last executing test programs: 6.408725854s ago: executing program 0 (id=2248): syz_usb_connect(0x0, 0x2d, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000091c2f20c81403006c050102030109021b00010000000009040000018ea44300090585da24"], 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000880), 0x200000000000002, 0x862b01) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, 0x0) chdir(&(0x7f0000000000)='./file0\x00') r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000700000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='ext4_es_lookup_extent_enter\x00', r1}, 0x10) bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)=@generic={&(0x7f0000000080)='./file0\x00', r2}, 0x18) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000580)=@generic={&(0x7f0000000340)='./file0\x00'}, 0x18) ioctl$HIDIOCGCOLLECTIONINDEX(0xffffffffffffffff, 0x40184810, &(0x7f0000000140)={0x3}) ioctl$EVIOCSABS0(0xffffffffffffffff, 0x401845c0, &(0x7f0000000080)={0x5, 0x0, 0x0, 0x2}) write$char_usb(r0, &(0x7f0000000040)="e2", 0x2250) 5.00670301s ago: executing program 2 (id=2255): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{}]}) pipe(&(0x7f0000000140)) r1 = socket$inet_udp(0x2, 0x2, 0x0) close(r1) socket$nl_route(0x10, 0x3, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'team_slave_1\x00'}) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a94000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000259000/0x4000)=nil) r3 = userfaultfd(0x80001) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000)) ioctl$UFFDIO_COPY(r3, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000c75000/0x4000)=nil, &(0x7f000025a000/0x3000)=nil, 0x4000}) 4.993148495s ago: executing program 2 (id=2256): openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="0201503a0036000100011a0200010003050800000180759b010900110402000d0006000400ff071f6d2d25dd5a89df0600070504000500f8ff110702000400"], 0x3f) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043e1f22"], 0x22) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) bind$inet6(0xffffffffffffffff, 0x0, 0x0) socket$inet_dccp(0x2, 0x6, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = syz_open_dev$cec(&(0x7f00000002c0), 0x0, 0x400) ioctl$CEC_DQEVENT(r0, 0xc0506107, &(0x7f0000000300)) 4.86631828s ago: executing program 0 (id=2257): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000004000000000000000000008500000050000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78) syz_emit_ethernet(0x83, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) listen(0xffffffffffffffff, 0x0) syz_io_uring_setup(0x2705, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000480), &(0x7f0000001440)) syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=^d,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYRESDEC=r0]) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000040)) r5 = socket$inet_udp(0x2, 0x2, 0x0) close(r5) socket$nl_route(0x10, 0x3, 0x0) write$binfmt_script(r3, &(0x7f0000020240), 0x10010) splice(r2, 0x0, r5, 0x0, 0x100000004, 0x0) 4.798477638s ago: executing program 2 (id=2258): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) socket$nl_route(0x10, 0x3, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/snmp\x00') read(r1, &(0x7f0000001a00)=""/177, 0xb1) r2 = open(0x0, 0x0, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) setpriority(0x2, 0x0, 0x3) r3 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@bloom_filter={0x1e, 0x0, 0x100, 0x8001, 0x480, r2, 0x9, '\x00', 0x0, r1, 0x4, 0x2, 0x3, 0xe}, 0x48) r4 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r4, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c) r5 = socket$packet(0x11, 0x2, 0x300) bind$packet(r5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x14) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r3, &(0x7f0000000140), &(0x7f0000000000)=""/82}, 0x20) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8}, 0x86) socket$nl_route(0x10, 0x3, 0x0) 3.620585868s ago: executing program 2 (id=2265): r0 = socket$inet6(0xa, 0x3, 0xff) setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000140)=ANY=[@ANYBLOB="00020201"], 0x18) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r3 = memfd_create(&(0x7f0000000140)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3J\x82t\x96\xf8\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%QF\x03\b\x9dh\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8T\x00\x00\x00\x00\x00\x00\x00', 0x4) fallocate(r3, 0x0, 0x0, 0x2400001) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001480)=ANY=[], 0x3c}}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$kcm(0x10, 0x400000002, 0x0) write$cgroup_subtree(r4, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33) recvmsg(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000001600)=""/4098, 0x1002}, {&(0x7f0000000140)=""/4092, 0xffc}, {&(0x7f0000003540)=""/4102, 0x1006}, {&(0x7f0000001540)=""/172, 0xac}, {&(0x7f0000001240)=""/118, 0x76}], 0x5}, 0x0) write$binfmt_elf64(r3, &(0x7f0000002640)=ANY=[@ANYBLOB], 0x8e2) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x1801}, 0x48) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000001180), 0x404000, 0x0) writev(r6, &(0x7f0000000800)=[{&(0x7f0000000c00)="89e7ee2c7cdad9b4b4", 0x9}, {&(0x7f00000005c0)="c2c180", 0x3}], 0x2) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000001500)={'syztnl2\x00', &(0x7f0000002fc0)={'ip6tnl0\x00', 0x0, 0x29, 0x2, 0x2, 0x0, 0x11, @local, @ipv4={'\x00', '\xff\xff', @loopback}, 0x8, 0x7, 0x1, 0x9}}) r8 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000003040)=0xffffffffffffffff, 0x4) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000031c0)={0x6, 0x3, &(0x7f0000001140)=ANY=[@ANYBLOB="9c28829822d7cec79024f300001db30af95ce6"], &(0x7f00000012c0)='GPL\x00', 0x401, 0x1000, &(0x7f0000004580)=""/4096, 0x41100, 0x21, '\x00', r7, 0x25, r8, 0x8, &(0x7f0000003080)={0x5, 0x5}, 0x8, 0x10, &(0x7f00000030c0)={0x2, 0x6, 0x7, 0xc107}, 0x10, 0x0, 0x0, 0x9, &(0x7f0000003100)=[r1, r1, r1, 0xffffffffffffffff], &(0x7f00000033c0)=[{0x0, 0x5, 0x8}, {0x1, 0x3, 0xe}, {0x5, 0x1, 0xb, 0xc}, {0x0, 0x3, 0x7, 0x8}, {0x1, 0x4, 0x10, 0x8}, {0x4, 0x4, 0xc, 0x8}, {0x5, 0x5, 0xb, 0x5}, {0x4, 0x4, 0xb, 0x1}, {0x2, 0x2, 0x3, 0x9}], 0x10, 0x8}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r5}, &(0x7f0000000240), &(0x7f00000003c0)}, 0x20) connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}, 0x4}, 0x1c) openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) r9 = socket$inet6(0xa, 0x2, 0x0) setsockopt$sock_int(r9, 0x1, 0x2, &(0x7f0000000080)=0x7, 0x4) gettid() bind$inet6(r9, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @mcast1, 0x1f}, 0x1c) ioctl$HIDIOCGRAWPHYS(0xffffffffffffffff, 0x80404805, &(0x7f0000000040)) 3.395654461s ago: executing program 0 (id=2270): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) socket$nl_route(0x10, 0x3, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/snmp\x00') read(r1, &(0x7f0000001a00)=""/177, 0xb1) r2 = open(0x0, 0x0, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) setpriority(0x2, 0x0, 0x3) r3 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@bloom_filter={0x1e, 0x0, 0x100, 0x8001, 0x480, r2, 0x9, '\x00', 0x0, r1, 0x4, 0x2, 0x3, 0xe}, 0x48) r4 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r4, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c) r5 = socket$packet(0x11, 0x2, 0x300) bind$packet(r5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x14) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r3, &(0x7f0000000140), &(0x7f0000000000)=""/82}, 0x20) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8}, 0x86) socket$nl_route(0x10, 0x3, 0x0) 2.944888102s ago: executing program 2 (id=2271): r0 = socket$packet(0x11, 0x0, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000280)={0x0, 0x0}, 0x10) 2.858975079s ago: executing program 2 (id=2273): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000000300)=""/102400, 0x19000) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100), 0x141a42, 0x0) mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0) r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000040ac054382408b0b00000109022400010000002009040000fd0301000009210000000122010009058103"], 0x0) syz_usb_control_io$hid(r1, 0x0, 0x0) syz_usb_control_io$hid(r1, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="002281"], 0x0}, 0x0) r2 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x8001) ioctl$HIDIOCSREPORT(r2, 0x81044804, 0x0) syz_usb_control_io$hid(r1, 0x0, 0x0) syz_usb_control_io$hid(r1, &(0x7f00000002c0)={0x24, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0003"], 0x0, 0x0}, 0x0) syz_usb_control_io(r1, &(0x7f0000000680)={0x18, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="972b02749d544b0002008000"], 0x0, 0x0, 0x0}, 0x0) execveat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x0, 0x0, 0x0) r3 = openat$ttyprintk(0xffffff9c, &(0x7f00000194c0), 0x800, 0x0) ioctl$KDSKBENT(r3, 0x4b47, &(0x7f0000019500)={0x1, 0x8, 0x7f}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x10) prlimit64(0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0)) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) r5 = dup(r4) write$UHID_INPUT(r5, &(0x7f00000029c0)={0xc, {"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", 0x1000}}, 0x1006) ioctl$GIO_CMAP(r4, 0x4b70, &(0x7f0000000000)) symlinkat(&(0x7f00000001c0)='./file2/file0\x00', 0xffffffffffffffff, &(0x7f0000000180)='./file2\x00') 2.161162908s ago: executing program 0 (id=2280): r0 = socket$inet6(0xa, 0x3, 0xff) setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000140)=ANY=[@ANYBLOB="00020201"], 0x18) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r3 = memfd_create(&(0x7f0000000140)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3J\x82t\x96\xf8\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%QF\x03\b\x9dh\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8T\x00\x00\x00\x00\x00\x00\x00', 0x4) fallocate(r3, 0x0, 0x0, 0x2400001) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001480)=ANY=[], 0x3c}}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$kcm(0x10, 0x400000002, 0x0) write$cgroup_subtree(r4, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33) recvmsg(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000001600)=""/4098, 0x1002}, {&(0x7f0000000140)=""/4092, 0xffc}, {&(0x7f0000003540)=""/4102, 0x1006}, {&(0x7f0000001540)=""/172, 0xac}, {&(0x7f0000001240)=""/118, 0x76}], 0x5}, 0x0) write$binfmt_elf64(r3, &(0x7f0000002640)=ANY=[@ANYBLOB], 0x8e2) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x1801}, 0x48) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000001180), 0x404000, 0x0) writev(r6, &(0x7f0000000800)=[{&(0x7f0000000c00)="89e7ee2c7cdad9b4b4", 0x9}, {&(0x7f00000005c0)="c2c180", 0x3}], 0x2) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000001500)={'syztnl2\x00', &(0x7f0000002fc0)={'ip6tnl0\x00', 0x0, 0x29, 0x2, 0x2, 0x0, 0x11, @local, @ipv4={'\x00', '\xff\xff', @loopback}, 0x8, 0x7, 0x1, 0x9}}) r8 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000003040)=0xffffffffffffffff, 0x4) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000031c0)={0x6, 0x3, &(0x7f0000001140)=ANY=[@ANYBLOB="9c28829822d7cec79024f300001db30af95ce6"], &(0x7f00000012c0)='GPL\x00', 0x401, 0x1000, &(0x7f0000004580)=""/4096, 0x41100, 0x21, '\x00', r7, 0x25, r8, 0x8, &(0x7f0000003080)={0x5, 0x5}, 0x8, 0x10, &(0x7f00000030c0)={0x2, 0x6, 0x7, 0xc107}, 0x10, 0x0, 0x0, 0x9, &(0x7f0000003100)=[r1, r1, r1, 0xffffffffffffffff], &(0x7f00000033c0)=[{0x0, 0x5, 0x8}, {0x1, 0x3, 0xe}, {0x5, 0x1, 0xb, 0xc}, {0x0, 0x3, 0x7, 0x8}, {0x1, 0x4, 0x10, 0x8}, {0x4, 0x4, 0xc, 0x8}, {0x5, 0x5, 0xb, 0x5}, {0x4, 0x4, 0xb, 0x1}, {0x2, 0x2, 0x3, 0x9}], 0x10, 0x8}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r5}, &(0x7f0000000240), &(0x7f00000003c0)}, 0x20) connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}, 0x4}, 0x1c) openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) r9 = socket$inet6(0xa, 0x2, 0x0) setsockopt$sock_int(r9, 0x1, 0x2, &(0x7f0000000080)=0x7, 0x4) gettid() bind$inet6(r9, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @mcast1, 0x1f}, 0x1c) ioctl$HIDIOCGRAWPHYS(0xffffffffffffffff, 0x80404805, &(0x7f0000000040)) 1.480646939s ago: executing program 0 (id=2287): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{}]}) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a94000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000259000/0x4000)=nil) r1 = userfaultfd(0x80001) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000000)) ioctl$UFFDIO_COPY(r1, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000c75000/0x4000)=nil, &(0x7f000025a000/0x3000)=nil, 0x4000}) 1.432244229s ago: executing program 0 (id=2289): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000000300)=""/102400, 0x19000) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100), 0x141a42, 0x0) mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0) r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000040ac054382408b0b00000109022400010000002009040000fd0301000009210000000122010009058103"], 0x0) syz_usb_control_io$hid(r1, 0x0, 0x0) syz_usb_control_io$hid(r1, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="002281"], 0x0}, 0x0) r2 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x8001) ioctl$HIDIOCSREPORT(r2, 0x81044804, &(0x7f0000000400)={0x1}) syz_usb_control_io$hid(r1, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000002c0)={0x24, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0003"], 0x0, 0x0}, 0x0) syz_usb_control_io(r1, &(0x7f0000000680)={0x18, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="972b02749d544b0002008000"], 0x0, 0x0, 0x0}, 0x0) execveat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x0, 0x0, 0x0) r3 = openat$ttyprintk(0xffffff9c, &(0x7f00000194c0), 0x800, 0x0) ioctl$KDSKBENT(r3, 0x4b47, &(0x7f0000019500)={0x1, 0x8, 0x7f}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x10) prlimit64(0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0)) 1.16430248s ago: executing program 1 (id=2291): r0 = socket$netlink(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000031401000007000000000000090002"], 0x38}}, 0x0) 1.070261296s ago: executing program 1 (id=2294): socket$packet(0x11, 0x3, 0x300) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r2, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="a00000001000370400000000ffdbdf3500000000", @ANYRES32=r3, @ANYBLOB="8304050000000000800012800e00010069703665727370616e0000006c000280140006002001000000000000000000000000000214000600fc02000000000000000000000000000108000d000300000014000700ff02000000000000000000000000000104001200", @ANYRES32=r3, @ANYBLOB="080004000000"], 0xa0}}, 0x0) sendto$packet(r0, 0x0, 0x0, 0x24000001, &(0x7f0000000100)={0x11, 0x2, r3, 0x1, 0x1, 0x6, @remote}, 0x14) 936.241467ms ago: executing program 3 (id=2295): socket$packet(0x11, 0x3, 0x300) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r2, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="a00000001000370400000000ffdbdf3500000000", @ANYRES32=r3, @ANYBLOB="8304050000000000800012800e00010069703665727370616e0000006c000280140006002001000000000000000000000000000214000600fc02000000000000000000000000000108000d000300000014000700ff02000000000000000000000000000104001200", @ANYRES32=r3, @ANYBLOB="080004000000"], 0xa0}}, 0x0) sendto$packet(r0, 0x0, 0x0, 0x24000001, &(0x7f0000000100)={0x11, 0x2, r3, 0x1, 0x1, 0x6, @remote}, 0x14) (fail_nth: 1) 923.500023ms ago: executing program 1 (id=2296): r0 = socket$packet(0x11, 0x3, 0x300) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r3, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_NEW_INTERFACE(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x2c, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan3\x00'}]}, 0x2c}}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan3\x00', 0x0}) r8 = syz_genetlink_get_family_id$nl802154(&(0x7f00000003c0), 0xffffffffffffffff) socket$nl_route(0x10, 0x3, 0x0) r9 = syz_open_dev$evdev(&(0x7f0000000340), 0x0, 0x2000) ioctl$EVIOCGVERSION(r9, 0x5452, &(0x7f0000002200)=""/188) r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r10, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000140)={0x24, r8, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_PID={0x8}]}, 0x24}}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wpan1\x00', 0x0}) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r10, 0x8933, &(0x7f0000000200)={'wpan4\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_DEV(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)={0x44, r5, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r12}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r13}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r14}]}, 0x44}, 0x1, 0x0, 0x0, 0x50800}, 0x4) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYRESOCT=r0, @ANYRES8=r0, @ANYBLOB="8304050000000000800012800e00010069703665727370616e0000006c000280140006002001000000000000000000000000000214000600fc02000000000000000000000000000108000d000300000014000700ff020000000000000000000000000001040012002f484661990c7fefad847dda24b1153d30ad03b865c12200190bbbd1b1e65196fc30b60e8dbfcdadcfe6d5b9e7047b2daeb9152c00d05667ffa449bf7e70fe1316bcb2cfbd8cbcaeb411dd8e4767428f85f6fdd333837b154ace3c", @ANYRES32=r4, @ANYBLOB="080004000000"], 0xa0}, 0x1, 0x0, 0x0, 0x50}, 0x0) sendto$packet(r1, 0x0, 0x0, 0x24000001, &(0x7f0000000100)={0x11, 0x6, r4, 0x1, 0x3, 0x6, @remote}, 0x14) 709.632359ms ago: executing program 1 (id=2297): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a94000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000259000/0x4000)=nil) r1 = userfaultfd(0x80001) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000000)) ioctl$UFFDIO_COPY(r1, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000c75000/0x4000)=nil, &(0x7f000025a000/0x3000)=nil, 0x4000}) 709.178269ms ago: executing program 3 (id=2298): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x0, 0x8400, 0x1, 0x0, 0x1}, 0x48) r2 = socket(0x10, 0x3, 0x0) r3 = socket$unix(0x1, 0x2, 0x0) bind$unix(r3, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) r4 = socket$unix(0x1, 0x2, 0x0) connect$unix(r4, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) writev(r4, 0x0, 0x0) setsockopt$SO_TIMESTAMP(r3, 0x1, 0x23, &(0x7f0000000080)=0x6, 0x26) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f00000000c0)=0x5c3, 0x4) recvmmsg(r3, &(0x7f0000000300), 0x40000000000049e, 0x1000000000fe, 0x0) sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="240000001a0069ae010000000000000081"], 0x24}}, 0x0) bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000380)={r1, 0x0, 0x20000000, 0x2}, 0x20) bpf$MAP_DELETE_ELEM(0x15, &(0x7f0000000500)={r1, 0x0, 0x20000000}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f0000000040)}, 0x20) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000fc110000001c000000040000000100000000deff0e02000001000000000000000000efff05b2b4926c195f800c"], &(0x7f0000000240)=""/214, 0x38, 0xd6, 0x1}, 0x20) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000680)=@deltaction={0x1ec, 0x31, 0x300, 0x70bd27, 0x25dfdbfc, {}, [@TCA_ACT_TAB={0x38, 0x1, [{0xc, 0x6, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xc122}}, {0xc, 0x3, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x4}}, {0xc, 0x0, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0x10, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}]}, @TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ipt\x00'}}]}, @TCA_ACT_TAB={0x38, 0x1, [{0xc, 0x8, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x507}}, {0xc, 0x14, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x993e}}, {0x10, 0x2, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}, {0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}]}, @TCA_ACT_TAB={0x18, 0x1, [{0x14, 0x11, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'tunnel_key\x00'}}]}, @TCA_ACT_TAB={0x50, 0x1, [{0xc, 0x4, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x7ded}}, {0x10, 0x2, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0xc, 0x16, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ipt\x00'}}, {0xc, 0x10c, 0x0, 0x0, @TCA_ACT_KIND={0x7, 0x1, 'xt\x00'}}, {0xc, 0x2, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}, {0xc, 0x6, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x5}}]}, @TCA_ACT_TAB={0x2c, 0x1, [{0x10, 0x11, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0xc, 0x19, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x6}}, {0xc, 0xb, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x41}}]}, @TCA_ACT_TAB={0x44, 0x1, [{0xc, 0x17, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x5}}, {0x14, 0x14, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}, {0xc, 0x16, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x10000}}, {0x14, 0x4, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}]}, @TCA_ACT_TAB={0x28, 0x1, [{0xc, 0x1e, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}, {0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x20, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}]}, @TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}]}, @TCA_ACT_TAB={0x44, 0x1, [{0x10, 0x1b, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'sample\x00'}}, {0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x1f}}, {0xc, 0x1c, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}, {0xc, 0x12, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x1e, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}]}]}, 0x1ec}, 0x1, 0x0, 0x0, 0x8000800}, 0x8001) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) connect$bt_l2cap(r7, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe) getsockopt$bt_BT_CHANNEL_POLICY(r7, 0x112, 0xe, 0x0, &(0x7f00000000c0)) ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x9}) r8 = memfd_create(0x0, 0x3) write$binfmt_elf64(r8, &(0x7f00000004c0)=ANY=[], 0x78) fcntl$addseals(r8, 0x409, 0x6) r9 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00'}) socket(0x10, 0x80002, 0x0) 655.437788ms ago: executing program 1 (id=2299): mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) chdir(&(0x7f00000000c0)='./bus\x00') r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r0}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x90) r1 = getpid() process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r4) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000040)='proc\x00', 0x0, 0x0) r5 = inotify_init1(0x0) capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)) fcntl$setown(r5, 0x8, 0xffffffffffffffff) fcntl$getownex(r5, 0x10, &(0x7f0000000140)={0x0, 0x0}) r7 = syz_open_procfs(r6, &(0x7f0000000180)='stat\x00') pread64(r7, &(0x7f00000004c0)=""/251, 0xfb, 0x0) r8 = syz_open_dev$vim2m(&(0x7f0000000000), 0x100000001, 0x2) r9 = socket$nl_generic(0x10, 0x3, 0x10) r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000280)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_PMK(r9, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="cba002000000000000004c00000008000300", @ANYRES32=r11], 0x28}}, 0x0) ioctl$vim2m_VIDIOC_ENUM_FMT(r8, 0xc0405602, &(0x7f0000000080)={0x21, 0x1, 0x0, "a677c17a5ac1f393f65906a68dd1f8822c8800"}) sendto$inet6(r3, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$nl_netfilter(r2, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f0000000680)={0x2014, 0x1, 0x7, 0x401, 0x4, 0x25dfdbfd, {}, [@generic="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", @generic="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"]}, 0x2014}, 0x1, 0x0, 0x0, 0x4000}, 0x880) 499.635754ms ago: executing program 3 (id=2300): sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="60000000020601000000000000000000000000000e000300626b"], 0x60}}, 0x0) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cgroup.controllers\x00', 0x275a, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001740)='memory.events\x00', 0x275a, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000040)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000020000002000003b00000008000300", @ANYRES32=r4, @ANYBLOB="5100330080000000080211000000080211"], 0x70}}, 0x0) write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3f8, &(0x7f00000001c0)={@dev, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb653e", 0x3c2, 0x3a, 0x0, @dev, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{}, {0x0, 0x6, "1598a4a8a719ffe0621615f6d04dcae3360546cf06f2665bae2296931fd1d71c1f7e8f222b9ddc4e0bfb5e5c9a484353b785e7"}, {}, {0x0, 0x6f, "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"}]}}}}}}, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r6, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r7, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) preadv(r1, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffffff000}], 0x5, 0x0, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r9, &(0x7f0000000240), 0x3af4701e) sendfile(r8, r0, 0x0, 0x10000a007) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0) 176.379562ms ago: executing program 3 (id=2301): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5021900000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) r1 = socket$l2tp6(0xa, 0x2, 0x73) bind$l2tp6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x20) r2 = socket$nl_generic(0x10, 0x3, 0x10) write$binfmt_misc(r0, &(0x7f0000000080)={'syz0'}, 0x4) sendmsg$L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)={0x5c, 0x0, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @mcast1={0xff, 0x2}}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @empty}]}, 0x5c}, 0x1, 0x620b}, 0x0) 119.540941ms ago: executing program 1 (id=2302): syz_open_dev$usbfs(0x0, 0x0, 0x0) inotify_init1(0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r0}, 0x10) sendto$inet6(0xffffffffffffffff, &(0x7f0000000340)="12d00d7fc8cf306d2409ce20ba99efbaa6e6b3f518713aebdf840ca2d49bf489265762f4b55b60a52fbeb89204a14ea8f8c8ba0e1fbae74bd5ba05017ea84b610255c5c3908e182d194ddb1e12ae3b67bffc8f9ac0ae423b5cf94c8e029585cd93", 0x61, 0x40004, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @dev={0xfe, 0x80, '\x00', 0x21}, 0x10001}, 0x1c) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() socket$nl_route(0x10, 0x3, 0x0) process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000080)={0xd, 0x9, 0x8001, 0xffff}, &(0x7f00000002c0)=0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_MAX_BURST(r3, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8) socket$nl_route(0x10, 0x3, 0x0) socket(0x0, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket(0x10, 0x803, 0x0) r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x181480, 0x0) readahead(r4, 0x0, 0x0) r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) ioctl$BLKZEROOUT(r5, 0x127f, &(0x7f0000000240)={0x0, 0x1000000}) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r8, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000b80)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="030500000000000000000600000014000200fe8000000000000000000000000000aa2d160bdabdeccc769dbe00070073797374656d5f753a6f626a6563745f723a6e6574636f6e74726f6c5f646576696365"], 0x58}}, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r9, 0x5000aea5, 0x0) 119.1521ms ago: executing program 3 (id=2303): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000280)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x0, 0x0, 0x0, 0x5}, {0x6}]}, 0x10) syz_emit_ethernet(0x36, &(0x7f0000000800)=ANY=[@ANYBLOB="ffffffffffff0180c200000086dd602cb1dd305fa510cf8800000000000000000000000000000001"], 0x0) 0s ago: executing program 3 (id=2304): pipe(&(0x7f0000000080)) r0 = socket$inet_udp(0x2, 0x2, 0x0) close(r0) r1 = socket$inet6(0xa, 0x1, 0x100) listen(r1, 0x0) mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}}) r3 = socket$nl_generic(0x10, 0x3, 0x10) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, 0xfffffffffffffff9) r4 = add_key(&(0x7f0000000140)='encrypted\x00', 0x0, &(0x7f0000000100), 0x0, 0xfffffffffffffffe) r5 = add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private0}, 0x1c) init_module(0xfffffffffffffffe, 0x4000, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) r6 = add_key$keyring(&(0x7f0000000280), &(0x7f00000002c0)={'syz', 0x0}, 0x0, 0x0, r5) r7 = add_key$keyring(&(0x7f00000001c0), &(0x7f0000000440)={'syz', 0x3}, 0x0, 0x0, r6) keyctl$KEYCTL_MOVE(0x1e, r4, r7, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) r8 = open(0x0, 0x143042, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x12, r8, 0x0) ftruncate(r8, 0x3) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.bfq.sectors_recursive\x00', 0x275a, 0x0) mremap(&(0x7f0000000000/0x9000)=nil, 0x600000, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil) sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) syz_fuse_handle_req(r2, &(0x7f0000005380)="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", 0x2000, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x90}, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r2, &(0x7f0000004300)={0x50, 0x0, r9, {0x7, 0x26}}, 0x50) syz_fuse_handle_req(r2, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e00)={0xa0, 0x0, 0x0, {{0x6, 0x0, 0x0, 0x7, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0xee01}}}}, 0x0}) kernel console output (not intermixed with test programs): _fget_files+0x256/0x400 [ 507.610023][T11742] security_file_ioctl+0x75/0xc0 [ 507.612468][T11742] __x64_sys_ioctl+0xbb/0x220 [ 507.615974][T11742] do_syscall_64+0xcd/0x250 [ 507.617966][T11742] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.636482][T11742] RIP: 0033:0x7fc2be375b59 [ 507.638542][T11742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 507.661925][T11742] RSP: 002b:00007fc2bf0ac048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 507.665763][T11742] RAX: ffffffffffffffda RBX: 00007fc2be505f60 RCX: 00007fc2be375b59 [ 507.669424][T11742] RDX: 00000000200000c0 RSI: 0000000040045431 RDI: 0000000000000003 [ 507.688721][T11742] RBP: 00007fc2bf0ac0a0 R08: 0000000000000000 R09: 0000000000000000 [ 507.691842][T11742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 507.695227][T11742] R13: 000000000000000b R14: 00007fc2be505f60 R15: 00007ffe3772f888 [ 507.698494][T11742] [ 507.703250][T11742] ERROR: Out of memory at tomoyo_realpath_from_path. [ 507.758374][T11744] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1685'. [ 507.850796][T11748] FAULT_INJECTION: forcing a failure. [ 507.850796][T11748] name failslab, interval 1, probability 0, space 0, times 0 [ 507.856504][T11748] CPU: 0 PID: 11748 Comm: syz.1.1687 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 507.861378][T11748] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 507.866649][T11748] Call Trace: [ 507.868301][T11748] [ 507.870048][T11748] dump_stack_lvl+0x16c/0x1f0 [ 507.872189][T11748] should_fail_ex+0x497/0x5b0 [ 507.874182][T11748] should_failslab+0x9/0x20 [ 507.876182][T11748] __kmalloc_noprof+0xcf/0x410 [ 507.878286][T11748] ? __pfx_lock_acquire+0x10/0x10 [ 507.880445][T11748] tomoyo_realpath_from_path+0xb9/0x720 [ 507.882858][T11748] ? tomoyo_profile+0x47/0x60 [ 507.885719][T11748] tomoyo_path_number_perm+0x245/0x590 [ 507.888059][T11748] ? tomoyo_path_number_perm+0x232/0x590 [ 507.890482][T11748] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 507.893116][T11748] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 507.895690][T11748] ? __fget_files+0x256/0x400 [ 507.897773][T11748] security_file_ioctl+0x75/0xc0 [ 507.899887][T11748] __x64_sys_ioctl+0xbb/0x220 [ 507.901909][T11748] do_syscall_64+0xcd/0x250 [ 507.903714][T11748] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.906053][T11748] RIP: 0033:0x7fc2be375b59 [ 507.907858][T11748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 507.916229][T11748] RSP: 002b:00007fc2bf0ac048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 507.919405][T11748] RAX: ffffffffffffffda RBX: 00007fc2be505f60 RCX: 00007fc2be375b59 [ 507.922417][T11748] RDX: 0000000020000040 RSI: 000000008008551c RDI: 0000000000000003 [ 507.925440][T11748] RBP: 00007fc2bf0ac0a0 R08: 0000000000000000 R09: 0000000000000000 [ 507.928763][T11748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 507.932304][T11748] R13: 000000000000000b R14: 00007fc2be505f60 R15: 00007ffe3772f888 [ 507.935743][T11748] [ 507.939900][T11748] ERROR: Out of memory at tomoyo_realpath_from_path. [ 508.514980][ T5241] usb 5-1: USB disconnect, device number 94 [ 508.544713][ T5237] usb 7-1: USB disconnect, device number 75 [ 508.764805][T11765] FAULT_INJECTION: forcing a failure. [ 508.764805][T11765] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 508.770734][T11765] CPU: 2 PID: 11765 Comm: syz.2.1692 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 508.775258][T11765] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 508.780046][T11765] Call Trace: [ 508.781339][T11765] [ 508.782403][T11765] dump_stack_lvl+0x16c/0x1f0 [ 508.784336][T11765] should_fail_ex+0x497/0x5b0 [ 508.786252][T11765] _copy_from_user+0x30/0xf0 [ 508.786516][T11763] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 508.788189][T11765] copy_msghdr_from_user+0x99/0x160 [ 508.788209][T11765] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 508.788220][T11765] ? find_held_lock+0x2d/0x110 [ 508.794520][ T39] audit: type=1400 audit(1721336418.143:2153): avc: denied { write } for pid=11762 comm="syz.3.1691" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 508.795972][T11765] ? __pfx___lock_acquire+0x10/0x10 [ 508.802243][T11763] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 508.809417][T11765] ___sys_sendmsg+0xff/0x1e0 [ 508.809445][T11765] ? __pfx____sys_sendmsg+0x10/0x10 [ 508.809471][T11765] ? ksys_write+0x21c/0x260 [ 508.820054][T11765] ? __fget_light+0x173/0x210 [ 508.822111][T11765] __sys_sendmsg+0x117/0x1f0 [ 508.824199][T11765] ? __pfx___sys_sendmsg+0x10/0x10 [ 508.826700][T11765] do_syscall_64+0xcd/0x250 [ 508.828721][T11765] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 508.831358][T11765] RIP: 0033:0x7f5816775b59 [ 508.833450][T11765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 508.841996][T11765] RSP: 002b:00007f58175bc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 508.845712][T11765] RAX: ffffffffffffffda RBX: 00007f5816905f60 RCX: 00007f5816775b59 [ 508.849136][T11765] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000006 [ 508.852476][T11765] RBP: 00007f58175bc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 508.855423][T11765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 508.858496][T11765] R13: 000000000000000b R14: 00007f5816905f60 R15: 00007ffc16c445f8 [ 508.862084][T11765] [ 509.075324][T11776] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1696'. [ 509.250289][ T39] audit: type=1400 audit(1721336418.623:2154): avc: denied { create } for pid=11782 comm="syz.3.1699" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 509.262110][ T39] audit: type=1400 audit(1721336418.623:2155): avc: denied { bind } for pid=11782 comm="syz.3.1699" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 509.270603][ T39] audit: type=1400 audit(1721336418.623:2156): avc: denied { write } for pid=11782 comm="syz.3.1699" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 509.330827][ T5429] usb 8-1: USB disconnect, device number 98 [ 509.668325][T11801] FAULT_INJECTION: forcing a failure. [ 509.668325][T11801] name failslab, interval 1, probability 0, space 0, times 0 [ 509.677389][T11801] CPU: 1 PID: 11801 Comm: syz.0.1702 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 509.681491][T11801] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 509.685773][T11801] Call Trace: [ 509.686945][T11801] [ 509.688067][T11801] dump_stack_lvl+0x16c/0x1f0 [ 509.689943][T11801] should_fail_ex+0x497/0x5b0 [ 509.700348][T11801] should_failslab+0x9/0x20 [ 509.702121][T11801] __kmalloc_node_noprof+0xd5/0x440 [ 509.704015][T11801] ? kvmalloc_node_noprof+0x9d/0x1a0 [ 509.706083][T11801] ? __pfx_mark_lock+0x10/0x10 [ 509.708244][T11801] kvmalloc_node_noprof+0x9d/0x1a0 [ 509.710273][T11801] seq_read_iter+0x830/0x12c0 [ 509.712299][T11801] seq_read+0x390/0x4d0 [ 509.714006][T11801] ? __pfx_seq_read+0x10/0x10 [ 509.715925][T11801] ? __pfx___might_resched+0x10/0x10 [ 509.718182][T11801] ? selinux_file_permission+0x125/0x590 [ 509.720465][T11801] ? __pfx_seq_read+0x10/0x10 [ 509.722290][T11801] proc_reg_read+0x243/0x340 [ 509.724148][T11801] ? __pfx_proc_reg_read+0x10/0x10 [ 509.726138][T11801] vfs_read+0x1d4/0xbd0 [ 509.727737][T11801] ? __fdget_pos+0xeb/0x180 [ 509.729495][T11801] ? __pfx_vfs_read+0x10/0x10 [ 509.731306][T11801] ? __pfx___mutex_lock+0x10/0x10 [ 509.733248][T11801] ? __fget_files+0x256/0x400 [ 509.735068][T11801] ksys_read+0x12f/0x260 [ 509.736737][T11801] ? __pfx_ksys_read+0x10/0x10 [ 509.738564][T11801] do_syscall_64+0xcd/0x250 [ 509.740326][T11801] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 509.742367][T11801] RIP: 0033:0x7f2115b75b59 [ 509.743892][T11801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 509.750993][T11801] RSP: 002b:00007f2116952048 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 509.754169][T11801] RAX: ffffffffffffffda RBX: 00007f2115d05f60 RCX: 00007f2115b75b59 [ 509.757326][T11801] RDX: 0000000000002020 RSI: 00000000200000c0 RDI: 0000000000000003 [ 509.760372][T11801] RBP: 00007f21169520a0 R08: 0000000000000000 R09: 0000000000000000 [ 509.763405][T11801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 509.766409][T11801] R13: 000000000000000b R14: 00007f2115d05f60 R15: 00007ffd3c83f7c8 [ 509.769592][T11801] [ 510.371544][ T39] audit: type=1400 audit(1721336419.743:2157): avc: denied { map } for pid=11811 comm="syz.3.1706" path="/dev/nullb0" dev="devtmpfs" ino=691 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 510.386440][ T39] audit: type=1400 audit(1721336419.743:2158): avc: denied { execute } for pid=11811 comm="syz.3.1706" path="/dev/nullb0" dev="devtmpfs" ino=691 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 510.398477][T11806] 9pnet: Could not find request transport: ^d [ 510.787045][T11820] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1707'. [ 511.320232][ T58] usb 5-1: new high-speed USB device number 95 using dummy_hcd [ 511.517267][ T58] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 511.525987][ T58] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 511.536547][ T58] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 511.551037][ T58] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 511.559581][T11830] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 511.589375][ T5237] usb 7-1: new high-speed USB device number 76 using dummy_hcd [ 511.791346][ T824] usb 5-1: USB disconnect, device number 95 [ 511.796712][ T5237] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 511.805413][ T5237] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 511.815731][ T5237] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 511.831780][ T5237] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 511.847137][ T39] audit: type=1400 audit(1721336421.213:2159): avc: denied { execute } for pid=11842 comm="syz.3.1714" path="/dev/audio" dev="devtmpfs" ino=1125 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sound_device_t tclass=chr_file permissive=1 [ 511.850679][ T5237] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 511.866924][ T39] audit: type=1400 audit(1721336421.223:2160): avc: denied { bind } for pid=11842 comm="syz.3.1714" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 511.871768][ T5237] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 511.874107][ T39] audit: type=1400 audit(1721336421.223:2161): avc: denied { name_bind } for pid=11842 comm="syz.3.1714" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1 [ 511.878376][ T5237] usb 7-1: Manufacturer: syz [ 511.886786][ T39] audit: type=1400 audit(1721336421.223:2162): avc: denied { node_bind } for pid=11842 comm="syz.3.1714" saddr=ff02::1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1 [ 511.902200][ T5237] usb 7-1: config 0 descriptor?? [ 511.905319][T11844] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1714'. [ 512.058081][T11848] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1716'. [ 512.188690][T11856] input: syz0 as /devices/virtual/input/input30 [ 512.314329][T11863] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1720'. [ 512.384954][ T5237] usbhid 7-1:0.0: can't add hid device: -32 [ 512.388774][ T5237] usbhid 7-1:0.0: probe with driver usbhid failed with error -32 [ 512.881565][T11886] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1726'. [ 513.055216][ T11] Bluetooth: hci3: Frame reassembly failed (-84) [ 513.429195][ T825] usb 7-1: USB disconnect, device number 76 [ 513.699460][ T5520] usb 8-1: new high-speed USB device number 99 using dummy_hcd [ 513.884673][ T5520] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 513.889472][ T5520] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 513.894132][ T5520] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 513.898311][ T5520] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 513.906480][ T5520] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 513.910506][ T5520] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 513.913724][ T5520] usb 8-1: Manufacturer: syz [ 513.920648][ T5520] usb 8-1: config 0 descriptor?? [ 514.348482][ T5520] appleir 0003:05AC:8243.0099: unknown main item tag 0x0 [ 514.354312][ T5520] appleir 0003:05AC:8243.0099: No inputs registered, leaving [ 514.361930][ T5520] appleir 0003:05AC:8243.0099: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 514.569397][T11685] usb 7-1: new high-speed USB device number 77 using dummy_hcd [ 514.751776][T11685] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 514.756402][T11685] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 514.760844][T11685] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 514.765154][T11685] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 514.771899][T11910] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 514.990945][ T5520] usb 7-1: USB disconnect, device number 77 [ 515.059534][T11469] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 515.059678][ T5211] Bluetooth: hci3: command 0x1003 tx timeout [ 515.819639][T11685] usb 8-1: reset high-speed USB device number 99 using dummy_hcd [ 516.573034][ T39] kauditd_printk_skb: 4 callbacks suppressed [ 516.573046][ T39] audit: type=1400 audit(1721336425.943:2167): avc: denied { read write } for pid=11932 comm="syz.3.1739" name="ppp" dev="devtmpfs" ino=714 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 516.591295][ T39] audit: type=1400 audit(1721336425.943:2168): avc: denied { open } for pid=11932 comm="syz.3.1739" path="/dev/ppp" dev="devtmpfs" ino=714 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 516.601747][ T39] audit: type=1400 audit(1721336425.953:2169): avc: denied { ioctl } for pid=11932 comm="syz.3.1739" path="/dev/ppp" dev="devtmpfs" ino=714 ioctlcmd=0x7447 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 516.642274][T11935] FAULT_INJECTION: forcing a failure. [ 516.642274][T11935] name failslab, interval 1, probability 0, space 0, times 0 [ 516.651525][T11935] CPU: 3 PID: 11935 Comm: syz.3.1740 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 516.655520][T11935] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 516.660133][T11935] Call Trace: [ 516.661514][T11935] [ 516.662793][T11935] dump_stack_lvl+0x16c/0x1f0 [ 516.664830][T11935] should_fail_ex+0x497/0x5b0 [ 516.666844][T11935] should_failslab+0x9/0x20 [ 516.668884][T11935] kmem_cache_alloc_node_noprof+0x71/0x310 [ 516.671563][T11935] ? __alloc_skb+0x2b1/0x380 [ 516.673904][T11935] __alloc_skb+0x2b1/0x380 [ 516.676027][T11935] ? __pfx___alloc_skb+0x10/0x10 [ 516.678295][T11935] ? inode_security+0x101/0x130 [ 516.680562][T11935] ? avc_policy_seqno+0x9/0x20 [ 516.682786][T11935] ppp_write+0xc3/0x3e0 [ 516.684932][T11935] ? rw_verify_area+0xd0/0x6c0 [ 516.687255][T11935] ? __pfx_ppp_write+0x10/0x10 [ 516.689353][T11935] vfs_write+0x29a/0x1140 [ 516.691372][T11935] ? __pfx_vfs_write+0x10/0x10 [ 516.693682][T11935] ? __fget_files+0x256/0x400 [ 516.695760][T11935] ? __fget_light+0x173/0x210 [ 516.697857][T11935] ksys_write+0x12f/0x260 [ 516.699902][T11935] ? __pfx_ksys_write+0x10/0x10 [ 516.702053][T11935] do_syscall_64+0xcd/0x250 [ 516.704093][T11935] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 516.706729][T11935] RIP: 0033:0x7fbdb4d75b59 [ 516.708696][T11935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 516.716281][T11935] RSP: 002b:00007fbdb5a84048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 516.720128][T11935] RAX: ffffffffffffffda RBX: 00007fbdb4f05f60 RCX: 00007fbdb4d75b59 [ 516.723932][T11935] RDX: 000000000000000b RSI: 0000000020000180 RDI: 0000000000000003 [ 516.727509][T11935] RBP: 00007fbdb5a840a0 R08: 0000000000000000 R09: 0000000000000000 [ 516.730974][T11935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 516.734429][T11935] R13: 000000000000000b R14: 00007fbdb4f05f60 R15: 00007fff033ceb38 [ 516.737694][T11935] [ 516.740745][ T5429] usb 8-1: USB disconnect, device number 99 [ 516.871258][T11937] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 516.878098][T11938] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 516.878844][T11937] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 516.885317][ T39] audit: type=1400 audit(1721336426.253:2170): avc: denied { connect } for pid=11936 comm="syz.3.1741" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 516.899136][ T39] audit: type=1400 audit(1721336426.253:2171): avc: denied { name_connect } for pid=11936 comm="syz.3.1741" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1 [ 517.394586][T11947] 9pnet: Could not find request transport: ^d [ 517.645604][T11957] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1747'. [ 517.691303][T11959] FAULT_INJECTION: forcing a failure. [ 517.691303][T11959] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 517.696174][T11959] CPU: 3 PID: 11959 Comm: syz.2.1749 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 517.700212][T11959] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 517.704731][T11959] Call Trace: [ 517.706172][T11959] [ 517.707465][T11959] dump_stack_lvl+0x16c/0x1f0 [ 517.709485][T11959] should_fail_ex+0x497/0x5b0 [ 517.712636][T11959] _copy_from_user+0x30/0xf0 [ 517.714601][T11959] move_addr_to_kernel+0x68/0x160 [ 517.716609][T11959] __sys_bind+0xc4/0x220 [ 517.718395][T11959] ? __pfx___sys_bind+0x10/0x10 [ 517.720451][T11959] ? __pfx_ksys_write+0x10/0x10 [ 517.722504][T11959] __x64_sys_bind+0x72/0xb0 [ 517.724556][T11959] ? lockdep_hardirqs_on+0x7c/0x110 [ 517.726967][T11959] do_syscall_64+0xcd/0x250 [ 517.728756][T11959] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 517.731295][T11959] RIP: 0033:0x7f5816775b59 [ 517.733232][T11959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 517.741522][T11959] RSP: 002b:00007f58175bc048 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 517.745127][T11959] RAX: ffffffffffffffda RBX: 00007f5816905f60 RCX: 00007f5816775b59 [ 517.748449][T11959] RDX: 0000000000000062 RSI: 0000000020000000 RDI: 0000000000000006 [ 517.751967][T11959] RBP: 00007f58175bc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 517.755343][T11959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 517.758761][T11959] R13: 000000000000000b R14: 00007f5816905f60 R15: 00007ffc16c445f8 [ 517.762088][T11959] [ 517.859627][ T39] audit: type=1400 audit(1721336427.223:2172): avc: denied { write } for pid=11961 comm="syz.2.1750" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 517.881493][T11967] xt_TPROXY: Can be used only with -p tcp or -p udp [ 518.120234][T11974] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1751'. [ 518.123579][T11974] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1751'. [ 518.760873][T11995] FAULT_INJECTION: forcing a failure. [ 518.760873][T11995] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 518.767785][T11995] CPU: 2 PID: 11995 Comm: syz.0.1759 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 518.772903][T11995] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 518.778309][T11995] Call Trace: [ 518.779853][T11995] [ 518.781218][T11995] dump_stack_lvl+0x16c/0x1f0 [ 518.783311][T11995] should_fail_ex+0x497/0x5b0 [ 518.785310][T11995] _copy_from_user+0x30/0xf0 [ 518.787384][T11995] copy_msghdr_from_user+0x99/0x160 [ 518.789531][T11995] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 518.792105][T11995] ? find_held_lock+0x2d/0x110 [ 518.794138][T11995] ? __pfx___lock_acquire+0x10/0x10 [ 518.796418][T11995] ___sys_sendmsg+0xff/0x1e0 [ 518.798383][T11995] ? __pfx____sys_sendmsg+0x10/0x10 [ 518.800475][T11995] ? ksys_write+0x21c/0x260 [ 518.802483][T11995] ? __fget_light+0x173/0x210 [ 518.804832][T11995] __sys_sendmsg+0x117/0x1f0 [ 518.806890][T11995] ? __pfx___sys_sendmsg+0x10/0x10 [ 518.809045][T11995] do_syscall_64+0xcd/0x250 [ 518.811147][T11995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 518.814041][T11995] RIP: 0033:0x7f2115b75b59 [ 518.815949][T11995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 518.824850][T11995] RSP: 002b:00007f2116952048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 518.828270][T11995] RAX: ffffffffffffffda RBX: 00007f2115d05f60 RCX: 00007f2115b75b59 [ 518.832059][T11995] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 518.835771][T11995] RBP: 00007f21169520a0 R08: 0000000000000000 R09: 0000000000000000 [ 518.839442][T11995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 518.843060][T11995] R13: 000000000000000b R14: 00007f2115d05f60 R15: 00007ffd3c83f7c8 [ 518.847027][T11995] [ 518.947645][T11998] program syz.0.1760 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 518.950364][ T39] audit: type=1400 audit(1721336428.313:2173): avc: denied { create } for pid=11981 comm="syz.1.1754" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 518.951740][T11998] ata1.00: invalid multi_count 32 ignored [ 519.208862][ T39] audit: type=1400 audit(1721336428.573:2174): avc: denied { accept } for pid=11981 comm="syz.1.1754" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 519.601040][T12021] FAULT_INJECTION: forcing a failure. [ 519.601040][T12021] name failslab, interval 1, probability 0, space 0, times 0 [ 519.607128][T12021] CPU: 0 PID: 12021 Comm: syz.2.1765 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 519.612012][T12021] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 519.617480][T12021] Call Trace: [ 519.619190][T12021] [ 519.620749][T12021] dump_stack_lvl+0x16c/0x1f0 [ 519.623081][T12021] should_fail_ex+0x497/0x5b0 [ 519.625017][T12021] should_failslab+0x9/0x20 [ 519.627149][T12021] __kmalloc_noprof+0xcf/0x410 [ 519.629101][T12021] ? __pfx_lock_acquire+0x10/0x10 [ 519.631233][T12021] tomoyo_realpath_from_path+0xb9/0x720 [ 519.634546][T12021] ? tomoyo_profile+0x47/0x60 [ 519.636697][T12021] tomoyo_path_number_perm+0x245/0x590 [ 519.639138][T12021] ? tomoyo_path_number_perm+0x232/0x590 [ 519.656528][T12021] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 519.659117][T12021] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 519.661700][T12021] ? __fget_files+0x256/0x400 [ 519.664201][T12021] security_file_ioctl+0x75/0xc0 [ 519.667386][T12021] __x64_sys_ioctl+0xbb/0x220 [ 519.670456][T12021] do_syscall_64+0xcd/0x250 [ 519.672650][T12021] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 519.675307][T12021] RIP: 0033:0x7f5816775b59 [ 519.677328][T12021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 519.686167][T12021] RSP: 002b:00007f58175bc048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 519.690200][T12021] RAX: ffffffffffffffda RBX: 00007f5816905f60 RCX: 00007f5816775b59 [ 519.694452][T12021] RDX: 000000002000000a RSI: 0000000040047451 RDI: 0000000000000003 [ 519.698496][T12021] RBP: 00007f58175bc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 519.705656][T12021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 519.708920][T12021] R13: 000000000000000b R14: 00007f5816905f60 R15: 00007ffc16c445f8 [ 519.712491][T12021] [ 519.728326][T12021] ERROR: Out of memory at tomoyo_realpath_from_path. [ 519.814013][T12028] xt_TPROXY: Can be used only with -p tcp or -p udp [ 520.943985][ T824] usb 8-1: new high-speed USB device number 100 using dummy_hcd [ 521.510925][T12068] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1778'. [ 521.531955][T12068] bridge0: port 2(bridge_slave_1) entered disabled state [ 521.562672][T12068] bridge_slave_1: left allmulticast mode [ 521.567968][T12068] bridge_slave_1: left promiscuous mode [ 521.571134][T12068] bridge0: port 2(bridge_slave_1) entered disabled state [ 522.142326][ T824] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 522.151951][ T824] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 522.156917][ T824] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 522.161579][ T824] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 522.171004][ T824] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 522.175231][ T824] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 522.182190][ T824] usb 8-1: Manufacturer: syz [ 522.191496][ T824] usb 8-1: config 0 descriptor?? [ 522.852760][ T824] usbhid 8-1:0.0: can't add hid device: -32 [ 523.235964][ T824] usbhid 8-1:0.0: probe with driver usbhid failed with error -32 [ 525.299684][ T56] usb 7-1: new high-speed USB device number 78 using dummy_hcd [ 525.482762][ T56] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 525.487200][ T56] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 525.491557][ T56] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 525.496682][ T56] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 525.504855][ T56] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 525.511742][ T56] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 525.516396][ T56] usb 7-1: Manufacturer: syz [ 525.520642][ T56] usb 7-1: config 0 descriptor?? [ 525.735442][T12164] 9pnet: Found fid 0 not clunked [ 525.759363][T12164] usb usb8: usbfs: process 12164 (syz.0.1805) did not claim interface 0 before use [ 525.843786][ T57] usb 8-1: USB disconnect, device number 100 [ 525.848479][T12167] FAULT_INJECTION: forcing a failure. [ 525.848479][T12167] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 525.856559][T12167] CPU: 2 PID: 12167 Comm: syz.0.1806 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 525.860766][T12167] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 525.865395][T12167] Call Trace: [ 525.867038][T12167] [ 525.868614][T12167] dump_stack_lvl+0x16c/0x1f0 [ 525.870958][T12167] should_fail_ex+0x497/0x5b0 [ 525.873379][T12167] _copy_from_user+0x30/0xf0 [ 525.875627][T12167] copy_msghdr_from_user+0x99/0x160 [ 525.878333][T12167] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 525.880996][T12167] ? find_held_lock+0x2d/0x110 [ 525.883051][T12167] ___sys_recvmsg+0xdc/0x1a0 [ 525.893080][T12167] ? __pfx____sys_recvmsg+0x10/0x10 [ 525.895278][T12167] ? __fget_light+0x173/0x210 [ 525.897277][T12167] do_recvmmsg+0x2ba/0x750 [ 525.899181][T12167] ? __pfx_do_recvmmsg+0x10/0x10 [ 525.901158][T12167] ? vfs_write+0x14d/0x1140 [ 525.907328][T12167] ? __mutex_unlock_slowpath+0x164/0x650 [ 525.909967][T12167] __x64_sys_recvmmsg+0x239/0x290 [ 525.912624][T12167] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 525.917353][T12167] do_syscall_64+0xcd/0x250 [ 525.920055][T12167] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 525.927048][T12167] RIP: 0033:0x7f2115b75b59 [ 525.928805][T12167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 525.939293][T12167] RSP: 002b:00007f2116931048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 525.944441][T12167] RAX: ffffffffffffffda RBX: 00007f2115d06038 RCX: 00007f2115b75b59 [ 525.949601][T12167] RDX: 0000000000000001 RSI: 00000000200005c0 RDI: 0000000000000004 [ 525.954433][T12167] RBP: 00007f21169310a0 R08: 0000000000000000 R09: 0000000000000000 [ 525.959316][T12167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 525.964271][T12167] R13: 000000000000006e R14: 00007f2115d06038 R15: 00007ffd3c83f7c8 [ 525.969080][T12167] [ 526.165587][ T56] usbhid 7-1:0.0: can't add hid device: -32 [ 526.167816][ T56] usbhid 7-1:0.0: probe with driver usbhid failed with error -32 [ 526.333271][ T5429] usb 7-1: USB disconnect, device number 78 [ 526.379369][ T57] usb 8-1: new high-speed USB device number 101 using dummy_hcd [ 526.566022][ T57] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 526.571214][ T57] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 526.576249][ T57] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 526.582252][ T57] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 526.591152][ T57] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 526.595408][ T57] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 526.599428][ T57] usb 8-1: Manufacturer: syz [ 526.607256][ T57] usb 8-1: config 0 descriptor?? [ 527.057955][ T57] appleir 0003:05AC:8243.009A: unknown main item tag 0x0 [ 527.067071][ T57] appleir 0003:05AC:8243.009A: No inputs registered, leaving [ 527.075001][ T57] appleir 0003:05AC:8243.009A: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 527.634571][T12193] 9pnet: Could not find request transport: ^d [ 528.243401][ T39] audit: type=1400 audit(1721336437.613:2175): avc: denied { mount } for pid=12199 comm="syz.0.1816" name="/" dev="ramfs" ino=38724 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 528.293083][T12206] tipc: Trying to set illegal importance in message [ 528.361505][ T39] audit: type=1326 audit(1721336437.733:2176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12199 comm="syz.0.1816" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2115b75b59 code=0x7fc00000 [ 528.855022][T12225] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1822'. [ 529.053662][ T39] audit: type=1326 audit(1721336438.423:2177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12199 comm="syz.0.1816" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2115b75b59 code=0x7fc00000 [ 529.062336][ T39] audit: type=1326 audit(1721336438.423:2178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12199 comm="syz.0.1816" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2115b75b59 code=0x7fc00000 [ 529.073132][ T39] audit: type=1326 audit(1721336438.423:2179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12199 comm="syz.0.1816" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2115b75b59 code=0x7fc00000 [ 529.083130][ T39] audit: type=1326 audit(1721336438.423:2180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12199 comm="syz.0.1816" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2115b75b59 code=0x7fc00000 [ 529.106539][ T39] audit: type=1326 audit(1721336438.423:2181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12199 comm="syz.0.1816" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2115b75b59 code=0x7fc00000 [ 529.126209][ T39] audit: type=1326 audit(1721336438.423:2182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12199 comm="syz.0.1816" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2115b75b59 code=0x7fc00000 [ 529.138583][ T39] audit: type=1326 audit(1721336438.423:2183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12199 comm="syz.0.1816" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2115b75b59 code=0x7fc00000 [ 529.154621][ T39] audit: type=1326 audit(1721336438.423:2184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12199 comm="syz.0.1816" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2115b75b59 code=0x7fc00000 [ 529.697046][T12247] SELinux: policydb version 1242150613 does not match my version range 15-33 [ 529.708735][T12247] SELinux: failed to load policy [ 529.992982][T12253] FAULT_INJECTION: forcing a failure. [ 529.992982][T12253] name failslab, interval 1, probability 0, space 0, times 0 [ 530.002923][T12253] CPU: 0 PID: 12253 Comm: syz.0.1833 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 530.007219][T12253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 530.011425][T12253] Call Trace: [ 530.013011][T12253] [ 530.014295][T12253] dump_stack_lvl+0x16c/0x1f0 [ 530.016260][T12253] should_fail_ex+0x497/0x5b0 [ 530.018295][T12253] should_failslab+0x9/0x20 [ 530.020301][T12253] __kmalloc_noprof+0xcf/0x410 [ 530.022366][T12253] ? __pfx_lock_acquire+0x10/0x10 [ 530.024557][T12253] tomoyo_realpath_from_path+0xb9/0x720 [ 530.027026][T12253] ? tomoyo_profile+0x47/0x60 [ 530.029121][T12253] tomoyo_path_number_perm+0x245/0x590 [ 530.031701][T12253] ? tomoyo_path_number_perm+0x232/0x590 [ 530.034129][T12253] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 530.036819][T12253] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 530.039422][T12253] ? __fget_files+0x256/0x400 [ 530.041578][T12253] security_file_ioctl+0x75/0xc0 [ 530.043804][T12253] __x64_sys_ioctl+0xbb/0x220 [ 530.045848][T12253] do_syscall_64+0xcd/0x250 [ 530.047929][T12253] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 530.050662][T12253] RIP: 0033:0x7f2115b75b59 [ 530.052710][T12253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 530.061623][T12253] RSP: 002b:00007f2116952048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 530.065159][T12253] RAX: ffffffffffffffda RBX: 00007f2115d05f60 RCX: 00007f2115b75b59 [ 530.068734][T12253] RDX: 0000000000000002 RSI: 000000000000540a RDI: 0000000000000003 [ 530.073255][T12253] RBP: 00007f21169520a0 R08: 0000000000000000 R09: 0000000000000000 [ 530.077474][T12253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 530.082329][T12253] R13: 000000000000000b R14: 00007f2115d05f60 R15: 00007ffd3c83f7c8 [ 530.086436][T12253] [ 530.099628][T12253] ERROR: Out of memory at tomoyo_realpath_from_path. [ 530.217697][ T57] usb 8-1: USB disconnect, device number 101 [ 530.218799][T12257] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1835'. [ 530.231379][T12257] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1835'. [ 530.749481][ T5429] usb 8-1: new high-speed USB device number 102 using dummy_hcd [ 530.955810][ T5429] usb 8-1: Using ep0 maxpacket: 32 [ 530.967369][ T5429] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 36 [ 530.988623][ T5429] usb 8-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 530.998450][ T5429] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 531.003017][ T5429] usb 8-1: Product: syz [ 531.005618][ T5429] usb 8-1: Manufacturer: syz [ 531.008616][ T5429] usb 8-1: SerialNumber: syz [ 531.021719][ T5429] usb 8-1: config 0 descriptor?? [ 531.028079][T12279] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 531.035520][ T5429] hub 8-1:0.0: bad descriptor, ignoring hub [ 531.038430][ T5429] hub 8-1:0.0: probe with driver hub failed with error -5 [ 531.055767][ T5429] input: syz syz as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input31 [ 531.235791][T12279] FAULT_INJECTION: forcing a failure. [ 531.235791][T12279] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 531.242050][T12279] CPU: 0 PID: 12279 Comm: syz.3.1842 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 531.246135][T12279] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 531.250966][T12279] Call Trace: [ 531.252559][T12279] [ 531.253950][T12279] dump_stack_lvl+0x16c/0x1f0 [ 531.256120][T12279] should_fail_ex+0x497/0x5b0 [ 531.257938][T12279] _copy_from_user+0x30/0xf0 [ 531.259832][T12279] input_event_from_user+0x134/0x3b0 [ 531.262589][T12279] ? __pfx_input_event_from_user+0x10/0x10 [ 531.265149][T12279] evdev_write+0x374/0x750 [ 531.267574][T12279] ? __pfx_evdev_write+0x10/0x10 [ 531.270370][T12279] ? security_file_permission+0x98/0xc0 [ 531.273453][T12279] ? __pfx_evdev_write+0x10/0x10 [ 531.275809][T12279] vfs_write+0x29a/0x1140 [ 531.277776][T12279] ? __pfx_vfs_write+0x10/0x10 [ 531.279987][T12279] ? __fget_files+0x256/0x400 [ 531.281897][T12279] ? __fget_light+0x173/0x210 [ 531.283776][T12279] ksys_write+0x1f8/0x260 [ 531.285924][T12279] ? __pfx_ksys_write+0x10/0x10 [ 531.288288][T12279] do_syscall_64+0xcd/0x250 [ 531.290404][T12279] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 531.293196][T12279] RIP: 0033:0x7fbdb4d75b59 [ 531.295385][T12279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 531.304259][T12279] RSP: 002b:00007fbdb5a84048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 531.307453][T12279] RAX: ffffffffffffffda RBX: 00007fbdb4f05f60 RCX: 00007fbdb4d75b59 [ 531.310796][T12279] RDX: 0000000000002250 RSI: 0000000020000040 RDI: 0000000000000004 [ 531.314441][T12279] RBP: 00007fbdb5a840a0 R08: 0000000000000000 R09: 0000000000000000 [ 531.318233][T12279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 531.321982][T12279] R13: 000000000000000b R14: 00007fbdb4f05f60 R15: 00007fff033ceb38 [ 531.325767][T12279] [ 531.348433][ T57] usb 8-1: USB disconnect, device number 102 [ 531.348556][ C2] usbtouchscreen 8-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19 [ 531.659470][ T825] usb 7-1: new high-speed USB device number 79 using dummy_hcd [ 531.847629][ T825] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 531.853957][ T825] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 531.859998][ T825] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 531.866699][ T825] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 531.875855][ T825] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 531.880672][ T825] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 531.884950][ T825] usb 7-1: Manufacturer: syz [ 531.903512][ T825] usb 7-1: config 0 descriptor?? [ 532.089341][ T5237] usb 5-1: new high-speed USB device number 96 using dummy_hcd [ 532.239545][ T5237] usb 5-1: device descriptor read/64, error -71 [ 532.333858][ T825] appleir 0003:05AC:8243.009B: unknown main item tag 0x0 [ 532.337210][ T825] appleir 0003:05AC:8243.009B: No inputs registered, leaving [ 532.344036][ T825] appleir 0003:05AC:8243.009B: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 532.529773][ T5237] usb 5-1: new high-speed USB device number 97 using dummy_hcd [ 532.709380][ T5237] usb 5-1: device descriptor read/64, error -71 [ 532.840152][ T5237] usb usb5-port1: attempt power cycle [ 533.277044][T12297] FAULT_INJECTION: forcing a failure. [ 533.277044][T12297] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 533.286158][T12297] CPU: 1 PID: 12297 Comm: syz.3.1849 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 533.291788][T12297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 533.297458][T12297] Call Trace: [ 533.299402][T12297] [ 533.300730][T12297] dump_stack_lvl+0x16c/0x1f0 [ 533.302887][T12297] should_fail_ex+0x497/0x5b0 [ 533.304935][T12297] ? fs_reclaim_acquire+0xae/0x160 [ 533.307231][T12297] __should_fail_alloc_page+0xe7/0x130 [ 533.309802][T12297] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 533.312806][T12297] ? hlock_class+0x4e/0x130 [ 533.315095][T12297] __alloc_pages_noprof+0x194/0x2460 [ 533.317456][T12297] ? hlock_class+0x4e/0x130 [ 533.319464][T12297] ? __lock_acquire+0xc5d/0x3b30 [ 533.322012][T12297] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 533.325073][T12297] ? mark_lock+0xb5/0xc60 [ 533.327400][T12297] ? __pfx___lock_acquire+0x10/0x10 [ 533.330167][T12297] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 533.333161][T12297] ? policy_nodemask+0xea/0x4e0 [ 533.335757][T12297] alloc_pages_mpol_noprof+0x275/0x610 [ 533.338668][T12297] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 533.341681][T12297] ? find_held_lock+0x2d/0x110 [ 533.344206][T12297] vma_alloc_folio_noprof+0xad/0x1f0 [ 533.346972][T12297] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 533.349477][T12297] ? reacquire_held_locks+0x20b/0x4c0 [ 533.352096][T12297] ? lock_vma_under_rcu+0x1e2/0x8f0 [ 533.354771][T12297] __handle_mm_fault+0x2cc7/0x53d0 [ 533.357558][T12297] ? down_read_trylock+0x1ed/0x3f0 [ 533.360105][T12297] ? lock_vma_under_rcu+0x1e2/0x8f0 [ 533.362872][T12297] ? __pfx___handle_mm_fault+0x10/0x10 [ 533.365583][T12297] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 533.368121][T12297] handle_mm_fault+0x476/0xa00 [ 533.370333][T12297] ? __pkru_allows_pkey+0x52/0xb0 [ 533.372727][T12297] do_user_addr_fault+0x60d/0x13f0 [ 533.375432][T12297] exc_page_fault+0x5c/0xc0 [ 533.377742][T12297] asm_exc_page_fault+0x26/0x30 [ 533.380278][T12297] RIP: 0033:0x7fbdb4c47dc6 [ 533.382671][T12297] Code: 00 00 00 00 41 57 31 c0 41 56 49 89 d6 41 55 49 89 f5 48 89 d6 41 54 49 89 fc 48 8d 3d c1 c9 19 00 55 53 48 81 ec 88 20 00 00 <48> 89 0c 24 4c 89 44 24 08 e8 1c 0d ff ff 4d 85 f6 0f 84 46 0a 00 [ 533.391605][T12297] RSP: 002b:00007fbdb5a81f80 EFLAGS: 00010202 [ 533.394212][T12297] RAX: 0000000000000000 RBX: 00007fbdb4f05f60 RCX: 0000000000000000 [ 533.397892][T12297] RDX: 0000000020000000 RSI: 0000000020000000 RDI: 00007fbdb4de477e [ 533.401487][T12297] RBP: 00007fbdb5a840a0 R08: 00007fbdb4c38e70 R09: 0000000000000000 [ 533.405044][T12297] R10: 0000000000000000 R11: 0000000020000000 R12: 0000000000000000 [ 533.407992][T12297] R13: 0000000000000024 R14: 0000000020000000 R15: 00007fff033ceb38 [ 533.411054][T12297] [ 533.419570][T12297] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 533.722059][ T5520] usb 8-1: new high-speed USB device number 103 using dummy_hcd [ 533.869382][ T5520] usb 8-1: device descriptor read/64, error -71 [ 534.139388][ T5520] usb 8-1: new high-speed USB device number 104 using dummy_hcd [ 534.292519][ T5520] usb 8-1: device descriptor read/64, error -71 [ 534.420396][ T5520] usb usb8-port1: attempt power cycle [ 534.753790][ T824] usb 7-1: USB disconnect, device number 79 [ 534.977079][ T39] kauditd_printk_skb: 45 callbacks suppressed [ 534.977168][ T39] audit: type=1400 audit(1721336444.343:2230): avc: denied { append } for pid=12319 comm="syz.3.1857" name="cec3" dev="devtmpfs" ino=909 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 535.549379][ T5429] usb 5-1: new high-speed USB device number 99 using dummy_hcd [ 535.729486][ T5429] usb 5-1: Using ep0 maxpacket: 8 [ 535.733874][ T5429] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 535.741202][ T5429] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 535.746541][ T5429] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 535.755379][ T5429] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 535.762861][ T5429] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 535.767315][ T5429] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 536.007670][ T5429] usb 5-1: GET_CAPABILITIES returned 0 [ 536.020215][ T5429] usbtmc 5-1:16.0: can't read capabilities [ 536.241780][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.252536][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.256710][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.261144][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.264632][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.270237][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.274159][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.278433][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.282749][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.287749][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.293338][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.297401][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.304153][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.308735][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.313749][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.318086][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 536.325122][ T56] usb 5-1: USB disconnect, device number 99 [ 536.552997][ T39] audit: type=1400 audit(1721336445.923:2231): avc: denied { ioctl } for pid=12365 comm="syz.3.1866" path="socket:[39939]" dev="sockfs" ino=39939 ioctlcmd=0x5828 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 536.680989][ T39] audit: type=1326 audit(1721336446.053:2232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12365 comm="syz.3.1866" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdb4d75b59 code=0x7ffc0000 [ 536.689121][ T39] audit: type=1326 audit(1721336446.053:2233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12365 comm="syz.3.1866" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdb4d75b59 code=0x7ffc0000 [ 536.698719][ T39] audit: type=1326 audit(1721336446.053:2234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12365 comm="syz.3.1866" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbdb4d75b59 code=0x7ffc0000 [ 536.710594][ T39] audit: type=1326 audit(1721336446.053:2235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12365 comm="syz.3.1866" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdb4d75b59 code=0x7ffc0000 [ 536.720175][ T39] audit: type=1326 audit(1721336446.053:2236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12365 comm="syz.3.1866" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdb4d75b59 code=0x7ffc0000 [ 536.727955][ T39] audit: type=1326 audit(1721336446.053:2237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12365 comm="syz.3.1866" exe="/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fbdb4d75b59 code=0x7ffc0000 [ 536.738947][ T39] audit: type=1326 audit(1721336446.053:2238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12365 comm="syz.3.1866" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdb4d75b59 code=0x7ffc0000 [ 536.748945][ T39] audit: type=1326 audit(1721336446.053:2239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12365 comm="syz.3.1866" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdb4d75b59 code=0x7ffc0000 [ 537.182282][T12380] 9pnet: Could not find request transport: ^d [ 537.438459][T12396] FAULT_INJECTION: forcing a failure. [ 537.438459][T12396] name failslab, interval 1, probability 0, space 0, times 0 [ 537.461009][T12396] CPU: 0 PID: 12396 Comm: syz.3.1874 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 537.465019][T12396] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 537.469590][T12396] Call Trace: [ 537.471317][T12396] [ 537.473341][T12396] dump_stack_lvl+0x16c/0x1f0 [ 537.476668][T12396] should_fail_ex+0x497/0x5b0 [ 537.479217][T12396] should_failslab+0x9/0x20 [ 537.481995][T12396] __kmalloc_noprof+0xcf/0x410 [ 537.492114][T12396] ? __pfx_lock_acquire+0x10/0x10 [ 537.494174][T12396] tomoyo_realpath_from_path+0xb9/0x720 [ 537.511817][T12396] ? tomoyo_profile+0x47/0x60 [ 537.513918][T12396] tomoyo_path_number_perm+0x245/0x590 [ 537.516264][T12396] ? tomoyo_path_number_perm+0x232/0x590 [ 537.518710][T12396] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 537.521330][T12396] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 537.524093][T12396] ? __fget_files+0x256/0x400 [ 537.526209][T12396] security_file_ioctl+0x75/0xc0 [ 537.528350][T12396] __x64_sys_ioctl+0xbb/0x220 [ 537.530429][T12396] do_syscall_64+0xcd/0x250 [ 537.532464][T12396] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 537.535151][T12396] RIP: 0033:0x7fbdb4d75b59 [ 537.537105][T12396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 537.545548][T12396] RSP: 002b:00007fbdb5a84048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 537.550567][T12396] RAX: ffffffffffffffda RBX: 00007fbdb4f05f60 RCX: 00007fbdb4d75b59 [ 537.554594][T12396] RDX: 0000000020000440 RSI: 000000004020940d RDI: 0000000000000004 [ 537.558419][T12396] RBP: 00007fbdb5a840a0 R08: 0000000000000000 R09: 0000000000000000 [ 537.562354][T12396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 537.566584][T12396] R13: 000000000000000b R14: 00007fbdb4f05f60 R15: 00007fff033ceb38 [ 537.570124][T12396] [ 537.579667][T12396] ERROR: Out of memory at tomoyo_realpath_from_path. [ 538.759679][ T5429] usb 7-1: new high-speed USB device number 80 using dummy_hcd [ 538.961282][ T5429] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 538.972723][ T5429] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 538.977931][ T5429] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 538.983535][ T5429] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 538.992869][ T5429] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 538.997296][ T5429] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 539.001777][ T5429] usb 7-1: Manufacturer: syz [ 539.017634][ T5429] usb 7-1: config 0 descriptor?? [ 540.085860][ T5429] appleir 0003:05AC:8243.009C: unknown main item tag 0x0 [ 540.091886][ T5429] appleir 0003:05AC:8243.009C: No inputs registered, leaving [ 540.104482][ T5429] appleir 0003:05AC:8243.009C: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 540.429676][ T39] kauditd_printk_skb: 34 callbacks suppressed [ 540.429691][ T39] audit: type=1400 audit(1721336449.803:2274): avc: denied { unmount } for pid=5205 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 540.642837][T12463] FAULT_INJECTION: forcing a failure. [ 540.642837][T12463] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 540.648633][T12463] CPU: 2 PID: 12463 Comm: syz.0.1895 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 540.660155][T12463] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 540.664797][T12463] Call Trace: [ 540.670987][T12463] [ 540.672262][T12463] dump_stack_lvl+0x16c/0x1f0 [ 540.688005][T12463] should_fail_ex+0x497/0x5b0 [ 540.689849][T12463] _copy_from_user+0x30/0xf0 [ 540.691753][T12463] copy_msghdr_from_user+0x99/0x160 [ 540.693999][T12463] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 540.696349][T12463] ? find_held_lock+0x2d/0x110 [ 540.698396][T12463] ? __pfx___lock_acquire+0x10/0x10 [ 540.716000][T12463] ___sys_sendmsg+0xff/0x1e0 [ 540.717994][T12463] ? __pfx____sys_sendmsg+0x10/0x10 [ 540.720330][T12463] ? ksys_write+0x21c/0x260 [ 540.722322][T12463] ? __fget_light+0x173/0x210 [ 540.724159][T12463] __sys_sendmsg+0x117/0x1f0 [ 540.726233][T12463] ? __pfx___sys_sendmsg+0x10/0x10 [ 540.728623][T12463] do_syscall_64+0xcd/0x250 [ 540.730538][T12463] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 540.733292][T12463] RIP: 0033:0x7f2115b75b59 [ 540.734862][T12463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 540.745796][T12463] RSP: 002b:00007f2116952048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 540.750944][T12463] RAX: ffffffffffffffda RBX: 00007f2115d05f60 RCX: 00007f2115b75b59 [ 540.755947][T12463] RDX: 0000000000000000 RSI: 00000000200005c0 RDI: 0000000000000004 [ 540.760049][T12463] RBP: 00007f21169520a0 R08: 0000000000000000 R09: 0000000000000000 [ 540.765019][T12463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 540.769883][T12463] R13: 000000000000000b R14: 00007f2115d05f60 R15: 00007ffd3c83f7c8 [ 540.774832][T12463] [ 541.550907][T11685] usb 7-1: reset high-speed USB device number 80 using dummy_hcd [ 541.794139][ T825] usb 8-1: new high-speed USB device number 106 using dummy_hcd [ 541.986088][ T825] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 541.992288][ T825] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 541.997528][ T825] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 542.007667][ T825] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 542.014643][ T825] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 542.018559][ T825] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 542.022338][ T825] usb 8-1: Manufacturer: syz [ 542.026751][ T825] usb 8-1: config 0 descriptor?? [ 542.631325][ T825] appleir 0003:05AC:8243.009D: unknown main item tag 0x0 [ 542.635327][ T825] appleir 0003:05AC:8243.009D: No inputs registered, leaving [ 542.655688][ T825] appleir 0003:05AC:8243.009D: hiddev1,hidraw2: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 543.104370][T12524] FAULT_INJECTION: forcing a failure. [ 543.104370][T12524] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 543.110085][T12524] CPU: 2 PID: 12524 Comm: syz.0.1914 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 543.119022][T12524] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 543.123681][T12524] Call Trace: [ 543.125104][T12524] [ 543.126391][T12524] dump_stack_lvl+0x16c/0x1f0 [ 543.128321][T12524] should_fail_ex+0x497/0x5b0 [ 543.130175][T12524] _copy_to_user+0x30/0xc0 [ 543.131939][T12524] keyctl_capabilities+0x5b/0x140 [ 543.134172][T12524] __do_sys_keyctl+0x4a7/0x590 [ 543.147644][T12524] do_syscall_64+0xcd/0x250 [ 543.149932][T12524] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 543.167013][T12524] RIP: 0033:0x7f2115b75b59 [ 543.168860][T12524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 543.190283][T12524] RSP: 002b:00007f2116952048 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 543.194021][T12524] RAX: ffffffffffffffda RBX: 00007f2115d05f60 RCX: 00007f2115b75b59 [ 543.197127][T12524] RDX: 0000000000000ff9 RSI: 0000000020000e00 RDI: 000000000000001f [ 543.200455][T12524] RBP: 00007f21169520a0 R08: 0000000000000000 R09: 0000000000000000 [ 543.204193][T12524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 543.207709][T12524] R13: 000000000000000b R14: 00007f2115d05f60 R15: 00007ffd3c83f7c8 [ 543.210846][T12524] [ 543.262969][ T39] audit: type=1400 audit(1721336452.633:2275): avc: denied { mount } for pid=12525 comm="syz.1.1915" name="/" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 543.315086][ T39] audit: type=1400 audit(1721336452.683:2276): avc: denied { unmount } for pid=5196 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 543.572323][ T25] usb 5-1: new high-speed USB device number 100 using dummy_hcd [ 543.789447][ T25] usb 5-1: Using ep0 maxpacket: 8 [ 543.793588][ T25] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 543.798370][ T25] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 543.802899][ T25] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 543.807267][ T25] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 543.813830][ T25] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 543.817714][ T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 544.040806][ T25] usb 5-1: GET_CAPABILITIES returned 0 [ 544.043516][ T25] usbtmc 5-1:16.0: can't read capabilities [ 544.170371][ T5429] usb 7-1: USB disconnect, device number 80 [ 544.248881][ T56] usb 5-1: USB disconnect, device number 100 [ 544.475207][ T824] usb 8-1: USB disconnect, device number 106 [ 544.672808][ T39] audit: type=1400 audit(1721336454.033:2277): avc: granted { setsecparam } for pid=12541 comm="syz.1.1919" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security [ 544.867323][T12574] FAULT_INJECTION: forcing a failure. [ 544.867323][T12574] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 544.873584][T12574] CPU: 0 PID: 12574 Comm: syz.2.1927 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 544.877737][T12574] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 544.882138][T12574] Call Trace: [ 544.883786][T12574] [ 544.885146][T12574] dump_stack_lvl+0x16c/0x1f0 [ 544.887520][T12574] should_fail_ex+0x497/0x5b0 [ 544.889775][T12574] _copy_from_user+0x30/0xf0 [ 544.891596][T12574] io_submit_one+0xbc/0x1df0 [ 544.893630][T12574] ? __pfx_io_submit_one+0x10/0x10 [ 544.895894][T12574] ? __might_fault+0x13b/0x190 [ 544.897873][T12574] ? __pfx_lock_release+0x10/0x10 [ 544.897919][T12576] syz.1.1928: attempt to access beyond end of device [ 544.897919][T12576] nbd1: rw=2048, sector=2, nr_sectors = 2 limit=0 [ 544.899724][T12574] ? __might_fault+0xe3/0x190 [ 544.899746][T12574] ? __x64_sys_io_submit+0x19d/0x330 [ 544.899767][T12574] __x64_sys_io_submit+0x19d/0x330 [ 544.899783][T12574] ? __pfx___x64_sys_io_submit+0x10/0x10 [ 544.899797][T12574] do_syscall_64+0xcd/0x250 [ 544.899811][T12574] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 544.899826][T12574] RIP: 0033:0x7f5816775b59 [ 544.899835][T12574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 544.899845][T12574] RSP: 002b:00007f58175bc048 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 544.899856][T12574] RAX: ffffffffffffffda RBX: 00007f5816905f60 RCX: 00007f5816775b59 [ 544.948135][T12574] RDX: 0000000020000400 RSI: 0000000000000001 RDI: 00007f581759b000 [ 544.951427][T12574] RBP: 00007f58175bc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 544.954480][T12574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 544.957892][T12574] R13: 000000000000000b R14: 00007f5816905f60 R15: 00007ffc16c445f8 [ 544.961224][T12574] [ 545.309367][ T5429] usb 8-1: new high-speed USB device number 107 using dummy_hcd [ 545.423824][T12598] EXT4-fs warning (device sda1): verify_group_input:136: Cannot add at group 262144 (only 8 groups) [ 545.500968][ T5429] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 545.523941][ T5429] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 545.549896][ T5429] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 545.554062][ T5429] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 545.612066][ T5429] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 545.618066][ T5429] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 545.623297][ T5429] usb 8-1: Manufacturer: syz [ 545.627958][ T5429] usb 8-1: config 0 descriptor?? [ 545.761116][T12606] FAULT_INJECTION: forcing a failure. [ 545.761116][T12606] name failslab, interval 1, probability 0, space 0, times 0 [ 545.766378][T12606] CPU: 3 PID: 12606 Comm: syz.0.1938 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 545.770414][T12606] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 545.775018][T12606] Call Trace: [ 545.776672][T12606] [ 545.777947][T12606] dump_stack_lvl+0x16c/0x1f0 [ 545.780057][T12606] should_fail_ex+0x497/0x5b0 [ 545.782114][T12606] should_failslab+0x9/0x20 [ 545.784080][T12606] __kmalloc_noprof+0xcf/0x410 [ 545.786205][T12606] ? __pfx_lock_acquire+0x10/0x10 [ 545.788379][T12606] tomoyo_realpath_from_path+0xb9/0x720 [ 545.790745][T12606] ? tomoyo_profile+0x47/0x60 [ 545.792737][T12606] tomoyo_path_number_perm+0x245/0x590 [ 545.795152][T12606] ? tomoyo_path_number_perm+0x232/0x590 [ 545.797506][T12606] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 545.800034][T12606] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 545.802558][T12606] ? __fget_files+0x256/0x400 [ 545.803544][T12607] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1939'. [ 545.804711][T12606] security_file_ioctl+0x75/0xc0 [ 545.804733][T12606] __x64_sys_ioctl+0xbb/0x220 [ 545.804756][T12606] do_syscall_64+0xcd/0x250 [ 545.814736][T12606] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 545.817237][T12606] RIP: 0033:0x7f2115b75b59 [ 545.819139][T12606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 545.826727][T12606] RSP: 002b:00007f2116952048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 545.830226][T12606] RAX: ffffffffffffffda RBX: 00007f2115d05f60 RCX: 00007f2115b75b59 [ 545.833598][T12606] RDX: 0000000020000000 RSI: 000000000000541c RDI: 0000000000000004 [ 545.836764][T12606] RBP: 00007f21169520a0 R08: 0000000000000000 R09: 0000000000000000 [ 545.840010][T12606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 545.843425][T12606] R13: 000000000000000b R14: 00007f2115d05f60 R15: 00007ffd3c83f7c8 [ 545.847208][T12606] [ 545.857544][T12606] ERROR: Out of memory at tomoyo_realpath_from_path. [ 546.085258][ T5429] appleir 0003:05AC:8243.009E: unknown main item tag 0x0 [ 546.098732][ T5429] appleir 0003:05AC:8243.009E: No inputs registered, leaving [ 546.108063][ T5429] appleir 0003:05AC:8243.009E: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 547.166361][ T5429] usb 5-1: new high-speed USB device number 101 using dummy_hcd [ 547.379637][T12647] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1952'. [ 547.415061][T12647] ip6gretap0: entered promiscuous mode [ 547.422665][ T5429] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 547.439607][T12647] macvtap1: entered promiscuous mode [ 547.444826][T12647] macvtap1: entered allmulticast mode [ 547.447796][T12647] ip6gretap0: entered allmulticast mode [ 547.453302][ T5429] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 547.457964][ T5429] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 547.469689][T12650] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1952'. [ 547.470073][ T5429] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 547.483235][ T5429] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 547.487208][ T5429] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 547.487898][T12650] ip6gretap0: left allmulticast mode [ 547.494664][ T5429] usb 5-1: Manufacturer: syz [ 547.496577][T12650] ip6gretap0: left promiscuous mode [ 547.501942][T12650] macvtap1: left promiscuous mode [ 547.502159][ T5429] usb 5-1: config 0 descriptor?? [ 547.504893][T12650] macvtap1: left allmulticast mode [ 547.615329][ T39] audit: type=1400 audit(1721336456.983:2278): avc: denied { connect } for pid=12654 comm="syz.2.1954" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 547.703350][T12656] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1954'. [ 547.713247][T12656] ip6gretap0: entered promiscuous mode [ 547.715622][T12656] macvtap2: entered promiscuous mode [ 547.717830][T12656] macvtap2: entered allmulticast mode [ 547.723503][T12656] ip6gretap0: entered allmulticast mode [ 547.730907][T12656] netlink: 17876 bytes leftover after parsing attributes in process `syz.2.1954'. [ 547.737362][T12656] ip6gretap0: left allmulticast mode [ 547.739996][T12656] ip6gretap0: left promiscuous mode [ 547.742366][T12656] macvtap2: left promiscuous mode [ 547.744474][T12656] macvtap2: left allmulticast mode [ 548.170522][ T5429] appleir 0003:05AC:8243.009F: unknown main item tag 0x0 [ 548.174532][ T5429] appleir 0003:05AC:8243.009F: No inputs registered, leaving [ 548.182708][ T5429] appleir 0003:05AC:8243.009F: hiddev1,hidraw2: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0 [ 548.894882][ T25] usb 8-1: USB disconnect, device number 107 [ 550.799370][ T9733] usb 5-1: USB disconnect, device number 101 [ 551.361993][ T39] audit: type=1400 audit(1721336460.733:2279): avc: denied { append } for pid=12719 comm="syz.1.1972" name="sg0" dev="devtmpfs" ino=705 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 552.929994][ T56] usb 8-1: new high-speed USB device number 108 using dummy_hcd [ 553.131921][ T56] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 553.144464][ T56] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 553.149148][ T56] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 553.155113][ T56] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 553.167849][ T56] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 553.172599][ T56] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 553.176102][ T56] usb 8-1: Manufacturer: syz [ 553.182107][ T56] usb 8-1: config 0 descriptor?? [ 553.857974][ T56] appleir 0003:05AC:8243.00A0: unknown main item tag 0x0 [ 553.862188][ T56] appleir 0003:05AC:8243.00A0: No inputs registered, leaving [ 553.870991][ T56] appleir 0003:05AC:8243.00A0: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 554.537062][ T39] audit: type=1400 audit(1721336463.903:2280): avc: denied { write } for pid=12773 comm="syz.1.1987" name="/" dev="9p" ino=36575582 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 554.547723][ T39] audit: type=1400 audit(1721336463.913:2281): avc: denied { add_name } for pid=12773 comm="syz.1.1987" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 554.564127][ T39] audit: type=1400 audit(1721336463.913:2282): avc: denied { create } for pid=12773 comm="syz.1.1987" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 554.578913][ T39] audit: type=1400 audit(1721336463.913:2283): avc: denied { associate } for pid=12773 comm="syz.1.1987" name="file0" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 554.593538][ T39] audit: type=1400 audit(1721336463.943:2284): avc: denied { write } for pid=12773 comm="syz.1.1987" name="file0" dev="9p" ino=36575583 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 554.607145][ T39] audit: type=1400 audit(1721336463.953:2285): avc: denied { open } for pid=12773 comm="syz.1.1987" path="/468/file0/file0" dev="9p" ino=36575583 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 554.777497][ T39] audit: type=1400 audit(1721336464.143:2286): avc: denied { unmount } for pid=5196 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 554.885441][T12794] FAULT_INJECTION: forcing a failure. [ 554.885441][T12794] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 554.894087][T12794] CPU: 3 PID: 12794 Comm: syz.2.1991 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 554.898442][T12794] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 554.902967][T12794] Call Trace: [ 554.904710][T12794] [ 554.906573][T12794] dump_stack_lvl+0x16c/0x1f0 [ 554.909229][T12794] should_fail_ex+0x497/0x5b0 [ 554.914014][T12794] _copy_from_user+0x30/0xf0 [ 554.917241][T12794] copy_msghdr_from_user+0x99/0x160 [ 554.921576][T12794] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 554.926462][T12794] ? find_held_lock+0x2d/0x110 [ 554.930498][T12794] ? __pfx___lock_acquire+0x10/0x10 [ 554.935905][T12794] ___sys_sendmsg+0xff/0x1e0 [ 554.942228][T12794] ? __pfx____sys_sendmsg+0x10/0x10 [ 554.946733][T12794] ? ksys_write+0x21c/0x260 [ 554.952445][T12794] ? __fget_light+0x173/0x210 [ 554.957277][T12794] __sys_sendmsg+0x117/0x1f0 [ 554.961792][T12794] ? __pfx___sys_sendmsg+0x10/0x10 [ 554.965069][T12794] do_syscall_64+0xcd/0x250 [ 554.967838][T12794] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 554.971600][T12794] RIP: 0033:0x7f5816775b59 [ 554.974374][T12794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 554.986180][T12794] RSP: 002b:00007f58175bc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 554.990194][T12794] RAX: ffffffffffffffda RBX: 00007f5816905f60 RCX: 00007f5816775b59 [ 554.995168][T12794] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003 [ 555.000222][T12794] RBP: 00007f58175bc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 555.003819][T12794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 555.007376][T12794] R13: 000000000000000b R14: 00007f5816905f60 R15: 00007ffc16c445f8 [ 555.011176][T12794] [ 555.306560][ T25] usb 8-1: reset high-speed USB device number 108 using dummy_hcd [ 555.459436][ T25] usb 8-1: device descriptor read/64, error -32 [ 555.742087][ T25] usb 8-1: reset high-speed USB device number 108 using dummy_hcd [ 555.899488][ T25] usb 8-1: device descriptor read/64, error -32 [ 556.169652][ T25] usb 8-1: reset high-speed USB device number 108 using dummy_hcd [ 556.201331][ T25] usb 8-1: device descriptor read/8, error -32 [ 556.469423][ T25] usb 8-1: reset high-speed USB device number 108 using dummy_hcd [ 556.502338][ T25] usb 8-1: device descriptor read/8, error -32 [ 556.558008][T12732] raw-gadget.0 gadget.3: failed to queue suspend event [ 556.576541][T12732] raw-gadget.0 gadget.3: failed to queue disconnect event [ 556.643815][ T5429] usb 8-1: USB disconnect, device number 108 [ 556.677320][ T39] audit: type=1400 audit(1721336466.043:2287): avc: denied { ioctl } for pid=12825 comm="syz.2.2002" path="/dev/binderfs/binder0" dev="binder" ino=7 ioctlcmd=0x6201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 557.762640][T11469] Bluetooth: hci4: unexpected cc 0x1407 length: 100 > 9 [ 557.945916][T12851] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2011'. [ 558.441768][T12853] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2012'. [ 558.904485][T12879] evm: overlay not supported [ 558.912629][ T39] audit: type=1804 audit(1721336468.283:2288): pid=12879 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.2020" name="/newroot/502/bus/file0" dev="overlay" ino=2966 res=1 errno=0 [ 559.172583][T11469] Bluetooth: hci4: unexpected cc 0x1407 length: 100 > 9 [ 559.247646][T12891] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2024'. [ 559.399867][T12902] netlink: 'syz.2.2028': attribute type 10 has an invalid length. [ 559.406030][T12902] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2028'. [ 559.604451][T12913] netlink: 104 bytes leftover after parsing attributes in process `syz.0.2033'. [ 559.701010][T12922] FAULT_INJECTION: forcing a failure. [ 559.701010][T12922] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 559.706872][T12922] CPU: 0 PID: 12922 Comm: syz.0.2035 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 559.711195][T12922] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 559.715564][T12922] Call Trace: [ 559.716979][T12922] [ 559.718225][T12922] dump_stack_lvl+0x16c/0x1f0 [ 559.720476][T12922] should_fail_ex+0x497/0x5b0 [ 559.722490][T12922] _copy_to_user+0x30/0xc0 [ 559.724539][T12922] simple_read_from_buffer+0xd0/0x160 [ 559.726936][T12922] proc_fail_nth_read+0x1b0/0x290 [ 559.729232][T12922] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 559.731650][T12922] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 559.733691][T12922] vfs_read+0x1d4/0xbd0 [ 559.735452][T12922] ? __fdget_pos+0xeb/0x180 [ 559.737455][T12922] ? __pfx_vfs_read+0x10/0x10 [ 559.739556][T12922] ? __pfx___mutex_lock+0x10/0x10 [ 559.742098][T12922] ? __fget_files+0x256/0x400 [ 559.744136][T12922] ksys_read+0x12f/0x260 [ 559.746016][T12922] ? __pfx_ksys_read+0x10/0x10 [ 559.747881][T12922] do_syscall_64+0xcd/0x250 [ 559.749654][T12922] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 559.755146][T12922] RIP: 0033:0x7f2115b7463c [ 559.757219][T12922] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48 [ 559.765397][T12922] RSP: 002b:00007f2116952040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 559.769245][T12922] RAX: ffffffffffffffda RBX: 00007f2115d05f60 RCX: 00007f2115b7463c [ 559.772667][T12922] RDX: 000000000000000f RSI: 00007f21169520b0 RDI: 0000000000000004 [ 559.776368][T12922] RBP: 00007f21169520a0 R08: 0000000000000000 R09: 0000000000000000 [ 559.779680][T12922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 559.782577][T12922] R13: 000000000000000b R14: 00007f2115d05f60 R15: 00007ffd3c83f7c8 [ 559.785672][T12922] [ 559.947398][T12907] 9pnet: Could not find request transport: ^d [ 561.345484][ T39] audit: type=1400 audit(1721336470.703:2289): avc: denied { mount } for pid=12968 comm="syz.1.2050" name="/" dev="autofs" ino=43573 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1 [ 561.439376][ T39] audit: type=1400 audit(1721336470.803:2290): avc: denied { map } for pid=12968 comm="syz.1.2050" path="socket:[43572]" dev="sockfs" ino=43572 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1 [ 561.506884][T12973] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 561.580724][T12973] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2051'. [ 561.590822][T12973] netlink: 35 bytes leftover after parsing attributes in process `syz.1.2051'. [ 561.594589][T12973] netlink: 'syz.1.2051': attribute type 6 has an invalid length. [ 561.598602][T12973] netlink: 'syz.1.2051': attribute type 5 has an invalid length. [ 561.603483][T12973] netlink: 35 bytes leftover after parsing attributes in process `syz.1.2051'. [ 561.609467][ T5429] usb 5-1: new high-speed USB device number 102 using dummy_hcd [ 561.780739][T11469] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 561.784781][T11469] Bluetooth: hci4: Injecting HCI hardware error event [ 561.790430][T11911] Bluetooth: hci4: hardware error 0x00 [ 561.801320][ T5429] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 561.808710][ T5429] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 561.814850][ T5429] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 561.819135][ T5429] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 561.829089][ T5429] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 561.834004][ T5429] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 561.838102][ T5429] usb 5-1: Manufacturer: syz [ 561.856597][ T5429] usb 5-1: config 0 descriptor?? [ 562.110419][ T5237] usb 8-1: new high-speed USB device number 109 using dummy_hcd [ 562.270238][ T5429] appleir 0003:05AC:8243.00A1: unknown main item tag 0x0 [ 562.274256][ T5429] appleir 0003:05AC:8243.00A1: No inputs registered, leaving [ 562.282741][ T5429] appleir 0003:05AC:8243.00A1: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0 [ 563.189040][ T5237] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 563.199385][ T5237] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 563.205996][ T5237] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 563.224846][ T5237] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 563.263448][ T5237] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 563.270318][ T5237] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 563.282025][ T5237] usb 8-1: Manufacturer: syz [ 563.307364][ T5237] usb 8-1: config 0 descriptor?? [ 563.738096][ T825] usb 5-1: reset high-speed USB device number 102 using dummy_hcd [ 563.889415][T11911] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 563.899563][ T825] usb 5-1: device descriptor read/64, error -32 [ 564.189381][ T825] usb 5-1: reset high-speed USB device number 102 using dummy_hcd [ 564.339475][ T825] usb 5-1: device descriptor read/64, error -32 [ 564.487773][ T39] audit: type=1400 audit(1721336473.853:2291): avc: denied { ioctl } for pid=13001 comm="syz.2.2061" path="socket:[44071]" dev="sockfs" ino=44071 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 564.500013][T13003] netlink: 'syz.2.2061': attribute type 21 has an invalid length. [ 564.504736][T13003] netlink: 'syz.2.2061': attribute type 1 has an invalid length. [ 564.619478][ T825] usb 5-1: reset high-speed USB device number 102 using dummy_hcd [ 564.659921][ T825] usb 5-1: device descriptor read/8, error -32 [ 564.788627][ T5237] appleir 0003:05AC:8243.00A2: unknown main item tag 0x0 [ 564.793841][ T5237] appleir 0003:05AC:8243.00A2: No inputs registered, leaving [ 564.802317][ T5237] appleir 0003:05AC:8243.00A2: hiddev1,hidraw2: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 564.893787][T13009] 9pnet: Could not find request transport: ^d [ 564.929425][ T825] usb 5-1: reset high-speed USB device number 102 using dummy_hcd [ 564.962195][ T825] usb 5-1: device descriptor read/8, error -32 [ 565.083763][ T825] raw-gadget.0 gadget.0: failed to queue suspend event [ 565.087411][ T39] audit: type=1400 audit(1721336474.453:2292): avc: denied { map } for pid=13016 comm="syz.1.2064" path="/dev/sg0" dev="devtmpfs" ino=705 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 565.087666][ T35] usb 5-1: USB disconnect, device number 102 [ 565.113058][ T35] raw-gadget.0 gadget.0: failed to queue reset event [ 565.199567][ T35] raw-gadget.0 gadget.0: failed to queue resume event [ 565.272102][ T35] usb 5-1: new high-speed USB device number 103 using dummy_hcd [ 565.275645][ C3] raw-gadget.0 gadget.0: ignoring, device is not running [ 565.278472][ T35] raw-gadget.0 gadget.0: failed to queue reset event [ 565.369883][ T35] raw-gadget.0 gadget.0: failed to queue resume event [ 565.449465][ T35] usb 5-1: device descriptor read/64, error -32 [ 565.449773][T12967] raw-gadget.0 gadget.0: failed to queue suspend event [ 565.467789][T12967] raw-gadget.0 gadget.0: failed to queue disconnect event [ 566.809489][ T5239] usb 8-1: USB disconnect, device number 109 [ 567.074636][T13059] FAULT_INJECTION: forcing a failure. [ 567.074636][T13059] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 567.081017][T13059] CPU: 3 PID: 13059 Comm: syz.0.2079 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 567.091942][T13059] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 567.100081][T13059] Call Trace: [ 567.101492][T13059] [ 567.102743][T13059] dump_stack_lvl+0x16c/0x1f0 [ 567.107216][T13059] should_fail_ex+0x497/0x5b0 [ 567.109877][T13059] _copy_to_user+0x30/0xc0 [ 567.112497][T13059] simple_read_from_buffer+0xd0/0x160 [ 567.115627][T13059] proc_fail_nth_read+0x1b0/0x290 [ 567.117745][T13059] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 567.120232][T13059] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 567.123038][T13059] vfs_read+0x1d4/0xbd0 [ 567.125173][T13059] ? __fdget_pos+0xeb/0x180 [ 567.127259][T13059] ? __pfx_vfs_read+0x10/0x10 [ 567.129499][T13059] ? __pfx___mutex_lock+0x10/0x10 [ 567.132418][T13059] ? __fget_files+0x256/0x400 [ 567.135598][T13059] ksys_read+0x12f/0x260 [ 567.138155][T13059] ? __pfx_ksys_read+0x10/0x10 [ 567.141012][T13059] do_syscall_64+0xcd/0x250 [ 567.143097][T13059] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 567.145818][T13059] RIP: 0033:0x7f2115b7463c [ 567.147822][T13059] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48 [ 567.157157][T13059] RSP: 002b:00007f2116931040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 567.160917][T13059] RAX: ffffffffffffffda RBX: 00007f2115d06038 RCX: 00007f2115b7463c [ 567.164442][T13059] RDX: 000000000000000f RSI: 00007f21169310b0 RDI: 0000000000000005 [ 567.170811][T13059] RBP: 00007f21169310a0 R08: 0000000000000000 R09: 0000000000000000 [ 567.174761][T13059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 567.178481][T13059] R13: 000000000000006e R14: 00007f2115d06038 R15: 00007ffd3c83f7c8 [ 567.181806][T13059] [ 568.640133][ T1356] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.644083][ T1356] ieee802154 phy1 wpan1: encryption failed: -22 [ 569.057215][ T39] audit: type=1400 audit(1721336478.423:2293): avc: denied { getopt } for pid=13100 comm="syz.2.2092" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 569.669511][ T39] audit: type=1400 audit(1721336478.983:2294): avc: denied { set_context_mgr } for pid=13100 comm="syz.2.2092" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1 [ 569.718469][T13119] FAULT_INJECTION: forcing a failure. [ 569.718469][T13119] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 569.724150][T13119] CPU: 3 PID: 13119 Comm: syz.2.2097 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 569.728201][T13119] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 569.732709][T13119] Call Trace: [ 569.734123][T13119] [ 569.735368][T13119] dump_stack_lvl+0x16c/0x1f0 [ 569.737457][T13119] should_fail_ex+0x497/0x5b0 [ 569.739753][T13119] _copy_to_user+0x30/0xc0 [ 569.742093][T13119] simple_read_from_buffer+0xd0/0x160 [ 569.744371][T13119] proc_fail_nth_read+0x1b0/0x290 [ 569.746510][T13119] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 569.749066][T13119] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 569.752168][T13119] vfs_read+0x1d4/0xbd0 [ 569.754717][T13119] ? __fdget_pos+0xeb/0x180 [ 569.757073][T13119] ? __pfx_vfs_read+0x10/0x10 [ 569.759142][T13119] ? __pfx___mutex_lock+0x10/0x10 [ 569.761325][T13119] ? __fget_files+0x256/0x400 [ 569.763599][T13119] ksys_read+0x12f/0x260 [ 569.765527][T13119] ? __pfx_ksys_read+0x10/0x10 [ 569.767619][T13119] do_syscall_64+0xcd/0x250 [ 569.769566][T13119] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 569.772101][T13119] RIP: 0033:0x7f581677463c [ 569.773988][T13119] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48 [ 569.782060][T13119] RSP: 002b:00007f58175bc040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 569.785742][T13119] RAX: ffffffffffffffda RBX: 00007f5816905f60 RCX: 00007f581677463c [ 569.789103][T13119] RDX: 000000000000000f RSI: 00007f58175bc0b0 RDI: 0000000000000003 [ 569.792514][T13119] RBP: 00007f58175bc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 569.795696][T13119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 569.799410][T13119] R13: 000000000000000b R14: 00007f5816905f60 R15: 00007ffc16c445f8 [ 569.803465][T13119] [ 570.014537][ T39] audit: type=1400 audit(1721336479.383:2295): avc: denied { ioctl } for pid=13120 comm="syz.2.2098" path="/dev/nullb0" dev="devtmpfs" ino=691 ioctlcmd=0x9372 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 570.839332][ T39] audit: type=1400 audit(1721336480.203:2296): avc: denied { mounton } for pid=13136 comm="syz.0.2104" path="/552/file0" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:devpts_t tclass=dir permissive=1 [ 570.871918][T13142] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2105'. [ 571.006848][ T39] audit: type=1400 audit(1721336480.373:2297): avc: denied { module_request } for pid=13144 comm="syz.0.2106" kmod="net-pf-2-proto-0-type-0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 571.021207][T13150] fuse: Bad value for 'rootmode' [ 571.926807][T13175] FAULT_INJECTION: forcing a failure. [ 571.926807][T13175] name failslab, interval 1, probability 0, space 0, times 0 [ 571.936810][T13175] CPU: 3 PID: 13175 Comm: syz.2.2115 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 571.940891][T13175] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 571.945613][T13175] Call Trace: [ 571.947086][T13175] [ 571.948216][T13175] dump_stack_lvl+0x16c/0x1f0 [ 571.950137][T13175] should_fail_ex+0x497/0x5b0 [ 571.951976][T13175] should_failslab+0x9/0x20 [ 571.953566][T13175] __kmalloc_noprof+0xcf/0x410 [ 571.955459][T13175] load_msg+0x3e/0x470 [ 571.957303][T13175] do_msgsnd+0x1a8/0x1750 [ 571.959252][T13175] ? find_held_lock+0x2d/0x110 [ 571.961382][T13175] ? __pfx_do_msgsnd+0x10/0x10 [ 571.963526][T13175] ? __pfx___might_resched+0x10/0x10 [ 571.966246][T13175] ? __x64_sys_msgsnd+0xe5/0x130 [ 571.968873][T13175] __x64_sys_msgsnd+0xe5/0x130 [ 571.971293][T13175] do_syscall_64+0xcd/0x250 [ 571.973230][T13175] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 571.975818][T13175] RIP: 0033:0x7f5816775b59 [ 571.977838][T13175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 571.985872][T13175] RSP: 002b:00007f58175bc048 EFLAGS: 00000246 ORIG_RAX: 0000000000000045 [ 571.989550][T13175] RAX: ffffffffffffffda RBX: 00007f5816905f60 RCX: 00007f5816775b59 [ 571.993078][T13175] RDX: 00000000000000f5 RSI: 0000000020000300 RDI: 0000000000000000 [ 571.995992][T13175] RBP: 00007f58175bc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 572.000011][T13175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 572.003733][T13175] R13: 000000000000000b R14: 00007f5816905f60 R15: 00007ffc16c445f8 [ 572.007357][T13175] [ 572.050700][T13179] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2118'. [ 572.907434][ T39] audit: type=1400 audit(1721336482.273:2298): avc: denied { create } for pid=13201 comm="syz.0.2127" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 572.944594][ T39] audit: type=1400 audit(1721336482.313:2299): avc: denied { ioctl } for pid=13201 comm="syz.0.2127" path="socket:[44599]" dev="sockfs" ino=44599 ioctlcmd=0x89e9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 574.387326][T13224] 9pnet: Could not find request transport: ^d [ 574.515192][T13233] FAULT_INJECTION: forcing a failure. [ 574.515192][T13233] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 574.522587][T13233] CPU: 3 PID: 13233 Comm: syz.0.2139 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 574.529018][T13233] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 574.534611][T13233] Call Trace: [ 574.536342][T13233] [ 574.537617][T13233] dump_stack_lvl+0x16c/0x1f0 [ 574.540176][T13233] should_fail_ex+0x497/0x5b0 [ 574.543096][T13233] _copy_from_user+0x30/0xf0 [ 574.545762][T13233] copy_msghdr_from_user+0x99/0x160 [ 574.548963][T13233] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 574.552717][T13233] ? find_held_lock+0x2d/0x110 [ 574.555025][T13233] ? __pfx___lock_acquire+0x10/0x10 [ 574.557335][T13233] ___sys_sendmsg+0xff/0x1e0 [ 574.559596][T13233] ? __pfx____sys_sendmsg+0x10/0x10 [ 574.561856][T13233] ? ksys_write+0x21c/0x260 [ 574.564283][T13233] ? __fget_light+0x173/0x210 [ 574.566291][T13233] __sys_sendmsg+0x117/0x1f0 [ 574.568160][T13233] ? __pfx___sys_sendmsg+0x10/0x10 [ 574.571064][T13233] do_syscall_64+0xcd/0x250 [ 574.573477][T13233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 574.576545][T13233] RIP: 0033:0x7f2115b75b59 [ 574.578496][T13233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 574.587305][T13233] RSP: 002b:00007f2116952048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 574.591001][T13233] RAX: ffffffffffffffda RBX: 00007f2115d05f60 RCX: 00007f2115b75b59 [ 574.594736][T13233] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003 [ 574.600541][T13233] RBP: 00007f21169520a0 R08: 0000000000000000 R09: 0000000000000000 [ 574.603804][T13233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 574.607940][T13233] R13: 000000000000000b R14: 00007f2115d05f60 R15: 00007ffd3c83f7c8 [ 574.611822][T13233] [ 574.756491][T13248] FAULT_INJECTION: forcing a failure. [ 574.756491][T13248] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 574.763673][T13248] CPU: 2 PID: 13248 Comm: syz.2.2144 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 574.768209][T13248] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 574.773068][T13248] Call Trace: [ 574.774421][T13248] [ 574.775760][T13248] dump_stack_lvl+0x16c/0x1f0 [ 574.777840][T13248] should_fail_ex+0x497/0x5b0 [ 574.779966][T13248] _copy_from_user+0x30/0xf0 [ 574.781840][T13248] get_timespec64+0x8c/0x240 [ 574.783866][T13248] ? __pfx_get_timespec64+0x10/0x10 [ 574.786614][T13248] __x64_sys_recvmmsg+0x172/0x290 [ 574.788883][T13248] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 574.791423][T13248] do_syscall_64+0xcd/0x250 [ 574.793631][T13248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 574.796877][T13248] RIP: 0033:0x7f5816775b59 [ 574.798902][T13248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 574.807123][T13248] RSP: 002b:00007f58175bc048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 574.810649][T13248] RAX: ffffffffffffffda RBX: 00007f5816905f60 RCX: 00007f5816775b59 [ 574.814298][T13248] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 574.818094][T13248] RBP: 00007f58175bc0a0 R08: 0000000020003700 R09: 0000000000000000 [ 574.821473][T13248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 574.825808][T13248] R13: 000000000000000b R14: 00007f5816905f60 R15: 00007ffc16c445f8 [ 574.829259][T13248] [ 575.750850][T13261] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2149'. [ 575.780657][T13261] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2149'. [ 576.033251][T13273] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2154'. [ 576.101499][ T5237] usb 7-1: new high-speed USB device number 82 using dummy_hcd [ 576.255221][ T39] audit: type=1400 audit(1721336485.623:2300): avc: denied { setopt } for pid=13281 comm="syz.0.2155" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 576.351513][ T5237] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 576.356610][ T5237] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 576.364588][ T5237] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 576.373582][ T5237] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 576.407929][ T5237] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 576.412385][ T5237] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 576.425196][ T5237] usb 7-1: Manufacturer: syz [ 576.536287][ T5237] usb 7-1: config 0 descriptor?? [ 576.872976][ T39] audit: type=1326 audit(1721336486.233:2301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13302 comm="syz.1.2159" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2be375b59 code=0x7ffc0000 [ 576.889475][ T39] audit: type=1326 audit(1721336486.233:2302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13302 comm="syz.1.2159" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2be375b59 code=0x7ffc0000 [ 576.910931][ T39] audit: type=1326 audit(1721336486.243:2303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13302 comm="syz.1.2159" exe="/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fc2be375b59 code=0x7ffc0000 [ 576.929348][ T39] audit: type=1326 audit(1721336486.243:2304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13302 comm="syz.1.2159" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2be375b59 code=0x7ffc0000 [ 576.949339][ T39] audit: type=1326 audit(1721336486.243:2305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13302 comm="syz.1.2159" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2be375b59 code=0x7ffc0000 [ 576.961410][ T39] audit: type=1326 audit(1721336486.243:2306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13302 comm="syz.1.2159" exe="/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7fc2be375b59 code=0x7ffc0000 [ 576.979426][ T39] audit: type=1326 audit(1721336486.243:2307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13302 comm="syz.1.2159" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2be375b59 code=0x7ffc0000 [ 576.990068][ T39] audit: type=1326 audit(1721336486.243:2308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13302 comm="syz.1.2159" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2be375b59 code=0x7ffc0000 [ 576.999701][ T39] audit: type=1326 audit(1721336486.243:2309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13302 comm="syz.1.2159" exe="/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7fc2be375b59 code=0x7ffc0000 [ 577.026521][ T5237] appleir 0003:05AC:8243.00A3: unknown main item tag 0x0 [ 577.030793][ T5237] appleir 0003:05AC:8243.00A3: No inputs registered, leaving [ 577.035739][ T5237] appleir 0003:05AC:8243.00A3: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 577.251449][T13314] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2164'. [ 577.335526][T13316] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2165'. [ 577.623822][T13328] input: syz1 as /devices/virtual/input/input32 [ 578.292360][T13333] nfs: Unknown parameter 'fsèm©x@' [ 578.418028][T13340] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2173'. [ 578.492299][T13346] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 578.492436][T13346] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 578.492821][T13346] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 578.492841][T13346] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock [ 578.508831][ T5237] usb 7-1: reset high-speed USB device number 82 using dummy_hcd [ 578.727535][T13357] FAULT_INJECTION: forcing a failure. [ 578.727535][T13357] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 578.733055][T13357] CPU: 3 PID: 13357 Comm: syz.0.2180 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 578.742051][T13357] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 578.746933][T13357] Call Trace: [ 578.748341][T13357] [ 578.749555][T13357] dump_stack_lvl+0x16c/0x1f0 [ 578.751551][T13357] should_fail_ex+0x497/0x5b0 [ 578.753551][T13357] _copy_to_user+0x30/0xc0 [ 578.755515][T13357] simple_read_from_buffer+0xd0/0x160 [ 578.757820][T13357] proc_fail_nth_read+0x1b0/0x290 [ 578.759941][T13357] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 578.762055][T13357] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 578.764261][T13357] vfs_read+0x1d4/0xbd0 [ 578.765976][T13357] ? __fdget_pos+0xeb/0x180 [ 578.767776][T13357] ? __pfx_vfs_read+0x10/0x10 [ 578.769914][T13357] ? __pfx___mutex_lock+0x10/0x10 [ 578.772502][T13357] ? __fget_files+0x256/0x400 [ 578.774605][T13357] ksys_read+0x12f/0x260 [ 578.776621][T13357] ? __pfx_ksys_read+0x10/0x10 [ 578.778768][T13357] do_syscall_64+0xcd/0x250 [ 578.780859][T13357] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 578.783346][T13357] RIP: 0033:0x7f2115b7463c [ 578.785570][T13357] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48 [ 578.794285][T13357] RSP: 002b:00007f2116952040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 578.797981][T13357] RAX: ffffffffffffffda RBX: 00007f2115d05f60 RCX: 00007f2115b7463c [ 578.801417][T13357] RDX: 000000000000000f RSI: 00007f21169520b0 RDI: 0000000000000003 [ 578.804684][T13357] RBP: 00007f21169520a0 R08: 0000000000000000 R09: 0000000000000000 [ 578.808239][T13357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 578.811626][T13357] R13: 000000000000000b R14: 00007f2115d05f60 R15: 00007ffd3c83f7c8 [ 578.815181][T13357] [ 578.963993][T13367] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2183'. [ 579.496428][ T824] usb 7-1: USB disconnect, device number 82 [ 579.759346][ T25] usb 5-1: new high-speed USB device number 105 using dummy_hcd [ 579.957393][ T25] usb 5-1: Using ep0 maxpacket: 32 [ 579.977860][ T25] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 36 [ 579.986919][ T25] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 579.991904][ T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 579.995625][ T25] usb 5-1: Product: syz [ 579.997512][ T25] usb 5-1: Manufacturer: syz [ 579.999875][ T25] usb 5-1: SerialNumber: syz [ 580.009904][ T25] usb 5-1: config 0 descriptor?? [ 580.013228][T13378] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 580.021125][ T25] hub 5-1:0.0: bad descriptor, ignoring hub [ 580.024235][ T25] hub 5-1:0.0: probe with driver hub failed with error -5 [ 580.030760][ T25] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input33 [ 580.203104][T13388] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 580.243332][T13393] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2192'. [ 580.296532][ T824] usb 5-1: USB disconnect, device number 105 [ 580.296565][ C2] usbtouchscreen 5-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19 [ 580.605548][T13413] FAULT_INJECTION: forcing a failure. [ 580.605548][T13413] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 580.627476][T13413] CPU: 3 PID: 13413 Comm: syz.2.2200 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 580.632990][T13413] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 580.641140][T13413] Call Trace: [ 580.651145][T13413] [ 580.652449][T13413] dump_stack_lvl+0x16c/0x1f0 [ 580.654451][T13413] should_fail_ex+0x497/0x5b0 [ 580.656489][T13413] _copy_from_iter+0x2a1/0x1140 [ 580.659164][T13413] ? __pfx__copy_from_iter+0x10/0x10 [ 580.662217][T13413] ? hlock_class+0x4e/0x130 [ 580.664526][T13413] ? __lock_acquire+0xc5d/0x3b30 [ 580.666822][T13413] tun_get_user+0x245/0x3c30 [ 580.668846][T13413] ? __pfx_tun_get_user+0x10/0x10 [ 580.671123][T13413] ? find_held_lock+0x2d/0x110 [ 580.672890][T13413] ? __pfx_lock_release+0x10/0x10 [ 580.675098][T13413] tun_chr_write_iter+0xe8/0x210 [ 580.677316][T13413] vfs_write+0x6b6/0x1140 [ 580.679095][T13413] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 580.683738][T13413] ? __pfx_vfs_write+0x10/0x10 [ 580.685780][T13413] ? __fget_files+0x256/0x400 [ 580.687679][T13413] ? __fget_light+0x173/0x210 [ 580.689695][T13413] ksys_write+0x12f/0x260 [ 580.691544][T13413] ? __pfx_ksys_write+0x10/0x10 [ 580.693531][T13413] do_syscall_64+0xcd/0x250 [ 580.695522][T13413] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 580.698000][T13413] RIP: 0033:0x7f5816775b59 [ 580.699823][T13413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 580.706995][T13413] RSP: 002b:00007f58175bc048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 580.710543][T13413] RAX: ffffffffffffffda RBX: 00007f5816905f60 RCX: 00007f5816775b59 [ 580.714116][T13413] RDX: 0000000000000ffe RSI: 00000000200000c0 RDI: 0000000000000003 [ 580.717432][T13413] RBP: 00007f58175bc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 580.720738][T13413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 580.724041][T13413] R13: 000000000000000b R14: 00007f5816905f60 R15: 00007ffc16c445f8 [ 580.727339][T13413] [ 580.752548][T13411] fuse: Bad value for 'group_id' [ 580.754817][T13411] fuse: Bad value for 'group_id' [ 580.896591][T13417] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2201'. [ 580.999523][T13421] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2203'. [ 581.359498][ T9733] usb 5-1: new high-speed USB device number 106 using dummy_hcd [ 581.539500][ T9733] usb 5-1: Using ep0 maxpacket: 32 [ 581.545537][ T9733] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 36 [ 581.556600][ T9733] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 581.562410][ T9733] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 581.577482][ T9733] usb 5-1: Product: syz [ 581.581240][ T9733] usb 5-1: Manufacturer: syz [ 581.583440][ T9733] usb 5-1: SerialNumber: syz [ 581.588486][ T9733] usb 5-1: config 0 descriptor?? [ 581.594271][T13429] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 581.599362][ T9733] hub 5-1:0.0: bad descriptor, ignoring hub [ 581.602432][ T9733] hub 5-1:0.0: probe with driver hub failed with error -5 [ 581.608884][ T9733] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input34 [ 581.681799][T13446] FAULT_INJECTION: forcing a failure. [ 581.681799][T13446] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 581.693232][T13446] CPU: 1 PID: 13446 Comm: syz.3.2213 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 581.698426][T13446] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 581.704997][T13446] Call Trace: [ 581.706874][T13446] [ 581.709313][T13446] dump_stack_lvl+0x16c/0x1f0 [ 581.712423][T13446] should_fail_ex+0x497/0x5b0 [ 581.715085][T13446] _copy_to_user+0x30/0xc0 [ 581.717109][T13446] simple_read_from_buffer+0xd0/0x160 [ 581.723252][T13446] proc_fail_nth_read+0x1b0/0x290 [ 581.725393][T13446] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 581.731167][T13446] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 581.734567][T13446] vfs_read+0x1d4/0xbd0 [ 581.737365][T13446] ? __fdget_pos+0xeb/0x180 [ 581.742761][T13446] ? __fget_light+0x186/0x210 [ 581.745627][T13446] ? __pfx_vfs_read+0x10/0x10 [ 581.748512][T13446] ? __pfx___mutex_lock+0x10/0x10 [ 581.752556][T13446] ? __fget_files+0x256/0x400 [ 581.756367][T13446] ksys_read+0x12f/0x260 [ 581.759078][T13446] ? __pfx_ksys_read+0x10/0x10 [ 581.761562][T13446] do_syscall_64+0xcd/0x250 [ 581.765717][T13446] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 581.769195][T13446] RIP: 0033:0x7fbdb4d7463c [ 581.772038][T13446] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48 [ 581.781787][T13446] RSP: 002b:00007fbdb5a84040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 581.786275][T13446] RAX: ffffffffffffffda RBX: 00007fbdb4f05f60 RCX: 00007fbdb4d7463c [ 581.791107][T13446] RDX: 000000000000000f RSI: 00007fbdb5a840b0 RDI: 0000000000000003 [ 581.795762][T13446] RBP: 00007fbdb5a840a0 R08: 0000000000000000 R09: 0000000000000000 [ 581.799971][T13446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 581.804275][T13446] R13: 000000000000000b R14: 00007fbdb4f05f60 R15: 00007fff033ceb38 [ 581.807808][T13446] [ 582.027427][T11685] usb 5-1: USB disconnect, device number 106 [ 582.027483][ C1] usbtouchscreen 5-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19 [ 582.877089][T13479] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2223'. [ 582.892399][T13479] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2223'. [ 582.896506][T13479] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2223'. [ 582.901861][T13479] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2223'. [ 582.905726][T13479] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2223'. [ 582.912743][T13479] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2223'. [ 582.916928][T13479] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2223'. [ 582.922606][T13479] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2223'. [ 582.928546][T13479] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2223'. [ 582.938852][T13479] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2223'. [ 583.283468][ T39] kauditd_printk_skb: 167 callbacks suppressed [ 583.283485][ T39] audit: type=1400 audit(1721336492.653:2477): avc: denied { execute } for pid=13493 comm="syz.0.2229" path="/590/file0/bus" dev="ramfs" ino=46129 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1 [ 583.407435][ T39] audit: type=1400 audit(1721336492.773:2478): avc: denied { unmount } for pid=5200 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 583.450387][T13489] 9pnet: Could not find request transport: ^d [ 583.859517][ T5241] usb 5-1: new high-speed USB device number 107 using dummy_hcd [ 584.059385][ T5241] usb 5-1: Using ep0 maxpacket: 32 [ 584.069456][ T5241] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 36 [ 584.091042][ T5241] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 584.095033][ T5241] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 584.098208][ T5241] usb 5-1: Product: syz [ 584.100221][ T5241] usb 5-1: Manufacturer: syz [ 584.102251][ T5241] usb 5-1: SerialNumber: syz [ 584.106447][ T5241] usb 5-1: config 0 descriptor?? [ 584.109886][T13499] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 584.114468][ T5241] hub 5-1:0.0: bad descriptor, ignoring hub [ 584.117009][ T5241] hub 5-1:0.0: probe with driver hub failed with error -5 [ 584.122884][ T5241] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input35 [ 584.479594][ T25] usb 5-1: USB disconnect, device number 107 [ 584.479704][ C1] usbtouchscreen 5-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19 [ 584.600463][ T39] audit: type=1400 audit(1721336493.963:2479): avc: denied { mount } for pid=13517 comm="syz.2.2239" name="/" dev="pstore" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1 [ 584.606815][T13521] fuse: Bad value for 'user_id' [ 584.612260][T13521] fuse: Bad value for 'user_id' [ 585.369580][ T35] usb 8-1: new high-speed USB device number 110 using dummy_hcd [ 585.552305][ T35] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 585.557799][ T35] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 585.564544][ T35] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 585.573063][ T35] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 585.584576][ T35] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 585.589009][ T35] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 585.593077][ T35] usb 8-1: Manufacturer: syz [ 585.597923][ T35] usb 8-1: config 0 descriptor?? [ 585.755223][T13539] 9pnet: Could not find request transport: ^d [ 586.029946][ T35] appleir 0003:05AC:8243.00A4: unknown main item tag 0x0 [ 586.036126][ T35] appleir 0003:05AC:8243.00A4: No inputs registered, leaving [ 586.042457][ T35] appleir 0003:05AC:8243.00A4: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 586.399858][ T25] usb 5-1: new high-speed USB device number 108 using dummy_hcd [ 586.579452][ T25] usb 5-1: Using ep0 maxpacket: 32 [ 586.583758][ T25] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 36 [ 586.615389][ T25] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 586.627794][ T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 586.632007][ T25] usb 5-1: Product: syz [ 586.633700][ T25] usb 5-1: Manufacturer: syz [ 586.636946][ T25] usb 5-1: SerialNumber: syz [ 586.640995][ T25] usb 5-1: config 0 descriptor?? [ 586.644174][T13543] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22 [ 586.652256][ T25] hub 5-1:0.0: bad descriptor, ignoring hub [ 586.654507][ T25] hub 5-1:0.0: probe with driver hub failed with error -5 [ 586.661179][ T25] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input37 [ 586.948791][ T5520] usb 5-1: USB disconnect, device number 108 [ 586.948926][ C2] usbtouchscreen 5-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19 [ 587.633380][ T825] usb 8-1: reset high-speed USB device number 110 using dummy_hcd [ 588.063677][T13576] 9pnet: Could not find request transport: ^d [ 588.294151][T13585] FAULT_INJECTION: forcing a failure. [ 588.294151][T13585] name failslab, interval 1, probability 0, space 0, times 0 [ 588.301329][T13585] CPU: 2 PID: 13585 Comm: syz.1.2260 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 588.305212][T13585] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 588.309920][T13585] Call Trace: [ 588.318490][T13585] [ 588.319783][T13585] dump_stack_lvl+0x16c/0x1f0 [ 588.324221][T13585] should_fail_ex+0x497/0x5b0 [ 588.326624][T13585] should_failslab+0x9/0x20 [ 588.328700][T13585] __kmalloc_noprof+0xcf/0x410 [ 588.330846][T13585] ? __pfx_lock_acquire+0x10/0x10 [ 588.333051][T13585] tomoyo_realpath_from_path+0xb9/0x720 [ 588.335840][T13585] tomoyo_check_open_permission+0x2a7/0x3b0 [ 588.338411][T13585] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 588.342539][T13585] ? ksys_write+0x21c/0x260 [ 588.344479][T13585] tomoyo_file_fcntl+0xa4/0xc0 [ 588.346631][T13585] security_file_fcntl+0x75/0xc0 [ 588.348746][T13585] __x64_sys_fcntl+0x10c/0x200 [ 588.351143][T13585] do_syscall_64+0xcd/0x250 [ 588.353447][T13585] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 588.356874][T13585] RIP: 0033:0x7fc2be375b59 [ 588.359430][T13585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 588.368049][T13585] RSP: 002b:00007fc2bf0ac048 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 588.372076][T13585] RAX: ffffffffffffffda RBX: 00007fc2be505f60 RCX: 00007fc2be375b59 [ 588.375794][T13585] RDX: 0000000000102800 RSI: 0000000000000004 RDI: 000000000000000a [ 588.379092][T13585] RBP: 00007fc2bf0ac0a0 R08: 0000000000000000 R09: 0000000000000000 [ 588.382429][T13585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 588.385829][T13585] R13: 000000000000000b R14: 00007fc2be505f60 R15: 00007ffe3772f888 [ 588.389245][T13585] [ 588.392940][T13585] ERROR: Out of memory at tomoyo_realpath_from_path. [ 588.473415][ T35] usb 8-1: USB disconnect, device number 110 [ 590.039389][T11685] usb 7-1: new high-speed USB device number 83 using dummy_hcd [ 590.241330][T11685] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 590.246022][T11685] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 590.251865][T11685] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 590.256179][T11685] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 590.263151][T11685] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 590.266459][T11685] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 590.269127][T11685] usb 7-1: Manufacturer: syz [ 590.291740][T11685] usb 7-1: config 0 descriptor?? [ 590.552451][T13663] FAULT_INJECTION: forcing a failure. [ 590.552451][T13663] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 590.558158][T13663] CPU: 0 PID: 13663 Comm: syz.3.2281 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 590.562256][T13663] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 590.566710][T13663] Call Trace: [ 590.568154][T13663] [ 590.569428][T13663] dump_stack_lvl+0x16c/0x1f0 [ 590.580376][T13663] should_fail_ex+0x497/0x5b0 [ 590.582942][T13663] _copy_to_user+0x30/0xc0 [ 590.585711][T13663] simple_read_from_buffer+0xd0/0x160 [ 590.588860][T13663] proc_fail_nth_read+0x1b0/0x290 [ 590.591840][T13663] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 590.595104][T13663] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 590.597621][T13663] vfs_read+0x1d4/0xbd0 [ 590.599481][T13663] ? __fdget_pos+0xeb/0x180 [ 590.602035][T13663] ? __pfx_vfs_read+0x10/0x10 [ 590.604747][T13663] ? __pfx___mutex_lock+0x10/0x10 [ 590.607814][T13663] ? __fget_files+0x256/0x400 [ 590.610629][T13663] ksys_read+0x12f/0x260 [ 590.612677][T13663] ? __pfx_ksys_read+0x10/0x10 [ 590.614683][T13663] do_syscall_64+0xcd/0x250 [ 590.617406][T13663] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 590.620338][T13663] RIP: 0033:0x7fbdb4d7463c [ 590.622285][T13663] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48 [ 590.633583][T13663] RSP: 002b:00007fbdb5a84040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 590.638553][T13663] RAX: ffffffffffffffda RBX: 00007fbdb4f05f60 RCX: 00007fbdb4d7463c [ 590.642470][T13663] RDX: 000000000000000f RSI: 00007fbdb5a840b0 RDI: 0000000000000005 [ 590.646885][T13663] RBP: 00007fbdb5a840a0 R08: 0000000000000000 R09: 0000000000000000 [ 590.651207][T13663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 590.655784][T13663] R13: 000000000000000b R14: 00007fbdb4f05f60 R15: 00007fff033ceb38 [ 590.659800][T13663] [ 590.751466][T11685] appleir 0003:05AC:8243.00A5: unknown main item tag 0x0 [ 590.755203][T11685] appleir 0003:05AC:8243.00A5: No inputs registered, leaving [ 590.765286][T11685] appleir 0003:05AC:8243.00A5: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 591.442693][T13694] FAULT_INJECTION: forcing a failure. [ 591.442693][T13694] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 591.448485][T13694] CPU: 3 PID: 13694 Comm: syz.3.2293 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 591.452764][T13694] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 591.457823][T13694] Call Trace: [ 591.459401][T13694] [ 591.460668][T13694] dump_stack_lvl+0x16c/0x1f0 [ 591.462826][T13694] should_fail_ex+0x497/0x5b0 [ 591.464994][T13694] _copy_from_user+0x30/0xf0 [ 591.466018][T13696] __nla_validate_parse: 69 callbacks suppressed [ 591.466031][T13696] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2291'. [ 591.467029][T13694] copy_msghdr_from_user+0x99/0x160 [ 591.467052][T13694] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 591.467072][T13694] ? find_held_lock+0x2d/0x110 [ 591.479398][T11685] usb 5-1: new high-speed USB device number 109 using dummy_hcd [ 591.479810][T13694] ? __pfx___lock_acquire+0x10/0x10 [ 591.488106][T13694] ___sys_sendmsg+0xff/0x1e0 [ 591.490062][T13694] ? __pfx____sys_sendmsg+0x10/0x10 [ 591.493617][T13694] ? ksys_write+0x21c/0x260 [ 591.495574][T13694] ? __fget_light+0x173/0x210 [ 591.497672][T13694] __sys_sendmsg+0x117/0x1f0 [ 591.499321][T13694] ? __pfx___sys_sendmsg+0x10/0x10 [ 591.501623][T13694] do_syscall_64+0xcd/0x250 [ 591.503559][T13694] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 591.506045][T13694] RIP: 0033:0x7fbdb4d75b59 [ 591.507800][T13694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 591.516583][T13694] RSP: 002b:00007fbdb5a84048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 591.519843][T13694] RAX: ffffffffffffffda RBX: 00007fbdb4f05f60 RCX: 00007fbdb4d75b59 [ 591.523180][T13694] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 591.526949][T13694] RBP: 00007fbdb5a840a0 R08: 0000000000000000 R09: 0000000000000000 [ 591.530425][T13694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 591.533509][T13694] R13: 000000000000000b R14: 00007fbdb4f05f60 R15: 00007fff033ceb38 [ 591.536862][T13694] [ 591.574882][T13698] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2294'. [ 591.682513][T13700] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2295'. [ 591.687748][T11685] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 591.692994][T11685] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 591.699935][T13700] FAULT_INJECTION: forcing a failure. [ 591.699935][T13700] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 591.705352][T13700] CPU: 2 PID: 13700 Comm: syz.3.2295 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 591.709530][T13700] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 591.714455][T13700] Call Trace: [ 591.716070][T13700] [ 591.717464][T13700] dump_stack_lvl+0x16c/0x1f0 [ 591.719148][T13700] should_fail_ex+0x497/0x5b0 [ 591.721540][T13700] _copy_from_user+0x30/0xf0 [ 591.725268][T13700] move_addr_to_kernel+0x68/0x160 [ 591.728106][T13700] __sys_sendto+0x169/0x4e0 [ 591.730067][T13700] ? __pfx___sys_sendto+0x10/0x10 [ 591.732275][T13700] ? ksys_write+0x1ab/0x260 [ 591.734217][T13700] ? __pfx_ksys_write+0x10/0x10 [ 591.737058][T13700] __x64_sys_sendto+0xe0/0x1c0 [ 591.739934][T13700] ? do_syscall_64+0x91/0x250 [ 591.742000][T13700] ? lockdep_hardirqs_on+0x7c/0x110 [ 591.744229][T13700] do_syscall_64+0xcd/0x250 [ 591.746268][T13700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 591.748908][T13700] RIP: 0033:0x7fbdb4d75b59 [ 591.751248][T13700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 591.762677][T13700] RSP: 002b:00007fbdb5a84048 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 591.767285][T13700] RAX: ffffffffffffffda RBX: 00007fbdb4f05f60 RCX: 00007fbdb4d75b59 [ 591.771496][T13700] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 591.775658][T13700] RBP: 00007fbdb5a840a0 R08: 0000000020000100 R09: 0000000000000014 [ 591.779645][T13700] R10: 0000000024000001 R11: 0000000000000246 R12: 0000000000000001 [ 591.783712][T13700] R13: 000000000000000b R14: 00007fbdb4f05f60 R15: 00007fff033ceb38 [ 591.787826][T13700] [ 591.800703][T11685] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 591.806303][T11685] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 591.817845][T11685] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 591.823353][T11685] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 591.827105][T11685] usb 5-1: Manufacturer: syz [ 591.831300][T11685] usb 5-1: config 0 descriptor?? [ 592.219392][ T824] usb 7-1: reset high-speed USB device number 83 using dummy_hcd [ 592.291722][T11685] appleir 0003:05AC:8243.00A6: unknown main item tag 0x0 [ 592.297826][T11685] appleir 0003:05AC:8243.00A6: No inputs registered, leaving [ 592.304717][T11685] appleir 0003:05AC:8243.00A6: hiddev1,hidraw2: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0 [ 592.379354][ T824] usb 7-1: device descriptor read/64, error -32 [ 592.580746][T13728] ------------[ cut here ]------------ [ 592.582805][T13728] refcount_t: underflow; use-after-free. [ 592.590308][T13728] WARNING: CPU: 3 PID: 13728 at lib/refcount.c:28 refcount_warn_saturate+0x14a/0x210 [ 592.597193][T13728] Modules linked in: [ 592.599386][T13728] CPU: 3 PID: 13728 Comm: syz.3.2304 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 592.621017][T13728] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 592.625372][T13728] RIP: 0010:refcount_warn_saturate+0x14a/0x210 [ 592.629159][T13728] Code: ff 89 de e8 58 f2 09 fd 84 db 0f 85 66 ff ff ff e8 ab f7 09 fd c6 05 7b c0 4b 0b 01 90 48 c7 c7 e0 09 90 8b e8 87 3d cc fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 88 f7 09 fd 0f b6 1d 56 c0 4b 0b 31 [ 592.638478][T13728] RSP: 0018:ffffc9000337fd58 EFLAGS: 00010282 [ 592.641284][T13728] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc90007425000 [ 592.644735][T13728] RDX: 0000000000040000 RSI: ffffffff81500576 RDI: 0000000000000001 [ 592.648785][T13728] RBP: ffff88804d8f8080 R08: 0000000000000001 R09: 0000000000000000 [ 592.653127][T13728] R10: 0000000000000001 R11: 0000000000000000 R12: 00000000ffffffff [ 592.656559][T13728] R13: ffff88804d8f8080 R14: ffff88804d8f8013 R15: ffff88804d8f800e [ 592.659944][T13728] FS: 00007fbdb5a846c0(0000) GS:ffff88806b300000(0000) knlGS:0000000000000000 [ 592.663637][T13728] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 592.666487][T13728] CR2: 000000110c374039 CR3: 0000000044ee6000 CR4: 0000000000350ef0 [ 592.669652][T13728] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 592.670774][ T824] usb 7-1: reset high-speed USB device number 83 using dummy_hcd [ 592.673056][T13728] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 592.673075][T13728] Call Trace: [ 592.673083][T13728] [ 592.673091][T13728] ? show_regs+0x8c/0xa0 [ 592.684372][T13728] ? __warn+0xe5/0x3c0 [ 592.687615][T13728] ? preempt_schedule_notrace+0x62/0xe0 [ 592.691068][T13728] ? refcount_warn_saturate+0x14a/0x210 [ 592.693989][T13728] ? report_bug+0x3c0/0x580 [ 592.696337][T13728] ? handle_bug+0x3d/0x70 [ 592.698180][T13728] ? exc_invalid_op+0x17/0x50 [ 592.700642][T13728] ? asm_exc_invalid_op+0x1a/0x20 [ 592.702736][T13728] ? __warn_printk+0x1a6/0x350 [ 592.704796][T13728] ? refcount_warn_saturate+0x14a/0x210 [ 592.707290][T13728] ? refcount_warn_saturate+0x149/0x210 [ 592.709868][T13728] sk_common_release+0x2ec/0x420 [ 592.711942][T13728] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 592.714133][T13728] inet6_create+0xef5/0x12e0 [ 592.716210][T13728] ? inet6_create+0x5d/0x12e0 [ 592.718291][T13728] __sock_create+0x32e/0x800 [ 592.720300][T13728] __sys_socket+0x14f/0x260 [ 592.722372][T13728] ? __pfx___sys_socket+0x10/0x10 [ 592.724442][T13728] __x64_sys_socket+0x72/0xb0 [ 592.726436][T13728] ? lockdep_hardirqs_on+0x7c/0x110 [ 592.728419][T13728] do_syscall_64+0xcd/0x250 [ 592.730282][T13728] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 592.732954][T13728] RIP: 0033:0x7fbdb4d75b59 [ 592.735066][T13728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 592.743240][T13728] RSP: 002b:00007fbdb5a84048 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 592.746378][T13728] RAX: ffffffffffffffda RBX: 00007fbdb4f05f60 RCX: 00007fbdb4d75b59 [ 592.749405][T13728] RDX: 0000000000000100 RSI: 0000000000000001 RDI: 000000000000000a [ 592.752312][T13728] RBP: 00007fbdb4de4e5d R08: 0000000000000000 R09: 0000000000000000 [ 592.755227][T13728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 592.758546][T13728] R13: 000000000000000b R14: 00007fbdb4f05f60 R15: 00007fff033ceb38 [ 592.762183][T13728] [ 592.763843][T13728] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 592.767401][T13728] CPU: 3 PID: 13728 Comm: syz.3.2304 Not tainted 6.10.0-syzkaller-08047-gf2f6a8e88717 #0 [ 592.772559][T13728] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 592.777716][T13728] Call Trace: [ 592.779505][T13728] [ 592.781078][T13728] dump_stack_lvl+0x3d/0x1f0 [ 592.783370][T13728] panic+0x6f5/0x7a0 [ 592.785720][T13728] ? __pfx_panic+0x10/0x10 [ 592.788319][T13728] ? show_trace_log_lvl+0x363/0x500 [ 592.790702][T13728] ? refcount_warn_saturate+0x14a/0x210 [ 592.793153][T13728] check_panic_on_warn+0xab/0xb0 [ 592.795125][T13728] __warn+0xf1/0x3c0 [ 592.796854][T13728] ? preempt_schedule_notrace+0x62/0xe0 [ 592.799102][T13728] ? refcount_warn_saturate+0x14a/0x210 [ 592.801487][T13728] report_bug+0x3c0/0x580 [ 592.803444][T13728] handle_bug+0x3d/0x70 [ 592.805258][T13728] exc_invalid_op+0x17/0x50 [ 592.807190][T13728] asm_exc_invalid_op+0x1a/0x20 [ 592.809386][T13728] RIP: 0010:refcount_warn_saturate+0x14a/0x210 [ 592.812130][T13728] Code: ff 89 de e8 58 f2 09 fd 84 db 0f 85 66 ff ff ff e8 ab f7 09 fd c6 05 7b c0 4b 0b 01 90 48 c7 c7 e0 09 90 8b e8 87 3d cc fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 88 f7 09 fd 0f b6 1d 56 c0 4b 0b 31 [ 592.819489][T13728] RSP: 0018:ffffc9000337fd58 EFLAGS: 00010282 [ 592.822773][T13728] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc90007425000 [ 592.826263][T13728] RDX: 0000000000040000 RSI: ffffffff81500576 RDI: 0000000000000001 [ 592.830946][T13728] RBP: ffff88804d8f8080 R08: 0000000000000001 R09: 0000000000000000 [ 592.834894][T13728] R10: 0000000000000001 R11: 0000000000000000 R12: 00000000ffffffff [ 592.838526][T13728] R13: ffff88804d8f8080 R14: ffff88804d8f8013 R15: ffff88804d8f800e [ 592.843368][T13728] ? __warn_printk+0x1a6/0x350 [ 592.846378][T13728] ? refcount_warn_saturate+0x149/0x210 [ 592.848709][T13728] sk_common_release+0x2ec/0x420 [ 592.850540][T13728] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 592.853048][T13728] inet6_create+0xef5/0x12e0 [ 592.855201][T13728] ? inet6_create+0x5d/0x12e0 [ 592.857643][T13728] __sock_create+0x32e/0x800 [ 592.859865][T13728] __sys_socket+0x14f/0x260 [ 592.862022][T13728] ? __pfx___sys_socket+0x10/0x10 [ 592.864433][T13728] __x64_sys_socket+0x72/0xb0 [ 592.866619][T13728] ? lockdep_hardirqs_on+0x7c/0x110 [ 592.869117][T13728] do_syscall_64+0xcd/0x250 [ 592.871215][T13728] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 592.873946][T13728] RIP: 0033:0x7fbdb4d75b59 [ 592.876090][T13728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 592.885001][T13728] RSP: 002b:00007fbdb5a84048 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 592.888257][T13728] RAX: ffffffffffffffda RBX: 00007fbdb4f05f60 RCX: 00007fbdb4d75b59 [ 592.891363][T13728] RDX: 0000000000000100 RSI: 0000000000000001 RDI: 000000000000000a [ 592.894962][T13728] RBP: 00007fbdb4de4e5d R08: 0000000000000000 R09: 0000000000000000 [ 592.898504][T13728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 592.901931][T13728] R13: 000000000000000b R14: 00007fbdb4f05f60 R15: 00007fff033ceb38 [ 592.905881][T13728] [ 592.908360][T13728] Kernel Offset: disabled [ 592.910281][T13728] Rebooting in 86400 seconds.. VM DIAGNOSIS: 21:01:42 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=ffffc90003887270 RCX=ffffffff813cdda2 RDX=ffff88802b490000 RSI=0000000000000000 RDI=0000000000000001 RBP=0000000000000001 RSP=ffffc900038871e8 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000002 R11=0000000000000002 R12=ffffffff90818f64 R13=ffffffff90818f69 R14=0000000000000002 R15=ffffc900038872a5 RIP=ffffffff818dbde0 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b000000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f6e48e84ba8 CR3=000000002360c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 ffffffffffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000000 RBX=ffff88802f9da4c0 RCX=00000000ffffffff RDX=0000000000000000 RSI=0000000000002820 RDI=0000000000000140 RBP=ffff88802f9da4c0 RSP=ffffc900008870e0 R8 =0000000000000001 R9 =0000000000000007 R10=0000000000000001 R11=ffff88806b128a40 R12=0000000000000001 R13=ffff88802f9dadf0 R14=0000000000000000 R15=00000000000005b4 RIP=ffffffff88c0d0a4 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b100000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002000d000 CR3=0000000039dfa000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 ZMM17=45aa46262ea3038d 720562f52726642e 45aa46262ea3038d 720562f52726642e 45aa46262ea3038d 720562f52726642e 45aa46262ea3038d 720562f52726642e ZMM18=7d3b25545339c1dd d5640bb1b6a9f280 7d3b25545339c1dd d5640bb1b6a9f280 7d3b25545339c1dd d5640bb1b6a9f280 7d3b25545339c1dd d5640bb1b6a9f280 ZMM19=a716000000000000 0000000000000074 a716000000000000 0000000000000073 a716000000000000 0000000000000072 a716000000000000 0000000000000071 ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=720562f5720562f5 720562f5720562f5 720562f5720562f5 720562f5720562f5 720562f5720562f5 720562f5720562f5 720562f5720562f5 720562f5720562f5 ZMM22=2ea3038d2ea3038d 2ea3038d2ea3038d 2ea3038d2ea3038d 2ea3038d2ea3038d 2ea3038d2ea3038d 2ea3038d2ea3038d 2ea3038d2ea3038d 2ea3038d2ea3038d ZMM23=45aa462645aa4626 45aa462645aa4626 45aa462645aa4626 45aa462645aa4626 45aa462645aa4626 45aa462645aa4626 45aa462645aa4626 45aa462645aa4626 ZMM24=b6a9f280b6a9f280 b6a9f280b6a9f280 b6a9f280b6a9f280 b6a9f280b6a9f280 b6a9f280b6a9f280 b6a9f280b6a9f280 b6a9f280b6a9f280 b6a9f280b6a9f280 ZMM25=d5640bb1d5640bb1 d5640bb1d5640bb1 d5640bb1d5640bb1 d5640bb1d5640bb1 d5640bb1d5640bb1 d5640bb1d5640bb1 d5640bb1d5640bb1 d5640bb1d5640bb1 ZMM26=5339c1dd5339c1dd 5339c1dd5339c1dd 5339c1dd5339c1dd 5339c1dd5339c1dd 5339c1dd5339c1dd 5339c1dd5339c1dd 5339c1dd5339c1dd 5339c1dd5339c1dd ZMM27=7d3b25547d3b2554 7d3b25547d3b2554 7d3b25547d3b2554 7d3b25547d3b2554 7d3b25547d3b2554 7d3b25547d3b2554 7d3b25547d3b2554 7d3b25547d3b2554 ZMM28=000000700000006f 0000006e0000006d 0000006c0000006b 0000006a00000069 0000006800000067 0000006600000065 0000006400000063 0000006200000061 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=a7160000a7160000 a7160000a7160000 a7160000a7160000 a7160000a7160000 a7160000a7160000 a7160000a7160000 a7160000a7160000 a7160000a7160000 info registers vcpu 2 CPU#2 RAX=0000000000000002 RBX=ffffffff9069deec RCX=ffffffff813cccd4 RDX=ffff88801d7a2440 RSI=ffffffff8aee3b3b RDI=0000000000000006 RBP=ffffffff9069deec RSP=ffffc900037aec10 R8 =0000000000000006 R9 =ffffffff8aee3b3b R10=ffffffff8aee3aed R11=dffffc0000000000 R12=ffffffff8aee3b3b R13=ffffffff8aee3aed R14=dffffc0000000000 R15=ffffffff9069deec RIP=ffffffff818db79d RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 000fffff 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 000fffff 00000000 FS =0000 00007fc2bf0ac6c0 000fffff 00000000 GS =0000 ffff88806b200000 000fffff 00000000 LDT=0000 0000000000000000 000fffff 00000000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020488000 CR3=0000000041e5c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000080040001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe3772fb90 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc2be3e4337 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc2be3e4344 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc2be3e433e ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc2be3e4352 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc2be3e43d8 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc2be3e44b6 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=000000000000006f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84fe81a5 RDI=ffffffff94e1c2e0 RBP=ffffffff94e1c2a0 RSP=ffffc9000337f720 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000003 R12=0000000000000000 R13=000000000000006f R14=ffffffff84fe8140 R15=0000000000000000 RIP=ffffffff84fe81cf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fbdb5a846c0 ffffffff 00c00000 GS =0000 ffff88806b300000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c374039 CR3=0000000044ee6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdb4de4337 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdb4de4344 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdb4de433e ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdb4de4352 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdb4de43d8 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdb4de44b6 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdb4ed4488 00007fbdb4ed4480 00007fbdb4ed4478 00007fbdb4ed4450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdb5a3d100 00007fbdb4ed4440 00007fbdb4ed0004 0008000f0010000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdb4ed4498 00007fbdb4ed4490 00007fbdb4ed4488 00007fbdb4ed4480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000