last executing test programs: 6.829943952s ago: executing program 0 (id=362): r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000200)={0x15, 0x0, 0x0}) ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000240)={0x28, 0x0, r1, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000}) ioctl$IOMMU_VFIO_IOAS$SET(r0, 0x3b88, &(0x7f00000002c0)={0xc, r1}) ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x0, r1, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000}) ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000140)={0x28, 0x0, r1, 0x0, &(0x7f0000ffd000/0x2000)=nil, 0x2000}) ioctl$IOMMU_VFIO_SET_IOMMU(r0, 0x3b66, 0x1) ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000480)={0x28, 0x0, r1, 0x0, &(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x7}) socket$nl_netfilter(0x10, 0x3, 0xc) openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) syz_init_net_socket$netrom(0x6, 0x5, 0x0) openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$inet(0x2, 0x3, 0xff) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_route(0x10, 0x3, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) socket$rds(0x15, 0x5, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) socket$inet6_sctp(0xa, 0x5, 0x84) socket$vsock_stream(0x28, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_open_dev$vim2m(&(0x7f0000002a80), 0x0, 0x2) syz_open_dev$video4linux(&(0x7f00000004c0), 0x0, 0x0) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) syz_io_uring_setup(0x94c, &(0x7f0000000240)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f00000002c0)) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) 6.82192723s ago: executing program 0 (id=363): r0 = socket$inet6(0xa, 0x806, 0x0) bind$inet6(r0, &(0x7f0000000400)={0xa, 0x4e23}, 0x1c) listen(r0, 0x3) r1 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r1, &(0x7f0000772000)={0x2, 0x4e23}, 0x10) sendmmsg(r1, &(0x7f0000000bc0), 0x3, 0x0) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r3 = socket$unix(0x1, 0x1, 0x0) r4 = dup2(r3, r2) close_range(r4, 0xffffffffffffffff, 0xd8) 6.732206782s ago: executing program 0 (id=364): r0 = open(&(0x7f0000000080)='./bus\x00', 0x143c62, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=@ipv4_newroute={0x24, 0x18, 0x113, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0xf, 0x0, 0x8}, [@RTA_NH_ID={0x8, 0x1e, 0x7}]}, 0x24}}, 0x0) mount$bind(&(0x7f00000000c0)='./bus\x00', &(0x7f0000000180)='./bus\x00', &(0x7f00000001c0), 0x1028022, 0x0) prlimit64(0x0, 0x1, &(0x7f0000000140)={0x8, 0x8b}, 0x0) add_key(&(0x7f0000000040)='big_key\x00', &(0x7f0000000000)={'syz', 0x3}, &(0x7f0000000240)="7a5d11dba25ccb2dde2f82a419fe7ea41b4424adda4e8c3be797cf6910d54400a9aff2b55d33ad438a4f258f64a45a6783e20a8ffdc2a7e562fc1596aaeea7e5e9d309daaabd4573fe5605c2644bcdfa0aa19b6bad3aafc9ee43af2ec449e88891b5eef99e622795495035828dfeedb2f29b", 0xff51, 0xfffffffffffffffd) socket$pppl2tp(0x18, 0x1, 0x1) socket$pppl2tp(0x18, 0x1, 0x1) setsockopt$pppl2tp_PPPOL2TP_SO_RECVSEQ(r0, 0x111, 0x2, 0xfffffffd, 0x4) set_mempolicy(0x2, &(0x7f0000000080)=0x5, 0x4) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(&(0x7f00000024c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='f2fs\x00', 0x0, 0x0) mount(&(0x7f0000000100)=@filename='\x00', &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,') 6.599486907s ago: executing program 0 (id=366): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x3) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x90) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/246) ioctl$PPPIOCSFLAGS1(r2, 0x4004743a, &(0x7f0000000300)) syz_open_dev$MSR(0x0, 0x0, 0x0) prlimit64(0x0, 0x5, &(0x7f0000000140)={0x8, 0x88}, 0x0) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x4000}}) read$FUSE(r4, &(0x7f00000062c0)={0x2020}, 0x2020) chroot(&(0x7f0000000040)='./file0/file0/file0/file0/file0\x00') r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=0000000020000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r6, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) read$FUSE(r5, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r4, &(0x7f0000000080)={0x50, 0xfffffffffffffffe, r7}, 0x50) move_pages(0x0, 0x12, 0x0, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x2, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$F2FS_IOC_MOVE_RANGE(r8, 0x541b, &(0x7f0000000000)) r9 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000440)=ANY=[@ANYBLOB="12013f00000000407f04ffff0000000000010902240001000000000904000015", @ANYRES16], 0x0) syz_usb_control_io$hid(r9, 0x0, 0x0) syz_usb_control_io$hid(r9, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0xc, {[@local=@item_012={0x1, 0x2, 0x8, "cf"}, @main=@item_012={0x1, 0x0, 0x0, "9f"}, @local=@item_4={0x3, 0x2, 0x0, "6d1fa409"}, @main=@item_012={0x2, 0x0, 0xc, "a679"}]}}, 0x0}, 0x0) 4.470801748s ago: executing program 3 (id=409): r0 = syz_open_dev$usbmon(&(0x7f0000000300), 0x0, 0x0) ioctl$MON_IOCX_GETX(r0, 0x400c920a, &(0x7f0000000440)={&(0x7f0000000340), 0x0}) 4.421764849s ago: executing program 3 (id=411): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r1) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000c80)=ANY=[@ANYBLOB="12010000000000406d0422c2000000000001090224000100000000090400000103000000092100000001220b0009058103"], 0x0) syz_usb_control_io$hid(r3, 0x0, 0x0) syz_usb_control_io(r3, &(0x7f0000000500)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) r4 = socket$inet6_mptcp(0xa, 0x1, 0x106) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00', 0x0}) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCADDRT(r6, 0x890b, &(0x7f0000000140)={@mcast2, @mcast1, @loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0022, r5}) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="3400000010001ff700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000140012800b000100626174616476"], 0x34}}, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6(0xa, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) pipe2$watch_queue(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) ioctl$IOC_WATCH_QUEUE_SET_FILTER(0xffffffffffffffff, 0x5761, &(0x7f0000001b80)=ANY=[@ANYBLOB="01"]) ioctl$IOC_WATCH_QUEUE_SET_FILTER(r7, 0x5761, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000000180), 0x0) r8 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14) socket$tipc(0x1e, 0x5, 0x0) sendmsg$nl_route(r8, &(0x7f0000000080)={0x0, 0x888a, &(0x7f0000000040)={&(0x7f0000000280)=@newlink={0x3c, 0x10, 0x413, 0x0, 0x0, {}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_MASTER={0x8, 0xa, r9}, @IFLA_WEIGHT]}, 0x3c}}, 0x4000000) bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x8, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18001f7cb848000000000000008500006301380000000000"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 3.425425347s ago: executing program 0 (id=424): socket$nl_xfrm(0x10, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x5, 0x0, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) sendmsg$SOCK_DESTROY(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000000c0)={[{0x2, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000014c0)) syz_emit_ethernet(0x0, 0x0, 0x0) epoll_create1(0x0) socket$kcm(0x29, 0x0, 0x0) pipe(&(0x7f0000000080)) syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) syz_emit_ethernet(0x17b, 0x0, 0x0) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r3) sendmsg$NLBL_MGMT_C_ADDDEF(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r4, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV4ADDR={0x5, 0x7, @multicast2}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @dev}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}]}, 0x34}}, 0x0) 3.1189793s ago: executing program 0 (id=425): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000400)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x90) r0 = socket$unix(0x1, 0x5, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) r4 = socket$kcm(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r7, @ANYBLOB="25003300d000000008021100000108021100000050505050505000000302"], 0x44}}, 0x0) sendmsg$NL80211_CMD_DEL_KEY(r4, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x2c, r6, 0x200, 0x70bd2a, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x5, 0x1}}}}, [@NL80211_ATTR_MAC={0xa}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040801}, 0x8805) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)={0x3c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TX_RATES={0x20, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x1c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x18, 0x1, [0x4, 0x4, 0x6c, 0x3, 0x78, 0x5, 0x0, 0x16, 0x7e, 0x6c, 0xc, 0x5, 0x48, 0x1b, 0x30, 0x3, 0x12, 0x3, 0x1, 0x30]}]}]}]}, 0x3c}}, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r9 = socket$igmp(0x2, 0x3, 0x2) r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffdc8, 0x10, &(0x7f0000000000), 0x10}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r10}, 0x10) r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socket$l2tp6(0xa, 0x2, 0x73) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100), &(0x7f0000000140)=0xc) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x7c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffeb5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r12 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IPT_SO_SET_REPLACE(r12, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x520, 0x340, 0x25, 0x148, 0x0, 0x60, 0x488, 0x2a8, 0x2a8, 0x488, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0xe8, 0x148, 0x0, {}, [@common=@set={{0x40}}, @common=@unspec=@statistic={{0x38}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x580) setsockopt$MRT_ADD_VIF(r9, 0x0, 0xca, &(0x7f00000002c0)={0x0, 0x4, 0xff, 0x0, @vifc_lcl_ifindex, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) setsockopt$EBT_SO_SET_ENTRIES(r9, 0x0, 0x80, &(0x7f00000002c0)=@filter={'filter\x00', 0xe, 0x3, 0x50a, [0x0, 0x20000a40, 0x20000a70, 0x20000b56], 0x0, &(0x7f0000000280), &(0x7f0000002480)=ANY=[@ANYBLOB="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"]}, 0x62b) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r8, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) r13 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_FD_FRAMES(r13, 0x65, 0x8, 0x0, 0x4) 3.011783318s ago: executing program 1 (id=428): r0 = userfaultfd(0x80001) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000200)={0xaa, 0x202}) 2.931513743s ago: executing program 1 (id=429): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_emit_vhci(0x0, 0x25) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000001a80)=""/102387, 0x18ff3}], 0x1, 0x0, 0x0) mmap(&(0x7f00000cb000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0) getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x11c, 0x1, 0x0, 0x20000000) fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r1 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x2}, &(0x7f00000002c0)="f5", 0x30, 0xfffffffffffffffe) syz_open_dev$video(&(0x7f0000000180), 0x0, 0x0) r2 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000140)={r1, r2, r1}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0) 2.841511876s ago: executing program 3 (id=430): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6) r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0) recvmsg$kcm(r0, 0x0, 0x0) 2.781280115s ago: executing program 3 (id=431): r0 = syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000200)={r1, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "a5bfcb2a66ef507540a2a54fcaf1860b5a61f8e207db0000009f1bb9930200000000000000cf61f3164a3790887d279d4afc7cfd1762729912aabe49225f8d79", "c943e1db06869da66fb3d998ba914272ca193f8dd5ecfdc81f22af8042677e0b2543667e306c360ce82f41f7d0431065868f4a367fb9ec6ec8cbf57917653a8a", "f7a78adde4baffaed544f59b58ae3151b9dd0fe9ca443e8ae600"}}) 2.780903122s ago: executing program 3 (id=432): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x0, 0x0, 0x0, 0xe4}]}, 0x10) creat(0x0, 0xd931d3864d39ddd8) close(0xffffffffffffffff) execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) mknod(&(0x7f0000000200)='./file0\x00', 0x8001420, 0x0) r1 = open(&(0x7f0000000140)='./file0\x00', 0x2, 0x0) write$FUSE_IOCTL(r1, &(0x7f0000000100)={0x20}, 0xfdef) socket$nl_netfilter(0x10, 0x3, 0xc) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14}, 0x14}}, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/time_for_children\x00') r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r6 = dup(r5) ioctl$KVM_SET_MSRS(r6, 0x4048aecb, 0x0) open$dir(&(0x7f0000000380)='./file0\x00', 0x54581, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB, @ANYRES32=0x0], 0x40}, 0x1, 0xba01}, 0x0) 2.282074986s ago: executing program 1 (id=433): r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000200), 0x129082, 0x0) write$binfmt_elf32(r0, 0x0, 0x4cd) ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000100)) 2.152029203s ago: executing program 1 (id=434): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000400)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x90) r0 = socket$unix(0x1, 0x5, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) r4 = socket$kcm(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r7, @ANYBLOB="25003300d000000008021100000108021100000050505050505000000302"], 0x44}}, 0x0) sendmsg$NL80211_CMD_DEL_KEY(r4, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x2c, r6, 0x200, 0x70bd2a, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x5, 0x1}}}}, [@NL80211_ATTR_MAC={0xa}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040801}, 0x8805) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)={0x3c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TX_RATES={0x20, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x1c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x17, 0x1, [0x4, 0x4, 0x6c, 0x3, 0x78, 0x16, 0x16, 0x7e, 0x6c, 0xc, 0x5, 0x48, 0x1b, 0x30, 0x3, 0x12, 0x3, 0x1, 0x30]}]}]}]}, 0x3c}}, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r9 = socket$igmp(0x2, 0x3, 0x2) r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffdc8, 0x10, &(0x7f0000000000), 0x10}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r10}, 0x10) r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socket$l2tp6(0xa, 0x2, 0x73) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100), &(0x7f0000000140)=0xc) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x7c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffeb5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r12 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IPT_SO_SET_REPLACE(r12, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x520, 0x340, 0x25, 0x148, 0x0, 0x60, 0x488, 0x2a8, 0x2a8, 0x488, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0xe8, 0x148, 0x0, {}, [@common=@set={{0x40}}, @common=@unspec=@statistic={{0x38}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x580) setsockopt$MRT_ADD_VIF(r9, 0x0, 0xca, &(0x7f00000002c0)={0x0, 0x4, 0xff, 0x0, @vifc_lcl_ifindex, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) setsockopt$EBT_SO_SET_ENTRIES(r9, 0x0, 0x80, &(0x7f00000002c0)=@filter={'filter\x00', 0xe, 0x3, 0x50a, [0x0, 0x20000a40, 0x20000a70, 0x20000b56], 0x0, &(0x7f0000000280), &(0x7f0000002480)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000400000000000000000000000000000000000000000000000000000000000feffffff01000000030000001d0000008914776c616e3100000000000000000000006970365f7674693000000000000000006e72300000000000000000000000000076657468315f746f5f627269646765008d2ab56aff5100ffffff00ffaaaaaaaaaabbffffff00ffff6e0000006e000000b60000004552524f5200000000000000000000000000000000000000000000000000000020000000000000007137186541e6d26cdf2d870b24020f71ade44ee735b1294bd1938fb667fd000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff02000000090000002000000000046d6163736563300000000000000000007866726d3000000000000000000000006272696467655f736c6176655f31000065727370616e300000000000000000000180c200000e14ff00ff00ffbbbbbbbbbbbbffff000000ff96010000f60100003e020000636f6d6d656e740000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000feffffff0000000072656469726563740000000000000000000000000000000000000000000000000800000000000000fcffffff000000004552524f520000000000000000000000000000000000000000000000000000002000000000000000b5f99c0b181cdd4c311d56023eaf843924e52e7eea405f430c58958aca8a0000050000000300000060016c6f000000000000000000000000000064766d7270300000000000000000000070696d367265673000000000000000006e657470636930000000000000000000aaaaaaaaaa34ff0000ffff003036096d1d6f00000000ffff3e0100003e01000086010000726174656573740000000000000000000000000000000000000000000000000048000000000000006e657464657673696d300000000000006272696467655f736c6176655f310000110000000000000001800000010000004103000000000000a904000800000000008000000000000061727000000000000000000000000000000000000000000000000000000000003800000000000000032288be00090000ac141437ff000000e0000001ffffffff1ed9ad44ce1fffffffffffff000000000000ff00000000ff20200000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000050800000000000008000000000000005e7c03998c6d2e3ccd8629b88dda51b4d9263cfcde8b9608bc6cbe47d91af70d68edd663f00464132ce81c3b2e53f545dbe277983d90a21e56b5b68f49a11b5ed6cd26cdea43e32f411d3bfc812455c9a63682c50ee89c6a064e7ef4482f9367fd1ac8550ee55ca33d2d451ab47d22ff9601b3dde62102479d6986b68899e0b6a5357eade30d7cbefcf2d603bc5c7c2feef50b6e0483e55cf6486badf307f06a44841e15a8bfa303d1"]}, 0x62b) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r8, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) r13 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_FD_FRAMES(r13, 0x65, 0x8, 0x0, 0x4) 1.970243932s ago: executing program 2 (id=435): r0 = syz_open_dev$vbi(&(0x7f0000000040), 0x2, 0x2) ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000000)=0x2) ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f00000002c0)) 1.902250364s ago: executing program 2 (id=436): unshare(0x68040200) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500)) ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000002280)={'lo\x00', @multicast}) 1.819313086s ago: executing program 1 (id=437): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000004550495c7d9053a238a17c3600000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) syz_open_dev$video(&(0x7f00000010c0), 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]}) socket$nl_netfilter(0x10, 0x3, 0xc) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 1.732115267s ago: executing program 3 (id=438): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r1) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000c80)=ANY=[@ANYBLOB="12010000000000406d0422c2000000000001090224000100000000090400000103000000092100000001220b0009058103"], 0x0) syz_usb_control_io$hid(r3, 0x0, 0x0) syz_usb_control_io(r3, &(0x7f0000000500)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) r4 = socket$inet6_mptcp(0xa, 0x1, 0x106) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00', 0x0}) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCADDRT(r6, 0x890b, &(0x7f0000000140)={@mcast2, @mcast1, @loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0022, r5}) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="3400000010001ff700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000140012800b000100626174616476"], 0x34}}, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6(0xa, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) pipe2$watch_queue(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) ioctl$IOC_WATCH_QUEUE_SET_FILTER(0xffffffffffffffff, 0x5761, &(0x7f0000001b80)=ANY=[@ANYBLOB="01"]) ioctl$IOC_WATCH_QUEUE_SET_FILTER(r7, 0x5761, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000000180), 0x0) r8 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14) socket$tipc(0x1e, 0x5, 0x0) sendmsg$nl_route(r8, &(0x7f0000000080)={0x0, 0x888a, &(0x7f0000000040)={&(0x7f0000000280)=@newlink={0x3c, 0x10, 0x413, 0x0, 0x0, {}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_MASTER={0x8, 0xa, r9}, @IFLA_WEIGHT]}, 0x3c}}, 0x4000000) bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x8, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18001f7cb848000000000000008500006301380000000000"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 1.390657254s ago: executing program 2 (id=439): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x1c, 0x9, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}]}], {0x14, 0x10}}, 0x44}}, 0x0) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'gre0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x30, 0x4, 0x0, 0x0, 0xc0, 0x67, 0x0, 0x0, 0x0, 0x0, @dev, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x0, [0x401, 0x5, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010102}, {@multicast1}, {@remote, 0x8000}, {@dev={0xac, 0x14, 0x14, 0x35}, 0x65c}, {@rand_addr=0x64010100}, {@empty}, {@multicast1}, {@private=0xa010100}]}, @timestamp_prespec={0x44, 0x34, 0x0, 0x3, 0x8, [{@loopback}, {@remote}, {@multicast2}, {@private=0xa010100}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @end, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) 1.002067705s ago: executing program 2 (id=440): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_emit_vhci(0x0, 0x25) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000001a80)=""/102387, 0x18ff3}], 0x1, 0x0, 0x0) mmap(&(0x7f00000cb000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0) getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x11c, 0x1, 0x0, 0x20000000) fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r1 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x2}, &(0x7f00000002c0)="f5", 0x30, 0xfffffffffffffffe) syz_open_dev$video(&(0x7f0000000180), 0x0, 0x0) r2 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000140)={r1, r2, r1}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0) 911.645605ms ago: executing program 1 (id=441): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.dequeue\x00', 0x275a, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) socket$inet6(0xa, 0x800000000000002, 0x0) socket$inet6_mptcp(0xa, 0x1, 0x106) socket$l2tp6(0xa, 0x2, 0x73) socket$nl_generic(0x10, 0x3, 0x10) socket$igmp6(0xa, 0x3, 0x2) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0xf0, &(0x7f00000006c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=r0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f"], 0x6c}}, 0x0) 85.604269ms ago: executing program 2 (id=442): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) bind$packet(r0, &(0x7f0000000100)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14) r2 = socket$packet(0x11, 0x2, 0x300) r3 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) bind$packet(r2, &(0x7f0000000240)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @broadcast}, 0x14) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ptype\x00') preadv(r5, &(0x7f0000000500)=[{&(0x7f0000000080)=""/132, 0x84}], 0x1, 0x0, 0x0) 0s ago: executing program 2 (id=443): r0 = syz_open_dev$dri(&(0x7f0000000000), 0xe, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0}) r2 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r2, 0x0, 0xc8, &(0x7f0000000800), 0x4) setsockopt$MRT_ADD_VIF(r2, 0x0, 0xca, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @loopback}, 0x10) setsockopt$MRT_FLUSH(r2, 0x0, 0xd4, &(0x7f0000000000)=0x8, 0x4) ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r1, 0xc05064a7, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000007c0), 0x0, 0x5}) ioctl$DRM_IOCTL_MODE_SETPROPERTY(r1, 0xc01064ab, &(0x7f0000000200)={0x0, r3}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f00000000c0)={0xee06dda1d30a598a, 0xfffffffa}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000280)={0x3, &(0x7f0000000140)=[{0x0, 0x0, 0x1}, {0x2, 0x1, 0x10}, {0x6, 0x40}]}) mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) rmdir(&(0x7f0000000700)='./cgroup/../file0\x00') seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x3, &(0x7f0000000300)=[{0xa, 0x0, 0x4, 0x7fff7ffd}, {0x800, 0xb7, 0x20, 0xf965}, {0x6, 0x40, 0xfe, 0x1}]}) syz_genetlink_get_family_id$wireguard(&(0x7f00000002c0), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f0000000080)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYRES64=r0, @ANYRESDEC=r4, @ANYBLOB="0100000000000000000001000000240003000000000000000000000000000000000000000000000000000000000000000000080008800400000008000100", @ANYRES32=r6, @ANYRESDEC], 0x48}, 0x1, 0x0, 0x0, 0x8084}, 0x0) r7 = socket$alg(0x26, 0x5, 0x0) bind$alg(r7, &(0x7f0000001140)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) rt_sigtimedwait(&(0x7f00000003c0), &(0x7f0000000740), &(0x7f0000000440)={0x0, 0x3938700}, 0x8) r8 = accept4(r7, 0x0, 0x0, 0x0) sendmsg$IPSET_CMD_LIST(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="00000001e209d027"], 0x14}}, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000080)=""/32, 0x20}, {&(0x7f00000005c0)=""/176, 0xb0}], 0x2}}], 0x1, 0x0, 0x0) sendto$inet6(r8, &(0x7f0000000040)="8c", 0x1, 0x200000c0, 0x0, 0x0) sendmsg$nl_route(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000040)=ANY=[], 0x38}}, 0x0) kernel console output (not intermixed with test programs): [ 45.791502][ T39] audit: type=1400 audit(1720114788.969:82): avc: denied { siginh } for pid=5129 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 45.800934][ T39] audit: type=1400 audit(1720114789.009:83): avc: denied { read } for pid=4674 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 46.205183][ T39] audit: type=1400 audit(1720114789.409:84): avc: denied { write } for pid=5139 comm="sftp-server" path="pipe:[4780]" dev="pipefs" ino=4780 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 46.879986][ T39] audit: type=1400 audit(1720114790.079:85): avc: denied { append } for pid=4674 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 46.897054][ T39] audit: type=1400 audit(1720114790.079:86): avc: denied { open } for pid=4674 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 46.908187][ T39] audit: type=1400 audit(1720114790.079:87): avc: denied { getattr } for pid=4674 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 Warning: Permanently added '[localhost]:30349' (ED25519) to the list of known hosts. [ 50.477706][ T5193] cgroup: Unknown subsys name 'net' [ 50.675935][ T5193] cgroup: Unknown subsys name 'rlimit' [ 50.880672][ T39] kauditd_printk_skb: 6 callbacks suppressed [ 50.880688][ T39] audit: type=1400 audit(1720114794.089:94): avc: denied { setattr } for pid=5193 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 50.893015][ T39] audit: type=1400 audit(1720114794.089:95): avc: denied { create } for pid=5193 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 50.900622][ T39] audit: type=1400 audit(1720114794.089:96): avc: denied { write } for pid=5193 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 50.909007][ T39] audit: type=1400 audit(1720114794.089:97): avc: denied { read } for pid=5193 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 50.915826][ T39] audit: type=1400 audit(1720114794.099:98): avc: denied { mounton } for pid=5193 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 50.926332][ T39] audit: type=1400 audit(1720114794.099:99): avc: denied { mount } for pid=5193 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 50.934733][ T5199] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 50.935963][ T39] audit: type=1400 audit(1720114794.099:100): avc: denied { read } for pid=4912 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1 [ 50.946920][ T39] audit: type=1400 audit(1720114794.149:101): avc: denied { relabelto } for pid=5199 comm="mkswap" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 50.955395][ T39] audit: type=1400 audit(1720114794.149:102): avc: denied { write } for pid=5199 comm="mkswap" path="/swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 50.965789][ T39] audit: type=1400 audit(1720114794.159:103): avc: denied { read } for pid=5193 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 51.948299][ T5193] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 56.150357][ T39] kauditd_printk_skb: 2 callbacks suppressed [ 56.150372][ T39] audit: type=1400 audit(1720114799.359:106): avc: denied { mounton } for pid=5205 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 56.165115][ T39] audit: type=1400 audit(1720114799.359:107): avc: denied { mount } for pid=5205 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 56.173332][ T39] audit: type=1400 audit(1720114799.359:108): avc: denied { create } for pid=5205 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 56.174789][ T5209] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 56.181348][ T39] audit: type=1400 audit(1720114799.359:109): avc: denied { read write } for pid=5205 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 56.189363][ T5217] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 56.193854][ T39] audit: type=1400 audit(1720114799.359:110): avc: denied { open } for pid=5206 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 56.197790][ T5217] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 56.205204][ T39] audit: type=1400 audit(1720114799.369:111): avc: denied { ioctl } for pid=5205 comm="syz-executor" path="socket:[5363]" dev="sockfs" ino=5363 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 56.209620][ T5217] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 56.211030][ T5219] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 56.212047][ T5221] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 56.212228][ T5219] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 56.213098][ T5221] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 56.213278][ T5221] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 56.213880][ T5221] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 56.214420][ T5221] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 56.214612][ T5221] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 56.214753][ T5221] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 56.215830][ T5219] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 56.216207][ T5219] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 56.216949][ T5219] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 56.217750][ T5222] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 56.220502][ T5217] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 56.224395][ T5219] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 56.227159][ T5217] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 56.230646][ T5219] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 56.230966][ T39] audit: type=1400 audit(1720114799.429:112): avc: denied { read } for pid=5205 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 56.231008][ T39] audit: type=1400 audit(1720114799.429:113): avc: denied { open } for pid=5205 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 56.231045][ T39] audit: type=1400 audit(1720114799.429:114): avc: denied { mounton } for pid=5205 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 56.234900][ T5217] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 56.238169][ T5219] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 56.241384][ T5217] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 56.484594][ T39] audit: type=1400 audit(1720114799.689:115): avc: denied { module_request } for pid=5205 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 56.528164][ T5205] chnl_net:caif_netlink_parms(): no params data found [ 56.695409][ T5206] chnl_net:caif_netlink_parms(): no params data found [ 56.722474][ T5205] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.725466][ T5205] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.728251][ T5205] bridge_slave_0: entered allmulticast mode [ 56.731157][ T5205] bridge_slave_0: entered promiscuous mode [ 56.743074][ T5207] chnl_net:caif_netlink_parms(): no params data found [ 56.766980][ T5205] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.769424][ T5205] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.771871][ T5205] bridge_slave_1: entered allmulticast mode [ 56.774659][ T5205] bridge_slave_1: entered promiscuous mode [ 56.871366][ T5205] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.881298][ T5205] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.086508][ T5205] team0: Port device team_slave_0 added [ 57.089238][ T5207] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.092538][ T5207] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.096655][ T5207] bridge_slave_0: entered allmulticast mode [ 57.100566][ T5207] bridge_slave_0: entered promiscuous mode [ 57.105595][ T5207] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.108969][ T5207] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.112366][ T5207] bridge_slave_1: entered allmulticast mode [ 57.117353][ T5207] bridge_slave_1: entered promiscuous mode [ 57.152936][ T5205] team0: Port device team_slave_1 added [ 57.233042][ T5206] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.235504][ T5206] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.238035][ T5206] bridge_slave_0: entered allmulticast mode [ 57.241027][ T5206] bridge_slave_0: entered promiscuous mode [ 57.270543][ T5205] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 57.273547][ T5205] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.283858][ T5205] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 57.297685][ T5207] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.302038][ T5206] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.305178][ T5206] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.308901][ T5206] bridge_slave_1: entered allmulticast mode [ 57.313039][ T5206] bridge_slave_1: entered promiscuous mode [ 57.333198][ T5205] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 57.335832][ T5205] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.345371][ T5205] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 57.349754][ T5208] chnl_net:caif_netlink_parms(): no params data found [ 57.359067][ T5207] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.383983][ T5206] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.453381][ T5207] team0: Port device team_slave_0 added [ 57.459796][ T5206] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.498132][ T5207] team0: Port device team_slave_1 added [ 57.646376][ T5206] team0: Port device team_slave_0 added [ 57.673236][ T5205] hsr_slave_0: entered promiscuous mode [ 57.681909][ T5205] hsr_slave_1: entered promiscuous mode [ 57.738860][ T5207] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 57.741858][ T5207] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.752403][ T5207] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 57.758921][ T5207] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 57.761844][ T5207] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.772105][ T5207] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 57.780529][ T5206] team0: Port device team_slave_1 added [ 57.810744][ T5208] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.814016][ T5208] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.817983][ T5208] bridge_slave_0: entered allmulticast mode [ 57.823081][ T5208] bridge_slave_0: entered promiscuous mode [ 57.831996][ T5208] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.835114][ T5208] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.838396][ T5208] bridge_slave_1: entered allmulticast mode [ 57.842282][ T5208] bridge_slave_1: entered promiscuous mode [ 57.890333][ T5206] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 57.892745][ T5206] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.901847][ T5206] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 57.992214][ T5206] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 57.994569][ T5206] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.005028][ T5206] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 58.014293][ T5208] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.023470][ T5208] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.054120][ T5207] hsr_slave_0: entered promiscuous mode [ 58.058534][ T5207] hsr_slave_1: entered promiscuous mode [ 58.060923][ T5207] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 58.064563][ T5207] Cannot create hsr debugfs directory [ 58.123355][ T5208] team0: Port device team_slave_0 added [ 58.127881][ T5208] team0: Port device team_slave_1 added [ 58.252793][ T5206] hsr_slave_0: entered promiscuous mode [ 58.256344][ T5206] hsr_slave_1: entered promiscuous mode [ 58.256738][ T5217] Bluetooth: hci0: command tx timeout [ 58.256752][ T65] Bluetooth: hci3: command tx timeout [ 58.257005][ T5219] Bluetooth: hci1: command tx timeout [ 58.264634][ T5206] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 58.269921][ T5206] Cannot create hsr debugfs directory [ 58.332417][ T5208] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 58.335460][ T5208] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.345155][ T5208] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 58.346421][ T5217] Bluetooth: hci2: command tx timeout [ 58.351519][ T5208] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 58.354159][ T5208] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.363276][ T5208] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 58.525508][ T5208] hsr_slave_0: entered promiscuous mode [ 58.528488][ T5208] hsr_slave_1: entered promiscuous mode [ 58.531822][ T5208] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 58.534623][ T5208] Cannot create hsr debugfs directory [ 58.672482][ T5205] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 58.698196][ T5205] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 58.708250][ T5205] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 58.745036][ T5205] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 58.790303][ T5207] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 58.796364][ T5207] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 58.804280][ T5207] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 58.809866][ T5207] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 58.859720][ T5206] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 58.867214][ T5206] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 58.881647][ T5206] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 58.886557][ T5206] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 58.971051][ T5208] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 58.978565][ T5208] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 58.985661][ T5208] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 58.992922][ T5208] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 59.063809][ T5205] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.091023][ T5207] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.114697][ T5205] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.134876][ T5207] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.142282][ T1267] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.144876][ T1267] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.162460][ T55] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.165672][ T55] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.175655][ T55] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.178972][ T55] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.195897][ T55] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.199119][ T55] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.208150][ T5206] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.248391][ T5206] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.293319][ T55] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.296197][ T55] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.312137][ T5208] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.321863][ T826] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.324968][ T826] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.363855][ T5208] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.381847][ T1267] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.384336][ T1267] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.404406][ T1267] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.407656][ T1267] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.477395][ T5207] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.502642][ T5205] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.545502][ T5207] veth0_vlan: entered promiscuous mode [ 59.578249][ T5205] veth0_vlan: entered promiscuous mode [ 59.585617][ T5207] veth1_vlan: entered promiscuous mode [ 59.621323][ T5205] veth1_vlan: entered promiscuous mode [ 59.634389][ T5206] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.652460][ T5207] veth0_macvtap: entered promiscuous mode [ 59.674403][ T5208] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.681769][ T5207] veth1_macvtap: entered promiscuous mode [ 59.724324][ T5207] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 59.734785][ T5207] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 59.770570][ T5207] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.774934][ T5207] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.785765][ T5207] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.790253][ T5207] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.810567][ T5206] veth0_vlan: entered promiscuous mode [ 59.820568][ T5205] veth0_macvtap: entered promiscuous mode [ 59.839709][ T5206] veth1_vlan: entered promiscuous mode [ 59.843979][ T5205] veth1_macvtap: entered promiscuous mode [ 59.884167][ T5208] veth0_vlan: entered promiscuous mode [ 59.934845][ T5208] veth1_vlan: entered promiscuous mode [ 59.941558][ T5205] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 59.946637][ T5205] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.951975][ T5205] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 59.955626][ T80] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.959132][ T80] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.983259][ T5205] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 59.987842][ T5205] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.994446][ T5205] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 60.013513][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.018069][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.018170][ T5205] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.025037][ T5205] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.029203][ T5205] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.032287][ T5205] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.045847][ T5206] veth0_macvtap: entered promiscuous mode [ 60.059625][ T5206] veth1_macvtap: entered promiscuous mode [ 60.103352][ T5206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.107946][ T5206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.111842][ T5206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.115880][ T5206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.125862][ T5206] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 60.132477][ T5208] veth0_macvtap: entered promiscuous mode [ 60.162459][ T5206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 60.165881][ T5206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.169772][ T5206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 60.173796][ T5206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.183147][ T5206] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 60.200957][ T5208] veth1_macvtap: entered promiscuous mode [ 60.208687][ T5206] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.208903][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.211898][ T5206] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.215200][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.218723][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 60.236568][ T5206] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.239975][ T5206] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.313497][ T5208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.318264][ T5208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.322641][ T5208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.328242][ T5208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.332460][ T5208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.337377][ T5217] Bluetooth: hci3: command tx timeout [ 60.340078][ T5208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.341166][ T5217] Bluetooth: hci1: command tx timeout [ 60.347876][ T5208] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 60.347888][ T5219] Bluetooth: hci0: command tx timeout [ 60.356807][ T5208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 60.361233][ T5208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.365479][ T5208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 60.370276][ T5208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.375791][ T5208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 60.382036][ T5208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.388019][ T5208] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 60.400671][ T5208] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.404553][ T5208] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.409167][ T5208] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.412339][ T5208] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.416672][ T5217] Bluetooth: hci2: command tx timeout [ 60.431679][ T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.435763][ T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.538851][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.541997][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.561783][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.565532][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.659106][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.661907][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.666931][ T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.673904][ T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.697874][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 60.786530][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 60.805939][ T5278] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5'. [ 60.809542][ T5278] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5'. [ 60.818291][ T5217] Bluetooth: hci2: unexpected event 0x04 length: 14 > 10 [ 60.916691][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 61.007141][ T5287] syzkaller1: entered promiscuous mode [ 61.010462][ T5287] syzkaller1: entered allmulticast mode [ 61.349308][ T0] NOHZ tick-stop error: local softirq work is pending, handler #280!!! [ 61.353038][ T0] NOHZ tick-stop error: local softirq work is pending, handler #280!!! [ 61.496960][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 61.619269][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 61.671136][ T5299] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 61.926546][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 62.135914][ T5302] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10'. [ 62.141281][ T5302] netlink: 12 bytes leftover after parsing attributes in process `syz.3.10'. [ 62.162461][ T5302] Zero length message leads to an empty skb [ 62.240991][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 62.287568][ T5306] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12'. [ 62.294421][ T5306] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12'. [ 62.416260][ T65] Bluetooth: hci0: command tx timeout [ 62.419127][ T5219] Bluetooth: hci3: command tx timeout [ 62.422603][ T5217] Bluetooth: hci1: command tx timeout [ 62.496232][ T5217] Bluetooth: hci2: command tx timeout [ 62.631026][ T39] kauditd_printk_skb: 37 callbacks suppressed [ 62.631042][ T39] audit: type=1400 audit(1720114805.839:153): avc: denied { map_create } for pid=5311 comm="syz.2.14" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 62.648991][ T39] audit: type=1400 audit(1720114805.859:154): avc: denied { map_read map_write } for pid=5311 comm="syz.2.14" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 62.687720][ T39] audit: type=1400 audit(1720114805.899:155): avc: denied { perfmon } for pid=5311 comm="syz.2.14" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 62.707599][ T39] audit: type=1400 audit(1720114805.919:156): avc: denied { prog_run } for pid=5311 comm="syz.2.14" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 62.745051][ T5312] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 62.773567][ T5312] Cannot find set identified by id 0 to match [ 62.801436][ T5312] pimreg: entered allmulticast mode [ 62.817644][ T39] audit: type=1400 audit(1720114806.029:157): avc: denied { create } for pid=5311 comm="syz.2.14" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 62.826314][ T39] audit: type=1400 audit(1720114806.029:158): avc: denied { setopt } for pid=5311 comm="syz.2.14" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 62.908559][ T39] audit: type=1400 audit(1720114806.119:159): avc: denied { create } for pid=5313 comm="syz.2.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 62.925092][ T39] audit: type=1400 audit(1720114806.129:160): avc: denied { ioctl } for pid=5313 comm="syz.2.16" path="socket:[7474]" dev="sockfs" ino=7474 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 62.949381][ T39] audit: type=1326 audit(1720114806.159:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5313 comm="syz.2.16" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffb3cf75bd9 code=0x0 [ 63.359257][ T5217] Bluetooth: hci2: unexpected event 0x04 length: 14 > 10 [ 63.796408][ T5328] syz.2.19 uses obsolete (PF_INET,SOCK_PACKET) [ 63.812514][ T39] audit: type=1400 audit(1720114807.009:162): avc: denied { ioctl } for pid=5327 comm="syz.2.19" path="socket:[9313]" dev="sockfs" ino=9313 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 64.492972][ T5217] Bluetooth: hci3: unexpected event 0x04 length: 14 > 10 [ 64.496408][ T65] Bluetooth: hci0: command tx timeout [ 64.498206][ T5219] Bluetooth: hci3: command tx timeout [ 64.505342][ T5217] Bluetooth: hci1: command tx timeout [ 64.586216][ T5217] Bluetooth: hci2: command tx timeout [ 65.740332][ T5217] Bluetooth: hci1: unexpected event 0x04 length: 14 > 10 [ 65.757125][ T5369] Cannot find set identified by id 0 to match [ 66.577714][ T5217] Bluetooth: hci3: command tx timeout [ 66.674898][ T5217] Bluetooth: hci2: command tx timeout [ 66.699513][ T5217] Bluetooth: hci3: unexpected event 0x04 length: 14 > 10 [ 66.717498][ T5392] Cannot find set identified by id 0 to match [ 66.734857][ T5392] pimreg: entered allmulticast mode [ 66.863104][ T5396] Cannot find set identified by id 0 to match [ 67.622083][ T5406] netlink: 4 bytes leftover after parsing attributes in process `syz.1.43'. [ 67.627003][ T5406] netlink: 12 bytes leftover after parsing attributes in process `syz.1.43'. [ 67.770553][ T39] kauditd_printk_skb: 7 callbacks suppressed [ 67.770576][ T39] audit: type=1400 audit(1720114810.979:170): avc: denied { read } for pid=5412 comm="syz.2.46" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 67.786911][ T39] audit: type=1400 audit(1720114810.979:171): avc: denied { open } for pid=5412 comm="syz.2.46" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 67.796406][ T5217] Bluetooth: hci1: command tx timeout [ 67.806564][ T39] audit: type=1400 audit(1720114810.979:172): avc: denied { write } for pid=5412 comm="syz.2.46" name="raw-gadget" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 67.815386][ T39] audit: type=1400 audit(1720114810.979:173): avc: denied { ioctl } for pid=5412 comm="syz.2.46" path="/dev/raw-gadget" dev="devtmpfs" ino=761 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 68.057208][ T8] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 68.140170][ T39] audit: type=1400 audit(1720114811.349:174): avc: denied { create } for pid=5418 comm="syz.3.48" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 68.150188][ T39] audit: type=1400 audit(1720114811.349:175): avc: denied { connect } for pid=5418 comm="syz.3.48" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 68.283660][ T8] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 68.288439][ T8] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid wMaxPacketSize 0 [ 68.292599][ T8] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 68.298657][ T8] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 68.302483][ T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 68.313041][ T8] usb 7-1: config 0 descriptor?? [ 68.563946][ T39] audit: type=1400 audit(1720114811.769:176): avc: denied { mount } for pid=5412 comm="syz.2.46" name="/" dev="autofs" ino=9411 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1 [ 68.746189][ T5217] Bluetooth: hci3: command tx timeout [ 68.746219][ T5219] Bluetooth: hci2: command tx timeout [ 68.789517][ T8] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 68.799674][ T8] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 68.806549][ T8] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 68.814322][ T8] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 68.818207][ T8] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 68.822198][ T8] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 68.825805][ T8] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 68.829010][ T8] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 68.832051][ T8] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 68.835852][ T8] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 68.849976][ T8] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 69.040838][ T5433] Cannot find set identified by id 0 to match [ 69.088553][ T57] usb 7-1: USB disconnect, device number 2 [ 69.339750][ T5443] netlink: 4 bytes leftover after parsing attributes in process `syz.1.55'. [ 69.351268][ T5443] netlink: 12 bytes leftover after parsing attributes in process `syz.1.55'. [ 69.496518][ T5445] Cannot find set identified by id 0 to match [ 69.533086][ T5445] pimreg: entered allmulticast mode [ 69.648268][ T39] audit: type=1400 audit(1720114812.849:177): avc: denied { unmount } for pid=5206 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1 [ 69.746186][ T39] audit: type=1400 audit(1720114812.949:178): avc: denied { read } for pid=5451 comm="syz.2.59" name="video0" dev="devtmpfs" ino=876 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1 [ 69.760996][ T39] audit: type=1400 audit(1720114812.949:179): avc: denied { open } for pid=5451 comm="syz.2.59" path="/dev/video0" dev="devtmpfs" ino=876 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1 [ 70.425402][ T5468] netlink: 4 bytes leftover after parsing attributes in process `syz.0.64'. [ 70.431448][ T5468] netlink: 12 bytes leftover after parsing attributes in process `syz.0.64'. [ 71.122837][ T5479] Cannot find set identified by id 0 to match [ 71.151134][ T5481] Cannot find set identified by id 0 to match [ 71.646487][ T1357] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.651768][ T1357] ieee802154 phy1 wpan1: encryption failed: -22 [ 72.622893][ T5514] Cannot find set identified by id 0 to match [ 72.762353][ T5219] Bluetooth: hci3: unexpected event 0x04 length: 14 > 10 [ 72.823342][ T39] kauditd_printk_skb: 5 callbacks suppressed [ 72.823358][ T39] audit: type=1326 audit(1720114816.029:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5517 comm="syz.3.82" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2952575bd9 code=0x0 [ 73.612427][ T39] audit: type=1326 audit(1720114816.819:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5529 comm="syz.2.85" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffb3cf75bd9 code=0x0 [ 74.290937][ T5547] netlink: 4 bytes leftover after parsing attributes in process `syz.0.91'. [ 74.296895][ T5547] netlink: 12 bytes leftover after parsing attributes in process `syz.0.91'. [ 74.309080][ T39] audit: type=1400 audit(1720114817.519:187): avc: denied { name_bind } for pid=5544 comm="syz.1.90" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 74.321978][ T39] audit: type=1400 audit(1720114817.519:188): avc: denied { node_bind } for pid=5544 comm="syz.1.90" saddr=172.20.20.170 src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1 [ 74.820138][ T5219] Bluetooth: hci3: command tx timeout [ 75.626784][ T39] audit: type=1326 audit(1720114818.829:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5569 comm="syz.2.99" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffb3cf75bd9 code=0x0 [ 76.216338][ T58] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 76.399369][ T58] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 76.412272][ T58] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid wMaxPacketSize 0 [ 76.418484][ T58] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 76.425546][ T58] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 76.430916][ T58] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 76.445253][ T58] usb 8-1: config 0 descriptor?? [ 76.459132][ T39] audit: type=1326 audit(1720114819.669:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5580 comm="syz.2.103" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffb3cf75bd9 code=0x0 [ 76.495321][ T5219] Bluetooth: hci1: unexpected event 0x04 length: 14 > 10 [ 76.923800][ T58] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 76.930391][ T58] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 76.933654][ T58] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 76.937052][ T58] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 76.940553][ T58] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 76.944689][ T58] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 76.964088][ T58] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 76.967931][ T58] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 76.975902][ T58] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 76.983527][ T58] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving [ 76.997239][ T58] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 77.138259][ T5592] Cannot find set identified by id 0 to match [ 77.191608][ T10] usb 8-1: USB disconnect, device number 2 [ 77.242130][ T5594] Cannot find set identified by id 0 to match [ 77.430671][ T39] audit: type=1326 audit(1720114820.639:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5602 comm="syz.0.111" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5f04975bd9 code=0x0 [ 77.759161][ T5607] netlink: 4 bytes leftover after parsing attributes in process `syz.3.112'. [ 77.820615][ T5609] netlink: 4 bytes leftover after parsing attributes in process `syz.3.113'. [ 77.857041][ T5219] Bluetooth: hci0: unexpected event 0x04 length: 14 > 10 [ 78.497028][ T5219] Bluetooth: hci1: command tx timeout [ 78.624384][ T39] audit: type=1326 audit(1720114821.829:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5626 comm="syz.3.119" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2952575bd9 code=0x0 [ 78.816234][ T5632] netlink: 4 bytes leftover after parsing attributes in process `syz.0.121'. [ 79.112765][ T5638] netlink: 4 bytes leftover after parsing attributes in process `syz.2.123'. [ 79.174730][ T5219] Bluetooth: hci0: unexpected event 0x04 length: 14 > 10 [ 79.960825][ T5219] Bluetooth: hci0: command tx timeout [ 80.325916][ T5659] netlink: 4 bytes leftover after parsing attributes in process `syz.1.130'. [ 80.335401][ T5219] Bluetooth: hci0: unexpected event 0x04 length: 14 > 10 [ 80.452820][ T39] audit: type=1326 audit(1720114823.659:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5664 comm="syz.1.132" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb948f75bd9 code=0x0 [ 81.444330][ T5679] Cannot find set identified by id 0 to match [ 81.897727][ T825] cfg80211: failed to load regulatory.db [ 82.018874][ T5219] Bluetooth: hci0: command tx timeout [ 82.659710][ T5703] netlink: 4 bytes leftover after parsing attributes in process `syz.2.143'. [ 83.356135][ T10] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 83.559504][ T10] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 83.565694][ T10] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid wMaxPacketSize 0 [ 83.582576][ T10] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 83.593415][ T10] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 83.598276][ T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 83.604979][ T10] usb 8-1: config 0 descriptor?? [ 83.806589][ T5719] Cannot find set identified by id 0 to match [ 84.052389][ T10] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0 [ 84.080738][ T10] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0 [ 84.091559][ T10] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0 [ 84.105584][ T10] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0 [ 84.106156][ T5219] Bluetooth: hci0: command tx timeout [ 84.120374][ T10] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0 [ 84.134591][ T10] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0 [ 84.142347][ T10] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0 [ 84.145527][ T10] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0 [ 84.155653][ T10] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0 [ 84.165527][ T10] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving [ 84.185504][ T10] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 84.363173][ T5272] usb 8-1: USB disconnect, device number 3 [ 84.775921][ T5731] netlink: 4 bytes leftover after parsing attributes in process `syz.2.152'. [ 85.290590][ T39] audit: type=1326 audit(1720114828.499:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5739 comm="syz.1.156" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb948f75bd9 code=0x0 [ 85.774827][ T5747] Cannot find set identified by id 0 to match [ 85.830505][ T5219] Bluetooth: hci1: unexpected event 0x04 length: 14 > 10 [ 86.106195][ T10] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 86.191955][ T5760] netlink: 12 bytes leftover after parsing attributes in process `syz.1.161'. [ 86.299649][ T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 86.304324][ T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid wMaxPacketSize 0 [ 86.313124][ T10] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 86.322856][ T10] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 86.342516][ T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 86.352082][ T10] usb 7-1: config 0 descriptor?? [ 86.501167][ T5219] Bluetooth: hci2: unexpected event 0x04 length: 14 > 10 [ 86.808038][ T10] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 86.825912][ T10] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 86.830632][ T10] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 86.837058][ T10] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 86.840745][ T10] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 86.844937][ T10] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 86.849483][ T10] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 86.852822][ T10] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 86.856503][ T10] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 86.860611][ T10] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving [ 86.868735][ T10] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 87.093423][ T58] usb 7-1: USB disconnect, device number 3 [ 87.659500][ T5781] Cannot find set identified by id 0 to match [ 87.856252][ T5219] Bluetooth: hci1: command tx timeout [ 88.346539][ T39] audit: type=1400 audit(1720114831.549:195): avc: denied { ioctl } for pid=5791 comm="syz.3.171" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 88.576247][ T5219] Bluetooth: hci2: command tx timeout [ 89.080562][ T5805] Cannot find set identified by id 0 to match [ 89.354733][ T5807] Cannot find set identified by id 0 to match [ 89.579332][ T5809] Cannot find set identified by id 0 to match [ 89.726484][ T5219] Bluetooth: hci2: unexpected event 0x04 length: 14 > 10 [ 91.261387][ T5839] Cannot find set identified by id 0 to match [ 91.409751][ T5219] Bluetooth: hci2: unexpected event 0x04 length: 14 > 10 [ 91.786106][ T5219] Bluetooth: hci2: command tx timeout [ 92.293597][ T5219] Bluetooth: hci3: unexpected event 0x04 length: 14 > 10 [ 93.199247][ T57] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 93.406574][ T57] usb 7-1: device descriptor read/64, error -71 [ 93.676243][ T57] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 93.856312][ T5219] Bluetooth: hci2: command tx timeout [ 94.086385][ T57] usb 7-1: device descriptor read/64, error -71 [ 94.206502][ T57] usb usb7-port1: attempt power cycle [ 94.336289][ T5219] Bluetooth: hci3: command tx timeout [ 94.626179][ T57] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 94.676696][ T57] usb 7-1: device descriptor read/8, error -71 [ 94.956135][ T57] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 95.010152][ T57] usb 7-1: device descriptor read/8, error -71 [ 95.091759][ T5896] Cannot find set identified by id 0 to match [ 95.155412][ T57] usb usb7-port1: unable to enumerate USB device [ 95.922239][ T5910] Cannot find set identified by id 0 to match [ 96.154345][ T5919] Cannot find set identified by id 0 to match [ 96.476107][ T55] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 96.608928][ T5219] Bluetooth: hci2: unexpected event 0x04 length: 14 > 10 [ 96.692854][ T55] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 96.702276][ T55] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid wMaxPacketSize 0 [ 96.718674][ T55] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 96.742217][ T55] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 96.766040][ T55] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 96.784605][ T55] usb 5-1: config 0 descriptor?? [ 97.280037][ T55] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 97.283417][ T55] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 97.302328][ T55] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 97.307370][ T55] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 97.310650][ T55] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 97.313652][ T55] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 97.320108][ T55] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 97.324436][ T55] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 97.342678][ T55] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 97.347894][ T55] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving [ 97.404398][ T55] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 97.592138][ T55] usb 5-1: USB disconnect, device number 2 [ 97.993995][ T5942] Cannot find set identified by id 0 to match [ 98.343589][ T5219] Bluetooth: hci2: unexpected event 0x04 length: 14 > 10 [ 98.542219][ T5958] Cannot find set identified by id 0 to match [ 98.660568][ T5219] Bluetooth: hci2: command tx timeout [ 98.717836][ T5964] netlink: 4 bytes leftover after parsing attributes in process `syz.2.227'. [ 99.577558][ T5981] Cannot find set identified by id 0 to match [ 100.439988][ T5992] Cannot find set identified by id 0 to match [ 100.747391][ T5219] Bluetooth: hci2: command tx timeout [ 100.750742][ T6003] Cannot find set identified by id 0 to match [ 101.195325][ T6012] Cannot find set identified by id 0 to match [ 101.396380][ T58] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 101.589194][ T58] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 101.612407][ T58] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid wMaxPacketSize 0 [ 101.621385][ T58] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 101.627356][ T58] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 101.631970][ T58] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 101.638271][ T58] usb 8-1: config 0 descriptor?? [ 101.656300][ T5214] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 101.858911][ T5214] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 101.864158][ T5214] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid wMaxPacketSize 0 [ 101.879827][ T5214] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 101.890322][ T5214] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 101.894141][ T5214] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 101.936209][ T5214] usb 5-1: config 0 descriptor?? [ 102.119386][ T58] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 102.122426][ T58] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 102.125167][ T58] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 102.130335][ T58] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 102.134654][ T58] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 102.140877][ T58] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 102.146415][ T58] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 102.156455][ T58] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 102.160298][ T58] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 102.164639][ T58] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving [ 102.184482][ T58] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 102.246292][ T5248] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 102.393150][ T5214] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 102.397041][ T5214] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 102.400488][ T5214] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 102.403768][ T5214] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 102.405634][ T30] usb 8-1: USB disconnect, device number 4 [ 102.411244][ T5214] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 102.414586][ T5214] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 102.418668][ T5214] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 102.421861][ T5214] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 102.425090][ T5214] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 102.429429][ T5214] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving [ 102.436697][ T5214] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 102.456350][ T5248] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 102.469658][ T5248] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid wMaxPacketSize 0 [ 102.473958][ T5248] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 102.486480][ T5248] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 102.492449][ T5248] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 102.527866][ T5248] usb 6-1: config 0 descriptor?? [ 102.672697][ T58] usb 5-1: USB disconnect, device number 3 [ 102.703137][ T6029] Cannot find set identified by id 0 to match [ 102.804506][ T39] audit: type=1326 audit(1720114846.009:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6030 comm="syz.2.251" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffb3cf75bd9 code=0x0 [ 102.978781][ T5248] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 102.982060][ T5248] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 102.985435][ T5248] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 102.993956][ T5248] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 102.997925][ T5248] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 103.001171][ T5248] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 103.004477][ T5248] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 103.016311][ T5248] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 103.021876][ T5248] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 103.054136][ T5248] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving [ 103.067366][ T5248] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 103.303266][ T5249] usb 6-1: USB disconnect, device number 2 [ 104.199179][ T39] audit: type=1400 audit(1720114847.409:197): avc: denied { connect } for pid=6049 comm="syz.3.256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 104.298130][ T5219] Bluetooth: hci2: unexpected event 0x04 length: 14 > 10 [ 104.663264][ T5219] Bluetooth: hci3: unexpected event 0x04 length: 14 > 10 [ 105.490933][ T5219] Bluetooth: hci1: unexpected event 0x04 length: 14 > 10 [ 105.628824][ T6075] Cannot find set identified by id 0 to match [ 106.336129][ T5219] Bluetooth: hci2: command tx timeout [ 106.532684][ T6098] netlink: 4 bytes leftover after parsing attributes in process `syz.2.269'. [ 106.553885][ T6098] netlink: 12 bytes leftover after parsing attributes in process `syz.2.269'. [ 106.745965][ T5219] Bluetooth: hci3: command tx timeout [ 107.257605][ T6111] Cannot find set identified by id 0 to match [ 107.348610][ T6113] netlink: 4 bytes leftover after parsing attributes in process `syz.0.275'. [ 107.355186][ T6113] netlink: 12 bytes leftover after parsing attributes in process `syz.0.275'. [ 107.538890][ T5219] Bluetooth: hci1: command tx timeout [ 107.647798][ T6119] netlink: 4 bytes leftover after parsing attributes in process `syz.1.276'. [ 107.740504][ T6125] netlink: 4 bytes leftover after parsing attributes in process `syz.1.279'. [ 107.745693][ T6125] netlink: 12 bytes leftover after parsing attributes in process `syz.1.279'. [ 108.004101][ T6129] Cannot find set identified by id 0 to match [ 108.314772][ T39] audit: type=1326 audit(1720114851.519:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6137 comm="syz.0.283" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5f04975bd9 code=0x0 [ 108.626471][ T6141] Cannot find set identified by id 0 to match [ 108.839050][ T5219] Bluetooth: hci0: unexpected event 0x04 length: 14 > 10 [ 109.197717][ T6156] netlink: 4 bytes leftover after parsing attributes in process `syz.3.289'. [ 109.226520][ T6156] netlink: 12 bytes leftover after parsing attributes in process `syz.3.289'. [ 109.612543][ T6165] netlink: 4 bytes leftover after parsing attributes in process `syz.1.291'. [ 110.747023][ T6189] Cannot find set identified by id 0 to match [ 110.820513][ T6189] pimreg: entered allmulticast mode [ 110.901884][ T5219] Bluetooth: hci0: command tx timeout [ 110.953131][ T39] audit: type=1400 audit(1720114854.159:199): avc: denied { write } for pid=6194 comm="syz.2.302" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 111.001954][ T39] audit: type=1400 audit(1720114854.209:200): avc: denied { create } for pid=6194 comm="syz.2.302" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 111.015109][ T39] audit: type=1400 audit(1720114854.219:201): avc: denied { getopt } for pid=6194 comm="syz.2.302" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 111.034212][ T39] audit: type=1400 audit(1720114854.239:202): avc: denied { write } for pid=6194 comm="syz.2.302" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 111.036908][ T6199] netlink: 'syz.0.304': attribute type 5 has an invalid length. [ 111.063558][ T39] audit: type=1400 audit(1720114854.239:203): avc: denied { setopt } for pid=6198 comm="syz.0.304" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 111.553569][ T6217] __nla_validate_parse: 10 callbacks suppressed [ 111.553588][ T6217] netlink: 4 bytes leftover after parsing attributes in process `syz.0.308'. [ 111.561654][ T39] audit: type=1400 audit(1720114854.769:204): avc: denied { create } for pid=6216 comm="syz.1.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 111.583200][ T39] audit: type=1400 audit(1720114854.769:205): avc: denied { listen } for pid=6216 comm="syz.1.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 111.603060][ T39] audit: type=1400 audit(1720114854.779:206): avc: denied { map } for pid=6216 comm="syz.1.311" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=10839 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 111.618570][ T39] audit: type=1400 audit(1720114854.779:207): avc: denied { read write } for pid=6216 comm="syz.1.311" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=10839 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 111.954445][ T6229] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3 sclass=netlink_route_socket pid=6229 comm=syz.0.313 [ 112.198682][ T6236] netlink: 4 bytes leftover after parsing attributes in process `syz.2.316'. [ 112.215124][ T6236] netlink: 12 bytes leftover after parsing attributes in process `syz.2.316'. [ 112.899284][ T6246] netlink: 4 bytes leftover after parsing attributes in process `syz.0.320'. [ 113.509851][ T39] kauditd_printk_skb: 15 callbacks suppressed [ 113.509870][ T39] audit: type=1400 audit(1720114856.719:223): avc: denied { write } for pid=6259 comm="syz.2.324" name="001" dev="devtmpfs" ino=742 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 113.517483][ T6260] FAULT_INJECTION: forcing a failure. [ 113.517483][ T6260] name failslab, interval 1, probability 0, space 0, times 1 [ 113.534117][ T6260] CPU: 0 PID: 6260 Comm: syz.2.324 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 113.538307][ T6260] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 113.542686][ T6260] Call Trace: [ 113.545308][ T6260] [ 113.546509][ T6260] dump_stack_lvl+0x16c/0x1f0 [ 113.548524][ T6260] should_fail_ex+0x497/0x5b0 [ 113.550814][ T6260] should_failslab+0x9/0x20 [ 113.552709][ T6260] __kmalloc_noprof+0xcf/0x410 [ 113.554715][ T6260] ? _raw_spin_unlock_irq+0x23/0x50 [ 113.557474][ T6260] usb_hcd_submit_urb+0x6b6/0x2090 [ 113.560432][ T6260] ? __pfx_usb_hcd_submit_urb+0x10/0x10 [ 113.563014][ T6260] ? kasan_save_stack+0x42/0x60 [ 113.565528][ T6260] ? kasan_save_stack+0x33/0x60 [ 113.567923][ T6260] ? kasan_save_track+0x14/0x30 [ 113.570185][ T6260] ? __kasan_kmalloc+0xaa/0xb0 [ 113.572228][ T6260] ? do_proc_control+0x331/0x1070 [ 113.574316][ T6260] ? usbdev_ioctl+0x22d8/0x3f80 [ 113.576398][ T6260] ? __x64_sys_ioctl+0x193/0x220 [ 113.578945][ T6260] ? do_syscall_64+0xcd/0x250 [ 113.581939][ T6260] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.586565][ T6260] ? find_held_lock+0x2d/0x110 [ 113.588921][ T6260] usb_submit_urb+0x87c/0x1730 [ 113.592934][ T6260] ? __init_swait_queue_head+0xca/0x150 [ 113.595730][ T6260] usbfs_start_wait_urb+0x128/0x3d0 [ 113.598508][ T6260] ? __pfx_usbfs_start_wait_urb+0x10/0x10 [ 113.600464][ T6260] do_proc_control+0x80e/0x1070 [ 113.602582][ T6260] ? __pfx_do_proc_control+0x10/0x10 [ 113.604634][ T6260] usbdev_ioctl+0x22d8/0x3f80 [ 113.606950][ T6260] ? __pfx_usbdev_ioctl+0x10/0x10 [ 113.609976][ T6260] ? do_vfs_ioctl+0x515/0x1ad0 [ 113.612236][ T6260] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 113.614459][ T6260] ? ioctl_has_perm.constprop.0.isra.0+0x2f0/0x470 [ 113.616937][ T6260] ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x470 [ 113.619576][ T6260] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 113.622147][ T6260] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 113.623996][ T6260] ? selinux_file_ioctl+0x180/0x270 [ 113.626273][ T6260] ? selinux_file_ioctl+0xb4/0x270 [ 113.628320][ T6260] ? __pfx_usbdev_ioctl+0x10/0x10 [ 113.630472][ T6260] __x64_sys_ioctl+0x193/0x220 [ 113.632243][ T6260] do_syscall_64+0xcd/0x250 [ 113.634544][ T6260] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.637076][ T6260] RIP: 0033:0x7ffb3cf75bd9 [ 113.641212][ T6260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 113.648626][ T6260] RSP: 002b:00007ffb3dcf4048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 113.651890][ T6260] RAX: ffffffffffffffda RBX: 00007ffb3d103f60 RCX: 00007ffb3cf75bd9 [ 113.655447][ T6260] RDX: 0000000020000000 RSI: 00000000c0185500 RDI: 0000000000000003 [ 113.659160][ T6260] RBP: 00007ffb3dcf40a0 R08: 0000000000000000 R09: 0000000000000000 [ 113.662923][ T6260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 113.666578][ T6260] R13: 000000000000000b R14: 00007ffb3d103f60 R15: 00007ffed4434938 [ 113.669678][ T6260] [ 113.675207][ T6255] netlink: 8 bytes leftover after parsing attributes in process `syz.0.322'. [ 113.818601][ T39] audit: type=1400 audit(1720114857.009:224): avc: denied { read } for pid=6264 comm="syz.1.327" name="card0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 113.856442][ T39] audit: type=1400 audit(1720114857.009:225): avc: denied { open } for pid=6264 comm="syz.1.327" path="/dev/dri/card0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 113.873216][ T39] audit: type=1400 audit(1720114857.049:226): avc: denied { ioctl } for pid=6264 comm="syz.1.327" path="/dev/dri/card0" dev="devtmpfs" ino=637 ioctlcmd=0x64b2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 113.884429][ T39] audit: type=1400 audit(1720114857.049:227): avc: denied { map } for pid=6264 comm="syz.1.327" path="/dev/dri/card0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 113.953975][ T39] audit: type=1400 audit(1720114857.159:228): avc: denied { create } for pid=6269 comm="syz.3.328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 113.964472][ T39] audit: type=1400 audit(1720114857.179:229): avc: denied { setopt } for pid=6269 comm="syz.3.328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 114.128896][ T6280] 9pnet_fd: Insufficient options for proto=fd [ 114.154801][ T6280] wireguard0: entered promiscuous mode [ 114.157400][ T6280] wireguard0: entered allmulticast mode [ 114.193887][ T39] audit: type=1400 audit(1720114857.399:230): avc: denied { getopt } for pid=6279 comm="syz.2.331" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 114.220266][ T6282] netlink: 4 bytes leftover after parsing attributes in process `syz.1.332'. [ 114.229511][ T6285] netlink: 12 bytes leftover after parsing attributes in process `syz.1.332'. [ 114.240427][ T39] audit: type=1400 audit(1720114857.449:231): avc: denied { connect } for pid=6287 comm="syz.3.333" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 114.414527][ T39] audit: type=1400 audit(1720114857.619:232): avc: denied { read } for pid=6287 comm="syz.3.333" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 114.423215][ T6296] FAULT_INJECTION: forcing a failure. [ 114.423215][ T6296] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 114.423358][ T6296] CPU: 2 PID: 6296 Comm: syz.3.333 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 114.423393][ T6296] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 114.423405][ T6296] Call Trace: [ 114.423413][ T6296] [ 114.423421][ T6296] dump_stack_lvl+0x16c/0x1f0 [ 114.423448][ T6296] should_fail_ex+0x497/0x5b0 [ 114.423471][ T6296] _copy_to_iter+0x2a1/0x1140 [ 114.423490][ T6296] ? __pfx_lock_acquire+0x10/0x10 [ 114.423517][ T6296] ? hlock_class+0x4e/0x130 [ 114.423538][ T6296] ? __pfx__copy_to_iter+0x10/0x10 [ 114.423557][ T6296] ? do_raw_spin_lock+0x12d/0x2c0 [ 114.423577][ T6296] ? __virt_addr_valid+0x5e/0x580 [ 114.423595][ T6296] ? __phys_addr_symbol+0x30/0x80 [ 114.423616][ T6296] ? __check_object_size+0x48e/0x720 [ 114.423638][ T6296] simple_copy_to_iter+0x4f/0x80 [ 114.423658][ T6296] __skb_datagram_iter+0x124/0x880 [ 114.423677][ T6296] ? tipc_sk_anc_data_recv+0xae/0x6d0 [ 114.423702][ T6296] ? __pfx_simple_copy_to_iter+0x10/0x10 [ 114.423721][ T6296] skb_copy_datagram_iter+0xac/0x250 [ 114.423741][ T6296] tipc_recvstream+0x3f9/0x960 [ 114.423770][ T6296] ? __pfx_tipc_recvstream+0x10/0x10 [ 114.423798][ T6296] ? security_socket_recvmsg+0x98/0xd0 [ 114.423825][ T6296] sock_recvmsg+0x1f6/0x250 [ 114.423844][ T6296] ____sys_recvmsg+0x21f/0x6b0 [ 114.423862][ T6296] ? __pfx_____sys_recvmsg+0x10/0x10 [ 114.423881][ T6296] ? find_held_lock+0x2d/0x110 [ 114.423902][ T6296] ___sys_recvmsg+0x115/0x1a0 [ 114.423924][ T6296] ? __pfx____sys_recvmsg+0x10/0x10 [ 114.423949][ T6296] ? __fget_light+0x173/0x210 [ 114.423972][ T6296] __sys_recvmsg+0x114/0x1e0 [ 114.423995][ T6296] ? __pfx___sys_recvmsg+0x10/0x10 [ 114.424023][ T6296] do_syscall_64+0xcd/0x250 [ 114.424048][ T6296] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.424077][ T6296] RIP: 0033:0x7f2952575bd9 [ 114.424092][ T6296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 114.424109][ T6296] RSP: 002b:00007f295328b048 EFLAGS: 00000246 ORIG_RAX: 000000000000002f [ 114.424129][ T6296] RAX: ffffffffffffffda RBX: 00007f2952704110 RCX: 00007f2952575bd9 [ 114.424143][ T6296] RDX: 0000000000000000 RSI: 0000000020000880 RDI: 0000000000000004 [ 114.424155][ T6296] RBP: 00007f295328b0a0 R08: 0000000000000000 R09: 0000000000000000 [ 114.424166][ T6296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 114.424179][ T6296] R13: 000000000000006e R14: 00007f2952704110 R15: 00007ffd11d01968 [ 114.424194][ T6296] [ 114.559781][ T6301] netlink: 'syz.2.336': attribute type 11 has an invalid length. [ 115.065047][ T6318] netlink: 8 bytes leftover after parsing attributes in process `syz.3.338'. [ 115.148568][ T6320] netlink: 4 bytes leftover after parsing attributes in process `syz.1.342'. [ 115.154004][ T6320] netlink: 12 bytes leftover after parsing attributes in process `syz.1.342'. [ 115.252038][ T6326] input: syz0 as /devices/virtual/input/input5 [ 115.360025][ T6330] FAULT_INJECTION: forcing a failure. [ 115.360025][ T6330] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 115.367087][ T6330] CPU: 1 PID: 6330 Comm: syz.1.345 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 115.371938][ T6330] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 115.381776][ T6330] Call Trace: [ 115.383274][ T6330] [ 115.384532][ T6330] dump_stack_lvl+0x16c/0x1f0 [ 115.386829][ T6330] should_fail_ex+0x497/0x5b0 [ 115.388907][ T6330] _copy_from_user+0x30/0xf0 [ 115.390814][ T6330] input_event_from_user+0x134/0x3b0 [ 115.393206][ T6330] ? __pfx_input_event_from_user+0x10/0x10 [ 115.395731][ T6330] ? __pfx___might_resched+0x10/0x10 [ 115.400856][ T6330] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 115.404167][ T6330] ? input_event+0x8e/0xa0 [ 115.406440][ T6330] uinput_write+0xbc2/0x12c0 [ 115.408631][ T6330] ? avc_policy_seqno+0x9/0x20 [ 115.411224][ T6330] ? __pfx_uinput_write+0x10/0x10 [ 115.414038][ T6330] ? security_file_permission+0x98/0xc0 [ 115.417191][ T6330] ? __pfx_uinput_write+0x10/0x10 [ 115.419432][ T6330] vfs_write+0x29a/0x1140 [ 115.421077][ T6330] ? __pfx_vfs_write+0x10/0x10 [ 115.423570][ T6330] ? __fget_files+0x256/0x400 [ 115.425937][ T6330] ? __fget_light+0x173/0x210 [ 115.428284][ T6330] ksys_write+0x1f8/0x260 [ 115.430086][ T6330] ? __pfx_ksys_write+0x10/0x10 [ 115.432217][ T6330] do_syscall_64+0xcd/0x250 [ 115.434660][ T6330] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.437955][ T6330] RIP: 0033:0x7fb948f75bd9 [ 115.441127][ T6330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.452333][ T6330] RSP: 002b:00007fb949d95048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 115.457105][ T6330] RAX: ffffffffffffffda RBX: 00007fb949104038 RCX: 00007fb948f75bd9 [ 115.460610][ T6330] RDX: 000000000000fe4f RSI: 0000000020000000 RDI: 0000000000000003 [ 115.465363][ T6330] RBP: 00007fb949d950a0 R08: 0000000000000000 R09: 0000000000000000 [ 115.470601][ T6330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 115.475730][ T6330] R13: 000000000000006e R14: 00007fb949104038 R15: 00007ffe990a23a8 [ 115.479468][ T6330] [ 115.654436][ T6336] Cannot find set identified by id 0 to match [ 115.712288][ T6338] FAULT_INJECTION: forcing a failure. [ 115.712288][ T6338] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 115.718226][ T6338] CPU: 3 PID: 6338 Comm: syz.1.349 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 115.722753][ T6338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 115.726979][ T6338] Call Trace: [ 115.728344][ T6338] [ 115.729966][ T6338] dump_stack_lvl+0x16c/0x1f0 [ 115.732424][ T6338] should_fail_ex+0x497/0x5b0 [ 115.735158][ T6338] ? fs_reclaim_acquire+0xae/0x160 [ 115.737823][ T6338] __should_fail_alloc_page+0xe7/0x130 [ 115.740613][ T6338] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 115.743349][ T6338] __alloc_pages_noprof+0x194/0x2460 [ 115.745755][ T6338] ? mark_lock+0xb5/0xc60 [ 115.747772][ T6338] ? __pfx_mark_lock+0x10/0x10 [ 115.750301][ T6338] ? hlock_class+0x4e/0x130 [ 115.752975][ T6338] ? mark_lock+0xb5/0xc60 [ 115.755325][ T6338] ? __orc_find+0x104/0x130 [ 115.757692][ T6338] ? stack_access_ok+0xf9/0x270 [ 115.760200][ T6338] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 115.763164][ T6338] ? hlock_class+0x4e/0x130 [ 115.765993][ T6338] ? mark_lock+0xb5/0xc60 [ 115.768747][ T6338] ? __orc_find+0x104/0x130 [ 115.771122][ T6338] ? stack_access_ok+0xf9/0x270 [ 115.773739][ T6338] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 115.776633][ T6338] ? policy_nodemask+0xea/0x4e0 [ 115.779023][ T6338] alloc_pages_mpol_noprof+0x275/0x610 [ 115.781663][ T6338] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 115.784574][ T6338] ? find_held_lock+0x2d/0x110 [ 115.786977][ T6338] pte_alloc_one+0x20/0x370 [ 115.789207][ T6338] __do_fault+0x320/0x490 [ 115.791333][ T6338] ? __pfx_filemap_map_pages+0x10/0x10 [ 115.793963][ T6338] __handle_mm_fault+0x3b36/0x5430 [ 115.796588][ T6338] ? __pfx_mt_find+0x10/0x10 [ 115.800518][ T6338] ? __pfx___handle_mm_fault+0x10/0x10 [ 115.804668][ T6338] ? find_vma+0xc0/0x140 [ 115.806869][ T6338] ? __pfx_find_vma+0x10/0x10 [ 115.808958][ T6338] handle_mm_fault+0x476/0xa00 [ 115.811100][ T6338] ? lock_mm_and_find_vma+0xa6/0x6a0 [ 115.813512][ T6338] do_user_addr_fault+0x2e5/0xe50 [ 115.815781][ T6338] exc_page_fault+0x5c/0xc0 [ 115.818064][ T6338] asm_exc_page_fault+0x26/0x30 [ 115.820333][ T6338] RIP: 0010:__put_user_4+0x11/0x20 [ 115.822290][ T6338] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 [ 115.831925][ T6338] RSP: 0018:ffffc90003bdfe28 EFLAGS: 00050202 [ 115.835064][ T6338] RAX: 0000000000000006 RBX: 0000000000000000 RCX: 0000000020001480 [ 115.838456][ T6338] RDX: ffff888046062440 RSI: ffffffff88b90145 RDI: ffffffff8b8ff600 [ 115.842420][ T6338] RBP: 1ffff9200077bfc9 R08: 0000000000000000 R09: fffffbfff1fc8822 [ 115.846221][ T6338] R10: ffffffff8fe44117 R11: 0000000000000000 R12: 0000000000000006 [ 115.850070][ T6338] R13: 0000000000000007 R14: 0000000000000003 R15: dffffc0000000000 [ 115.854524][ T6338] ? __sys_socketpair+0x115/0x5a0 [ 115.857444][ T6338] __sys_socketpair+0x121/0x5a0 [ 115.860143][ T6338] ? __pfx___sys_socketpair+0x10/0x10 [ 115.862699][ T6338] ? fput+0x32/0x390 [ 115.864474][ T6338] ? __pfx_ksys_write+0x10/0x10 [ 115.866705][ T6338] __x64_sys_socketpair+0x96/0x100 [ 115.868958][ T6338] ? lockdep_hardirqs_on+0x7c/0x110 [ 115.871241][ T6338] do_syscall_64+0xcd/0x250 [ 115.873024][ T6338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.875189][ T6338] RIP: 0033:0x7fb948f75bd9 [ 115.877145][ T6338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.885945][ T6338] RSP: 002b:00007fb949db6048 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 115.889501][ T6338] RAX: ffffffffffffffda RBX: 00007fb949103f60 RCX: 00007fb948f75bd9 [ 115.892609][ T6338] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001 [ 115.895850][ T6338] RBP: 00007fb949db60a0 R08: 0000000000000000 R09: 0000000000000000 [ 115.899261][ T6338] R10: 0000000020001480 R11: 0000000000000246 R12: 0000000000000001 [ 115.902901][ T6338] R13: 000000000000000b R14: 00007fb949103f60 R15: 00007ffe990a23a8 [ 115.906822][ T6338] [ 116.111328][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 116.576314][ T10] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 116.769147][ T10] usb 8-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config [ 116.780676][ T10] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 116.796130][ T10] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 116.805580][ T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.822361][ T10] usb 8-1: config 0 descriptor?? [ 116.842817][ T10] usbhid 8-1:0.0: couldn't find an input interrupt endpoint [ 117.262019][ T6365] loop0: detected capacity change from 0 to 524287999 [ 117.582354][ T6376] syz.0.364: attempt to access beyond end of device [ 117.582354][ T6376] nbd0: rw=0, sector=0, nr_sectors = 8 limit=0 [ 117.591212][ T6376] F2FS-fs (nbd0): Unable to read 1th superblock [ 117.594307][ T6376] syz.0.364: attempt to access beyond end of device [ 117.594307][ T6376] nbd0: rw=0, sector=8, nr_sectors = 8 limit=0 [ 117.600143][ T6376] F2FS-fs (nbd0): Unable to read 2th superblock [ 117.653831][ T6379] FAULT_INJECTION: forcing a failure. [ 117.653831][ T6379] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 117.659837][ T6379] CPU: 3 PID: 6379 Comm: syz.1.365 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 117.664134][ T6379] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 117.669333][ T6379] Call Trace: [ 117.671194][ T6379] [ 117.672575][ T6379] dump_stack_lvl+0x16c/0x1f0 [ 117.674712][ T6379] should_fail_ex+0x497/0x5b0 [ 117.676806][ T6379] _copy_from_user+0x30/0xf0 [ 117.678727][ T6379] copy_msghdr_from_user+0x99/0x160 [ 117.680828][ T6379] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 117.682880][ T6379] ? __pfx___lock_acquire+0x10/0x10 [ 117.684688][ T6379] ___sys_sendmsg+0xff/0x1e0 [ 117.686348][ T6379] ? __pfx____sys_sendmsg+0x10/0x10 [ 117.688342][ T6379] ? __pfx_lock_release+0x10/0x10 [ 117.690367][ T6379] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 117.692705][ T6379] ? __fget_light+0x173/0x210 [ 117.694516][ T6379] __sys_sendmmsg+0x1a1/0x450 [ 117.696510][ T6379] ? __pfx___sys_sendmmsg+0x10/0x10 [ 117.698670][ T6379] ? vfs_write+0x14d/0x1140 [ 117.700326][ T6379] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 117.702604][ T6379] ? fput+0x32/0x390 [ 117.704287][ T6379] ? ksys_write+0x1ab/0x260 [ 117.706247][ T6379] ? __pfx_ksys_write+0x10/0x10 [ 117.708351][ T6379] __x64_sys_sendmmsg+0x9c/0x100 [ 117.710506][ T6379] ? lockdep_hardirqs_on+0x7c/0x110 [ 117.712732][ T6379] do_syscall_64+0xcd/0x250 [ 117.714540][ T6379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.716581][ T6379] RIP: 0033:0x7fb948f75bd9 [ 117.718284][ T6379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 117.725501][ T6379] RSP: 002b:00007fb949d95048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 117.728486][ T6379] RAX: ffffffffffffffda RBX: 00007fb949104038 RCX: 00007fb948f75bd9 [ 117.731315][ T6379] RDX: 00000000fffffdef RSI: 00000000200020c0 RDI: 0000000000000006 [ 117.734069][ T6379] RBP: 00007fb949d950a0 R08: 0000000000000000 R09: 0000000000000000 [ 117.736841][ T6379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 117.740251][ T6379] R13: 000000000000006e R14: 00007fb949104038 R15: 00007ffe990a23a8 [ 117.743382][ T6379] [ 117.918438][ T6390] FAULT_INJECTION: forcing a failure. [ 117.918438][ T6390] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 117.923845][ T6390] CPU: 1 PID: 6390 Comm: syz.2.368 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 117.927725][ T6390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 117.932128][ T6390] Call Trace: [ 117.933568][ T6390] [ 117.934860][ T6390] dump_stack_lvl+0x16c/0x1f0 [ 117.936815][ T6390] should_fail_ex+0x497/0x5b0 [ 117.938804][ T6390] core_sys_select+0x91b/0xb80 [ 117.941012][ T6390] ? __pfx_core_sys_select+0x10/0x10 [ 117.943759][ T6390] ? find_held_lock+0x2d/0x110 [ 117.946256][ T6390] ? __might_fault+0x13b/0x190 [ 117.948622][ T6390] ? set_user_sigmask+0x217/0x2a0 [ 117.950935][ T6390] ? __pfx_set_user_sigmask+0x10/0x10 [ 117.953159][ T6390] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 117.955663][ T6390] do_pselect.constprop.0+0x1a0/0x1f0 [ 117.957959][ T6390] ? __pfx_do_pselect.constprop.0+0x10/0x10 [ 117.960553][ T6390] ? fput+0x32/0x390 [ 117.962385][ T6390] ? ksys_write+0x1ab/0x260 [ 117.964548][ T6390] __x64_sys_pselect6+0x150/0x1d0 [ 117.967040][ T6390] do_syscall_64+0xcd/0x250 [ 117.969109][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.971537][ T6390] RIP: 0033:0x7ffb3cf75bd9 [ 117.973491][ T6390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 117.981201][ T6390] RSP: 002b:00007ffb3dcd3048 EFLAGS: 00000246 ORIG_RAX: 000000000000010e [ 117.984296][ T6390] RAX: ffffffffffffffda RBX: 00007ffb3d104038 RCX: 00007ffb3cf75bd9 [ 117.987575][ T6390] RDX: 0000000020000280 RSI: 0000000020000200 RDI: 0000000000000040 [ 117.990608][ T6390] RBP: 00007ffb3dcd30a0 R08: 0000000000000000 R09: 00000000200003c0 [ 117.994081][ T6390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 117.997409][ T6390] R13: 000000000000006e R14: 00007ffb3d104038 R15: 00007ffed4434938 [ 118.001627][ T6390] [ 118.177197][ T825] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 118.368901][ T825] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 118.376136][ T825] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 118.381084][ T825] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 118.384543][ T825] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 118.390770][ T825] usb 5-1: config 0 descriptor?? [ 118.470517][ T6399] overlayfs: failed to resolve './file1': -2 [ 118.520369][ T6404] Cannot find set identified by id 0 to match [ 118.749549][ T39] kauditd_printk_skb: 48 callbacks suppressed [ 118.749562][ T39] audit: type=1400 audit(1720114861.959:281): avc: denied { read } for pid=6415 comm="syz.1.379" name="sg0" dev="devtmpfs" ino=705 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 118.762462][ T39] audit: type=1400 audit(1720114861.959:282): avc: denied { open } for pid=6415 comm="syz.1.379" path="/dev/sg0" dev="devtmpfs" ino=705 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 118.772637][ T39] audit: type=1400 audit(1720114861.959:283): avc: denied { map } for pid=6415 comm="syz.1.379" path="/dev/sg0" dev="devtmpfs" ino=705 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 118.799243][ T39] audit: type=1400 audit(1720114862.009:284): avc: denied { connect } for pid=6417 comm="syz.1.380" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 119.294937][ T39] audit: type=1400 audit(1720114862.499:285): avc: denied { relabelfrom } for pid=6444 comm="syz.2.393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 119.297190][ T5249] usb 8-1: USB disconnect, device number 5 [ 119.315447][ T39] audit: type=1400 audit(1720114862.519:286): avc: denied { relabelto } for pid=6444 comm="syz.2.393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 119.332176][ T6445] Cannot find set identified by id 0 to match [ 119.336886][ T39] audit: type=1400 audit(1720114862.539:287): avc: denied { unmount } for pid=5208 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1 [ 119.415860][ T39] audit: type=1400 audit(1720114862.619:288): avc: denied { connect } for pid=6451 comm="syz.3.396" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 119.424134][ T39] audit: type=1400 audit(1720114862.629:289): avc: denied { setopt } for pid=6451 comm="syz.3.396" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 119.433117][ T39] audit: type=1400 audit(1720114862.629:290): avc: denied { bind } for pid=6451 comm="syz.3.396" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 119.588055][ T6464] loop0: detected capacity change from 0 to 7 [ 119.592324][ T6464] Dev loop0: unable to read RDB block 7 [ 119.595281][ T6464] loop0: unable to read partition table [ 119.598930][ T6464] loop0: partition table beyond EOD, truncated [ 119.602030][ T6464] loop_reread_partitions: partition scan of loop0 (被xڬdƤݡ [ 119.602030][ T6464] ) failed (rc=-5) [ 119.602058][ T6467] bridge0: port 3(team0) entered blocking state [ 119.614940][ T6467] bridge0: port 3(team0) entered disabled state [ 119.619953][ T6467] team0: entered allmulticast mode [ 119.625751][ T6467] team_slave_0: entered allmulticast mode [ 119.631269][ T6467] team_slave_1: entered allmulticast mode [ 119.641609][ T6467] team0: entered promiscuous mode [ 119.645938][ T6467] team_slave_0: entered promiscuous mode [ 119.650639][ T6467] team_slave_1: entered promiscuous mode [ 119.660164][ T6467] bridge0: port 3(team0) entered blocking state [ 119.663461][ T6467] bridge0: port 3(team0) entered forwarding state [ 119.693464][ T6469] Cannot find set identified by id 0 to match [ 119.750373][ T6478] __nla_validate_parse: 2 callbacks suppressed [ 119.750391][ T6478] netlink: 28 bytes leftover after parsing attributes in process `syz.2.406'. [ 119.757929][ T6478] netlink: 8 bytes leftover after parsing attributes in process `syz.2.406'. [ 120.070818][ T6502] Cannot find set identified by id 0 to match [ 120.116252][ T5249] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 120.279233][ T6507] netlink: 28 bytes leftover after parsing attributes in process `syz.2.418'. [ 120.283188][ T6507] netlink: 8 bytes leftover after parsing attributes in process `syz.2.418'. [ 120.318728][ T5249] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 120.323121][ T5249] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 120.326689][ T5249] usb 8-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00 [ 120.330165][ T5249] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 120.336080][ T5249] usb 8-1: config 0 descriptor?? [ 120.696128][ T55] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 120.705132][ T10] usb 5-1: USB disconnect, device number 4 [ 120.748054][ T6490] netlink: 4 bytes leftover after parsing attributes in process `syz.3.411'. [ 120.818056][ T6490] batman_adv: batadv1: Adding interface: netdevsim0 [ 120.821016][ T6490] batman_adv: batadv1: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 120.832802][ T6490] batman_adv: batadv1: Interface activated: netdevsim0 [ 120.857953][ T5249] usbhid 8-1:0.0: can't add hid device: -71 [ 120.863914][ T5249] usbhid 8-1:0.0: probe with driver usbhid failed with error -71 [ 120.869918][ T5249] usb 8-1: USB disconnect, device number 6 [ 120.878545][ T55] usb 7-1: Using ep0 maxpacket: 16 [ 120.886745][ T55] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 120.891303][ T55] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 120.895552][ T55] usb 7-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00 [ 120.900054][ T55] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 120.905597][ T55] usb 7-1: config 0 descriptor?? [ 121.159394][ T1090] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 121.297489][ T1090] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 121.405603][ T1090] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 121.414499][ T5217] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 121.422079][ T5217] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 121.425892][ T5217] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 121.431084][ T5217] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 121.435641][ T5217] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 121.439581][ T5217] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 121.477773][ T6519] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 121.482233][ T6519] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 121.526770][ T1090] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 121.527211][ T55] hid-generic 0003:0158:0100.000A: unknown main item tag 0x1 [ 121.536320][ T55] hid-generic 0003:0158:0100.000A: unexpected long global item [ 121.540527][ T55] hid-generic 0003:0158:0100.000A: probe with driver hid-generic failed with error -22 [ 121.709268][ T1090] bridge_slave_1: left allmulticast mode [ 121.711737][ T1090] bridge_slave_1: left promiscuous mode [ 121.712485][ T58] usb 7-1: USB disconnect, device number 8 [ 121.715809][ T1090] bridge0: port 2(bridge_slave_1) entered disabled state [ 121.734696][ T1090] bridge_slave_0: left allmulticast mode [ 121.737280][ T1090] bridge_slave_0: left promiscuous mode [ 121.739836][ T1090] bridge0: port 1(bridge_slave_0) entered disabled state [ 122.250575][ T6551] Cannot find set identified by id 0 to match [ 122.264110][ T1090] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 122.282819][ T1090] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 122.300473][ T1090] bond0 (unregistering): Released all slaves [ 122.318770][ T6533] chnl_net:caif_netlink_parms(): no params data found [ 122.648683][ T6533] bridge0: port 1(bridge_slave_0) entered blocking state [ 122.652124][ T6533] bridge0: port 1(bridge_slave_0) entered disabled state [ 122.655296][ T6533] bridge_slave_0: entered allmulticast mode [ 122.659726][ T6533] bridge_slave_0: entered promiscuous mode [ 122.668979][ T6571] lo: entered promiscuous mode [ 122.671050][ T6571] lo: entered allmulticast mode [ 122.696227][ T6533] bridge0: port 2(bridge_slave_1) entered blocking state [ 122.699441][ T6533] bridge0: port 2(bridge_slave_1) entered disabled state [ 122.702575][ T6533] bridge_slave_1: entered allmulticast mode [ 122.715131][ T6533] bridge_slave_1: entered promiscuous mode [ 122.850216][ T57] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 122.883400][ T6533] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 122.893615][ T6533] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 123.003143][ T6533] team0: Port device team_slave_0 added [ 123.014817][ T1090] hsr_slave_0: left promiscuous mode [ 123.022990][ T1090] hsr_slave_1: left promiscuous mode [ 123.029275][ T6576] kvm: emulating exchange as write [ 123.032220][ T1090] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 123.035495][ T1090] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 123.040241][ T1090] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 123.043464][ T1090] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 123.048002][ T57] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 123.051841][ T57] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 123.056427][ T57] usb 8-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00 [ 123.061156][ T57] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 123.070864][ T57] usb 8-1: config 0 descriptor?? [ 123.080529][ T1090] veth1_macvtap: left promiscuous mode [ 123.083980][ T1090] veth0_macvtap: left promiscuous mode [ 123.087184][ T1090] veth1_vlan: left promiscuous mode [ 123.090168][ T1090] veth0_vlan: left promiscuous mode [ 123.201520][ T1090] pimreg (unregistering): left allmulticast mode [ 123.536190][ T5217] Bluetooth: hci1: command tx timeout [ 123.909486][ T1090] team0 (unregistering): Port device team_slave_1 removed [ 123.990437][ T1090] team0 (unregistering): Port device team_slave_0 removed [ 124.160846][ T39] kauditd_printk_skb: 30 callbacks suppressed [ 124.160864][ T39] audit: type=1400 audit(1720114867.369:321): avc: denied { bind } for pid=6588 comm="syz.2.442" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 124.406434][ T39] audit: type=1326 audit(1720114867.619:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6590 comm="syz.2.443" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffb3cf75bd9 code=0x0 [ 124.417779][ T5217] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 124.421469][ T5217] Bluetooth: hci0: Injecting HCI hardware error event [ 124.425020][ T5217] Bluetooth: hci0: hardware error 0x00 [ 124.483001][ T5217] ------------[ cut here ]------------ [ 124.485640][ T5217] ida_free called for id=8192 which is not allocated. [ 124.494913][ T5217] WARNING: CPU: 0 PID: 5217 at lib/idr.c:525 ida_free+0x1fb/0x2f0 [ 124.500535][ T5217] Modules linked in: [ 124.518717][ T5217] CPU: 0 PID: 5217 Comm: kworker/u33:4 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 124.524448][ T5217] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 124.529756][ T5217] Workqueue: hci0 hci_error_reset [ 124.531928][ T5217] RIP: 0010:ida_free+0x1fb/0x2f0 [ 124.534222][ T5217] Code: bb f6 41 83 fe 3e 76 73 e8 f2 fa bb f6 48 8b 7c 24 28 4c 89 ee e8 c5 0c 19 00 90 48 c7 c7 e0 2b 81 8c 89 ee e8 96 15 7e f6 90 <0f> 0b 90 90 e8 cc fa bb f6 48 b8 00 00 00 00 00 fc ff df 48 01 c3 [ 124.541951][ T5217] RSP: 0018:ffffc9000342fa38 EFLAGS: 00010286 SYZFAIL: failed to recv rpc fd=3 want=4 sent=0 n=0 (errno 9: Bad file descriptor) [ 124.544573][ T5217] RAX: 0000000000000000 RBX: 1ffff92000685f48 RCX: ffffffff81500069 [ 124.548602][ T5217] RDX: ffff88801d348000 RSI: ffffffff81500076 RDI: 0000000000000001 [ 124.551888][ T5217] RBP: 0000000000002000 R08: 0000000000000001 R09: 0000000000000000 [ 124.554870][ T5217] R10: 0000000000000001 R11: 0000000000000004 R12: 0000000000000000 [ 124.558363][ T5217] R13: 0000000000000293 R14: 0000000000000000 R15: 0000000000000000 [ 124.561608][ T5217] FS: 0000000000000000(0000) GS:ffff88806b000000(0000) knlGS:0000000000000000 [ 124.565264][ T5217] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 124.568304][ T5217] CR2: 000000110c3f0c5c CR3: 0000000026a3c000 CR4: 0000000000350ef0 [ 124.571027][ T5217] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 124.574033][ T5217] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 124.577489][ T5217] Call Trace: [ 124.578953][ T5217] [ 124.580291][ T5217] ? show_regs+0x8c/0xa0 [ 124.587986][ T5217] ? __warn+0xe5/0x3c0 [ 124.589766][ T5217] ? preempt_schedule_notrace+0x62/0xe0 [ 124.592085][ T5217] ? ida_free+0x1fb/0x2f0 [ 124.593906][ T5217] ? report_bug+0x3c0/0x580 [ 124.595909][ T5217] ? handle_bug+0x3d/0x70 [ 124.598206][ T5217] ? exc_invalid_op+0x17/0x50 [ 124.601067][ T5217] ? asm_exc_invalid_op+0x1a/0x20 [ 124.601128][ T5217] ? __warn_printk+0x199/0x350 [ 124.605554][ T5217] ? __warn_printk+0x1a6/0x350 [ 124.607982][ T5217] ? ida_free+0x1fb/0x2f0 [ 124.609870][ T5217] ? ida_free+0x1fa/0x2f0 [ 124.611665][ T5217] ? __pfx_ida_free+0x10/0x10 [ 124.613667][ T5217] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 124.615845][ T5217] hci_conn_del+0x768/0xdb0 [ 124.618037][ T5217] hci_conn_hash_flush+0x18f/0x260 [ 124.620346][ T5217] hci_dev_close_sync+0x591/0x1100 [ 124.622466][ T5217] ? __pfx_bt_err+0x10/0x10 [ 124.624363][ T5217] ? __pfx_hci_dev_close_sync+0x10/0x10 [ 124.626434][ T5217] ? __pfx_lock_acquire+0x10/0x10 [ 124.628123][ T5217] ? __pfx_lock_release+0x10/0x10 [ 124.629935][ T5217] hci_dev_do_close+0x2e/0x90 [ 124.631763][ T5217] hci_error_reset+0xbf/0x320 [ 124.633763][ T5217] process_one_work+0x9c5/0x1b40 [ 124.635797][ T5217] ? __pfx_hci_rx_work+0x10/0x10 [ 124.638230][ T5217] ? __pfx_process_one_work+0x10/0x10 [ 124.640096][ T5217] ? assign_work+0x1a0/0x250 [ 124.641912][ T5217] worker_thread+0x6c8/0xf30 [ 124.643563][ T5217] ? __pfx_worker_thread+0x10/0x10 [ 124.645801][ T5217] kthread+0x2c1/0x3a0 [ 124.648047][ T5217] ? _raw_spin_unlock_irq+0x23/0x50 [ 124.650351][ T5217] ? __pfx_kthread+0x10/0x10 [ 124.652057][ T5217] ret_from_fork+0x45/0x80 [ 124.653910][ T5217] ? __pfx_kthread+0x10/0x10 [ 124.655869][ T5217] ret_from_fork_asm+0x1a/0x30 [ 124.658253][ T5217] [ 124.659316][ T5217] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 124.661794][ T5217] CPU: 0 PID: 5217 Comm: kworker/u33:4 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 124.665214][ T5217] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 124.669365][ T5217] Workqueue: hci0 hci_error_reset [ 124.671114][ T5217] Call Trace: [ 124.672461][ T5217] [ 124.673727][ T5217] dump_stack_lvl+0x3d/0x1f0 [ 124.675661][ T5217] panic+0x6f5/0x7a0 [ 124.677482][ T5217] ? __pfx_panic+0x10/0x10 [ 124.679298][ T5217] ? show_trace_log_lvl+0x363/0x500 [ 124.681271][ T5217] ? check_panic_on_warn+0x1f/0xb0 [ 124.683237][ T5217] ? ida_free+0x1fb/0x2f0 [ 124.684832][ T5217] check_panic_on_warn+0xab/0xb0 [ 124.686698][ T5217] __warn+0xf1/0x3c0 [ 124.688170][ T5217] ? preempt_schedule_notrace+0x62/0xe0 [ 124.690279][ T5217] ? ida_free+0x1fb/0x2f0 [ 124.692040][ T5217] report_bug+0x3c0/0x580 [ 124.693833][ T5217] handle_bug+0x3d/0x70 [ 124.695440][ T5217] exc_invalid_op+0x17/0x50 [ 124.697450][ T5217] asm_exc_invalid_op+0x1a/0x20 [ 124.699457][ T5217] RIP: 0010:ida_free+0x1fb/0x2f0 [ 124.701649][ T5217] Code: bb f6 41 83 fe 3e 76 73 e8 f2 fa bb f6 48 8b 7c 24 28 4c 89 ee e8 c5 0c 19 00 90 48 c7 c7 e0 2b 81 8c 89 ee e8 96 15 7e f6 90 <0f> 0b 90 90 e8 cc fa bb f6 48 b8 00 00 00 00 00 fc ff df 48 01 c3 [ 124.708729][ T5217] RSP: 0018:ffffc9000342fa38 EFLAGS: 00010286 [ 124.711063][ T5217] RAX: 0000000000000000 RBX: 1ffff92000685f48 RCX: ffffffff81500069 [ 124.714281][ T5217] RDX: ffff88801d348000 RSI: ffffffff81500076 RDI: 0000000000000001 [ 124.717479][ T5217] RBP: 0000000000002000 R08: 0000000000000001 R09: 0000000000000000 [ 124.720409][ T5217] R10: 0000000000000001 R11: 0000000000000004 R12: 0000000000000000 [ 124.723581][ T5217] R13: 0000000000000293 R14: 0000000000000000 R15: 0000000000000000 [ 124.726840][ T5217] ? __warn_printk+0x199/0x350 [ 124.728802][ T5217] ? __warn_printk+0x1a6/0x350 [ 124.730822][ T5217] ? ida_free+0x1fa/0x2f0 [ 124.732567][ T5217] ? __pfx_ida_free+0x10/0x10 [ 124.734466][ T5217] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 124.736620][ T5217] hci_conn_del+0x768/0xdb0 [ 124.738492][ T5217] hci_conn_hash_flush+0x18f/0x260 [ 124.740548][ T5217] hci_dev_close_sync+0x591/0x1100 [ 124.742631][ T5217] ? __pfx_bt_err+0x10/0x10 [ 124.744445][ T5217] ? __pfx_hci_dev_close_sync+0x10/0x10 [ 124.746685][ T5217] ? __pfx_lock_acquire+0x10/0x10 [ 124.748705][ T5217] ? __pfx_lock_release+0x10/0x10 [ 124.750749][ T5217] hci_dev_do_close+0x2e/0x90 [ 124.752667][ T5217] hci_error_reset+0xbf/0x320 [ 124.754583][ T5217] process_one_work+0x9c5/0x1b40 [ 124.756694][ T5217] ? __pfx_hci_rx_work+0x10/0x10 [ 124.758815][ T5217] ? __pfx_process_one_work+0x10/0x10 [ 124.761091][ T5217] ? assign_work+0x1a0/0x250 [ 124.762876][ T5217] worker_thread+0x6c8/0xf30 [ 124.764781][ T5217] ? __pfx_worker_thread+0x10/0x10 [ 124.767002][ T5217] kthread+0x2c1/0x3a0 [ 124.768731][ T5217] ? _raw_spin_unlock_irq+0x23/0x50 [ 124.770900][ T5217] ? __pfx_kthread+0x10/0x10 [ 124.772870][ T5217] ret_from_fork+0x45/0x80 [ 124.774769][ T5217] ? __pfx_kthread+0x10/0x10 [ 124.776671][ T5217] ret_from_fork_asm+0x1a/0x30 [ 124.778652][ T5217] [ 124.780567][ T5217] Kernel Offset: disabled [ 124.782460][ T5217] Rebooting in 86400 seconds.. VM DIAGNOSIS: 17:41:07 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=0000000000000004 RCX=ffffffff813cddc1 RDX=ffff88801d348000 RSI=0000000000000005 RDI=0000000000000001 RBP=ffffffff8b29cba0 RSP=ffffc90000007958 R8 =0000000000000001 R9 =0000000000000005 R10=0000000000000005 R11=0000000000000007 R12=0000000000000005 R13=0000000000000001 R14=0000000000000008 R15=ffffc90000007a45 RIP=ffffffff818dddcd RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b000000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c3f0c5c CR3=0000000026a3c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000080000001 Opmask01=0000000000000000 Opmask02=0000000080000000 Opmask03=0000000000000000 Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffec2b2c620 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c5f5f0045544156 4952505f4342494c ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000042494c ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6362696c5f5f0045 5441564952505f43 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00746e6576652072 6f72726520657261 7764726168204943 4820676e69746300 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0074646576652072 6572726520657261 7764726162204343 4220676463746300 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 302e30323120205b 0000310030302e30 203d656361746144 203a620000303031 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 002e30303120205b 0000310030302e30 2033626361376130 2030610000302000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 003a723a376f6e65 692a336e683f3d6c 6939686c6c3d723a 377a632a3a377e6b ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a377e697f6e6578 0a0a3b556f7c6b66 79557c6e6b7e6b68 2a306e0a0a3b376f ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=ffffc90004b20000 RBX=0000000000000000 RCX=ffff888023910f90 RDX=000000000000009d RSI=ffffffff86343900 RDI=ffff888023911168 RBP=0000000000000001 RSP=ffffc9000324fb38 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000 R12=0000000000000001 R13=0000000000004e20 R14=ffff888023910f90 R15=0000000000000001 RIP=ffffffff8634393d RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000555585afd500 ffffffff 00c00000 GS =0000 ffff88806b100000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000110c35ffa9 CR3=0000000044caa000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=0000000000000fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff813cd9f6 ffffffff813cda18 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff813cda18 ffffffff813cd9f6 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 ffffffff813cd9f6 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3cfe4325 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3cfe4332 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3cfe432c ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3cfe4340 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3cfe43c6 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3cfe44a4 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3d0d4488 00007ffb3d0d4480 00007ffb3d0d4478 00007ffb3d0d4450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3dc3d100 00007ffb3d0d4440 00007ffb00040008 000c00130014000c ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3d0d4498 00007ffb3d0d4490 00007ffb3d0d4488 00007ffb3d0d4480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=00000000000eb3a9 RBX=0000000000000002 RCX=ffffffff8ae75899 RDX=0000000000000000 RSI=ffffffff8b2caf00 RDI=ffffffff8b8ff600 RBP=ffffed1002fd9000 RSP=ffffc90000197e08 R8 =0000000000000001 R9 =ffffed100d646fdd R10=ffff88806b237eeb R11=0000000000000000 R12=0000000000000002 R13=ffff888017ec8000 R14=ffffffff8fe44110 R15=0000000000000000 RIP=ffffffff8ae76c8f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b200000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000001b31515ff8 CR3=0000000025702000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd11d01c70 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f29525e4325 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f29525e4332 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f29525e432c ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f29525e4340 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f29525e43c6 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f29525e44a4 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000d0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 00000000000000d0 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=00000000001079e7 RBX=0000000000000003 RCX=ffffffff8ae75899 RDX=0000000000000000 RSI=ffffffff8b2caf00 RDI=ffffffff8b8ff600 RBP=ffffed1002fd9488 RSP=ffffc900001a7e08 R8 =0000000000000001 R9 =ffffed100d666fdd R10=ffff88806b337eeb R11=0000000000000000 R12=0000000000000003 R13=ffff888017eca440 R14=ffffffff8fe44110 R15=0000000000000000 RIP=ffffffff8ae76c8f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00000000 FS =0000 0000000000000000 ffffffff 00000000 GS =0000 ffff88806b300000 ffffffff 00000000 LDT=0000 0000000000000000 ffffffff 00000000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffb3dc6efc8 CR3=000000001f888000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000800008 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffed4434c40 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3cfe4325 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3cfe4332 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3cfe432c ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3cfe4340 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3cfe43c6 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb3cfe44a4 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000