6444] nfnetlink_rcv+0x3c3/0x430 [ 60.754036][ T6444] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 60.756182][ T6444] netlink_unicast+0x53c/0x7f0 [ 60.758430][ T6444] ? __pfx_netlink_unicast+0x10/0x10 [ 60.760265][ T6444] netlink_sendmsg+0x8b8/0xd70 [ 60.761922][ T6444] ? __pfx_netlink_sendmsg+0x10/0x10 [ 60.763740][ T6444] ____sys_sendmsg+0xaaf/0xc90 [ 60.765511][ T6444] ? copy_msghdr_from_user+0x10b/0x160 [ 60.767325][ T6444] ? __pfx_____sys_sendmsg+0x10/0x10 [ 60.769118][ T6444] ? __pfx___lock_acquire+0x10/0x10 [ 60.770931][ T6444] ___sys_sendmsg+0x135/0x1e0 [ 60.772550][ T6444] ? __pfx____sys_sendmsg+0x10/0x10 [ 60.774428][ T6444] ? lock_acquire+0x2f/0xb0 [ 60.776268][ T6444] ? __fget_files+0x40/0x3f0 [ 60.777960][ T6444] ? fdget+0x176/0x210 [ 60.779501][ T6444] __sys_sendmsg+0x117/0x1f0 [ 60.781186][ T6444] ? __pfx___sys_sendmsg+0x10/0x10 [ 60.783041][ T6444] ? __fget_files+0x244/0x3f0 [ 60.784938][ T6444] do_syscall_64+0xcd/0x250 [ 60.786714][ T6444] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 60.787345][ T6448] netlink: 20 bytes leftover after parsing attributes in process `syz.1.142'. [ 60.788910][ T6444] RIP: 0033:0x7f4d7d37e719 [ 60.793061][ T6444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 60.797696][ T6448] netlink: 8 bytes leftover after parsing attributes in process `syz.1.142'. [ 60.800873][ T6444] RSP: 002b:00007f4d7e1c5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 60.806601][ T6444] RAX: ffffffffffffffda RBX: 00007f4d7d535f80 RCX: 00007f4d7d37e719 [ 60.809096][ T6444] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 60.811842][ T6444] RBP: 00007f4d7e1c5090 R08: 0000000000000000 R09: 0000000000000000 [ 60.814073][ T6444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 60.816168][ T6444] R13: 0000000000000000 R14: 00007f4d7d535f80 R15: 00007ffcedf31de8 [ 60.818416][ T6444] [ 60.894942][ T6451] netlink: 56 bytes leftover after parsing attributes in process `syz.1.144'. [ 61.027565][ T6468] netlink: 24 bytes leftover after parsing attributes in process `syz.2.149'. [ 61.152957][ T6482] FAULT_INJECTION: forcing a failure. [ 61.152957][ T6482] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 61.158083][ T6482] CPU: 1 UID: 0 PID: 6482 Comm: syz.2.154 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 61.161327][ T6482] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 61.164464][ T6482] Call Trace: [ 61.165411][ T6482] [ 61.166233][ T6482] dump_stack_lvl+0x16c/0x1f0 [ 61.167513][ T6482] should_fail_ex+0x497/0x5b0 [ 61.168778][ T6482] _copy_from_user+0x2e/0xd0 [ 61.170340][ T6482] kstrtouint_from_user+0xd7/0x1c0 [ 61.172066][ T6482] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 61.173474][ T6482] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 61.174852][ T6482] proc_fail_nth_write+0x84/0x250 [ 61.176151][ T6482] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 61.177796][ T6482] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 61.179407][ T6482] vfs_write+0x24c/0x1150 [ 61.180632][ T6482] ? __fget_files+0x23a/0x3f0 [ 61.181823][ T6482] ? fdget_pos+0x24c/0x360 [ 61.182925][ T6482] ? __pfx_lock_release+0x10/0x10 [ 61.184155][ T6482] ? trace_lock_acquire+0x14a/0x1d0 [ 61.185509][ T6482] ? __pfx_vfs_write+0x10/0x10 [ 61.186813][ T6482] ? __pfx___mutex_lock+0x10/0x10 [ 61.188282][ T6482] ? __fget_files+0x244/0x3f0 [ 61.189681][ T6482] ksys_write+0x12f/0x260 [ 61.190946][ T6482] ? __pfx_ksys_write+0x10/0x10 [ 61.192384][ T6482] do_syscall_64+0xcd/0x250 [ 61.193748][ T6482] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.195512][ T6482] RIP: 0033:0x7f770617d1ff [ 61.196772][ T6482] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48 [ 61.203379][ T6482] RSP: 002b:00007f7705bff030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 61.205658][ T6482] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f770617d1ff [ 61.207852][ T6482] RDX: 0000000000000001 RSI: 00007f7705bff0a0 RDI: 0000000000000005 [ 61.210168][ T6482] RBP: 00007f7705bff090 R08: 0000000000000000 R09: 0000000000000000 [ 61.212248][ T6482] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 61.214298][ T6482] R13: 0000000000000000 R14: 00007f7706335f80 R15: 00007fff9066ca28 [ 61.216406][ T6482] [ 61.272444][ T6488] FAULT_INJECTION: forcing a failure. [ 61.272444][ T6488] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 61.277608][ T6488] CPU: 1 UID: 0 PID: 6488 Comm: syz.2.157 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 61.281239][ T6488] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 61.284655][ T6488] Call Trace: [ 61.285708][ T6488] [ 61.286676][ T6488] dump_stack_lvl+0x16c/0x1f0 [ 61.288414][ T6488] should_fail_ex+0x497/0x5b0 [ 61.289899][ T6488] _copy_to_user+0x32/0xd0 [ 61.291084][ T6488] simple_read_from_buffer+0xd0/0x160 [ 61.292500][ T6488] proc_fail_nth_read+0x198/0x270 [ 61.293812][ T6488] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 61.295363][ T6488] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 61.296795][ T6488] vfs_read+0x1df/0xbe0 [ 61.297835][ T6488] ? __fget_files+0x23a/0x3f0 [ 61.299283][ T6488] ? fdget_pos+0x24c/0x360 [ 61.300835][ T6488] ? __pfx_lock_release+0x10/0x10 [ 61.302172][ T6488] ? trace_lock_acquire+0x14a/0x1d0 [ 61.303594][ T6488] ? __pfx_vfs_read+0x10/0x10 [ 61.304965][ T6488] ? __pfx___mutex_lock+0x10/0x10 [ 61.306393][ T6488] ? __fget_files+0x244/0x3f0 [ 61.307646][ T6488] ksys_read+0x12f/0x260 [ 61.308777][ T6488] ? __pfx_ksys_read+0x10/0x10 [ 61.310073][ T6488] do_syscall_64+0xcd/0x250 [ 61.311262][ T6488] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.312811][ T6488] RIP: 0033:0x7f770617d15c [ 61.313982][ T6488] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 61.319993][ T6488] RSP: 002b:00007f7705bff030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 61.323507][ T6488] RAX: ffffffffffffffda RBX: 00007f7706335f80 RCX: 00007f770617d15c [ 61.325741][ T6488] RDX: 000000000000000f RSI: 00007f7705bff0a0 RDI: 0000000000000004 [ 61.327791][ T6488] RBP: 00007f7705bff090 R08: 0000000000000000 R09: 0000000000000000 [ 61.329892][ T6488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 61.331939][ T6488] R13: 0000000000000000 R14: 00007f7706335f80 R15: 00007fff9066ca28 [ 61.334194][ T6488] [ 61.373329][ T6490] FAULT_INJECTION: forcing a failure. [ 61.373329][ T6490] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 61.378346][ T6490] CPU: 0 UID: 0 PID: 6490 Comm: syz.2.158 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 61.382376][ T6490] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 61.386205][ T6490] Call Trace: [ 61.387305][ T6490] [ 61.388285][ T6490] dump_stack_lvl+0x16c/0x1f0 [ 61.389836][ T6490] should_fail_ex+0x497/0x5b0 [ 61.391377][ T6490] _copy_to_user+0x32/0xd0 [ 61.392834][ T6490] simple_read_from_buffer+0xd0/0x160 [ 61.394789][ T6490] proc_fail_nth_read+0x198/0x270 [ 61.396815][ T6490] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 61.398785][ T6490] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 61.400940][ T6490] vfs_read+0x1df/0xbe0 [ 61.402582][ T6490] ? __fget_files+0x23a/0x3f0 [ 61.404452][ T6490] ? fdget_pos+0x24c/0x360 [ 61.405951][ T6490] ? __pfx_lock_release+0x10/0x10 [ 61.407615][ T6490] ? trace_lock_acquire+0x14a/0x1d0 [ 61.409348][ T6490] ? __pfx_vfs_read+0x10/0x10 [ 61.410857][ T6490] ? __pfx___mutex_lock+0x10/0x10 [ 61.412558][ T6490] ? __fget_files+0x244/0x3f0 [ 61.414122][ T6490] ksys_read+0x12f/0x260 [ 61.415483][ T6490] ? __pfx_ksys_read+0x10/0x10 [ 61.417082][ T6490] do_syscall_64+0xcd/0x250 [ 61.418834][ T6490] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.421048][ T6490] RIP: 0033:0x7f770617d15c [ 61.423416][ T6490] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 61.430051][ T6490] RSP: 002b:00007f7705bff030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 61.433119][ T6490] RAX: ffffffffffffffda RBX: 00007f7706335f80 RCX: 00007f770617d15c [ 61.435936][ T6490] RDX: 000000000000000f RSI: 00007f7705bff0a0 RDI: 0000000000000005 [ 61.438746][ T6490] RBP: 00007f7705bff090 R08: 0000000000000000 R09: 0000000000000000 [ 61.441284][ T6490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 61.443782][ T6490] R13: 0000000000000000 R14: 00007f7706335f80 R15: 00007fff9066ca28 [ 61.446415][ T6490] [ 61.448793][ T8] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 61.513697][ T6497] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 61.597383][ T8] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 61.600124][ T8] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 61.603246][ T8] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 61.605914][ T8] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 61.612072][ T8] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 61.614701][ T8] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 61.616813][ T8] usb 8-1: Product: syz [ 61.618040][ T8] usb 8-1: Manufacturer: syz [ 61.623903][ T8] cdc_wdm 8-1:1.0: skipping garbage [ 61.626459][ T8] cdc_wdm 8-1:1.0: skipping garbage [ 61.633866][ T8] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device [ 61.635601][ T8] cdc_wdm 8-1:1.0: Unknown control protocol [ 61.751705][ T6501] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 61.759921][ T39] kauditd_printk_skb: 48 callbacks suppressed [ 61.759936][ T39] audit: type=1400 audit(1730593132.906:323): avc: denied { ioctl } for pid=6500 comm="syz.1.161" path="socket:[10116]" dev="sockfs" ino=10116 ioctlcmd=0x7202 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 61.770685][ T6501] overlayfs: failed to set uuid (36/file1, err=-1); falling back to uuid=null. [ 61.771910][ T39] audit: type=1400 audit(1730593132.916:324): avc: denied { unlink } for pid=6500 comm="syz.1.161" name="#1" dev="tmpfs" ino=211 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 61.774041][ T6501] overlayfs: failed to verify upper root origin [ 61.877643][ T39] audit: type=1400 audit(1730593133.026:325): avc: denied { connect } for pid=6505 comm="syz.1.163" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 61.883595][ T39] audit: type=1400 audit(1730593133.026:326): avc: denied { read } for pid=6505 comm="syz.1.163" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 61.902605][ C0] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 61.902733][ T5950] usb 8-1: USB disconnect, device number 2 [ 61.905510][ C0] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 61.909568][ C0] cdc_wdm 8-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19 [ 61.912977][ C0] dummy_hcd dummy_hcd.3: timer fired with no URBs pending? [ 61.931979][ T39] audit: type=1400 audit(1730593133.076:327): avc: denied { setopt } for pid=6509 comm="syz.1.164" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 61.987864][ T39] audit: type=1400 audit(1730593133.136:328): avc: denied { read } for pid=6509 comm="syz.1.164" laddr=fe80::f lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 62.374212][ T8] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 62.527484][ T8] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 62.531089][ T8] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 62.535748][ T8] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 62.539591][ T8] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 62.547452][ T8] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 62.552231][ T8] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 62.555269][ T8] usb 8-1: Product: syz [ 62.557066][ T8] usb 8-1: Manufacturer: syz [ 62.567147][ T8] cdc_wdm 8-1:1.0: skipping garbage [ 62.569182][ T8] cdc_wdm 8-1:1.0: skipping garbage [ 62.572473][ T8] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device [ 62.574750][ T8] cdc_wdm 8-1:1.0: Unknown control protocol [ 62.597799][ T39] audit: type=1400 audit(1730593133.746:329): avc: denied { mount } for pid=6520 comm="syz.2.168" name="/" dev="overlay" ino=335 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 62.794452][ T828] usb 8-1: USB disconnect, device number 3 [ 63.024305][ T829] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 63.174223][ T829] usb 6-1: Using ep0 maxpacket: 32 [ 63.177927][ T829] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 36 [ 63.182227][ T829] usb 6-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 63.185397][ T829] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 63.189004][ T829] usb 6-1: Product: syz [ 63.190855][ T829] usb 6-1: Manufacturer: syz [ 63.192378][ T829] usb 6-1: SerialNumber: syz [ 63.195821][ T829] usb 6-1: config 0 descriptor?? [ 63.198430][ T6528] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 63.202346][ T829] hub 6-1:0.0: bad descriptor, ignoring hub [ 63.204320][ T829] hub 6-1:0.0: probe with driver hub failed with error -5 [ 63.208035][ T829] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input5 [ 63.212944][ T39] audit: type=1400 audit(1730593134.356:330): avc: denied { read } for pid=5347 comm="acpid" name="mouse2" dev="devtmpfs" ino=2797 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 63.220619][ T39] audit: type=1400 audit(1730593134.356:331): avc: denied { open } for pid=5347 comm="acpid" path="/dev/input/mouse2" dev="devtmpfs" ino=2797 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 63.228944][ T39] audit: type=1400 audit(1730593134.356:332): avc: denied { ioctl } for pid=5347 comm="acpid" path="/dev/input/mouse2" dev="devtmpfs" ino=2797 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 63.422346][ T6528] netlink: 'syz.1.170': attribute type 9 has an invalid length. [ 63.457459][ T6528] netlink: 'syz.1.170': attribute type 9 has an invalid length. [ 63.562418][ T6534] kvm: emulating exchange as write [ 63.564667][ T6538] nftables ruleset with unbound chain [ 63.589981][ T5959] Bluetooth: hci3: command tx timeout [ 63.890294][ T6544] nbd: must specify at least one socket [ 64.247497][ T829] usb 6-1: USB disconnect, device number 3 [ 64.249070][ C2] usbtouchscreen 6-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19 [ 64.292442][ T6551] FAULT_INJECTION: forcing a failure. [ 64.292442][ T6551] name failslab, interval 1, probability 0, space 0, times 0 [ 64.296695][ T6551] CPU: 1 UID: 0 PID: 6551 Comm: syz.1.175 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 64.299387][ T6551] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 64.302540][ T6551] Call Trace: [ 64.303678][ T6551] [ 64.304597][ T6551] dump_stack_lvl+0x16c/0x1f0 [ 64.306067][ T6551] should_fail_ex+0x497/0x5b0 [ 64.307524][ T6551] ? fs_reclaim_acquire+0xae/0x150 [ 64.308915][ T6551] should_failslab+0xc2/0x120 [ 64.310162][ T6551] kmem_cache_alloc_node_noprof+0x71/0x310 [ 64.311799][ T6551] ? __alloc_skb+0x2b1/0x380 [ 64.313863][ T6551] __alloc_skb+0x2b1/0x380 [ 64.315993][ T6551] ? __pfx___alloc_skb+0x10/0x10 [ 64.318101][ T6551] ? genl_rcv_msg+0x4bd/0x800 [ 64.320312][ T6551] netlink_ack+0x164/0xb90 [ 64.321605][ T6551] ? __pfx___lock_acquire+0x10/0x10 [ 64.322872][ T6551] netlink_rcv_skb+0x348/0x440 [ 64.324116][ T6551] ? __pfx_genl_rcv_msg+0x10/0x10 [ 64.325434][ T6551] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 64.326807][ T6551] ? down_read+0xc9/0x330 [ 64.327920][ T6551] ? __pfx_down_read+0x10/0x10 [ 64.329188][ T6551] ? netlink_deliver_tap+0x1ae/0xd90 [ 64.330549][ T6551] ? selinux_nlmsg_lookup+0x265/0x4b0 [ 64.331932][ T6551] genl_rcv+0x28/0x40 [ 64.332963][ T6551] netlink_unicast+0x53c/0x7f0 [ 64.334221][ T6551] ? __pfx_netlink_unicast+0x10/0x10 [ 64.335569][ T6551] netlink_sendmsg+0x8b8/0xd70 [ 64.337052][ T6551] ? __pfx_netlink_sendmsg+0x10/0x10 [ 64.338552][ T6551] ____sys_sendmsg+0xaaf/0xc90 [ 64.339807][ T6551] ? copy_msghdr_from_user+0x10b/0x160 [ 64.341279][ T6551] ? __pfx_____sys_sendmsg+0x10/0x10 [ 64.342619][ T6551] ? __pfx___lock_acquire+0x10/0x10 [ 64.344005][ T6551] ___sys_sendmsg+0x135/0x1e0 [ 64.345240][ T6551] ? __pfx____sys_sendmsg+0x10/0x10 [ 64.346610][ T6551] ? lock_acquire+0x2f/0xb0 [ 64.347794][ T6551] ? __fget_files+0x40/0x3f0 [ 64.349007][ T6551] ? fdget+0x176/0x210 [ 64.350059][ T6551] __sys_sendmsg+0x117/0x1f0 [ 64.351248][ T6551] ? __pfx___sys_sendmsg+0x10/0x10 [ 64.352589][ T6551] ? __fget_files+0x244/0x3f0 [ 64.353844][ T6551] do_syscall_64+0xcd/0x250 [ 64.355018][ T6551] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 64.356587][ T6551] RIP: 0033:0x7f552457e719 [ 64.357740][ T6551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 64.362635][ T6551] RSP: 002b:00007f55253e0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 64.364769][ T6551] RAX: ffffffffffffffda RBX: 00007f5524735f80 RCX: 00007f552457e719 [ 64.367121][ T6551] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 64.369384][ T6551] RBP: 00007f55253e0090 R08: 0000000000000000 R09: 0000000000000000 [ 64.371601][ T6551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 64.373593][ T6551] R13: 0000000000000000 R14: 00007f5524735f80 R15: 00007fff5d81e498 [ 64.375633][ T6551] [ 64.498088][ T6558] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 64.723544][ T6579] xt_ecn: cannot match TCP bits for non-tcp packets [ 64.933096][ T6586] SELinux: Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 65.295753][ T6597] FAULT_INJECTION: forcing a failure. [ 65.295753][ T6597] name failslab, interval 1, probability 0, space 0, times 0 [ 65.335363][ T6597] CPU: 3 UID: 0 PID: 6597 Comm: syz.2.192 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 65.339440][ T6597] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 65.343689][ T6597] Call Trace: [ 65.345011][ T6597] [ 65.346118][ T6597] dump_stack_lvl+0x16c/0x1f0 [ 65.347866][ T6597] should_fail_ex+0x497/0x5b0 [ 65.349619][ T6597] ? fs_reclaim_acquire+0xae/0x150 [ 65.351504][ T6597] should_failslab+0xc2/0x120 [ 65.353243][ T6597] __kmalloc_node_noprof+0xd1/0x430 [ 65.355140][ T6597] ? qdisc_alloc+0xbb/0xc50 [ 65.356751][ T6597] qdisc_alloc+0xbb/0xc50 [ 65.358259][ T6597] qdisc_create_dflt+0x73/0x440 [ 65.360649][ T6597] taprio_init+0x4b3/0x940 [ 65.362537][ T6597] ? __pfx_taprio_init+0x10/0x10 [ 65.364725][ T6597] ? __pfx_taprio_init+0x10/0x10 [ 65.366866][ T6597] qdisc_create+0x4f1/0x1100 [ 65.368911][ T6597] ? __pfx_qdisc_create+0x10/0x10 [ 65.371152][ T6597] tc_modify_qdisc+0x4d8/0x1c40 [ 65.373120][ T6597] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 65.374996][ T6597] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 65.376790][ T6597] rtnetlink_rcv_msg+0x3c7/0xea0 [ 65.378504][ T6597] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 65.380496][ T6597] netlink_rcv_skb+0x16b/0x440 [ 65.382262][ T6597] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 65.384243][ T6597] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 65.386303][ T6597] ? netlink_deliver_tap+0x1ae/0xd90 [ 65.388340][ T6597] netlink_unicast+0x53c/0x7f0 [ 65.390105][ T6597] ? __pfx_netlink_unicast+0x10/0x10 [ 65.392031][ T6597] netlink_sendmsg+0x8b8/0xd70 [ 65.393792][ T6597] ? __pfx_netlink_sendmsg+0x10/0x10 [ 65.395719][ T6597] ____sys_sendmsg+0xaaf/0xc90 [ 65.397462][ T6597] ? copy_msghdr_from_user+0x10b/0x160 [ 65.399854][ T6597] ? __pfx_____sys_sendmsg+0x10/0x10 [ 65.401809][ T6597] ? __pfx___lock_acquire+0x10/0x10 [ 65.403715][ T6597] ___sys_sendmsg+0x135/0x1e0 [ 65.405455][ T6597] ? __pfx____sys_sendmsg+0x10/0x10 [ 65.407293][ T6597] ? lock_acquire+0x2f/0xb0 [ 65.408922][ T6597] ? __fget_files+0x40/0x3f0 [ 65.410136][ T6597] ? fdget+0x176/0x210 [ 65.411218][ T6597] __sys_sendmsg+0x117/0x1f0 [ 65.412463][ T6597] ? __pfx___sys_sendmsg+0x10/0x10 [ 65.413809][ T6597] ? __fget_files+0x244/0x3f0 [ 65.415119][ T6597] do_syscall_64+0xcd/0x250 [ 65.416430][ T6597] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 65.418014][ T6597] RIP: 0033:0x7f770617e719 [ 65.419188][ T6597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 65.424190][ T6597] RSP: 002b:00007f7705bff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 65.426550][ T6597] RAX: ffffffffffffffda RBX: 00007f7706335f80 RCX: 00007f770617e719 [ 65.428599][ T6597] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000004 [ 65.430650][ T6597] RBP: 00007f7705bff090 R08: 0000000000000000 R09: 0000000000000000 [ 65.432711][ T6597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 65.434758][ T6597] R13: 0000000000000000 R14: 00007f7706335f80 R15: 00007fff9066ca28 [ 65.437330][ T6597] [ 65.547661][ T6602] __nla_validate_parse: 11 callbacks suppressed [ 65.547676][ T6602] netlink: 4 bytes leftover after parsing attributes in process `syz.2.193'. [ 65.674227][ T67] Bluetooth: hci3: command 0x0406 tx timeout [ 66.351130][ T6630] netlink: 160 bytes leftover after parsing attributes in process `syz.2.203'. [ 66.651090][ T6632] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 66.902527][ T6640] ------------[ cut here ]------------ [ 66.905391][ T6640] WARNING: CPU: 1 PID: 6640 at net/mac80211/driver-ops.c:460 drv_link_info_changed+0x117/0x870 [ 66.909351][ T6640] Modules linked in: [ 66.911757][ T6640] CPU: 1 UID: 0 PID: 6640 Comm: syz.3.206 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 66.918693][ T6640] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 66.922561][ T6640] RIP: 0010:drv_link_info_changed+0x117/0x870 [ 66.925527][ T6640] Code: 0f b0 02 f7 44 89 ff 48 c7 c6 80 ec be 8c e8 a0 b2 02 f7 41 83 ff 0b 77 0b b8 82 08 00 00 4c 0f a3 f8 72 0e e8 ea af 02 f7 90 <0f> 0b 90 e9 61 03 00 00 e8 dc af 02 f7 41 8d 47 f6 31 ff 83 e0 fd [ 66.932424][ T6640] RSP: 0018:ffffc90003e06ed8 EFLAGS: 00010293 [ 66.934746][ T6640] RAX: 0000000000000000 RBX: ffff888034eb0cc0 RCX: ffffffff8a8acc80 [ 66.937667][ T6640] RDX: ffff888027a94880 RSI: ffffffff8a8acc96 RDI: 0000000000000005 [ 66.940476][ T6640] RBP: ffff88804b408e40 R08: 0000000000000005 R09: 000000000000000b [ 66.943531][ T6640] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000200 [ 66.946894][ T6640] R13: 0000000000000200 R14: ffff888034eb2920 R15: 0000000000000002 [ 66.950097][ T6640] FS: 00007f4d7e1c56c0(0000) GS:ffff88806a700000(0000) knlGS:0000000000000000 [ 66.953339][ T6640] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 66.955807][ T6640] CR2: 00007f4d7d364200 CR3: 000000002a650000 CR4: 0000000000352ef0 [ 66.958054][ T6640] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 66.960618][ T6640] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 66.963195][ T6640] Call Trace: [ 66.964240][ T6640] [ 66.965067][ T6640] ? __warn+0xea/0x3d0 [ 66.966242][ T6640] ? drv_link_info_changed+0x117/0x870 [ 66.967987][ T6640] ? report_bug+0x3c0/0x580 [ 66.969383][ T6640] ? handle_bug+0x54/0xa0 [ 66.970687][ T6640] ? exc_invalid_op+0x17/0x50 [ 66.972062][ T6640] ? asm_exc_invalid_op+0x1a/0x20 [ 66.973503][ T6640] ? drv_link_info_changed+0x100/0x870 [ 66.975172][ T6640] ? drv_link_info_changed+0x116/0x870 [ 66.976628][ T6640] ? drv_link_info_changed+0x117/0x870 [ 66.978258][ T6640] ? drv_link_info_changed+0x116/0x870 [ 66.979771][ T6640] ? __pfx_mac80211_hwsim_flush+0x10/0x10 [ 66.981569][ T6640] ieee80211_link_info_change_notify+0x2c1/0x350 [ 66.983592][ T6640] ieee80211_offchannel_stop_vifs+0x328/0x5b0 [ 66.985366][ T6640] __ieee80211_start_scan+0x13ba/0x1d80 [ 66.986825][ T6640] ? __pfx___ieee80211_start_scan+0x10/0x10 [ 66.988392][ T6640] ieee80211_scan+0x1d2/0x330 [ 66.989601][ T6640] cfg80211_scan+0x4be/0x730 [ 66.990784][ T6640] cfg80211_conn_scan+0x682/0xea0 [ 66.992111][ T6640] cfg80211_connect+0x19b7/0x2160 [ 66.993451][ T6640] ? __pfx_cfg80211_connect+0x10/0x10 [ 66.995260][ T6640] ? __asan_memset+0x23/0x50 [ 66.996844][ T6640] ? nl80211_crypto_settings+0xcee/0x1160 [ 66.998799][ T6640] ? kasan_save_stack+0x33/0x60 [ 67.000290][ T6640] ? kasan_save_track+0x14/0x30 [ 67.001915][ T6640] nl80211_connect+0x1568/0x2140 [ 67.003485][ T6640] ? __pfx_nl80211_connect+0x10/0x10 [ 67.005006][ T6640] ? __mutex_trylock_common+0xea/0x250 [ 67.006445][ T6640] ? nl80211_pre_doit+0x1b0/0xb10 [ 67.007784][ T6640] genl_family_rcv_msg_doit+0x202/0x2f0 [ 67.009261][ T6640] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 67.010903][ T6640] ? bpf_lsm_capable+0x9/0x10 [ 67.012175][ T6640] ? security_capable+0x7e/0x260 [ 67.013709][ T6640] ? ns_capable+0xd7/0x110 [ 67.015177][ T6640] genl_rcv_msg+0x565/0x800 [ 67.016426][ T6640] ? __pfx_genl_rcv_msg+0x10/0x10 [ 67.017890][ T6640] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 67.019612][ T6640] ? __pfx_nl80211_connect+0x10/0x10 [ 67.021322][ T6640] ? __pfx_nl80211_post_doit+0x10/0x10 [ 67.022983][ T6640] netlink_rcv_skb+0x16b/0x440 [ 67.025134][ T6640] ? __pfx_genl_rcv_msg+0x10/0x10 [ 67.026633][ T6640] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 67.028169][ T6640] ? down_read+0xc9/0x330 [ 67.029447][ T6640] ? __pfx_down_read+0x10/0x10 [ 67.030850][ T6640] ? netlink_deliver_tap+0x1ae/0xd90 [ 67.032374][ T6640] genl_rcv+0x28/0x40 [ 67.033446][ T6640] netlink_unicast+0x53c/0x7f0 [ 67.034776][ T6640] ? __pfx_netlink_unicast+0x10/0x10 [ 67.036488][ T6640] netlink_sendmsg+0x8b8/0xd70 [ 67.037931][ T6640] ? __pfx_netlink_sendmsg+0x10/0x10 [ 67.039554][ T6640] ____sys_sendmsg+0xaaf/0xc90 [ 67.040796][ T6640] ? copy_msghdr_from_user+0x10b/0x160 [ 67.042280][ T6640] ? __pfx_____sys_sendmsg+0x10/0x10 [ 67.043781][ T6640] ? __pfx___lock_acquire+0x10/0x10 [ 67.045521][ T6640] ___sys_sendmsg+0x135/0x1e0 [ 67.046864][ T6640] ? __pfx____sys_sendmsg+0x10/0x10 [ 67.048318][ T6640] ? lock_acquire+0x2f/0xb0 [ 67.049561][ T6640] ? __fget_files+0x40/0x3f0 [ 67.050829][ T6640] ? fdget+0x176/0x210 [ 67.051931][ T6640] __sys_sendmsg+0x117/0x1f0 [ 67.053177][ T6640] ? __pfx___sys_sendmsg+0x10/0x10 [ 67.054724][ T6640] ? __fget_files+0x244/0x3f0 [ 67.056502][ T6640] do_syscall_64+0xcd/0x250 [ 67.057870][ T6640] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 67.059534][ T6640] RIP: 0033:0x7f4d7d37e719 [ 67.060779][ T6640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 67.066259][ T6640] RSP: 002b:00007f4d7e1c5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 67.068463][ T6640] RAX: ffffffffffffffda RBX: 00007f4d7d535f80 RCX: 00007f4d7d37e719 [ 67.070554][ T6640] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000003 [ 67.072784][ T6640] RBP: 00007f4d7e1c5090 R08: 0000000000000000 R09: 0000000000000000 [ 67.075333][ T6640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 67.077795][ T6640] R13: 0000000000000000 R14: 00007f4d7d535f80 R15: 00007ffcedf31de8 [ 67.080299][ T6640] [ 67.081313][ T6640] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 67.083490][ T6640] CPU: 1 UID: 0 PID: 6640 Comm: syz.3.206 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0 [ 67.086445][ T6640] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 67.089295][ T6640] Call Trace: [ 67.090188][ T6640] [ 67.090984][ T6640] dump_stack_lvl+0x3d/0x1f0 [ 67.092226][ T6640] panic+0x71d/0x800 [ 67.093293][ T6640] ? __pfx_panic+0x10/0x10 [ 67.094491][ T6640] ? show_trace_log_lvl+0x29d/0x3d0 [ 67.095814][ T6640] ? check_panic_on_warn+0x1f/0xb0 [ 67.097328][ T6640] ? drv_link_info_changed+0x117/0x870 [ 67.099074][ T6640] check_panic_on_warn+0xab/0xb0 [ 67.100684][ T6640] __warn+0xf6/0x3d0 [ 67.102023][ T6640] ? drv_link_info_changed+0x117/0x870 [ 67.103611][ T6640] report_bug+0x3c0/0x580 [ 67.104785][ T6640] handle_bug+0x54/0xa0 [ 67.106035][ T6640] exc_invalid_op+0x17/0x50 [ 67.107271][ T6640] asm_exc_invalid_op+0x1a/0x20 [ 67.108587][ T6640] RIP: 0010:drv_link_info_changed+0x117/0x870 [ 67.110183][ T6640] Code: 0f b0 02 f7 44 89 ff 48 c7 c6 80 ec be 8c e8 a0 b2 02 f7 41 83 ff 0b 77 0b b8 82 08 00 00 4c 0f a3 f8 72 0e e8 ea af 02 f7 90 <0f> 0b 90 e9 61 03 00 00 e8 dc af 02 f7 41 8d 47 f6 31 ff 83 e0 fd [ 67.115229][ T6640] RSP: 0018:ffffc90003e06ed8 EFLAGS: 00010293 [ 67.117074][ T6640] RAX: 0000000000000000 RBX: ffff888034eb0cc0 RCX: ffffffff8a8acc80 [ 67.119507][ T6640] RDX: ffff888027a94880 RSI: ffffffff8a8acc96 RDI: 0000000000000005 [ 67.122191][ T6640] RBP: ffff88804b408e40 R08: 0000000000000005 R09: 000000000000000b [ 67.124920][ T6640] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000200 [ 67.127394][ T6640] R13: 0000000000000200 R14: ffff888034eb2920 R15: 0000000000000002 [ 67.129581][ T6640] ? drv_link_info_changed+0x100/0x870 [ 67.131025][ T6640] ? drv_link_info_changed+0x116/0x870 [ 67.132418][ T6640] ? drv_link_info_changed+0x116/0x870 [ 67.133747][ T6640] ? __pfx_mac80211_hwsim_flush+0x10/0x10 [ 67.135469][ T6640] ieee80211_link_info_change_notify+0x2c1/0x350 [ 67.137116][ T6640] ieee80211_offchannel_stop_vifs+0x328/0x5b0 [ 67.138700][ T6640] __ieee80211_start_scan+0x13ba/0x1d80 [ 67.140044][ T6640] ? __pfx___ieee80211_start_scan+0x10/0x10 [ 67.142101][ T6640] ieee80211_scan+0x1d2/0x330 [ 67.143711][ T6640] cfg80211_scan+0x4be/0x730 [ 67.145002][ T6640] cfg80211_conn_scan+0x682/0xea0 [ 67.146267][ T6640] cfg80211_connect+0x19b7/0x2160 [ 67.147505][ T6640] ? __pfx_cfg80211_connect+0x10/0x10 [ 67.148839][ T6640] ? __asan_memset+0x23/0x50 [ 67.149987][ T6640] ? nl80211_crypto_settings+0xcee/0x1160 [ 67.151407][ T6640] ? kasan_save_stack+0x33/0x60 [ 67.152598][ T6640] ? kasan_save_track+0x14/0x30 [ 67.153811][ T6640] nl80211_connect+0x1568/0x2140 [ 67.155185][ T6640] ? __pfx_nl80211_connect+0x10/0x10 [ 67.156561][ T6640] ? __mutex_trylock_common+0xea/0x250 [ 67.157939][ T6640] ? nl80211_pre_doit+0x1b0/0xb10 [ 67.159432][ T6640] genl_family_rcv_msg_doit+0x202/0x2f0 [ 67.160899][ T6640] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 67.162651][ T6640] ? bpf_lsm_capable+0x9/0x10 [ 67.164324][ T6640] ? security_capable+0x7e/0x260 [ 67.165637][ T6640] ? ns_capable+0xd7/0x110 [ 67.166744][ T6640] genl_rcv_msg+0x565/0x800 [ 67.167884][ T6640] ? __pfx_genl_rcv_msg+0x10/0x10 [ 67.169189][ T6640] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 67.170786][ T6640] ? __pfx_nl80211_connect+0x10/0x10 [ 67.172372][ T6640] ? __pfx_nl80211_post_doit+0x10/0x10 [ 67.173839][ T6640] netlink_rcv_skb+0x16b/0x440 [ 67.175440][ T6640] ? __pfx_genl_rcv_msg+0x10/0x10 [ 67.176933][ T6640] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 67.179317][ T6640] ? down_read+0xc9/0x330 [ 67.180668][ T6640] ? __pfx_down_read+0x10/0x10 [ 67.182205][ T6640] ? netlink_deliver_tap+0x1ae/0xd90 [ 67.184019][ T6640] genl_rcv+0x28/0x40 [ 67.185298][ T6640] netlink_unicast+0x53c/0x7f0 [ 67.186638][ T6640] ? __pfx_netlink_unicast+0x10/0x10 [ 67.188332][ T6640] netlink_sendmsg+0x8b8/0xd70 [ 67.189942][ T6640] ? __pfx_netlink_sendmsg+0x10/0x10 [ 67.191559][ T6640] ____sys_sendmsg+0xaaf/0xc90 [ 67.192794][ T6640] ? copy_msghdr_from_user+0x10b/0x160 [ 67.194337][ T6640] ? __pfx_____sys_sendmsg+0x10/0x10 [ 67.196073][ T6640] ? __pfx___lock_acquire+0x10/0x10 [ 67.197641][ T6640] ___sys_sendmsg+0x135/0x1e0 [ 67.199156][ T6640] ? __pfx____sys_sendmsg+0x10/0x10 [ 67.200861][ T6640] ? lock_acquire+0x2f/0xb0 [ 67.202467][ T6640] ? __fget_files+0x40/0x3f0 [ 67.204111][ T6640] ? fdget+0x176/0x210 [ 67.205268][ T6640] __sys_sendmsg+0x117/0x1f0 [ 67.206807][ T6640] ? __pfx___sys_sendmsg+0x10/0x10 [ 67.208405][ T6640] ? __fget_files+0x244/0x3f0 [ 67.209995][ T6640] do_syscall_64+0xcd/0x250 [ 67.211532][ T6640] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 67.213462][ T6640] RIP: 0033:0x7f4d7d37e719 [ 67.214613][ T6640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 67.221151][ T6640] RSP: 002b:00007f4d7e1c5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 67.224002][ T6640] RAX: ffffffffffffffda RBX: 00007f4d7d535f80 RCX: 00007f4d7d37e719 [ 67.226322][ T6640] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000003 [ 67.228412][ T6640] RBP: 00007f4d7e1c5090 R08: 0000000000000000 R09: 0000000000000000 [ 67.230405][ T6640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 67.232414][ T6640] R13: 0000000000000000 R14: 00007f4d7d535f80 R15: 00007ffcedf31de8 [ 67.234441][ T6640] [ 67.235821][ T6640] Kernel Offset: disabled [ 67.237095][ T6640] Rebooting in 86400 seconds.. VM DIAGNOSIS: 00:18:58 Registers: info registers vcpu 0 CPU#0 RAX=00000000000c7373 RBX=0000000000000000 RCX=ffffffff8b235449 RDX=0000000000000000 RSI=ffffffff8b6cd040 RDI=ffffffff8bd1b2c0 RBP=fffffbfff1bd2af8 RSP=ffffffff8de07e20 R8 =0000000000000001 R9 =ffffed100d4c7025 R10=ffff88806a63812b R11=0000000000000000 R12=0000000000000000 R13=ffffffff8de957c0 R14=ffffffff905f59c8 R15=0000000000000000 RIP=ffffffff8b23682f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 0000000000000000 ffffffff 00c01300 GS =0000 ffff88806a600000 ffffffff 00c01300 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020000080 CR3=00000000343d2000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcedf32180 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4d7d3f21cb ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4d7d3f21d8 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4d7d3f21d2 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4d7d3f21e6 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4d7d3f226c ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4d7d3f234a ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 49425f444c004854 41005f5952415242 494c5f444c005f00 656d65675f6b6364 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000362e3200414e 41004c004c005042 494c444449004600 4c0057444c004441 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000043 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff850b8175 RDI=ffffffff9aaeac00 RBP=ffffffff9aaeabc0 RSP=ffffc90003e06838 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000043 R14=ffffffff850b8110 R15=0000000000000000 RIP=ffffffff850b819f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 00007f4d7e1c56c0 ffffffff 00c00000 GS =0000 ffff88806a700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f4d7d364200 CR3=000000002a650000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fffffffc Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4d7e1c5060 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4d7d3f21cb ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4d7d3f21d8 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4d7d3f21d2 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4d7d3f21e6 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4d7d3f226c ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4d7d3f234a ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 73697664616d2065 74616c75706f7000 757a253d657a6973 2070253d72747000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 564c534144480540 51444950554a5500 505f0018405f4c56 0555001857515500 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 49425f444c004854 41005f5952415242 494c5f444c005f00 656d65675f6b6364 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000362e3200414e 41004c004c005042 494c444449004600 4c0057444c004441 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=1ffffd40002311c8 RBX=ffffea0001188e40 RCX=ffffffff81d604c8 RDX=fffff940002311c9 RSI=0000000000000008 RDI=ffffea0001188e40 RBP=8000000046239007 RSP=ffffc900057ff688 R8 =0000000000000000 R9 =fffff940002311c8 R10=ffffea0001188e47 R11=0000000000000000 R12=dffffc0000000000 R13=0000000000000000 R14=0000000000000007 R15=ffffea0001188e40 RIP=ffffffff81d604da RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00005555788185c8 CR3=000000002ad30000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555561c51730 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555561c51498 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555561c5f7d9 0000555561c5f610 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000030333935 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 30386c6e01ffffff ffffffffffef0802 8003200800061000 20100006004b960a ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 030785f4d808001e 90030a04001e8c03 0000000204061e88 035808001e80031e ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 04001ea803000400 1ea4030002001ea2 035c02001ea00304 ddfeeff808001e98 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 081ec0036804001e bc030c04001eb803 0000000408061eb0 030604001eac0310 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0011b00358100008 90030008001ed003 018404001ecc0310 04001ec803219204 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100100011800401 0000000806060139 8600001607000800 11e00300100011d0 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0300100011c00302 100011b003581000 0890030008001ed0 03018404001ecc03 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1004001ec8032192 04081ec003680400 1ebc030c04001eb8 030000000408061e ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 b0030604001eac03 1004001ea8030004 001ea4030002001e a2035c02001ea003 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 49425f444c004854 41005f5952415242 494c5f444c005f00 656d65675f6b6364 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000362e3200414e 41004c004c005042 494c444449004600 4c0057444c004441 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=dffffc0000000000 RBX=0000000000000001 RCX=1ffffffff3505104 RDX=1ffff92000b65e73 RSI=ffffffff8451d43b RDI=ffff88802773dd48 RBP=ffffc90005b2f390 RSP=ffffc90005b2f2d8 R8 =ffffc90005b2f37c R9 =ffffffff9127e7fe R10=ffffc90005b2f348 R11=00000000000350fc R12=ffffc90005b2f398 R13=ffffc90005b2f348 R14=0000000000000000 R15=ffff88802773c880 RIP=ffffffff813d4e90 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000555556fee500 ffffffff 00c00000 GS =0000 ffff88806a900000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005555787fd808 CR3=0000000034f4a000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000020081 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc8d872a90 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3ac45f21cb ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3ac45f21d8 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3ac45f21d2 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3ac45f21e6 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3ac45f226c ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3ac45f234a ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 2074657365720064 656c696166202973 2528746174736c00 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 0551405640570041 40494c4443050c56 000d514451564900 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000060 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 49425f444c004854 41005f5952415242 494c5f444c005f00 656d65675f6b6364 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000362e3200414e 41004c004c005042 494c444449004600 4c0057444c004441 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000